Packages changed: PackageKit (1.2.2 -> 1.2.4) aaa_base (84.87+git20210823.4c98889 -> 84.87+git20211102.80d7177) avahi boost-base busybox (1.33.1 -> 1.34.1) cairo cpio dnf (4.8.0 -> 4.10.0) findutils gawk (5.1.0 -> 5.1.1) gdk-pixbuf glib2 (2.70.0 -> 2.70.1) haproxy (2.4.7+git0.b5e51a5e2 -> 2.4.8+git0.d1f8d41e0) ima-evm-utils (1.3.2 -> 1.4) installation-images-MicroOS (17.15 -> 17.16) kernel-firmware (20210928 -> 20211027) kmod kustomize libdnf (0.63.1 -> 0.65.0) libfido2 (1.8.0 -> 1.9.0) librsvg (2.52.2 -> 2.52.3) libsoup2 (2.74.0 -> 2.74.1) libxml2 libzypp (17.28.6 -> 17.28.7) nfs-utils open-iscsi pam patterns-base patterns-containers patterns-microos python-Pillow (8.3.2 -> 8.4.0) python-PyJWT (2.1.0 -> 2.3.0) python-SQLAlchemy (1.4.22 -> 1.4.26) python-chardet python-matplotlib (3.4.2 -> 3.4.3) python-pyOpenSSL (20.0.1 -> 21.0.0) python-urllib3 (1.26.6 -> 1.26.7) qemu rpm selinux-policy snappy tar timezone (2021d -> 2021e) wget (1.21.1 -> 1.21.2) wicked (0.6.66 -> 0.6.67) === Details === ==== PackageKit ==== Version update (1.2.2 -> 1.2.4) Subpackages: PackageKit-backend-dnf libpackagekit-glib2-18 - Update to version 1.2.4: + Libraries: - Add specific error code when user declined interaction - Avoid spurious GObject::notify signal emissions - Correct 'cancellable' use in pk_client_repair_system_async() - Fix a leak on calling set_locale() a second time - Fix a possible use-after-free under pk_client_cancel_cb() - Improve thread safety on an operation cancellation + Backends: - dnf: . Read update information also when getting list of updates . Honor install_weak_deps=False if it is there . Use 'hy_query_get_advisory_pkgs', if available + New Features: - PkDetails: Add 'download-size' property - PkPackage: Add update severity property + Bugfixes: - Let the finish understand the 'cancelled' exit code - Make backends that use pk-backend-spawn work (#477) - Only set polkit interactive flag if method call has too - Changes from version 1.2.3: + Backends: - alpm: . Add post transaction hook . Rename errno to alpm_err to avoid name clashes - aptcc: Auto-remove old kernels, unless configured otherwise - dnf: Add support for coercing upgrade to distupgrade - zypp: . Make sure pool is initialized at the beginning of some methods . Reset update mode after getting updates + Bugfixes: - Append to cron log instead of overwriting it - Cancel a transaction if calling Cancel fails or the daemon disappears - Do not crash when calling pk_dbus_get_uid() before D-Bus is setup - Fix all compiler warnings - Fix multilib conflicts in generated pk-enum-types.h - Free scheduler array correctly again - Remove large transaction size sanity check - Drop patches fixed upstream: + PackageKit-zypp-cleanup-tmp-files.patch + PackageKit-zypp-reset-update-mode-after-get-updates.patch + PackageKit-dnf-Add-support-for-coercing-upgrade-to-distupgrade.patch + PackageKit-zypp-initialize-pool.patch + PackageKit-remove-transaction-size-limit.patch + PackageKit-cancel-transaction-if-daemon-disappears.patch + PackageKit-dnf-ignore-weak-deps.patch - Add 505.patch: pk-offline: Add flags to D-Bus invoking methods. That's currently to be able to set whether the method should be interactive or not. The old functions call the methods as non-interactive. - Remove obsolete translation-update-upstream support (jsc#SLE-21105). ==== aaa_base ==== Version update (84.87+git20210823.4c98889 -> 84.87+git20211102.80d7177) - Update to version 84.87+git20211102.80d7177: * Add $HOME/.local/bin to PATH, if it exists (bsc#1192248) * Avoid tcsh undefined LANG variable (boo#1190142) ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 - Change %python38_version_nodots to %suse_version which is compatible with Leap and SLE. See also: https://github.com/openSUSE/python-rpm-macros/issues/107 ==== boost-base ==== Subpackages: boost-license1_77_0 libboost_thread1_77_0 - Fix boost nowide development not requiring the library itself ==== busybox ==== Version update (1.33.1 -> 1.34.1) - Disable crc32 to avoid conflict with perl-Archive-Zip (until some project really requires crc32) - Build busybox-warewulf3 for i586 as well. This allowes to set up i586 nodes. - Enable fdisk (jsc#CAR-16) - Add testsuite-gnu-echo.patch: testing.sh to use GNU echo - Remove the duplicated config entries and construct the snippets on the fly based on the main config. This way it's easier to keep track of what's different - Update to 1.34.1: * build system: use SOURCE_DATE_EPOCH for timestamp if available * many bug fixes and new features * touch: make FEATURE_TOUCH_NODEREF unconditional ==== cairo ==== Subpackages: libcairo-gobject2 libcairo2 - Add upstream patch + cairo-do-not-override-explicitly-requested-grayscale-aa.patch Do not replace explicitly set applications settings by user settings for font antialiasing. See: https://gitlab.freedesktop.org/cairo/cairo/-/merge_requests/114 ==== cpio ==== - Update keyring ==== dnf ==== Version update (4.8.0 -> 4.10.0) - Update 4.10.0 + Add support for autodetecting packages to be excluded from being installed as weak dependencies (rh#1699672) + Add support for excluding packages to be installed as weak dependencies (rh#1699672) + Add fail_fast parameter to download_payloads methods for use in reposync + Acquire all relevant locks during "dnf clean" + API: Raise CompsError when group/env not found in install_group and install_environment (rh#1947958) + [API] Add method "set_or_append_opt_value" to BaseConfig (rh#1967925) + Add aliases for commands: info, updateinfo, provides (rh#1938333) + Add report about demodularized rpms into module info (rh#1805260) + Remove DNSSEC errors on COPR group email keys + Documentation inprovements - rh#1938352, rh#1993899, rh#1963704 ==== findutils ==== - gnulib-port-year2038-to-glibc-2.34.patch: Add patch to avoid build failure regarding 64-bit time_t on i586 with glibc-2.34. - findutils.spec: Reference it, and add BR:automake and run 'autoreconf'. While at it, remove obsolete condition for suse_version 1100. - findutils-xautofs.patch: Refresh. ==== gawk ==== Version update (5.1.0 -> 5.1.1) - GNU awk 5.1.1 * asort and asorti now allow FUNCTAB and SYMTAB as the first argument if a second destination array is supplied. Similarly, using either array as the second argument is now a fatal error. Additionally, using either array as the destination for split(), match(), etc. also causes a fatal error. * The new -I/--trace option prints a trace of the byte codes as they are executed. * A number of subtle bugs relating to MPFR mode that caused differences between regular operation and MPFR mode have been fixed. * The API now handles MPFR/GMP values slightly differently, requiring different memory management for those values. * $0 and the fields are now cleared before starting a BEGINFILE rule. * Handling of Infinity and NaN values has been improved * The "no effect" lint warnings have been fixed up and now behave more sanely. * The behavior of strongly-typed regexp constants when passed as the third argument to sub() or gsub() has been clarified in the code and in the manual. * Similar to item #4 above, division by zero is now fatal in MPFR mode, as it is in regular mode. ==== gdk-pixbuf ==== Subpackages: gdk-pixbuf-query-loaders libgdk_pixbuf-2_0-0 - Stop passing no longer used nor recognized options jasper=false and x11=false to meson, fails the build when using meson 0.60.x. - Remove obsolete translation-update-upstream support (jsc#SLE-21105). ==== glib2 ==== Version update (2.70.0 -> 2.70.1) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.70.1: + Fix network changes not being signalled from NetworkManager. + Fix build when building with --fatal-meson-warnings. + Bugs fixed: glgo#GNOME/GLib#2505, glgo#GNOME/GLib!2245, glgo#GNOME/GLib!2253, glgo#GNOME/GLib!2256, glgo#GNOME/GLib!2259, glgo#GNOME/GLib!2262, glgo#GNOME/GLib!2271, glgo#GNOME/GLib!2276, glgo#GNOME/GLib!2300, glgo#GNOME/GLib!2301, glgo#GNOME/GLib!2302, glgo#GNOME/GLib!2304. - Refresh patches with quilt. ==== haproxy ==== Version update (2.4.7+git0.b5e51a5e2 -> 2.4.8+git0.d1f8d41e0) - Update to version 2.4.8+git0.d1f8d41e0: * [RELEASE] Released version 2.4.8 * SCRIPTS: git-show-backports: re-enable file-based filtering * DOC/peers: some grammar fixes for peers 2.1 spec * MINOR: stream: Improve dump of bogus streams * BUILD/MINOR: cpuset freebsd build fix * DOC: config: Fix alphabetical order of fc_* samples * BUG/MINOR: sample: fix backend direction flags consecutive to last fix * BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags * BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data * BUG/MINOR: http: Authorization value can have multiple spaces after the scheme * BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration * MINOR: halog: Add support for extracting captures using -hdr * BUG/MINOR: halog: Add missing newlines in die() messages * CLEANUP: halog: Use consistent indentation in help() * MINOR: halog: Rename -qry to -query * DOC: halog: Move the `-qry` parameter into the correct section in help text * MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX * BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions * BUG/MEDIUM: resolvers: Don't recursively perform requester unlink * MEDIUM: resolvers: remove the last occurrences of the "safe" argument * MEDIUM: resolvers: use a kill list to preserve the list consistency * CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT * CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters * CLEANUP: always initialize the answer_list * CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records() * BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released * BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed * BUILD: atomic: fix build on mac/arm64 * BUG/MINOR: backend: fix improper insert in avail tree for always reuse * BUILD: fix compilation on NetBSD * MINOR: memprof: add one pointer size to the size of allocations * MINOR: memprof: report the delta between alloc and free on realloc() * BUG/MEDIUM: lua: fix memory leaks with realloc() on non-glibc systems * BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame * BUG/MINOR: task: do not set TASK_F_USR1 for no reason * BUG/MAJOR: buf: fix varint API post- vs pre- increment * BUG/MEDIUM: resolvers: always check a valid item in query_list * BUILD: resolvers: avoid a possible warning on null-deref * BUG/MAJOR: resolvers: add other missing references during resolution removal * MINOR: resolvers: merge address and target into a union "data" * BUG/MEDIUM: resolvers: use correct storage for the target address * BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix * MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero * BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records * BUG/MEDIUM: resolver: make sure to always use the correct hostname length * MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero * BUG/MAJOR: dns: attempt to lock globaly for msg waiter list instead of use barrier * BUG/MAJOR: dns: tcp session can remain attached to a list after a free * BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors * Revert "CLEANUP: server: always include the storage for SSL settings" * BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error * BUG/MEDIUM: cpuset: fix cpuset size for FreeBSD * BUG/MINOR: sample: Fix 'fix_tag_value' sample when waiting for more data * BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back * MINOR: initcall: Rename __GLOBL and __GLOBL1. * DOC: configuration: add clarification on escaping in keyword arguments * BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames * BUG/MEDIUM: sample: properly verify that variables cast to sample * MINOR: sample: provide a generic var-to-sample conversion function * CLEANUP: sample: uninline sample_conv_var2smp_str() * CLEANUP: sample: rename sample_conv_var2smp() to *_sint * CLEANUP: server: always include the storage for SSL settings ==== ima-evm-utils ==== Version update (1.3.2 -> 1.4) - Update to version 1.4 * Elliptic curve support and tests * PKCS11 support and tests * Ability to manually specify the keyid included in the IMA xattr * Improve IMA measurement list per TPM bank verification * Linking with IBM TSS * Set default hash algorithm in package configuration * (Minimal) support and test EVM portable signatures * CI testing: * Refresh and include new distros * Podman support * GitHub Actions * Limit "sudo" usage * Misc bug fixes and code cleanup * Fix static analysis bug reports, memory leaks * Remove experimental code that was never upstreamed in the kernel * Use unsigned variable, remove unused variables, etc - Upstream bumped soname to 3.0.0 ==== installation-images-MicroOS ==== Version update (17.15 -> 17.16) - merge gh#openSUSE/installation-images#528 - add kernel modules for USB PHYs (bsc#1184867) - 17.16 ==== kernel-firmware ==== Version update (20210928 -> 20211027) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20211027 (git commit 1d00989a6596): * linux-firmware: Update AMD cpu microcode * QCA: Update Bluetooth firmware for WCN685x * bnx2x: Add FW 7.13.20.0 * Mellanox: Add new mlxsw_spectrum firmware xx.2010.1006 * linux-firmware: Update NXP Management Complex firmware to version 10.28.1 * linux-firmware: update firmware for MT7921 WiFi device * rtw89: 8852a: update fw to v0.13.30.0 * linux-firmware: Update firmware file for Intel Bluetooth 9462 * linux-firmware: Update firmware file for Intel Bluetooth 9462 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth AX211 * linux-firmware: Update firmware file for Intel Bluetooth AX211 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 - Update topics and aliases for rtw88 and rtw89 ==== kmod ==== Subpackages: libkmod2 - Enable ZSTD on 15.3 as well (boo#1192104). - Only test ZSTD in testsuite on releases where it is available. ==== kustomize ==== - Use SOURCE_DATE_EPOCH for the build date - include the version and build date in the version output ==== libdnf ==== Version update (0.63.1 -> 0.65.0) Subpackages: libdnf-repo-config-zypp libdnf2 - Update to 0.65.0 + Add support for excluding packages to be installed as weak dependencies + Add support for autodetecting packages to be excluded from being installed as weak dependencies + Turn off strict validation of modulemd documents (rh#2004853, rh#2007166, rh#2007167) + Implement logic for demodularization of modular rpms (rh#1805260) + DnfContext: fix handling of default module profiles + ModuleMetadata: gracefully handle modules with no defaults + Remove failovermethod config option (rh#1961083) ==== libfido2 ==== Version update (1.8.0 -> 1.9.0) - Version 1.9.0 (2021-10-27) * Enabled NFC support on Linux. * Added OpenSSL 3.0 compatibility. * Removed OpenSSL 1.0 compatibility. * Support for FIDO 2.1 "minPinLength" extension. * Support for COSE_EDDSA, COSE_ES256, and COSE_RS1 attestation. * Support for TPM 2.0 attestation. * Support for device timeouts; see fido_dev_set_timeout(). * New API calls: - es256_pk_from_EVP_PKEY; - fido_cred_attstmt_len; - fido_cred_attstmt_ptr; - fido_cred_pin_minlen; - fido_cred_set_attstmt; - fido_cred_set_pin_minlen; - fido_dev_set_pin_minlen_rpid; - fido_dev_set_timeout; - rs256_pk_from_EVP_PKEY. * Reliability and portability fixes. * Better handling of HID devices without identification strings; gh#381. * Fixed detection of Windows?s native webauthn API; gh#382. ==== librsvg ==== Version update (2.52.2 -> 2.52.3) Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 - Add cargo audit obs service - Update to version 2.52.3: + Bugfixes, mostly for text layout. Also, text links in PDF! - Support text-decoration=overline. - Basic support for the unicode-bidi property. Librsvg still considers each tspan independently of others, which is incorrect, but at least bidi-override works now for a single embedding level. - Fix placement of tspan that changes the text direction. - :lang() selector should now match lang attribute from an element's parent. - Fix the text-anchor property for right-to-left text. - PDF now includes links inside text elements. ==== libsoup2 ==== Version update (2.74.0 -> 2.74.1) - Update to version 2.74.1: + Fix support for older versions of Vala. + Fix trying to build sysprof as a subproject on Windows. + Fix missing `extern "C"` in an installed header. + Improve `gssapi` dependency handling. + Fix `libsoup-doc` build target. + Updated translations. ==== libxml2 ==== Subpackages: libxml2-2 libxml2-tools - Rewrite package to the single-spec %python_subpackage_only style and eliminate unnecessary multibuild. ==== libzypp ==== Version update (17.28.6 -> 17.28.7) - Check log writer before accessing it (fixes #355, bsc#1192337) - Save locks: Update an existing locks changed comment string. - Allow uname-r format in purge kernels keepspec (fixes openSUSE/zypper#418) - version 17.28.7 (22) ==== nfs-utils ==== Subpackages: libnfsidmap1 nfs-client - Add CONFIG parameter to %sysusers_generate_pre - Remove unneeded group line (user implies group) - Add Shell parameter to statd-user.conf - add Add-disable-sbin-override-for-when-sbin-is-a-symlink.patch and use it to move last few binaries from /sbin to /usr/sbin (bsc#1191082) - Move nfsdclddb and nfsdclnts from nfs-client to nfs-kernel-server and fix their permissions. ==== open-iscsi ==== Subpackages: iscsiuio libopeniscsiusr0_2_0 - Fix the usr-merge changes (bsc#1192013). This includes catching all the places that /sbin was still used directly, as well as making the SPEC file build using /usr/sbin for openSUSE but still use /sbin for SLE, for now. ==== pam ==== Subpackages: pam_unix - Add /run/pam_timestamp to pam.tmpfiles - Corrected macro definition of %_pam_moduledir: %_pam_moduledir %{_libdir}/security [macros.pam] - Prepend a slash to the expansion of %{_lib} in macros.pam as this are defined without a leading slash! ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-bootloader patterns-base-minimal_base - remove mention of "Minimal" from the base pattern ==== patterns-containers ==== Subpackages: patterns-containers-container_runtime patterns-containers-container_runtime_kubernetes patterns-containers-kubeadm patterns-containers-kubernetes_utilities patterns-containers-kubic_admin patterns-containers-kubic_loadbalancer patterns-containers-kubic_worker - Only require rook on architectures it's available on ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Install dmidecode only on archs where it is available - Add NetworkManager-openvpn-gnome to gnome pattern ==== python-Pillow ==== Version update (8.3.2 -> 8.4.0) - update to 8.4.0: - Prefer global transparency in GIF when replacing with background color #5756 - Added "exif" keyword argument to TIFF saving #5575 - Copy Python palette to new image in quantize() #5696 - Read ICO AND mask from end #5667 - Actually check the framesize in FliDecode.c #5659 - Determine JPEG2000 mode purely from ihdr header box #5654 - Fixed using info dictionary when writing multiple APNG frames #5611 - Allow saving 1 and L mode TIFF with PhotometricInterpretation 0 #5655 - For GIF save_all with palette, do not include palette with each frame #5603 - Keep transparency when converting from P to LA or PA #5606 - Copy palette to new image in transform() #5647 - Added "transparency" argument to EpsImagePlugin load() #5620 - Corrected pathlib.Path detection when saving #5633 - Added WalImageFile class #5618 - Consider I;16 pixel size when drawing text #5598 - If default conversion from P is RGB with transparency, convert to RGBA #5594 - Speed up rotating square images by 90 or 270 degrees #5646 - Add support for reading DPI information from JPEG2000 images - Catch TypeError from corrupted DPI value in EXIF #5639 - Do not close file pointer when saving SGI images #5645 - Deprecate ImagePalette size parameter #5641 - Prefer command line tools SDK on macOS #5624 ==== python-PyJWT ==== Version update (2.1.0 -> 2.3.0) - Update to 2.3.0 * Revert "Remove arbitrary kwargs." (#701) * Add exception chaining (#702) - from version 2.2.0 * Remove arbitrary kwargs. (#657) * Use timezone package as Python 3.5+ is required. (#694) * Assume JWK without the "use" claim is valid for signing as per RFC7517 (#668) * Prefer `headers["alg"]` to `algorithm` in `jwt.encode()`. (#673) * Fix aud validation to support {'aud': null} case. (#670) * Make `typ` optional in JWT to be compliant with RFC7519. (#644) * Remove upper bound on cryptography version. (#693) * Add support for Ed448/EdDSA. (#675) ==== python-SQLAlchemy ==== Version update (1.4.22 -> 1.4.26) - update to version 1.4.26: * a repair to the workings of the update() statement in an ORM context when used with hybrid and composite attributes. * Fixes for the with_loader_criteria() ORM option * adjustments to the ORM Session interface to accommodate for new API features * some new legacy warnings for lesser used patterns with Query.join() * SQL / ORM fixes for the use case of selecting from repeated, non-labeled column expressions, typically the null() construct when used as a placeholder in a UNION statement. * For PostgreSQL, refinements to the "expanding IN" SQL feature when used with PostgreSQL ARRAY datatypes as well as fixes for the mostly PostgreSQL-specific any_() and all_() column methods. * For MySQL, repaired support for new behaviors in MariaDB 10.6 * For SQL Server, reflection fixes and improvements for foreign key constraints as well table /view detection. - update to version 1.4.25: * Fixed regression due to :ticket:`7024` where the reorganization of the "platform machine" names used by the ``greenlet`` dependency mis-spelled "aarch64" and additionally omitted uppercase "AMD64" as is needed for Windows machines. * Fixed a bug in :meth:`_asyncio.AsyncSession.execute` and :meth:`_asyncio.AsyncSession.stream` that required ``execution_options`` to be an instance of ``immutabledict`` when defined. It now correctly accepts any mapping. * Improve the interface used by adapted drivers, like the asyncio ones, to access the actual connection object returned by the driver. * Implemented missing methods in :class:`_functions.FunctionElement` which, while unused, would lead pylint to report them as unimplemented abstract methods. * Fixed an issue where :meth:`_reflection.has_table` returned ``True`` for local temporary tables that actually belonged to a different SQL Server session (connection). An extra check is now performed to ensure that the temp table detected is in fact owned by the current session. * Fixed issue where the ability of the :meth:`_events.ConnectionEvents.before_execute` method to alter the SQL statement object passed, returning the new object to be invoked, was inadvertently removed. This behavior has been restored. * Ensure that ``str()`` is called on the an :paramref:`_url.URL.create.password` argument, allowing usage of objects that implement the ``__str__()`` method as password attributes. Also clarified that one such object is not appropriate to dynamically change the password for each database connection; the approaches at :ref:`engines_dynamic_tokens` should be used instead. * Fixed ORM issue where column expressions passed to ``query()`` or ORM-enabled ``select()`` would be deduplicated on the identity of the object, such as a phrase like ``select(A.id, null(), null())`` would produce only one "NULL" expression, which previously was not the case in 1.3. However, the change also allows for ORM expressions to render as given as well, such as ``select(A.data, A.data)`` will produce a result row with two columns. * Fixed issue where mypy plugin would crash when interpreting a ``query_expression()`` construct. * Added new methods :meth:`_orm.Session.scalars`, * Added loader options to :meth:`_orm.Session.merge` and :meth:`_asyncio.AsyncSession.merge` via a new :paramref:`_orm.Session.merge.options` parameter, which will apply the given loader options to the ``get()`` used internally by merge, allowing eager loading of relationships etc. to be applied when the merge process loads a new object. Pull request courtesy Daniel Stone. * Added initial support for the ``asyncmy`` asyncio database driver for MySQL and MariaDB. This driver is very new, however appears to be the only current alternative to the ``aiomysql`` driver which currently appears to be unmaintained and is not working with current Python versions. Much thanks to long2ice for the pull request for this dialect. * Fixed a two issues where combinations of ``select()`` and ``join()`` when adapted to form a copy of the element would not completely copy the state of all column objects associated with subqueries. A key problem this caused is that usage of the :meth:`_sql.ClauseElement.params` method (which should probably be moved into a legacy category as it is inefficient and error prone) would leave copies of the old :class:`_sql.BindParameter` objects around, leading to issues in correctly setting the parameters at execution time. ==== python-chardet ==== - Use libalternatives instead of update-alternatives. ==== python-matplotlib ==== Version update (3.4.2 -> 3.4.3) - version 3.4.3 Patches removed (in version 3.4.3): inkscape11.patch 0001-FIX-Pillow-asarray-bug.patch 0002-Dont-modify-arrays-when-masking-values-for-log.patch ==== python-pyOpenSSL ==== Version update (20.0.1 -> 21.0.0) - Add check_inv_ALPN_lists.patch checks for invalid ALPN lists before calling OpenSSL (gh#pyca/pyopenssl#1056). - update to 21.0.0: - The minimum ``cryptography`` version is now 3.3. - Drop support for Python 3.5 - Raise an error when an invalid ALPN value is set. - Added ``OpenSSL.SSL.Context.set_min_proto_version`` and ``OpenSSL.SSL.Context.set_max_proto_version`` - Updated ``to_cryptography`` and ``from_cryptography`` methods to support an upcoming release of ``cryptography`` without raising deprecation warnings. ==== python-urllib3 ==== Version update (1.26.6 -> 1.26.7) - update to 1.26.7: * Fixed a bug with HTTPS hostname verification involving IP addresses and lack of SNI. * Fixed a bug where IPv6 braces weren't stripped during certificate hostname matching. ==== qemu ==== - qemu: virtio-net: heap use-after-free in virtio_net_receive_rcu (bsc#1189938 CVE-2021-3748) solved by virtio-net-fix-use-after-unmap-free-for-.patch - kvm,qemu: out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702 CVE-2021-3713) * Patches added: uas-add-stream-number-sanity-checks.patch ==== rpm ==== Subpackages: librpmbuild9 - Add support for using a thread pool for threaded zstd compression new patch: zstdpool.diff - Switch to threaded zstd compression with a pool of 8 threads new patch: zstdthreaded.diff ==== selinux-policy ==== Subpackages: selinux-policy-targeted - fix_wine.patch: give Wine .dll same context as .so (bsc#1191976) ==== snappy ==== - Re-enable RTTI, without which other applications can't subclass snappy::Source (this breaks Ceph, as one example) - Add reenable-rtti.patch ==== tar ==== - tests-skip-time01-on-32bit-time_t.patch: Add patch to skip test 'tests/time01.at' on platforms with 32-bit time_t for now. - tar.spec: Reference it. (%check): Output the testsuite.log in case the testsuite failed. ==== timezone ==== Version update (2021d -> 2021e) - timezone update 2021e: * Palestine will fall back 10-29 (not 10-30) at 01:00 ==== wget ==== Version update (1.21.1 -> 1.21.2) - GNU wget 1.21.2: * Support for autoconf 2.71 * Fix a double free in FTP when using an absolute path * --page-requisites will now also download links marked as "alternate stylesheet" or "icon" - drop 0001-src-main.c-Introduce-truncate_filename-option.patch superseded by upstream changes ==== wicked ==== Version update (0.6.66 -> 0.6.67) Subpackages: wicked-service - dbus: config files in /usr shouldn't be marked as config in spec - version 0.6.67 - dbus: install bus config in /usr (bsc#1183407,jsc#SLE-9750) - logging: log reaped sub-process command and as debug, not error - ifstatus: Don't show link as "up" without RUNNING flag set - firewalld: Make the zone assignment permanent (boo#1189560) - fsm: cleanup and improve ifconfig and ifpolicy access utils - dbus: cleanup the dbus-service.h file and unused property makros - cleanup: applied code-spell run typo corrections - dracut: initial fixes and improved option handling (boo#1182227)