Packages changed: AppStream (0.15.6 -> 0.16.0) ImageMagick (7.1.0.57 -> 7.1.0.61) Mesa (22.3.4 -> 22.3.5) Mesa-demo Mesa-drivers (22.3.4 -> 22.3.5) MozillaFirefox (109.0 -> 109.0.1) NetworkManager (1.40.10 -> 1.42.0) apparmor attica-qt5 (5.102.0 -> 5.103.0) audit (3.0.6 -> 3.0.9) audit-secondary (3.0.6 -> 3.0.9) baloo5 (5.102.0 -> 5.103.0) baloo5-widgets (22.12.1 -> 22.12.2) bind (9.18.11 -> 9.18.12) bluedevil5 (5.26.5 -> 5.27.0) bluez-qt (5.102.0 -> 5.103.0) breeze (5.26.5 -> 5.27.0) breeze-gtk (5.26.5 -> 5.27.0) breeze5-icons (5.102.0 -> 5.103.0) c-ares (1.18.1 -> 1.19.0) cabextract (1.9.1 -> 1.10) cockpit cryptsetup (2.6.0 -> 2.6.1) cyrus-sasl dLeyna dav1d (1.0.0 -> 1.1.0) dbus-1 (1.14.4 -> 1.14.6) desktop-translations (84.87.20220427.80cb897f -> 84.87.20230128.350400f) discover (5.26.5 -> 5.27.0) dnsmasq (2.88 -> 2.89) docker (20.10.21_ce -> 20.10.23_ce) dolphin (22.12.1 -> 22.12.2) dos2unix (7.4.3 -> 7.4.4) drkonqi5 (5.26.5 -> 5.27.0) elfutils elfutils-debuginfod evolution-data-server (3.46.3 -> 3.46.4) exiv2 (0.27.5 -> 0.27.6) ffmpeg-5-mini ffmpegthumbs (22.12.1 -> 22.12.2) filesystem flatpak (1.14.1 -> 1.14.2) fontconfig (2.14.1 -> 2.14.2) frameworkintegration (5.102.0 -> 5.103.0) fuse3 (3.13.0 -> 3.14.0) gcc13 (13.0.1+git5199 -> 13.0.1+git5428) git (2.39.1 -> 2.39.2) glibc (2.36 -> 2.37) gnome-control-center (43.2 -> 43.4.1) gnome-desktop (43.1 -> 43.2) gnome-shell (43.2 -> 43.3) gnome-software (43.3 -> 43.4) gnome-terminal (3.46.7 -> 3.46.8) gnutls (3.7.8 -> 3.7.9) grub2 gstreamer (1.20.5 -> 1.22.0) gstreamer-plugins-bad (1.20.5 -> 1.22.0) gstreamer-plugins-base (1.20.5 -> 1.22.0) gstreamer-plugins-good (1.20.5 -> 1.22.0) harfbuzz (6.0.0 -> 7.0.0) hwdata (0.366 -> 0.367) installation-images-MicroOS (17.70 -> 17.76) kaccounts-integration (22.12.1 -> 22.12.2) kaccounts-providers (22.12.1 -> 22.12.2) kactivities-stats (5.102.0 -> 5.103.0) kactivities5 (5.102.0 -> 5.103.0) kactivitymanagerd (5.26.5 -> 5.27.0) karchive (5.102.0 -> 5.103.0) kate (22.12.1 -> 22.12.2) kauth (5.102.0 -> 5.103.0) kbookmarks (5.102.0 -> 5.103.0) kcm_sddm (5.26.5 -> 5.27.0) kcmutils (5.102.0 -> 5.103.0) kcodecs (5.102.0 -> 5.103.0) kcompletion (5.102.0 -> 5.103.0) kconfig (5.102.0 -> 5.103.0) kconfigwidgets (5.102.0 -> 5.103.0) kcoreaddons (5.102.0 -> 5.103.0) kcrash (5.102.0 -> 5.103.0) kdbusaddons (5.102.0 -> 5.103.0) kde-cli-tools5 (5.26.5 -> 5.27.0) kde-gtk-config5 (5.26.5 -> 5.27.0) kde-print-manager (22.12.1 -> 22.12.2) kdeclarative (5.102.0 -> 5.103.0) kded (5.102.0 -> 5.103.0) kdegraphics-thumbnailers (22.12.1 -> 22.12.2) kdelibs4support (5.102.0 -> 5.103.0) kdenetwork-filesharing (22.12.1 -> 22.12.2) kdesu (5.102.0 -> 5.103.0) kdialog (22.12.1 -> 22.12.2) kdnssd-framework (5.102.0 -> 5.103.0) kdoctools (5.102.0 -> 5.103.0) kernel-firmware (20230110 -> 20230210) kernel-source (6.1.8 -> 6.1.12) kexec-tools (2.0.25 -> 2.0.26) keylime (6.5.3 -> 6.6.0) kfilemetadata5 (5.102.0 -> 5.103.0) kgamma5 (5.26.5 -> 5.27.0) kglobalaccel (5.102.0 -> 5.103.0) kguiaddons (5.102.0 -> 5.103.0) khelpcenter5 (22.12.1 -> 22.12.2) kholidays (5.102.0 -> 5.103.0) khotkeys5 (5.26.5 -> 5.27.0) khtml (5.102.0 -> 5.103.0) ki18n (5.102.0 -> 5.103.0) kiconthemes (5.102.0 -> 5.103.0) kidletime (5.102.0 -> 5.103.0) kimageformats (5.102.0 -> 5.103.0) kinfocenter5 (5.26.5 -> 5.27.0) kinit (5.102.0 -> 5.103.0) kio (5.102.0 -> 5.103.0) kio-extras5 (22.12.1 -> 22.12.2) kirigami2 (5.102.0 -> 5.103.0) kitemmodels (5.102.0 -> 5.103.0) kitemviews (5.102.0 -> 5.103.0) kjobwidgets (5.102.0 -> 5.103.0) kjs (5.102.0 -> 5.103.0) kmenuedit5 (5.26.5 -> 5.27.0) knewstuff (5.102.0 -> 5.103.0) knotifications (5.102.0 -> 5.103.0) knotifyconfig (5.102.0 -> 5.103.0) konsole (22.12.1 -> 22.12.2) kpackage (5.102.0 -> 5.103.0) kparts (5.102.0 -> 5.103.0) kpeople5 (5.102.0 -> 5.103.0) kpipewire (5.26.5 -> 5.27.0) kpty (5.102.0 -> 5.103.0) kquickcharts (5.102.0 -> 5.103.0) krunner (5.102.0 -> 5.103.0) kscreen5 (5.26.5 -> 5.27.0) kscreenlocker (5.26.5 -> 5.27.0) kservice (5.102.0 -> 5.103.0) ksshaskpass5 (5.26.5 -> 5.27.0) ksystemstats5 (5.26.5 -> 5.27.0) ktexteditor (5.102.0 -> 5.103.0) ktextwidgets (5.102.0 -> 5.103.0) kunitconversion (5.102.0 -> 5.103.0) kwallet (5.102.0 -> 5.103.0) kwalletmanager5 (22.12.1 -> 22.12.2) kwayland (5.102.0 -> 5.103.0) kwayland-integration (5.26.5 -> 5.27.0) kwidgetsaddons (5.102.0 -> 5.103.0) kwin5 (5.26.5 -> 5.27.0) kwindowsystem (5.102.0 -> 5.103.0) kwrited5 (5.26.5 -> 5.27.0) kxmlgui (5.102.0 -> 5.103.0) lapack layer-shell-qt (5.26.5 -> 5.27.0) less libKF5ModemManagerQt (5.102.0 -> 5.103.0) libKF5NetworkManagerQt (5.102.0 -> 5.103.0) libadwaita (1.2.1 -> 1.2.2) libaom (3.5.0 -> 3.6.0) libapparmor libcap (2.66 -> 2.67) libdrm (2.4.114 -> 2.4.115) libhandy (1.8.0 -> 1.8.1) libheif libimagequant (2.17.0 -> 2.18.0) libjxl (0.8.0 -> 0.8.1) libkdcraw (22.12.1 -> 22.12.2) libkdecoration2 (5.26.5 -> 5.27.0) libkexiv2 (22.12.1 -> 22.12.2) libkscreen2 (5.26.5 -> 5.27.0) libksysguard5 (5.26.5 -> 5.27.0) liblouis (3.23.0 -> 3.24.0) liblqr libmspack (0.10.1 -> 0.11) libnice (0.1.19 -> 0.1.21) libnvme (1.2 -> 1.3) libopenmpt (0.6.7 -> 0.6.8) libpng16 libsrtp2 (2.4.2 -> 2.5.0) libstorage-ng (4.5.67 -> 4.5.73) libxml2 libzypp (17.31.7 -> 17.31.8) lmdb milou5 (5.26.5 -> 5.27.0) mobipocket (22.12.1 -> 22.12.2) mozilla-nss (3.86 -> 3.87) mozjs102 (102.7.0 -> 102.8.0) mpfr (4.1.1 -> 4.2.0) mutter (43.2 -> 43.3) ncurses (6.4.20230114 -> 6.4.20230128) nfs-utils nvme-cli (2.2.1 -> 2.3) openblas_pthreads openssl-3 openssl (1.1.1s -> 3.0.7) openvpn oxygen5-sounds (5.26.5 -> 5.27.0) patterns-microos perl-HTML-Parser (3.80 -> 3.81) perl-IO-Socket-SSL (2.078 -> 2.081) permissions (1599_20221220 -> 1599_20230217) pkgconf plasma-branding-MicroOS (20210427 -> 20230214) plasma-browser-integration (5.26.5 -> 5.27.0) plasma-framework (5.102.0 -> 5.103.0) plasma-nm5 (5.26.5 -> 5.27.0) plasma5-addons (5.26.5 -> 5.27.0) plasma5-desktop (5.26.5 -> 5.27.0) plasma5-disks (5.26.5 -> 5.27.0) plasma5-integration (5.26.5 -> 5.27.0) plasma5-openSUSE (84.87~git20220602T134713~22403ba -> 84.87~git20230131T131056~433af24) plasma5-pa (5.26.5 -> 5.27.0) plasma5-systemmonitor (5.26.5 -> 5.27.0) plasma5-thunderbolt (5.26.5 -> 5.27.0) plasma5-workspace (5.26.5 -> 5.27.0) pngquant (2.17.0 -> 2.18.0) polkit-kde-agent-5 (5.26.5 -> 5.27.0) poppler (23.01.0 -> 23.02.0) poppler-qt5 (23.01.0 -> 23.02.0) postfix powerdevil5 (5.26.5 -> 5.27.0) prison-qt5 (5.102.0 -> 5.103.0) psmisc pulseaudio purpose (5.102.0 -> 5.103.0) python-Beaker (1.12.0 -> 1.12.1) python-SQLAlchemy (1.4.45 -> 1.4.46) python-Twisted python-alembic (1.9.2 -> 1.9.3) python-cryptography (39.0.0 -> 39.0.1) python-dnspython (2.2.1 -> 2.3.0) python-numpy python-pyzmq python-zope.event (4.5.0 -> 4.6) qalculate (4.5.0 -> 4.5.1) qemu qqc2-desktop-style (5.102.0 -> 5.103.0) re2 (20221201 -> 20230201) ruby (3.1 -> 3.2) ruby-common rust-keylime (0.1.0+git.1672681780.762cec8 -> 0.1.0+git.1676549716.5382ed9) samba (4.17.4+git.314.7b07e3c51a6 -> 4.17.5+git.320.c38ca0f84a) setools (4.4.0 -> 4.4.1) shadow signon-kwallet-extension (22.12.1 -> 22.12.2) smartmontools snapper solid (5.102.0 -> 5.103.0) sonnet (5.102.0 -> 5.103.0) spice-vdagent sssd sudo (1.9.12p2 -> 1.9.13) suse-module-tools (16.0.28 -> 16.0.29) syndication (5.102.0 -> 5.103.0) syntax-highlighting (5.102.0 -> 5.103.0) systemd (252.4 -> 252.5) systemd-presets-branding-MicroOS (20200323 -> 20230214) systemsettings5 (5.26.5 -> 5.27.0) tcl texinfo (7.0.1 -> 7.0.2) threadweaver (5.102.0 -> 5.103.0) tigervnc (1.12.0 -> 1.13.0) tpm2-0-tss (3.2.0 -> 4.0.1) tpm2.0-tools (5.4 -> 5.5) transactional-update (4.1.2 -> 4.1.3) transactional-update-notifier (1.1.0 -> 1.1.0.2) tree (2.0.4 -> 2.1.0) util-linux util-linux-systemd vim (9.0.1234 -> 9.0.1307) vte (0.70.2 -> 0.70.3) vulkan-loader (1.3.236.0 -> 1.3.239.0) vulkan-tools (1.3.236.0 -> 1.3.239.0) webkit2gtk3 (2.38.3 -> 2.38.5) webkit2gtk4 (2.38.3 -> 2.38.5) wicked xdg-desktop-portal-kde (5.26.5 -> 5.27.0) xdg-user-dirs xkeyboard-config (2.37 -> 2.38) xorg-x11-server (21.1.6 -> 21.1.7) xterm (377 -> 378) xwayland (22.1.7 -> 22.1.8) yast2 (4.5.22 -> 4.5.24) yast2-bootloader (4.5.7 -> 4.5.8) yast2-network (4.5.15 -> 4.5.16) yast2-packager (4.5.13 -> 4.5.15) yast2-samba-client (4.5.2 -> 4.5.3) zenity (3.43.0 -> 3.44.0) === Details === ==== AppStream ==== Version update (0.15.6 -> 0.16.0) Subpackages: libAppStreamQt2 libappstream4 - Update to version 0.16.0: * Features: + pool: Offer API to look up components by bundles + Bump format version to 0.16 + Add new AsSystemInfo to read information about the current OS and device + Add helper to get device names from a modalias + Implement support for external release metadata + Add validation support for external release metadata + compose: Validate external release metadata used for the catalog as well + its: Add rule for standalone release metadata + Add function to test if an AsRelation is satisfied on the current system + cli: Add command to list category contents + cli: Display colored checkmarks if possible + cli: Add new is-satisfied check to test relations from the command-line + cli: Add Markdown export support for metainfo-to-news + qt: Add support for SystemInfo & relation satisfication checks * Specification: + spec: Specify a metadata format for external release descriptions * Bugfixes: + Fix build with Clang 15 + Give a better error message if trying to list too many categories + Adjust documentation of AsPool.get_components_by_categories to reflect reality + validator: Validate merge component catalog data properly again * Miscellaneous: + Consistently name catalog metadata as such everywhere - Update support-meson0.59.patch for latest version of AppStream - Build AppStream with compose support as a separate package. - Use %ldconfig_scriptlets. Leap 15.3 is out of maintenance. ==== ImageMagick ==== Version update (7.1.0.57 -> 7.1.0.61) Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.0.61 * https://github.com/ImageMagick/Website/blob/main/ChangeLog.md - Update to 7.1.0.60 * https://github.com/ImageMagick/Website/blob/main/ChangeLog.md#710-60 ==== Mesa ==== Version update (22.3.4 -> 22.3.5) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - U_ReturnME.patch * fixes blackscreen in Return To Monkey Island on Intel graphics (boo#1208145) - Update to version 22.3.5 * bug fix release which fixes bugs found since Mesa 22.3.4 * see https://docs.mesa3d.org/relnotes/22.3.5.html for more details - refreshed u_dep_xcb.patch - Don't enable rusticl without opencl ==== Mesa-demo ==== Subpackages: Mesa-demo-egl Mesa-demo-x - added baselibs.conf as source to specfile - Add Mesa-demo-{egl,es,x}-32bit. This is useful as the 64- and 32-bit OpenGL environments are separate and need separate diagnostic programs. ==== Mesa-drivers ==== Version update (22.3.4 -> 22.3.5) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - U_ReturnME.patch * fixes blackscreen in Return To Monkey Island on Intel graphics (boo#1208145) - Update to version 22.3.5 * bug fix release which fixes bugs found since Mesa 22.3.4 * see https://docs.mesa3d.org/relnotes/22.3.5.html for more details - refreshed u_dep_xcb.patch - Don't enable rusticl without opencl ==== MozillaFirefox ==== Version update (109.0 -> 109.0.1) - Mozilla Firefox 109.0.1 * Fixed jank when loading pages containing a large number of emoji characters (bmo#1809081) * Fixed an issue causing authentication prompts to not appear when loading pages in some enterprise environments (bmo#1809151) * ixed inconsistent sizing of event listener checkboxes inside the Inspector developer tool (bmo#1811760) ==== NetworkManager ==== Version update (1.40.10 -> 1.42.0) Subpackages: NetworkManager-bluetooth NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0 - Update to version 1.42.0: + Added support for source load balancing for Ethernet Bonds. + Allow specifying vhost name (SNI) for a manually DNS-over-TLS server. Only works with systemd-resolved plugin. + Connections can now be activated on a loopback interface. + Added support of IPv4 ECMP routes. The ECMP routes will get merged. - Update to version 1.40.12: + Make sure "external-ids" stays up to date in Open vSwitch database on a connection reapply. + Retry if a netlink sockets runs out of buffer space before we're able to read results of a link change. + Fix a possible race involving concurrent invocation of iptables in IPv4 shared mode. + Other various fixes. ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - add abstractions-openssl-1_1.diff: allow to read /etc/ssl/openssl-1_1.cnf in abstractions/openssl (boo#1207911) - add nscd-systemd-userdb.diff: allow nscd to read systemd-userdb (boo#1207698) ==== attica-qt5 ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5Attica5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== audit ==== Version update (3.0.6 -> 3.0.9) Subpackages: libaudit1 libauparse0 - Enable build for ARM (32-bit) - Update to version 3.0.9: * In auditd, release the async flush lock on stop * Don't allow auditd to log directly into /var/log when log_group is non-zero * Cleanup krb5 memory leaks on error paths * Update auditd.cron to use auditctl --signal * In auparse, if too many fields, realloc array bigger (Paul Wolneykien) * In auparse, special case kernel module name interpretation * If overflow_action is ignore, don't treat as an error (3.0.8) * Add gcc function attributes for access and allocation * Add some more man pages (MIZUTA Takeshi) * In auditd, change the reinitializing of the plugin queue * Fix path normalization in auparse (Sergio Correia) * In libaudit, handle ECONNREFUSED for network uid/gid lookups (Enzo Matsumiya) * In audisp-remote, fix hang with disk_low_action=suspend (Enzo Matsumiya) * Drop ProtectHome from auditd.service as it interferes with rules (3.0.7) * Add support for the OPENAT2 record type (Richard Guy Briggs) * In auditd, close the logging file descriptor when logging is suspended * Update the capabilities lookup table to match 5.16 kernel * Improve interpretation of renamat & faccessat family of syscalls * Update syscall table for the 5.16 kernel * Reduce dependency from initscripts to initscripts-service - Refresh patches (context adjusment): * audit-allow-manual-stop.patch * audit-ausearch-do-not-require-tclass.patch * audit-no-gss.patch * enable-stop-rules.patch * fix-hardened-service.patch * harden_auditd.service.patch - Remove patches (fixed by version update): * libaudit-fix-unhandled-ECONNREFUSED-from-getpwnam-25.patch * audisp-remote-fix-hang-with-disk_low_action-suspend-.patch ==== audit-secondary ==== Version update (3.0.6 -> 3.0.9) Subpackages: audit python3-audit system-group-audit - Replace transitional %usrmerged macro with regular version check (boo#1206798) - Enable build for ARM (32-bit) - Update to version 3.0.9: * In auditd, release the async flush lock on stop * Don't allow auditd to log directly into /var/log when log_group is non-zero * Cleanup krb5 memory leaks on error paths * Update auditd.cron to use auditctl --signal * In auparse, if too many fields, realloc array bigger (Paul Wolneykien) * In auparse, special case kernel module name interpretation * If overflow_action is ignore, don't treat as an error (3.0.8) * Add gcc function attributes for access and allocation * Add some more man pages (MIZUTA Takeshi) * In auditd, change the reinitializing of the plugin queue * Fix path normalization in auparse (Sergio Correia) * In libaudit, handle ECONNREFUSED for network uid/gid lookups (Enzo Matsumiya) * In audisp-remote, fix hang with disk_low_action=suspend (Enzo Matsumiya) * Drop ProtectHome from auditd.service as it interferes with rules (3.0.7) * Add support for the OPENAT2 record type (Richard Guy Briggs) * In auditd, close the logging file descriptor when logging is suspended * Update the capabilities lookup table to match 5.16 kernel * Improve interpretation of renamat & faccessat family of syscalls * Update syscall table for the 5.16 kernel * Reduce dependency from initscripts to initscripts-service - Refresh patches (context adjusment): * audit-allow-manual-stop.patch * audit-ausearch-do-not-require-tclass.patch * audit-no-gss.patch * enable-stop-rules.patch * fix-hardened-service.patch * harden_auditd.service.patch - Remove patches (fixed by version update): * libaudit-fix-unhandled-ECONNREFUSED-from-getpwnam-25.patch * audisp-remote-fix-hang-with-disk_low_action-suspend-.patch ==== baloo5 ==== Version update (5.102.0 -> 5.103.0) Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Fix automoc issues on generated DBus source files * Don't skip automoc for DBus interfaces ==== baloo5-widgets ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== bind ==== Version update (9.18.11 -> 9.18.12) - Update to release 9.18.12 Removed Features: * Specifying a port when configuring source addresses (i.e., as an argument to query-source, query-source-v6, transfer-source, transfer-source-v6, notify-source, notify-source-v6, parental-source, or parental-source-v6, or in the source or source-v6 arguments to primaries, parental-agents, also-notify, or catalog-zones) has been deprecated. In addition, the use-v4-udp-ports, use-v6-udp-ports, avoid-v4-udp-ports, and avoid-v6-udp-ports options have also been deprecated. Warnings are now logged when any of these options are encountered in named.conf. In a future release, they will be made nonfunctional. Bug Fixes: * A constant stream of zone additions and deletions via rndc reconfig could cause increased memory consumption due to delayed cleaning of view memory. This has been fixed. * The speed of the message digest algorithms (MD5, SHA-1, SHA-2), and of NSEC3 hashing, has been improved. * Pointing parental-agents to a resolver did not work because the RD bit was not set on DS requests. This has been fixed. * Building BIND 9 failed when the --enable-dnsrps switch for ./configure was used. This has been fixed. - Updated keyring and signature ==== bluedevil5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: bluedevil5-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== bluez-qt ==== Version update (5.102.0 -> 5.103.0) Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== breeze ==== Version update (5.26.5 -> 5.27.0) Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers libbreezecommon5-5 - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * MenuItem,TitleBar: Don't stretch icons, instead scale them down to fit and center inside their rect * Revert "MenuItem: Don't stretch icons, instead scale them down to fit rect" * MenuItem: Don't stretch icons, instead scale them down to fit rect * Factor out 3 pixelMetric calls in MenuItemControl drawing * Moved old wallpaper, added new one, updated previews * ToolButton: Fix text position in text-with-menu-but-no-icon RTL mode * ToolButton: Fix drop-down menu arrow in RTL layouts * ScrollBar: Fix pixel alignment in RTL mode * kdecoration: Fix outline gap with fractional scale (kde#461358) * Only use frameworkintegration on Linux/BSD - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== breeze-gtk ==== Version update (5.26.5 -> 5.27.0) Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Add gtk-dark-4.0.css target ==== breeze5-icons ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== c-ares ==== Version update (1.18.1 -> 1.19.0) - Update to version 1.19.0 Security: * Low. Stack overflow in ares_set_sortlist() which is used during c-ares initialization and typically provided by an administrator and not an end user. (bsc#1208067, CVE-2022-4904) Changes: * Add ARES_OPT_HOSTS_FILE similar to ARES_OPT_RESOLVCONF for specifying a custom hosts file location. Bug fixes: * Fix memory leak in reading /etc/hosts when using localhost fallback. * Fix chain building c-ares when libresolv is already included by another project. * File lookup should not immediately abort as there may be other tries due to search criteria. * Asterisks should be allowed in host validation as CNAMEs may reference wildcard domains. * AutoTools build system referenced bad STDC_HEADERS macro. * Even if one address class returns a failure for ares_getaddrinfo() we should still return the results we have. * Fix ares_getaddrinfo() numerical address resolution with AF_UNSPEC * Fix tools and help information. * Various documentation fixes and cleanups. * Add include guards to ares_data.h * c-ares could try to exceed maximum number of iovec entries supported by system. * The RFC6761 6.3 states localhost subdomains must be offline too ==== cabextract ==== Version update (1.9.1 -> 1.10) - Update to version 1.10 * Multiple -F filters can be given. cabextract will extract files matching any of the filters. * cabextract now overwrites symlinks by default. This is to be consistent with other archive tools. Use the new -k option for the old behaviour of keeping symlinks. This does not affect symlinks in the -d dirpath option. * New -n option to never overwrite files. * New -i option to interactively prompt if you want to overwrite files. ==== cockpit ==== Subpackages: cockpit-bridge cockpit-packagekit cockpit-system - Migration of PAM settings to /usr/lib/pam.d. ==== cryptsetup ==== Version update (2.6.0 -> 2.6.1) Subpackages: cryptsetup-doc libcryptsetup12 - cryptsetup 2.6.1 * bitlk: Fixes for BitLocker-compatible on-disk metadata parser * Fix possible iteration overflow in OpenSSL2 PBKDF2 crypto backend * portability and compilation fixes * verity: Fix possible hash offset setting overflow. * bitlk: Fix use of startup BEK key on big-endian platforms. * Do not initiate encryption (reencryption command) when the header and data devices are the same. If data device reduction is not requsted, this leads to data corruption since LUKS metadata was written over the data device. * Fix possible memory leak if crypt_load() fails. * Always use passphrases with a minimal 8 chars length for benchmarking, as used in some implementation of FIPS mode ==== cyrus-sasl ==== Subpackages: cyrus-sasl-gssapi libsasl2-3 - drop optional opie dependency ==== dLeyna ==== - Add dLeyna-no-python-shebang.patch: remove /usr/bin/python shebang from download_sync_controller.py. The file is installed into a python 3.10 site-directory and thus clearly does not need a python2 shebang. ==== dav1d ==== Version update (1.0.0 -> 1.1.0) - Update to version 1.1.0 * New function dav1d_get_frame_delay to query the decoder frame delay * Numerous fixes for strict conformity to the specs and samples * NEON and AVX-512 misc fixes and improvements * Partial AVX2 12bpc transform implementations * AVX-512 high bit-depth cdef_filter, loopfilter, itx * NEON z1/z3 optimization for 8bpc * SSSE3 z1 optimization for 8bpc ==== dbus-1 ==== Version update (1.14.4 -> 1.14.6) Subpackages: dbus-1-common dbus-1-daemon dbus-1-tools libdbus-1-3 - Fix multibuild: do not mention main flavor in multibuild, as it is implicit built. - update to 1.14.6: * Fix an incorrect assertion that could be used to crash dbus-daemon or other users of DBusServer prior to authentication, if libdbus was compiled with assertions enabled. We recommend that production builds of dbus, for example in OS distributions, should be compiled with checks but without assertions. * When connected to a dbus-broker, stop dbus-monitor from incorrectly replying to Peer method calls that were sent to the dbus-broker with a NULL destination * Fix out-of-bounds varargs read in the dbus-daemon's config- parser. This is not attacker-triggerable and appears to be harmless in practice, but is technically undefined behaviour and is detected as such by AddressSanitizer. * Avoid a data race in multi-threaded use of DBusCounter * Fix a crash with some glibc versions when non-auditable SELinux events are logged (dbus!386, Jeremi Piotrowski) * If dbus_message_demarshal() runs out of memory while validating a message, report it as NoMemory rather than InvalidArgs (dbus#420, Simon McVittie) * Use C11 _Alignof if available, for better standards- compliance * Stop including an outdated copy of pkg.m4 in the git tree * Documentation: * Fix the test-apparmor-activation test after dbus#416 * Internal changes: * Fix CI builds with recent git versions (dbus#447, Simon McVittie) - switch to using multibuild ==== desktop-translations ==== Version update (84.87.20220427.80cb897f -> 84.87.20230128.350400f) - Update to version 84.87.20230128.350400f: * Translated using Weblate (Macedonian) * Translated using Weblate (German) * Translated using Weblate (Georgian) * Translated using Weblate (Georgian) * Translated using Weblate (Finnish) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (Czech) * Translated using Weblate (Czech) * Translated using Weblate (Czech) * Translated using Weblate (Czech) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Macedonian) * Translated using Weblate (Russian) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Russian) ==== discover ==== Version update (5.26.5 -> 5.27.0) Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang discover-notifier - Discover 5.27 can be built again on archs missing QtWebEngine - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * Workaround visibly empty changelog * PackageKit: PackageState takes the packageName not the appstreamId (kde#464357) * ui: Fix plural calculation of app list page heading (kde#464882) * flatpak: Use the recommended URL for flathub's flatpakrepo * flatpak: Make sure we are reading the correct metadata (kde#464128) * flatpak: Don't filter twice the componentsByFlatpakId result for its bundle id * flatpak: Make test run a bit faster * flatpak: Address install package look-up * flatpak: Properly read .flatpakrepo names * flatpak: Fix test on the CI * Specify the domain in libdiscover's QML i18n calls * DiscoverObject: Also show C++ errors in the messages sheet * flatpak: Fix loading flatpakref files (kde#464206) * Add network timeouts by default * ReviewsPage: Fix clipping under scroll bar - Refresh 0001-Warning-for-FlatHub.patch - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== dnsmasq ==== Version update (2.88 -> 2.89) - update to 2.89: * Fix bug introduced in 2.88 (commit fe91134b) which can result in corruption of the DNS cache internal data structures and logging of "cache internal error". This has only been seen in one place in the wild, and it took considerable effort to even generate a test case to reproduce it, but there's no way to be sure it won't strike, and the effect is to break the cache badly. Installations with DNSSEC enabled are more likely to see the problem, but not running DNSSEC does not guarantee that it won't happen. Thanks to Timo van Roermund for reporting the bug and for his great efforts in chasing it down. (boo#1207174) - remove no longer needed rpmlintrc filters ==== docker ==== Version update (20.10.21_ce -> 20.10.23_ce) Subpackages: docker-bash-completion - update to 20.10.23-ce * see upstream changelog at https://docs.docker.com/engine/release-notes/#201023 - drop kubic flavor as kubic is EOL. this removes: kubelet.env docker-kubic-service.conf 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch ==== dolphin ==== Version update (22.12.1 -> 22.12.2) Subpackages: dolphin-part libdolphinvcs5 - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== dos2unix ==== Version update (7.4.3 -> 7.4.4) - update to 7.4.4: * translation updates ==== drkonqi5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: drkonqi5-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Add patch to actually disable sentry: * 0001-Handle-WITH_SENTRY-correctly.patch - Add patch to avoid unnecessary dependencies of the gdb script: * 0002-Make-python-distro-and-psutil-modules-in-the-gdb-pre.patch - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * pass the bug id not the attachment id to the gui (kde#462432) * remove pointless todo * check telemetrymode * Use qdbus to query for the hostname * allow using debuginfod for symbol resolution with gdb12 (kde#454063) * add some a11y annotations * do not submit to sentry when the bugzilla url is overridden * Install po folder * Port away from deprecated KDeclarative::setupEngine - Avoid try-restarting a template unit in %postun ==== elfutils ==== Subpackages: libasm1 libdw1 libelf1 - Fix build with libcurl version 7.88.0 for various deprecated constants. Add patches: * elfutils-0.188-CURLOPT_PROTOCOLS_STR.patch * elfutils-0.188-CURL_AT_LEAST_VERSION.patch * elfutils-0.188-deprecated-CURLINFO.patch - Add support-DW_TAG_unspecified_type.patch that fixes PR30047. ==== elfutils-debuginfod ==== Subpackages: debuginfod-profile libdebuginfod1 - Fix build with libcurl version 7.88.0 for various deprecated constants. Add patches: * elfutils-0.188-CURLOPT_PROTOCOLS_STR.patch * elfutils-0.188-CURL_AT_LEAST_VERSION.patch * elfutils-0.188-deprecated-CURLINFO.patch - Add support-DW_TAG_unspecified_type.patch that fixes PR30047. ==== evolution-data-server ==== Version update (3.46.3 -> 3.46.4) Subpackages: libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-2 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4 - Update to version 3.46.4: + Parse URI strings into GUri in a relaxed mode + IMAPx: Folder refresh could remove new message from local summary + Bugs fixed: - libedataserverui4: (almost) empty GIR/VAPI file - IMAP: Inbox hidden in offline with "Show only subscribed folders" - Google Task modification not synced - CalDAV: Can fail to refresh content in some cases + Updated translations. ==== exiv2 ==== Version update (0.27.5 -> 0.27.6) - add always-use-signed-char-for-conversion.patch for test suite fixes on non-x86_64 - Disable bugfixes.github.test_CVE_2018_12265.AdditionOverflowInLoaderExifJpeg as it is broken on some archs See: https://github.com/Exiv2/exiv2/issues/933 - update to 0.27.6: * Add Nikon3.WhiteBalanceBias2 * Add Nikon LensData v0802 * Add some F mount lenses * Initial support for OM System MakerNote * Add Sony ARW compression to dict * Exif start can be at any byte in payload, not word aligned * Fix exception type when writing BMFF file * Add more MIME type mappings for TIFF-based raws * Fix naming of canon EF 35-80mm * Replace assert with enforce * PNG: always strip the existing iCCP chunk * Account for header bytes for Exif and XMP boxes * Fix Integer overflow in Photoshop::setIptcIrb * Fix Integer-overflow in sumToLong * Fix out of bounds read in isValidBoxFileType() * Fix in Jp2 metadata writing & improvements in reading * Strip XMP raw packet before decoding * Add tiff tags * Add more DNG 1.6 tags * Fix bug in iterating over the elements of dateStrings * Use memmove in TiffEncoder::updateDirEntry * Treat Exif.Sony1.PreviewImage as undefined tag ==== ffmpeg-5-mini ==== - Add no-vk-video-decoding.patch to resolve build failure with Vulkan 1.3.239 ==== ffmpegthumbs ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== filesystem ==== - Remove /etc/sysconfig/network hierachy again, YaST got fixed - Add Korean man pages directory used by xz ==== flatpak ==== Version update (1.14.1 -> 1.14.2) Subpackages: flatpak-remote-flathub libflatpak0 system-user-flatpak - Update to version 1.14.2: + The INFO log level is now treated the same as the DEBUG log level by flatpak -v, to make backports from 1.15.x simpler. + Bug fixes: - Display the intended messages for flatpak repair. - Exporting an app to an existing repository on a CIFS filesystem now works as intended. - Unset $GIO_EXTRA_MODULES for apps, avoiding misbehaviour in some GLib apps when set to a path on the host. - Unset $XKB_CONFIG_ROOT for apps, avoiding crashes in GTK and Qt apps under Wayland when this variable is set to a path not available in the sandbox. - Unset $KRB5CCNAME for apps. - When using the fish shell, avoid duplicate XDG_DATA_DIRS entries if the profile script is sourced more than once. - Package flatpak-remote-flathub sub-package as noarch. ==== fontconfig ==== Version update (2.14.1 -> 2.14.2) Subpackages: libfontconfig1 - update to 2.14.2: * Adjust indentation between programlisting in fontconfig-user.sgml * Add some missing constant names for weight * Report more detailed logs instead of assertion * Fix a typo in description for HAVE_STDATOMIC_PRIMITIVES * Ignore LC_CTYPE if set to "UTF-8" * add --with-default-sub-pixel-rendering option * Add FC_DESKTOP_NAME property ==== frameworkintegration ==== Version update (5.102.0 -> 5.103.0) Subpackages: frameworkintegration-plugin libKF5Style5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== fuse3 ==== Version update (3.13.0 -> 3.14.0) Subpackages: libfuse3-3 - Update to release 3.14 * Split config.h into private and public config - Delete 0001-Split-config.h-into-private-and-public-config.patch (merged). - Update to release 3.13.1 * Fixed an issue that resulted in errors when attempting to compile against installed libfuse headers (because libc symbol versioning support was not detected correctly in this case). - Add 0001-Split-config.h-into-private-and-public-config.patch to fix doubly-defined macros and build failure elsewhere. ==== gcc13 ==== Version update (13.0.1+git5199 -> 13.0.1+git5428) Subpackages: libgcc_s1 libgfortran5 libgomp1 libobjc4 libstdc++6 libstdc++6-pp libubsan1 - Add support for new front-ends Rust and Modula-2. - Align _multibuild order with gcc12 package. - Bump to ca8fb0096713a8477614ef874f16ba5bf16c48bc, git5428. - Add bootstrap conditional to allow --without=bootstrap to be specified to speed up local builds for testing. - Bump included newlib to version 4.3.0. - Update to GCC trunk head (r13-5254-g05b9868b182bb9) * pulls Go frontend fix to fix build fail on s390x * pulls upstream fix for PR107678, obsoleting gcc13-pr107678.patch - Also package libhwasan_preinit.o on aarch64. ==== git ==== Version update (2.39.1 -> 2.39.2) - git 2.39.2: * CVE-2023-22490: Using a specially-crafted repository, Git can be tricked into using its local clone optimization even when using a non-local transport boo#1208027 * CVE-2023-23946: a path outside the working tree can be overwritten as the user who is running "git apply" boo#1208028 ==== glibc ==== Version update (2.36 -> 2.37) Subpackages: glibc-extra glibc-locale glibc-locale-base nscd - Update to glibc 2.37 * The getent tool now supports the --no-addrconfig option * The dynamic linker no longer loads shared objects from the "tls" subdirectories on the library search path or the subdirectory that corresponds to the AT_PLATFORM system name, or employs the legacy AT_HWCAP search mechanism, which was deprecated in version 2.33 - printf-grouping.patch: Account for grouping in printf width (BZ #30068) - strftime-time64.patch: Use 64-bit time_t interfaces in strftime and strptime (BZ #30053) - glibcextract-compile-c-snippet.patch, sys-mount-kernel-definition.patch, sys-mount-usage.patch, nscd-netlink-cache-invalidation.patch, syslog-large-messages.patch, dlmopen-libc-early-init.patch, ldd-vdso-dependency.patch, syslog-extra-whitespace.patch, errlist-edeadlock.patch, makeflags.patch, get-nscd-addresses.patch, x86-64-avx2-string-functions.patch, nscd-aicache.patch, dl-debug-bindings.patch, floatn.patch: Removed - Remove reference to obsolete %usrmerged macro (boo#1206798) ==== gnome-control-center ==== Version update (43.2 -> 43.4.1) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Update to version 43.4.1: + Network: Fix possible race in tests. + Updated translations. ==== gnome-desktop ==== Version update (43.1 -> 43.2) Subpackages: libgnome-desktop-3-20 libgnome-desktop-3_0-common libgnome-desktop-4-2 typelib-1_0-GnomeDesktop-3_0 - Update to version 43.2: + Fix idle monitor watch leak. + Updated translations. ==== gnome-shell ==== Version update (43.2 -> 43.3) Subpackages: gnome-extensions gnome-shell-calendar - Update to version 43.3: + Ensure quick settings toggles align with the pixel grid + Lower OOM score of gnome-shell process + Fix incomplete device list in volume menus + Fixed crash + Plugged leak + Misc. bug fixes and cleanups + Updated translations. ==== gnome-software ==== Version update (43.3 -> 43.4) Subpackages: gnome-software-plugin-packagekit - Add upstream leak fixes: + 66b400d63b8d7b921b83250a8b9a09e9a1eb6732.patch: gs-plugin-job-list-apps: Fix a leak of the GsAppQuery + 1355554764815195aaf9f6e23acdd7a9c521ceaa.patch: gs-plugin-job-manage-repository: Fix a minor leak - Update to version 43.4: + Stop cancelled search in appstream data early. + Lookup for appstream-provided icons in more directories. ==== gnome-terminal ==== Version update (3.46.7 -> 3.46.8) Subpackages: gnome-shell-search-provider-gnome-terminal nautilus-extension-terminal - Update to version 3.46.8: * all: Make env filtering uniform * build: Use built-in mandir option * client: - legacy: Drop debug messages - Transport XDG_ACTIVATION_TOKEN to the server * metainfo: Add launchable info * prefs: Fix default terminal check * screen: Use correct environment filter * Updated translations. ==== gnutls ==== Version update (3.7.8 -> 3.7.9) - Update to 3.7.9: [bsc#1208143, CVE-2023-0361] * libgnutls: Fix a Bleichenbacher oracle in the TLS RSA key exchange. [GNUTLS-SA-2020-07-14, CVSS: medium][CVE-2023-0361] * Rebase gnutls-FIPS-140-3-references.patch ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Refresh 0003-tpm2-resend-the-command-on-TPM_RC_RETRY.patch to handle the TPM2 responseCode correctly. - Add module for boot loader interface. Needed for load Unified Kernel Image (UKI) * grub2-add-module-for-boot-loader-interface.patch - Amend the TPM2 stack and add authorized policy mode to tpm2_key_protector * 0001-tpm2-adjust-the-input-parameters-of-TPM2_EvictContro.patch * 0002-tpm2-declare-the-input-arguments-of-TPM2-functions-a.patch * 0003-tpm2-resend-the-command-on-TPM_RC_RETRY.patch * 0004-tpm2-add-new-TPM2-types-structures-and-command-const.patch * 0005-tpm2-add-more-marshal-unmarshal-functions.patch * 0006-tpm2-check-the-command-parameters-of-TPM2-commands.patch * 0007-tpm2-pack-the-missing-authorization-command-for-TPM2.patch * 0008-tpm2-allow-some-command-parameters-to-be-NULL.patch * 0009-tpm2-remove-the-unnecessary-variables.patch * 0010-tpm2-add-TPM2-commands-to-support-authorized-policy.patch * 0011-tpm2-make-the-file-reading-unmarshal-functions-gener.patch * 0012-tpm2-initialize-the-PCR-selection-list-early.patch * 0013-tpm2-support-unsealing-key-with-authorized-policy.patch - Fix nvmf boot device setup (bsc#1207811) * 0001-grub2-Can-t-setup-a-default-boot-device-correctly-on.patch - Fix unknown filesystem error on disks with 4096 sector size (bsc#1207064) * 0001-grub-core-modify-sector-by-sysfs-as-disk-sector.patch - Fix GCC 13 build failure (bsc#1201089) * 0002-AUDIT-0-http-boot-tracker-bug.patch ==== gstreamer ==== Version update (1.20.5 -> 1.22.0) Subpackages: libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Add fix using sed to find gst-plugin-scanner-%{_target_cpu} program (boo#1207908). - Add patch to reduce the required meson version to 0.61.0 since that's what we have in SLE 15: * reduce-required-meson.patch - Probably because of a problem in SLE's meson, the generated pkgconfig files are missing some variables that are needed by rpm to generate the pkgconfig(...) provides correctly. In order to fix this, we now check for those variables and insert them in the pc files before installation if they're missing. - Update to version 1.22.0: + AV1 video codec support improvements + New HLS, DASH and Microsoft Smooth Streaming adaptive streaming clients + Qt6 support for rendering video inside a QML scene + Minimal builds optimised for binary size, including only the individual elements needed + Playbin3, Decodebin3, UriDecodebin3, Parsebin enhancements and stabilisation + WebRTC simulcast support and support for Google Congestion Control + WebRTC-based media server ingestion/egress (WHIP/WHEP) support + New easy to use batteries-included WebRTC sender plugin + Easy RTP sender timestamp reconstruction for RTP and RTSP + ONVIF timed metadata support + New fragmented MP4 muxer and non-fragmented MP4 muxer + New plugins for Amazon AWS storage and audio transcription services + New gtk4paintablesink and gtkwaylandsink renderers + New videocolorscale element that can convert and scale in one go for better performance + High bit-depth video improvements + Touchscreen event support in navigation API + Rust plugins now shipped in macOS and Windows/MSVC binary packages + H.264/H.265 timestamp correction elements for PTS/DTS reconstruction before muxers + Improved design for DMA buffer sharing and modifier handling for hardware-accelerated video decoders/encoders/filters and capturing/rendering on Linux + Video4Linux2 hardware accelerated decoder improvements + CUDA integration and Direct3D11 integration and plugin improvements + New H.264 / AVC, H.265 / HEVC and AV1 hardware-accelerated video encoders for AMD GPUs using the Advanced Media Framework (AMF) SDK + applemedia: H.265 / HEVC video encoding + decoding support + androidmedia: H.265 / HEVC video encoding support + New "force-live" property for audiomixer, compositor, glvideomixer, d3d11compositor etc. + Lots of new plugins, features, performance improvements and bug fixes - Rebase patches with quilt. ==== gstreamer-plugins-bad ==== Version update (1.20.5 -> 1.22.0) Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 - Remove sys/decklink since that contains a non-standard license and disable the decklink plugin - Stop building openh264 by default even on 3'rd party buildservices, do this via bcond. Codec now available via a special repo. - Enable zxing again, now that the updated version have landed. - Temporarily disable zxing, waiting for updated version to land in Factory. - Add patch to reduce the required meson version to 0.61.0 since that's what we have in SLE 15: * reduce-required-meson.patch - Probably because of a problem in SLE's meson, the generated pkgconfig files are missing some variables that are needed by rpm to generate the pkgconfig(...) provides correctly. In order to fix this, we now check for those variables and insert them in the pc files before installation if they're missing. - Only build the microdns plugin in TW since SLE is missing the required dependencies. - Add new shared libs libgstcuda-1_0-0 and libgstwebrtcnice-1_0-0 to baselibs.conf. - Update to version 1.22.0: + Please see changes in gstreamer main package, major version bump. - Pass amfcodec=disabled and directshow=disabled to meson, not supported on linux (yet?). - Build qsv plugin only for supported targets via passing conditional qsv=disabled/enabled to meson. - Add pkgconfig(gtk+-3.0) BuildRequires: New dependency. - Package new sub-packages + libgstcuda-1_0-0 + libgstwebrtcnice-1_0-0 + typelib-1_0-CudaGst-1_0 + typelib-1_0-GstCuda-1_0 + typelib-1_0-GstVa-1_0 ==== gstreamer-plugins-base ==== Version update (1.20.5 -> 1.22.0) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstTag-1_0 - Add patch to reduce the required meson version to 0.61.0 since that's what we have in SLE 15: * reduce-required-meson.patch - Probably because of a problem in SLE's meson, the generated pkgconfig files are missing some variables that are needed by rpm to generate the pkgconfig(...) provides correctly. In order to fix this, we now check for those variables and insert them in the pc files before installation if they're missing. - Update to version 1.22.0: + Please see changes in gstreamer main package, major version bump. - Rebase patches with quilt. - Add pkgconfig(xi) BuildRequires: New dependency. ==== gstreamer-plugins-good ==== Version update (1.20.5 -> 1.22.0) Subpackages: gstreamer-plugins-good-gtk - Add patch to reduce the required meson version to 0.61.0 since that's what we have in SLE 15: * reduce-required-meson.patch - Update to version 1.22.0: + Please see changes in gstreamer main package, major version bump. - Add disabled pkgconfig(Qt6Core), pkgconfig(Qt6Gui), pkgconfig(Qt6Qml), pkgconfig(Qt6Quick) and pkgconfig(Qt6WaylandClient) BuildRequires and pass Dqt6=disabled to meson, do not build qt6 support yet. - Fixed in 1.21.1: + avoid integer overflow in WavPack header handling code (boo#1201688 CVE-2022-1920). + fix integer overflow resulting in heap corruption (boo#1201693 CVE-2022-1921). + fix integer overflows in zlib/bz2/etc. decompression (boo#1201702 boo#1201704 boo#1201706 boo#1201707 boo#1201708 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 CVE-2022-2122). ==== harfbuzz ==== Version update (6.0.0 -> 7.0.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - Update to version 7.0.0: + New hb-paint API that is designed mainly to paint COLRv1 glyphs, but can be also used as a unified API to paint any of the glyph representations supported by HarfBuzz (B/W outlines, color layers, or color bitmaps). + New hb-cairo API for integrating with cairo graphics library. This is provided as a separate harfbuzz-cairo library. + Support for instancing CFF2 table + Support font emboldening + Support feature ranges with AAT shaping + Experimental support to cubic curves in glyf table + Various subsetter improvements + Various documentation improvements + Significantly reduced memory use during shaping + Greatly reduced memory use during subsetting CFF table + New command line utility, hb-info, for querying various font information + New hb-shape/hb-view options: --glyphs, --color-palette, - -font-bold, --font-grade, and --named-instance + Miscellaneous fixes and improvements - harfbuzz-CVE-2023-25193.patch dropped in favor of upstream consensus fix - Add harfbuzz-CVE-2023-25193.patch: limit how far we skip when looking back (boo#1207922 CVE-2023-25193). ==== hwdata ==== Version update (0.366 -> 0.367) - update to 0.367: * Update pci, usb and vendor ids ==== installation-images-MicroOS ==== Version update (17.70 -> 17.76) - merge gh#openSUSE/installation-images#628 - add patch to initrd - remove license files from installation system - 17.76 - merge gh#openSUSE/installation-images#627 - make /var/lib/chrony writable (bsc#1207374) - 17.75 - merge gh#openSUSE/installation-images#626 - use grub2-i386-efi package on x86_64 (bsc#1208057) - 17.74 - merge gh#openSUSE/installation-images#625 - move open-iscsi into initrd to ensure config files are writable (bsc#1207374) - 17.73 - merge gh#openSUSE/installation-images#624 - fix grub2-i386-efi inclusion - 17.72 - merge gh#openSUSE/installation-images#623 - support 32-bit UEFI firmware on x86_64/i386 (bsc#1208003, jsc#PED-2569) - 17.71 ==== kaccounts-integration ==== Version update (22.12.1 -> 22.12.2) Subpackages: libkaccounts2 - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kaccounts-providers ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kactivities-stats ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kactivities5 ==== Version update (5.102.0 -> 5.103.0) Subpackages: kactivities5-imports libKF5Activities5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kactivitymanagerd ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Not use forward and includes * Use ecm_set_disabled_deprecation_versions * Port away from deprecated KWindowSystem API * Remove unused includes ==== karchive ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Limit size of file to be added by what the tar header supports ==== kate ==== Version update (22.12.1 -> 22.12.2) Subpackages: kate-plugins - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ - Drop patch, merged upstream: * 0001-Fix-settings-saving-regression-in-CTags-plugin.patch ==== kauth ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Fix polkit-qt-1 CI dep ==== kbookmarks ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kcm_sddm ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Add missing break statement to switch-case * Smooth wallpaper preview image * Re-add drop shadow to wallpaper image * Remove unnecessary multiplication by Screen.devicePixelRatio * Use ecm_set_disabled_deprecation_versions * Install po folder ==== kcmutils ==== Version update (5.102.0 -> 5.103.0) Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtilsCore5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * KCModuleQml: Specify URL for root component's QML context * Fix comment: use punctuation for readability for sentences. * Set systemsettings as alias when generating desktop files ==== kcodecs ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Remove winsami2 from codecs list * Replace jis7 with ISO-2022-JP in offered codecs * Fix name for CP 949 in KCharsets::encodingsByScript ==== kcompletion ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kconfig ==== Version update (5.102.0 -> 5.103.0) Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 libKF5ConfigQml5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * kconf_update: use standard exit status code * kconf_update: use CMAKE_INSTALL_FULL_LIBDIR * KCoreConfigSkeleton::ItemEnum::Choice2: add deprecation warning markup * KCoreConfigSkeleton::ItemEnum::choices2(): add deprecation markup * Android: Fix a bug where new file wouldn't be created ==== kconfigwidgets ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Port away from deprecated KCoreConfigSkeleton::ItemEnum::Choice2 typedef * [kcodecaction] Deprecate QTextCodec and mib-based API (kde#463421) * [kcodecaction] Add name-based trigger signal * kcommandbar: Fix positioning when no mainwindow parent * kcommandbar: Fix no central widget crashes app (kde#463251) ==== kcoreaddons ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5CoreAddons5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * don't needlessly copy urls while iterating * KSandbox: Warn when running without flatpak-spawn privileges ==== kcrash ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kdbusaddons ==== Version update (5.102.0 -> 5.103.0) Subpackages: kdbusaddons-tools libKF5DBusAddons5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kde-cli-tools5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * kdeinhibit: Add ability to inhibit notifications * In kf6 we use kservices6 * Not use forward and includes * Find CoreAddons * kdesu remove DCOP * Add a clang-format commit to ignore file * Remove code that has been commented out for two decades * [kstart] Remove dead code * [keditfiletype] Properly load parts in KF6 * Fix typo in dependency name * Install translated documentation from po/ too * kcmshell: Fix log formatting (x2) * kcmshell: Fix log formatting * [kdesu] Port away from KDEsuClient::isServerSGID * Port away from deprecated KSycoca::databaseChanged * Add Qt6 CI * Remove unnecessary find * Use KRuntimePlatform * Address comments * plasma-open-settings: Prefer plasma-settings if on mobile * Make ksvgtopng a QGuiApplication * Install po folder * Set bugReportURL for filetypes KCM * Remove unused includes ==== kde-gtk-config5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: kde-gtk-config5-gtk3 - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * Set DPI scaling settings for GTK on Plasma/X11 sessions (kde#442901) - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Provide implementation for DecoratedClient::windowClass() * refactor: split config editor into smaller editors * kded: properly delete factory to fix file descriptor leak (kde#458430,kde#458817) ==== kde-print-manager ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kdeclarative ==== Version update (5.102.0 -> 5.103.0) Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Remove unused QtGraphicalEffects import * Fix anchors error in AbstractKCM & SimpleKCM types * QML/JS: Prefer const over let, and use strict === equality ==== kded ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Only recreate icons if an icon dir changed (kde#463353) ==== kdegraphics-thumbnailers ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kdelibs4support ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5KDELibs4Support5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Fix transparent borders on the right and bottom sides of Italy flag * Fix polkit-qt-1 and taglib CI deps ==== kdenetwork-filesharing ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kdesu ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kdialog ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kdnssd-framework ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kdoctools ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5DocTools5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kernel-firmware ==== Version update (20230110 -> 20230210) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20230210 (git commit bf4115c1aa2b): * linux-firmware: Update AMD cpu microcode * brcm: revert firmware files for Cypress devices * brcm: restore previous firmware file for BCM4329 device * rtw88: 8822c: Update normal firmware to v9.9.14 * i915: Add DMC v2.11 for MTL (jsc#PED-1225) * linux-firmware: Add firmware for Cirrus CS35L41 on UM3402 ASUS Laptop * linux-firmware: Add missing tuning files for HP Laptops using Cirrus Amps (bsc#1203699) * i915: Add DMC v2.18 for ADLP (jsc#PED-1225) - Update to version 20230125 (git commit 5c11a3742947): (jsc#PED-1167, jsc#PED-1169, jsc#PED-1171) * amdgpu: Add VCN 4.0.2 firmware * amdgpu: Add PSP 13.0.4 firmware * amdgpu: Add SDMA 6.0.1 fimware * amdgpu: Add GC 11.0.1 firmware * amdgpu: Add DCN 3.1.4 firmware * iwlwifi: remove old intermediate 5.15+ firmwares * iwlwifi: remove 5.10 and 5.15 intermediate old firmwares * iwlwifi: remove 5.4 and 5.10 intermediate old firmwares * iwlwifi: remove 4.19 and 5.4 intermediate old firmwares * iwlwifi: remove old unsupported older than 4.14 LTS * linux-firmware: update firmware for MT7921 WiFi device * linux-firmware: update firmware for mediatek bluetooth chip (MT7921) * amdgpu: update vangogh firmware * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth AX211 * linux-firmware: Update firmware file for Intel Bluetooth AX211 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * brcm: add configuration files for CyberTan WC121 * qcom: add firmware files for Adreno A200 * rtw89: 8852c: update fw to v0.27.56.10 * QCA: Add Bluetooth firmware for QCA2066 ==== kernel-source ==== Version update (6.1.8 -> 6.1.12) - Linux 6.1.12 (bsc#1012628). - Documentation/hw-vuln: Add documentation for Cross-Thread Return Predictions (bsc#1012628). - KVM: x86: Mitigate the cross-thread return address predictions bug (bsc#1012628). - x86/speculation: Identify processors vulnerable to SMT RSB predictions (bsc#1012628). - drm/i915: Fix VBT DSI DVO port handling (bsc#1012628). - drm/i915: Initialize the obj flags for shmem objects (bsc#1012628). - drm/i915: Move fd_install after last use of fence (bsc#1012628). - drm/amd/display: fix cursor offset on rotation 180 (bsc#1012628). - drm/amd/display: properly handling AGP aperture in vm setup (bsc#1012628). - drm/amdgpu/smu: skip pptable init under sriov (bsc#1012628). - drm/amdgpu/fence: Fix oops due to non-matching drm_sched init/fini (bsc#1012628). - drm/amd/pm: bump SMU 13.0.7 driver_if header version (bsc#1012628). - drm/amdgpu: Add unique_id support for GC 11.0.1/2 (bsc#1012628). - drm/amd/pm: bump SMU 13.0.0 driver_if header version (bsc#1012628). - arm64: efi: Force the use of SetVirtualAddressMap() on eMAG and Altra Max machines (bsc#1012628). - Fix page corruption caused by racy check in __free_pages (bsc#1012628). - arm64: dts: meson-axg: Make mmc host controller interrupts level-sensitive (bsc#1012628). - arm64: dts: meson-g12-common: Make mmc host controller interrupts level-sensitive (bsc#1012628). - arm64: dts: meson-gx: Make mmc host controller interrupts level-sensitive (bsc#1012628). - rtmutex: Ensure that the top waiter is always woken up (bsc#1012628). - tracing: Fix TASK_COMM_LEN in trace event format file (bsc#1012628). - drm/amdgpu: Use the TGID for trace_amdgpu_vm_update_ptes (bsc#1012628). - powerpc/64s/interrupt: Fix interrupt exit race with security mitigation switch (bsc#1012628). - riscv: kprobe: Fixup misaligned load text (bsc#1012628). - riscv: Fixup race condition on PG_dcache_clean in flush_icache_pte (bsc#1012628). - nvdimm: Support sizeof(struct page) > MAX_STRUCT_PAGE_SIZE (bsc#1012628). - ceph: flush cap releases when the session is flushed (bsc#1012628). - drm/amd/pm: add SMU 13.0.7 missing GetPptLimit message mapping (bsc#1012628). - pinctrl: qcom: sm8450-lpass-lpi: correct swr_rx_data group (bsc#1012628). - clk: ingenic: jz4760: Update M/N/OD calculation algorithm (bsc#1012628). - cxl/region: Fix passthrough-decoder detection (bsc#1012628). - cxl/region: Fix null pointer dereference for resetting decoder (bsc#1012628). - usb: typec: altmodes/displayport: Fix probe pin assign check (bsc#1012628). - usb: core: add quirk for Alcor Link AK9563 smartcard reader (bsc#1012628). - btrfs: free device in btrfs_close_devices for a single device filesystem (bsc#1012628). - btrfs: simplify update of last_dir_index_offset when logging a directory (bsc#1012628). - selftests: mptcp: stop tests earlier (bsc#1012628). - selftests: mptcp: allow more slack for slow test-case (bsc#1012628). - mptcp: be careful on subflow status propagation on errors (bsc#1012628). - mptcp: do not wait for bare sockets' timeout (bsc#1012628). - net: USB: Fix wrong-direction WARNING in plusb.c (bsc#1012628). - cifs: Fix use-after-free in rdata->read_into_pages() (bsc#1012628). - pinctrl: intel: Restore the pins that used to be in Direct IRQ mode (bsc#1012628). - pinctrl: aspeed: Revert "Force to disable the function's signal" (bsc#1012628). - spi: dw: Fix wrong FIFO level setting for long xfers (bsc#1012628). - pinctrl: single: fix potential NULL dereference (bsc#1012628). - pinctrl: aspeed: Fix confusing types in return value (bsc#1012628). - pinctrl: mediatek: Fix the drive register definition of some Pins (bsc#1012628). - clk: microchip: mpfs-ccc: Use devm_kasprintf() for allocating formatted strings (bsc#1012628). - ASoC: topology: Return -ENOMEM on memory allocation failure (bsc#1012628). - ASoC: fsl_sai: fix getting version from VERID (bsc#1012628). - ASoC: tas5805m: add missing page switch (bsc#1012628). - ASoC: tas5805m: rework to avoid scheduling while atomic (bsc#1012628). - arm64: dts: mediatek: mt8195: Fix vdosys* compatible strings (bsc#1012628). - riscv: stacktrace: Fix missing the first frame (bsc#1012628). - ALSA: pci: lx6464es: fix a debug loop (bsc#1012628). - arm64: dts: rockchip: set sdmmc0 speed to sd-uhs-sdr50 on rock-3a (bsc#1012628). ... changelog too long, skipping 1045 lines ... - commit e426c74 ==== kexec-tools ==== Version update (2.0.25 -> 2.0.26) - update to 2.0.26: * m68k: pass rng seed via BI_RNG_SEED * workflow: update to checkout@v3 * LoongArch: Remove redundant cmdline parameters when using --reuse-cmdline option * LoongArch: Add purgatory framework code * LoongArch: PE format image loading support * LoongArch: Add kexec/kdump support * config: Add LoongArch architecture support in config.guess and config.sub files * ppc64: remove rma_top limit - refresh kexec-tools-riscv64.patch. ==== keylime ==== Version update (6.5.3 -> 6.6.0) Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime - Remove completely unnecessary dependency on python-simplejson. - Update to version v6.6.0: * bump version to 6.6.0 * codestyle: Annotate registrar_common.py and add to mypy * codestyle: Type-annotate tenant.py * codestyle: Type-annotate registrar_client.py and add to mypy * black: Upgrade to new 23.1.0 and reformat some sources * pylint: Fix an issue related to usage of dict R1735 (use-dict-literal) * pylint: Fix two issues related to C0325 (superfluous-parens) * pylint: Fix an unreachable-code issue * pylintrc: Ignore W0719 (broad-exception-raised) * codestyle: Type-annotate revocation_notifier.py and add to mypy * CI/CD: Use later version of actions for style-checks * pre-commit: Use isort v5.12 and black v22.12 * migrations: Move bind parameter from MetaData() to reflect() method * pylint: Ignore newly reported too-many-ancestors issue * docker/ci: Remove image used for TPM 1.2 tests * docker/ci: Update ci image to base on Fedora 37 * docs: Update IMA instructions to new runtime policy format * docs: point newcomers to the design document * docs: add basic (m)TLS instructions to the installation guide * docs: update REST APIs TLS documentation to match new default setup * docs: remove old development instructions, move dev conainter section * docs: update theme to min 1.1.0 * docs: fix formatting of example IMA-policy * codestyle: Get rid of casts on return value from get_tpm_metadata() * codestyle: Add missing type annotations to tpm_main.py and add to mypy * codestyle: Add missing type annotations to tpm_abstract.py and add to mypy * tenant: Implement updateallowlist command to update an existing allowlist * verifier: Implement PUT method to update named allowlist * verifier: AllowlistHandler: Move getting runtime policy in DB format to function * verifier: AllowlistHandler: Deduplicate code validating REST API input * verifier: proper support for listening on 0.0.0.0 (fixes #705) * script: Remove unused argument argv * pylintc: Remove outdated modules from list of ignore modules * Rename keylime_agent_secure.mount to comply policy * scripts: Also copy excluded files and verification keys from base policy * scripts: Improve descriptions in create_policy tool * scripts: Add user-provided keys to the policy * scripts: update create_policy script to latest runtime policy JSON format * Rename "create_allowlist.sh" to "create_runtime_policy.sh" * Implement major Keylime policy overhaul ==== kfilemetadata5 ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Also add external extractors to vector of all plugins (kde#463598) * Fix loading of external extractors and writers (kde#463598) ==== kgamma5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Install translated documentation from po/ too * Install po folder ==== kglobalaccel ==== Version update (5.102.0 -> 5.103.0) Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Send X11 startup id when invoking service actions ==== kguiaddons ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5GuiAddons5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * waylandinhibition singleton pattern for ShortcutsInhibitManager * waylandclipboard: roundtrip to get accurate focus state (kde#463199) * KColorSchemeWatcherMac: do not use new NSAppearance API on older macOS versions (kde#463752) ==== khelpcenter5 ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kholidays ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== khotkeys5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Fix typo in dependency name * Install translated documentation from po/ too * Install po folder ==== khtml ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== ki18n ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kiconthemes ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kidletime ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kimageformats ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * psd: conversion speed improvements (kf5) * Fix writing TGA alpha depth flag * HDR support removed from RAW plugin * heif: reject invalid files with zero size ==== kinfocenter5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: kinfocenter5-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Show OpenCL info * about-distro: do not recreate dialog * Add "kinfocenter" as a keyword to application desktop file * Install translated documentation from po/ too * refine new osversion a bit * Show BUILD_ID in kinfocenter if ShowBuild set in kcm-about-distrorc. * remove bad commit * CommandOutputKCM: Fix text sizing and make it selectable * Add FreeBSD Qt6 CI * Add Linux Qt6 CI * Perform initialization in initialization list * Move graph controls to be below the graph * Fix labels in Energy module wrapping unnecessarily * Make value labels in form layouts individually selectable and copyable (kde#428881) * Install po folder * Set bugReportURL for all KCMs in tihs repo * Find qdbus command correctly ==== kinit ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * kdeinit: Use close_range for cleanup_fds if available ==== kio ==== Version update (5.102.0 -> 5.103.0) Subpackages: kio-core - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * CommandLauncher: Emit error when command was not found * Add KUrlNavigator::supportedSchemes, to replace customProtocols * Add missing copyFromFile entries to http.json for webdav and webdavs (kde#464450) * Mark WorkerBase::needSubUrlData as deprecated * [commandlauncherjob] Deprecate setIcon * job_error: add missing space between sentences for one string (kde#464631) * Correct setDesktopName() docs regarding optionality of .desktop suffix * Drop outdated docs for mailto kioslave * Add deprecation warnings for KDirOperator::setView(KFile::FileView) * Deprecate unused Scheduler::connect/disconnects methods * Deprecate Slave::isConnected/setConnected * Restore old behavior for KFileFilterCombo::setFilter (kde#463309) * KCoreDirListerCache: Remove unnecessary assert * KFilePlacesView: Set transientParent on context menu (kde#453532) * KURISearchFilterEngine: Use DuckDuckGo as a default shortcut * widgets/renamefiledialog: remove bulk rename number limit ==== kio-extras5 ==== Version update (22.12.1 -> 22.12.2) Subpackages: libkioarchive5 - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kirigami2 ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5Kirigami2-5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Too many changes since 5.102.0, only listing bugfixes: * Take into account more button after is visible (kde#464988) * Take into account side margins (kde#465052) * Disable HoverHandler (kde#464829) * WheelHandler: Fix scrolling over ScrollBars on ScrollablePage (kde#438526) ==== kitemmodels ==== Version update (5.102.0 -> 5.103.0) Subpackages: kitemmodels-imports libKF5ItemModels5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kitemviews ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kjobwidgets ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kjs ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kmenuedit5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Not use forward and includes * Port deprecated methods * Fix typo in dependency name * Install translated documentation from po/ too * Explicitly support environment variables when editing apps' configs (kde#461315) * Remove wrong entry from appstream releases * Install po folder * Remove unused includes ==== knewstuff ==== Version update (5.102.0 -> 5.103.0) Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 libKF5NewStuffWidgets5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Fix crash in QQuickQuestionListener (kde#464624) * Install desktop file for knewstuff-dialog ==== knotifications ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * knotification: Fix documentation typo ==== knotifyconfig ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== konsole ==== Version update (22.12.1 -> 22.12.2) Subpackages: konsole-part konsole-part-lang - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kpackage ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Update README with new json metadata * Show deprecation message about the desktop to json conversion being removed ==== kparts ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * PartLoader: move UI strings out of template code in header * Deprecate class PartSelectEvent * Deprecate PartBase::setPluginInterfaceVersion(int) ==== kpeople5 ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kpipewire ==== Version update (5.26.5 -> 5.27.0) Subpackages: kpipewire-imports libKPipeWire5 libKPipeWireRecord5 - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * record: Use vp8 instead of x264 * Prefer x264 * Allow to reset fd in `PipeWireSourceItem` * Record: Make sure we issue key frames and sequential pts * Record: Make sure the frames we encode are in an expected format * PipeWireRecord: Make sure we use the correct pixel formats ==== kpty ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kquickcharts ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== krunner ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kscreen5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: kscreen5-plasmoid - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * common: fix unset translation domain and add `Messages.sh` * kcm: notify update through DBus - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== kscreenlocker ==== Version update (5.26.5 -> 5.27.0) Subpackages: kscreenlocker-lang libKScreenLocker5 - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * Only inhibit screen locker on "ChangeScreenSettings" (kde#464119) - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== kservice ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== ksshaskpass5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: ksshaskpass5-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Use ecm_set_disabled_deprecation_versions * Port deprecated methods * Install po folder ==== ksystemstats5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * cpu: Account for offline processors when adding CPU objects (kde#459130) * plugins/gpu: Use pci address to identify nvidia gpus (kde#463033,kde#461361) * plugins/gpu: Don't let a newline confuse the nvidia-smi output parsing (kde#462512) * Use ecm_set_disabled_deprecation_versions * fix null pointer in amd platforms * initial implementation for NVidia GPUs * Install po folder * Remove unused includes ==== ktexteditor ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Fix indent failing due to unknown method 'replace' * Don't show selection count when there are none ==== ktextwidgets ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kunitconversion ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kwallet ==== Version update (5.102.0 -> 5.103.0) Subpackages: kwallet-tools kwalletd5 libKF5Wallet5 libkwalletbackend5-5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kwalletmanager5 ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== kwayland ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kwayland-integration ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Use ecm_set_disabled_deprecation_versions * Adapt to deprecated KWindowSystem API * Drop idletime plugin * Suppress "could not create KWindowShadow" warnings in plasmashell * Fix warning text in activeWindow() * Add missing QObject include * Fix shadow removal (kde#455270) ==== kwidgetsaddons ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Restore ABI compatibility broken in 29bb6d ==== kwin5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Too many changes to list here - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== kwindowsystem ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== kwrited5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Use ecm_set_disabled_deprecation_versions * There's no QGuiApplication::setFallbackSessionManagementEnabled in Qt6 ==== kxmlgui ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Prevent user from expanding tooltips by key, if they weren't expandable * Remove duplicate "Whats This?" tooltips ==== lapack ==== Subpackages: libblas3 libcblas3 liblapack3 - Fix missing symbols for deprecated functions in LAPACK, add Restore_missing_deprecated_prototypes.patch - Add -Wl,--no-undefined when creating shared libraries, to catch missing symbols during build - Test fixes: * Build test binaries during %build, run in %check * Fix incorrect path for test output, to actually catch any test failures - Spec file cleanup: * Do not rename blaslib, it is used for test binaries * Use same commands for building lapacke as for other libs * Remove unused FFLAGS_NOOP for test binaries - Remove unneeded links. These will be taken care of by the update-alternatives. This will bring this package in sync with openblas. - Build deprecated functions again to avoid breaking the ABI. (boo#1207989) - Make library links in the alternatives directory arch dependent. This avoids conflicts when both 32-bit and 64-bit versions are installed (boo#1207563). ==== layer-shell-qt ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Use ecm_set_disabled_deprecation_versions ==== less ==== - Apply "cve-2022-46663.patch" to fix a vulnerability in less that could be exploited for denial-of-service attacks or even remote code execution by printing specially crafted escape sequences to the terminal. [CVE-2022-46663, bsc#1207815] - Refreshed all other patches with quilt to an uniform -p1 patch style, which allows us to use %autosetup and simplify the spec file a bit. ==== libKF5ModemManagerQt ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== libKF5NetworkManagerQt ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Fix remaining 5 compile warnings (unused parameters) * Fix builds with examples: they were not compiling ==== libadwaita ==== Version update (1.2.1 -> 1.2.2) Subpackages: libadwaita-1-0 typelib-1_0-Adw-1 - Update to version 1.2.2: + AboutWindow: Prevent double clicks from opening troubleshooting page. + AdwLeaflet: Fix can-unfold=false. + AdwSpringAnimation: Fix critical damping velocity. + AdwSwipeable: Fix get_swipe_area() fallback. + AdwToastOverlay: - Don't focus buttons on click. - Prevent toast labels from wrapping. + Demo: Fix the switch on the avatar page. + Stylesheet: Fix GtkLevelBar fill colors. + Fix dependency names in docs. + Updated translations. ==== libaom ==== Version update (3.5.0 -> 3.6.0) - Update to version 3.6.0: * This release includes compression efficiency and perceptual quality improvements, speedup and memory optimizations, and some new features. This release is ABI compatible with the last release. * New Features: - New values 20-27 (corresponding to levels 7.0-7.3 and 8.0-8.3) for the encoder control AV1E_SET_TARGET_SEQ_LEVEL_IDX (note that the proposal to add the new levels are still in draft status). The original special value 24 (keep level stats only for level monitoring) is renumbered as 32. - New encoder control AV1E_SET_SKIP_POSTPROC_FILTERING to skip the application of post-processing filters on reconstructed frame in all intra mode. - New encoder option "kf-max-pyr-height": Maximum height of pyramid structure used for the GOP starting with a key frame (-1 to 5). - Make SVC work for screen content. - Rate control improvements to reduce frame-size spikes for screen content coding. - RISC-V architecture support with gcc toolchain. * Compression Efficiency Improvements: - Peak compression efficiency in VOD setting is improved by 1%. - 0.7% - 2.2% RTC encoding BDrate gains for real time speed 8 to 10. - 15% RTC encoding BDrate gains for screen content speed 10. * Perceptual Quality Improvements: - Resolved a visual quality issue that was reported for high resolution clips (2K) for speed 4 and above in VOD use case. - Visual quality improvements to screen content coding. - Quality improvements to temporal layer RTC coding. * Speedup and Memory Optimizations: - RTC single-thread encoder speedup: . ~6% instruction count reduction for speed 5 and 6. . ~15% instruction count reduction for speed 7. . ~10% instruction count reduction for speed 8 to 10 (>=360p resolutions). - RTC multi-thread encoder speedup (beyond single-thread speedup): . 5-8% encode time reduction for speed 7 to 10. - RTC screen-content encoder speedup: . 11% instruction count reduction for speed 9 and 10 (>=720p resolutions). - ~5% reduction in heap memory requirements for RTC, speed 6 to 10. * AVIF: . 4-5% speedup for speed 9 in still-picture encoding mode. . 3-4% heap memory reduction in still-picture encoding mode for 360p-720p resolutions with multiple threads. * Bug Fixes: - Added a workaround for an AV1 specification bug which makes TRANSLATION type global motion models unusable. - Fixed AddressSanitizer global-buffer-overflow errors in av1/encoder/arm/neon/av1_fwd_txfm2d_neon.c. - Fixed AddressSanitizer heap-buffer-overflow error in av1_wiener_convolve_add_src_neon(). - chromium:1393384 Avoid scene detection on spatial resize. - aomedia:3308 Remove color artifacts under high motion. - aomedia:3310 Avoid out of memory failures with Visual Studio 2017, 2019, and 2022 for Win32 x86 builds. - aomedia:3346 Make SVC work properly for screen content. - aomedia:3348 Fix a bug where an uninitialized search_site is used. - aomedia:3365 Work around what seems like a Visual Studio 2022 compiler optimization bug. - aomedia:3369 Incorrect PSNR values reported by libaom for 12-bit encode. - Modernize spec, use cmake_build and ldconfig_scriptlets macros. ==== libapparmor ==== - add abstractions-openssl-1_1.diff: allow to read /etc/ssl/openssl-1_1.cnf in abstractions/openssl (boo#1207911) - add nscd-systemd-userdb.diff: allow nscd to read systemd-userdb (boo#1207698) ==== libcap ==== Version update (2.66 -> 2.67) - update to 2.67: * Replace use of fgrep with grep -F (POSIX grep flags preferred by GNU grep) - patch from David Seifert. * Added SPDX identifiers to License file(s). Hopefully this will help the various robots out there correctly identify the longstanding licenses for libcap and friends. (Bug: 216609 reported by Günther Noack) * Started down the rabbit hole of trying to address (Bug: 216610 reported by Günther Noack on behalf of Michael Stapelberg) * The basic issue is how to link C code with Go psx without using CGo. This is all a low level hackery. If you are interested, browse the source. * Correct for bad whatis entries in man pages (this was throwing a Debian build test, detail) * Also reviewed man pages and addressed cross linkage issues (Bug: * Cleaned up some README.md files (made a github mirror now just so I can automatically render them). * Changed meaning of DYNAMIC=no builds. This now builds everything with static linking except for libc. The reason for this exception is explained in the commit message. * Inserted demonstration exploit code in capso.so to support article. ==== libdrm ==== Version update (2.4.114 -> 2.4.115) Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - Adjust the n_libdrm-drop-valgrind* patches accordingly - Update to 2.4.115 * mdgpu: add marketing names from amd-5.4 (22.40) * amdgpu: add some additional marketing names * tests/amdgpu: use AMDGPU_TIMEOUT_INFINITE to query fence * intel: Eliminate need to keep adding PCI IDs * drm_fourcc: sync drm_fourcc with latest drm-next kernel * xf86drm: Add support for decoding Vivante format modifiers * tests/amdgpu/jpeg: enable unit test for jpeg 4 * xf86drm: fix warning in drmGetFormatModifierNameFromVivante() * xf86drm: add support for printing AMD GFX11 modifiers ==== libhandy ==== Version update (1.8.0 -> 1.8.1) Subpackages: libhandy-1-0 typelib-1_0-Handy-1_0 - Update to version 1.8.1: + Fix double click handling for HdyWindowHandle and HdyHeaderBar. + Updated translations. ==== libheif ==== Subpackages: gdk-pixbuf-loader-libheif libheif1 - Use chrpath during build to delete otherwise illegal runtime directories stored as RPATH in the executables - add 2ca02a128b2f76f7f293aa86a2ce1e04a8306c65.patch b6812284a2d70f29a5121ec3dbe652da07fdbbb7.patch: (bsc#1206945) * replace internal API with public API and fix typo (Fixes #745) - The fix for rpath error for the examples sub-package was mistakenly moved ==== libimagequant ==== Version update (2.17.0 -> 2.18.0) - update to 2.18: - added more perceptually-weighed color selection - dropped problematic omp_set_nested() - fixed a rare memory leak ==== libjxl ==== Version update (0.8.0 -> 0.8.1) - build glibc hwcaps optimized overlay - Update to release 0.8.1 * Allow fast-lossless for 16-bit float input * Fix OOB read in exif.h ==== libkdcraw ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== libkdecoration2 ==== Version update (5.26.5 -> 5.27.0) Subpackages: libkdecorations2-5 libkdecorations2-5-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * port all headers to pragma once * Add DecoratedClient::windowClass() * Floor mouse positions rather than rounding ==== libkexiv2 ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== libkscreen2 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== libksysguard5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-plugins - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * Faces: Specify the domain in Choices.qml i18n calls * Add an autotest for UnitBootTimestamp * formatter: Add ticks as time unit and use it for user/system time columns * Un-deprecate UnitBootTimestamp and use it for the "start time" column (kde#458277) * formatter: Use KFormat::formatDuration for formatting the Time unit - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * sensors: Account for base unit rather than starting unit in SensorUnitModel (kde#461143) * Formatter: Format plain numbers (kde#450947) * Add CMake option to build WITH_X11 * add missing check for HeadingVmPSS * Port away from deprecated KWindowSystem API * Fix updating placeholder text * QML error: digist -> digits * Add ColorGrid face which uses rectangle opacity to denote sensor value * Install po folder * Allow to extract messages from processui/processdetails * Perform initialization in initialization list ==== liblouis ==== Version update (3.23.0 -> 3.24.0) Subpackages: liblouis-data liblouis20 python3-louis - Update to version 3.24.0: + This release contains major updates to Hungarian, UEB, and Chinese bopomofo braille. Danish has been completely reworked and there is now support for the Danish braille standard 2022. There are also some new tables so that liblouis can now generate Georgian computer braille, Swahili (Kenya) and Chichewa (Malawi). Aside from that there is the usual assortment of code cleanups and bug fixes. + For a detailed list of all the changes refer to https://github.com/liblouis/liblouis/milestone/34?closed=1 + Braille table improvements: - New grade 1, 1.2, 1.3, 1.4, 1.5 and 2 tables for Swahili (Kenya) and grade 1 table for Chichewa (Malawi). - Improvements to Hungarian. - Update braille patterns of some Chinese characters and phrases in the Chinese bopomofo braille table - Add experimental Georgian computer braille table - Updated the Danish tables to the new 2022 Danish braille standard - Limited contraction level (grade 2l or 1.5) is no longer part of the Danish braille standard 2022. - There is no longer any need for "literary" tables. In Danish braille, capital letters are now always indicated, and steps have been taken in the standard to ensure better back-translation. - As requested by The Danish Braille Committee, the tables for the 1993 standard will be kept as an option for at least a year. All the 1993 tables have been renamed to include "_1993" in the filename, so the new tables will be used as default. - Improvements to UEB. - Add new sign for German sharp S (ICEB July 2022) - Fix a couple of acronyms which require grade 1 indicator (LLB, LLP) - Fix placement of numeral sign in letters comma digits - Review rules for "under" and "there" contractions ==== liblqr ==== - spec cleanups ==== libmspack ==== Version update (0.10.1 -> 0.11) - Update to version 0.11: * see https://github.com/kyz/libmspack/blob/master/libmspack/ChangeLog for a full changelog ==== libnice ==== Version update (0.1.19 -> 0.1.21) Subpackages: gstreamer-libnice libnice10 - Update to version 0.1.21: * Only use `ifr_ifindex` if OS supports it, fixes build on iOS and FreeBSD. - Changes from version 0.1.20: * Remove support for GStreamer 0.10 builds. * Add macro to check LIBNICE version. * Added utility function to get the STUN server from a candidate. * Support additional header in built-in HTTP proxy client. * Add boxed type for NiceAddress for bindings. * Add API to get the interface index for a local address. * Explicitly bind to a specific interface when creating UDP sockets. * Limit the number of stored incoming checks based on a property. * Do asynchronous DNS resolution for STUN and TURN servers. * Add introspection friendly API to get an allocated string from a NiceCandidate. * Enable gst-full to link in a single element. ==== libnvme ==== Version update (1.2 -> 1.3) Subpackages: libnvme-mi1 libnvme1 - Update to version 1.3: * Support added for Flexible Data Placement (TP4146) * Fabrics: added support for Persistent Discovery Controllers. * libnvme-mi added a quirk framework to workaround special behavior of certain devices * The python binding behaves more friendly in a threading environment by release the GIL on blocking calls. * Replaced 3the libsystemd dependency with libdbus * A lot of small fixes everywhere (leaks, wrong ordering of arguments, ...) - Update spec file * Project depends on meson >= 0.50.0 ==== libopenmpt ==== Version update (0.6.7 -> 0.6.8) - update to 0.6.8: * [Bug] DSYM: Loading DSYM files got broken in 0.6.7. * When seeking around in a module, the tempo was sometimes incorrectly limited to 255 BPM * Initial instrument cutoff was broken for OPL instruments in libopenmnpt 0.6.7 * mpg123: Update to v1.31.2 ==== libpng16 ==== - Fix build: some*.la files are symlinks. Adjust spec to use find -type f,l - switch to pkgconfig(zlib) to allow alternative providers as well - build with glibc hwcaps optimized libs ==== libsrtp2 ==== Version update (2.4.2 -> 2.5.0) - Update to release 2.5.0 * No changelog provided; some unspecified crypto updates occurred. ==== libstorage-ng ==== Version update (4.5.67 -> 4.5.73) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (French) (bsc#1149754) - 4.5.73 - Translated using Weblate (Spanish) (bsc#1149754) - 4.5.72 - Translated using Weblate (Chinese (Taiwan) (zh_TW)) (bsc#1149754) - 4.5.71 - Translated using Weblate (Chinese (China) (zh_CN)) (bsc#1149754) - 4.5.70 - Translated using Weblate (Italian) (bsc#1149754) - Translated using Weblate (Georgian) (bsc#1149754) - 4.5.69 - Translated using Weblate (Georgian) (bsc#1149754) - 4.5.68 ==== libxml2 ==== Subpackages: libxml2-2 libxml2-tools - remove zlib-devel, pkgconfig(zlib) is sufficient ==== libzypp ==== Version update (17.31.7 -> 17.31.8) - ProgressData: enforce reporting the INIT||END state (bsc#1206949) - ps: fix service detection on newer Tumbleweed systems (bsc#1205636) - version 17.31.8 (22) ==== lmdb ==== - update to 0.9.29: * lmdump is not creating lock files ==== milou5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: milou5-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Fix Qt6 build due to deprecated Plasma::QueryMatch::InformationalMatch enum * ResultDelegate: Add tooltip for main text, too, if needed * Install po folder ==== mobipocket ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== mozilla-nss ==== Version update (3.86 -> 3.87) Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs - update to NSS 3.87 * bmo#1803226 - NULL password encoding incorrect * bmo#1804071 - Fix rng stub signature for fuzzing builds * bmo#1803595 - Updating the compiler parsing for build * bmo#1749030 - Modification of supported compilers * bmo#1774654 - tstclnt crashes when accessing gnutls server without a user cert in the database. * bmo#1751707 - Add configuration option to enable source-based coverage sanitizer * bmo#1751705 - Update ECCKiila generated files. * bmo#1730353 - Add support for the LoongArch 64-bit architecture * bmo#1798823 - add checks for zero-length RSA modulus to avoid memory errors and failed assertions later * bmo#1798823 - Additional zero-length RSA modulus checks - add man-pages to the tools package (boo#1208242) ==== mozjs102 ==== Version update (102.7.0 -> 102.8.0) - Update to version 102.8.0: + Various security fixes. + CVE-2023-25728: Content security policy leak in violation reports using iframes. + CVE-2023-25730: Screen hijack via browser fullscreen mode. + CVE-2023-25743: Fullscreen notification not shown in Firefox Focus. + CVE-2023-0767: Arbitrary memory write via PKCS 12 in NSS. + CVE-2023-25735: Potential use-after-free from compartment mismatch in SpiderMonkey. + CVE-2023-25737: Invalid downcast in SVGUtils::SetupStrokeGeometry. + CVE-2023-25738: Printing on Windows could potentially crash Firefox with some device drivers. + CVE-2023-25739: Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext. + CVE-2023-25729: Extensions could have opened external schemes without user knowledge. + CVE-2023-25732: Out of bounds memory write from EncodeInputStream. + CVE-2023-25734: Opening local .url files could cause unexpected network loads. + CVE-2023-25742: Web Crypto ImportKey crashes tab. + CVE-2023-25744: Memory safety bugs fixed in Firefox 110 and Firefox ESR 102.8. + CVE-2023-25746: Memory safety bugs fixed in Firefox ESR 102.8. ==== mpfr ==== Version update (4.1.1 -> 4.2.0) - tests-tsprintf.patch: Avoid testsuite failure with glibc >= 2.37 - Update to mpfr 4.2.0 * New functions mpfr_cosu, mpfr_sinu, mpfr_tanu, mpfr_acosu, mpfr_asinu, mpfr_atanu and mpfr_atan2u. * New functions mpfr_cospi, mpfr_sinpi, mpfr_tanpi, mpfr_acospi, mpfr_asinpi, mpfr_atanpi and mpfr_atan2pi. * New functions mpfr_log2p1, mpfr_log10p1, mpfr_exp2m1, mpfr_exp10m1 and mpfr_compound_si. * New functions mpfr_fmod_ui, mpfr_powr, mpfr_pown, mpfr_pow_uj, mpfr_pow_sj and mpfr_rootn_si (mpfr_pown is actually a macro defined as an alias for mpfr_pow_sj). * Bug fixes. In particular, for the formatted output functions (mpfr_printf, etc.), the case where the precision consists only of a period has been fixed to be like ".0" as specified in the ISO C standard, and the manual has been corrected and clarified. The macros of the custom interface have also been fixed: they now behave like functions (except a minor limitation for mpfr_custom_init_set). - Remove mpfr-4.1.1-patch01.patch which is included in the new release. ==== mutter ==== Version update (43.2 -> 43.3) - Update to version 43.3: + Skip resize effects for tiled windows during user grabs + Disable direct scanout during drag-n-drop operations + Ignore unmapped subsurfaces in direct scanout check + Fix cursor disappearing over windows during grabs + Fix pointer constrains with subsurfaces + Make wl_output mode independent of the orientation + Improve focus handling on workspace switches + Fix cursor position in window screencasts + Do not require a physical device to update pointer visibility + Fix initialization of keyboard accessibility + Fix freeze when crossing monitors under some conditions + Don't allow window activation to break global grabs + Fixed crashes + Plugged leak + Misc. bug fixes and cleanups + Updated translations. ==== ncurses ==== Version update (6.4.20230114 -> 6.4.20230128) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Fix use of run_cmd.sh - Add ncurses patch 20230128 + document XF, kxIN and kxOUT -TD + add note on sun/wscons/cmdtool/shelltool -TD + modify configure script check for pkg-config library directory to take into account an older version 0.15.0 which used PKG_CONFIG_PATH but not PKG_CONFIG_LIBDIR - Correct offsets of patches * ncurses-5.9-ibm327x.dif * ncurses-6.4.dif - Add ncurses patch 20230121 + correct limit-check when dumping tc/use clause via tic -I (report by Gabriel Ravier). + correct a check for manpage-alias in edit_man.sh, to work with out of tree builds (report by Sven Joachim). - Port ncurses-6.4.dif to patch 20230121 ==== nfs-utils ==== Subpackages: libnfsidmap1 nfs-client - Rename all drop-in options.conf files as 10-options.conf This makes it easier for other packages to over-ride with a drop-in with a later sequence number. resource-agents does this. (bsc#1207843) ==== nvme-cli ==== Version update (2.2.1 -> 2.3) Subpackages: nvme-cli-bash-completion - Update to version 2.3: * Added support for Flexible Data Placement (TP4146) * Added Persistent Discovery Controller support (TP8013/TP8014) * nvme-mi: support for firmware downloads * nvme device-self-test learned the --wait command line argument which makes nvme-cli to wait (incl. progress bar) in foreground until the test has finished. * A lot of bug fixes all over the place - Update spec file * Project depends on meson >= 0.50.0 * make build dependency dropped ==== openblas_pthreads ==== - Do not set LIBNAMESUFFIX to mark different flavors as this causes the SONAME to be different so that different flavors of OpenBLAS cannot serve as plugin replacements of each other (boo#1177260). - Fix a fallout of making alternatives directory arch dependent. - Remove unneeded links that will be created by update-alternatives. Create remaining links %post scripts properly %ghost-ing the files. - Make library links in the alternatives directory arch dependent. This avoids conflicts when both 32-bit and 64-bit versions are installed (boo#1207563). ==== openssl-3 ==== - Relax the crypto-policies requirements for the regression tests - Set OpenSSL 3.0.7 as the default openssl [bsc#1205042] * Rename openssl-1.1.0-no-html.patch to openssl-no-html-docs.patch * Rebase openssl-Add-support-for-PROFILE-SYSTEM-system-default-cipher.patch * Package a copy of the original default config file called openssl.cnf and name it as openssl-orig.cnf and warn the user if the files differ. * Add openssl-3-devel as conflicting with libopenssl-1_1-devel * Remove patches: - fix-config-in-tests.patch - openssl-use-versioned-config.patch - Create the openssl ca-certificates directory in case the ca-certificates package is not installed. This directory is required by the nodejs regression tests. [bsc#1207484] ==== openssl ==== Version update (1.1.1s -> 3.0.7) ==== openvpn ==== Subpackages: openvpn-auth-pam-plugin - Remove migration from openvpn.service to openvpn@.service and depending requires, this is from pre SLE12 times and not supported anymore. ==== oxygen5-sounds ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - No code changes since 5.26.5 ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Add kcm_flatpak to plasma default install (boo#1208256) - Add thunderbolt device management to desktop-common (boo#1208150) - Comment out gtk4-metatheme-breeze until Plasma 5.27 - Add the folowing packages for Plasma Desktop pattern - Add spectacle - Add plasma5-desktop-emojier and google-noto-coloremoji-fonts - Add gtk2-metatheme-breeze, gtk3-metatheme-breeze and gtk4-metatheme-breeze - Add oxygen5-sounds - Add plasma5-systemmonitor - Add libqt5-qtimageformats, kdegraphics-thumbnailers and ffmpegthumbs (for thumbnails) - Add kcm_sddm - Remove gnome-usage (obsolete upstream), restore gnome-system-monitor for GNOME Desktop (boo#1205108) - Add baloo5-file to kde pattern, missed as a recommended in pattern, required for a number of desktop search functions ==== perl-HTML-Parser ==== Version update (3.80 -> 3.81) - updated to 3.81 see /usr/share/doc/packages/perl-HTML-Parser/Changes 3.81 2023-01-30 - Stop depending on "Test" (GH#34) (James Raspass) - fix test scripts after conversion to Test::More (GH#35) (Graham Knop) ==== perl-IO-Socket-SSL ==== Version update (2.078 -> 2.081) - updated to 2.081 see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.081 2023/01/25 - new function set_msg_callback for user defined callback on each SSL message - showcase function in example/ssl_client.pl and example/ssl_server.pl for computing JA3S/JA3 fingerprints - fix tracing added in 2.076 to no longer include SSL3_RT_HEADER (noise) 2.080 2023/01/18 - move certs into t/ so that distributions like CentOS don't install the test certificates as part of the documentation any longer. 2.079 2023/01/16 - properly extract IPv6 address for verification from PeerAddr if not explicitly given as SSL_verifycn_name. https://github.com/noxxi/p5-io-socket-ssl/issues/123 ==== permissions ==== Version update (1599_20221220 -> 1599_20230217) Subpackages: chkstat permissions-config - Update to version 20230217: * shadow: newgidmap,newuidmap: use capabilities (bsc#1208309) * profiles: whitelist kismet capabilities (bsc#1200954) (#171) ==== pkgconf ==== Subpackages: libpkgconf3 pkgconf-m4 pkgconf-pkg-config - Add pkgconf-CVE-2023-24056.patch: Backport commit 628b2b2baf from upstream, test for, and stop string processing, on truncation (bsc#1207394 CVE-2023-24056). ==== plasma-branding-MicroOS ==== Version update (20210427 -> 20230214) - Reverted prior commit, will investigate alternate method. * https://build.opensuse.org/request/show/1065543 - 20230214 - Added kcm-about-distrorc (boo#1207873) * Changes kinfocenter "About" to display MicroOS logo and Link to MicroOS Desktop wiki, rather than Geeko and the main website. - 20230202 - Correct the transactional-update reboot method for KDE Desktop - 20230126 ==== plasma-browser-integration ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * Purpose Plugin: Always send a title - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * mprisplugin: Don't skip if size is invalid and take at least one image * Avoid accidental global variable in page-script * Remove generateGuid function * Use ecm_set_disabled_deprecation_versions * Register chrome.downloads.onChanged listener lazily * mprisplugin: xesam:artist is a list of strings * Use user agent string to detect Firefox * Use a separate script injected into the page context * Add Linux Qt6 CI * Fix excess comma in X-Plasma-Runner-Syntaxes values * Install po folder ==== plasma-framework ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5Plasma5 plasma-framework-components - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Dialog: Fix calculation of distance between dialog and parent applet (kde#464201) * Refactor glowbar SVG * QMenuProxy & Plasma::Types::PopupPlacement: Reverse direction for RTL * QMenuProxy: Fix relative positioning with embedded/off-screen parent windows * IconItemTest: Wait for rendering before capturing an image of IconItem * iconitem: Use InOutCubic for the animation's easing curve * iconitem: Adjust fade animation to not flicker as much (kde#463061) ==== plasma-nm5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: plasma-nm5-openvpn - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * Don't initialize sent/received bytes with stale values * applet: Fix key navigation in standalone (non-systray) mode * applet: Only show airplane mode in context menu when visible in toolbar (kde#464527) - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== plasma5-addons ==== Version update (5.26.5 -> 5.27.0) Subpackages: plasma5-addons-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * runners/datetime: refine time zone matching - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== plasma5-desktop ==== Version update (5.26.5 -> 5.27.0) Subpackages: plasma5-desktop-emojier - Don't try to delete the DBus interfaces folder on s390x. There's nothing to delete on this arch. - Tarball got respun. Changes: * applets/taskmanager: Only activate the triangle filter when a tooltip is open (kde#465595) * kcms/landingPage: Remove double definition of onClickHandler - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Too many changes to list here - Drop patches, now upstream: * 0001-attica-kde-Use-the-correct-location-for-determining-.patch - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here - Add patch to fix attica cache corruption (kde#464517): * 0001-attica-kde-Use-the-correct-location-for-determining-.patch ==== plasma5-disks ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Use ecm_set_disabled_deprecation_versions * Remove wrong releases from appstream ==== plasma5-integration ==== Version update (5.26.5 -> 5.27.0) Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Compile with Qt 6 as well * Use ecm_set_disabled_deprecation_versions * correctly use x11 wid as hex, not decimal * Fix crash when selecting "Open with other application" on download notification (kde#461529) * create a window handle before trying to export windows (kde#462108) * Port away from deprecated KStandardGuiItem::yes/no * Port away from deprecated KDirLister::showingDotFiles * extend kio with portal-based open-with implementation * Use CamelCase includes * Port away from deprecated KIO API * Fix QtQuickRenderSettings from loading (kde#455575) ==== plasma5-openSUSE ==== Version update (84.87~git20220602T134713~22403ba -> 84.87~git20230131T131056~433af24) Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Require distribution-logos-openSUSE-icons - Update to 5.27.0 - Remove compatibility with KDE4 - Update to version 84.87~git20230131T131056~433af24: * desktoptheme: Enable `AdaptiveTransparency` * Use logo provided by distribution-logos-openSUSE-icons - Update to 5.26.90 ==== plasma5-pa ==== Version update (5.26.5 -> 5.27.0) Subpackages: plasma5-pa-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Use ecm_set_disabled_deprecation_versions * Update module name for the combine-sink * Install translated documentation from po/ too * applet: hide current output device from tooltip when it's the only one * applet: mention scrollability in tooltip * kcm: make volume sliders obey "Raise maximum volume" setting (kde#458977) * Make global mute actually global between plasmoid instances (kde#418713) * Add portal.app_id to iconName lookup in pulseobject.cpp for flatpak * Move applet settings into KCM (kde#440846) * [kcm] Bundle icon for speakers test * applet: fix slider animation when toggling "Raise Maximum Volume" * applet: Surface middle-clickability in the UI * don't crash when the server doesn't respond (kde#454647,kde#437272) * KCM: Allow comboboxes to grow to fit contents (kde#458422) * KCM: Only show port/profile labels if port combobox is visible * Install po folder * Set bugReportURL for KCM ==== plasma5-systemmonitor ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * Set RemoveDeadEntries=true in the pages knsrc (kde#453651) * table: Workaround a memory leak in QQmlPropertyCache (kde#460370) - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Process table: Always use binary name for icon lookup (kde#454326) * Add missing KWindowSystem link * applicationstable: Use the same scaling for CPU details as the column display (kde#462775) * table: Don't clear the selection when setting current index (kde#460615) * Be more explicit in kill button texts (kde#454753) * port all headers to pragma once * Slightly reduce minimum window size (kde#462803) * Convert hardcoded minimum sizes to multiples of GridUnit * Use ecm_set_disabled_deprecation_versions * Perform initialization in initialization list * Remove invalid appstream releases * Install po folder * Move DialogLoader to data of ScrollablePage (kde#459514) * Set QSurfaceFormat::ResetNotification ==== plasma5-thunderbolt ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Fix list item text clarity * Use ecm_set_disabled_deprecation_versions * Install po folder * Avoid combining smart pointers and qobject parent ownership (kde#439192) * Set bugReportURL for KCM ==== plasma5-workspace ==== Version update (5.26.5 -> 5.27.0) Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Tarball got respun. Changes: * klipper: store QImage and construct QPixmap only when necessary (kde#465225, kde#465326, kde#464828, kde#465603) * shell: Ensure containments that belong to the current activity are not deleted prior to loading - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Too many changes to list here - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== pngquant ==== Version update (2.17.0 -> 2.18.0) - update to 2.18.0: * build fixes on ARM * small quality improvement ==== polkit-kde-agent-5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - No code changes since 5.26.90 - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Use ecm_set_disabled_deprecation_versions * Install po folder * Remove unused includes ==== poppler ==== Version update (23.01.0 -> 23.02.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 libpoppler126 poppler-tools - Update to version 23.02.0: + core: * CairoOutputDev: . Fix rendering of color type 3 fonts . Add handling matte entry * Fix segfault on wrong nssdir * Fix "NSS could not shutdown" + utils: pdfsig: Point out supports PKCS#11 URIs as nickname ==== poppler-qt5 ==== Version update (23.01.0 -> 23.02.0) - Update to version 23.02.0: + core: * CairoOutputDev: . Fix rendering of color type 3 fonts . Add handling matte entry * Fix segfault on wrong nssdir * Fix "NSS could not shutdown" + utils: pdfsig: Point out supports PKCS#11 URIs as nickname ==== postfix ==== - SELinux: postfix denied to access /var/spool/postfix/pid/master.pid (bsc#1207177) Apply proposed changes in postfix.service - remove patch included into the source: harden_postfix.service.patch - Disable NIS support on Factory (deprecated and will be removed) ==== powerdevil5 ==== Version update (5.26.5 -> 5.27.0) Subpackages: powerdevil5-lang - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * chargethresholdhelper: Filter out batteries without thresholds early (kde#464535) * daemon: Fix wakeup removal not rescheduling the timerfd wakeup BUG: 464251 (kde#464251) - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Changes since 5.26.5: * Handle Button Events: Turn off keyboard backlight when lid is closed (kde#444029) * Do not hardcode ACPI battery names * Use ecm_set_disabled_deprecation_versions * Remove unused KWayland dep * Remove out-of-date infor from kcm docbook * Apply exponential moving average to remaining time when unplugged * powerdevilbackendinterface: run clang-format * Better libddcutil error handling * Install translated documentation from po/ too * Allow triggering critical battery action manually * Choose easing curve based on old and new brightness values * wirelesspowersaving: Reduce calls to NetworkManager::permissions() * DPMS: Port to KScreenDPMS * powerprofileconfig: Use proper signal for detecting user interaction * Add FreeBSD Qt6 CI * Add Linux Qt6 CI * Fix install in kf6/ * Perform initialization in initialization list * Fix compile against qt6 * Install po folder * Set bugReportURL for KCMs ==== prison-qt5 ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5Prison5 prison-qt5-imports - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== psmisc ==== - allow to switch off Apparmor support via bcond ==== pulseaudio ==== Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-setup pulseaudio-utils system-user-pulse - Move dbus-1 system.d file to /usr (bsc#1207584) ==== purpose ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== python-Beaker ==== Version update (1.12.0 -> 1.12.1) - update to 1.12.1: * Fix ext:database backend failing to initialize * Improved inline code documentation for the crypto module ==== python-SQLAlchemy ==== Version update (1.4.45 -> 1.4.46) - update to 1.4.46: * A new deprecation “uber warning” is now emitted at runtime the first time any SQLAlchemy 2.0 deprecation warning would normally be emitted, but the SQLALCHEMY_WARN_20 environment variable is not set. see https://docs.sqlalchemy.org/en/20/changelog/changelog_14.html#change-1.4.46 ==== python-Twisted ==== Subpackages: python310-Twisted python310-Twisted-tls - Add patch support-new-glibc.patch: * Support new glibc changes. ==== python-alembic ==== Version update (1.9.2 -> 1.9.3) - update to 1.9.3: * Fixed issue where rendering of user-defined types that then went onto use the .with_variant() method would fail to render, if using SQLAlchemy 2.0's version of variants. ==== python-cryptography ==== Version update (39.0.0 -> 39.0.1) - Update to 39.0.1: * SECURITY ISSUE - Fixed a bug where Cipher.update_into accepted Python buffer protocol objects, but allowed immutable buffers. CVE-2023-23931 * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.8. ==== python-dnspython ==== Version update (2.2.1 -> 2.3.0) - Update to version 2.3.0 * The get_soa() method has been added to dns.zone.Zone. * The minimum TLS version is now 1.2. * EDNS padding is now supported. Messages with EDNS enabled and with a non-zero pad option will be automatically padded appropriately when converted to wire format. * dns.zone.from_text() and dns.zone.from_file() now have an allow_directives parameter to allow finer control over how directives in zonefiles are processed. * A preliminary implementation of DNS-over-QUIC has been added, and will be available if the aioquic library is present. See dns.query.quic(), dns.asyncquery.quic(), and examples/doq.py for more info. This API is subject to change in future releases For asynchronous I/O, both asyncio and Trio are supported, but Curio is not. * DNSSEC signing support has been added to the dns.dnssec module, along with a number of functions to help generate DS, CDS, and CDNSKEY RRsets. * Curio asynchronous I/O support is deprecated as of this release and will be removed in a future release. * The resolver object’s nameserver field is planned to become a property in dnspython 2.4. Writing to this field other than by direct assignment is deprecated, and so is depending on the mutability and form of the iterable returned when it is read. ==== python-numpy ==== - build-conditionalize cblas dependency, it is missing on SLE <= 15 related to bsc#1177260 not being fixable for SLE15 (jsc#PED-3257) ==== python-pyzmq ==== - skip numy tests for the testsuite on SLE15 ==== python-zope.event ==== Version update (4.5.0 -> 4.6) - update to 4.6: * Port documentation to Python 3. * Add support for Python 3.10, 3.11. ==== qalculate ==== Version update (4.5.0 -> 4.5.1) Subpackages: libqalculate22 qalculate-data - update to 4.5.1: * Fix retrieval of exchange rates from mycurrency.net and add alternative secondary exchange rates sources * Add m/s³, m/s⁴, m/s⁵, and m/s⁶ as derived units (improves automatic unit conversion) * Check that the output of command, in command() function, is a reasonably sane expression * EUR has replaced HRK as currency of Croatia * Fix MathStructure::countTotalChildren() with count_function_as_one set to false * Fix unit tests ==== qemu ==== - Fixes: jsc#PED-1716 Add S390 features from IBM requirements * Patches added: dump-Add-architecture-section-and-sectio.patch dump-Refactor-dump_iterate-and-introduce.patch dump-Reintroduce-memory_offset-and-secti.patch dump-Rename-write_elf_loads-to-write_elf.patch dump-Rename-write_elf-_phdr_note-to-prep.patch dump-Reorder-struct-DumpState.patch dump-Replace-opaque-DumpState-pointer-wi.patch dump-Rework-dump_calculate_size-function.patch dump-Rework-filter-area-variables.patch dump-Rework-get_start_block.patch dump-Split-elf-header-functions-into-pre.patch dump-Use-a-buffer-for-ELF-section-data-a.patch dump-Write-ELF-section-headers-right-aft.patch include-elf.h-add-s390x-note-types.patch s390x-Add-KVM-PV-dump-interface.patch s390x-Add-protected-dump-cap.patch s390x-Introduce-PV-query-interface.patch s390x-pv-Add-dump-support.patch - Fixed: bsc#1205847 (CVE-2022-4172), bsc#1203788 (CVE-2022-3165), bsc#1205808 (CVE-2022-4144), bsc#1206527, bsc#1208139 - Improved handling of: bsc#1202282 (jsc#PED-2592) * Patches dropped: pc-q35-Bump-max_cpus-to-1024.patch * Patches added: accel-abort-if-we-fail-to-load-the-accel.patch bios-tables-test-add-test-for-number-of-.patch bios-tables-test-teach-test-to-use-smbio.patch dmg-warn-when-opening-dmg-images-contain.patch hw-acpi-erst.c-Fix-memory-handling-issue.patch hw-display-qxl-Avoid-buffer-overrun-in-q.patch hw-display-qxl-Document-qxl_phys2virt.patch hw-display-qxl-Have-qxl_log_command-Retu.patch hw-display-qxl-Pass-requested-buffer-siz.patch hw-smbios-add-core_count2-to-smbios-tabl.patch hw-smbios-support-for-type-8-port-connec.patch module-add-Error-arguments-to-module_loa.patch module-removed-unused-function-argument-.patch module-rename-module_load_one-to-module_.patch openSUSE-pc-q35-Bump-max_cpus-to-1024.patch s390x-tod-kvm-don-t-save-restore-the-TOD.patch tests-acpi-allow-changes-for-core_count2.patch tests-acpi-update-tables-for-new-core-co.patch ui-vnc-clipboard-fix-integer-underflow-i.patch ==== qqc2-desktop-style ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Too many changes since 5.102.0, only listing bugfixes: * RadioButton: Add support for icons, just like in CheckBox (kde#442986) ==== re2 ==== Version update (20221201 -> 20230201) - update to 2023-02-01: * improved support for ICU - build with ICU ==== ruby ==== Version update (3.1 -> 3.2) - switch the default ruby to 3.2 ==== ruby-common ==== - do not rely on file dependencies for getopt ==== rust-keylime ==== Version update (0.1.0+git.1672681780.762cec8 -> 0.1.0+git.1676549716.5382ed9) - Drop zmq from the feature set - Remove already merged patches: * 0001-keylime-agent-remove-const_err-deny.patch * 0001-Cargo.toml-tss-esapi-bindings.patch - Update to version 0.1.0+git.1676549716.5382ed9: * Cargo: Update clap minimum version to 3.2 * Cargo: Update uuid minimum version to 1.3 * Cargo: Update tokio minimum version to 1.24 and reduce features * build(deps): bump tss-esapi from 7.1.0 to 7.2.0 * cargo deb: include shim.py in packaging * build(deps): bump thiserror from 1.0.36 to 1.0.38 * keylime-agent.conf: Add comments on how to override options * config: Fix overriding options with env vars * Add missing e2e tests and reordering tests based on alphabetical order * e2e tests: Fix test name * Store associated U keys, auth tags, and payloads together * Refactor ZeroMQ revocation listener to not block * keylime-agent: Gracefully shutdown on SIGINT * Refactor async code for keys and payloads * main: Move payload related functions to payloads module * main: Run ZeroMQ service in a separate task * Remove unused option "openstack" for obtaining uuid * algorithms: fix typo * clippy: fix uninlined_format_args warnings * clippy: fix needless_borrow warnings * crypto, mTLS: allow certificate chain for trusted_client_ca * build(deps): bump base64 from 0.13.0 to 0.13.1 * build(deps): bump serde_json from 1.0.85 to 1.0.91 * build(deps): bump libc from 0.2.133 to 0.2.139 * build(deps): bump bumpalo from 3.11.0 to 3.12.0 * build(deps): bump futures from 0.3.24 to 0.3.25 * Cargo.toml: tss-esapi bindings * packit-ci: Disable Rawhide due to agent compilation issues * packit-ci: Add hotfix for tpm2-tss Fedora BZ#2158598 * keylime-agent: remove const_err deny * build(deps): bump tokio from 1.23.0 to 1.24.2 ==== samba ==== Version update (4.17.4+git.314.7b07e3c51a6 -> 4.17.5+git.320.c38ca0f84a) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3 - Update to 4.17.5 * smbc_getxattr() return value is incorrect; (bso#14808); * Compound SMB2 FLUSH+CLOSE requests from MacOSX are not handled correctly; (bso#15172); * synthetic_pathref AFP_AfpInfo failed errors; (bso#15210); * samba-tool gpo listall fails IPv6 only - finddcs() fails to find DC when there is only an AAAA record for the DC in DNS; (bso#15226); * smbd crashes if an FSCTL request is done on a stream handle; (bso#15236); * DFS links don't work anymore on Mac clients since 4.17; (bso#15277); * vfs_virusfilter segfault on access, directory edgecase (accessing NULL value); (bso#15283); * CVE-2022-38023 [SECURITY] Samba should refuse RC4 (aka md5) based SChannel on NETLOGON (additional changes); (bso#15240); * %U for include directive doesn't work for share listing (netshareenum); (bso#15243); * Shares missing from netshareenum response in samba 4.17.4; (bso#15266); * ctdb: use-after-free in run_proc; (bso#15269); * irpc_destructor may crash during shutdown; (bso#15280); * auth3_generate_session_info_pac leaks wbcAuthUserInfo; (bso#15286); * smbclient segfaults with use after free on an optimized build; (bso#15268); * smbstatus leaking files in msg.sock and msg.lock; (bso#15282); * Leak in wbcCtxPingDc2; (bso#15164); * Access based share enum does not work in Samba 4.16+; (bso#15265); * Crash during share enumeration; (bso#15267); * rep_listxattr on FreeBSD does not properly check for reads off end of returned buffer; (bso#15271); * Avoid relying on C89 features in a few places; (bso#15281); - named crashes on DLZ zone update; (bso#14030); (bsc#1206996); - Drop libnsl build requirement; (bsc#1208220); ==== setools ==== Version update (4.4.0 -> 4.4.1) - Update to version 4.4.1: * Replace deprecated NetworkX function use in information flow and domain transition analysis. This function was removed in NetworkX 3.0. * Fix bug in apol copy and cut functions when copying from a tree view. * Fix bug with extended permission set construction when a range includes 0x0. * Add sesearch -Sp option for permission subset match. * Fix error in man page description for sesearch -ep option. * Improve output stability in constraint, common, class, role, and user queries. * Updated permission map. * Fix bug in sechecker parsing of multiline values. * Other code cleanups not visible to users. ==== shadow ==== Subpackages: libsubid4 login_defs - Update shadow-fix-print-login-timeout.patch - Reorder source files and patches - Remove scripts that claim to be config but are in /usr (boo#1191578) * userdel-script.patch * useradd-script.patch * useradd.local * userdel-post.local * userdel-pre.local ==== signon-kwallet-extension ==== Version update (22.12.1 -> 22.12.2) - Update to 22.12.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/22.12.2/ ==== smartmontools ==== - Catch another invalid state in %post: DRIVEDB_H_RELEASE_SAVED might end up empty ==== snapper ==== Subpackages: libsnapper6 snapper-zypp-plugin - fix use of does_subvolume_exist() (bsc#1207901) - suppress debug logging in zypp-plugin per default - enable SELinux on Fedora and RHEL (gh#openSUSE/snapper#772) - Use libbtrfsutil implementation for BtrfsUtil::get_subvolume - Add build support for libbtrfsutil - Use libbtrfsutil implementation for the following methods: - check if a subvolume exists - create subvolume, snapshot - subvolume read-only check - delete subvolume - set/get default subvolume - filesystem sync ==== solid ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5Solid5 solid-imports solid-tools - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== sonnet ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 sonnet-imports - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Change underscores to spaces in Esperanto trigrams ==== spice-vdagent ==== - Drop allow-enable-on-boot-spice-vdagentd.service.patch. udev takes care of this already. - Don't call systemctl enable in %post, that's what presets are for. - Add 0001-Switch-to-spice-vdagent.service-by-default.patch to allow use of spice-vdagent.service ==== sssd ==== Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap - Move dbus-1 system.d file to /usr (bsc#1207586) ==== sudo ==== Version update (1.9.12p2 -> 1.9.13) Subpackages: sudo-plugin-python - Update to 1.9.13: * Changes in 1.9.13: Fixed a bug running relative commands via sudo when log_subcmds is enabled. GitHub issue #194. Fixed a signal handling bug when running sudo commands in a shell script. Signals were not being forwarded to the command when the sudo process was not run in its own process group. Fixed a bug in the cvtsudoers LDIF parsing when the file ends without a newline and a backslash is the last character of the file. Fixed a potential use-after-free bug with cvtsudoers filtering. GitHub issue #198. Added a reminder to the default lecture that the password will not echo. This line is only displayed when the pwfeedback option is disabled. GitHub issue #195. Fixed potential memory leaks in error paths. GitHub issue #199. GitHub issue #202. Fixed potential NULL dereferences on memory allocation failure. GitHub issue #204. GitHub issue #211. Sudo now uses C23-style attributes in function prototypes instead of gcc-style attributes if supported. Added a new list pseudo-command in sudoers to allow a user to list another user’s privileges. Previously, only root or a user with the ability to run any command as either root or the target user on the current host could use the -U option. This also includes a fix to the log entry when a user lacks permission to run sudo -U otheruser -l command. Previously, the logs would indicate that the user tried to run the actual command, now the log entry includes the list operation. JSON logging now escapes control characters if they happen to appear in the command or environment. New Albanian translation from translationproject.org. Regular expressions in sudoers or logsrvd.conf may no longer contain consecutive repetition operators. This is implementation- specific behavior according to POSIX, but some implementations will allocate excessive amounts of memory. This mainly affects the fuzzers. Sudo now builds AIX-style shared libraries and dynamic shared objects by default instead of svr4-style. This means that the default sudo plugins are now .a (archive) files that contain a .so shared object file instead of bare .so files. This was done to improve compatibility with the AIX Freeware ecosystem, specifically, the AIX Freeware build of OpenSSL. Sudo will still load svr4-style .so plugins and if a .so file is requested, either via sudo.conf or the sudoers file, and only the .a file is present, sudo will convert the path from plugin.so to plugin.a(plugin.so) when loading it. This ensures compatibility with existing configurations. To restore the old, pre-1.9.13 behavior, run configure using the –with-aix-soname=svr4 option. Sudo no longer checks the ownership and mode of the plugins that it loads. Plugins are configured via either the sudo.conf or sudoers file which are trusted configuration files. These checks suffered from time-of-check vs. time-of-use race conditions and complicate loading plugins that are not simple paths. Ownership and mode checks are still performed when loading the sudo.conf and sudoers files, which do not suffer from race conditions. The sudo.conf developer_mode setting is no longer used. Control characters in sudo log messages and sudoreplay -l output are now escaped in octal format. Space characters in the command path are also escaped. Command line arguments that contain spaces are surrounded by single quotes and any literal single quote or backslash characters are escaped with a backslash. This makes it possible to distinguish multiple command line arguments from a single argument that contains spaces. Improved support for DragonFly BSD which uses a different struct procinfo than either FreeBSD or 4.4BSD. Fixed a compilation error on Linux arm systems running older kernels that may not define EM_ARM in linux/elf-em.h. GitHub issue #232. Fixed a compilation error when LDFLAGS contains -Wl,–no-undefined. Sudo will now link using -Wl,–no-undefined by default if possible. GitHub issue #234. Fixed a bug executing a command with a very long argument vector when log_subcmds or intercept is enabled on a system where intercept_type is set to trace. GitHub issue #194. When sudo is configured to run a command in a pseudo-terminal but the standard input is not connected to a terminal, the command will now be run as a background process. This works around a problem running sudo commands in the background from a shell script where changing the terminal to raw mode could interfere with the interactive shell that ran the script. GitHub issue #237. A missing include file in sudoers is no longer a fatal error unless the error_recovery plugin argument has been set to false. ==== suse-module-tools ==== Version update (16.0.28 -> 16.0.29) Subpackages: suse-module-tools-scriptlets - Update to version 16.0.29: * modprobe.conf: s390x: remove softdep on fbcon (boo#1207853) ==== syndication ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== syntax-highlighting ==== Version update (5.102.0 -> 5.103.0) Subpackages: libKF5SyntaxHighlighting5 syntax-highlighting-imports - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - Changes since 5.102.0: * Log: fix slow search regex ; add Critical section ; some improvement in Log File (advanced) (kde#464424) * Cobol: add extensions ; add exec sql block ; picture clause more permissive * Cobol: replace tab with 2 spaces * Add Zig language * Add Cabal syntax * Add Log File syntax * avoid copies of Theme and QString in functions that manipulate themes * FormatPrivate now contains a definition name rather than a reference to a definition * add noexcept * Theme::m_data is now always initialized with a valid pointer * optimize ThemeData::textStyleOverride * Replace DefinitionRef in StateData with a definition id * Add COBOL syntax * Indexer: suggest more minimal=1 or other rule for RegExpr with lookhaed=1 and .* * Indexer: check xml validity * feat: Add new syntax for `Earthfile` ==== systemd ==== Version update (252.4 -> 252.5) Subpackages: libsystemd0 libudev1 systemd-doc udev - Import commit d87834a33444b7163e741e1089e82b44af663808 (merge of v252.5) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/5a506d73bde7ba9261985f8e9ce084044a519432...d87834a33444b7163e741e1089e82b44af663808 - Move the bash completion support for systemd-cryptenroll in udev. - systemd-testsuite: move the integration tests in a dedicated sub directory. - machines.target belongs to systemd-container, do its init/cleanup steps from the scriptlets of this sub-package. ==== systemd-presets-branding-MicroOS ==== Version update (20200323 -> 20230214) - Correct spelling of transactional-update-notifier.service in 50-default-MicroOS-user.preset - 20230214 - Introduce 50-default-MicroOS-user.preset to allow Systemd user units for MicroOS users - Add transactional-update-notifier Systemd user unit to default user preset. This will allow MicroOS Desktop users to have Desktop notifications about transactional updates either succeeding or failing. The D-Bus service in use have been audited already (boo#1206163). - 20230130 ==== systemsettings5 ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * sidebar: Use a proper checked state for the menu button (kde#464536) * Make external apps clickable in search results (kde#464491) * Sidebar: Move final trailing separator out of main layout * Remove unused KF5ActivitiesStats dependency - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== tcl ==== - bsc#1203982, tcl-interp-limit-time.patch: Fix a y2k38 problem in [interp limit -time] . ==== texinfo ==== Version update (7.0.1 -> 7.0.2) Subpackages: info info-lang info-std - texinfo 7.0.2: * texi2any: do not distribute architecture-dependent files * info: further fix of recoding of UTF-8 files to ASCII * install-info: build fixes ==== threadweaver ==== Version update (5.102.0 -> 5.103.0) - Update to 5.103.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.103.0 - No code change since 5.102.0 ==== tigervnc ==== Version update (1.12.0 -> 1.13.0) Subpackages: libXvnc1 xorg-x11-Xvnc xorg-x11-Xvnc-module - A little cleanup of specfile - Update to tigervnc 1.13.0 * The servers and native viewer now support RealVNC's RSA-AES authentication methods and encryption * The native viewer is now translated to Romanian and Georgian * The native viewer now (optionally) supports PiKVM's H.264 encoding * The display settings for the native viewer have been overhauled to make them easier to understand * The native viewer now supports adding exceptions for expired certificates * Resolved an issue where full-screen mode didn't work in the native viewer on macOS 13 * Lock key synchronization has been re-enabled in the native viewer after being accidentally disabled in 1.11.0 * Xvnc/libvnc.so can now be built with Xorg 1.21 * x0vncserver is a bit better at handling differing server and client keyboard layout * x0vncserver now correctly handles zaphod mode - Removed patches (no longer needed): * tigervnc-newfbsize.patch (https://github.com/TigerVNC/tigervnc/pull/13) * n_utilize-system-crypto-policies.patch (https://github.com/TigerVNC/tigervnc/pull/1262) * xserver211.patch & u_tigervnc-211.patch (https://github.com/TigerVNC/tigervnc/pull/1383) - Refreshed patches: * n_tigervnc-date-time.patch * n_vncserver.patch * u_change-button-layout-in-ServerDialog.patch ==== tpm2-0-tss ==== Version update (3.2.0 -> 4.0.1) Subpackages: libtss2-esys0 libtss2-fapi1 libtss2-mu0 libtss2-rc0 libtss2-sys1 libtss2-tcti-device0 libtss2-tctildr0 - Drop 0001-tss2_rc-ensure-layer-number-is-in-bounds.patch as was already merged upstream - Update to 4.0.1 + Fixed: * A buffer overflow in tss2-rc as CVE-2023-22745. - Update to 4.0.0 + Fixed: * tcti-ldr: Use heap instead of stack when tcti initialize * Fix usage of NULL pointer if Esys_TR_SetAuth is calles with ESYS_TR_NONE. * Conditionally check user/group manipulation commands. * Store VERSION into the release tarball. * When using DESTDIR for make einstall, do not invoke systemd-sysusers and systemd-tmpfiles. * esys_iutil: fix possible NPD. * Tss2_Sys_Flushcontext: flushHandle was encoded as a handleArea handle and not as parameter one, this affected the contents of cpHash. * esys: fix allow usage of HMAC sessions for Esys_TR_FromTPMPublic. * fapi: fix usage of policy_nv with a TPM nv index. * linking tcti for libtpms against tss2-tctildr. It should be linked against tss2-mu. * build: Remove erroneous trailing comma in linker option. Bug [#2391]. * fapi: fix encoding of complex tpm2bs in authorize nv, duplication select and policy template policies. Now the complex and TPMT or TPMS representations can be used. Bug #2383 * The error message for unsupported FAPI curves was in hex without a leading 0x, make it integer output to clarify. * Documentation that had various scalar out pointers as "callee allocated". * test: build with opaque FILE structure like in musl libc. * Transient endorsement keys were not recreated according to the EK credential profile. * Evict control for a persistent EK failed during provisioning if an auth value for the storage hierarchy was set. * The authorization of the storage hierarchy is now added. Fixes FAPI: Provisioning error if an auth value is needed for the storage hierarchy #2438. * Usage of a second profile in a path was not possible because the default profile was always used. * The setting of an empty auth value for Fapi_Provision was fixed. * JSON encoding of a structure TPMS_POLICYAUTHORIZATION used the field keyPEMhashAlg instead of hashAlg as defined in "TCG TSS 2.0 JSON Data Types and Policy Language Specification". Rename to hashAlg but preserve support for reading keyPEMhashAlg for backwards compatibility. * fapi: PolicySecret did not work with keys as secret object. * Esys_PCR_SetAuthValue: remembers the auth like other SetAutg ESAPI functions. * tests: esys-pcr-auth-value.int moved to destructive tests. * FAPI: Fix double free if keystore is corrupted. * Marshaling of TPMU_CAPABILITIES data, only field intelPttProperty was broken before.a * Spec deviation in Fapi_GetDescription caused description to be NULL when it should be empty string. This is API breaking but considered a bug since it deviated from the FAPI spec. * FAPI: undefined reference to curl_url_strerror when using curl less than 7.80.0. * FAPI: Fixed support for EK templates in NV inidices per the spec, see #2518 for details. * FAPI: fix NPD in ifapi_curl logging. * FAPI: Improve documentation fapi-profile * FAPI: Fix CURL HTTP handling. * FAPI: Return FAPI_RC_IO_ERROR if a policy does not exist in keystore. + Added: * TPM version 1.59 support. * ci: ubuntu-22.04 added. * mbedTLS 3.0 is supported by ESAPI. * Add CreationHash to JSON output for usage between applications not using the FAPI keystore, like command line tools. * Reduced code size for SAPI. * Support for Runtime Switchable ESAPI Crypto Backend via Esys_SetCryptoCallbacks. * Testing for TCG EK Credential Profile TPM 2.0, Version 2.4 Rev. 3, 2021 for the low and high address range of EK templates. * tss2-rc: Tss2_RC_DecodeInfo function for parsing TSS2_RC into the various bit fields. * FAPI support for P_ECC384 profile. * tss2-rc: Tss2_RC_DecodeInfoError: Function to get a human readable error from a TSS2_RC_INFO returned by Tss2_RC_DecodeInfo * tcti: Generic SPI driver, implementors only need to connect to acquire/release, transmit/receive, and sleep/timeout functions. * FAPI: Add event logging for Firmware and IMA Events. See #2170 for details. * FAPI: Fix Fapi_ChangeAuth updates on hierarchy objects not being reflected across profiles. * FAPI: Allow keyedhash keys in PolicySigned. * ESAPI: Support sha512 for mbedtls crypto backend. * TPM2B_MAX_CAP_BUFFER and mu routines * vendor field to TPMU_CAPABILTIIES * FAPI: support for PolicyTemplate + Changed * libmu soname from 0:0:0 to 0:1:0. * tss2-sys soname from 1:0:0 to 1:1:0 * tss2-esys: from 0:0:0 to 0:1:0 ... changelog too long, skipping 6 lines ... * Dead code Tss2_MU_TPMS_ALGORITHM_DESCRIPTION_Unmarshal ==== tpm2.0-tools ==== Version update (5.4 -> 5.5) - Update to version 5.5 + Added: * tpm2_createek: SM2 EK Support * misc: SM2 support to internal OSSL format key routines. Fixes - -format flags for conversions. + Fixed: * echo_tcti.py: set to use python3 named executable in shebang. - Drop already merged patches + fix_bogus_warning.patch + echo_tcti_call_python3_binary.patch ==== transactional-update ==== Version update (4.1.2 -> 4.1.3) Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit - Version 4.1.3 - Suppress SELinux relabelling output in quiet mode - Documentation readability improvements ==== transactional-update-notifier ==== Version update (1.1.0 -> 1.1.0.2) - v1.1.0.2 * Make notifications a little less urgent ==== tree ==== Version update (2.0.4 -> 2.1.0) - tree 2.1.0: * Add support for --info and --gitignore for the --fromfile option. (Suggested by Piotr Andruszkow) * Add options --infofile and --gitfile to load .info and .gitignore files explicitly. Each implies --info or --gitignore respectively. * Add NULL guard for json_printinfo() and xml_printinfo() (and fix ftype printing for XML) (Kenta Arai) * Fix getcharset() to not return a getenv() pointer (fix for ENV34-C issue.) (Kenta Arai) * Another attempt at fixing extraneous /'s in HTML URLs/output. (Sebastian Rose) * Fixed XML output (Dave Rice) * Remove the (very outdated) French version of the manpage. Look to localization projects such as Debian's 'manpages-l10n' for localized translations. (hmartink) * Add support for the NO_COLOR environment variable (https://no-color.org/). Equivalent to the -n option (can be still be overridden with -C). (Timm Fitschen) * Removed many C99isms to enable compiling on C90 compilers with fewer warnings. (Sith Wijesinghe and Matthew Sessions) It should not be necessary to avoid using a standard that is old enough to drink, furthermore it is all but impossible to remove the remaining warnings and have modern features like compound literals. In the meantime I've added - std=c11 to the default CFLAGS for Linux and will likely not worry about C90 compatibility going forward unless there is some other reason for it. * Added a helper function for long command line arguments to clean up option processing (and fixes the processing for a few of the options such as - -timefmt= (наб?).) * Added --hintro and --houtro options to select files to use as the HTML intro and outro. Use /dev/null or an empty file to eliminate them entirely. This should make it much easier to create your own custom CSS or embed one or more trees into a web page. * Defer printing the version until the character set is known so we can use the linedraw copyright symbol. * Revert change to the error code to not return an error (code 2) when attempting to list a non-directory that actually exists. Tree will still return an error when attempting to list a non-existing directory/file. * Added option --fflinks which will process symbolic link information from a file generated with 'tree -if --noreport' when using --fromfile. (Suggested by Chentao Credungtao) * Updated the totals reporting code to also include in the total the file or directory that is being listed. This should make a correct report when doing something like 'tree *'. ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Remove requires for adjtimex, which and time: this where wrongly implemented split provides we don't need anymore. - Remove pam_lastlog, not Y2038 safe, will be removed upstream. Additional tools update the files themself. - Readd hwclock.8 manual page. - Move permissions pre-require to correct package. - Remove install_info_prereq, we have no info pages. - clean up spec file, tag all the %if-endif to make it easy to read the file and try to simplify a bit the if-endif logic grouping by core, systemd and python. ==== util-linux-systemd ==== - Remove requires for adjtimex, which and time: this where wrongly implemented split provides we don't need anymore. - Remove pam_lastlog, not Y2038 safe, will be removed upstream. Additional tools update the files themself. - Readd hwclock.8 manual page. - Move permissions pre-require to correct package. - Remove install_info_prereq, we have no info pages. - clean up spec file, tag all the %if-endif to make it easy to read the file and try to simplify a bit the if-endif logic grouping by core, systemd and python. ==== vim ==== Version update (9.0.1234 -> 9.0.1307) Subpackages: vim-data vim-data-common vim-small - Add patch vim-fix-sh-syntax.patch which fixes broken sh syntax. - Updated to version 9.0.1307, fixes the following problems * Crash when using search stat in narrow screen. * Using sizeof() and subtract array size is tricky. * Typo in pattern for filetype detection. * "1v" may select block with wrong size. (Evgeni Chasnovski) * FIRRTL files are not recognized. * The code for setting options is too complicated. * Some mappings with Meta and Shift do not work. * Cursor may move with autocmd in Visual mode. * go.work.sum files are not recognized. * Display shows lines scrolled down erroneously. (Yishai Lerner) * Inssufficient testing for what 9.0.1265 fixes. * Cadence files are not recognized. * Ron files are not recognized. * The code for setting options is too complicated. * Compiler warnings for uninitialized variables. (Tony Mechelynck) * Various small problems. * Coverity warns for using a NULL pointer. * With the Kitty key protocl Esc with NumLock cannot be mapped. * FunC files are not recognized. * A newer version of clang can be used for CI. * CTRL-N and -P on cmdline don't trigger CmdlineChanged. * Move language files are not recognized. * :defer may call the wrong method for an object. (Ernie Rael) * The set_num_option() is too long. * The set_bool_option() function is too long. * The option initialization function is too long. * Calling an object method with arguments does not work. (Ernie Rael) * Wrong value for $LC_CTYPE makes the environ test fail. * Inserting a register on the command line does not trigger incsearch or update hlsearch. * Change for triggering incsearch not sufficiently tested. * 'statusline' only supports one "%=" item. * Virtual text below empty line not displayed. * On a Belgian keyboard CTRL-] does not work. * Motif: scrollbar width/height wrong when maximized. * "$" for 'list' option displayed in wrong position when there are text properties. * Cursor in wrong line with virtual text above. * No regression test for solved problem of #11959. * Setting 'formatoptions' with :let doesn't check for errors. - Updated to version 9.0.1270, fixes the following problems * The code style has to be checked manually. * MS-Windows console: not flushing termguicolors. * Code in same_leader() can be simplified. * Code is indented more than necessary. * :runtime completion can be further improved. * Cannot have a line break before an object member access. * Cannot access a private object member in a lambda defined inside the class. * Coverity warns for not checking function return value. * Code for :runtime completion is not consistent. * :setglobal cannot use script-local function for "expr" option. * Cursor briefly displayed in a wrong position when pressing Esc in Insert mode after autoindent was used. * Code is indented more than necessary. * Code is indented more than necessary. * Divide by zero with 'smoothscroll' set and a narrow window. * Cannot export an interface. (Ernie Rael) * Cannot export an abstract class. (Ernie Rael) * Cannot use an object method with :defer. (Ernie Rael) * Checking returned value of ga_grow() is inconsistent. * MS-Windows: scrollback cropped off on Vim exit. * Calling a method on an interface does not work. * Changing 'virtualedit' does not have immediate effect. * NetworkManager connection files are not recognized. * Code style is not check in test scripts. * Code style test fails. * Diffmode test fails. * Coverity warns for possible NULL pointer usage. * Elsa files are not recognized. * The did_set_string_option function is too long. * KDL files are not recognized. * Motif: compiler warning for unused argument. * Using an interface method may give a compilation error. * Error for space before ": type" is inconsistent. * The did_set_string_option function is too long. * .clangd and .stylelintrc files don't get a filetype. ==== vte ==== Version update (0.70.2 -> 0.70.3) - Update to version 0.70.3: + widget: - Ensure the ringview is updated before converting coordinates - gtk4: Translate control+key events when using multiple layouts - Use correct end row for getting the selected text - Drop ddb2c8a.patch: Fixed upstream. ==== vulkan-loader ==== Version update (1.3.236.0 -> 1.3.239.0) - Update to release SDK-1.3.239.0 * layers: update documentation to make it clear the VK_LAYER_PATH supports both explicit directories and files * layers: modify TestLayerDetails so either files or directories can be set on VK_LAYER_PATH env var ==== vulkan-tools ==== Version update (1.3.236.0 -> 1.3.239.0) - Add baselibs.conf. This is useful as 64- and 32-bit vulkan environments need separate drivers and need to be diagnosed separately. - Update to release SDK-1.3.239.0 * No end-user visible changes ==== webkit2gtk3 ==== Version update (2.38.3 -> 2.38.5) Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Update to version 2.38.5 (boo#1208328): + Fix large memory allocation when uploading content. + Fix scrolling after a history navigation with PSON enabled. + Always update the active uri of WebKitFrame. + Fix the build on Ubuntu 20.04. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-23529. - Update to version 2.38.4 (boo#1207997): + Improve GStreamer multimedia playback across the board with improved codec selection logic, better handling of latency, and improving frame discard to avoid audio/video desynchronizationg, among other fixes. + Disable HLS media playback by default, which makes web sites use MSE instead. If needed WEBKIT_GST_ENABLE_HLS_SUPPORT=1 can be set in the environment to enable it back. + Disable threaded rendering in GTK4 builds by default, as it was causing crashes. + Fix MediaSession API not showing artwork images. + Fix MediaSession MPRIS usage when running inside a Flatpak sandbox. + Fix input element controls to correctly scale when applying a zoom factor different than the default. + Fix leakage of Web processes in certain situations. + Fix the injected bundle not being found when running inside a sandbox. + Fix the build with ENABLE_INTROSPECTION when cross-compiling. + FIx the build with ENABLE_WEBGL disabled. + Fix the build with GStreamer-based WebRTC enabled. + Fix the build with USE_GTK4 enabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-23517, CVE-2023-23518, CVE-2022-42826. ==== webkit2gtk4 ==== Version update (2.38.3 -> 2.38.5) Subpackages: libjavascriptcoregtk-5_0-0 libwebkit2gtk-5_0-0 webkit2gtk-5_0-injected-bundles - Update to version 2.38.5 (boo#1208328): + Fix large memory allocation when uploading content. + Fix scrolling after a history navigation with PSON enabled. + Always update the active uri of WebKitFrame. + Fix the build on Ubuntu 20.04. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-23529. - Update to version 2.38.4 (boo#1207997): + Improve GStreamer multimedia playback across the board with improved codec selection logic, better handling of latency, and improving frame discard to avoid audio/video desynchronizationg, among other fixes. + Disable HLS media playback by default, which makes web sites use MSE instead. If needed WEBKIT_GST_ENABLE_HLS_SUPPORT=1 can be set in the environment to enable it back. + Disable threaded rendering in GTK4 builds by default, as it was causing crashes. + Fix MediaSession API not showing artwork images. + Fix MediaSession MPRIS usage when running inside a Flatpak sandbox. + Fix input element controls to correctly scale when applying a zoom factor different than the default. + Fix leakage of Web processes in certain situations. + Fix the injected bundle not being found when running inside a sandbox. + Fix the build with ENABLE_INTROSPECTION when cross-compiling. + FIx the build with ENABLE_WEBGL disabled. + Fix the build with GStreamer-based WebRTC enabled. + Fix the build with USE_GTK4 enabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-23517, CVE-2023-23518, CVE-2022-42826. ==== wicked ==== Subpackages: wicked-service - bond: workaround 6.1 kernel enslave regression (boo#1206674) The kernel bond enslave rtnetlink message processing changed breaking an `ip link set down master bond0 dev eth0` like enslave which worked with all kernels from 4.12 up to 6.0. [+ 0001-bond-workaround-6.1-enslave-regression-boo-1206674.patch] ==== xdg-desktop-portal-kde ==== Version update (5.26.5 -> 5.27.0) - Update to 5.27.0 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.0 - Changes since 5.26.90: * fix streams not being ended correctly (kde#465302) * Fix segfault crash: capture QStringList variable by value * notifications: Do not crash as notifications get removed (kde#464549) * Fix condition for cmake feature - Update to 5.26.90 * New feature release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.90 - Too many changes to list here ==== xdg-user-dirs ==== - Add patch to provide a systemd user service (gh#systemd/systemd#18791, boo#1201728): * 0001-Add-a-systemd-service-to-run-xdg-user-dirs-update.patch ==== xkeyboard-config ==== Version update (2.37 -> 2.38) - Update to version 2.38 * Add Russian layout with typographic symbols * Update symbols/ru * symbols/us: uncomment the nine keys in the international Dvorak layout * symbols/bg: reduce the "enhanced" layout to an include + three overrides * symbols/epo: reshuffle a comment, and drop unneeded key types * replace some Unicode codes with their corresponding symbol name * symbols/no: add missing symbols to Sami layout, and remove duplicates * symbols/no: add non-dead grave and such to Sami layout, and reshuffle * Add apple:jp_oadg109a and apple:jp_pc106 variants * Added Gujarati KaGaPa layout (guj-kagapa) * Update base.xml * rules: add option 'swap_ralt_rctl' * prerelease push, for translations * Handy script for publishing * Making ru(typo) more consistent with existing variants * Prerelease translation sync * fix rx-51 third level modifier * Add Latvia Modern Cyrillic keyboard layout * add colemak_dh_ortho * Add `trademark` to level4 of us-intl layout * dv-intl: add placeholder chars to lvl3+, bind LSGT ==== xorg-x11-server ==== Version update (21.1.6 -> 21.1.7) Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - Update to version xorg-server-21.1.7: * This release contains the fix for CVE-2023-0494 in today's security advisory: https://lists.x.org/archives/xorg-announce/2023-February/003320.html It also fixes a second possible OOB access during EnqueueEvent and a crasher caused by ResourceClientBits not correctly honouring the MaxClients value in the configuration file. - supersedes U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch, U_xorg-server-oob-read-enqueue-event.patch - U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch * DeepCopyPointerClasses use-after-free (CVE-2023-0494, ZDI-CAN-19596, bsc#1207783) ==== xterm ==== Version update (377 -> 378) Subpackages: xterm-bin xterm-resize - update to 378: * improve descriptions of XTQMODKEYS and XTQALLOWED features in ctlseqs.ms (reports by Bram Moolenaar, Thomas Wolff). * add bracketed+paste and report+version building blocks to terminfo, from ncurses 6.4 * improve check for unsupported formatting characters, e.g., zero-width space, to properly ignore them (report by Thomas Wolff). * improve/document error-checking for some of the controls which return responses: DECRQSS, XTGETXRES, XTSETTCAP, XTGETTCAP (prompted by discussion with David Leadbeater). * improve limit-checks for fallback font cache (report by Dimitrije Erdeljan). * improve check for too-wide glyph in fallback font by allowing xterm to continue searching for a suitable font rather than just failing on the first. Also add limitFontWidth to allow changing the amount by which a glyph must extend outside the font's bounding box to disallow it. ==== xwayland ==== Version update (22.1.7 -> 22.1.8) - Update to version 22.1.8 * This release contains the fix for CVE-2023-0494 in today's security advisory: https://lists.x.org/archives/xorg-announce/2023-February/003320.html * It also fixes a second possible OOB access during EnqueueEvent. - supersedes U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch - improved summary and description - added requires to xkeyboard-config - added recommends to xorg-x11-fonts-core - removed unused 'package' section - U_Xi-fix-potential-use-after-free-in-DeepCopyPointerCl.patch * DeepCopyPointerClasses use-after-free (CVE-2023-0494, ZDI-CAN-19596, bsc#1207783) ==== yast2 ==== Version update (4.5.22 -> 4.5.24) Subpackages: yast2-logs - Allow dir:///foo to equal dir:/foo (bsc#1207239) - 4.5.24 - DnsServerApi: drop module. It should never be in yast2 as it import module from yast2-dns-server. And now dns-server is going to be dropped (bsc#1205363) - 4.5.23 ==== yast2-bootloader ==== Version update (4.5.7 -> 4.5.8) - make secure boot for ppc64 consistent with how secure boot works on other architectures (bsc#1206295) - 4.5.8 ==== yast2-network ==== Version update (4.5.15 -> 4.5.16) - Fix calling method read on nil crash in bootloader caused by not restoring SCR chroot in save_network client when running in autoyast (bsc#1207968) - 4.5.16 ==== yast2-packager ==== Version update (4.5.13 -> 4.5.15) - Ruby 3.2: Change a test to treat dir:///foo equal to dir:/foo (bsc#1207239) - 4.5.15 - Prevent crash if nil dependencies instead of [] (bsc#1208068) - 4.5.14 ==== yast2-samba-client ==== Version update (4.5.2 -> 4.5.3) - Add join option for enabling group policy; (bsc#1207604). - 4.5.3 ==== zenity ==== Version update (3.43.0 -> 3.44.0) - Update to version 3.44.0: + scale: set a page increment so mouse wheel can be used on widget. + build: - Use GNOME module post_install(). - Replace deprecated functions. + docs: Fix incorrect markup. + Updated translations.