Packages changed: MozillaFirefox (121.0 -> 121.0.1) PackageKit bash (5.2.21 -> 5.2.26) desktop-file-utils docker-buildx (0.12.0 -> 0.12.1) elfutils (0.189 -> 0.190) elfutils-debuginfod (0.189 -> 0.190) evince ffmpeg-6 (6.0.1 -> 6.1.1) fwupd gnutls (3.8.2 -> 3.8.3) grub2 iputils (20231222 -> 20240117) libgsf libjpeg-turbo libjxl-gtk (0.8.2 -> 0.9.0) libosinfo libstorage-ng (4.5.173 -> 4.5.174) libxkbcommon llvm17 ncurses (6.4.20240106 -> 6.4.20240113) orca (45.1 -> 45.2) patterns-microos python-numpy python-redis readline (8.2 -> 8.2.10) selinux-policy (20240104 -> 20240116) shadow (4.14.2 -> 4.14.3) sushi telepathy-logger upower xorg-x11-server (21.1.9 -> 21.1.11) xwayland (23.2.2 -> 23.2.4) === Details === ==== MozillaFirefox ==== Version update (121.0 -> 121.0.1) - Mozilla Firefox 121.0.1 * Fixed unexpected line wrapping in some CJK contexts caused by changes in ideographic space handling. bmo#1870973) * Fixed a hang when loading sites containing column-based layouts under some circumstances. bmo#1867784) * Fixed missing rounded corners for videos playing over another video. bmo#1869994) * Fixed Firefox not closing properly and other applications being unable to use a USB security key after being previously used during a Firefox session. bmo#1863135) ==== PackageKit ==== Subpackages: PackageKit-backend-dnf PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Add PackageKit-find-python-3-6.patch: Specify the Python version we need to build this package. ==== bash ==== Version update (5.2.21 -> 5.2.26) Subpackages: bash-doc bash-sh - Add upstream patches * bash52-022 It's possible for readline to try to zero out a line that's not null-terminated, leading to a memory fault. * bash52-023 Running `local -' multiple times in a shell function would overwrite the original saved set of options. * bash52-024 Fix bug where associative array compound assignment would not expand tildes in values. * bash52-025 Make sure a subshell checks for and handles any terminating signals before exiting (which might have arrived after the command completed) so the parent and any EXIT trap will see the correct value for $?. ==== desktop-file-utils ==== - support non-SUSE distributions ==== docker-buildx ==== Version update (0.12.0 -> 0.12.1) - Update to version 0.12.1: * driver(container): fix conditional statement for error handling * docs: add levels to bake file target.annotations * docs: build --annotation * docs: add lang tag for plaintext code blocks * docs: imagetools create --annotation ==== elfutils ==== Version update (0.189 -> 0.190) Subpackages: libasm1 libdw1 libelf1 - Update to version 0.190: * libelf: Add RELR support. * libdw: Recognize .debug_[ct]u_index sections * readelf: - Support readelf -Ds, --use-dynamic --symbol. - Support .gdb_index version 9 * scrlines: New tool that compiles a list of source files associated with a specified dwarf/elf file. * backends: Various LoongArch updates. ==== elfutils-debuginfod ==== Version update (0.189 -> 0.190) Subpackages: debuginfod-client debuginfod-profile libdebuginfod1 - Update to version 0.190 * Schema change (reindexing required, sorry!) for a 60% compression in filename representation, which was a large part of the sqlite index; also, more deliberate sqlite - wal management during scanning using the - -scan-checkpoint option. ==== evince ==== Subpackages: evince-plugin-pdfdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0 - Convert to source service for easier updating. ==== ffmpeg-6 ==== Version update (6.0.1 -> 6.1.1) Subpackages: libavcodec60 libavfilter9 libavformat60 libavutil58 libpostproc57 libswresample4 libswscale7 - Update to version 6.1.1: * libaribcaption decoder * Playdate video decoder and demuxer * Extend VAAPI support for libva-win32 on Windows * afireqsrc audio source filter * arls filter * ffmpeg CLI new option: -readrate_initial_burst * zoneplate video source filter * command support in the setpts and asetpts filters * Vulkan decode hwaccel, supporting H264, HEVC and AV1 * color_vulkan filter * bwdif_vulkan filter * nlmeans_vulkan filter * RivaTuner video decoder * xfade_vulkan filter * vMix video decoder * Essential Video Coding parser, muxer and demuxer * Essential Video Coding frame merge bsf * bwdif_cuda filter * Microsoft RLE video encoder * Raw AC-4 muxer and demuxer * Raw VVC bitstream parser, muxer and demuxer * Bitstream filter for editing metadata in VVC streams * Bitstream filter for converting VVC from MP4 to Annex B * scale_vt filter for videotoolbox * transpose_vt filter for videotoolbox * support for the P_SKIP hinting to speed up libx264 encoding * Support HEVC,VP9,AV1 codec in enhanced flv format * apsnr and asisdr audio filters * OSQ demuxer and decoder * Support HEVC,VP9,AV1 codec fourcclist in enhanced rtmp protocol * CRI USM demuxer * ffmpeg CLI '-top' option deprecated in favor of the setfield filter * VAAPI AV1 encoder * ffprobe XML output schema changed to account for multiple variable-fields elements within the same parent element * ffprobe -output_format option added as an alias of -of - Remove patch6 0001-avfilter-vf_libplacebo-remove-deprecated-field.diff - Prefer libvpl to libmfx: the latter is deprecated - Delete ffmpeg-6-private-devel package as it is only needed to build libav-tools ==== fwupd ==== Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Fix build failure on s390x and ppc64le + This release modifies spec file - add s390x and ppc64le into default 'with efi_fw_update' so that old dbxtool version can be obsoleted. ==== gnutls ==== Version update (3.8.2 -> 3.8.3) - Update to 3.8.3: * libgnutls: Fix more timing side-channel inside RSA-PSK key exchange. [GNUTLS-SA-2024-01-14, CVSS: medium] [bsc#1218865, CVE-2024-0553] * libgnutls: Fix assertion failure when verifying a certificate chain with a cycle of cross signatures. [GNUTLS-SA-2024-01-09, CVSS: medium] [bsc#1218862, CVE-2024-0567] * libgnutls: Fix regression in handling Ed25519 keys stored in PKCS#11 token certtool was unable to handle Ed25519 keys generated on PKCS#11 with pkcs11-tool (OpenSC). This is a regression introduced in 3.8.2. * Rebase gnutls-FIPS-140-3-references.patch * Updated upstream gnutls.keyring ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Resolved XFS regression leading to the "not a correct XFS inode" error by temporarily reverting the problematic commit (bsc#1218864) * 0001-Revert-fs-xfs-Fix-XFS-directory-extent-parsing.patch ==== iputils ==== Version update (20231222 -> 20240117) - Update to version 20240117 (ping bugfix release) https://github.com/iputils/iputils/releases/tag/20240117 ==== libgsf ==== Subpackages: gsf-office-thumbnailer libgsf-1-114 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== libjpeg-turbo ==== - Do not require SIMD support when it does not exist ==== libjxl-gtk ==== Version update (0.8.2 -> 0.9.0) - Remove cjxl/djxl manpages from gtk flavor installation, these are part of the tools subpackage from the main flavor. - Update to release 0.9 * Encoder API: * Add JxlEncoderSetExtraChannelDistance to adjust the quality of extra channels (like alpha) separately. * New API functions for streaming encoding. * New options for more fine-grained control over metadata preservation when using JxlEncoderAddJPEGFrame. * New function JxlEncoderSetUpsamplingMode to change the upsampling method, e.g. to use nearest-neighbor upsampling for pixel art. * New function JxlEncoderDistanceFromQuality for convenience to calculate a distance given a quality. * Decoder API: Implemented JxlDecoderSetOutputColorProfile and JxlDecoderSetCms to enable decoding to desired colorspace. * Deprecated functions removed from encoder and decoder APIs. * Command-line tools: * cjxl can now be used to explicitly add/update/strip Exif/XMP/JUMBF metadata using the decoder-hints syntax, e.g. cjxl input.ppm -x exif=input.exif output.jxl * djxl can now be used to extract Exif/XMP/JUMBF metadata. ==== libosinfo ==== Subpackages: libosinfo-1_0-0 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== libstorage-ng ==== Version update (4.5.173 -> 4.5.174) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#979 - allow to get Arch object from SystemInfo - make testcase more robust - coding style - 4.5.174 ==== libxkbcommon ==== Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0 - Add libxkbcommon-tools-bash-completions. ==== llvm17 ==== - Use %_target_* for determining the compiler host triple (boo#1218701) ==== ncurses ==== Version update (6.4.20240106 -> 6.4.20240113) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20240113 + improve formatting/style of manpages (patches by Branden Robinson). + modify dist.mk to avoid passing developer's comments in manpages into the generated html documentation. + use ansi+local, ansi+local1, ansi+pp, ansi+rca, ansi+rca2, ansi+sgr to trim -TD + restore padding for wy520* and vt320-k311 (report by Sven Joachim). ==== orca ==== Version update (45.1 -> 45.2) - Update to version 45.2: + Web: Fix bug causing us to get stuck in menu bar during caret navigation. + General: Dump our cached information in response to children-changed events so that we do not present stale information. + Updated translations. ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Switch from phonon4qt5-backend-gstreamer to phonon4qt5-backend-vlc as recommended by upstream ==== python-numpy ==== - Update list of expected test failures on riscv64 - Fix gnu-hpc build error for Leap ==== python-redis ==== - add https://github.com/redis/redis-py/pull/3005 as Close-various-objects-created-during-asyncio-tests.patch to fix tests for python 3.12 ==== readline ==== Version update (8.2 -> 8.2.10) Subpackages: libreadline8 readline-doc - Add upstream patch readline82-008 * Add missing prototypes for several function declarations - Add upstream patch readline82-009 * Fix issue where the directory name portion of the word to be completed (the part that is passed to opendir()) requires both tilde expansion and dequoting. Readline only performed tilde expansion in this case, so filename completion would fail. - Add upstream patch readline82-010 * Fix the case where text to be completed from the line buffer (quoted) is compared to the common prefix of the possible matches (unquoted) and the quoting makes the former appear to be longer than the latter. Readline assumes the match doesn't add any characters to the word and doesn't display multiple matches. - Port patches * readline-5.2-conf.patch * readline-6.2-metamode.patch * readline-7.0-screen.patch * readline-8.2.dif ==== selinux-policy ==== Version update (20240104 -> 20240116) Subpackages: selinux-policy-targeted - Update to version 20240116: * Fix gitolite homedir paths (bsc#1218826) ==== shadow ==== Version update (4.14.2 -> 4.14.3) Subpackages: libsubid4 login_defs - Update to 4.14.3: * libshadow: + Avoid null pointer dereference (#904) ==== sushi ==== - Convert to source service for easier updating. ==== telepathy-logger ==== Subpackages: libtelepathy-logger3 telepathy-logger-schema typelib-1_0-TelepathyLogger-0_2 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== upower ==== Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== xorg-x11-server ==== Version update (21.1.9 -> 21.1.11) Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - Update to version 21.1.11 * This release contains fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html * CVE-2023-6816 (bsc#1218582) * CVE-2024-0229 (bsc#1218583) * CVE-2024-21885 (bsc#1218584) * CVE-2024-21886 (bsc#1218585) * CVE-2024-0408 * CVE-2024-0409 - supersedes the following patches * U_xephyr-Don-t-check-for-SeatId-anymore.patch * U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch ==== xwayland ==== Version update (23.2.2 -> 23.2.4) - This release contains also the following patches mentioned in previous sle15 releases * bsc1218582-0001-dix-allocate-enough-space-for-logical-button-maps.patch * bsc1218583-0001-dix-Allocate-sufficient-xEvents-for-our-DeviceStateN.patch * bsc1218583-0002-dix-fix-DeviceStateNotify-event-calculation.patch * bsc1218583-0003-Xi-when-creating-a-new-ButtonClass-set-the-number-of.patch * bsc1218584-0001-Xi-flush-hierarchy-events-after-adding-removing-mast.patch * bsc1218585-0001-Xi-do-not-keep-linked-list-pointer-during-recursion.patch * bsc1218585-0002-dix-when-disabling-a-master-float-disabled-slaved-de.patch - This release contains also the missing fixes of initial U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch (bsc#1217765) - Update to version 23.2.4 * This release contains fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html * CVE-2023-6816 (bsc#1218582) * CVE-2024-0229 (bsc#1218583) * CVE-2024-21885 (bsc#1218584) * CVE-2024-21886 (bsc#1218585) * CVE-2024-0408 * CVE-2024-0409 - supersedes the patches mentioned below: * U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch