Packages changed: 7zip (23.01 -> 24.05) Mesa (24.0.7 -> 24.0.8) Mesa-drivers (24.0.7 -> 24.0.8) alsa-utils amarok (3.0.0 -> 3.0.1) apparmor cJSON (1.7.17 -> 1.7.18) chrony cppcheck (2.14.0 -> 2.14.1) dialog dmidecode dracut-pcr-signature (0.3+6 -> 0.4+0) elfutils elfutils-debuginfod ethtool (6.7 -> 6.9) findutils (4.9.0 -> 4.10.0) gdm (46.0 -> 46.2) git (2.45.1 -> 2.45.2) glibc gnome-control-center (46.1 -> 46.2) google-noto-fonts (20240501 -> 20240601) gsl (2.7.1 -> 2.8) gtksourceview5 (5.12.0 -> 5.12.1) highway (1.1.0 -> 1.2.0) kernel-firmware-nvidia-gspx-G06 (550.78 -> 550.90.07) kernel-source (6.9.1 -> 6.9.3) ksanecore less (643 -> 656) libapparmor libappindicator-gtk3 libbpf (1.4.2 -> 1.4.3) libcap (2.69 -> 2.70) libdrm (2.4.120 -> 2.4.121) libstorage-ng (4.5.206 -> 4.5.207) libtommath (1.2.1 -> 1.3.0) libvirt (10.3.0 -> 10.4.0) libzypp (17.34.0 -> 17.34.1) lvm2 (2.03.22 -> 2.03.24) lvm2-device-mapper (2.03.22_1.02.196 -> 2.03.24_1.02.198) lzo man (2.12.0 -> 2.12.1) ncurses (6.5.20240525 -> 6.5.20240601) nvidia-open-driver-G06-signed (550.78_k6.9.1_1 -> 550.90.07_k6.9.3_1) openSUSE-release (20240530 -> 20240606) patterns-base plasma6-workspace policycoreutils python-libvirt-python (10.3.0 -> 10.4.0) python-pytz (2023.4 -> 2024.1) python-semanage re2 (20240501 -> 20240601) ruby3.3 (3.3.1 -> 3.3.2) rubygem-ruby-augeas samba (4.20.1+git.335.0a46cdafe2 -> 4.20.1+git.339.cf6e153bb2) seahorse selinux-policy (20240321 -> 20240411) setools subversion susepaste (0.6 -> 0.7) systemd (255.6 -> 255.7) telepathy-glib transmission (4.0.5 -> 4.0.6) vim (9.1.0413 -> 9.1.0448) wireplumber xen (4.18.2_04 -> 4.18.2_05) xwayland xz (5.6.1.revertto5.4 -> 5.6.2) yast2-trans (84.87.20240524.01535fea46 -> 84.87.20240603.1527509889) === Details === ==== 7zip ==== Version update (23.01 -> 24.05) - update to 24.05: * New switch -myv=.. to set decoder compatibility version for 7z archive creating * New switches -myfa and -myfd to allow or disallow the specified filter method for 7z archive creating * can use new RISCV filter for compression to 7z and xz archives * can ask user permission to unpack RAR archives that require large amount of memory * new switch -smemx{size}g : to set allowed memory usage limit for RAR archive unpacking. * -y switch disables user requests and messages. * -slmu switch : to show timestamps as UTC instead of LOCAL TIME * support .sha256 files that use backslash path separator '\' * can unpack ZSTD archives (.zst filename extension). * can unpack ZIP, SquashFS and RPM archives that use ZSTD compression method. * support fast hash algorithm XXH64 that is used in ZSTD. * can unpack RAR archives (that use larger than 4 GB dictionary) created by new WinRAR 7.00. * can unpack DMG archives that use XZ (ULMO/LZMA) compression method * can unpack NTFS images with cluster size larger than 64 KB. * can unpack MBR and GDP images with 4 KB sectors. * Speed optimizations for archive unpacking: rar, cab, wim, zip, gz. * Speed optimizations for hash caclulation: CRC-32, CRC-64, BLAKE2sp. * Fix multivolume creation in some cases * bug fixs - drop fix-avx-sle.patch ==== Mesa ==== Version update (24.0.7 -> 24.0.8) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - Update to bugfix release 24.0.8 - -> https://docs.mesa3d.org/relnotes/24.0.8.html - refreshed 0008-pipe-loader-plumb-a-flag-for-implicit-driver-load-th.patch ==== Mesa-drivers ==== Version update (24.0.7 -> 24.0.8) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Update to bugfix release 24.0.8 - -> https://docs.mesa3d.org/relnotes/24.0.8.html - refreshed 0008-pipe-loader-plumb-a-flag-for-implicit-driver-load-th.patch ==== alsa-utils ==== - Require tree which is used by alsa-info.sh (bsc#1225665) ==== amarok ==== Version update (3.0.0 -> 3.0.1) - Update to 3.0.1 * Added an option to copy image to clipboard in Wikipedia applet, and a clickable notification if a non-Wikipedia link was clicked. * Added an option to select if track's artist is shown for entries under various artists / different album artist in context browser (kde#276039, kde#248101) * Indicate which search option is active in Wikipedia applet (kde#332010) * Amarok now depends on KDE Frameworks 5.78. * Improve strings in user interface (kde#343896, kde#234854) * Reduce CPU usage by minimized/hidden analyzer (kde#390063) and other components. * Various tag match bias, APG and collection filtering related fixes (kde#375565, kde#406751, kde#435810, kde#382456) * Ignore any infinite values when reading replaygain tags (kde#486084) * Avoid volume getting set to 0 when phonon-vlc playback is stopped (kde#442319) * Playlist duplicate track deletion fixes (kde#313791) ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - add sddm-xauth.diff - sddm uses a new path for xauth (boo#1223900) - add plasmashell.diff - fix QtWebEngineProcess path to prevent a crash in plasmashell (boo#1225961) ==== cJSON ==== Version update (1.7.17 -> 1.7.18) - unconditionally apply the revert NULL pointer test - update to 1.7.18: * CVE-2024-31755: NULL pointer dereference via cJSON_SetValuestring() (boo#1223420) * Remove non-functional list handling of compiler flags * Fix heap buffer overflow * remove misused optimization flag -01 * Set free'd pointers to NULL whenever they are not reassigned immediately after - revert tests for NULL pointers that fail on Leap 15.5 cJSON-1.7.18-misc_tests.patch ==== chrony ==== Subpackages: chrony-pool-openSUSE - bsc#1225362, chrony-124-tai.patch: make 124-tai more reliable - Update clknetsim to snapshot 0a11a35. ==== cppcheck ==== Version update (2.14.0 -> 2.14.1) - update to 2.14.1 * Build: fix USE_MATCHCOMPILER CMake option validation * Improve Checking: implement evaluation order checker for c++11 and later ==== dialog ==== Subpackages: libdialog15 - Update to version 1.3-20240307: + add option --color-modes, which can be used to color the content of programbox, tailbox, textbox (requested by RafaƂ Radziejewski). + updated configure script, e.g., for compiler-warning fixes. + amend change to formbox while revising --max-input to work with the form's "ilen" parameter (report by Anna-Maria Gruber, cf: 2022/04/14) + update config.guess, config.sub + updated configure script, e.g., for compiler-warning fixes. + updated lv.po from http://translationproject.org/latest/dialog/ + add/use dlg_print_nowrap(), to handle multibyte character strings in progressbox and tailbox (report/testcase by Sergey Merzlikin). + updated configure script, e.g., for compiler-warning fixes. + update config.guess, config.sub + updated configure script, e.g., for compiler-warning fixes. + minor fixes for manpages to address mandoc warnings. + updated th.po from http://translationproject.org/latest/dialog/ + update config.guess, config.sub ==== dmidecode ==== - Enable build on riscv64 ==== dracut-pcr-signature ==== Version update (0.3+6 -> 0.4+0) - Update to version 0.4: + No new features, tagged on 0.3+6 - Remove GRUB2 conflict - Adapt regenerate initrd macro expansion ==== elfutils ==== Subpackages: libasm1 libdw1 libelf1 - Add "-g" to %optflags, so that the tests work in all repos, with or without globally enabled debuginfo creation. ==== elfutils-debuginfod ==== Subpackages: debuginfod-client debuginfod-profile libdebuginfod1 - Add "-g" to %optflags, so that the tests work in all repos, with or without globally enabled debuginfo creation. - update to 0.191: * libdw: dwarf_addrdie now supports binaries lacking a .debug_aranges section. * Improved support for DWARF package files. Add new function dwarf_cu_dwp_section_info. * debuginfod: Caching eviction logic improvements to improve retention of small/frequent/slow files such as Fedora's vdso.debug. * srcfiles: Can now fetch the source files of a DWARF/ELF file and place them into a zip. - drop fix_gcc14_errors.patch (upstream) - Add fix_gcc14_errors.patch (bsc#1220464) ==== ethtool ==== Version update (6.7 -> 6.9) Subpackages: ethtool-bash-completion - update to upstream release 6.9 * Feature: support for rx-flow-hash gtp (-N) * Feature: support for RSS input transformation (-X) * Fix: typo in coalescing output (-c) * Fix: document all debugging flags in man page ==== findutils ==== Version update (4.9.0 -> 4.10.0) - Update to 4.10.0. Announcement: https://savannah.gnu.org/news/?id=10638 - findutils-xautofs.patch: Refresh. ==== gdm ==== Version update (46.0 -> 46.2) Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Update to version 46.2: + Block suspend when remote displays are active. + Support S0ix suspend when deciding if nvidia should use wayland. + Misc fixes. + Updated translations. - Rebase gdm-initial-setup-hardening.patch. ==== git ==== Version update (2.45.1 -> 2.45.2) Subpackages: git-core git-email git-svn git-web perl-Git - Compat stub for %python3_fix_shebang_path - only call the %python3_fix_shebang_path if it is actually defined. This fixes the build on 15.x - update to 2.45.2: * Revert "defense in depth" fixes from 2.45.1 broke 'git lfs' and 'git annex' - remove dependency on /usr/bin/python3 using %python3_fix_shebang_path macro, [bsc#1212476] ==== glibc ==== Subpackages: glibc-devel glibc-extra glibc-gconv-modules-extra glibc-locale glibc-locale-base nscd - Also provide glibc-locale-base- from glibc-: the package was merged in the baselibs.conf case, so the capability is there. Steam for one has a requires on the symbol (boo#1225809). ==== gnome-control-center ==== Version update (46.1 -> 46.2) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces gnome-control-center-users - Update gnome-control-center-disable-error-message-for-NM.patch: Add info page to toolbar view instead of navigation page to prevent hiding close button (bsc#1222099). - Update to version 46.2: + Enable the "Location" settings panel by default. + Improve accessibility of some secondary-labels in settings rows. + Increase default log verbosity level. + Accessibility: - Fix icon name of accessibility panel desktop file. - Fix flash area settings selection shown incorrectly. + Display: Fix crash when closing laptop lid. + Keyboard: Fix keyboard navigation of keyboard shortcuts dialog categories. + Mouse and Touchpad: Remove unnecessary a11y label. + Network: - Fix crash when removing bluetooth network adapter row. - Sort VPN connections list alphabetically. - Remove incorrect assertion that breaks proxy settings page. + Sound: - Make sliders more accessible by keyboard. - Remove need for translating speaker test button tooltip. + System: - Improve accessibility of "Copy" buttons in Remote Desktop. - Fix crash in Date And Time settings closing before async calls finish. - Fix reuse of remote-desktop verify encryption fingerprint dialog. + Users: Fix visibility issue in parental controls row. + Updated translations. ==== google-noto-fonts ==== Version update (20240501 -> 20240601) Subpackages: google-noto-sans-fonts google-noto-sans-symbols-fonts google-noto-sans-symbols2-fonts - Remove obsolete "Group" parameter - Update to 20240601 * Noto Znamenny Musical Notation has been added * Other fonts have been updated ==== gsl ==== Version update (2.7.1 -> 2.8) - update to gsl 2.8: * updated multilarge TSQR method to store ||z_2|| and provide it to the user * add routines for Hermite B-spline interpolation * add functions: - gsl_matrix_complex_conjugate - gsl_vector_complex_conj_memcpy - gsl_vector_complex_div_real - gsl_linalg_QR_lssolvem_r - gsl_linalg_complex_QR_lssolvem_r - gsl_linalg_complex_QR_QHmat_r - gsl_linalg_QR_UR_lssolve - gsl_linalg_QR_UR_lssvx - gsl_linalg_QR_UR_QTvec - gsl_linalg_QR_UU_lssvx - gsl_linalg_QR_UD_lssvx - gsl_linalg_QR_UD_QTvec - gsl_linalg_complex_cholesky_{decomp2,svx2,solve2,scale,scale_apply} - gsl_linalg_SV_{solve2,lssolve} - gsl_rstat_norm * add Lebedev quadrature (gsl_integration_lebedev) * major overhaul to the B-spline module to add new functionality - 989a193268b963aa1047814f7f1402084fb7d859.patch: removed, upstreamed ==== gtksourceview5 ==== Version update (5.12.0 -> 5.12.1) - Update to version 5.12.1: + Update documentation links. + Specify recoloring hex colors for Adwaita-dark. + Improve grid drawing positions slightly. + Use a weak ref for GtkSourceView backpointer in GtkSourceGutterRenderers which fixes a potential leak of GtkSourceView. + Fix a fontconfig check for Windows. + Fix section name for elixir. ==== highway ==== Version update (1.1.0 -> 1.2.0) - Update to release 1.2.0 * Add utility functions Add InterleaveEven/InterleaveOdd, BitShuffle, GatherIndexNOr, IsNegative, IfNegativeThenElseZero, IfNegativeThenZeroElse, PromoteInRangeTo / ConvertInRangeTo / DemoteInRangeTo ==== kernel-firmware-nvidia-gspx-G06 ==== Version update (550.78 -> 550.90.07) - Security Update 550.90.07 * addresses boo#1223356 [CVE-2024-0090, CVE-2024-0091, CVE-2024-0092] ==== kernel-source ==== Version update (6.9.1 -> 6.9.3) - Linux 6.9.3 (bsc#1012628). - Revert "selftests/sgx: Include KHDR_INCLUDES in Makefile" (bsc#1012628). - Revert "selftests: Compile kselftest headers with -D_GNU_SOURCE" (bsc#1012628). - l2tp: fix ICMP error handling for UDP-encap sockets (bsc#1012628). - net: txgbe: fix to control VLAN strip (bsc#1012628). - net: wangxun: match VLAN CTAG and STAG features (bsc#1012628). - net: wangxun: fix to change Rx features (bsc#1012628). - sched/core: Fix incorrect initialization of the 'burst' parameter in cpu_max_write() (bsc#1012628). - sched/fair: Allow disabling sched_balance_newidle with sched_relax_domain_level (bsc#1012628). - af_packet: do not call packet_read_pending() from tpacket_destruct_skb() (bsc#1012628). - netrom: fix possible dead-lock in nr_rt_ioctl() (bsc#1012628). - idpf: don't skip over ethtool tcp-data-split setting (bsc#1012628). - selftests/net/lib: no need to record ns name if it already exist (bsc#1012628). - net: qrtr: ns: Fix module refcnt (bsc#1012628). - libbpf: fix feature detectors when using token_fd (bsc#1012628). - net: bridge: mst: fix vlan use-after-free (bsc#1012628). - selftests: net: bridge: increase IGMP/MLD exclude timeout membership interval (bsc#1012628). - net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1012628). - modules: Drop the .export_symbol section from the final modules (bsc#1012628). - tracing/user_events: Fix non-spaced field matching (bsc#1012628). - samples/landlock: Fix incorrect free in populate_ruleset_net (bsc#1012628). - RDMA/cma: Fix kmemleak in rdma_core observed during blktests nvme/rdma use siw (bsc#1012628). - RDMA/IPoIB: Fix format truncation compilation errors (bsc#1012628). - selftests/kcmp: remove unused open mode (bsc#1012628). - selftests/damon/_damon_sysfs: check errors from nr_schemes file reads (bsc#1012628). - SUNRPC: Fix gss_free_in_token_pages() (bsc#1012628). - bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq (bsc#1012628). - of: module: add buffer overflow check in of_modalias() (bsc#1012628). - clk: qcom: apss-ipq-pll: fix PLL rate for IPQ5018 (bsc#1012628). - clk: qcom: Fix SM_GPUCC_8650 dependencies (bsc#1012628). - Update config files. - clk: qcom: Fix SC_CAMCC_8280XP dependencies (bsc#1012628). - Update config files. - ext4: remove the redundant folio_wait_stable() (bsc#1012628). - ext4: fix potential unnitialized variable (bsc#1012628). - dax/bus.c: use the right locking mode (read vs write) in size_show (bsc#1012628). - dax/bus.c: don't use down_write_killable for non-user processes (bsc#1012628). - dax/bus.c: fix locking for unregister_dax_dev / unregister_dax_mapping paths (bsc#1012628). - dax/bus.c: replace WARN_ON_ONCE() with lockdep asserts (bsc#1012628). - nfsd: don't create nfsv4recoverydir in nfsdfs when not used (bsc#1012628). - sunrpc: removed redundant procp check (bsc#1012628). - iommu/amd: Enable Guest Translation after reading IOMMU feature register (bsc#1012628). - iommu/vt-d: Decouple igfx_off from graphic identity mapping (bsc#1012628). - drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map() (bsc#1012628). - virt: acrn: stop using follow_pfn (bsc#1012628). - RDMA/mana_ib: boundary check before installing cq callbacks (bsc#1012628). - RDMA/mana_ib: Use struct mana_ib_queue for CQs (bsc#1012628). - RDMA/mana_ib: Introduce helpers to create and destroy mana queues (bsc#1012628). - ext4: avoid excessive credit estimate in ext4_tmpfile() (bsc#1012628). - x86/insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and VPDPWSSDS (bsc#1012628). - x86/insn: Fix PUSH instruction in x86 instruction decoder opcode map (bsc#1012628). - clk: qcom: mmcc-msm8998: fix venus clock issue (bsc#1012628). - clk: qcom: dispcc-sm8650: fix DisplayPort clocks (bsc#1012628). - clk: qcom: dispcc-sm8550: fix DisplayPort clocks (bsc#1012628). - clk: qcom: dispcc-sm6350: fix DisplayPort clocks (bsc#1012628). - clk: qcom: dispcc-sm8450: fix DisplayPort clocks (bsc#1012628). - mm/ksm: fix ksm exec support for prctl (bsc#1012628). - lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (bsc#1012628). - clk: renesas: r9a07g043: Add clock and reset entry for PLIC (bsc#1012628). - clk: renesas: r8a779a0: Fix CANFD parent clock (bsc#1012628). - IB/mlx5: Use __iowrite64_copy() for write combining stores (bsc#1012628). - RDMA/rxe: Fix incorrect rxe_put in error path (bsc#1012628). - RDMA/rxe: Allow good work requests to be executed (bsc#1012628). - RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt (bsc#1012628). - clk: samsung: gs101: propagate PERIC1 USI SPI clock rate ... changelog too long, skipping 702 lines ... - commit 6d0f67e ==== ksanecore ==== - Add fix-scanner-search-crash.patch (kde#444987) ==== less ==== Version update (643 -> 656) - Update to 656: * Add ^O^N, ^O^P, ^O^L and ^O^O commands and mouse clicks (with --mouse) to find and open OSC8 hyperlinks (github #251). * Add --match-shift option. * Add --lesskey-content option (github #447). * Add LESSKEY_CONTENT environment variable (github #447). * Add --no-search-header-lines and --no-search-header-columns options (github #397). * Add ctrl-L search modifier (github #367). * A ctrl-P at the start of a shell command suppresses the "done" message (github #462). * Add attribute characters ('*', '~', '_', '&') to --color parameter (github #471). * Allow expansion of environment variables in lesskey files. * Add LESSSECURE_ALLOW environment variable (github #449). * Add LESS_UNSUPPORT environment variable. * Add line number parameter to --header option (github #436). * Mouse right-click jumps to position marked by left-click (github #390). * Ensure that the target line is not obscured by a header line set by --header (github #444). * Change default character set to "utf-8", except remains "dos" on MS-DOS. * Add message when search with ^W wraps (github #459). * UCRT builds on Windows 10 and later now support Unicode file names (github #438). * Improve behavior of interrupt while reading non-terminated pipe (github #414). * Improve parsing of -j, -x and -# options (github #393). * Support files larger than 4GB on Windows (github #417). * Support entry of Unicode chars larger than U+FFFF on Windows (github #391). * Improve colors of bold, underline and standout text on Windows. * Allow --rscroll to accept non-ASCII characters (github #483). * Allow the parameter to certain options to be terminated with a space (--color, --quotes, --rscroll, --search-options and --intr) (github #495). * Fix bug where # substitution failed after viewing help (github #420). * Fix crash if files are deleted while less is viewing them (github #404). * Workaround unreliable ReadConsoleInputW behavior on Windows with non-ASCII input. * Fix -J display when searching for non-ASCII characters (github #422). * Don't filter header lines via the & command (github #423). * Fix bug when horizontally shifting long lines (github #425). * Add -x and -D options to lesstest, to make it easier to diagnose a failed lesstest run. * Fix bug searching long lines with --incsearch and -S (github #428). * Fix bug that made ESC-} fail if top line on screen was empty (github #429). * Fix bug with --mouse on Windows when used with pipes (github #440). * Fix bug in --+OPTION command line syntax. * Fix display bug when using -w with an empty line with a CR/LF line ending (github #474). * When substituting '#' or '%' with a filename, quote the filename if it contains a space (github #480). * Fix wrong sleep time when system has usleep but not nanosleep (github #489). * Fix bug when file name contains a newline. * Fix bug when file name contains nonprintable characters (github #503). * Fix DJGPP build (github #497). * Update Unicode tables. - Refresh less-429-shell.patch ==== libapparmor ==== - add sddm-xauth.diff - sddm uses a new path for xauth (boo#1223900) - add plasmashell.diff - fix QtWebEngineProcess path to prevent a crash in plasmashell (boo#1225961) ==== libappindicator-gtk3 ==== Subpackages: libappindicator3-1 typelib-1_0-AppIndicator3-0_1 - Drop xappstatusicon.patch: patch has not been applied since Nov 2021. - Drop --disable-gtk-doc configure paramter: no longer recognized. - Use %patch -P N instead of deprecated %patchN. ==== libbpf ==== Version update (1.4.2 -> 1.4.3) - update to 1.4.3: * Fix libbpf unintentionally dropping FD_CLOEXEC flag when (internally) duping FDs ==== libcap ==== Version update (2.69 -> 2.70) - update to 2.70: * setcap changes to make it harder to set invalid file capabilities * Lots of documentation fixes * Fix c89 compilation syntax for the C code in the libraries * libpam has deprecated providing the _pam_overwrite() function, so use memset() instead ==== libdrm ==== Version update (2.4.120 -> 2.4.121) Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - update to 2.4.121 * meson: make build system happy by replacing deprecated feature * include poll.h instead of sys/poll.h * amdgpu: Make amdgpu_device_deinitialize thread-safe * Revert "xf86drm: ignore symlinks in process_device()" * xf86drm: Don't consider node names longer than the maximum allowed * tests/amdgpu: fix compile warning with the guard enum value * tests/amdgpu: fix compile error with gcc7.5 * tests/amdgpu: fix compile error with gcc14 * tests/util: add tidss driver * meson: Replace usages of deprecated ExternalProgram.path() * meson: Fix broken str.format usage * amdgpu: add marketing names from Adrenalin 23.11.1 * amdgpu: add marketing names from PRO Edition for W7700 * amdgpu: add marketing names from Windows Steam Deck OLED APU driver * amdgpu: add marketing names from amd-6.0 * amdgpu: add marketing name for Radeon RX 6550M * amdgpu: add marketing names from amd-6.0.1 * amdgpu: Make amdgpu_cs_signal_semaphore() thread-safe * amdgpu: sync amdgpu_drm.h * symbols-check: Add _GLOBAL_OFFSET_TABLE_ * symbols-check: Add _fbss, _fdata, _ftext * amdgpu: expose amdgpu_va_manager publicly * amdgpu: add amdgpu_va_range_alloc2 * amdgpu: add amdgpu_device_initialize2 * amdgpu: fix deinit logic * ci: build with meson --fatal-meson-warnings * ci: use "meson setup" sub-command * xf86drm: document drmDevicesEqual() * xf86drm: ignore symlinks in process_device() ==== libstorage-ng ==== Version update (4.5.206 -> 4.5.207) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#996 - make more use of new SystemCmd interface - 4.5.207 ==== libtommath ==== Version update (1.2.1 -> 1.3.0) - update to 1.3.0: * Deprecate more APIs which are replaced in develop * Add support for CMake (PR #573) * Add support for GitHub Actions (PR #573) ==== libvirt ==== Version update (10.3.0 -> 10.4.0) Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Update to libvirt 10.4.0 - network: use nftables to setup virtual network firewall rules boo#1201510 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html#v10-4-0-2024-06-03 ==== libzypp ==== Version update (17.34.0 -> 17.34.1) - zypp-tui: Make sure translated texts use the correct textdomain (fixes #551) - Skip libproxy1 requires for tumbleweed. - version 17.34.1 (34) ==== lvm2 ==== Version update (2.03.22 -> 2.03.24) Subpackages: liblvm2cmd2_03 - add rpm dependency in spec file for aligning new DM udev rules (bsc#1225783) * update lvm2.spec - Update lvm2 from LVM2.2.03.22 to LVM2.2.03.24 * ** WHATS_NEW from 2.03.22 to 2.03.24 *** Version 2.03.24 - 16th May 2024 =============================== Lvconvert supports VDO options for thin-pool with vdo conversion. Improve placement to .data.rel.ro and .rodata sections. Fix support for -y and -W when creating thinpool with vdo. Bettter support for runtime valgrind detection. Allow command interruption when communicating with dmeventd. Fix resize of VDO volume used for thin pool data volume. Use -Wl,-z,now and -Wl,--as-needed for compilation by default. Require 3.7 as minimal version for sanlock. Share code for closing opened desriptors on program startup. Fix memleak in lvmcache. Add configure --with-default-event-activation=ON setting. Fix return value from reporter function when hitting internal error. Skip checking of pools for lvremove and vgremove commands. VDO modprobes dm-vdo for 6.9 kernel and kvdo for older kernel version. Fix lvs reporting for VDO volumes with new upstream kernel driver. Don't import DM_UDEV_DISABLE_OTHER_RULES_FLAG in LVM rules, DM rules cover it. Fix table line generation for cache snapshots using cachevol. Enhance lvconvert support for external origins stacking. When swapping LV names also swap properties like hostname, time and data. Fix removal of stacked external origins. Lock filesystem when converting volume to read-only external origin. Support external origin between different thin-pool. Improve validation of acceptable volumes for external origins. Reduce amount of preloaded devices for complex device trees. Avoid logging problems from monitoring snapshots with inactive origins. Check for cache policy module presence in kernel's builtin modules file. Add configure --with-modulesdir to select kernel modules directory. Support creation of thin-pool with VDO use for its data volume. Version 2.03.23 - 21st November 2023 ==================================== Set the first lv_attr flag for raid integrity images to i or I. Add -A option for pvs and pvscan to show PVs outside devices file. Improve searched_devnames temp file usage to prevent redundant scanning. Change default search_for_devnames from auto to all. Add lvmdevices --refresh to search for missing PVIDs on all devices. Add comparison between old and new entries in lvmdevices --check. Fix device_id matching order - match non-devname first. Fix "lvconvert -m 0" when there is other than first in-sync leg. Use system.devices as default for dmeventd when dmeventd.devices is undefined. Accept WWIDs containing QEMU HARDDISK for device_id. Improve handling of non-standard WWID prefixes used for device_id. Configure automatically enables cmdlib for dmeventd and notify-dbus for dbus. Fix hint calculation for pools with zero or error segment. Configure supports --disable-shared to build only static binaries. Configure supports --without-{blkid|systemd|udev} for easier static build. Refresh device ids if the system changes. Fix pvmove when specifying raid components as moved LVs. Enhance error detection for lvm_import_vdo. Support PV lists with thin lvconvert. Fix support for lvm_import_vdo with SCSI VDO volumes. Fix locking issue leading to hanging concurrent vgchange --refresh. Recognize lvm.conf report/headings=2 for full column names in report headings. Add --headings none|abbrev|full cmd line option to set report headings type. Fix conversion to thin pool using lvmlockd. Fix conversion from thick into thin volume using lvmlockd. Require writable LV for conversion to vdo pool. Fix return value from lvconvert integrity remove. Preserve UUID for pool metadata spare. Preserve UUID for swapped pool metadata. Rewrite validation of device name entries used as device_id. * ** WHATS_NEW_DM from 1.02.196 to 1.02.198 *** Version 1.02.198 - 16th May 2024 ================================ Fix static only compilation of libdevmapper.a and dmsetup tool. Use better code for closing opened descriptors when starting dmeventd. Correct dmeventd -R for systemd environment. Restart of dmeventd -R checks pid file to detect running dmeventd first. Query with dmeventd -i quickly ends when there is no running dmeventd. Enhance dm_get_status_raid to handle mismatching status or reported legs. Create /dev/disk/by-label symlinks for DM devs that have crypto as next layer. Persist udev db for DM devs on cleanup used in initrd to rootfs transition. Process synthetic udev events other than 'add/change' as 'change' events. Increase DM_UDEV_RULES_VSN to 3 to indicate changed udev rules. Rename DM_NOSCAN to .DM_NOSCAN so it's not stored in udev db. Rename DM_SUSPENDED to .DM_SUSPENDED so it's not stored in udev db. Do not import DM_UDEV_DISABLE_OTHER_RULES_FLAG from db in 10-dm-disk.rules. Test DISK_RO after importing properties from db in 10-dm.rules. Also import ID_FS_TYPE in 13-dm-disk.rules from db if needed. Version 1.02.197 - 21st November 2023 ===================================== Fix invalid JSON report if using DM_REPORT_OUTPUT_MULTIPLE_TIMES and selection. Propagate ioctl errno from dm_task_run when creating new table line. Add support for group aliases in dmstats. Add support for exit-on file for dmeventd to reduce shutdown delays. Add configure option --with-dmeventd-exit-on-path to specify default path. Add dmsetup --headings none|abbrev|full to set report headings type. Add DM_REPORT_OUTPUT_FIELD_IDS_IN_HEADINGS to provide alternative headings. - Drop patches that have been merged into upstream - 0001-lvconvert-swapmetadata-fix-lvmlockd-locking.patch - 0002-lvconvert-fix-ret-values-fro-integrity-remove.patch - 0003-lvconvert-fix-regresion-from-integrity-check.patch - 0004-gcc-cleanup-warnings.patch - 0005-lvmlockd-fix-thick-to-thin-lv-conversion.patch ... changelog too long, skipping 20 lines ... - bug-1184687_Add-nolvm-for-kernel-cmdline.patch ==== lvm2-device-mapper ==== Version update (2.03.22_1.02.196 -> 2.03.24_1.02.198) Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - add rpm dependency in spec file for aligning new DM udev rules (bsc#1225783) * update lvm2.spec - Update lvm2 from LVM2.2.03.22 to LVM2.2.03.24 * ** WHATS_NEW from 2.03.22 to 2.03.24 *** Version 2.03.24 - 16th May 2024 =============================== Lvconvert supports VDO options for thin-pool with vdo conversion. Improve placement to .data.rel.ro and .rodata sections. Fix support for -y and -W when creating thinpool with vdo. Bettter support for runtime valgrind detection. Allow command interruption when communicating with dmeventd. Fix resize of VDO volume used for thin pool data volume. Use -Wl,-z,now and -Wl,--as-needed for compilation by default. Require 3.7 as minimal version for sanlock. Share code for closing opened desriptors on program startup. Fix memleak in lvmcache. Add configure --with-default-event-activation=ON setting. Fix return value from reporter function when hitting internal error. Skip checking of pools for lvremove and vgremove commands. VDO modprobes dm-vdo for 6.9 kernel and kvdo for older kernel version. Fix lvs reporting for VDO volumes with new upstream kernel driver. Don't import DM_UDEV_DISABLE_OTHER_RULES_FLAG in LVM rules, DM rules cover it. Fix table line generation for cache snapshots using cachevol. Enhance lvconvert support for external origins stacking. When swapping LV names also swap properties like hostname, time and data. Fix removal of stacked external origins. Lock filesystem when converting volume to read-only external origin. Support external origin between different thin-pool. Improve validation of acceptable volumes for external origins. Reduce amount of preloaded devices for complex device trees. Avoid logging problems from monitoring snapshots with inactive origins. Check for cache policy module presence in kernel's builtin modules file. Add configure --with-modulesdir to select kernel modules directory. Support creation of thin-pool with VDO use for its data volume. Version 2.03.23 - 21st November 2023 ==================================== Set the first lv_attr flag for raid integrity images to i or I. Add -A option for pvs and pvscan to show PVs outside devices file. Improve searched_devnames temp file usage to prevent redundant scanning. Change default search_for_devnames from auto to all. Add lvmdevices --refresh to search for missing PVIDs on all devices. Add comparison between old and new entries in lvmdevices --check. Fix device_id matching order - match non-devname first. Fix "lvconvert -m 0" when there is other than first in-sync leg. Use system.devices as default for dmeventd when dmeventd.devices is undefined. Accept WWIDs containing QEMU HARDDISK for device_id. Improve handling of non-standard WWID prefixes used for device_id. Configure automatically enables cmdlib for dmeventd and notify-dbus for dbus. Fix hint calculation for pools with zero or error segment. Configure supports --disable-shared to build only static binaries. Configure supports --without-{blkid|systemd|udev} for easier static build. Refresh device ids if the system changes. Fix pvmove when specifying raid components as moved LVs. Enhance error detection for lvm_import_vdo. Support PV lists with thin lvconvert. Fix support for lvm_import_vdo with SCSI VDO volumes. Fix locking issue leading to hanging concurrent vgchange --refresh. Recognize lvm.conf report/headings=2 for full column names in report headings. Add --headings none|abbrev|full cmd line option to set report headings type. Fix conversion to thin pool using lvmlockd. Fix conversion from thick into thin volume using lvmlockd. Require writable LV for conversion to vdo pool. Fix return value from lvconvert integrity remove. Preserve UUID for pool metadata spare. Preserve UUID for swapped pool metadata. Rewrite validation of device name entries used as device_id. * ** WHATS_NEW_DM from 1.02.196 to 1.02.198 *** Version 1.02.198 - 16th May 2024 ================================ Fix static only compilation of libdevmapper.a and dmsetup tool. Use better code for closing opened descriptors when starting dmeventd. Correct dmeventd -R for systemd environment. Restart of dmeventd -R checks pid file to detect running dmeventd first. Query with dmeventd -i quickly ends when there is no running dmeventd. Enhance dm_get_status_raid to handle mismatching status or reported legs. Create /dev/disk/by-label symlinks for DM devs that have crypto as next layer. Persist udev db for DM devs on cleanup used in initrd to rootfs transition. Process synthetic udev events other than 'add/change' as 'change' events. Increase DM_UDEV_RULES_VSN to 3 to indicate changed udev rules. Rename DM_NOSCAN to .DM_NOSCAN so it's not stored in udev db. Rename DM_SUSPENDED to .DM_SUSPENDED so it's not stored in udev db. Do not import DM_UDEV_DISABLE_OTHER_RULES_FLAG from db in 10-dm-disk.rules. Test DISK_RO after importing properties from db in 10-dm.rules. Also import ID_FS_TYPE in 13-dm-disk.rules from db if needed. Version 1.02.197 - 21st November 2023 ===================================== Fix invalid JSON report if using DM_REPORT_OUTPUT_MULTIPLE_TIMES and selection. Propagate ioctl errno from dm_task_run when creating new table line. Add support for group aliases in dmstats. Add support for exit-on file for dmeventd to reduce shutdown delays. Add configure option --with-dmeventd-exit-on-path to specify default path. Add dmsetup --headings none|abbrev|full to set report headings type. Add DM_REPORT_OUTPUT_FIELD_IDS_IN_HEADINGS to provide alternative headings. - Drop patches that have been merged into upstream - 0001-lvconvert-swapmetadata-fix-lvmlockd-locking.patch - 0002-lvconvert-fix-ret-values-fro-integrity-remove.patch - 0003-lvconvert-fix-regresion-from-integrity-check.patch - 0004-gcc-cleanup-warnings.patch - 0005-lvmlockd-fix-thick-to-thin-lv-conversion.patch ... changelog too long, skipping 20 lines ... - bug-1184687_Add-nolvm-for-kernel-cmdline.patch ==== lzo ==== - Use %autosetup macro: allows us to eliminate usage of deprecated %patchN syntax. ==== man ==== Version update (2.12.0 -> 2.12.1) - Update to 2.12.1 (5 April 2024) * Fix excessive cleanup of `/var/cache/man` by `systemd-tmpfiles`. * `man` matches the display width more accurately to the configured width. * Upgrade to Gnulib `stable-202401`. * Mention `groff`'s `pdf` device in `man(1)`. * Speed up `seccomp` filter slightly. * Document how to format pages using italic rather than underlined text. * Remove the obsolete `chconfig` tool for converting man-db configuration files to the FHS. This transition took place almost 25 years ago (at least in Debian), so it's not worth keeping it around now. - Remove patch man-db-2.9.4-alternitive.dif now upstream - Port the patches * man-db-2.6.3-listall.dif * man-db-2.7.1-zio.dif * man-db-2.9.4.patch * man-propose-online.patch ==== ncurses ==== Version update (6.5.20240525 -> 6.5.20240601) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20240601 + improve formatting/style of manpages (patches by Branden Robinson). + change Ada95/configure to use --with-screen option rather than - -enable-widec, to provide more choices of underlying curses library ==== nvidia-open-driver-G06-signed ==== Version update (550.78_k6.9.1_1 -> 550.90.07_k6.9.3_1) - Security Update 550.90.07 (boo#1223356) [CVE-2024-0090, CVE-2024-0091, CVE-2024-0092] ==== openSUSE-release ==== Version update (20240530 -> 20240606) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced - Update rpmlintrc W: no-binary to E: no-binary - Remove tigervnc * Most users including myself don't even know what a vnc is or how to use one ==== plasma6-workspace ==== Subpackages: plasma6-session plasma6-session-x11 plasma6-workspace-libs sddm-qt6-branding-openSUSE - Add patches to fix ksmserver authentication (CVE-2024-36041, boo#1225774): * 0001-Authenticate-local-clients.patch * 0002-Remove-iceauth-dependency.patch ==== policycoreutils ==== Subpackages: policycoreutils-python-utils - Rework packaging to modern python packaging as we need policycoreutils-python-tools as build dependency for python311-setools - General: - python version for scripts is now set to python311, deprecating python3.6 on 15.4 + 15.5 - replaced python3 dependencies with corresponding dependencies - moved %{_localstatedir}/lib/selinux out of the python-policycoreutils rpm and into policycoreutils-python-utils as it does not belong into a module and causes conflicts when module is built for multiple python versions - Factory-specific changes: - python-policycoreutils module is now built for python310, python311, python312 instead of python3 - added %python3_fix_shebang to set the shebang to the current python - 15.4 and 15.5 specific changes - python-policycoreutils module is now built for python311 instead of python3 - added %python311_fix_shebang to set the shebang to python311, this is currently a dirty hack since the python3_fix_shebang_path macro does not exist in <=15.5 so far - 15.4 specific changes - policycoreutils-devel requires python3-distro still, as there is no python311-distro package - exclude %python3_fix_shebang for distros <=15.4 to avoid build failure - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== python-libvirt-python ==== Version update (10.3.0 -> 10.4.0) - Update to 10.4.0 - Add all new APIs and constants in libvirt 10.4.0 ==== python-pytz ==== Version update (2023.4 -> 2024.1) - Clean up SPEC file. - update to 2024.1: * Update olson to 2024a ==== python-semanage ==== - Build python-semanage for python311 in 15.4 and 15.5 instead of python3.6 to fix build dependencies ==== re2 ==== Version update (20240501 -> 20240601) - update to 2024-06-01: * switch to abseil logging * build system changes ==== ruby3.3 ==== Version update (3.3.1 -> 3.3.2) Subpackages: libruby3_3-3_3 - Update to 3.3.2 - Bug #20493: Segfault on rb_io_getline_fast - Bug #20450: Ruby 3.3.1 broken with bootsnap - Bug #20169: GC.compact can raises EFAULT on IO - Bug #20192: YJIT in 3.3.0 miscompiles yield with keyword splats - Bug #20307: Hash#update from compare_by_identity hash can have unfrozen string keys - Bug #20511: Update bundled reline gem version to v0.5.7 - Bug #20204: 3.3.0 YJIT rises TypeError instead of ArgumentError with some incorrect calls - Bug #20195: 3.3.0 YJIT mishandles ruby2_keywords splat into methods taking a rest parameter - Bug #20288: rb_fiber_scheduler_close exceptions are not handled in rb_fiber_scheduler_set. - Bug #20286: TracePoint does not emit thread_end event when thread exits with exception - Bug #20292: Abort ruby by String#initialize - Bug #20445: Reduce if for decreasing counter on OP_REPEAT_INC - Bug #20296: Complex(:sym, exception: false) generate exception with weird timing - Bug #20322: rb_enc_interned_str_cstr doesn't accept null pointer for encoding - Bug #20289: Bug in Zlib::GzipReader#eof? breaks reading certain sizes of gzipped files. - Bug #20393: after_fork_ruby clears all pending interrupts for both parent and child process. - Bug #20305: commit 1d2d25dcadda0764f303183ac091d0c87b432566 breaks grapheme_clusters - Bug #20342: Top level public, private and ruby2_keywords do not work in wrapped load - Bug #20413: Enumerator can block fiber scheduler. - Bug #20427: Backport: Heap buffer overflow in Array#sort! when block modifies target array - Bug #20414: Fiber#raise should recurse to resumed_fiber rather than failing. - Bug #20453: Pointer being freed was not allocated in Regexp timeout - Bug #20494: Non-default directories are not searched when checking for a gmp header - Bug #20094: Inline while loop behavior changed unexpectedly in 3.3.0 - Bug #20502: Backport pthread_kill fix to Ruby 3.3 - Bug #20431: Ruby 3.3.0 build fail with make: *** [io_buffer.o] Error 1 - Bug #20500: Non-system directories are not searched when checking for jemalloc headers and libs, and building enc - drop fix-gvl-save-restore.patch: included upstream ==== rubygem-ruby-augeas ==== - Replace %patchN with %patch -P N: %patchN is deprecated. ==== samba ==== Version update (4.20.1+git.335.0a46cdafe2 -> 4.20.1+git.339.cf6e153bb2) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-gpupdate samba-ldb-ldap samba-libs samba-libs-python3 samba-python3 samba-winbind samba-winbind-libs - Fix non deterministic builds; (bsc#1225754); (bso#13213); ==== seahorse ==== Subpackages: gnome-shell-search-provider-seahorse - Add seahorse-gcc14.patch: fix an invalid cast (glgo#GNOME/seahorse!220). ==== selinux-policy ==== Version update (20240321 -> 20240411) Subpackages: selinux-policy-targeted - Remove "Reference" from the package description. It's not the reference policy, but the Fedora branch of the policy - Use python311 tools in 15.4 and 15.5 when building selinux-policy to deprecate python36 tooling - Fixed varrun-convert.sh script to not break because of duplicate entries - Move to %posttrans to ensure selinux-policy got updated before the commands run (bsc#1221720) - Add file contexts "forwarding" to file_contexts.sub_dist to fix systemd-gpt-auto-generator and systemd-fstab-generator (bsc#1222736): * /run/systemd/generator.early /usr/lib/systemd/system * /run/systemd/generator.late /usr/lib/systemd/system - Update to version 20240411: * Remove duplicate in sysnetwork.fc * Rename /var/run/wicked* to /run/wicked* * Remove /var/run/rsyslog/additional-log-sockets.conf from logging.fc * policy: support pidfs * Confine selinux-autorelabel-generator.sh * Allow logwatch_mail_t read/write to init over a unix stream socket * Allow logwatch read logind sessions files * files_dontaudit_getattr_tmpfs_files allowed the access and didn't dontaudit it * files_dontaudit_mounton_modules_object allowed the access and didn't dontaudit it * Allow NetworkManager the sys_ptrace capability in user namespace * dontaudit execmem for modemmanager * Allow dhcpcd use unix_stream_socket * Allow dhcpc read /run/netns files * Update mmap_rw_file_perms to include the lock permission * Allow plymouthd log during shutdown * Add logging_watch_all_log_dirs() and logging_watch_all_log_files() * Allow journalctl_t read filesystem sysctls * Allow cgred_t to get attributes of cgroup filesystems * Allow wdmd read hardware state information * Allow wdmd list the contents of the sysfs directories * Allow linuxptp configure phc2sys and chronyd over a unix domain socket * Allow sulogin relabel tty1 * Dontaudit sulogin the checkpoint_restore capability * Modify sudo_role_template() to allow getpgid * Allow userdomain get attributes of files on an nsfs filesystem * Allow opafm create NFS files and directories * Allow virtqemud create and unlink files in /etc/libvirt/ * Allow virtqemud domain transition on swtpm execution * Add the swtpm.if interface file for interactions with other domains * Allow samba to have dac_override capability * systemd: allow sys_admin capability for systemd_notify_t * systemd: allow systemd_notify_t to send data to kernel_t datagram sockets * Allow thumb_t to watch and watch_reads mount_var_run_t * Allow krb5kdc_t map krb5kdc_principal_t files * Allow unprivileged confined user dbus chat with setroubleshoot * Allow login_userdomain map files in /var * Allow wireguard work with firewall-cmd * Differentiate between staff and sysadm when executing crontab with sudo * Add crontab_admin_domtrans interface * Allow abrt_t nnp domain transition to abrt_handle_event_t * Allow xdm_t to watch and watch_reads mount_var_run_t * Dontaudit subscription manager setfscreate and read file contexts * Don't audit crontab_domain write attempts to user home * Transition from sudodomains to crontab_t when executing crontab_exec_t * Add crontab_domtrans interface * Fix label of pseudoterminals created from sudodomain * Allow utempter_t use ptmx * Dontaudit rpmdb attempts to connect to sssd over a unix stream socket * Allow admin user read/write on fixed_disk_device_t * Only allow confined user domains to login locally without unconfined_login * Add userdom_spec_domtrans_confined_admin_users interface * Only allow admindomain to execute shell via ssh with ssh_sysadm_login * Add userdom_spec_domtrans_admin_users interface * Move ssh dyntrans to unconfined inside unconfined_login tunable policy * Update ssh_role_template() for user ssh-agent type * Allow init to inherit system DBus file descriptors * Allow init to inherit fds from syslogd * Allow any domain to inherit fds from rpm-ostree * Update afterburn policy * Allow init_t nnp domain transition to abrtd_t * Rename all /var/lock file context entries to /run/lock * Rename all /var/run file context entries to /run - Add script varrun-convert.sh for locally existing modules to be able to cope with the /var/run -> /run change - Update embedded container-selinux to commit a8e389dbcd3f9b6ed0a7e495c6f559c0383dc49e ==== setools ==== Subpackages: python311-setools setools-console - Rework packaging to modern python packaging - python-setools module now builds for python310, python311, python312 for tw and builds for python311 in 15.4 + 15.5 - setools-console scripts will use python311 as default in factory, 15.4 and 15.5 - moved %dir %{_docdir}/%{name}/ and %{_docdir}/%{name}/* out of the python-setools module into setools-console as it does not belong in there and causes conflicts between python versions - moved %{python_sitearch}/setoolsgui from setools-gui into the python-setools module for multiversion build ==== subversion ==== Subpackages: libsvn_auth_gnome_keyring-1-0 libsvn_auth_kwallet-1-0 subversion-bash-completion subversion-perl - fix build with gcc14 (boo#1225929) subversion-1.14.3-gcc14.patch subversion-1.14.3-gcc14-2.patch ==== susepaste ==== Version update (0.6 -> 0.7) Subpackages: susepaste-screenshot - Update to version 0.7 (commit dbdce91bfd7954616731e47f97f82b8e10586101): * Remove susepaste.org from output, use paste.opensuse.org exclusively * Repair X11 clipboard copy (use clipboard instead of XA_CLIPBOARD) * Support Wayland clipboard copy - Drop upstreamed patches: * 0001-susepaste-Fix-parsing-of-returned-Location-header.patch * 0002-susepaste-add-image-paste-info.patch * 0003-susepaste-use-paste-opensuse.org.patch - Disable submodules in service, linked forge is offline ==== systemd ==== Version update (255.6 -> 255.7) Subpackages: libsystemd0 libudev1 systemd-boot systemd-container systemd-coredump systemd-experimental udev - Import commit 603cd1d4d81147d4f2eccd5e352064a4215119b4 (merge of v255.7) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/b9c17562f612ab2cd8cfee1960714c58d0a6c593...603cd1d4d81147d4f2eccd5e352064a4215119b4 - Import commit b9c17562f612ab2cd8cfee1960714c58d0a6c593 b9c17562f6 99-systemd.rules: rework SYSTEMD_READY logic for device mapper c5003fc15e pcrlock: add make_pcrlock_record_from_stream - systemd.spec: introduce %{meson_extra_configure_options} to allow passing extra meson configure options. ==== telepathy-glib ==== Subpackages: libtelepathy-glib0 typelib-1_0-TelepathyGlib-0_12 - Add telepathy-glib-function-type-cast.patch: fix an invalid cast (glfdo#telepathy/telepathy-glib!4). ==== transmission ==== Version update (4.0.5 -> 4.0.6) Subpackages: transmission-common transmission-gtk - Update to 4.0.6: + Improved parsing HTTP tracker announce response. (#6223) + Fixed 4.0.0 bug that caused some user scripts to have an invalid TR_TORRENT_TRACKERS environment variable. (#6434) + Fixed 4.0.0 bug where alt-speed-enabled had no effect in settings.json. (#6483) + Fixed 4.0.0 bug where the GTK client's "Use authentication" option was not saved between's sessions. (#6514) + Fixed 4.0.0 bug where the filename for single-file torrents aren't sanitized. (#6846) + Fixed 4.0.0 bug where piece size description text and slider state in torrent creation dialog are not always up-to-date. + Fixed build when compiling with GTKMM 4. (#6393) + Added the launchable desktop-id to metainfo files. (#6779) + Fixed build when compiling on BSD. (#6812) + Fixed a 4.0.0 bug where the infinite ratio symbol was displayed incorrectly in the WebUI. (#6491, #6500) + Fixed layout issue in speed display. (#6570) + General UI improvement related to filterbar and fixes download/upload speed info wrap. (#6761) + Fixed a couple of logging issues. (#6463) ==== vim ==== Version update (9.1.0413 -> 9.1.0448) Subpackages: vim-data vim-data-common xxd - Update to 9.1.0448: * compiler warning in eval.c * remove remaining css code * Add ft_hare.txt to Reference Manual TOC * re-generate vim syntax from generator * fix syntax vim bug * completion may be wrong when deleting all chars * getregionpos() inconsistent for partly-selected multibyte char * fix highlighting nested and escaped quotes in string props * remove the indent plugin since it has too many issues * update Debian runtime files * Coverity warning after 9.1.0440 * Not enough tests for getregion() with multibyte chars * Can't use blockwise selection with width for getregion() * update outdated syntax files * fix floating_modifier highlight * hare runtime files outdated * getregionpos() can't properly indicate positions beyond eol * function get_lval() is too long * Cannot filter the history * Wrong Ex command executed when :g uses '?' as delimiter * support floating_modifier none; revert broken highlighting * Motif requires non-const char pointer for XPM data * Crash when using '?' as separator for :s * filetype: cygport files are not recognized * make errors trying to access autoload/zig * Wrong yanking with exclusive selection and ve=all * add missing help tags file * Ancient XPM preprocessor hack may cause build errors * include basic rescript ftplugin file * eval.c is too long * getregionpos() doesn't handle one char selection * check for gdb file/dir before using as buffer name * refactor zig ftplugin, remove auto format * Coverity complains about eval.c refactor * Tag guessing leaves wrong search history with very short names * some issues with termdebug mapping test * update matchit plugin to v1.20 * too many strlen() calls in search.c * set commentstring option * update vb indent plugin as vim9script * filetype: purescript files are not recognized * filetype: slint files are not recognized * basic nim ftplugin file for comments * Add Arduino ftplugin and indent files * include basic typst ftplugin file * include basic prisma ftplugin file * include basic v ftplugin for comment support * getregionpos() wrong with blockwise mode and multibyte * function echo_string_core() is too long * hyprlang files are not recognized * add basic dart ftplugin file * basic ftplugin file for graphql * mention comment plugin at :h 'commentstring' * set commentstring for sql files in ftplugin * :browse oldfiles prompts even with single entry * eval.c not sufficiently tested * clarify why E195 is returned * clarify temporary file clean up * fix :NoMatchParen not working * Cannot move to previous/next rare word * add basic ftplugin file for sshdconfig * if_py: find_module has been removed in Python 3.12.0a7 * some screen dump tests can be improved * Some functions are not tested * clarify instal instructions for comment package * Unable to leave long line with 'smoothscroll' and 'scrolloff' * fix typo in vim9script help file * Remove trailing spaces * clarify {special} argument for shellescape() ==== wireplumber ==== Subpackages: libwireplumber-0_5-0 wireplumber-audio wireplumber-zsh-completion - Add patches from upstream to fix a crash for aborted links: * 0004-transition-fix-memleak-when-error-set.patch * 0005-transition-ensure-single-completion-and-finish.patch * 0006-linking-return-after-aborting-transition.patch - Add patch from upstream to fix default playback volume ignore: * 0007-state-stream-fix-using-default-volume.patch ==== xen ==== Version update (4.18.2_04 -> 4.18.2_05) Subpackages: xen-libs xen-tools-domU - bsc#1225953 - Package xen does not build with gcc14 because of new errors gcc14-fixes.patch ==== xwayland ==== - disable DPMS on sle15 due to missing proto package ==== xz ==== Version update (5.6.1.revertto5.4 -> 5.6.2) Subpackages: liblzma5 - Update to 5.6.2: * Remove the backdoor (CVE-2024-3094). * Not changed: Memory sanitizer (MSAN) has a false positive in the CRC CLMUL code which also makes OSS Fuzz unhappy. Valgrind is smarter and doesn't complain. A revision to the CLMUL code is coming anyway and this issue will be cleaned up as part of it. It won't be backported to 5.6.x or 5.4.x because the old code isn't wrong. There is no reason to risk introducing regressions in old branches just to silence a false positive. * liblzma: - lzma_index_decoder() and lzma_index_buffer_decode(): Fix a missing output pointer initialization (*i = NULL) if the functions are called with invalid arguments. The API docs say that such an initialization is always done. In practice this matters very little because the problem can only occur if the calling application has a bug and these functions return LZMA_PROG_ERROR. - lzma_str_to_filters(): Fix a missing output pointer initialization (*error_pos = 0). This is very similar to the fix above. - Fix C standard conformance with function pointer types. - Remove GNU indirect function (IFUNC) support. This is *NOT* done for security reasons even though the backdoor relied on this code. The performance benefits of IFUNC are too tiny in this project to make the extra complexity worth it. - FreeBSD on ARM64: Add error checking to CRC32 instruction support detection. - Fix building with NVIDIA HPC SDK. * xz: - Fix a C standard conformance issue in --block-list parsing (arithmetic on a null pointer). - Fix a warning from GNU groff when processing the man page: "warning: cannot select font 'CW'" * xzdec: Add support for Linux Landlock ABI version 4. xz already had the v3-to-v4 change but it had been forgotten from xzdec. ==== yast2-trans ==== Version update (84.87.20240524.01535fea46 -> 84.87.20240603.1527509889) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240603.1527509889: * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Romanian) * Translated using Weblate (Slovenian) * Translated using Weblate (Romanian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Georgian) * Translated using Weblate (Georgian) * Translated using Weblate (Georgian) * Translated using Weblate (Georgian) * Translated using Weblate (Russian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Russian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Slovak) * Translated using Weblate (Romanian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Esperanto) * Translated using Weblate (Esperanto) * Translated using Weblate (Esperanto) * Translated using Weblate (Esperanto) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian)