Packages changed: AppStream (0.16.1 -> 0.16.2) Mesa (23.0.3 -> 23.1.2) Mesa-drivers (23.0.3 -> 23.1.2) MozillaFirefox (113.0.2 -> 114.0.1) apparmor (3.1.4 -> 3.1.5) attica-qt5 (5.106.0 -> 5.107.0) baloo5 (5.106.0 -> 5.107.0) baloo5-widgets (23.04.1 -> 23.04.2) bluez-qt (5.106.0 -> 5.107.0) breeze5-icons (5.106.0 -> 5.107.0) busybox (1.36.0 -> 1.36.1) cockpit (276.1 -> 293) cockpit-podman (53 -> 70) codec2 (1.1.0 -> 1.1.1) cracklib (2.9.8 -> 2.9.11) criu (3.17.1 -> 3.18) cryptsetup dbus-1 (1.14.6 -> 1.14.8) docker (23.0.6_ce -> 24.0.2_ce) dolphin (23.04.1 -> 23.04.2) evolution-data-server (3.48.2 -> 3.48.3) ffmpegthumbs (23.04.1 -> 23.04.2) filelight (23.04.1 -> 23.04.2) firewalld (1.3.2 -> 1.3.3) frameworkintegration (5.106.0 -> 5.107.0) fribidi (1.0.12 -> 1.0.13) fuse-overlayfs (1.10 -> 1.12) fuse3 (3.14.1 -> 3.15.0) fwupd (1.8.12 -> 1.8.16) gdb (12.1 -> 13.2) git (2.40.1 -> 2.41.0) gjs (1.76.0 -> 1.76.1) gnome-shell (44.1 -> 44.2) gstreamer-plugins-good gtk4 (4.10.3 -> 4.10.4) gvfs hwdata (0.370 -> 0.371) kaccounts-integration (23.04.1 -> 23.04.2) kaccounts-providers (23.04.1 -> 23.04.2) kactivities-stats (5.106.0 -> 5.107.0) kactivities5 (5.106.0 -> 5.107.0) karchive (5.106.0 -> 5.107.0) kate (23.04.1 -> 23.04.2) kauth (5.106.0 -> 5.107.0) kbd kbookmarks (5.106.0 -> 5.107.0) kcmutils (5.106.0 -> 5.107.0) kcodecs (5.106.0 -> 5.107.0) kcompletion (5.106.0 -> 5.107.0) kconfig (5.106.0 -> 5.107.0) kconfigwidgets (5.106.0 -> 5.107.0) kcoreaddons (5.106.0 -> 5.107.0) kcrash (5.106.0 -> 5.107.0) kdbusaddons (5.106.0 -> 5.107.0) kde-print-manager (23.04.1 -> 23.04.2) kdeclarative (5.106.0 -> 5.107.0) kded (5.106.0 -> 5.107.0) kdegraphics-thumbnailers (23.04.1 -> 23.04.2) kdelibs4support (5.106.0 -> 5.107.0) kdenetwork-filesharing (23.04.1 -> 23.04.2) kdesu (5.106.0 -> 5.107.0) kdialog (23.04.1 -> 23.04.2) kdnssd-framework (5.106.0 -> 5.107.0) kdoctools (5.106.0 -> 5.107.0) kdump (1.0.2+git50.g4b01402 -> 1.0.3) kernel-firmware (20230517 -> 20230531) kernel-source (6.3.4 -> 6.3.7) keylime (7.0.0 -> 7.2.5) kfilemetadata5 (5.106.0 -> 5.107.0) kglobalaccel (5.106.0 -> 5.107.0) kguiaddons (5.106.0 -> 5.107.0) khelpcenter5 (23.04.1 -> 23.04.2) kholidays (5.106.0 -> 5.107.0) khtml (5.106.0 -> 5.107.0) ki18n (5.106.0 -> 5.107.0) kiconthemes (5.106.0 -> 5.107.0) kidletime (5.106.0 -> 5.107.0) kimageformats (5.106.0 -> 5.107.0) kinit (5.106.0 -> 5.107.0) kio (5.106.0 -> 5.107.0) kio-extras5 (23.04.1 -> 23.04.2) kirigami2 (5.106.0 -> 5.107.0) kitemmodels (5.106.0 -> 5.107.0) kitemviews (5.106.0 -> 5.107.0) kjobwidgets (5.106.0 -> 5.107.0) kjs (5.106.0 -> 5.107.0) knewstuff (5.106.0 -> 5.107.0) knotifications (5.106.0 -> 5.107.0) knotifyconfig (5.106.0 -> 5.107.0) konsole (23.04.1 -> 23.04.2) kpackage (5.106.0 -> 5.107.0) kparts (5.106.0 -> 5.107.0) kpeople5 (5.106.0 -> 5.107.0) kpty (5.106.0 -> 5.107.0) kquickcharts (5.106.0 -> 5.107.0) krunner (5.106.0 -> 5.107.0) kservice (5.106.0 -> 5.107.0) ktexteditor (5.106.0 -> 5.107.0) ktextwidgets (5.106.0 -> 5.107.0) kunitconversion (5.106.0 -> 5.107.0) kwallet (5.106.0 -> 5.107.0) kwalletmanager5 (23.04.1 -> 23.04.2) kwayland (5.106.0 -> 5.107.0) kwidgetsaddons (5.106.0 -> 5.107.0) kwindowsystem (5.106.0 -> 5.107.0) kxmlgui (5.106.0 -> 5.107.0) libKF5ModemManagerQt (5.106.0 -> 5.107.0) libKF5NetworkManagerQt (5.106.0 -> 5.107.0) libX11 libadwaita (1.3.2 -> 1.3.3) libapparmor (3.1.4 -> 3.1.5) libcontainers-common libimobiledevice (1.3.0+git.20210921 -> 1.3.0+179git.20230430) libimobiledevice-glue (0~git.20210925 -> 1.0.0+git3.20230513) libjxl (0.8.1 -> 0.8.2) libkdcraw (23.04.1 -> 23.04.2) libkexiv2 (23.04.1 -> 23.04.2) libmysofa libnettle (3.9 -> 3.9.1) libqt5-qtbase (5.15.9+kde154 -> 5.15.10+kde129) libqt5-qtdeclarative (5.15.9+kde25 -> 5.15.10+kde26) libqt5-qtgraphicaleffects (5.15.9+kde0 -> 5.15.10+kde0) libqt5-qtimageformats (5.15.9+kde9 -> 5.15.10+kde9) libqt5-qtlocation (5.15.9+kde5 -> 5.15.10+kde4) libqt5-qtmultimedia (5.15.9+kde3 -> 5.15.10+kde3) libqt5-qtquickcontrols (5.15.9+kde0 -> 5.15.10+kde0) libqt5-qtquickcontrols2 (5.15.9+kde5 -> 5.15.10+kde6) libqt5-qtsensors (5.15.9+kde0 -> 5.15.10+kde0) libqt5-qtspeech (5.15.9+kde1 -> 5.15.10+kde1) libqt5-qtsvg (5.15.9+kde8 -> 5.15.10+kde8) libqt5-qttools (5.15.9+kde1 -> 5.15.10+kde3) libqt5-qttranslations (5.15.9+kde0 -> 5.15.10+kde0) libqt5-qtvirtualkeyboard (5.15.9+kde0 -> 5.15.10+kde0) libqt5-qtwayland (5.15.9+kde55 -> 5.15.10+kde51) libqt5-qtwebchannel (5.15.9+kde3 -> 5.15.10+kde3) libqt5-qtwebview (5.15.9+kde0 -> 5.15.10+kde0) libqt5-qtx11extras (5.15.9+kde0 -> 5.15.10+kde0) libqt5-qtxmlpatterns (5.15.9+kde0 -> 5.15.10+kde0) librsvg libselinux-bindings libstorage-ng (4.5.115 -> 4.5.120) liburing (2.3 -> 2.4) libzypp (17.31.11 -> 17.31.13) llvm16 (16.0.4 -> 16.0.6) mobipocket (23.04.1 -> 23.04.2) mozilla-nss (3.89 -> 3.89.1) mpfr mutter (44.1+2 -> 44.2) ncurses (6.4.20230520 -> 6.4.20230615) open-iscsi openssh (8.9p1 -> 9.3p1) openssh-askpass-gnome (8.9p1 -> 9.3p1) openvpn (2.6.4 -> 2.6.5) orc (0.4.33 -> 0.4.34) osinfo-db (20230308 -> 20230518) pcsc-lite (1.9.9 -> 2.0.0) perl (5.36.0 -> 5.36.1) permissions (1699_20230516 -> 1699_20230602) pinentry pinentry-gui plasma-framework (5.106.0 -> 5.107.0) polkit-default-privs (1550+20230517.ab68b2d -> 1550+20230606.5001571) poppler (23.05.0 -> 23.06.0) poppler-qt5 (23.05.0 -> 23.06.0) postfix (3.8.0 -> 3.8.1) prison-qt5 (5.106.0 -> 5.107.0) publicsuffix (20230426 -> 20230613) purpose (5.106.0 -> 5.107.0) qpdf (11.3.0 -> 11.4.0) qqc2-desktop-style (5.106.0 -> 5.107.0) rubygem-ruby-dbus (0.22.1 -> 0.23.0.beta1) rust-keylime (0.2.1+git.1682587333.b497f1d -> 0.2.1+git.1685699835.3c9d17c) samba (4.18.1+git.298.4ccf830b2a4 -> 4.18.3+git.303.c08b73d523c) signon-kwallet-extension (23.04.1 -> 23.04.2) sof-firmware (2.2.4 -> 2.2.5) solid (5.106.0 -> 5.107.0) sonnet (5.106.0 -> 5.107.0) spectacle (23.04.1 -> 23.04.2) suse-module-tools (16.0.30 -> 16.0.31) sushi (43.0 -> 44.2) syndication (5.106.0 -> 5.107.0) syntax-highlighting (5.106.0 -> 5.107.0) systemd (253.4 -> 253.5) systemd-presets-branding-openSUSE systemd-presets-common-SUSE systemd-rpm-macros (22 -> 23) threadweaver (5.106.0 -> 5.107.0) time tree (2.1.0 -> 2.1.1) usbmuxd (1.1.1 -> 1.1.1+git48.01c94c7) vim (9.0.1572 -> 9.0.1632) vte (0.72.1 -> 0.72.2) wayland-utils (1.1.0 -> 1.2.0) wget wireless-regdb (20230503 -> 20230601) wtmpdb (0.5.0 -> 0.6.0) xrdb (1.2.1 -> 1.2.2) xterm (380 -> 382) xwayland (23.1.1 -> 23.1.2) yast2-bootloader (4.6.1 -> 4.6.2) yast2-storage-ng (4.6.10 -> 4.6.11) yast2-users (4.6.1 -> 4.6.2) zchunk (1.3.0 -> 1.3.1) zenity (3.92.0 -> 3.99.0) === Details === ==== AppStream ==== Version update (0.16.1 -> 0.16.2) Subpackages: libAppStreamQt2 libappstream4 - Update to 0.16.2: Features: * Add API for asking whether the pool is empty * Add DDE to known desktop-environment list * validator: Check if Release Description is inside description tag * Make AppStream use BCP47 for locale in XML data Bugfixes: * Add missing standard::is-hidden attribute to file search enumerator * spdx: Accept brackets in spdx license expression check * introspection: Bring back AS_FORMAT_STYLE_COLLECTION into its enum * compose: Fix crash in asc_l10n_search_translations_qt() * compose: Set lower-cased CID for synthesized components again * Don't crash when non-YAML documents are read as YAML Miscellaneous: * sanitizers: Allow null-dereference check again - Drop patch, merged upstream: * bfa8fa6ac4ef645368a93384a6c16ac551a40922.patch - Add upstream change: * 0001-Do-not-override-default-priority-when-parsing-multip.patch ==== Mesa ==== Version update (23.0.3 -> 23.1.2) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - use -Dxlib-lease=enabled also for -drivers build - Fix of bsc#1212345 * After update to 23.1.1 this change affected our build split: https://gitlab.freedesktop.org/mesa/mesa/-/commit/2630f4b310f534c830250be44d285e485da83869 - Update to bugfix release 23.1.2 - needed to fix build of Mesa 23.1 * Mesa-drivers: -Dshader-cache=enabled * Mesa: -Dxlib-lease=enabled * recommended for both Mesa and Mesa-drivers to avoid some scary messages when comparing fds: -Dallow-kcmp=enabled - Credits for figuring this out go to "llyyr" - gbm files are no longer needed to be removed manually for -drivers build - VDPAU support for r300 has been dropped with Mesa 23.1 - supersedes n_no-sse2-on-ix86-except-for-intel-drivers.patch - Update to bugfix release 23.1.1 - adjusted u_dep_xcb.patch - Update to 23.1.0 * new feature release * some highlights + Our OpenCL implementation Rusticl added support for AMD GPUs. + Both ANV (Intel) and RADV (AMD) got initial support for Vulkan Video decoding. + Vulkan Graphics Pipeline Libraries (GPL) are now supported in RADV. - adjusted n_stop-iris-flicker.patch - supersedes U_ReturnME.patch - meson option "-Ddri-drivers" has been removed; wasn't used any longer by us --> killed it ==== Mesa-drivers ==== Version update (23.0.3 -> 23.1.2) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - use -Dxlib-lease=enabled also for -drivers build - Fix of bsc#1212345 * After update to 23.1.1 this change affected our build split: https://gitlab.freedesktop.org/mesa/mesa/-/commit/2630f4b310f534c830250be44d285e485da83869 - Update to bugfix release 23.1.2 - needed to fix build of Mesa 23.1 * Mesa-drivers: -Dshader-cache=enabled * Mesa: -Dxlib-lease=enabled * recommended for both Mesa and Mesa-drivers to avoid some scary messages when comparing fds: -Dallow-kcmp=enabled - Credits for figuring this out go to "llyyr" - gbm files are no longer needed to be removed manually for -drivers build - VDPAU support for r300 has been dropped with Mesa 23.1 - supersedes n_no-sse2-on-ix86-except-for-intel-drivers.patch - Update to bugfix release 23.1.1 - adjusted u_dep_xcb.patch - Update to 23.1.0 * new feature release * some highlights + Our OpenCL implementation Rusticl added support for AMD GPUs. + Both ANV (Intel) and RADV (AMD) got initial support for Vulkan Video decoding. + Vulkan Graphics Pipeline Libraries (GPL) are now supported in RADV. - adjusted n_stop-iris-flicker.patch - supersedes U_ReturnME.patch - meson option "-Ddri-drivers" has been removed; wasn't used any longer by us --> killed it ==== MozillaFirefox ==== Version update (113.0.2 -> 114.0.1) - Mozilla Firefox 114.0.1 * Fix a startup crash (bmo#1837201, boo#1212101) - Only install vaapitest for wayland-enabled builds, where it gets built - Rebase mozilla-silence-no-return-type.patch - Rebase s390x-patches, and remove obsolete patches: mozilla-bmo1005535.patch mozilla-s390x-skia-gradient.patch - Mozilla Firefox 114.0 MFSA 2023-20 (bsc#1211922) * CVE-2023-34414 (bmo#1695986) Click-jacking certificate exceptions through rendering lag * CVE-2023-34415 (bmo#1811999) Site-isolation bypass on sites that allow open redirects to data: urls * CVE-2023-34416 (bmo#1752703, bmo#1818394, bmo#1826875, bmo#1827340, bmo#1827655, bmo#1828065, bmo#1830190, bmo#1830206, bmo#1830795, bmo#1833339) Memory safety bugs fixed in Firefox 114 and Firefox ESR 102.12 * CVE-2023-34417 (bmo#1746447, bmo#1820903, bmo#1832832) Memory safety bugs fixed in Firefox 114 * New: Added UI to manage the DNS over HTTPS exception list. (bmo#1596847) * New: Bookmarks can now be searched from the Bookmarks menu. The Bookmarks menu is accessible by adding the *Bookmarks menu* button to the toolbar. (bmo#1736937) * New: Restrict searches to your local browsing history by selecting *Search history* from the History, Library or Application menu buttons. (bmo#1736939) * New: Mac users can now capture video from their cameras in all supported native resolutions. This enables resolutions higher than 1280x720. (bmo#1806604) * New: It is now possible to reorder the extensions listed in the extensions panel. (bmo#1805924) * New: Users on macOS, Linux, and Windows 7 can now use FIDO2 / WebAuthn authenticators over USB. Some advanced features, such as fully passwordless logins, require a PIN to be set on the authenticator. (bmo#1814487) * New: Pocket Recommended content can now be seen in France, Italy, and Spain. (bmo#None) * Changed: DNS over HTTPS settings are now part of the * Privacy & Security* section of the *Settings* page and allow the user to choose from all the supported modes. (bmo#1610741) * HTML5: DOM: Added support for ES Modules on DedicatedWorker and SharedWorker * HTML5: WebTransport is now enabled by default and will be going to release with 114. As the original Explainer notes, it enables multiple use-cases that are hard or impossible to handle without it, especially for Gaming and live streaming. It covers cases that are problematic for alternative mechanisms, such as WebSockets. Built on top of HTTP3 (HTTP2 support will be coming later). The current implementation in Firefox is passing 505 out of 565 Web-Platform Tests. * HTML5: CSS: The `infinity` and `NaN` constants are now supported inside the `calc()` function. (bmo#1830759) * Developer: The *Copy as cURL* feature, available in the Network panel, has been enhanced. It now supports the - `-compressed` argument. (bmo#1776120) * Developer: The Accessibility Inspector has been improved to accurately recognize all the ARIA roles like `banner`, `main`, `navigation`, and `contentinfo`, etc. This enhancement is particularly beneficial for web developers working with ARIA roles to improve web accessibility. (bmo#1572512) * Developer: Firefox now provides support for the CSS Cascading Level 4 `supports()` syntax for `@import` rules. This allows for the importation of other stylesheets based on support- dependency. In addition, the Inspector panel now accurately displays the conditions at the top of the imported rule. - requires NSS 3.89.1 ==== apparmor ==== Version update (3.1.4 -> 3.1.5) Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - update to AppArmor 3.1.5 - fix handling of mount rules in apparmor_parser - minor additions to abstractions/base and snap_browsers - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.5 for the full upstream changelog - remove upstreamed aa-status-fix-json-mr1046.patch - split off apparmor-enable-precompiled-cache.diff from apparmor-enable-profile-cache.diff so that the precompiled cache path doesn't get added in parser.conf for Tumbleweed builds. This prevents a warning about the non-existing directory when loading profiles. - fix aa-status --json output (aa-status-fix-json-mr1046.patch, boo#1211980#c12) ==== attica-qt5 ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5Attica5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== baloo5 ==== Version update (5.106.0 -> 5.107.0) Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Use common helper for Property/JSON conversion * Don't install D-Bus interfaces without BUILD_INDEXER_SERVICE * Make building of the service optional, add packaging documentation * Minor fixes for DocumentUrlDB::updateUrl method * [IdTreeDB] Consolidate put/del into common set * [MetadataMoverTest] Add some more test documentation * Remove dead code paths from DocumentUrlDB::del * Cleanup some leftover stale code * Use more RAII in unit tests * port to standard C++ smart pointers where possible * Add some documentation for DocumentDB/DocumentIdDB * [balooshow] Improve display of property and plaintext terms * Move KFileMetaData documentation reference up ==== baloo5-widgets ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - Changes since 23.04.1: * Allow FileMetata properties on desktop and recentlyused (kde#460117) ==== bluez-qt ==== Version update (5.106.0 -> 5.107.0) Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== breeze5-icons ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== busybox ==== Version update (1.36.0 -> 1.36.1) Subpackages: busybox-static - update to 1.36.1: * fixes for line editing, detection of hardware sha1/sha256 support, unzip (do not create suid/sgid files unless -K), shell (printf and sleep with no args, handing of SIGINT in sleep), ed. ==== cockpit ==== Version update (276.1 -> 293) Subpackages: cockpit-bridge cockpit-packagekit cockpit-system - Add fake openSUSE branding target when building on non-openSUSE builds so branding does not need to be removed - Remove tests package so we don't have to ship a test PAM module - new version 293: - https://cockpit-project.org/blog/cockpit-293.html - refreshed: css-overrides.patch - new version 292: - https://cockpit-project.org/blog/cockpit-292.html - refreshed patches: css-overrides.patch, hide-pcp.patch, 0001-selinux-allow-login-to-read-motd-file.patch ==== cockpit-podman ==== Version update (53 -> 70) - New version 70. Changes since 53 include, * Add ability to prune unused containers * Translation updates * Container list can be sorted * Custom healthcheck actions * Dark theme support * Pod CPU, memory, port and volume details * Create new pod group functionality * Show all containers by default * Stability and performance improvements - load-css-overrides.patch: refreshed - 1299.patch: fixes build with new PF5 ==== codec2 ==== Version update (1.1.0 -> 1.1.1) - Update to version 1.1.1 * Minor release to support clean freedv-gui builds ==== cracklib ==== Version update (2.9.8 -> 2.9.11) Subpackages: libcrack2 - version update to 2.9.11 * Merge fedora patches and man pages * Fix missing files in dist tarball, other automake fixes (Leandro Nini) * Fix error handling during build of dictionary (yixiangzhike) * Fix to localization support (A. Wilcox, nekopsykose) * Fix to test utilities (Alexander Kanavin) * Translation updates from weblate * python: adjust include path for builddir by @thesamesam in #61 * Make buffer static and avoid returning stack-allocated memory by @drfiemost in #63 - modified patches % 0002-cracklib-2.9.2-visibility.patch (refreshed) ==== criu ==== Version update (3.17.1 -> 3.18) - Update to criu 3.18: New features: * Allow CRIU to be used as non-root * Add SIGTSTP support * Add opt to skip file r/w/x check on restore Bugfixes: * Many fixes here and there Improvements: * cgroup2: Dump cgroup controllers of every threads in a process * save IP_FREEBIND option for SOCK_RAW sockets also * support IP_PKTINFO and IPV6_RECVPKTINFO options * Implement hw breakpoint for arm64 platform * Set only used XFEATURE_* in xstate_bv * Checkpoint and restore some global properties * A checkpoint optimization for highly sparse ghost files (--ghost-fiemap) - Refresh criu-py-install-fix.diff: a workaround for non-working python-pip inside build environment by reviving the old setup script - Fix shebang of criu-ns script: criu-ns-python3-shebang.patch - Drop obsoleted patches: criu-fix-conflicting-headers.patch mount-add-definition-for-FSOPEN_CLOEXEC.patch ==== cryptsetup ==== Subpackages: cryptsetup-doc libcryptsetup12 - Enable running the regression test suite. - Force a regeneration of the man pages from AsciiDoc. - Add LUKS1 and LUKS2 On-Disk Format Specification pdfs to doc. - FIPS: Remove not needed libcryptsetup12-hmac package that contains the HMAC checksums for integrity checking for FIPS. [bsc#1185116] * Remove the cryptsetup-rpmlintrc file. * Remove not needed fipscheck dependency. ==== dbus-1 ==== Version update (1.14.6 -> 1.14.8) Subpackages: dbus-1-common dbus-1-daemon dbus-1-tools libdbus-1-3 - update to 1.14.8 (bsc#1212126, CVE-2023-34969): * Denial-of-service fixes: * Fix an assertion failure in dbus-daemon when a privileged Monitoring connection (dbus-monitor, busctl monitor, gdbus monitor or similar) is active, and a message from the bus driver cannot be delivered to a client connection due to rules or outgoing message quota. This is a denial of service if triggered maliciously by a local attacker. * Fix compilation on compilers not supporting __FUNCTION__ * Fix some memory leaks on out-of-memory conditions * Fix syntax of a code sample in dbus-api-design ==== docker ==== Version update (23.0.6_ce -> 24.0.2_ce) Subpackages: docker-bash-completion - Update to Docker 24.0.2-ce. See upstream changelog online at . bsc#1212368 bsc#1210797 - Add Recommends for docker-buildx, and add /usr/lib/docker/cli-plugins as being provided by this package. - Rebase patches: * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch * cli-0001-docs-include-required-tools-in-source-tree.patch ==== dolphin ==== Version update (23.04.1 -> 23.04.2) Subpackages: dolphin-part libdolphinvcs5 - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - Changes since 23.04.1: * Revert "Restrict attaching instances to those on the same activity or same virtual desktop" (kde#408919) ==== evolution-data-server ==== Version update (3.48.2 -> 3.48.3) Subpackages: libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-2 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4 - Update to version 3.48.3: + Bug Fixed: EWebDAVSession: Claim also error nodes from propstat response. ==== ffmpegthumbs ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== filelight ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== firewalld ==== Version update (1.3.2 -> 1.3.3) Subpackages: firewalld-bash-completion python3-firewall - update to 1.3.3: * fix(reload): restore policy for old backend if it changed (de85849) * fix(io): rich: tcp mss: handle value=None (8016f10) * fix(firewall-config): rich: set destination address (f6641a9) * fix(policy): mixed IP families in ingress/egress (69ed4d6) ==== frameworkintegration ==== Version update (5.106.0 -> 5.107.0) Subpackages: frameworkintegration-plugin libKF5Style5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== fribidi ==== Version update (1.0.12 -> 1.0.13) Subpackages: libfribidi0 - update to 1.0.13: * Adding missing man pages to the tar release file. ==== fuse-overlayfs ==== Version update (1.10 -> 1.12) - update to 1.12: * change license to GPL-2.0-or-later. * main: if a lower layer doesn't support ACLs do not enable them. ==== fuse3 ==== Version update (3.14.1 -> 3.15.0) Subpackages: libfuse3-3 - Update to release 3.15.0 * Improved support for some less common systems (32-bit, alternative libcs) * Unsupported mount options are no longer silently accepted. * auto_unmount is now compatible with allow_other. ==== fwupd ==== Version update (1.8.12 -> 1.8.16) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.8.16: + Auto-detect the OEM BCM57xx PCI cards with double the available EEPROM + Beep the console when waiting for user input + Do not assume a file descriptor of zero is invalid + Fix high memory usage when writing a carefully crafted EFI filesystem + Ignore refresh on a non-download remote to fix old versions of KDE + Limit the maximum number of file objects in the EFI filesystem + Only add the supported DFU attributes as private flags + Show devices with problems in fwupdmgr get-upgrades + Update official Intel GPU product names - Changes from version 1.8.15: + Add the latest dbx fixups for BlackLotus + Allow fwupd-refresh.timer trigger once per hour + Fix a crash when converting HFSTS1 values + Fix the version detection for SteelSeries Bluetooth mode + Invalidate the XMLb cache when installing new fwupd versions + Trigger the passive flow for usb4 from dell-dock + New hardware support: More Logitech Unifying receivers, Nordic MCUboot and nRF52 Desktop Keyboard - Changes from version 1.8.14: + Fix possible crash when getting UEFI report metadata + Fix 'fwupdmgr install FILE GUID' - Changes from version 1.8.13: + New features: - Add pcap converter which allows emulating devices from a Wireshark dump - Add the ability to dump TPM firmware for future use - Optionally retain firmware in a backup remote - Record the ESP type in the firmware report sent to the LVFS + Bugs fixed: - Accept application/octet-stream for archives when the mime database is missing - Add the latest dbx version version fixups as Microsoft removed another entry - Assume DFU appIDLE if GetStatus is not implemented - Do not require signatures for local or directory remotes - Do not use pandoc to build the man pages - Enhance Qubes functionality to use JCat - Fix a CCGX 'usbfs: process did not claim interface 1 before use' warning - Fix a compile warning when using a new libqmi version - Fix a critical warning when parsing an empty kernel cmdline - Fix a synaptics-cape regression where the firmware pauses for INTR - Fix the defines for HFSTS6 enforcement policy - Fix the i2c name properly for ElanTP hardware - Fix the name of the MTD Intel SPI controller - Set the release remote when installing archives - Use the powerd power type information to better set AC levels + New hardware: - Framework Audio Card - Lenovo ThinkPad TBT3-TR Gen 2 - Wacom Intuos BT S Gen 3 - Update options passed to meson following upstream changes. ==== gdb ==== Version update (12.1 -> 13.2) - Patches added (master backports): * pass-const-frame_info_ptr-reference-for-skip_-langua.patch - Maintenance script qa.sh: * Add PR30543 kfail. * Remove PR29793 kfail. - Patches added (master backports): * fix-pr30369-regression-on-aarch64-arm-pr30506.patch * gdb-tdep-aarch64-fix-frame-address-of-last-insn.patch * gdb-testsuite-fix-breakpoint-regexp-in-gdb.ada-out_o.patch * gdb-testsuite-relax-breakpoint-count-check-in-gdb.py.patch * gdb-testsuite-fix-buffer-overflow-in-gdb.base-signed.patch * gdb-testsuite-require-syscall-time-in-gdb.reverse-ti.patch * gdb-testsuite-handle-missing-gdc-in-gdb.dlang-dlang-.patch * gdb-testsuite-add-basic-lmap-for-tcl-8.6.patch * gdb-testsuite-fix-gdb.rust-watch.exp-on-ppc64le.patch * gdb-testsuite-fix-gdb.python-py-breakpoint.exp-timeo.patch * powerpc-fix-for-gdb.reverse-finish-precsave.exp-and-.patch * powerpc-regression-fix-for-reverse-finish-command.patch * gdb-testsuite-don-t-use-string-cat-in-gdb.dwarf2-dw2.patch * move-step_until-procedure.patch - Patches added (gdb-patches backport): * gdb-testsuite-add-have_host_locale.patch - Patches added (fedora patch fixups): * fixup-gdb-6.3-gstack-20050411.patch * fixup-gdb-6.3-attach-see-vdso-test.patch * fixup-gdb-lineno-makeup-test.patch * fixup-gdb-rhbz1261564-aarch64-hw-watchpoint-test.pat.patch - Patches dropped: * gdb-ppc-power7-test.patch * gdb-rhbz1156192-recursive-dlopen-test.patch * gdb-6.3-bz140532-ppc-unwinding-test.patch - Maintenance script qa.sh: * Add PR30540, PR30537, PR30021 and PR30542 KFAILs. * Add gdb.base/gcore-excessive-memory.exp internal error. * Update gdb.base/inline-frame-cycle-unwind.exp KFAIL comment. - Patches added (master backports): * aarch64-avoid-initializers-for-vlas.patch - Rebase to 13.2 release (fedora 38 @ fc4e284) * Replace gdb-12.1.tar.bz2 with gdb-13.2.tar.bz2. - Patches dropped: * add-elfcompress_zstd.patch * binutils-gdb-support-zstd-compressed-debug-section.patch * fix-comparison-of-unsigned-long-int-to-int-in-record_linux_system_call.patch * fix-core-file-detach-crash-corefiles-29275.patch * fix-for-gdb.base-solib-search.exp-test.patch * fix-gdb-build-elf-support-check-lzstd.patch * fixup-gdb-rhbz1325795-framefilters-test.patch * gdb-6.3-focus-cmd-prev-test.patch * gdb-6.3-inheritancetest-20050726.patch * gdb-6.3-test-dtorfix-20050121.patch * gdb-6.3-test-movedir-20050125.patch * gdb-6.3-threaded-watchpoints2-20050225.patch * gdb-6.6-buildid-locate-rpm-scl.patch * gdb-6.6-bz230000-power6-disassembly-test.patch * gdb-add-gdb-syscalls-makefile.patch * gdb-add-support-for-readline-8.2.patch * gdb-bz601887-dwarf4-rh-test.patch * gdb-disable-commit-resumed-in-target_kill.patch * gdb-fix-assert-in-handle_jit_event.patch * gdb-fix-assert-when-quitting-gdb-while-a-thread-is-stepping.patch * gdb-fix-for-gdb.base-eof-exit.exp-test-failures.patch * gdb-fix-selftest-fails-with-gdb-build-with-O2-flto.patch * gdb-fortran-frame-string.patch * gdb-handle-pending-c-after-rl_callback_read_char.patch * gdb-improved-eof-handling-when-using-readline-7.patch * gdb-physname-pr11734-test.patch * gdb-physname-pr12273-test.patch * gdb-record-handle-statx-system-call.patch * gdb-rhbz1325795-framefilters-test.patch * gdb-rhbz1398387-tab-crash-test.patch * gdb-runtest-pie-override.patch * gdb-symtab-fix-handling-of-dw_tag_unspecified_type.patch * gdb-tdep-fix-powerpc-ieee-128-bit-format-arg-passing.patch * gdb-tdep-handle-pipe2-syscall-for-amd64.patch * gdb-tdep-support-catch-syscall-pipe2-for-i386.patch * gdb-tdep-update-syscalls-ppc64-ppc-linux.xml.patch * gdb-test-expr-cumulative-archer.patch * gdb-testsuite-add-kfail-in-gdb.threads-fork-plus-threads.exp.patch * gdb-testsuite-add-new-gdb_attach-to-check-attach-command.patch * gdb-testsuite-address-test-failures-in-gdb.mi-mi-multi-commands.exp.patch * gdb-testsuite-detect-change-instead-of-init-in-gdb.mi-mi-var-block.exp.patch * gdb-testsuite-enable-some-test-cases-for-x86_64-m32.patch * gdb-testsuite-fix-fail-in-gdb.threads-fork-and-threads.exp.patch * gdb-testsuite-fix-gdb.ada-literals.exp-with-aarch64.patch * gdb-testsuite-fix-gdb.base-break-idempotent.exp-on-ppc.patch * gdb-testsuite-fix-gdb.base-catch-syscall.exp-with-with-expat-no.patch * gdb-testsuite-fix-gdb.base-catch-syscall.exp-without-enable-targets.patch * gdb-testsuite-fix-gdb.base-infoline-reloc-main-from-.patch * gdb-testsuite-fix-gdb.base-nested-subp-2-3-.exp-with.patch * gdb-testsuite-fix-gdb.dwarf2-dw2-dir-file-name.exp-w.patch * gdb-testsuite-fix-gdb.dwarf2-dw2-out-of-range-end-of-seq.exp-on-aarch64.patch * gdb-testsuite-fix-gdb.dwarf2-dw2-unspecified-type-foo.c-with-m32.patch * gdb-testsuite-fix-gdb.mi-mi-sym-info.exp-on-opensuse-tumbleweed.patch * gdb-testsuite-fix-gdb.opt-clobbered-registers-o2.exp-with-gcc-12.patch * gdb-testsuite-fix-gdb.reverse-i387-env-reverse.exp-for-pie.patch * gdb-testsuite-fix-gdb.reverse-test_ioctl_tcsetsw.exp-with-libc-debuginfo.patch * gdb-testsuite-fix-gdb.threads-killed-outside.exp-on-aarch64.patch * gdb-testsuite-fix-have_mpx-test.patch * gdb-testsuite-fix-occasional-failure-in-gdb.mi-mi-multi-commands.exp.patch ... changelog too long, skipping 60 lines ... * Use -$arch as argument to qa.sh. ==== git ==== Version update (2.40.1 -> 2.41.0) - git 2.41.0: This update contains a number of compatible updates, improvements and extensions to multiple workflows. Some changes may break backwards compatibility: * The libsecret credential helper obsoletes direct GNOME keyring support, which was dropped (git-credential-gnome-keyring) * "git format-patch" has been taught to ignore end-user configuration ("diff.noprefix") and always use the standard prefixes, to avoid breaking the receiving end of the patch - drop sha256_clone_fix.patch ==== gjs ==== Version update (1.76.0 -> 1.76.1) Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0 - Update to version 1.76.1: + Various fixes ported from the development branch. + Closed bugs and merge requests: - gnome-shell crashes on exit in js::gc::Cell::storeBuffer - Memory leak with GError - GVariant return values leaked - GBytes's are leaked when passed as-is to a function - Transformated GValues are leaking temporary instances - GHash value infos are leaked - "flat" arrays of GObject's are leaked - Gjs console leaks invalid option errors - gjs can't print null - Enable tests during build again. ==== gnome-shell ==== Version update (44.1 -> 44.2) Subpackages: gnome-extensions gnome-shell-calendar - Update to version 44.2: + Improve built-in screen recorder + Use user-defined names in bluetooth menu + Fix stuck authentication dialog in remote sessions + Fix glitches in calendar when using large-text option + Fix IM popup getting stuck on engine changes + Fixed crash + Misc. bug fixes and cleanups + Updated translations. ==== gstreamer-plugins-good ==== Subpackages: gstreamer-plugins-good-gtk - Add patch to fix bug with data url scheme. * adaptivedemux2-uri-data.patch. ==== gtk4 ==== Version update (4.10.3 -> 4.10.4) Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0 - Update to version 4.10.4: + GtkFileChooser: Fix some memory leaks + GtkUriLauncher: Validate the uri + GtkStack: Fix a crash + GtkGridView: Respect css border-spacing + GtkScrolledWindow: Propagate child measure size whenever possible + GtkPopoverMenu: Avoid unnecessary left padding + GtkSearchEntry: Improve size allocation for the clear icon + X11: - Avoid black flickering with xwayland window decorations - Trap XRandr errors + CSS: Various fixes to transitions + Updated translations. - Drop patches fixed upstream: + fix-gridview.patch + gtk4-correctly-refresh-after-delete.patch + 966a2350.patch - Add fix-gridview.patch: Add border-spacing where it was missed. We were computing column widths without taking border-spacing into account, making them slightly too big (glgo#GNOME/nautilus#2980). ==== gvfs ==== Subpackages: gvfs-backend-afc gvfs-backend-goa gvfs-backend-samba gvfs-backends gvfs-fuse - Add upstream fixes from the stable branch: + fc2669f63c5def1528dda2e7833db5774aa08e22.patch: mtp: Emit delete event on device when disconnected + 85bfb701fc95abeaa8a8ca3d9059378a9490f738.patch: smb: Allow renaming a file to the same name with a different case ==== hwdata ==== Version update (0.370 -> 0.371) - update to 0.371: * Update pci, usb and vendor ids ==== kaccounts-integration ==== Version update (23.04.1 -> 23.04.2) Subpackages: libkaccounts2 - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kaccounts-providers ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kactivities-stats ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kactivities5 ==== Version update (5.106.0 -> 5.107.0) Subpackages: kactivities5-imports libKF5Activities5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== karchive ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kate ==== Version update (23.04.1 -> 23.04.2) Subpackages: kate-plugins - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - Changes since 23.04.1: * Fix double drive letters on "Run Current Doc" (kde#469340) ==== kauth ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kbd ==== Subpackages: kbd-legacy - Remove additional vfonts, they are freeware, not opensource (bsc#1210678). - Adjust license tag, pinephone keymap is under GPL-3.0-or-later. - Rename 'arabic' keyboard console layout into 'ara' and drop 'korean' symlink (bsc#1210702) ==== kbookmarks ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kcmutils ==== Version update (5.106.0 -> 5.107.0) Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtilsCore5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kcodecs ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kcompletion ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kconfig ==== Version update (5.106.0 -> 5.107.0) Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 libKF5ConfigQml5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kconfigwidgets ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * KColorSchemeMenu: Remove accelerator markers from scheme name * Give KColorSchemeMenu namespace a short description * Fixup: Pass scheme name - not path - to KColorSchemeManager::indexForScheme * Split menu creating functionality out of KColorSchemeManager ==== kcoreaddons ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5CoreAddons5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * use fcntl to fix macOS compile ==== kcrash ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kdbusaddons ==== Version update (5.106.0 -> 5.107.0) Subpackages: kdbusaddons-tools libKF5DBusAddons5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kde-print-manager ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kdeclarative ==== Version update (5.106.0 -> 5.107.0) Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kded ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kdegraphics-thumbnailers ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kdelibs4support ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5KDELibs4Support5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * kssl: Update for LibreSSL 3.7 ==== kdenetwork-filesharing ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kdesu ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kdialog ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kdnssd-framework ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kdoctools ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5DocTools5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Add Arabic Support ==== kdump ==== Version update (1.0.2+git50.g4b01402 -> 1.0.3) - bumped version update to v1.0.3 - Honor the KDUMP_VERBOSE setting in kdump-save - fix distro prefix for ALP - add calibrate values for ALP (copied from TW) ==== kernel-firmware ==== Version update (20230517 -> 20230531) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20230531 (git commit 9d4c9a52c237): * qcom: apq8016: add Dragonboard 410c WiFi and modem firmware * cirrus: Add firmware for new Asus ROG Laptops * brcm: Add symlinks from Pine64 devices to AW-CM256SM.txt * amdgpu: Update GC 11.0.1 and 11.0.4 * rtw89: 8851b: add firmware v0.29.41.0 * amdgpu: update yellow carp firmware for amd.5.5 release * amdgpu: update navi14 firmware for amd.5.5 release * amdgpu: update navi12 firmware for amd.5.5 release * amdgpu: update vega20 firmware for amd.5.5 release * amdgpu: update vega12 firmware for amd.5.5 release * amdgpu: update navi10 firmware for amd.5.5 release * amdgpu: update vega10 firmware for amd.5.5 release * amdgpu: update PSP 13.0.11 firmware for amd.5.5 release * amdgpu: update GC 11.0.4 firmware for amd.5.5 release * amdgpu: update SDMA 6.0.1 firmware for amd.5.5 release * amdgpu: update PSP 13.0.4 firmware for amd.5.5 release * amdgpu: update GC 11.0.1 firmware for amd.5.5 release * amdgpu: update 13.0.8 firmware for amd.5.5 release * amdgpu: update GC 10.3.7 firmware for amd.5.5 release * amdgpu: update vangogh firmware for amd.5.5 release * amdgpu: update VCN 4.0.4 firmware for amd.5.5 release * amdgpu: update SMU 13.0.7 firmware for amd.5.5 release * amdgpu: update PSP 13.0.7 firmware for amd.5.5 release * amdgpu: update GC 11.0.2 firmware for amd.5.5 release * amdgpu: update renoir firmware for amd.5.5 release * amdgpu: update VCN 4.0.0 firmware for amd.5.5 release * amdgpu: update SMU 13.0.0 firmware for amd.5.5 release * amdgpu: update PSP 13.0.0 firmware for amd.5.5 release * amdgpu: update GC 11.0.0 firmware for amd.5.5 release * amdgpu: update green sardine firmware for amd.5.5 release * amdgpu: update beige goby firmware for amd.5.5 release * amdgpu: update dimgrey cavefish firmware for amd.5.5 release * amdgpu: update arcturus firmware for amd.5.5 release * amdgpu: update vcn 3.1.2 firmware for amd.5.5 release * amdgpu: update psp 13.0.5 firmware for amd.5.5 release * amdgpu: update GC 10.3.6 firmware for amd.5.5 release * amdgpu: update navy flounder firmware for amd.5.5 release * amdgpu: update sienna cichlid firmware for amd.5.5 release * amdgpu: update aldebaran firmware for amd.5.5 release * amdgpu: DMCUB updates for various AMDGPU asics * ice: update ice DDP comms package to 1.3.40.0 * cxgb4: Update firmware to revision 1.27.3.0 - Fix the broken symlink targets for cirrus firmware: cirrus-WHENCE-link-fixes.patch - Clean up spec template to match with the actual output ==== kernel-source ==== Version update (6.3.4 -> 6.3.7) - Linux 6.3.7 (bsc#1012628). - RDMA/bnxt_re: Fix the page_size used during the MR creation (bsc#1012628). - phy: amlogic: phy-meson-g12a-mipi-dphy-analog: fix CNTL2_DIF_TX_CTL0 value (bsc#1012628). - RDMA/efa: Fix unsupported page sizes in device (bsc#1012628). - RDMA/hns: Fix timeout attr in query qp for HIP08 (bsc#1012628). - RDMA/hns: Fix base address table allocation (bsc#1012628). - RDMA/hns: Modify the value of long message loopback slice (bsc#1012628). - dmaengine: at_xdmac: fix potential Oops in at_xdmac_prep_interleaved() (bsc#1012628). - RDMA/bnxt_re: Fix a possible memory leak (bsc#1012628). - RDMA/bnxt_re: Fix return value of bnxt_re_process_raw_qp_pkt_rx (bsc#1012628). - iommu: Make IPMMU_VMSA dependencies more strict (bsc#1012628). - iommu/rockchip: Fix unwind goto issue (bsc#1012628). - iommu/amd: Don't block updates to GATag if guest mode is on (bsc#1012628). - iommu/amd: Handle GALog overflows (bsc#1012628). - iommu/amd: Fix up merge conflict resolution (bsc#1012628). - iommu/amd: Add missing domain type checks (bsc#1012628). - nfsd: make a copy of struct iattr before calling notify_change (bsc#1012628). - dmaengine: pl330: rename _start to prevent build error (bsc#1012628). - crypto: x86/aria - Use 16 byte alignment for GFNI constant vectors (bsc#1012628). - riscv: Fix unused variable warning when BUILTIN_DTB is set (bsc#1012628). - net/mlx5e: TC, Remove unused vf_tun variable (bsc#1012628). - net/mlx5e: TC, Move main flow attribute cleanup to helper func (bsc#1012628). - net/mlx5e: Extract remaining tunnel encap code to dedicated file (bsc#1012628). - net/mlx5e: Prevent encap offload when neigh update is running (bsc#1012628). - net/mlx5e: Consider internal buffers size in port buffer calculations (bsc#1012628). - net/mlx5e: Do not update SBCM when prio2buffer command is invalid (bsc#1012628). - net/mlx5: Drain health before unregistering devlink (bsc#1012628). - net/mlx5: SF, Drain health before removing device (bsc#1012628). - net/mlx5: fw_tracer, Fix event handling (bsc#1012628). - net/mlx5e: Use query_special_contexts cmd only once per mdev (bsc#1012628). - net/mlx5e: CT: Use per action stats (bsc#1012628). - net/mlx5e: TC, Remove CT action reordering (bsc#1012628). - net/mlx5: Fix post parse infra to only parse every action once (bsc#1012628). - net/mlx5e: Don't attach netdev profile while handling internal error (bsc#1012628). - net/mlx5e: Move Ethernet driver debugfs to profile init callback (bsc#1012628). - net: mellanox: mlxbf_gige: Fix skb_panic splat under memory pressure (bsc#1012628). - net: stmmac: fix call trace when stmmac_xdp_xmit() is invoked (bsc#1012628). - netrom: fix info-leak in nr_write_internal() (bsc#1012628). - af_packet: Fix data-races of pkt_sk(sk)->num (bsc#1012628). - tls: improve lockless access safety of tls_err_abort() (bsc#1012628). - amd-xgbe: fix the false linkup in xgbe_phy_status (bsc#1012628). - perf ftrace latency: Remove unnecessary "--" from --use-nsec option (bsc#1012628). - mtd: rawnand: ingenic: fix empty stub helper definitions (bsc#1012628). - efi: Bump stub image version for macOS HVF compatibility (bsc#1012628). - RDMA/irdma: Prevent QP use after free (bsc#1012628). - RDMA/irdma: Fix Local Invalidate fencing (bsc#1012628). - af_packet: do not use READ_ONCE() in packet_bind() (bsc#1012628). - tcp: deny tcp_disconnect() when threads are waiting (bsc#1012628). - tcp: Return user_mss for TCP_MAXSEG in CLOSE/LISTEN state if user_mss set (bsc#1012628). - rxrpc: Truncate UTS_RELEASE for rxrpc version (bsc#1012628). - net/smc: Scan from current RMB list when no position specified (bsc#1012628). - net/smc: Don't use RMBs not mapped to new link in SMCRv2 ADD LINK (bsc#1012628). - net/sched: sch_ingress: Only create under TC_H_INGRESS (bsc#1012628). - net/sched: sch_clsact: Only create under TC_H_CLSACT (bsc#1012628). - net/sched: Reserve TC_H_INGRESS (TC_H_CLSACT) for ingress (clsact) Qdiscs (bsc#1012628). - net/sched: Prohibit regrafting ingress or clsact Qdiscs (bsc#1012628). - net: sched: fix NULL pointer dereference in mq_attach (bsc#1012628). - net/netlink: fix NETLINK_LIST_MEMBERSHIPS length report (bsc#1012628). - udp6: Fix race condition in udp6_sendmsg & connect (bsc#1012628). - nfsd: fix double fget() bug in __write_ports_addfd() (bsc#1012628). ... changelog too long, skipping 742 lines ... - commit fc86ff2 ==== keylime ==== Version update (7.0.0 -> 7.2.5) Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier - Update to version v7.2.5: * bump version to 7.2.5 * installer.sh: remove unused codes * tpm: Implement BigNum context creation and usage * tpm: Implement int2bn and bn2int in our class * tpm_util: Add EC key support for makecredential in python * tpm: Replace tpm2_makecredential with python implementation * tpm_util: Implement makecredential in python * tpm2_objects: Return parameters when unmarshalling tpm2b_public * The first of several PRs to clean up MBA * verifier: Update agent dict values only after checking each value * verifier: Remove assignment to variable overwritten immediately after * registrar: Reformat initialization of dictionary * registrar: Check for error case aik_enc being None first * tpm_main: Remove unused run() method * tpm_main: Remove unnecessary code for support of tpm2_quote * tpm_main: Get rid of hashdigest() method * tpm_main: Get rid of start_hash and use get_start_hash() of given Hash * algorithms: Make get_START_HASH and get_FF_HASH methods of Hash * Use .hex() to create hex string * Use bytes.fromhex() instead of codecs for parsing of string with hex number * Tpm: Rename START_HASH to start_hash * Tpm: Remove unused parameters of __run method * tpm: Move EXIT_SUCCESS outside class scope * tpm: Rename tpm class to Tpm * tpm: Access agent_id directory from structure * codestyle: Fix issues detected by older pylint 2.13.9 * tpm: Get rid of AbstractTPM class * codestyle: Add missing annotations to test_ima_dm.py to pass pyright * pypright: Remove ignored files that do not exist anymore * ima: Replace usage of codec to parse hex string with bytes.fromhex() * ima: Replace usage of codec with hex() method on bytes * ima: Validate proper JSON before trying to convert from string to JSON * tenant: fixes a (timing) issue whenever an agent is removed and re-added * verifier: Simplify initialization of agent_data dict * verifier: Use kwargs to pass ssl_context if it exists * verifier: Return an Empty Dict rather than None in case of error * verifier: Use get() on dict rather than catching an Exception * cloud_verifier: AgentsHandler: Consolidate checking of input parameters * registrar: Consolidate __validate_input() in BaseHandler * registrar: ProtectedHandler: Refactor __validate_input * registrar: UnprotectedHandler: Consolidate checking of input parameters * registrar: ProtectedHandler: Consolidate checking of input parameters * docs: remove Vagrant setup * registrar: Move getting network parameters into own function * [tests] Update test coverage task name regexp * tenant: report when the keystore fails * ca_util: fix captured exception * [tests] Simply coverage file URL parsing * tpm+ima: Convert tables to hold instances of hashers * docs/rest_apis.rst: remove the comma at the end of the JSON string * tpm: Activate tpm2_checkquote replacement code * tests: Add test case for checkquote and parsing of tpms_attest * tpm: Implement tpm2_checkquote in python * README.md: fix the invalid URL about IMA stub service. * README.md: fix the script name(./services/installer.sh) error * installer.sh: support Alibaba Cloud Linux OS whose ID is alinux * web_util: handle tls_dir default with cacerts correctly * codestyle: Add pyright ignore annoatations due to pyright 1.1.306 * codestyle: Ignore import of NoResultFound from sqlalchemy 1.3 file * CI/CD: Run pyright as part of tox * agentstates: Reformat construction of returned dictionary * docker: fix tpm2-tools build * docker: upate to newer tpm2-tools version * docs/installation.rst: add the missing popd command in the manual deployment. * tpm: Implement function to extract clock info from TPMS_ATTEST * [tests] Reduce duplication in packit-ci test plan * Enable Packit CI again on all Fedora releases * Redefine the list of maintainers taking into account activity on the last 12 months, proposing a few new names to be added (please feel free to decline) ==== kfilemetadata5 ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Cleanup property name/id mapping test * Add method to export list of all Property names. * Reduce PropertyInfo construction overhead * Add benchmark for PropertyInfo instantiation * Fix build with exiv2 >= 0.28 ==== kglobalaccel ==== Version update (5.106.0 -> 5.107.0) Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kguiaddons ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5GuiAddons5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== khelpcenter5 ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kholidays ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Significantly speed up HolidayRegion::defaultRegionCode() ==== khtml ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== ki18n ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kiconthemes ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * KIconTheme: allow to also fallback to Breeze-dark when set through QPA ==== kidletime ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kimageformats ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * pcx: multiple fixes (2) * Avoid unnecessary conversions * RGB/SGI writer: fix alpha detection and image limit size * TGA writer: fix alpha detection and performance improvements * pcx: multiple fixes * PCX: Fix reading of the extended palette (kde#463951) ==== kinit ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kio ==== Version update (5.106.0 -> 5.107.0) Subpackages: kio-core - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Deprecate KIO::AccessManager and related classes * Enable thumbnail caching if thumbnail directory is on an encrypted volume * KdirLister: update symlink dir content on file removal (kde#469254) * Polish menu before creating platform window ==== kio-extras5 ==== Version update (23.04.1 -> 23.04.2) Subpackages: libkioarchive5 - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kirigami2 ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5Kirigami2-5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * ActionTextField: Disable shortcut for invisible and disabled text fields * BasicListItemTest: Guard against nullable background in ScrollView * Fix tst_basiclistitem_tooltip * Make it possible to disable BasicListItem tooltip * Fix almost all links in the KF5 Kirigami docs * Fix painting of non-symbolic icons which are fallbacks for symbolic (kde#451538) ==== kitemmodels ==== Version update (5.106.0 -> 5.107.0) Subpackages: kitemmodels-imports libKF5ItemModels5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Preserve numeric sort roles as well ==== kitemviews ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kjobwidgets ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kjs ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== knewstuff ==== Version update (5.106.0 -> 5.107.0) Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 libKF5NewStuffWidgets5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Remove KF5TextWidgets remnants ==== knotifications ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== knotifyconfig ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== konsole ==== Version update (23.04.1 -> 23.04.2) Subpackages: konsole-part konsole-part-lang - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - Changes since 23.04.1: * Adjust selection point coords when scrollback shrinks (kde#470346) * Add tests to check fix of invalid parent in profile * Do not allow an invalid parent to be set in profiles (kde#467790) ==== kpackage ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kparts ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * PartLoader::createPartInstanceForMimeType(): Avoid compiler detected null pointer access ==== kpeople5 ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kpty ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kquickcharts ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== krunner ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kservice ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== ktexteditor ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Add missing includes * Fix incorrect lineHeight for drag pixmap (kde#468196) ==== ktextwidgets ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kunitconversion ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kwallet ==== Version update (5.106.0 -> 5.107.0) Subpackages: kwallet-tools kwalletd5 libKF5Wallet5 libkwalletbackend5-5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kwalletmanager5 ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== kwayland ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kwidgetsaddons ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kwindowsystem ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== kxmlgui ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== libKF5ModemManagerQt ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== libKF5NetworkManagerQt ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== libX11 ==== Subpackages: libX11-6 libX11-data libX11-xcb1 - U_InitExt.c-Add-bounds-checks-for-extension-request-ev.patch * Buffer overflows in InitExt.c (boo#1212102, CVE-2023-3138) ==== libadwaita ==== Version update (1.3.2 -> 1.3.3) Subpackages: libadwaita-1-0 typelib-1_0-Adw-1 - Update to version 1.3.3: + Fix doc include path + AdwCarousel: Fix scrolling to a recently inserted item + AdwEntryRow: Fix accessibility + AdwPreferencesWindow: Fix markup handling when searching + AdwStyleManager: Fix get_for_display() annotation + AdwTabBar/AdwTabOverview: Fix dropping data onto tabs/thumbnails + Updated translations. ==== libapparmor ==== Version update (3.1.4 -> 3.1.5) - update to AppArmor 3.1.5 - fix handling of mount rules in apparmor_parser - minor additions to abstractions/base and snap_browsers - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.5 for the full upstream changelog - remove upstreamed aa-status-fix-json-mr1046.patch - split off apparmor-enable-precompiled-cache.diff from apparmor-enable-profile-cache.diff so that the precompiled cache path doesn't get added in parser.conf for Tumbleweed builds. This prevents a warning about the non-existing directory when loading profiles. - fix aa-status --json output (aa-status-fix-json-mr1046.patch, boo#1211980#c12) ==== libcontainers-common ==== - Enforce BCI verification via Podman on openSUSE distributions using the already shipped container signing keys. (bsc#1197030) ==== libimobiledevice ==== Version update (1.3.0+git.20210921 -> 1.3.0+179git.20230430) - Update to version 1.3.0+179git.20230430: * Updated to use latest libplist API changes * installation_proxy: Handle BundleIDs in instproxy_client_options_add * idevice: Fix connections to <= iOS 5 devices with OpenSSL 3 * idevicebackup2: Fix missing break in switch case statement * tools/ideviceimagemounter: Notify user of missing Developer Mode on iOS 16+ * tools: Add idevicedevmodectl tool * lockdown: Fix error parsing for older iOS versions * Support OpenSSL built without OPENSSL_ENGINE * idevicedebugserverproxy: Add support for 'qLaunchGDBServer' command of lldb * idevice: Fix OpenSSL 3.0 internal error on read timeout * tools: Fix idevicebackup2 option parsing for --password option * idevicebackup2: Fix option parsing * instproxy: Use synchronous mode when callbacks are NULL, as documented * Add new idevice_events_subscribe/unsubscribe API with context * Initial commit of working packet logger (idevicebtlogger) * ideviceinfo: Make sure all error messages go to stderr * tools: Use getopt for option parsing in all tools * idevice: Fix mistreatment of 0-byte sent cases * idevicebackup2: Allow passing backup password via environment variable * idevicedebug: Add 'kill' command to kill a (debuggable) app by bundle ID * Handle connection failures in debugserver_client_receive_response; also simplify the code * Add timeout and interrupt handling to debugserver. Fix debugserver_client_handle_response * idevicedebug: Process "Wxx" response as "exited with code xx" * idevicecrashreport: Allow filtering crash reports by filename * idevicedebugserverproxy: Allow binding to any available port * idevicedebug: Gracefully fail on invalid bundle IDs * tools: Correct misspelled directionary -> dictionary in function name * diagnostics_relay: Check for errors after sending requests to service connection * Add support for wireless pairing * tools: Print meaningful error messages when service startup fails * Add Reverse Proxy implementation ==== libimobiledevice-glue ==== Version update (0~git.20210925 -> 1.0.0+git3.20230513) - Update to version 1.0.0+git3.20230513: * Set minimum required libplist version to 2.3.0 * Remove plist-related code in favor of new libplist API * termcolors: Rename COLOR_* macros to FG_* due to conflict with ncurses * Updated README with pkg-config requirement * utils: Use libplist's plist_from_memory instead of duplicating format detection * Add support for Apple's OPACK encoding and TLV format * utils: Fix bad malloc result check in buffer_read_from_filename and test arguments for NULL ==== libjxl ==== Version update (0.8.1 -> 0.8.2) - Update to release 0.8.2 * Fix an integer underflow bug in patch decoding. - Build package in correct phase - Use macros for ldconfig ==== libkdcraw ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== libkexiv2 ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - Changes since 23.04.1: * Fix build with exiv2 >= 0.28 ==== libmysofa ==== - Add 0001-fix-big-endian-convertion-of-double-value.patch: backport bigendian fixes from upstream git. ==== libnettle ==== Version update (3.9 -> 3.9.1) Subpackages: libhogweed6 libnettle8 - Include the nettle library manual in HTML and PDF formats in the devel package. - update to 3.9.1: [bsc#1212112] * Fix bug in the new OCB code may be exploitable for denial of service or worse due to memory corruption ==== libqt5-qtbase ==== Version update (5.15.9+kde154 -> 5.15.10+kde129) Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Update to version 5.15.10+kde129, rebased upstream: * Ssl: Copy the on-demand cert loading bool from default config * Schannel: Reject certificate not signed by a configured CA certificate (boo#1211994, CVE-2023-34410) * qnetworkreplyfileimpl_p.h: fix header guard name * Revert "Draw the cursor considering the descent is 0" * Use pkgconfig in order to find libproxy configuration * Upgrade PCRE2 to 10.40 * Android A11Y: handle LocationChanged event only for focused element * Port binary JSON to new special integer bitfields * INTEGRITY: enable C99 globally * QObject: mark two error reporting functions COLD * Endian: Provide special integer bitfield unions * Android: set useLegacyPackaging to true in build.gradle * QWidgetTextControl: port to new-style connects (faster) * Sync qxmlstream.g with qxmlstreamparser_p.h [1/2]: switched lines * tst_QNetworkReply try stabilize autoDeleteReplies tests * Remove duplicated include for * Fix recursion crash when calling setStyleSheet with `qproperty-styleSheet` * qwindowsxpstyle: Fix typos in documentation * Correct prefix reported for end element in QXmlStreamReader * Android A11Y: Add supported role infos to A11yNodeInfo * Fix handling of DateTime values in QSettings * Fix off-by-one for "typically" lowest value INT_MIN * xml: Fix typos in documentation * QWindowsWindow: Fix typo in documentation * includemocs (updated script) * widgets: Fix typos in documentation * cocoa: Fix typo in debug messages * Only scroll QMenu when there is a valid active action * QTimer: Add note in documentation * Fix QListView assert when the last row is moved in IconMode * QFileDialog: Fix adding default suffix when file path contains dot * QLineEdit: account for the placeholderText when computing lineRect * QFileDialog::saveFileContent crashes on accept * QCompleter: QCompleter unexpectedly changes QLineEdit text * Fix build error on iOS with the configure option -qtnamespace * Draw the cursor considering the descent is 0 * Remove pure-virtual-signals.h include from tst_moc.cpp * plugins: image formats - fix odr violation * dbus: Fix typos * qwindowsdialoghelpers: Fix typo in documentation * QTableView: Document the customizations applied to QHeaderView * Unicodetools: compile * eglfs_x11: Fix running flag linkage * qcompilerdetection.h: add Q_CC_{GNU,MSVC,CLANG}_ONLY macros * Fix CMake warning about "missing closing ' quote" * Fix alignment of next/prev links in offline style * QtDBus: includemocs * Image Plugins: includemocs(-ish) * QtGui: includemocs * QXcbNativeInterface: remove unused field m_sysTraySelectionAtom * Windows QPA: Fix slowdown with large table/tree views with accessibility * Macstyle: fix the text color on the disabled button * QMacStyle: fix tool buttons (in checked mode) * QTeamCityLogger: fix .arg() placeholder injection * QAbstractTestLogger: disable copying * Fix errorMessageFromComError() * QtNetwork: includemocs * AppleUnifiedLogger: Remove manually managed os_log_t cache * examples: add WindowStaysOnBottomHint into preview text * QSharedPointer: Use matching new/delete * QIbusPlatformInputContextPlugin: includemocs * QGtk3ThemePlugin: includemocs * QTuioTouchPlugin: includemocs * QtWidgets: includemocs v2022 * QMYSQLDriverPlugin: includemocs * QtDeviceDiscoverySupportPrivate: includemocs * QLinuxFbIntegrationPlugin: includemocs * QtPrintSupport: includemocs * QSQLiteDriverPlugin: includemocs * QtFbSupportPrivate: includemocs * QXdgDesktopPortalThemePlugin: includemocs * QtTest: includemocs * QComposePlatformInputContextPlugin: includemocs * QtSql: includemocs * QVncIntegrationPlugin: includemocs * Fix backingstore fractional DPR glitches for widgets in child windows * Include where std::numeric_limits is used * QtInputSupportPrivate: includemocs * Document the default value of QSFPM::sortOrder() * Better document how to enable sorting in QSPFM * Correct documentation of INI format's loss of type information * Android: add missing properties in AndroidManifest.xml * Fix assertion failure when parsing a doubly-invalid date-time text * Windows QPA: Correct mistake when calculating minmaxinfo * Android: replace ndk.dir with android.ndkVersion in build.gradle * Android: remove the old copy of gradle.properties after reading it * CMake Android Support: Fix signing of APKs * Android: fix A11Y object description * macOS: Fix warning about comparing different types in QCocoaScreen::isOnline * Fix qmake build on FreeBSD * Update documentation of enum Qt::DockWidgetArea * xcb: recreate xcb window under some conditions * objc_namespace: Add support for universal binaries * objc_namespace: Fix misspelled argument for silencing output * objc_namespace: Update parsing logic to account for otool changes * Blacklist passwordAuth for Ubuntu 20.04 * Android: wrap QAndroidInputContext's m_focusObject in a QPointer * Fix compilation with GCC 12 (and on Fedora 35 and newer) ... changelog too long, skipping 23 lines ... * Fix developer build ==== libqt5-qtdeclarative ==== Version update (5.15.9+kde25 -> 5.15.10+kde26) - Update to version 5.15.10+kde26, rebased upstream: * Fix tst_QQuickText::fontSizeMode * (manual) includemocs * Text: don't fall back to full-width layout if availableWidth == 0 * MPTA: don't allow more than one touchpoint to react to mouse * QML/JS: Reject yield expression not directly in generator functions * Modify m_compareRegister bitfield * Add a TU for QQmlDebugServer * QmlModels: includemocs * Add a TU for QQmlProfilerEventReceiver * Quick: includemocs * QSGRhiShaderEffectNode: remove unused m_rc member * QQmlPreviewServiceFactoryPlugin: includemocs * Qml: includemocs * QuickTest: includemocs * PinchArea: ignore ZoomNativeGesture and RotateNativeGesture if told to * Docs: Document textInput.acceptableInput as read only * QQmlTableModelColumn: remove unused field mIndex * MouseArea: don't get stuck in doubleClick if handler caused ungrab * Avoid -Wclass-memaccess warning * QmlDebugPrivate: includemocs * QmlModels: includemocs * QQmlInspectorServiceFactoryPlugin: includemocs * QQmlDebuggerServiceFactoryPlugin: includemocs * QQmlProfilerServiceFactoryPlugin: includemocs * QQmlNativeDebugServiceFactoryPlugin: includemocs * QuickShapesPrivate: includemocs * QtPacketProtocolPrivate: includemocs * QDebugMessageServiceFactoryPlugin: includemocs * QQuickProfilerAdapterFactoryPlugin: includemocs * Build fixes for GCC 11 * doc: Fix inherited property docs in HoverHandler * tst_qqmllistcompositor: fix -Wdeprecated-enum-enum-conversion * Set depth mask correctly for clear * Doc: Improve cursorPosition description in TextInput and TextEdit docs * Fix blacklisting string for Ubuntu 20.04 in qquickmultipointtoucharea * V4 ArrayIterator: Protect retrieved value from GC * QML: Protect against EAGAIN when calling madvise on linux * QQuickLoader: Check for QQmlEngine before using it - Update to version 5.15.9+kde26: * qml tool: Use QCommandLineParser::process() rather than parse() - Add patch to fix crash on aarch64 (boo#1211628, QTBUG-111935): * 0001-JIT-Add-missing-STORE-LOAD-_ACC-to-CreateCallContext.patch ==== libqt5-qtgraphicaleffects ==== Version update (5.15.9+kde0 -> 5.15.10+kde0) - Update to version 5.15.10+kde0, rebased upstream: * No code changes ==== libqt5-qtimageformats ==== Version update (5.15.9+kde9 -> 5.15.10+kde9) - Update to version 5.15.10+kde9, rebased upstream: * No code changes ==== libqt5-qtlocation ==== Version update (5.15.9+kde5 -> 5.15.10+kde4) - Update to version 5.15.10+kde4, rebased upstream: * Make location-labs-plugin depend on features.opengl - Commits dropped by the rebase: * Fix build of Qt.labs.location QML plugin ==== libqt5-qtmultimedia ==== Version update (5.15.9+kde3 -> 5.15.10+kde3) - Update to version 5.15.10+kde3, rebased upstream: * Fix chunk sizing in QPulseAudioSink * Initialize m_material to nullptr ==== libqt5-qtquickcontrols ==== Version update (5.15.9+kde0 -> 5.15.10+kde0) - Update to version 5.15.10+kde0, rebased upstream: * No code changes ==== libqt5-qtquickcontrols2 ==== Version update (5.15.9+kde5 -> 5.15.10+kde6) Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5 - Update to version 5.15.10+kde6, rebased upstream: * Accessibility: respect value in attached Accessible in controls * TextArea: make clip node wider to accommodate cursor when right-aligned * DialogButtonBox: fix buttons going outside box on size change * Control in pressDelay Flickable: detect touch release near press pos * Reset provider's texture if QQuickNiniPatchImage's source is invalid * FileDialog: do not add default suffix when content scheme is used ==== libqt5-qtsensors ==== Version update (5.15.9+kde0 -> 5.15.10+kde0) Subpackages: libQt5Sensors5 libQt5Sensors5-imports - Update to version 5.15.10+kde0, rebased upstream: * No code changes ==== libqt5-qtspeech ==== Version update (5.15.9+kde1 -> 5.15.10+kde1) Subpackages: libQt5TextToSpeech5 libqt5-qtspeech-plugin-speechd - Update to version 5.15.10+kde1, rebased upstream: * No code changes ==== libqt5-qtsvg ==== Version update (5.15.9+kde8 -> 5.15.10+kde8) - Update to version 5.15.10+kde8, rebased upstream: * No code changes ==== libqt5-qttools ==== Version update (5.15.9+kde1 -> 5.15.10+kde3) Subpackages: libqt5-qdbus libqt5-qtpaths - Update to version 5.15.10+kde3, rebased upstream: * CMake: Fix qt5_create_translation for same-named .ts files * Drop superfluous network dependency from assistant/{help,qhelpgenerator}.pro * qdoc: Do not split module names in different tags * qdoc: Do not generate tags from titles anymore * Skip endonym in linguist settings list when not available * lrelease-pro: Take EXTRA_TRANSLATIONS into account ==== libqt5-qttranslations ==== Version update (5.15.9+kde0 -> 5.15.10+kde0) - Update to version 5.15.10+kde0, rebased upstream: * No code changes ==== libqt5-qtvirtualkeyboard ==== Version update (5.15.9+kde0 -> 5.15.10+kde0) Subpackages: libQt5HunspellInputMethod5 libQt5VirtualKeyboard5 libqt5-qtvirtualkeyboard-hunspell - Update to version 5.15.10+kde0, rebased upstream: * No code changes ==== libqt5-qtwayland ==== Version update (5.15.9+kde55 -> 5.15.10+kde51) Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5 - Update to version 5.15.10+kde51, rebased upstream: * Fix compilation with GCC 12 - Commits dropped by the rebase: * Revert "Client: Ensure that wl_surface lives as long as qtquick render thread needs it" * Client: Ensure that wl_surface lives as long as qtquick render thread needs it * Build fixes for GCC 11 ==== libqt5-qtwebchannel ==== Version update (5.15.9+kde3 -> 5.15.10+kde3) Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports - Update to version 5.15.10+kde3, rebased upstream: * No code changes ==== libqt5-qtwebview ==== Version update (5.15.9+kde0 -> 5.15.10+kde0) Subpackages: libQt5WebView5 libQt5WebView5-imports - Update to version 5.15.10+kde0, rebased upstream: * No code changes ==== libqt5-qtx11extras ==== Version update (5.15.9+kde0 -> 5.15.10+kde0) - Update to version 5.15.10+kde0, rebased upstream: * No code changes ==== libqt5-qtxmlpatterns ==== Version update (5.15.9+kde0 -> 5.15.10+kde0) Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-imports - Update to version 5.15.10+kde0, rebased upstream: * Avoid extra copy in a ranged loop ==== librsvg ==== Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0 - Use %__default_rustflags instead of the deprecated %__rustflags macro. Requires at least cargo-packaging 1.2.0+2 (boo#1212333). ==== libselinux-bindings ==== - allow building this with different python versions, to make this usable for the new sle15 macro (using python3.11) ==== libstorage-ng ==== Version update (4.5.115 -> 4.5.120) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#936 - use correct error callback when nvme-cli is missing during probing - 4.5.120 - merge gh#openSUSE/libstorage-ng#935 - added functions to convert BcacheType and CacheMode to string - added pool name for bcaches - check range in is_usable_as_partitionable() - 4.5.119 - merge gh#openSUSE/libstorage-ng#934 - handle mkfs options also for swap - 4.5.118 - Translated using Weblate (Georgian) (bsc#1149754) - 4.5.117 - Translated using Weblate (Georgian) (bsc#1149754) - 4.5.116 ==== liburing ==== Version update (2.3 -> 2.4) - Update to 2.4: * Add io_uring_{major,minor,check}_version() functions. * Add IO_URING_{MAJOR,MINOR,CHECK}_VERSION() macros. * FFI support (for non-C/C++ languages integration). * Add io_uring_prep_msg_ring_cqe_flags() function. * Deprecate --nolibc configure option. * CONFIG_NOLIBC is always enabled on x86-64, x86, and aarch64. * Add support for IORING_REGISTER_USE_REGISTERED_RING and use if available. * Add io_uring_close_ring_fd() function. * Add io_uring_prep_msg_ring_fd_alloc function. * Add io_uring_free_buf_ring() and io_uring_setup_buf_ring() functions. * Ensure that io_uring_prep_accept_direct(), io_uring_prep_openat_direct(), io_uring_prep_openat2_direct(), io_uring_prep_msg_ring_fd(), and io_uring_prep_socket_direct() factor in being called with IORING_FILE_INDEX_ALLOC for allocating a direct descriptor. * Add io_uring_prep_sendto() function. - Add liburing-ffi2 package for corresponding FFI library, given that dependents will normally require either that or the base library (not both). - Drop upstream patches: * 0001-Do-not-always-expect-multishot-recv-to-stop-posting-.patch * 0001-test-file-verify.t-Don-t-run-over-mlock-limit-when-r.patch * 0001-test-helpers-fix-socket-length-type.patch ==== libzypp ==== Version update (17.31.11 -> 17.31.13) - curl: Trim user agent string (bsc#1212187) HTTP/2 RFC 9113 forbids fields ending with a space. Violation results in curl error: 92: HTTP/2 PROTOCOL_ERROR. - version 17.31.13 (22) - Do not unconditionally release a medium if provideFile failed (bsc#1211661) - libzypp.spec.cmake: remove duplicate file listing. - version 17.31.12 (22) ==== llvm16 ==== Version update (16.0.4 -> 16.0.6) - Update to version 16.0.6. * This release contains bug-fixes for the LLVM 16.0.0 release. This release is API and ABI compatible with 16.0.0. - Rebase llvm-do-not-install-static-libraries.patch. - Make python3-clang noarch again and fix conflicts/provides to point to %python3_sitelib instead of %python3_sitearch. - Update to version 16.0.5. * This release contains bug-fixes for the LLVM 16.0.0 release. This release is API and ABI compatible with 16.0.0. - Rebase patches: * llvm-do-not-install-static-libraries.patch * llvm-remove-clang-only-flags.patch - Enable ThinLTO on riscv64. ==== mobipocket ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== mozilla-nss ==== Version update (3.89 -> 3.89.1) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs - FIPS: Merge the libfreebl3-hmac and libsoftokn3-hmac packages into the respective libraries. [bsc#1185116] - update to NSS 3.89.1 * bmo#1804505 - Update the technical constraints for KamuSM. * bmo#1822921 - Add BJCA Global Root CA1 and CA2 root certificates. ==== mpfr ==== - Update mpfr-4.2.0-cummulative.patch, adds patches fixing the following bugs * the mpfr_reldiff function, which computes |b-c|/b, is buggy on special values, e.g. on the following (b,c) values: (+Inf,+Inf) gives ±0 instead of NaN (like NaN/Inf); (+0,+0) gives 1 instead of NaN (like 0/0); (+0,1) gives 1 instead of Inf (like 1/0). Moreover, the sign of 0 for (+Inf,+Inf) or (-Inf,-Inf) is not set, i.e. it is just the sign of the destination before the call; as a consequence, results are not even consistent. * the reuse tests are incomplete: the sign of a result zero is not checked, so that it can miss bugs (one of the mpfr_reldiff bugs mentioned above, in particular). * the general code for the power function (mpfr_pow_general internal function) has two bugs in particular cases: the first one is an incorrect computation of the error bound when there has been an intermediate underflow or overflow (in such a case, the computation is performed again with a rescaling, thus with an additional error term, but there is a bug in the computation of this term), so that the result may be rounded incorrectly (in particular, a spurious overflow is possible); the second one occurs in a corner case (destination precision 1, rounding to nearest, and where the rounded result assuming an unbounded exponent range would be 2emin-2 and the exact result is larger than this value), with the only consequence being a missing underflow exception (the underflow flag is not set). * the mpfr_compound_si function can take a huge amount of memory and time in some cases (when the argument x is a large even integer and xn is represented exactly in the target precision) and does not correctly detect overflows and underflows * MPFR can crash when a formatted output function is called with %.2147483648Rg in the format string. ==== mutter ==== Version update (44.1+2 -> 44.2) - Update to version 44.2: + Fix DND in some server-side decorated windows + Fix redrawing regression in non-DMA remote sessions + Avoid race condition in xwayland-on-demand + Do not unminimize windows with initial IconicState + Fix mispositioning of some X11 fullscreen windows + Fix legacy fullscreen windows appearing on all monitors + Improve support for display-attached tablets + Fix stuck cursor in some clients + Avoid unexpected orientation changes around suspend/resume + Fix oversized input region around Xwayland windows + Fix X11 client input region issues + Plugged leak + Fixed crashes + Misc. bug fixes and cleanups + Updated translations. - Drop patches fixed upstream: + mutter-do-not-unminimize-windows-with-initial-iconic.patch + mutter-fix-wacom-tablet-crash.patch ==== ncurses ==== Version update (6.4.20230520 -> 6.4.20230615) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20230615 + modify _nc_read_file_entry() to show relevant filename in warnings. + improve checks in convert_string() for corrupt terminfo entry (report and test-case by Gregory James Duck). - Add ncurses patch 20230610 + improve manpages discussing file descriptors in low-level functions. + modify flushinp to use file descriptors in SCREEN, rather than from TERMINAL, and check if they are for a terminal, like SVr4. + modify mcprint to use file descriptor in SCREEN, for consistency. + add xterm+focus to foot+base (patch by Daniel Ekloef). + correct definition of Charable() for non-wide ncurses library (report and test-case by Zbigniew Baniewski). - Add ncurses patch 20230603 + add configure option --with-strip-program, to override program chosen by the install program for stripping executables (prompted by discussion with Aapo Rantalainen). + fix typo in INSTALL (report/patch by Aapo Rantalainen). + improve error-checks for isEILSEQ() + increase MB_CUR_MAX to 16, matching glibc's MB_LEN_MAX. + corrected mouse mask in test/testcurs.c + improve thread lock in lib_trace.c - Correct offsets of patch ncurses-6.4.dif - Add ncurses patch 20230527 + fixes for compiler warnings/cppcheck. ==== open-iscsi ==== Subpackages: iscsiuio libopeniscsiusr0 - Upgrade to upstream version 2.1.9 with tag "2.1.9-suse" (bsc#1210514), replacing open-iscsi-2.1.8-suse.tar.bz2 with open-iscsi-2.1.9-suse.tar.bz2, and resetting open-iscsi-SUSE-latest.diff.bz2. A summary rom the ChangeLog file: * Fix discoveryd compiler warning * Sync iscsi_if.h with kernel * Handle old DB records correctly * Make IQN configuration for iscsi-iname * remove OFFLOAD_BOOT_SUPPORTED, which is always true * Use UUID for IPC, not "root" * do not support SHA3 for libressl * build meson cleanups, including changing default DB home * Updated README about NOPs * Remove "BindTo" in systemd service file * Some iscsiuio fixes, including licensing and memory leaks (bsc#1210514) * Small netlink fixes * Fix OOM adjustment * Some error recovery fixes * Some spelling fixes ==== openssh ==== Version update (8.9p1 -> 9.3p1) Subpackages: openssh-clients openssh-common openssh-server - Update to openssh 9.3p1: = Security * ssh-add(1): when adding smartcard keys to ssh-agent(1) with the per-hop destination constraints (ssh-add -h ...) added in OpenSSH 8.9, a logic error prevented the constraints from being communicated to the agent. This resulted in the keys being added without constraints. The common cases of non-smartcard keys and keys without destination constraints are unaffected. This problem was reported by Luci Stanescu. * ssh(1): Portable OpenSSH provides an implementation of the getrrsetbyname(3) function if the standard library does not provide it, for use by the VerifyHostKeyDNS feature. A specifically crafted DNS response could cause this function to perform an out-of-bounds read of adjacent stack data, but this condition does not appear to be exploitable beyond denial-of- service to the ssh(1) client. The getrrsetbyname(3) replacement is only included if the system's standard library lacks this function and portable OpenSSH was not compiled with the ldns library (--with-ldns). getrrsetbyname(3) is only invoked if using VerifyHostKeyDNS to fetch SSHFP records. This problem was found by the Coverity static analyzer. = New features * ssh-keygen(1), ssh-keyscan(1): accept -Ohashalg=sha1|sha256 when outputting SSHFP fingerprints to allow algorithm selection. bz3493 * sshd(8): add a `sshd -G` option that parses and prints the effective configuration without attempting to load private keys and perform other checks. This allows usage of the option before keys have been generated and for configuration evaluation and verification by unprivileged users. = Bugfixes * scp(1), sftp(1): fix progressmeter corruption on wide displays; bz3534 * ssh-add(1), ssh-keygen(1): use RSA/SHA256 when testing usability of private keys as some systems are starting to disable RSA/SHA1 in libcrypto. * sftp-server(8): fix a memory leak. GHPR363 * ssh(1), sshd(8), ssh-keyscan(1): remove vestigal protocol compatibility code and simplify what's left. * Fix a number of low-impact Coverity static analysis findings. These include several reported via bz2687 * ssh_config(5), sshd_config(5): mention that some options are not first-match-wins. * Rework logging for the regression tests. Regression tests will now capture separate logs for each ssh and sshd invocation in a test. * ssh(1): make `ssh -Q CASignatureAlgorithms` work as the manpage says it should; bz3532. * ssh(1): ensure that there is a terminating newline when adding a new entry to known_hosts; bz3529 = Portability * sshd(8): harden Linux seccomp sandbox. Move to an allowlist of mmap(2), madvise(2) and futex(2) flags, removing some concerning kernel attack surface. * sshd(8): improve Linux seccomp-bpf sandbox for older systems; bz3537 - Update to openssh 9.2p1: = Security * sshd(8): fix a pre-authentication double-free memory fault introduced in OpenSSH 9.1. This is not believed to be exploitable, and it occurs in the unprivileged pre-auth process that is subject to chroot(2) and is further sandboxed on most major platforms. * ssh(8): in OpenSSH releases after 8.7, the PermitRemoteOpen option would ignore its first argument unless it was one of the special keywords "any" or "none", causing the permission list to fail open if only one permission was specified. bz3515 * ssh(1): if the CanonicalizeHostname and CanonicalizePermittedCNAMEs options were enabled, and the system/libc resolver did not check that names in DNS responses were valid, then use of these options could allow an attacker with control of DNS to include invalid characters (possibly including wildcards) in names added to known_hosts files when they were updated. These names would still have to match the CanonicalizePermittedCNAMEs allow-list, so practical exploitation appears unlikely. = Potentially-incompatible changes * ssh(1): add a new EnableEscapeCommandline ssh_config(5) option that controls whether the client-side ~C escape sequence that provides a command-line is available. Among other things, the ~C command-line could be used to add additional port-forwards at runtime. This option defaults to "no", disabling the ~C command-line that was previously enabled by default. Turning off the command-line allows platforms that support sandboxing of the ssh(1) client (currently only OpenBSD) to use a stricter default sandbox policy. = New features * sshd(8): add support for channel inactivity timeouts via a new sshd_config(5) ChannelTimeout directive. This allows channels that have not seen traffic in a configurable interval to be automatically closed. Different timeouts may be applied to session, X11, agent and TCP forwarding channels. * sshd(8): add a sshd_config UnusedConnectionTimeout option to terminate client connections that have no open channels for a length of time. This complements the ChannelTimeout option above. * sshd(8): add a -V (version) option to sshd like the ssh client ... changelog too long, skipping 345 lines ... - wtmpdb.patch: add support for wtmpdb to sshd [jsc#PED-3144] ==== openssh-askpass-gnome ==== Version update (8.9p1 -> 9.3p1) - openssh-askpass-gnome: require only openssh-clients, not the full openssh (including -server), to avoid pulling in excessive dependencies when installing git on Gnome (boo#1211446) - Update to openssh 9.3p1 * No changes for askpass, see main package changelog for details ==== openvpn ==== Version update (2.6.4 -> 2.6.5) Subpackages: openvpn-auth-pam-plugin - update to 2.6.5: * apctl (windows): generate driver-specific names (if using tapctl to create additional tap/wintun/dco devices, and not using - -name) (Github #337) * interactive service (windows): do not force target desktop for openvpn.exe - this has no impact for normal use, but enables running of OpenVPN in a scripted way when no user is logged on (for example, via task scheduler) (Github OpenVPN/openvpn-gui#626) * fix use-after-free with EVP_CIPHER_free * fix building with MSVC from release tarball (missing version.m4.in) * dco-win: repair use of --dev-node to select specific DCO drivers (Github #336) * fix missing malloc() return check in dco_freebsd.c * windows: correctly handle unicode names for "exit event" * fix memleak in client-connect example plugin * fix fortify build problem in keying-material-exporter-demo plugin * fix memleak in dco_linux.c/dco_get_peer_stats_multi() - this will leak a small amount of memory every 15s on DCO enabled servers, leading to noticeable memory waste for long-running processes. * dco_linux.c: properly close dco version file (fd leak) ==== orc ==== Version update (0.4.33 -> 0.4.34) - Update to version 0.4.34 + Thread-safety improvements around orc codemem allocation/freeing + Add orc_parse_code() with more detailed error reporting + Implement Orc function lazy initialization correctly via atomic operations + orc program parser fixes and improvements + build fixes and compiler warning fixes + coverity and clang scan-build static code analysis fixes + meson: Do not always generate static library for test library + ci improvements ==== osinfo-db ==== Version update (20230308 -> 20230518) - Update to database version 20230518 osinfo-db-20230518.tar.xz ==== pcsc-lite ==== Version update (1.9.9 -> 2.0.0) Subpackages: libpcsclite1 - Version 2.0.0 * Adjust USB drivers path at run-time via environment variable PCSCLITE_HP_DROPDIR * Add '--disable-polkit' option * Reset eventCounter when a reader is removed * Add "polkit" in "pcscd -v" output if enabled * Doxygen: document SCARD_E_INVALID_VALUE for some functions * use secure_getenv(3) if available * Some other minor improvements ==== perl ==== Version update (5.36.0 -> 5.36.1) Subpackages: perl-base - update to perl 5.36.1 - maintenance release * Module::CoreList has been upgraded from version 5.20220520 to 5.20230423. * Fixed: An eval() as the last statement in a regex code block could trigger an interpreter panic * An eval EXPR referring to a lexical sub defined in grandparent scope no longer produces an assertion failures. * Writing to a magic variables associated with the selected output handle, $^, $~, $=, $- and $%, no longer crashes perl if the IO object has been cleared from the selected output handle. ==== permissions ==== Version update (1699_20230516 -> 1699_20230602) Subpackages: chkstat permissions-config - Update to version 20230602: * profiles: remove dropped pppoe-wrapper ==== pinentry ==== - Update signature file and keyring with latest ones from download site, they were updated by another approved upstream maintainer. ==== pinentry-gui ==== Subpackages: pinentry-gnome3 pinentry-qt5 - Update signature file and keyring with latest ones from download site, they were updated by another approved upstream maintainer. ==== plasma-framework ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5Plasma5 plasma-framework-components - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== polkit-default-privs ==== Version update (1550+20230517.ab68b2d -> 1550+20230606.5001571) - Update to version 1550+20230606.5001571: * Whitelist org.freedesktop.systemd1.bypass-dump-ratelimit (bsc#1211978) - Update to version 1550+20230602.0c9c3c6: * profiles: drop dead mousepad action ==== poppler ==== Version update (23.05.0 -> 23.06.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools - update to 23.06.0 (bsc#1212255): * CairoOutputDev: Fix crash when doing type3 rendering * Fix crash with unknown signature hashing algorithms * Add gpgme backend for signature handling * FontInfo: Make it return proper information about font substitution * FontInfo: Try harder to get Type 3 font name * Store embedded fonts widths table in a more effective manner * Skip font lookup for nonprintable characters * Fix crash on malformed files * Add API to allow selecting signature backend (nss or gpgme) * Convert embedded files to bytearray a bit smarter ==== poppler-qt5 ==== Version update (23.05.0 -> 23.06.0) - update to 23.06.0 (bsc#1212255): * CairoOutputDev: Fix crash when doing type3 rendering * Fix crash with unknown signature hashing algorithms * Add gpgme backend for signature handling * FontInfo: Make it return proper information about font substitution * FontInfo: Try harder to get Type 3 font name * Store embedded fonts widths table in a more effective manner * Skip font lookup for nonprintable characters * Fix crash on malformed files * Add API to allow selecting signature backend (nss or gpgme) * Convert embedded files to bytearray a bit smarter ==== postfix ==== Version update (3.8.0 -> 3.8.1) - update to 3.8.1 * Optional: harden a Postfix SMTP server against remote SMTP clients that violate RFC 2920 (or 5321) command pipelining constraints. With "smtpd_forbid_unauth_pipelining = yes", the server disconnects a client immediately, after responding with "554 5.5.0 Error: SMTP protocol synchronization" and after logging "improper command pipelining" with the unexpected remote SMTP client input. This feature is disabled by default in Postfix 3.5-3.8 to avoid breaking home-grown utilities, but it is enabled by default in Postfix 3.9. A similar feature is enabled by default in the Exim SMTP server. * Optional: some OS distributions crank up TLS security to 11, and in doing so increase the number of plaintext email deliveries. This introduces basic OpenSSL configuration file support that may be used to override OS-level settings. Details are in the postconf(5) manpage under tls_config_file and tls_config_name. * Bugfix (defect introduced: Postfix 1.0): the command "postconf .. name=v1 .. name=v2 .." (multiple instances of the same parameter name) created multiple main.cf name=value entries with the same parameter name. It now logs a warning and skips the earlier name(s) and value(s). Found during code maintenance. * Bugfix (defect introduced: Postfix 3.3): the command "postconf - M name1/type1='name2 type2 ...'" died with a segmentation violation when the request matched multiple master.cf entries. The master.cf file was not damaged. Problem reported by SATOH Fumiyasu. * Bugfix (defect introduced: Postfix 2.11): the command "postconf - M name1/type1='name2 type2 ...'" could add a service definition to master.cf that conflicted with an already existing service definition. It now replaces all existing service definitions that match the service pattern 'name1/type1' or the service name and type in 'name2 type2 ...' with a single service definition 'name2 type2 ...'. Problem reported by SATOH Fumiyasu. * Bugfix (defect introduced: Postfix 3.8) the posttls-finger command could access uninitialized memory when reconnecting. This also fixes a malformed warning message when a destination contains ":service" information. Reported by Thomas Korbar. * Bugfix (defect introduced: Postfix 3.2): the MySQL client could return "not found" instead of "error" (for example, resulting in a 5XX SMTP status instead of 4XX) during the time that all MySQL server connections were turned down after error. Found during code maintenance. File: global/dict_mysql.c. This was already fixed in Postfix 3.4-3.7. ==== prison-qt5 ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5Prison5 prison-qt5-imports - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - Changes since 5.106.0: * Add EAN13 support * Factor out code for interfacing with ZXing for barcode generation ==== publicsuffix ==== Version update (20230426 -> 20230613) - Update to version 20230613: * Add `{id,io,ai}.vn` for .vn ccTLD in ICANN Section (#1771) * util: gTLD data autopull updates for 2023-06-10T15:11:56 UTC (#1774) - Update to version 20230607: * util: gTLD data autopull updates for 2023-06-07T15:13:30 UTC (#1772) * Add test workflow (#1750) * Update of gov.pl labels (#1752) ==== purpose ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== qpdf ==== Version update (11.3.0 -> 11.4.0) - version update to 11.4.0 CLI Enhancements * The --optimize-images option now optimizes images inside of form XObjects. Library Enhancements * Allow QPDFJob’s workflow to be split into a reading phase and a writing phase to allow the caller to operate on the QPDF object before it is written. This adds methods QPDFJob::createQPDF and QPDFJob::writeQPDF and corresponding C API functions qpdfjob_create_qpdf and qpdfjob_write_qpdf. * Add QPDF::newReserved as a better alternative to QPDFObjectHandle::newReserved. * If you add an uninitialized QPDFObjectHandle to an array, qpdf will throw a logic_error. It has always been invalid to do this, but before, it wouldn’t have been caught until later. Bug fixes * Ignore an annotation’s appearance state when the annotation only has one appearance. This prevents qpdf’s annotation flattening logic from throwing away appearances of annotations whose annotation state is set incorrectly, as has been seen in some PDF files. ==== qqc2-desktop-style ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== rubygem-ruby-dbus ==== Version update (0.22.1 -> 0.23.0.beta1) - 0.23.0.beta1 Bug fixes: * A service can now have more than one name (gh#mvidner/ruby-dbus#69). Connection#request_service is deprecated in favor of Connection#object_server and BusConnection#request_name API: * Remove Service, splitting it into ProxyService and ObjectServer * Split off BusConnection from Connection ==== rust-keylime ==== Version update (0.2.1+git.1682587333.b497f1d -> 0.2.1+git.1685699835.3c9d17c) Subpackages: keylime-ima-policy - Recommends the IMA Policy subpackage only if SELinux is configured - Update to version 0.2.1+git.1685699835.3c9d17c: * Remove MOUNT_SECURE bool * rpm: Remove unused directory and add dependency for mount * keylime-agent/src: update API version to 2.1 to consistent with https://github.com/keylime/keylime/blob/master/docs/rest_apis.rst * docker/fedora/keylime_rust.Dockerfile: add the logic of cloning and compiling rust-keylime * [tests] Update test coverage task name regexp * [tests] Simply coverage file URL parsing ==== samba ==== Version update (4.18.1+git.298.4ccf830b2a4 -> 4.18.3+git.303.c08b73d523c) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3 - Update to 4.18.3 * Symlinks to files can have random DOS mode information in a directory listing; (bso#15375). * vfs_fruit might cause a failing open for delete; (bso#15378). * winbind recurses into itself via rpcd_lsad; (bso#15361). * wbinfo -u fails on ad dc with >1000 users; (bso#15366). * DS ACEs might be inherited to unrelated object classes; (bso#15338). * a lot of messages: get_static_share_mode_data: get_static_share_mode_data_fn failed: NT_STATUS_NOT_FOUND; (bso#15362). * aes256 smb3 encryption algorithms are not allowed in smb3_sid_parse(); (bso#15374). * Setting veto files = /.*/ break listing directories; (bso#15360). * "samba-tool domain provision" does not run interactive mode if no arguments are given; (bso#15363). * dsgetdcname: assumes local system uses IPv4; (bso#15325). - Update to 4.18.2 * Log flood: smbd_calculate_access_mask_fsp: Access denied: message level should be lower; (bso#15302). * Floating point exception (FPE) via cli_pull_send at source3/libsmb/clireadwrite.c; (bso#15306). * test_tstream_more_tcp_user_timeout_spin fails intermittently on Rackspace GitLab runners; (bso#15328). * Reduce flapping of ridalloc test; (bso#15329). * large_ldap test is unreliable; (bso#15351). * New filename parser doesn't check veto files smb.conf parameter; (bso#15143). * mdssvc may crash when initializing; (bso#15354). * large directory optimization broken for non-lcomp path elements; (bso#15313). * streams_depot fails to create streams; (bso#15357). * shadow_copy2 and streams_depot don't play well together; (bso#15358). * Flapping tests in samba_tool_drs_show_repl.py; (bso#15316). * winbindd idmap child contacts the domain controller without a need; (bso#15317). * idmap_autorid may fail to map sids of trusted domains for the first time; (bso#15318). * idmap_hash doesn't use ID_TYPE_BOTH for reverse mappings; (bso#15319). * net ads search -P doesn't work against servers in other domains; (bso#15323). * Temporary smbXsrv_tcon_global.tdb can't be parsed; (bso#15353). * Tests use depricated and removed methods like assertRegexpMatches; (bso#15343). ==== signon-kwallet-extension ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - No code change since 23.04.1 ==== sof-firmware ==== Version update (2.2.4 -> 2.2.5) - Update to version 2.2.5: There's no FW binary change. This release adds a few new topology binaries for Intel Alder Lake (ADL) platforms. - Update supplements for RPL and MTL ==== solid ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5Solid5 solid-imports solid-tools - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== sonnet ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 sonnet-imports - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== spectacle ==== Version update (23.04.1 -> 23.04.2) - Update to 23.04.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.04.2/ - Changes since 23.04.1: * Fix the capture option panel width for some languages ==== suse-module-tools ==== Version update (16.0.30 -> 16.0.31) Subpackages: suse-module-tools-scriptlets - Update to version 16.0.31: * rpm-script: skip run_bootloader check (boo#1208117) ==== sushi ==== Version update (43.0 -> 44.2) - Update to version 44.2: + Fix loading certain documents in evince. + Updated translations. ==== syndication ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== syntax-highlighting ==== Version update (5.106.0 -> 5.107.0) Subpackages: libKF5SyntaxHighlighting5 syntax-highlighting-imports - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== systemd ==== Version update (253.4 -> 253.5) Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc udev - Make sure to skip the call to systemd-tmpfile in the file-triggers when running on transaction systems - Import commit 07bb12a282b0ea378850934c4a76008b448b8bad (merge of v253.5) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/25aec157888f7aa9a36726962fcbbf2c74ead440...07bb12a282b0ea378850934c4a76008b448b8bad - Reexecute user managers on package updates. For now we send signal to user instances to trigger their reexecution. It's asynchronous but it shouldn't cause any problem in practice and it's probably safer than triggering reexecution with "systemctl --user -M 1000@ daemon-reexec" command. The latter command creates a new PAM session behind the scene bringing with it the known issue (upstream issue #8598) with "(sd-pam)" helper process when the PAM session is being closed. ==== systemd-presets-branding-openSUSE ==== - fix drkonqi entry, should end with .service ==== systemd-presets-common-SUSE ==== - Add wtmpdb-update-boot.service and wtmpdb-rotate.timer to enable wtmpdb as Y2038 safe wtmp replacement ==== systemd-rpm-macros ==== Version update (22 -> 23) - Bump to version 23 - Restore the check that prevents systemd-tmpfiles to run during transactional updates The check has been mistakenly dropped during the switch to file-triggers. ==== threadweaver ==== Version update (5.106.0 -> 5.107.0) - Update to 5.107.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.107.0 - No code change since 5.106.0 ==== time ==== - Add patch disable-time-max-rss-test.patch to disable time max rss test, broken because a kernel issue (bsc#1211092) ==== tree ==== Version update (2.1.0 -> 2.1.1) - tree 2.1.1: * Various spelling corrections. * Fix issue where following links while doing JSON output would lead to incorrect JSON output. (simonpmind) * Fix issue where .info patterns relative to the .info file that did not use a wildcard for matching the prefix were not matching files properly. (German Lashevich) * Added support for making trees from tab indented files (--fromtabfile) (gitlab @AvidSeeker), also cleaned up some other issues in the fromfile code. * Fix buffer overflow in listdir() when file names are allowed to be longer than 256 characters (like when using fromfile.) (Javier Jaramago Fernández) * If when attempting to open a .gitignore or .info file from a top level directory and failing, recursively check the parents for such a file. This stops when successful at opening such a file. This behavior might in the future be modified to open all such files in all parents to until root is reached. (Damien Bezborodov) Note that this requires the use of realpath() which I think may be an issue for some OSes. * Fix issue where tree would never descend (-l) a symbolic link when a full tree is gathered (--du/matchdirs/prune) (gitlab @6ramr) ==== usbmuxd ==== Version update (1.1.1 -> 1.1.1+git48.01c94c7) - Update to version 1.1.1+git48.01c94c7: * Update to use latest libplist code (boo#1212194) * Set default value for ENV_DEV_MODE * udev: Fix freezing on OpenRC caused by a raced execution of usbmuxd * Guess current mode based on available configurations and interfaces. Switch mode only if guess is different than desired mode. * Support switching to different "modes" using vendor specific control messages. Use USBMUXD_DEFAULT_DEVICE_MODE env. var. to let the user control desired mode. * preflight: Assume old iOS version if retrieval of ProductVersion fails * usb: Enable Apple Silicon restore mode * Add option to allow changing the location of or disabling the pidfile * Fix parsing -S as short option for --socket * Allow specifying a custom listen address:port or unix socket * usb: Allow configuration 5 after verifying it is actualy usable * device: Add device id to device_control_input() log messages * Post release version bump to 1.1.2 - Drop usptreamed patches: - usbmuxd-add-socket-option.patch - usbmuxd-add-pid-option.patch ==== vim ==== Version update (9.0.1572 -> 9.0.1632) Subpackages: vim-data vim-data-common vim-small xxd - Updated to version 9.0.1632, fixes the following problems * Error messages are not translated. * Error for function name has wrong line number. * "file N of M" message is not translated. * Users may not know what to do with an internal error. * SpellCap highlight not always updated when needed. * Some error messages are not translated. * CI: indent test hangs on FreeBSD. * Translation does not work for plural argument. * :stopinsert may not work in a popup close handler. (Ben Jackson) * Get E304 when using 'cryptmethod' "xchacha20v2". (Steve Mynott) * Not all meson files are recognized. * Weird use of static variables for spell checking. * Checking translations gives an error for using two messages with ngettext() that differ in "%" items. * Corn config files are not recognized. * Incsearch not triggered when pasting clipboard register on the command line. * Filetype test contains too many special characters. * Filetype test has trailing white space. * Some "gomod" files are not recognized. * Not all timer tests are marked as flaky. * MS-Windows: assert error when compiled with debug mode. * Some internal error messages are translated. * Line pointer becomes invalid when using spell checking. * :registers command does not work in sandbox. * Cursor ends up below the window after a put. * screenchar(), screenchars() and screenstring() do not work properly when 'encoding' is set to a double-byte encoding. * Cursor not adjusted when near top or bottom of window and 'splitkeep' is not "cursor". * screenpos() does not take w_skipcol into account. * Filetype detection fails for *.conf file without comments. (Dmitrii Tcyganok) * Stray character is visible if 'smoothscroll' marker is displayed on top of a double-wide character. * Display wrong when scrolling multiple lines with 'smoothscroll' set. * Errors from the codestyle test are a bit confusing. * Crash when calling method on super in child constructor. (Israel Chauca Fuentes) * Using freed memory when 'foldcolumn' is set. * screenpos() returns wrong row with diff filler lines. * update_topline() is called twice. * Crash when an object indirectly references itself. * Display is wrong when 'smoothscroll' is set and scrolling multiple lines. * v:maxcol can be changed in a :for loop. * "skipcol" not reset when using multi-byte characters. * Some make output gets picked up by 'errorformat'. * strlen() called too often for :spellrepall. * URL shortcut files are not recognized. * Quickfix text field is truncated. * charidx() and utf16idx() result is not consistent with byteidx(). * Trace32 files are not recognized. * The focus gained/lost escape sequences cause trouble for a terminal where Vim does not expect them. * Nix files are not recognized from the hashbang line. * FILETYPE_FILE is defined to the same value multiple times. Same for a few similar macros. * Filetype name t32 is a bit obscure. * The program to filetype translation is not exported. * Crash when calling object constructor from legacy script. (Israel Chauca Fuentes) * "super" is not considered a reserved name. * Visual area not shown when using 'showbreak' and start of line is not visible. (Jaehwang Jung) * No generic mechanism to test syntax plugins. * Syntax tests fail on FreeBSD. * Having utf16idx() rounding up is inconvenient. * "make clean" at the toplevel fails. * Passing a wrong variable type to an option gives multiple errors. * Not all cabal config files are recognized. ==== vte ==== Version update (0.72.1 -> 0.72.2) - Update to version 0.72.2: * emulation: Fix infinite loop on non-number OSC 104 param * widget: Don't consume right clicks on gtk4 - Drop 24547fb3.patch: Fixed upstream. ==== wayland-utils ==== Version update (1.1.0 -> 1.2.0) - Update to release 1.2.0 * Support for the drm-lease-v1 protocol. * Improved linux_dmabuf v4 report now prints the DRM device paths. * Restored support for older versions (< 3) of linux_dmabuf. * New command line option to restrict queries to specific interfaces. ==== wget ==== - Update wget-libproxy.patch: ensure to properly use libproxy cflags from pkg-config. Fixes build against libproxy 0.5. ==== wireless-regdb ==== Version update (20230503 -> 20230601) - Update to version 20230601: * wireless-regdb: Update regulatory rules for Philippines (PH) ==== wtmpdb ==== Version update (0.5.0 -> 0.6.0) Subpackages: libwtmpdb0 - Update to version 0.6.0 - wtmpdb rotate: move old log entries into wtmpdb_.db ==== xrdb ==== Version update (1.2.1 -> 1.2.2) - Updat to version 1.2.2 * gitlab CI: add a basic build test * gitlab CI: stop requiring Signed-off-by in commits * Variable scope reduction as recommended by cppcheck * Use C99 struct initialization * Rename variable 'dup' to avoid shadowing dup() function * Fallback asprintf: don't truncate output that has a \0 in string * configure: raise minimum autoconf requirement to 2.70 ==== xterm ==== Version update (380 -> 382) Subpackages: xterm-bin xterm-resize - update to 382: * amend change to CursorBack> in patch 380, allowing the result to be on the hidden right-half of double-cell characters * amend xtermDrawString, fixing regression with - -disable-wide-chars configuration from patch #380 * corrected pathname for run-tic.sh, for full install in an out-of-tree build * fix a regression in wide bitmap fonts versus check for missing glyphs ==== xwayland ==== Version update (23.1.1 -> 23.1.2) - Update to version 23.1.2 * This release includes improved DMA-BUF v4 feedback support for direct scanout, relaxed CVT modes for non-standard modes, fixes for the CHERI/Morello platform and other various fixes. ==== yast2-bootloader ==== Version update (4.6.1 -> 4.6.2) - Persist zfcp.allow_lun_scan kernel option for s390 arch (needed for gh#openSUSE/agama#626). - 4.6.2 ==== yast2-storage-ng ==== Version update (4.6.10 -> 4.6.11) - Prevent setting the volume label for a mounted btrfs or swap (bsc#1211337) - 4.6.11 ==== yast2-users ==== Version update (4.6.1 -> 4.6.2) - Write the users when using AutoYaST on an installed system (bsc#1211753). - Move Ruby classes in Yast::Users (SSHAuthorizedKeysFile and SSHAuthorizedKeyring) to the Y2Users module to remove duplication Yast::Users Perl module. - 4.6.2 ==== zchunk ==== Version update (1.3.0 -> 1.3.1) - update to 1.3.1: * Fix read off-by-one bug in compressed int function * Handle read-data errors correctly * Ensure memory is freed when zrealloc is called with size 0 ==== zenity ==== Version update (3.92.0 -> 3.99.0) - Update to version 3.99.0: + option: Add various non-fatal deprecation warnings that were previously missing, and fix a misleading deprecation message for `--window-icon` + main: Add G_APPLICATION_FLAGS_NON_UNIQUE to GApplication flags + progress: Cleanup unnecessary static objects and remove spurious builder unref + util: - Remove fatal assert on exit if window invalid GtkWindow - Ignore superfluous quit requests - Remove superfluous GtkWindow cast check + data: Manpage generation changes; don't automatically generate the manpage from help2man for now (this will preferably be reinstated post-4.0 once the issues are worked out) + a11y: Label the widgets in a forms UI properly + Updated translations.