Packages changed: Mesa (22.2.1 -> 22.2.2) Mesa-drivers (22.2.1 -> 22.2.2) MozillaFirefox (105.0.3 -> 106.0.1) NetworkManager (1.40.0 -> 1.40.2) autoyast2 (4.5.4 -> 4.5.6) bash bluedevil5 (5.26.0 -> 5.26.1) breeze (5.26.0 -> 5.26.1) breeze-gtk (5.26.0 -> 5.26.1) cifs-utils (6.15 -> 7.0) cpupower (5.17.9 -> 6.0.3) discover (5.26.0 -> 5.26.1) drkonqi5 (5.26.0 -> 5.26.1) evolution-data-server (3.46.0 -> 3.46.1) fwupd (1.7.10 -> 1.8.6) gcc12 (12.2.1+git416 -> 12.2.1+git537) glib2-branding-openSUSE gnome-control-center (43.0 -> 43.1) gnome-initial-setup (43.0 -> 43.1) gnome-software (43.0 -> 43.1) harfbuzz (5.3.0 -> 5.3.1) imlib2 installation-images-MicroOS (17.63 -> 17.64) irqbalance kactivitymanagerd (5.26.0 -> 5.26.1) kcm_sddm (5.26.0 -> 5.26.1) kde-cli-tools5 (5.26.0 -> 5.26.1) kde-gtk-config5 (5.26.0 -> 5.26.1) kernel-source (6.0.2 -> 6.0.3) keylime kgamma5 (5.26.0 -> 5.26.1) khotkeys5 (5.26.0 -> 5.26.1) kimageformats kinfocenter5 (5.26.0 -> 5.26.1) kmenuedit5 (5.26.0 -> 5.26.1) kpipewire (5.26.0 -> 5.26.1) kscreen5 (5.26.0 -> 5.26.1) kscreenlocker (5.26.0 -> 5.26.1) ksshaskpass5 (5.26.0 -> 5.26.1) ksystemstats5 (5.26.0 -> 5.26.1) kwayland-integration (5.26.0 -> 5.26.1) kwin5 (5.26.0 -> 5.26.1) kwrited5 (5.26.0 -> 5.26.1) layer-shell-qt (5.26.0 -> 5.26.1) libX11 libXmu (1.1.3 -> 1.1.4) libXrender (0.9.10 -> 0.9.11) libgpg-error (1.45 -> 1.46) libical (3.0.15 -> 3.0.16) libical-glib (3.0.15 -> 3.0.16) libkdecoration2 (5.26.0 -> 5.26.1) libkscreen2 (5.26.0 -> 5.26.1) libksysguard5 (5.26.0 -> 5.26.1) libpciaccess (0.16 -> 0.17) libstorage-ng (4.5.46 -> 4.5.47) libxkbfile (1.1.0 -> 1.1.1) libxslt (1.1.34 -> 1.1.37) milou5 (5.26.0 -> 5.26.1) mozilla-nspr (4.34.1 -> 4.35) mozilla-nss (3.82 -> 3.83) mozjs102 (102.3.0 -> 102.4.0) oxygen5-sounds (5.26.0 -> 5.26.1) patterns-gnome patterns-microos plasma-browser-integration (5.26.0 -> 5.26.1) plasma-nm5 (5.26.0 -> 5.26.1) plasma5-addons (5.26.0 -> 5.26.1) plasma5-desktop (5.26.0 -> 5.26.1) plasma5-disks (5.26.0 -> 5.26.1) plasma5-integration (5.26.0 -> 5.26.1) plasma5-openSUSE plasma5-pa (5.26.0 -> 5.26.1) plasma5-systemmonitor (5.26.0 -> 5.26.1) plasma5-thunderbolt (5.26.0 -> 5.26.1) plasma5-workspace (5.26.0 -> 5.26.1) polkit-default-privs (1550+20220919.3b55a1f -> 1550+20221018.7616c25) polkit-kde-agent-5 (5.26.0 -> 5.26.1) powerdevil5 (5.26.0 -> 5.26.1) python-setuptools (63.2.0 -> 65.5.0) raspberrypi-firmware (2022.09.30 -> 2022.10.18) raspberrypi-firmware-config (2022.09.30 -> 2022.10.18) readline rpm rsync (3.2.6 -> 3.2.7) samba (4.17.0+git.257.5f0ed03584a -> 4.17.1+git.270.17afe7cb6b) systemd (251.5 -> 251.6) systemsettings5 (5.26.0 -> 5.26.1) wicked (0.6.69 -> 0.6.70) xcb-util-image (0.4.0 -> 0.4.1) xcb-util-keysyms (0.4.0 -> 0.4.1) xcb-util-renderutil (0.3.9 -> 0.3.10) xcb-util-wm (0.4.1 -> 0.4.2) xdg-desktop-portal-gnome (43.0 -> 43.1) xdg-desktop-portal-kde (5.26.0 -> 5.26.1) xkeyboard-config (2.36 -> 2.37) xorg-x11-server xwayland yast2-country (4.5.1 -> 4.5.2) yast2-installation (4.5.7 -> 4.5.8) yast2-storage-ng (4.5.9 -> 4.5.10) === Details === ==== Mesa ==== Version update (22.2.1 -> 22.2.2) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - Add patch to fix LLVM optimization to avoid failure on armv7 (https://gitlab.freedesktop.org/mesa/mesa/-/merge_requests/19217, boo#1204267): * u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch - update to 22.2.2 * This is the second bug fix release, back on the regular schedule. There's a lot here: nir, panfrost, gallium video, freedreno, nouveau, turnip, r300, gallium core, r600, virgl, core vulkan, anv, clover, d3d12, utils, radv, and plenty of zink. ==== Mesa-drivers ==== Version update (22.2.1 -> 22.2.2) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Add patch to fix LLVM optimization to avoid failure on armv7 (https://gitlab.freedesktop.org/mesa/mesa/-/merge_requests/19217, boo#1204267): * u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch - update to 22.2.2 * This is the second bug fix release, back on the regular schedule. There's a lot here: nir, panfrost, gallium video, freedreno, nouveau, turnip, r300, gallium core, r600, virgl, core vulkan, anv, clover, d3d12, utils, radv, and plenty of zink. ==== MozillaFirefox ==== Version update (105.0.3 -> 106.0.1) - Mozilla Firefox 106.0.1 * Addresses a crash experienced by users with AMD Zen 1 CPUs (bmo#1796126) - Mozilla Firefox 106.0 * support editing of PDFs * introduced Firefox View * major WebRTC update - Better screen sharing for Windows and Linux Wayland users - RTP performance and reliability improvements - Richer statistics - Cross-browser and service compatibility improvements * detailed releasenotes https://www.mozilla.org/en-US/firefox/106.0/releasenotes MFSA 2022-44 (bsc#1204421) * CVE-2022-42927 (bmo#1789128) Same-origin policy violation could have leaked cross-origin URLs * CVE-2022-42928 (bmo#1791520) Memory Corruption in JS Engine * CVE-2022-42929 (bmo#1789439) Denial of Service via window.print * CVE-2022-42930 (bmo#1789503) Race condition in DOM Workers * CVE-2022-42931 (bmo#1780571) Username saved to a plaintext file on disk * CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041) Memory safety bugs fixed in Firefox - added -msse2 flag to fix i386 build and workaround bmo#1795993 - fixed used buildflags - renamed mozilla-i686-build.patch to mozilla-buildfixes.patch as it was extended with changes for other archs ==== NetworkManager ==== Version update (1.40.0 -> 1.40.2) Subpackages: NetworkManager-bluetooth NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0 - Update to version 1.40.2: + Ensure that resolv.conf gets updated when the configuration changes. + Fix setting as bond primary an interface that doesn't exist yet when the bond is activated. + The number of autoconnect retries is now accounted independently for each device when there are profiles with multi-connect=multiple. + Don't print duplicate entries in the output of "NetworkManager - -print-config". + Fix the ifcfg-rh plugin to properly read infiniband P-Key connection profiles without an explicit interface name. + Allow the removal of a bond port connection profile from the bond via nmcli. + Fix race condition during the activation of veth profiles when the peer already exists. + Decline the DHCPv6 lease if all addresses fail IPv6 duplicate address detection (DAD). + Wait that devices get carrier before trying to resolve the system hostname on them via DNS. + Fix race condition during the initial activation of OVS interfaces. + Profiles generated by nm-initrd-generator now have lower than default priority. + Fix error when adding many SR-IOV virtual functions (VFs). ==== autoyast2 ==== Version update (4.5.4 -> 4.5.6) - fix profile location parsing and add 'repo' URL scheme (jsc#SLE-22578, jsc#SLE-24584) - 4.5.6 - Add needed packages for the selected network backend in order to prevent it is not declared in the software section (bsc#1201235, bsc#1201435) - 4.5.5 ==== bash ==== Subpackages: bash-doc bash-sh - Explicit require versioned libreadline8 as we face new ABI functions used by the bash (boo#1204336) ==== bluedevil5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: bluedevil5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== breeze ==== Version update (5.26.0 -> 5.26.1) Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers libbreezecommon5-5 - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== breeze-gtk ==== Version update (5.26.0 -> 5.26.1) Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== cifs-utils ==== Version update (6.15 -> 7.0) - Update cifs-utils to 7.0 * cifs-utils: don't return uninitialized value in cifs_gss_get_req * cifs-utils: make GSSAPI usage compatible with Heimdal * cifs-utils: work around missing krb5_free_string in Heimdal * fix warnings for -Waddress-of-packed-member * setcifsacl: fix memory allocation for struct cifs_ace * setcifsacl: fix comparison of actions reported by covscan * cifs.upcall: remove unused variable and fix syslog message * cifs.upcall: Switch to RFC principal type naming * man-pages: Update cifs.upcall to mention GSS_USE_PROXY * cifs.upcall: fix compiler warning * cifs.upcall: add gssproxy support * remove cifs-utils-6.15.tar.bz2 * remove cifs-utils-6.15.tar.bz2.asc * add cifs-utils-7.0.tar.bz2 * add cifs-utils-7.0.tar.bz2.asc ==== cpupower ==== Version update (5.17.9 -> 6.0.3) Subpackages: libcpupower0 - clean up sources: drop rapl_monitor.patch and cpupower_rapl.patch. - Move bash-completion to subpackage so it isn't installed when not needed - Remove powercap capabilities to patch againt latest kernel sources - > still keep the patches, will be removed after trying to get this mainline - Add netlink (libnl-devel) requires ==== discover ==== Version update (5.26.0 -> 5.26.1) Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang discover-notifier - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * Reviews: Don't check for name field being empty when it's not visible (kde#460504) * Fix i18n warning * flatpak: Address transaction progress skipping (kde#404819,kde#434948,kde#435450,kde#448280) * Delay subCategoriesChanged signals when disabling (kde#401666,kde#457408) * flatpak: Improve flatpaktest reliability * flatpak: Just disable the test on the CI ==== drkonqi5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: drkonqi5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== evolution-data-server ==== Version update (3.46.0 -> 3.46.1) Subpackages: libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-2 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4 - Update to version 3.46.1: + po: Merge .source files back to the POTFILES.in + IMAPX: Hide complete requests in debug logs for some sensitive commands + Handle negative value for GUri's port + CamelDB: Fix an uninitialized variable warning + Bugs Fixed: - LDAP: . Possible memory leak in build_mods_from_contacts() . Use valid values for error paths of contact create/remove - Serialize OAuth2 token refresh for an account - IMAP: Does not forget renamed folders on the server - Tautology in e_named_parameters_equal() - camel-db.c: Rearrange transaction handling + Updated translations. ==== fwupd ==== Version update (1.7.10 -> 1.8.6) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.8.6: + This release adds the following features: - Reduce the installed package size by more than 30% - Translate more interactive messages + This release fixes the following bugs: - Allow disabling a DFU device when required - Fix a regression when getting the i2c bus number - Fix a small memory leak when reloading the parade-lspcon device - Fix installing the dbx update when using fwupdtool - Improve writing CoSWID and uSWID metadata - Only include the last 5 releases in the installed metainfo file - Only request the BOS descriptor for newer libgusb versions - Prevent high memory usage when loading corrupt SREC files - Try harder when trying to find the default ESP volume - Use a higher compression preset for the UEFI splash images + This release adds support for the following hardware: - Focaltech touchpads - FPC fingerprint readers - Supermicro machines using Redfish - Drop plugin_sover define, and sub-packages libfwupdplugin7 and typelib-1_0-FwupdPlugin-1_0 following upstream changes. - Update to version 1.8.5: + This release adds the following features: - Add a new android-boot plugin to update specific block devices - Add new plugin to display SMU firmware version on AMD APU/CPU - Add support for platform capability descriptors so devices can set quirks - Move the generic Intel Goshen Ridge code out to a new plugin + This release fixes the following bugs: - Allow specifying the ESP when applying the dbx update - Always check the BDP partitions when getting all the possible ESPs - Correctly update Wacom AES devices - Disable changing sleep mode on Ryzen 6000 systems - Do not show the 'may not be usable while updating' message for DBX updates - Expose Pine64 PinePhone Pro MTD as Tow-Boot - Fix a critical warning when issuing Secure Boot modem AT commands - Fix a fuzzing crash when parsing malicious FDT data - Fix aligning up addresses greater than 4GB - Fix a possible crash when dumping VBE firmware - Fix a possible critical warning when parsing cabinet archives - Fix a regression when parsing pixart-rf firmware - Fix a small memory leak when parsing UF2 files - Fix checking for invalid depth requirements - Fix parsing the coSWID firmware ID when encoded as a UUID - Fix parsing uSWID uncompressed metadata - Fix uploading to DFU-CSR devices - Limit the archive size to 25% of the RAM, or 4G - Load coSWID metadata from a uSWID MTD block device - Never save the Redfish auto-generated password to a user-readable file - Only create users using IPMI when we know it's going to work - Write all the CCGX metadata block as intended + This release adds support for the following hardware: - Corsair SABRE RGB PRO Gaming mouse - More Sonix CAM devices - More Intel Goshen Ridge USB-4 docks - Changes from version 1.8.4: + This release adds the following features: - Add a translated title and long description for HSI security attributes - Add support for loading a machine-default BIOS settings policy - Add support for reading and writing BIOS settings - Allow loading BIOS settings for host emulation - Prompt users to fix some BIOS configuration issues + This release fixes the following bugs: - Actually show provided AppStream security issues - Add Quectel secure boot status AT commands - Correctly detect CET IBT - Do not assert when running with no plugins - Do not require UEFI capsule updates for checking TPM PCR0 - Do not show HSI events where we changed the spec result value - Fix applying the latest DBX update - Include vfat in the list of possible BDP partition types - Install all devices with the same composite id in fwupdtool - Only fail the kernel HSI test for specific taint reasons - Only show changed events in fwupdmgr security - Update vulnerable CMSE versions from CSMEVDT data + This release adds support for the following hardware: - Elan non-HID touchpads - Google Prism - LabTop Mk III - ThinkPad Thunderbolt 4 Dock - ThinkPad Universal Smart Dock - Changes from version 1.8.3: + This release adds the following features: - Add resolution flags to each security attribute failures for the user - Allow loading in emulated host profiles for debugging - Check if Intel TME has been disabled by the firmware or platform - Wait for the system to acquiesce after doing each update + This release fixes the following bugs: ... changelog too long, skipping 181 lines ... BuildRequires and macros, remove duplicates. ==== gcc12 ==== Version update (12.2.1+git416 -> 12.2.1+git537) Subpackages: cpp12 libgcc_s1 libgfortran5 libgomp1 libobjc4 libstdc++6 libstdc++6-pp libubsan1 - Update to gcc-12 branch head, 0aaef83351473e8f4eb774f8f99, git537 - Update embedded newlib to version 4.2.0 * includes newlib-4.1.0-aligned_alloc.patch - add gcc12-riscv-inline-atomics.patch, gcc12-riscv-pthread.patch: handle subword size inline atomics (needed by several openSUSE packages) ==== glib2-branding-openSUSE ==== - Fix default openSUSE wallpaper is not present in dark mode (boo#1204138). ==== gnome-control-center ==== Version update (43.0 -> 43.1) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Update to version 43.1: + Network: Fix crashes editing networks. + Power: Don't assert if we can't find the widget for a profile. + Printers: Small visual improvements. + Updated translations. ==== gnome-initial-setup ==== Version update (43.0 -> 43.1) - Update to version 43.1: + Several bugs in the enterprise login flow have been fixed. + Updated translations. ==== gnome-software ==== Version update (43.0 -> 43.1) - Update to version 43.1: + Fix searches not completing if installing or uninstalling an app at the same time. + Notify of errors when running a flatpak app whose runtime is missing. + Fix installing local RPM packages. + Fix distribution upgrades when package conflicts are present. + Fix opening web apps from their details page. + Improve appearance of app ratings if ratings data cannot be downloaded. + Fix crash when showing offline update errors on startup. + Highlight priority of firmware updates, making security fixes more obvious. + Fix installation of pending apps in some situations. + Fix downloading of rpm-ostree app updates from the Updates page. + Updated translations. ==== harfbuzz ==== Version update (5.3.0 -> 5.3.1) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - Update to version 5.3.1: + Subsetter repacker fixes + Adjust Grapheme clusters for Katakana voiced sound marks + New hb-subset option --preprocess-face - Add harfbuzz-5.3.1-Fix_check-symbols_failure.patch: Fix failing tests. ==== imlib2 ==== Subpackages: imlib2-loaders libImlib2-1 - enable loaders for JPEG2000, HEIF, Postscript, SVG, JPEG-XL ==== installation-images-MicroOS ==== Version update (17.63 -> 17.64) - merge gh#openSUSE/installation-images#613 - remove reiserfs support (bsc#1204551) - 17.64 ==== irqbalance ==== Subpackages: irqbalance-ui - add uninitialized.patch (bsc#1204371) - build with thermald support on x86_64 (jsc#PED-754) ==== kactivitymanagerd ==== Version update (5.26.0 -> 5.26.1) Subpackages: kactivitymanagerd-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kcm_sddm ==== Version update (5.26.0 -> 5.26.1) Subpackages: kcm_sddm-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kde-cli-tools5 ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kde-gtk-config5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: kde-gtk-config5-gtk3 - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kernel-source ==== Version update (6.0.2 -> 6.0.3) - ALSA: hda/realtek: Add another HP ZBook G9 model quirks (bsc#1203699). - commit a4522e2 - Linux 6.0.3 (bsc#1012628). - arm64: dts: qcom: sc8280xp-pmics: Remove reg entry & use correct node name for pmc8280c_lpg node (bsc#1012628). - Kconfig.debug: add toolchain checks for DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT (bsc#1012628). - Kconfig.debug: simplify the dependency of DEBUG_INFO_DWARF4/5 (bsc#1012628). - io_uring/rw: ensure kiocb_end_write() is always called (bsc#1012628). - io_uring: fix fdinfo sqe offsets calculation (bsc#1012628). - drm/amd/display: Fix build breakage with CONFIG_DEBUG_FS=n (bsc#1012628). - powerpc/64s/interrupt: Fix lost interrupts when returning to soft-masked context (bsc#1012628). - net/ieee802154: don't warn zero-sized raw_sendmsg() (bsc#1012628). - Revert "net/ieee802154: reject zero-sized raw_sendmsg()" (bsc#1012628). - Revert "drm/amd/display: correct hostvm flag" (bsc#1012628). - net: ethernet: ti: davinci_mdio: fix build for mdio bitbang uses (bsc#1012628). - blk-wbt: fix that 'rwb->wc' is always set to 1 in wbt_init() (bsc#1012628). - ALSA: usb-audio: Fix last interface check for registration (bsc#1012628). - net: ieee802154: return -EINVAL for unknown addr type (bsc#1012628). - mm: hugetlb: fix UAF in hugetlb_handle_userfault (bsc#1012628). - io_uring/net: fix notif cqe reordering (bsc#1012628). - io_uring/net: don't skip notifs for failed requests (bsc#1012628). - io_uring/net: rename io_sendzc() (bsc#1012628). - io_uring/net: don't lose partial send_zc on fail (bsc#1012628). - io_uring/net: use io_sr_msg for sendzc (bsc#1012628). - io_uring/net: refactor io_sr_msg types (bsc#1012628). - perf intel-pt: Fix system_wide dummy event for hybrid (bsc#1012628). - perf intel-pt: Fix segfault in intel_pt_print_info() with uClibc (bsc#1012628). - perf: Skip and warn on unknown format 'configN' attrs (bsc#1012628). - clk: bcm2835: Round UART input clock up (bsc#1012628). - usb: typec: ucsi: Don't warn on probe deferral (bsc#1012628). - dmaengine: dw-edma: Remove runtime PM support (bsc#1012628). - fsi: master-ast-cf: Fix missing of_node_put in fsi_master_acf_probe (bsc#1012628). - fsi: occ: Prevent use after free (bsc#1012628). - hwmon (occ): Retry for checksum failure (bsc#1012628). - blk-mq: use quiesced elevator switch when reinitializing queues (bsc#1012628). - usb: idmouse: fix an uninit-value in idmouse_open (bsc#1012628). - nvmet-tcp: add bounds check on Transfer Tag (bsc#1012628). - nvme: copy firmware_rev on each init (bsc#1012628). - nvme: handle effects after freeing the request (bsc#1012628). - ext2: Use kvmalloc() for group descriptor array (bsc#1012628). - scsi: tracing: Fix compile error in trace_array calls when TRACING is disabled (bsc#1012628). - staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv() (bsc#1012628). - staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw() (bsc#1012628). - io_uring: fix CQE reordering (bsc#1012628). - Revert "usb: storage: Add quirk for Samsung Fit flash" (bsc#1012628). - usb: dwc3: core: Enable GUCTL1 bit 10 for fixing termination error after resume bug (bsc#1012628). - arm64: dts: imx8mp: Add snps,gfladj-refclk-lpm-sel quirk to USB nodes (bsc#1012628). - usb: dwc3: core: add gfladj_refclk_lpm_sel quirk (bsc#1012628). - usb: musb: Fix musb_gadget.c rxstate overflow bug (bsc#1012628). - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() (bsc#1012628). - md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d (bsc#1012628). - HID: nintendo: check analog user calibration for plausibility (bsc#1012628). - HSI: ssi_protocol: fix potential resource leak in ssip_pn_open() (bsc#1012628). - HID: roccat: Fix use-after-free in roccat_read() (bsc#1012628). - soundwire: intel: fix error handling on dai registration issues (bsc#1012628). - soundwire: cadence: Don't overwrite msg->buf during write commands (bsc#1012628). - bcache: fix set_at_max_writeback_rate() for multiple attached devices (bsc#1012628). - ata: libahci_platform: Sanity check the DT child nodes number (bsc#1012628). - blk-throttle: prevent overflow while calculating wait time (bsc#1012628). - staging: vt6655: fix potential memory leak (bsc#1012628). - power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type() (bsc#1012628). - usb: gadget: uvc: increase worker prio to WQ_HIGHPRI (bsc#1012628). - iommu/arm-smmu-v3: Make default domain type of HiSilicon PTT device to identity (bsc#1012628). - nbd: Fix hung when signal interrupts nbd_start_device_ioctl() ... changelog too long, skipping 1419 lines ... - commit af756fb ==== keylime ==== Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime - Update requirement name to python-lark ==== kgamma5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: kgamma5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== khotkeys5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: khotkeys5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kimageformats ==== - Add upstream changes: * 0001-avif-return-false-in-canRead-when-imageIndex-imageCo.patch (kde#460085) * 0001-avif-always-indicate-endless-loop.patch * 0001-avif-revert-9ac923ad09316dcca0fc11e0be6b3dfc6cce6ca0.patch ==== kinfocenter5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: kinfocenter5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kmenuedit5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: kmenuedit5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kpipewire ==== Version update (5.26.0 -> 5.26.1) Subpackages: kpipewire-imports libKPipeWire5 libKPipeWireRecord5 - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kscreen5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: kscreen5-lang kscreen5-plasmoid - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * KCM: wrap resolution label too (kde#460397) * Make the Output component accept events (kde#460280) * osd: Specify layer shell namespace * Don't save scale in control file * Use the osd window type (kde#419764) * osd: Fix a crash when quitting from QML signal handler * kcm: Call settingsChanged when resetting if config needs save ==== kscreenlocker ==== Version update (5.26.0 -> 5.26.1) Subpackages: kscreenlocker-lang libKScreenLocker5 - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * Revert "Fix loading image wallpaper plugin config UI in KCM" ==== ksshaskpass5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: ksshaskpass5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== ksystemstats5 ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kwayland-integration ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== kwin5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: kwin5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * effects: Make WindowHeap try to fill gaps * Handle scale override in locked and confined pointers (kde#460532) * Move installPointerConstraint calls into the constraint handlers * screencast: Don't report damage on the full screen every time * Guard against reconfiguring wayland specific input on X11 * Make Workspace::outputAt() more robust to extreme values (kde#460446) * Fix resizing by dragging top-right window corner (kde#460501) * wayland: Fix handling of removed outputs in DpmsInterface * wayland: Sync output device's enabled property (kde#460247) * backends/drm: Fix leaving dangling dpms input event filter (kde#460322) * effects/screenshot: Avoid capturing hidden cursor (kde#460358) * Make "switch to screen" and "window to screen" code less error-prone * Fix "window to screen" and "switch to screen" shortcuts (kde#460337) * Fix scripted shader effect animations (kde#460277) * Drop shaderTrait adjustment on crossfade * Wayland: don't allow minimizing applet popups either * wayland: don't allow maximization of applet popups ==== kwrited5 ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== layer-shell-qt ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== libX11 ==== Subpackages: libX11-6 libX11-data libX11-xcb1 - U_fix-a-memory-leak-in-XRegisterIMInstantiateCallback.patch * security update for CVE-2022-3554 (bsc#1204422) ==== libXmu ==== Version update (1.1.3 -> 1.1.4) Subpackages: libXmu6 libXmuu1 - Update to version 1.1.4 This release includes two notable changes to XmuConvertStandardSelection(): 1) It no longer supports XA_IP_ADDRESS, which only supported IPv4 addresses and simply provided the output of gethostbyname() on the local hostname. 2) XA_OWNER_OS no longer reports "BSD" for any Unix-like OS (including Linux) that it hadn't been coded to handle, instead relying on uname() where available to provide the OS name. The lack of bug reports about the previously misleading output for these suggests they're not widely used, with codesearch.debian.net only finding matches in libXmu and the rust bindings to libXmu, and not any consumers of these interfaces. ==== libXrender ==== Version update (0.9.10 -> 0.9.11) - Update to version 0.9.11 * Update README for gitlab migration * Update configure.ac bug URL for gitlab migration * Fix spelling/wording issues * gitlab CI: add a basic build test * Remove unnecessary casts from malloc & free calls * Reduce variable scopes as recommended by cppcheck * Resolve -Wsign-compare warnings * Rename xDepth to xPDepth to quiet -Wshadow warnings * fix coredumps in XRenderComputeTrapezoids (issue #1) * autogen.sh: use quoted string variables * autogen: add default patch prefix * WIP: Documentation * autogen.sh: use exec instead of waiting for configure to finish * Add missing HAVE_CONFIG_H guard to Xrenderint.h * amend cppcheck-scope change, fixing c89 build * additional cppcheck-scope warning * cppcheck (removing unused assignment lets variable scope reduction) * use casts to reduce compiler warnings (no object change) * use _Xconst with DataInt32/DataInt16/memcpy to reduce strict compiler warnings * use _X_UNUSED for compiler-warnings * whitespace fix * fix regression * fix coredumps in XRenderComputeTrapezoids (issue #1) * autogen.sh: use quoted string variables * autogen: add default patch prefix * WIP: Documentation * autogen.sh: use exec instead of waiting for configure to finish * Add missing HAVE_CONFIG_H guard to Xrenderint.h * amend cppcheck-scope change, fixing c89 build * additional cppcheck-scope warning * cppcheck (removing unused assignment lets variable scope reduction) * use casts to reduce compiler warnings (no object change) * use _Xconst with DataInt32/DataInt16/memcpy to reduce strict compiler warnings * use _X_UNUSED for compiler-warnings * whitespace fix * fix regression ==== libgpg-error ==== Version update (1.45 -> 1.46) - Update to 1.46: * Support for bidirectional pipes under Windows. * REG_DWORD types are now support in the Windows Registry. * Added ES_SYSHD_SOCK support for gpgrt_sysopen under Windows. * Fixed gpgrt_log_get_fd for the file case. * Avoids header problem with C11 and "noreturn". * The gpg-error-config command is not installed by default, because it is now replaced by use of pkg-config/gpgrt-config with gpg-error.pc. Supply --enable-install-gpg-error-config configure option, if it's really needed. * Fixed support of posix-lock for FreeBSD. * Build fixes for some Mingw tool chain versions. * Removed remaining support for WindowsCE. * Updated config.guess, config.sub, and config.rpath. * gpg-error-config is now only installed when enabled. * System paths are now stripped from --cflags --and --libs. ==== libical ==== Version update (3.0.15 -> 3.0.16) - Update to 3.0.16 * Fix regressions in 3.0.15 due to improperly tested fuzz fixes * Fix argument guards in icaltime_as_timet to match documentation and tests. ==== libical-glib ==== Version update (3.0.15 -> 3.0.16) - Update to 3.0.16 * Fix regressions in 3.0.15 due to improperly tested fuzz fixes * Fix argument guards in icaltime_as_timet to match documentation and tests. ==== libkdecoration2 ==== Version update (5.26.0 -> 5.26.1) Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private9 - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== libkscreen2 ==== Version update (5.26.0 -> 5.26.1) Subpackages: libKF5Screen7 libkscreen2-plugin - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * backends/kwayland: only consider enabled outputs for Xwayland scale ==== libksysguard5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang libksysguard5-plugins - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== libpciaccess ==== Version update (0.16 -> 0.17) - Update to version 0.17 * Fix spelling/wording issues * meson: install man page in mandir/man1/, not mandir/1/ * gitlab CI: add a basic build test for both autotools and meson * gitlab CI: stop requiring Signed-off-by in commits * configure.ac: Use pkg-config to find zlib dependency info * Obtain correct value of is_64 and is_prefetchable PCI device fields * hurd_pci: Use __pci_conf_ variants of pci_conf_ * x86: Use gnumach device instead of /dev/mem on GNU systems && factorise ifdefs * x86: Remove mapping of regions during probe - otherwise remapping later fails * x86: Remove probe during create, other backends don't do this * hurd: device_open(pci), /servers/bus/pci fallback * x86: Sort devices by B/D/F due to recursive scan * hurd: Don't necessarily look up _SERVERS_BUS_PCI * Add a meson build system * autoconf: Add meson files to dist tarball * pciaccess.pc.in: add Libs.Private * Hurd: avoid using the deprecated RPC pci_get_ndevs() * hurd: Implement device memory mapping * Hurd: Fix initialization order * Add pci_device_disable() function * missed library installation in meson * hurd: Add missing round up size in map_dev_mem * hurd: Fix letting map_dev_mem map anywhere * hurd: Fix map_dev_mem from non-zero address * hurd: Restore initialization order * hurd: Fix pci_device_hurd_map_legacy * Add support for building on macOS w/o X11, using endian code from "portable_endian.h"... * Add parentheses to the macro definition * pci_sys set NULL after free * Add header protection macro in linux_devmem.h * Delete redundant symbols ';' - switched to meson build system ==== libstorage-ng ==== Version update (4.5.46 -> 4.5.47) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#900 - make result of ParitionTable::is_partition_id_supported() depend on parted version - 4.5.47 ==== libxkbfile ==== Version update (1.1.0 -> 1.1.1) - Update to version 1.1.1 * Use strndup if available to avoid -Wstringop-overflow warning from gcc 9 * Convert check for strcasecmp to normal autoconf style * Fix spelling/wording issues * gitlab CI: add a basic build test * fix an off-by-one error in copying the name of a virtual modifier * Escape non-printable characters correctly * unifdef NOTYET * Fix check for appending '|' character when applying rules ==== libxslt ==== Version update (1.1.34 -> 1.1.37) Subpackages: libexslt0 libxslt-tools libxslt1 - Update to version 1.1.37: * Improvements: + Don't use deprecated libxml2 macros + Don't mess with xmlDefaultSAXHandler * Build system: + Require automake-1.16.3 or later + Remove generated files from distribution + Add missing compile definition for static builds to Autotools - Update to 1.1.36: * Removals and deprecations + Remove SVN keyword anchors + Remove CVS and SVN-related code + Remove README.cvs-commits + Remove ChangeLog + Remove xsltwin32config.h * Improvements + Simplify xsltexports.h and exsltexports.h + Don't overlink executables with gcrypt + Fix quadratic behavior with variables and parameters + Remove case labels with XPointer location types + Add configure~ to .gitignore + Stop calling deprecated libxml2 functions * Portability + Use portable python shebangs (David Seifert) + Remove useless __CYGWIN__ checks + Remove cruft from win32config.h + crypto.c: Silence a compiler warning on Windows (Chun-wei Fan) * Build system + Add missing compile definition for static builds to CMake + Avoid obsolescent `test -a` constructs (David Seifert) + Only link libxml2 statically in purely static build + Set AC_CONFIG_MACRO_DIR + Allow AM_MAINTAINER_MODE to be disabled + Streamline and fix documentation installation + Don't try to recreate COPYING symlink + Remove special configuration for certain maintainers + configure.ac: produce tar.xz only (GNOME policy) (David Seifert) + Detect libm using libtool's macros (David Seifert) + configure.ac: disable static libraries by default (David Seifert) + python/Makefile.am: nest python docs in $(docdir) (David Seifert) + python/Makefile.am: rely on global AM_INIT_AUTOMAKE (David Seifert) + configure.ac: remove useless AC_SUBST (David Seifert) + Use AM_PATH_PYTHON/PKG_CHECK_MODULES for python bindings (David Seifert) + Change libxml2 Python config + Don't check for standard C89 library functions + Don't check for standard C89 headers + Remove --with-html-dir option + Also check for glibtoolize in autogen.sh + Rework documentation build system + Remove old website + CMake: Relax check for enabling crypto support on Windows (Chun-wei Fan) + Remove obsolete AC_HEADER_STDC autoconf macro (Vadim Zeitlin) + Remove special configuration for old maintainers * Test suite, CI + Remove test involving XPointer range-to function + Test recursion in EXSLT dynamic functions + Add CI job for static build * Documentation + Move tutorial images - Update to version 1.1.35: * Security fixes: + [CVE-2021-30560] Use-after-free in xsltApplyTemplates; + A couple of memory leak and a double-free fixes. * A couple of regression fixes. * Many bug fixes. * New xsltproc --huge option, provided by libxml XML_PARSE_HUGE. * Numerous tests and code and fuzzing fixes and improvements. * Updated documentation. - The full Libxslt 2.9.13 NEWS can be found here: https://download.gnome.org/sources/libxslt/1.1/libxslt-1.1.35.\ news - Switch libxml2-devel package with its pkgconfig module counterpart (libxml-2.0) to align with CONFIGURE script's checks. - Add fdupes build requirement/macro to hard-link duplicate files in the DATADIR inside the buildroot. - Add explicit 'gcc' build requirement to align with CONFIGURE checks. - Update http://xmlsoft.org URL tag to Libxslt's new web home: https://gitlab.gnome.org/GNOME/libxslt. - Update ftp://xmlsoft.org Source tag to Libxslt's new download host: https://download.gnome.org. - Drop no longer needed/used libgpg-error-devel. Note that despite 'lgpg-error' being linked against some libraries, there's no automatic generation of run-time requirements on libgpg-error* symbols our build system. And there's no mention of gpg-error in the whole source tarball at all. - Drop no longer needed explicit libtool build requirement and `autoreconf` call in build section since we don't touch the build system scripts nor use checked out git trees anymore. - Drop libxslt.keyring source file as the new download host doesn't offer GPG signatures. - Drop fixed upstream patches: libxslt-config-fixes.patch (glgo#GNOME/libxslt!3); libxslt-Stop-using-maxParserDepth-XPath-limit.patch; libxslt-Do-not-set-maxDepth-in-XPath-contexts.patch; and Recreate-xsltproc-man-page-with-old-Docbook-styleshe.patch. - Use ldconfig_scriptlets macro for post(un) handling of ldconfig calls. ==== milou5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: milou5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== mozilla-nspr ==== Version update (4.34.1 -> 4.35) - update to version 4.35 * fixes for building with clang * use the number of online processors for the PR_GetNumberOfProcessors() API on some platforms * fix build on mips+musl libc * Add support for the LoongArch 64-bit architecture ==== mozilla-nss ==== Version update (3.82 -> 3.83) Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs - update to NSS 3.83 * bmo#1788875 - Remove set-but-unused variables from SEC_PKCS12DecoderValidateBags * bmo#1563221 - remove older oses that are unused part3/ BeOS * bmo#1563221 - remove older unix support in NSS part 3 Irix * bmo#1563221 - remove support for older unix in NSS part 2 DGUX * bmo#1563221 - remove support for older unix in NSS part 1 OSF * bmo#1778413 - Set nssckbi version number to 2.58 * bmp#1785297 - Add two SECOM root certificates to NSS * bmo#1787075 - Add two DigitalSign root certificates to NSS * bmo#1778412 - Remove Camerfirma Global Chambersign Root from NSS * bmo#1771100 - Added bug reference and description to disabled UnsolicitedServerNameAck bogo ECH test * bmo#1779361 - Removed skipping of ECH on equality of private and public server name * bmo#1779357 - Added comment and bug reference to ECHRandomHRRExtension bogo test * bmo#1779370 - Added Bogo shim client HRR test support. Fixed overwriting of CHInner.random on HRR * bmo#1779234 - Added check for server only sending ECH extension with retry configs in EncryptedExtensions and if not accepting ECH. Changed config setting behavior to skip configs with unsupported mandatory extensions instead of failing * bmo# 1771100 - Added ECH client support to BoGo shim. Changed CHInner creation to skip TLS 1.2 only extensions to comply with BoGo * bmo#1771100 - Added ECH server support to BoGo shim. Fixed NSS ECH server accept_confirmation bugs * bmo#1771100 - Update BoGo tests to recent BoringSSL version * bmo#1785846 - Bump minimum NSPR version to 4.34.1 ==== mozjs102 ==== Version update (102.3.0 -> 102.4.0) - Update to version 102.4.0: + Various stability, functionality, and security fixes. + CVE-2022-42927: Same-origin policy violation could have leaked cross-origin URLs. + CVE-2022-42928: Memory Corruption in JS Engine. + CVE-2022-42929: Denial of Service via window.print. + CVE-2022-42932: Memory safety bugs fixed in Firefox 106 and Firefox ESR 102.4. ==== oxygen5-sounds ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== patterns-gnome ==== Subpackages: patterns-gnome-gnome_basic patterns-gnome-gnome_basis patterns-gnome-gnome_basis_opt patterns-gnome-sw_management_gnome - Require at-spi2-core else risk major performance issues (boo#1204564) - Delete some abandoned packages. - Replace gnome-tweak-tool to gnome-tweaks. - Add gnome-backgrounds Recommends to gnome-x11 pattern. ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Require at-spi2-core else risk major performance issues (boo#1204564) - Do not require kdump on 32-bit arm - boo#1203888 - Replace tftpboot-installation-openSUSE-MicroOS-%{_arch} with tftpboot-installation-openSUSE-MicroOS-%{_target_cpu} to match what installation-images:MicroOS produces ==== plasma-browser-integration ==== Version update (5.26.0 -> 5.26.1) Subpackages: plasma-browser-integration-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * Fix excess comma in X-Plasma-Runner-Syntaxes values ==== plasma-nm5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: plasma-nm5-lang plasma-nm5-openvpn - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * applet: add missing left padding on toolbar (kde#458742) * applet: Fix enabled states of Wi-Fi and WWAN checkboxes in Edit Mode ==== plasma5-addons ==== Version update (5.26.0 -> 5.26.1) Subpackages: plasma5-addons-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * Add missing Messages.sh * Revert "wallpapers/potd: show image with cursor when dragging" (kde#460378) * Revert "wallpapers/potd: clear `Drag.imageSource` on `dragFinished`" * Icon switchers: Use the actual app icon, not the plasma icon for the app * fuzzy-clock: Fix colors in full representation (calendar view) * colorpicker: Make left-clicking a color copy in the default format (kde#457311) * Fuzzy-clock, binary-clock: Fix clicking applets again to close calendar ==== plasma5-desktop ==== Version update (5.26.0 -> 5.26.1) Subpackages: plasma5-desktop-emojier - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * Make drag and drop of pager more reliable (kde#460541,kde#460545) * Also delete entry with Notify flag * Move the panel's placeholder instead of the target item and animate all of the items inbetween; also fixes mouse input that gets lost when quickly dragging applet to the very end of the panel. * Revert "containments/panel: iterate all items between start index and end index when pressed" * desktoptoolbox: fix flickering on closing (kde#417849) * containments/panel: iterate all items between start index and end index when pressed ==== plasma5-disks ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== plasma5-integration ==== Version update (5.26.0 -> 5.26.1) Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Update to 5.26.1 ==== plasma5-pa ==== Version update (5.26.0 -> 5.26.1) Subpackages: plasma5-pa-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * don't crash when the server doesn't respond (kde#454647,kde#437272) ==== plasma5-systemmonitor ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== plasma5-thunderbolt ==== Version update (5.26.0 -> 5.26.1) - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== plasma5-workspace ==== Version update (5.26.0 -> 5.26.1) Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * fix is default locale check (kde#460418) * remove excess pages before pushing new pages * [applets/diskanddevices] Add xdg-activation support to device ations (kde#460268) * krdb: do not crash on file system problems * Make the panel's corner mask 1px smaller to avoid artifacts at the corners (kde#417511) * Handle multiple desktop files with different StartupWMClass (kde#358277) * Add scaling and rotation support to a blur behind desktop plasmoids * wallpapers/image: fix potential dead loop in PackageFinder * wallpapers/image: fix potential dead loop in ImageFinder * wallpapers/image: fix symlink not being found by ImageFinder (kde#460287) * Revert "wallpapers/image: Fix when used outside plasmashell" * wallpapers/image: Fix when used outside plasmashell * If an app is playing media but hasn't provided a title, say as much instead of "No media playing" (kde#456516) * wallpapers/image: reset `scale` to 1 to work around QTBUG-107458 * wallpapers/image: reduce the maximum allowed cost of QCache * wallpapers/image: fix side-by-side previews sometimes not showing * wallpapers/image: reduce preview cache insertion for single images ==== polkit-default-privs ==== Version update (1550+20220919.3b55a1f -> 1550+20221018.7616c25) - Update to version 1550+20221018.7616c25: * fwupd (bsc#1204026): add incremental {get,set}-bios-settings ==== polkit-kde-agent-5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: polkit-kde-agent-5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== powerdevil5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: powerdevil5-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - No code changes since 5.26.0 ==== python-setuptools ==== Version update (63.2.0 -> 65.5.0) - Skip test_pbr_integration because it tries to install pbr using pip from network - Add fix-get-python-lib-python38.patch to fix get_python_lib() method in python3.8 bsc#1204395 - Update to version 65.5.0: * #3624: Fixed editable install for multi-module/no-package src-layout projects. * #3626: Minor refactorings to support distutils using stdlib logging module. * #3419: Updated the example version numbers to be compliant with PEP-440 on the "Specifying Your Project’s Version" page of the user guide. * #3569: Improved information about conflicting entries in the current working directory and editable install (in documentation and as an informational warning). * #3576: Updated version of validate_pyproject. - v65.4.1 * #3613: Fixed encoding errors in expand.StaticModule when system default encoding doesn't match expectations for source files. * #3617: Merge with pypa/distutils@6852b20 including fix for pypa/distutils#181. - v65.4.0 * #3609: Merge with pypa/distutils@d82d926 including support for DIST_EXTRA_CONFIG in pypa/distutils#177. - v65.3.0 * #3547: Stop ConfigDiscovery.analyse_name from splatting the Distribution.name attribute -- by :user:`jeamland` * #3554: Changed requires to requests in the pyproject.toml example in the :doc:`Dependency management section of the Quickstart guide ` -- by :user:`mfbutner` * #3561: Fixed accidental name matching in editable hooks. - v65.2.0 * #3553: Sync with pypa/distutils@22b9bcf, including fixed cross-compiling support and removing deprecation warning per pypa/distutils#169. - v65.1.1 * #3551: Avoided circular imports in meta path finder for editable installs when a missing module has the same name as its parent. - v65.1.0 * #3536: Remove monkeypatching of msvc9compiler. * #3538: Corrected documentation on how to use the legacy-editable mode. - v65.0.2 * #3505: Restored distutils msvccompiler and msvc9compiler modules and marked as deprecated (pypa/distutils@c802880). - v65.0.1 * #3529: Added clarification to :doc:`/userguide/quickstart` about support to setup.py. * #3526: Fixed backward compatibility of editable installs and custom build_ext commands inheriting directly from distutils. * #3528: Fixed buid_meta.prepare_metadata_for_build_wheel when given metadata_directory is ".". - v65.0.0 * #3505: Removed 'msvccompiler' and 'msvc9compiler' modules from distutils. * #3521: Remove bdist_msi and bdist_wininst commands, which have been deprecated since Python 3.9. Use older Setuptools for these behaviors if needed. * #3519: Changed the note in keywords documentation regarding editable installations to specify which setuptools version require a minimal setup.py file or not. - v64.0.3 * #3515: Fixed "inline" file copying for editable installations and optional extensions. * #3517: Fixed editable_wheel to ensure other commands are finalized before using them. This should prevent errors with plugins trying to use different commands or reinitializing them. * #3517: Augmented filter to prevent transient/temporary source files from being considered package_data or data_files. - v64.0.2 * #3506: Suppress errors in custom build_py implementations when running editable installs in favor of a warning indicating what is the most appropriate migration path. This is a transitional measure. Errors might be raised in future versions of setuptools. * #3512: Added capability of handling namespace packages created accidentally/purposefully via discovery configuration during editable installs. This should emulate the behaviour of a non-editable installation. - v64.0.1 * #3497: Fixed editable_wheel for legacy namespaces. * #3502: Fixed issue with editable install and single module distributions. * #3503: Added filter to ignore external .egg-info files in manifest. * Some plugins might rely on the fact that the .egg-info directory is produced inside the project dir, which may not be the case in editable installs (the .egg-info directory is produced inside the metadata directory given by the build frontend via PEP 660 hooks). - v64.0.0 * #3380: Passing some types of parameters via --global-option to setuptools PEP 517/PEP 660 backend is now considered deprecated. The user can pass the same arbitrary parameter via --build-option (--global-option is now reserved for flags like --verbose or --quiet). * Both --build-option and --global-option are supported as a transitional effort (a.k.a. "escape hatch"). In the future a proper list of allowed config_settings may be created. * #3265: Added implementation for editable install hooks (PEP 660). * #3380: Improved the handling of the config_settings parameter in both PEP 517 and PEP 660 interfaces: * #3392: Exposed get_output_mapping() from build_py and build_ext subcommands. This interface is reserved for the use of setuptools Extensions and third part packages are explicitly disallowed to calling it. However, any implementation overwriting build_py or build_ext are required to honour this interface. * #3412: Added ability of collecting source files from custom build sub-commands to sdist. This allows plugins and customization scripts to automatically add required source files in the source distribution. ... changelog too long, skipping 34 lines ... cygwincompiler (pypa/distutils#161). ==== raspberrypi-firmware ==== Version update (2022.09.30 -> 2022.10.18) - Update to ab37ef59f (2022-10-18): * firmware: ldconfig: Add all, none, tryboot section support to autoboot.txt for start.elf * firmware: arm-dt: bootloader: Pass the original partition number when booting a ramdisk * firmware: arm_loader: HAT EEPROM support for GPIO bank 1 See: #1756 - Update to bfbd42ef2 (2022-10-14): * firmware: isp: Run ISP without hi-res output buffer * firmware: arm_dt: Export the bootloader EEPROM RSA public key via device-tree * firmware: Add tryboot A_B mode * firmware: il: isp: Correct order buffers were returned in * firmware: board_info: Fix Pi 400 PHY addresses See: #1754 ==== raspberrypi-firmware-config ==== Version update (2022.09.30 -> 2022.10.18) - Update to ab37ef59f (2022-10-18): * firmware: ldconfig: Add all, none, tryboot section support to autoboot.txt for start.elf * firmware: arm-dt: bootloader: Pass the original partition number when booting a ramdisk * firmware: arm_loader: HAT EEPROM support for GPIO bank 1 See: #1756 - Update to bfbd42ef2 (2022-10-14): * firmware: isp: Run ISP without hi-res output buffer * firmware: arm_dt: Export the bootloader EEPROM RSA public key via device-tree * firmware: Add tryboot A_B mode * firmware: il: isp: Correct order buffers were returned in * firmware: board_info: Fix Pi 400 PHY addresses See: #1754 ==== readline ==== Subpackages: libreadline8 readline-doc - Extend version linker map file to detect usage of new symbols (boo#1204336) ==== rpm ==== Subpackages: librpmbuild9 - Update the macros file to simplify the debuginfo installation We don't support parallel installation of the same debuginfo - and so don't patch the binaries to create unique build ids (easing pressure on reproducable builds when compiling twice) Patching this in rpm-config-SUSE is technically not possible (as you can't reliable undefine things defined in upstream macro). We tried in https://github.com/openSUSE/rpm-config-SUSE/pull/59 and /60: ==== rsync ==== Version update (3.2.6 -> 3.2.7) - New version fixes bug (boo#1203727): implicit containing directory sometimes rejected as unrequested - update to 3.2.7 * BUG FIXES: - Fixed the client-side validating of the remote sender's filtering behavior. - More fixes for the "unrequested file-list name" name, including a copy of "/" with `--relative` enabled and a copy with a lot of related paths with `--relative` enabled (often derived from a `--files-from` list). - When rsync gets an unpack error on an ACL, mention the filename. - Avoid over-setting sanitize_paths when a daemon is serving "/" (even if "use chroot" is false). * ENHANCEMENTS: - Added negotiated daemon-auth support that allows a stronger checksum digest to be used to validate a user's login to the daemon. Added SHA512, SHA256, and SHA1 digests to MD5 & MD4. These new digests are at the highest priority in the new daemon-auth negotiation list. - Added support for the SHA1 digest in file checksums. While this tends to be overkill, it is available if someone really needs it. This overly-long checksum is at the lowest priority in the normal checksum negotiation list. See [`--checksum-choice`](rsync.1#opt) (`--cc`) and the `RSYNC_CHECKSUM_LIST` environment var for how to customize this. - Improved the xattr hash table to use a 64-bit key without slowing down the key's computation. This should make extra sure that a hash collision doesn't happen. - If the `--version` option is repeated (e.g. `-VV`) then the information is output in a (still readable) JSON format. Client side only. - The script `support/json-rsync-version` is available to get the JSON style version output from any rsync. The script accepts either text on stdin * *or** an arg that specifies an rsync executable to run with a doubled `--version` option. If the text we get isn't already in JSON format, it is converted. Newer rsync versions will provide more complete json info than older rsync versions. Various tweaks are made to keep the flag names consistent across versions. - The [`use chroot`](rsyncd.conf.5#) daemon parameter now defaults to "unset" so that rsync can use chroot when it works and a sanitized copy when chroot is not supported (e.g., for a non-root daemon). Explicitly setting the parameter to true or false (on or off) behaves the same way as before. - The `--fuzzy` option was optimized a bit to try to cut down on the amount of computations when considering a big pool of files. The simple heuristic from Kenneth Finnegan resuled in about a 2x speedup. - If rsync is forced to use protocol 29 or before (perhaps due to talking to an rsync before 3.0.0), the modify time of a file is limited to 4-bytes. Rsync now interprets this value as an unsigned integer so that a current year past 2038 can continue to be represented. This does mean that years prior to 1970 cannot be represented in an older protocol, but this trade-off seems like the right choice given that (1) 2038 is very rapidly approaching, and (2) newer protocols support a much wider range of old and new dates. - The rsync client now treats an empty destination arg as an error, just like it does for an empty source arg. This doesn't affect a `host:` arg (which is treated the same as `host:.`) since the arg is not completely empty. The use of [`--old-args`](rsync.1#opt) (including via `RSYNC_OLD_ARGS`) allows the prior behavior of treating an empty destination arg as a ".". * PACKAGING RELATED: - The checksum code now uses openssl's EVP methods, which gets rid of various deprecation warnings and makes it easy to support more digest methods. On newer systems, the MD4 digest is marked as legacy in the openssl code, which makes openssl refuse to support it via EVP. You can choose to ignore this and allow rsync's MD4 code to be used for older rsync connections (when talking to an rsync prior to 3.0.0) or you can choose to configure rsync to tell openssl to enable legacy algorithms (see below). - A simple openssl config file is supplied that can be installed for rsync to use. If you install packaging/openssl-rsync.cnf to a public spot (such as `/etc/ssl/openssl-rsync.cnf`) and then run configure with the option `--with-openssl-conf=/path/name.cnf`, this will cause rsync to export the configured path in the OPENSSL_CONF environment variable (when the variable is not already set). This will enable openssl's MD4 code for rsync to use. - The packager may wish to include an explicit "use chroot = true" in the top section of their supplied /etc/rsyncd.conf file if the daemon is being installed to run as the root user (though rsync should behave the same even with the value unset, a little extra paranoia doesn't hurt). - I've noticed that some packagers haven't installed support/nameconvert for users to use in their chrooted rsync configs. Even if it is not installed as an executable script (to avoid a python3 dependency) it would be good to install it with the other rsync-related support scripts. - It would be good to add support/json-rsync-version to the list of installed support scripts. ==== samba ==== Version update (4.17.0+git.257.5f0ed03584a -> 4.17.1+git.270.17afe7cb6b) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3 - Update to 4.17.1 * CVE-2021-20251 [SECURITY] Bad password count not incremented atomically; (bso#14611). * smbXsrv_connection_shutdown_send result leaked; (bso#15174). * Flush on a named stream never completes; (bso#15182). * Permission denied calling SMBC_getatr when file not exists; (bso#15195). * Samba 4.5 sometimes cannot be upgraded to Samba 4.6 or later over DRS: WERROR_DS_DRA_MISSING_PARENT due to faulty GET_ANC; (bso#15189). * pytest: add file removal helpers for TestCaseInTempDir; (bso#15191). * CVE-2021-20251 [SECURITY] Bad password count not incremented atomically; (bso#14611). * Samba 4.5 sometimes cannot be upgraded to Samba 4.6 or later over DRS: WERROR_DS_DRA_MISSING_PARENT due to faulty GET_ANC; (bso#15189). * Flush on a named stream never completes; (bso#15182). * vfs_gpfs silently garbles timestamps > year 2106; (bso#15151). * CVE-2021-20251 [SECURITY] Bad password count not incremented atomically; (bso#14611). * multi-channel socket passing may hit a race if one of the involved processes already existed; (bso#15200). * memory leak on temporary of struct imessaging_post_state and struct tevent_immediate on struct imessaging_context (in rpcd_spoolss and maybe others); (bso#15201). * Since popt1.19 various use after free errors using result of poptGetArg are now exposed; (bso#15205); (boo#1204279). * Remove special case for O_CREAT in SMB_VFS_OPENAT from vfs_glusterfs; (bso#15192). * GETPWSID in memory cache grows indefinetly with each NTLM auth; (bso#15169). * CVE-2021-20251 [SECURITY] Bad password count not incremented atomically; (bso#14611). - Install a systemd drop-in file for named service to allow read/write access to the DLZ directory; (bsc#1201689); - Fix use after free errors resulting from using return of poptGetArg exposed since popt-1.19; (boo#1204279); (bso#15205). ==== systemd ==== Version update (251.5 -> 251.6) Subpackages: libsystemd0 libudev1 systemd-doc udev - Import commit f78bba8d037cc26c09bbdd167625b2d7fe1f5a30 (merge of v251.6) Beside the merge of v251.6, it also includes the following backport: - 07aaa898bd pstore: do not try to load all known pstore modules For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/07aa29e3942fb46b0aed5405c88e8d3179ca958f...f78bba8d037cc26c09bbdd167625b2d7fe1f5a30 - Don't create /var/lib/systemd/random-seed in %post (bsc#1181458) To make sure that the same seed is not replicated when installing from a 'golden' image. For regular installations the random seed file is initialized by the installer itself (bsc#1174964). Even if it didn't, the random seed file would be created on first boot anyway. - Avoid expanding of macro in comment which leads to an error on installation (workaround for bsc#1203847) ==== systemsettings5 ==== Version update (5.26.0 -> 5.26.1) Subpackages: systemsettings5-lang - Add patch to fix starting YaST from systemsettings: * 0001-Recognize-SystemSettingsExternalApp-again.patch - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * [runner] Fix desktop file name (kde#459213) ==== wicked ==== Version update (0.6.69 -> 0.6.70) Subpackages: wicked-service - version 0.6.70 - build: Link as Position Independent Executable (bsc#1184124) - dhcp4: Fix issues in reuse of last lease (bsc#1187655) - dhcp6: Add option to refresh lease (jsc#SLE-9492,jsc#SLE-24307) - dhcp6: Remove address before release (USGv6 DHCPv6_1_2_07b) - dhcp6: Ignore lease release status (USGv6 DHCPv6_1_2_07e,1_3_03) - dhcp6: Consider ppp interfaces supported (gh#openSUSE/wicked#924) - team: Fix to configure port priority in teamd (bsc#1200505) - firewall-ext: No config change on ifdown (bsc#1201053,bsc#118950) - wireless: Fix SEGV on supplicant restart (gh#openSUSE/wicked#931) - wireless: Add support for WPA3 and PMF (bsc#1198894) - wireless: Remove libiw dependencies (gh#openSUSE/wicked#910) - client: Fix SEGV on empty xpath results (gh#openSUSE/wicked#919) - client: Add release options to ifdown/ifreload (jsc#SLE-10249) - dbus: Clear string array before append (gh#openSUSE/wicked#913) - socket: Fix SEGV on heavy socket restart errors (bsc#1192508) - systemd: Remove systemd-udev-settle dependency (bsc#1186787) ==== xcb-util-image ==== Version update (0.4.0 -> 0.4.1) - Update to version 0.4.1 * Update README for gitlab migration * Add README.md to EXTRA_DIST * Update configure.ac bug URL for gitlab migration * Update m4 to xorg/util/xcb-util-m4@c617eee22ae5c285e79e81 * gitlab CI: add a basic build test * configure: Drop AM_MAINTAINER_MODE * autogen.sh: Honor NOCONFIGURE=1 * test: add XCB_SHM_LIBS to all test * autogen.sh: use quoted string variables * autogen: add default patch prefix * autogen.sh: use exec instead of waiting for configure to finish ==== xcb-util-keysyms ==== Version update (0.4.0 -> 0.4.1) - Update to version 0.4.1 * Update README for gitlab migration * Use AC_CONFIG_FILES to replace the deprecated AC_OUTPUT with parameters * Update m4 to xorg/util/xcb-util-m4@c617eee22ae5c285e79e81 * gitlab CI: add a basic build test * configure: Drop AM_MAINTAINER_MODE * autogen.sh: Honor NOCONFIGURE=1 * Add COPYING file * autogen.sh: use quoted string variables * autogen: add default patch prefix * autogen.sh: use exec instead of waiting for configure to finish ==== xcb-util-renderutil ==== Version update (0.3.9 -> 0.3.10) - marked baselibs.conf as source in specfile - Update to release 0.3.10 * Update README for gitlab migration * Update configure.ac bug URL for gitlab migration * Update m4 to xorg/util/xcb-util-m4@c617eee22ae5c285e79e81 * gitlab CI: add a basic build test * configure: Drop AM_MAINTAINER_MODE * autogen.sh: Honor NOCONFIGURE=1 * autogen.sh: use quoted string variables * autogen: add default patch prefix * autogen.sh: use exec instead of waiting for configure to finish ==== xcb-util-wm ==== Version update (0.4.1 -> 0.4.2) - Update to version 0.4.2 * Update configure.ac bug URL for gitlab migration * Update README for gitlab migration * Update m4 to xorg/util/xcb-util-m4@c617eee22ae5c285e79e81 * gitlab CI: add a basic build test * configure: Drop AM_MAINTAINER_MODE * autogen.sh: Honor NOCONFIGURE=1 * Update .gitmodules for gitlab submodule * autogen.sh: use quoted string variables * autogen: add default patch prefix * autogen.sh: use exec instead of waiting for configure to finish ==== xdg-desktop-portal-gnome ==== Version update (43.0 -> 43.1) - Update to version 43.1: + Close dialogs with the Escape key. + Updated translations. ==== xdg-desktop-portal-kde ==== Version update (5.26.0 -> 5.26.1) Subpackages: xdg-desktop-portal-kde-lang - Update to 5.26.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.1 - Changes since 5.26.0: * screenshare SNI: use monochrome-compatible icon (kde#460514) ==== xkeyboard-config ==== Version update (2.36 -> 2.37) - Update to version 2.37 * bugfixes - supersedes U_Fixes-regression-from-c3c5d02-were-mistakenly-replac.patch - Reduce python3 to python3-base ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - U_xkb-proof-GetCountedString-against-request-length-at.patch * security update for CVE-2022-3550 (bsc#1204412) - U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch * security update for CVE-2022-3551 (bsc#1204416) ==== xwayland ==== - U_xkb-proof-GetCountedString-against-request-length-at.patch * security update for CVE-2022-3550 (bsc#1204412) - U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch * security update for CVE-2022-3551 (bsc#1204416) ==== yast2-country ==== Version update (4.5.1 -> 4.5.2) Subpackages: yast2-country-data - Use Canadian (CSA) instead of Canadian (Multilingual) keyboard layout, adapting to xkeyboard-config-2.37 (bsc#1204573) - 4.5.2 ==== yast2-installation ==== Version update (4.5.7 -> 4.5.8) - add 'repo', 'cd', 'dvd', 'hd', and 'label' schemes to Yast::Transfer::FileFromUrl (jsc#SLE-22578, jsc#SLE-24584) - 4.5.8 ==== yast2-storage-ng ==== Version update (4.5.9 -> 4.5.10) - Unit tests adapted to a recent behavior change in libstorage-ng (gh#openSUSE/libstorage-ng#900). - 4.5.10