Packages changed:
MicroOS-release (20240812 -> 20240818)
NetworkManager (1.48.6 -> 1.48.8)
PackageKit
SDL2 (2.30.4 -> 2.30.6)
aardvark-dns (1.11.0 -> 1.12.1)
accountsservice
btrfsprogs (6.10 -> 6.10.1)
bubblewrap (0.9.0 -> 0.10.0)
curl (8.9.0 -> 8.9.1)
ethtool (6.9 -> 6.10)
ffmpeg-6
gdm
gnome-bluetooth (46.0 -> 46.1)
gnome-control-center (46.3 -> 46.4)
gnome-shell
gnome-software (46.3 -> 46.4)
gnome-user-docs (46.1 -> 46.4)
gpg2
iproute2 (6.9 -> 6.10)
kernel-firmware (20240728 -> 20240809)
kernel-source (6.10.3 -> 6.10.5)
kexec-tools (2.0.28 -> 2.0.29)
libadwaita (1.5.2 -> 1.5.3)
libass (0.17.1 -> 0.17.3)
libei (1.2.1 -> 1.3.0)
libgphoto2
liblc3 (1.0.4 -> 1.1.1)
libnftnl (1.2.6 -> 1.2.7)
liburing
libxml++30 (3.2.4 -> 3.2.5)
lvm2
lvm2-device-mapper
lz4
makedumpfile
mutter
ncurses (6.5.20240713 -> 6.5.20240810)
netavark (1.11.0 -> 1.12.1)
passt (20240726.57a21d2 -> 20240814.61c0b0d)
patterns-base
pcre2 (10.43 -> 10.44)
podman (5.2.0 -> 5.2.1)
polkit
protobuf
protobuf-c
python-PyJWT (2.8.0 -> 2.9.0)
python-cryptography
python-oauthlib
qt6-webengine
sdbootutil (1+git20240722.e6d7c91 -> 1+git20240812.ee2298f)
selinux-policy (20240809 -> 20240814)
sensors
shadow
suse-module-tools (16.0.48 -> 16.0.49)
sysvinit (3.08 -> 3.10)
totem-pl-parser (3.26.6 -> 3.26.6+30)
tpm2.0-abrmd
transactional-update-notifier
webkit2gtk3 (2.44.2 -> 2.44.3)
webkit2gtk4 (2.44.2 -> 2.44.3)
wtmpdb (0.13.0+git.20240726 -> 0.13.0+git.20240814)
xdm
=== Details ===
==== MicroOS-release ====
Version update (20240812 -> 20240818)
Subpackages: MicroOS-release-appliance MicroOS-release-dvd
- automatically generated by openSUSE-release-tools/pkglistgen
==== NetworkManager ====
Version update (1.48.6 -> 1.48.8)
Subpackages: NetworkManager-bluetooth NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Update to version 1.48.8:
+ ovs: fix triggering stage3 activation without DHCP client
initialized
+ config: parse autoconnect-ports value on config
+ ndisc: preserve router preferences
==== PackageKit ====
Subpackages: PackageKit-backend-dnf libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0
- Add PackageKit-mark-as-compulsory.patch: Prevent PackageKit from
user uninstallable for most desktops (bsc#1226269).
==== SDL2 ====
Version update (2.30.4 -> 2.30.6)
- Update to release 2.30.6
* Improved detection of Nintendo Switch Pro controller report mode
* Fixed a rare crash when a controller is disconnected
==== aardvark-dns ====
Version update (1.11.0 -> 1.12.1)
- Update to version 1.12.1:
* Release v1.12.1
* Updated release notes for 1.12.1
* Change av cargo categories
* Bump to 1.13.0-dev
* Release 1.12.0
* Release notes for 1.12
* config: ignore enoent errors while reading configs
* run cargo update
* update upsteam resolvers on each refresh
* fix(deps): update rust crate syslog to v7
* fix(deps): update rust crate tokio to 1.39.2
* add tcp support for forwarding
* add tcp listening support
* test: add new test to check for startup error
* return bind error to caller on first start
* add our own error type and use it over anyhow
* server: use anyhow to wrap parse_configs error
* server: split out main loop into new function
* main: remove aardvark-dns error prefix
* coredns: remove unnecessary try_join! call
* coredns: drop pointless name var
* serve: read nameservers once
* replace signal-hook with tokio::signal
* serve: fix broken error logging
* server: improve parent <-> child error handling
* add some basic perf check script
* fix(deps): update rust crate tokio to 1.39.0
* coredns: create reply_ip() function
* coredns: match dns type explicitly
* server: use only one tokio runtime
* coredns: improve indentation for process_message()
* coredns: move upstream resolvers detection later
* coredns: do not clone sender
* read AARDVARK_NO_PROXY once
* coredns: move main code out of select!
* coredns: fix "name" naming
* coredns: remove unused forward_addr/port
* coredns: fix handling of dns search domain
* coredns: rework PTR lookup flow
* fix(deps): update rust crate tokio to 1.38.1
* [skip-ci] TMT: Reorg upstream tests for downstream reusability
* [skip-ci] Packit: use `packages: [aardvark-dns-fedora]` for podman-next builds
* Be sure to have at least Epoch 2 to preserve upgrade path in c10s.
* fix(deps): update rust crate log to 0.4.22
* [CI:BUILD] rpm: Update Rust macro usage
* fix(deps): update rust crate tokio to 1.38.0
* Bump to 1.12.0-dev
==== accountsservice ====
Subpackages: libaccountsservice0 typelib-1_0-AccountsService-1_0
- Drop as-fate318433-prevent-same-account-multi-logins.patch.
Gnome-shell now has similar functionality upstream.
==== btrfsprogs ====
Version update (6.10 -> 6.10.1)
Subpackages: btrfsprogs-udev-rules libbtrfs0 libbtrfsutil1
- update to 6.10.1
* mkfs: rework --rootdir traversal, skip hardlinks and create new inodes
instead, also warn about them, this did not work as expected and will be
fixed in the future
* receive: search in older trees for UUIDs when detecting clone sources
* libbtrfsutil: bindings available at https://pypi.org/project/btrfsutil
* libbtrfs:
* patchlevel version update 0.1.4
* cleanup in headers, removed unused definitions, no functional changes
* don't ship list.h and rbtree.h
* other: documentation updates
==== bubblewrap ====
Version update (0.9.0 -> 0.10.0)
- Update to version v0.10.0:
* New features: Add the --[ro-]bind-fd option, which can be used
to mount a filesystem represented by a file descriptor without
time-of-check/time-of-use attacks. This is needed when
resolving CVE-2024-42472 in Flatpak.
* Other changes: Fix some confusing syntax in SetupOpFlag (no
functional change).
==== curl ====
Version update (8.9.0 -> 8.9.1)
Subpackages: libcurl4
- Fix regression introduced in version 8.9.1:
* sigpipe: init the struct so that first apply ignores
* Add curl-sigpipe.patch
- Update to 8.9.1:
* Security fixes:
- curl: ASN.1 date parser overread [bsc#1228535, CVE-2024-7264]
* Bugfixes:
- cmake: detect 'libssh' via 'pkg-config'
- cmake: detect 'nettle' when building with GnuTLS
- connect: fix connection shutdown for event based processing
- curl: more defensive socket code for --ip-tos
- CURLOPT_SSL_CTX_FUNCTION.md: mention CA caching
- CURLSHOPT_SHARE.md: mention sessions/cookies as not thread-safe
- ftpserver.pl: make POP3 LIST serve content from the test file
- lib: survive some NULL input args
- os400: build cli manual.
- os400: workaround an IBM ASCII run-time library bug
- transfer: speed limiting fix for 32bit systems
- vtls: avoid forward declaration in MultiSSL builds
- x509asn1: unittests and fixes for gtime2str
==== ethtool ====
Version update (6.9 -> 6.10)
- update to upstream release 6.10
* Feature: suport for PoE in PSE (--show-pse and --set-pse)
* Feature: add statistics support to tsinfo (-T)
* Feature: add JSON output to base command (no option)
* Feature: add JSON output to EEE info (--show-eee)
* Fix: qsfp: better handling on page 03h read failure (-m)
* Fix: handle zero arguments for module eeprom dump (-m)
* Fix: check for missing arguments in do_srxfh() (-X)
* Misc: more descriptive error when JSON output is not available
==== ffmpeg-6 ====
Subpackages: libavcodec60 libavfilter9 libavformat60 libavutil58 libpostproc57 libswresample4 libswscale7
- Remove ffmpeg-6-CVE-2024-32228-shim-5d7f234e.patch and
ffmpeg-6-CVE-2024-32228.patch to make the bot happy.
- Renumber patches.
- Disable ffmpeg-6-CVE-2024-32228-shim-5d7f234e.patch and
ffmpeg-6-CVE-2024-32228.patch as they brake compilation with
BUILD_ORIG enabled, i.e. Packman.
==== gdm ====
Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Add pam_pkcs11 as Recommends for smartcard login (bsc#1223580).
- Fix applying patches when sle_version is defined
==== gnome-bluetooth ====
Version update (46.0 -> 46.1)
Subpackages: libgnome-bluetooth-3_0-13 libgnome-bluetooth-ui-3_0-13 typelib-1_0-GnomeBluetooth-3_0
- Update to version 46.1:
+ This version contains translation updates and a bug fix for
some device icons not appearing correctly.
==== gnome-control-center ====
Version update (46.3 -> 46.4)
Subpackages: gnome-control-center-color gnome-control-center-goa
- Update to version 46.4:
+ Accessibility: Fix enum value for follow centered
+ Apps: Fix memory leak for MMManager object in default apps page
+ Network: Don't set empty ignored hosts
+ Privacy: Fix visibility issue of Bolt settings when Bolt isn't
available
+ Users:
- Avoid accidental mnemonics for user name rows
- Show correctly the remaining list of fingerprints to enroll
+ WWAN: Fix crash on Unlock SIM dialog
==== gnome-shell ====
Subpackages: gnome-shell-calendar
- Drop gs-fate318433-prevent-same-account-multi-logins.patch.
Upstream now does this.
==== gnome-software ====
Version update (46.3 -> 46.4)
- Update to version 46.4:
+ Correct broken formatting when using <code> in AppStream
metadata
+ Updated translations.
==== gnome-user-docs ====
Version update (46.1 -> 46.4)
- Update to version 46.4:
+ Updates to GNOME Help.
+ Updated translations.
==== gpg2 ====
- Remove explicit runtime library dependency, pick ease of
maintenance in Tumbleweed over mixed project use runtime bugs.
==== iproute2 ====
Version update (6.9 -> 6.10)
- Update to release 6.10
* ip: ipnexthop: Support dumping next hop group stats
* ip: Support filter links with no VF info
* ip: PFCP device support
* ip link: hsr: Add support for passing information about
INTERLINK device
==== kernel-firmware ====
Version update (20240728 -> 20240809)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network
- Update to version 20240809 (git commit 36db650dae03):
* qcom: update path for video firmware for vpu-1/2/3.0
* QCA: Update Bluetooth WCN685x 2.1 firmware to 2.1.0-00642
* rtw89: 8852c: add fw format-1 v0.27.97.0
* rtw89: 8852bt: add firmware 0.29.91.0
* amdgpu: Update ISP FW for isp v4.1.1
* mediatek: Update mt8195 SOF firmware
* amdgpu: DMCUB updates for DCN314
* xe: First GuC release v70.29.2 for BMG
* xe: Add GuC v70.29.2 for LNL
* i915: Add GuC v70.29.2 for ADL-P, DG1, DG2, MTL, and TGL
* i915: Update MTL DMC v2.22
* i915: update MTL GSC to v102.0.10.1878
* xe: Add BMG HuC 8.2.10
* xe: Add GSC 104.0.0.1161 for LNL
* xe: Add LNL HuC 9.4.13
* i915: update DG2 HuC to v7.10.16
* amdgpu: Update ISP FW for isp v4.1.1
* QCA: Update Bluetooth QCA2066 firmware to 2.1.0-00641
==== kernel-source ====
Version update (6.10.3 -> 6.10.5)
- Refresh
patches.suse/Revert-ata-libata-scsi-Honor-the-D_SENSE-bit-for-CK_.patch.
Update upstream status.
- commit b7789d6
- netfilter: nfnetlink: Initialise extack before use in ACKs (netlink-crash).
See:
https://github.com/systemd/systemd/actions/runs/10282472628/job/28454253577?pr=33958#step:12:30
- commit da1090b
- btrfs: fix invalid mapping of extent xarray state (git-fixes).
- commit b18d7b9
- Linux 6.10.5 (bsc#1012628).
- drm/amd/display: Refactor function
dm_dp_mst_is_port_support_mode() (bsc#1012628).
- locking/pvqspinlock: Correct the type of "old" variable in
pv_kick_node() (bsc#1012628).
- perf/x86/intel/cstate: Add Arrowlake support (bsc#1012628).
- perf/x86/intel/cstate: Add Lunarlake support (bsc#1012628).
- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra
Forest (bsc#1012628).
- platform/x86: intel-vbtn: Protect ACPI notify handler against
recursion (bsc#1012628).
- irqchip/mbigen: Fix mbigen node address layout (bsc#1012628).
- platform/x86/intel/ifs: Initialize union ifs_status to zero
(bsc#1012628).
- jump_label: Fix the fix, brown paper bags galore (bsc#1012628).
- perf/x86/amd: Use try_cmpxchg() in events/amd/{un,}core.c
(bsc#1012628).
- perf/x86/intel: Support the PEBS event mask (bsc#1012628).
- perf/x86: Support counter mask (bsc#1012628).
- perf/x86: Fix smp_processor_id()-in-preemptible warnings
(bsc#1012628).
- selftests: ksft: Fix finished() helper exit code on skipped
tests (bsc#1012628).
- x86/mm: Fix pti_clone_pgtable() alignment assumption
(bsc#1012628).
- x86/mm: Fix pti_clone_entry_text() for i386 (bsc#1012628).
- smb: client: handle lack of FSCTL_GET_REPARSE_POINT support
(bsc#1012628).
- power: supply: rt5033: Bring back i2c_set_clientdata
(bsc#1012628).
- sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1012628).
- net: pse-pd: tps23881: Fix the device ID check (bsc#1012628).
- gve: Fix use of netif_carrier_ok() (bsc#1012628).
- virtio-net: unbreak vq resizing when coalescing is not
negotiated (bsc#1012628).
- net: usb: qmi_wwan: fix memory leak for not ip packets
(bsc#1012628).
- net: bridge: mcast: wait for previous gc cycles when removing
port (bsc#1012628).
- net: linkwatch: use system_unbound_wq (bsc#1012628).
- net: dsa: microchip: Fix Wake-on-LAN check to not return an
error (bsc#1012628).
- ice: Fix reset handler (bsc#1012628).
- Bluetooth: l2cap: always unlock channel in
l2cap_conless_channel() (bsc#1012628).
- Bluetooth: hci_sync: avoid dup filtering when passive scanning
with adv monitor (bsc#1012628).
- net/smc: add the max value of fallback reason count
(bsc#1012628).
- net: dsa: bcm_sf2: Fix a possible memory leak in
bcm_sf2_mdio_register() (bsc#1012628).
- idpf: fix memory leaks and crashes while performing a soft reset
(bsc#1012628).
- idpf: fix UAFs when destroying the queues (bsc#1012628).
- l2tp: fix lockdep splat (bsc#1012628).
- net: bcmgenet: Properly overlay PHY and MAC Wake-on-LAN
capabilities (bsc#1012628).
- net: fec: Stop PPS on driver remove (bsc#1012628).
- net: pse-pd: tps23881: include missing bitfield.h header
(bsc#1012628).
- net: dsa: microchip: disable EEE for
KSZ8567/KSZ9567/KSZ9896/KSZ9897 (bsc#1012628).
- regmap: kunit: Fix memory leaks in gen_regmap() and
gen_raw_regmap() (bsc#1012628).
- gpio: prevent potential speculation leaks in
gpio_device_get_desc() (bsc#1012628).
- hwmon: corsair-psu: add USB id of HX1200i Series 2023 psu
(bsc#1012628).
- Revert "rcu-tasks: Fix synchronize_rcu_tasks() VS
zap_pid_ns_processes()" (bsc#1012628).
- platform/chrome: cros_ec_lpc: Add a new quirk for ACPI id
(bsc#1012628).
- rcutorture: Fix rcu_torture_fwd_cb_cr() data race (bsc#1012628).
- md: do not delete safemode_timer in mddev_suspend (bsc#1012628).
- md: change the return value type of md_write_start to void
(bsc#1012628).
- md/raid5: avoid BUG_ON() while continue reshape after
reassembling (bsc#1012628).
- debugobjects: Annotate racy debug variables (bsc#1012628).
- nvme: apple: fix device reference counting (bsc#1012628).
- block: change rq_integrity_vec to respect the iterator
(bsc#1012628).
- rcu: Fix rcu_barrier() VS post CPUHP_TEARDOWN_CPU invocation
(bsc#1012628).
- clocksource/drivers/sh_cmt: Address race condition for clock
events (bsc#1012628).
- ACPI: battery: create alarm sysfs attribute atomically
(bsc#1012628).
- ACPI: SBS: manage alarm sysfs attribute through psy core
... changelog too long, skipping 636 lines ...
- commit b60be3e
==== kexec-tools ====
Version update (2.0.28 -> 2.0.29)
- update to 2.0.29:
* update man and --help
* powerpc/kexec_load: add hotplug support
* kexec_load: Use new kexec flag for hotplug support
* x86-linux-setup.c: Use POSIX basename API
* LoongArch: fix load command line segment error
* LoongArch: add multi crash kernel segment support
* LoongArch: fix kernel image size error
* Arm: Fix add_buffer_phys_virt() align issue
* Fix incorrect Free Software Foundation address in the license
* util_lib/elf_info.c: fix a warning
* kexec_file: add kexec_file flag to support debug printing
* workflow: update to use checkout@v4
- drop kexec-dont-use-kexec_file_load-on-xen.patch, upstream
- drop fix-building-on-x86_64-with-binutils-2.41.patch, upstream
- kexec-tools-riscv-hotplug.patch: Fix build for riscv64.
==== libadwaita ====
Version update (1.5.2 -> 1.5.3)
Subpackages: libadwaita-1-0 typelib-1_0-Adw-1
- Update to version 1.5.3:
+ AdwAlertDialog: Expose body text as a11y description
+ AdwDialog:
- Fix a memory leak
- Speed up switching presentation
+ AdwPreferencesPage: Add an a11y relation to the description
+ AdwSpinRow: Set accessible role to presentation
+ AdwSwitchRow: Set accessible role to switch
+ AdwTabBar/Overview: Fix a use after free when closing tabs
+ Stylesheet: Fix a specificity issue with scrolled windows in
popovers
+ Docs:
- Don't annotate user_data params with closure
- Fix typos in migrating to breakpoints page
+ Updated translations.
==== libass ====
Version update (0.17.1 -> 0.17.3)
- Update to 0.17.3:
* Fix 0.17.2 regression in the fontconfig fontprovider leading to
undesirable widths being chosen from large typographic families
* Fix configure generated with slibtool-provided autoconf macros
* Fix make check for shared-only builds
* Constify some API parameters in a backwards-compatible manner
* Add new ass_malloc and ass_free API functions
* Tweak default optimization flags
* Speed up parsing of events with very long override blocks
* Improve handling of HarfBuzz-related failures
- reintroduce 'make check' as the issue has been fixed upstream
- Update to 0.17.2:
* This release brings optimized assembly routines for aarch64,
as well as numerous individual improvements and fixes.
* Detailed Changes:
- Fix rendering of \h in certain cases
- Fix a minor memory leak in the CoreText and DirectWrite font provider
- Fix wrong ASS_Image dimensions for huge BorderStyle=4 backgrounds
potentially leading to out of bound reads by API users
- Improve quality of animated rectangular clips
- Improve accuracy of cache limits
- Full-Unicode cmaps are now always preferred
- Improve font selection compatibility in the DirectWrite font provider
- Improved documentation
- Updating selective overrides now forces a cache clear to avoid issues
with outdated caches
- Frame and storage resolutions are now limited to what a single ASS_Image
can represent
- make check now runs checkasm if assembly is enabled
- CoreText can now be used on Mac OS X 10.5
- Meson/muon is now offered as a secondary build system bringing back
first-party MSVC support
- Note however it is not at feature parity with autotools in all cases
- aarch64: add optimized assembly routines covering the same set as on x86;
they work on both little and big endian systems
- x86: add SSSE3 versions of some assembly routines to help CPUs without
AVX2
- x86: it is now possible to build binaries with optimized assembly an
SHSTK support
- Improve VSFilter compatibility
- 'make check' is broken for --disable-static builds because checkasm needs to
access symbols that aren't part of the public API, so just disable it.
- Require libunibreak during build for better linebreaking of
unicode text.
==== libei ====
Version update (1.2.1 -> 1.3.0)
- Update to release 1.3.0
* Devices without regions or with multiple regions previously
failed region checks for touch events and absolute pointer
events (now fixed).
* liboeffis's ConnectToEIS dbus call is now async to avoid stalling
the client.
* many clarifications for ambiguity in the protocol documentation.
==== libgphoto2 ====
Subpackages: libgphoto2-6 libgphoto2_port12
- Adding libgphoto2-c99.patch so that the package builds for 32bit
with GCC 14.
- Using %autosetup -p1 because this is the prefered way to apply
patches.
==== liblc3 ====
Version update (1.0.4 -> 1.1.1)
- Update to version 1.1.1:
+ Wasm Compilation cleanup
+ build: fix rpath issue
+ Add build-macos-meson job
+ Bluetooth Conformance test updated for LC3
- Changes from version 1.1.0:
+ LC3 Plus features
+ Python library wrapper
+ Add WASM compilation target
==== libnftnl ====
Version update (1.2.6 -> 1.2.7)
- Update to release 1.2.7
* Avoid potential use-after-free when clearing set's expression
list
* Avoid misc buffer overflows in attribute setters
* Implement nftnl_obj_unset symbol already exported in
libnftnl.map
* Remove unimplemented symbols from libnftnl.map
* Validate per-expression and per-object attribute value and
data length
* Fix synproxy object setter with unaligned data
==== liburing ====
- Skip test buf-ring-nommap.t if ENOMEM appears (happens in ppc64le arch).
* test-buf-ring-nommap-skip-the-test-on-queue-init-ENO.patch
==== libxml++30 ====
Version update (3.2.4 -> 3.2.5)
- Update to version 3.2.5:
+ Documentation:
- Update Visual Studio build docs
- Parser docs: Add a link to parser options
+ Meson build:
- Detect if we build from a git subtree
- Don't copy files with configure_file()
- Fix the evaluation of is_git_build on Windows
- Backport libxml2 CMake support from libxml++-5.0
- Don't fail if warning_level=everything
- Don't require the 'dot' command to build the documentation
- Add the build-manual option
- Add bcrypt dependency when libxml2 is a subproject
+ Build: Make it compatible with libxml2 >= 2.12.0 by modifying
[#]include directives
- Add check section and run meson_test macro.
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- lvm2-monitor.service fails to start (boo#1228854)
+ bug-1228854_lvm2-monitor-service-start-after-system-fully-booted.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- lvm2-monitor.service fails to start (boo#1228854)
+ bug-1228854_lvm2-monitor-service-start-after-system-fully-booted.patch
==== lz4 ====
- Switch to cmake build system: Creates extra cmake modules for
consuming projects
==== makedumpfile ====
- add (bsc#1226183)
* make-reserve_diskspace-do-nothing-for-flattened-form.patch
==== mutter ====
- Fix build if sle_version is defined: Patch3 no longer exists, and
add back Patch4 for SLE builds that was mistakenly removed in
last change.
==== ncurses ====
Version update (6.5.20240713 -> 6.5.20240810)
Subpackages: libncurses6 ncurses-utils terminfo-base
- Add patch fix-20240810.patch
* Workaround for changes in last patch 20240810 that is provide
GLOB_FULLPATH_POSIX and GLOB_FULLPATH_OTHER in status script
- Add ncurses patch 20240810
+ modify misc/Makefile.in and misc/run_tic.in so that $DESTDIR is set
and used only in the makefile.
+ modify CF_WITH_PKG_CONFIG_LIBDIR to allow for pkg-config using
DOS/Windows pathname syntax (report by Eli Zaretskii).
+ improve glob-expressions in configure script
+ remove unused Get_Menu_Screen() macro from menu.priv.h
+ update config.guess, config.sub
- Add ncurses patch 20240727
+ improve formatting/style of manpages (patches by Branden Robinson).
+ fixes for compiler warnings/cppcheck.
+ modify wattron/wattroff calls in form/m_post.c to call wattr_on and
wattr_off to omit cast used in the former for X/Open compatibility
(patch by Bill Gray).
+ modify wezterm, omitting its broken left/right margin feature (report
by Thayne McCombs) -TD
- Modify patch ncurses-6.4.dif to get offsets correct
- Add ncurses patch 20240720
+ improve formatting/style of manpages (patches by Branden Robinson).
+ modify configure script and misc/Makefile to accept glob expressions
that include Windows/DOS drive-letters (report by Eli Zaretskii).
+ fix misspelled ifdef and correct return-value of _nc_mingw_tcflush in
win_driver.c (report/patch by Eli Zaretskii).
==== netavark ====
Version update (1.11.0 -> 1.12.1)
- Update to version 1.12.1:
* Release v1.12.1
* Update release notes for v1.12.1
* Change nv cargo categories
* Bump to 1.13.0-dev
* Release 1.12
* Release Notes for 1.12
* run cargo update
* rpm: use nftables as default for f41
* fix(deps): update rust crate serde_json to 1.0.121
* fix(deps): update rust crate tokio to 1.39.2
* aardvark-dns: trim whitespaces from error text
* fix(deps): update rust crate env_logger to 0.11.5
* [skip-ci] RPM: handle iptables/nftables dependencies
* fix aardvark-dns error handling
* fix(deps): update rust crate tokio to 1.39.1
* fix(deps): update rust crate env_logger to 0.11.4
* fix(deps): update rust crate tokio to 1.38.1
* update mozim to 0.2.4
* fix(deps): update rust crate serde_json to 1.0.120
* netavark: dhcp_proxy: use dns servers from dhcp lease
* fix(deps): update rust crate serde_json to 1.0.119
* fix(deps): update rust crate netlink-packet-route to 0.20.1
* fix(deps): update rust crate log to 0.4.22
* Fix Epoch so upgrade path is preserved from Fedora/RHEL.
* test: add macvlan metric test
* fix(deps): update rust crate serde_json to 1.0.118
* fix(deps): update rust crate url to 2.5.2
* fix(deps): update rust crate prost to 0.12.6
* fix(deps): update rust crate url to 2.5.1
* fix(deps): update rust crate iptables to 0.5.2
* [CI:BUILD] rpm: Update Rust macro usage
* fix(deps): update rust crate nftables to 0.4.1
* fix(deps): update rust crate tokio to 1.38.0
* Bump to 1.12.0-dev
==== passt ====
Version update (20240726.57a21d2 -> 20240814.61c0b0d)
Subpackages: passt-selinux
- Update to version 20240814.61c0b0d:
* flow: Don't crash if guest attempts to connect to port 0
* conf: Don't ignore -t and -u options after -D
* ndp.c: Turn NDP responder into more declarative implementation
* conf: Delay handling -D option until after addresses are configured
* Correct inaccurate comments on ip[46]_ctx::addr
* log: Don't prefix message with timestamp on --debug if it's a continuation
* conf: Stop parsing options at first non-option argument
* passt, util: Close any open file that the parent might have leaked
* nstool: Propagate SIGTERM to processes executed in the namespace
* nstool: Fix some trivial typos
* log: Avoid duplicate calls to logtime()
* log: Handle errors from clock_gettime()
* log: Correct formatting of timestamps
* util: Some corrections for timespec_diff_us
* conf, pasta: Make -g and -a skip route/addresses copy for matching IP version only
- Update to version 20240806.ee36266:
* log, passt: Keep printing to stderr when passt is running in foreground
* tcp_splice: Fix side in OUT_WAIT flag setting
* util: Use unsigned (size_t) value for iov length
* udp_flow: move all udp_flow functions to udp_flow.c
* udp_flow: Remove udp_meta_t from the parameters of udp_flow_from_sock()
* log: Make logfile_write() private
* pasta: Save errno on signal handler entry, restore on return when needed
* pasta: modify hostname when detaching new namespace
* Fix typo in README file
* fedora/rpkg: List myself as author for changelog entries
==== patterns-base ====
Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11
- Remove nfsidmap, package got dropped
- Remove nfs-client and autofs: in most scenarios, especially
desktops, no longer used, but pull in many "deprecated" packages
==== pcre2 ====
Version update (10.43 -> 10.44)
Subpackages: libpcre2-16-0 libpcre2-8-0
- Fix GitHub issue #415: Test suite fails when targeting i686.
The fix is taken straight from PR #418, also on GitHub.
- Add patch file:
* pcre2-10.44-github-issue-415.patch
- update to 10.44:
* This is mostly a bug-fix and tidying release. There is one
new function, to set a maximum size for a compiled pattern.
The maximum name length for groups is increased to 128.
* Some auxiliary files for building under VMS are added.
==== podman ====
Version update (5.2.0 -> 5.2.1)
- Update to version 5.2.1:
* Bugfixes
- Fixed a bug where Podman could sometimes save an incorrect
container state to the database, which could cause a number
of issues including but not limited to attempting to clean up
containers twice (#21569).
* Misc
- Updated Buildah to v1.37.1
- Updated the containers/common library to v0.60.1
- Updated the containers/image library to v5.32.1
==== polkit ====
Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 pkexec typelib-1_0-Polkit-1_0
- BuildRequire gettext-devel instead of gettext: Allows OBS to
shortcut throught gettext-runtime-mini.
==== protobuf ====
Subpackages: libprotobuf-lite25_4_0 libprotobuf25_4_0
- tweak and correct how minimum version of abseil is specified
(20230125 to 20230125.3)
- Remove explicit requirements of the protobuf-devel package, as
the they are autogenerated when needed
==== protobuf-c ====
- BuildRequire a C++ compiler, previously pulled in via protobuf
==== python-PyJWT ====
Version update (2.8.0 -> 2.9.0)
- Skip failing test gh#jpadilla/pyjwt#802
- Update to version 2.9.0
* Drop support for Python 3.7 (EOL) by @hugovk in #910
* Allow JWT issuer claim validation to accept a list of
strings too by @mattpollak in #913
* Fix unnecessary string concatenation by @sirosen in #904
* Fix docs for ``jwt.decode_complete`` to include ``strict_aud``
option by @woodruffw in #923
* Fix docs step by @jpadilla in #950
* Fix: Remove an unused variable from example code block
by @kenkoooo in #958
* Add support for Python 3.12 by @hugovk in #910
* Improve performance of ``is_ssh_key`` + add unit test by @bdraco in #940
* Allow ``jwt.decode()`` to accept a PyJWK object by @luhn in #886
* Make ``algorithm_name`` attribute available on PyJWK by @luhn in #886
* Raise ``InvalidKeyError`` on invalid PEM keys to be compatible
with cryptography 42.x.x by @CollinEMac in #952
* Raise an exception when required cryptography dependency
is missing by @tobloef in #963
==== python-cryptography ====
- Fix building optimized binaries with debuginfo.
- Update building of Rust modules to use modern cargo_vendor
service
- Remove unneeded use-offline-build.patch
==== python-oauthlib ====
- Skip failing test with jwt 2.9.0
gh#oauthlib/oauthlib#877
==== qt6-webengine ====
Subpackages: libQt6WebEngineCore6 libQt6WebEngineQuick6 libQt6WebEngineWidgets6 qt6-webengine-imports
- Add patch to build qtwebengine with ffmpeg 7 (picked from Arch)
* qtwebengine-ffmpeg-7.patch
==== sdbootutil ====
Version update (1+git20240722.e6d7c91 -> 1+git20240812.ee2298f)
Subpackages: sdbootutil-snapper sdbootutil-tukit
- Update to version 1+git20240812.ee2298f:
* Use arg_no_reuse_initrd as update_initrd
* Reorder PIN and PW search
* fix portable installation The fallback.efi should not be added when installing in portable mode
* Use /run for tmpfiles instead of /etc
==== selinux-policy ====
Version update (20240809 -> 20240814)
Subpackages: selinux-policy-targeted
- Update to version 20240814:
* Dontaudit dac_override of fstab generator (bsc#1229127)
- Drop varrun-convert.sh script as it causes issues with
container-selinux update (bsc#1228951)
- Update to version 20240812:
* Update libvirt policy
* Add port 80/udp and 443/udp to http_port_t definition
* Additional updates stalld policy for bpf usage
* Label systemd-pcrextend and systemd-pcrlock properly
* Allow coreos_installer_t work with partitions
* Revert "Allow coreos-installer-generator work with partitions"
* Add policy for systemd-pcrextend
* Update policy for systemd-getty-generator
* Allow ip command write to ipsec's logs
* Allow virt_driver_domain read virtd-lxc files in /proc
* Revert "Allow svirt read virtqemud fifo files"
* Update virtqemud policy for libguestfs usage
* Allow virtproxyd create and use its private tmp files
* Allow virtproxyd read network state
* Allow virt_driver_domain create and use log files in /var/log
* Allow samba-dcerpcd work with ctdb cluster
* Allow NetworkManager_dispatcher_t send SIGKILL to plugins
* Allow setroubleshootd execute sendmail with a domain transition
* Allow key.dns_resolve set attributes on the kernel key ring
* Update qatlib policy for v24.02 with new features
* Label /var/lib/systemd/sleep with systemd_sleep_var_lib_t
* Allow tlp status power services
* Allow virtqemud domain transition on passt execution
* Allow virt_driver_domain connect to systemd-userdbd over a unix socket
* Allow boothd connect to systemd-userdbd over a unix socket
* Update policy for awstats scripts
* Allow bitlbee execute generic programs in system bin directories
* Allow login_userdomain read aliases file
* Allow login_userdomain read ipsec config files
* Allow login_userdomain read all pid files
* Allow rsyslog read systemd-logind session files
* Allow libvirt-dbus stream connect to virtlxcd
==== sensors ====
- Drop lm_sensors-revert-6b5a19b708.patch because the previously
incompatible types have been changed in the callee in package
rrdtool too, which means that there is a type incompatibility again.
Because the other change reportedly makes more sense, I'm dropping
this one.
==== shadow ====
Subpackages: libsubid5 login_defs
- Disable flushing sssd caches. The sssd's files provider is no
longer available.
==== suse-module-tools ====
Version update (16.0.48 -> 16.0.49)
Subpackages: suse-module-tools-scriptlets
- Update to version 16.0.49:
* Require sdbootutil if already installed
==== sysvinit ====
Version update (3.08 -> 3.10)
- Add patch killproc-2.23.dif
* Fix shell command in Makefile to get detection statx declaration correct
- Update to sysvinit 3.10
* When the user executes "machinectl stop", systemd sends SIGRTMIN+4 to PID 1
in the container, and expects that to initiate a graceful shutdown (power-off).
SysV init now catches this signal and initiates a shutdown (shutdown -hP now).
- floppym provided patch to accomplish this.
* Fix issue in bootlogd which could cause the service to enter an endless loop
(and use too much CPU) when it is able to open a device for writing, but not actually
able to write to it. This resulted in bootlogd closing and re-opening the device over
and over. Now bootlogd should simply fail gracefully when it cannot write to an open
file/device.
* Fix formatting in shutdown.8 manual page. Cleaned up whitespace and special characters.
* Patch for man/Makefile to fix the clean recipe.
Provided by Lucas Nussabaum and Mark Hindley
* On Linux systems, allow reboot command to pass a message
to the system firmware during the restart. This is
accomplished with the -m flag.
* Patch from kraj which allows hddown to compile
when musl is the C library.
==== totem-pl-parser ====
Version update (3.26.6 -> 3.26.6+30)
Subpackages: libtotem-plparser18
- Update to version 3.26.6+30:
+ plparser:
- Fix guard return type.
- Fix TotemPlParserMetadata in bindings.
- Fix return value from cancelled calls.
- Fix retval when guard are triggered.
+ Various test fixes.
+ Updated translations.
- Add pkgconfig(uchardet) BuildRequires and pass
enable-uchardet=yes to meson, build ucharded support.
- Use ldconfig_scriptlets macro for post(un) handling.
==== tpm2.0-abrmd ====
Subpackages: libtss2-tcti-tabrmd0 tpm2.0-abrmd-selinux
- Fix SELinux sbin/bin merge (bsc#1229047)
1229047-fix-bin-sbin-selinux.patch
Can be dropped once https://github.com/tpm2-software/tpm2-abrmd/pull/846
is merged upstream
==== transactional-update-notifier ====
- export CGOFLAGS="CGO_ENABLED=1" before building: fixes build with
go 1.22 on i586 without breaking the other builds.
==== webkit2gtk3 ====
Version update (2.44.2 -> 2.44.3)
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 webkit2gtk-4_1-injected-bundles
- Update to version 2.44.3:
+ Fix web process cache suspend/resume when sandbox is enabled.
+ Fix accelerated images dissapearing after scrolling.
+ Fix video flickering with DMA-BUF sink.
+ Fix pointer lock on X11.
+ Fix movement delta on mouse events in GTK3.
+ Undeprecate console message API and make it available in 2022
API.
+ Fix several crashes and rendering issues.
- Drop patches now upstream:
9d5844679af8f84036f1b800307e799bd7ab73ba.patch
webkit2gtk3-CVE-2024-40776.patch
webkit2gtk3-CVE-2024-40779.patch
webkit2gtk3-CVE-2024-40780.patch
webkit2gtk3-CVE-2024-40782.patch
==== webkit2gtk4 ====
Version update (2.44.2 -> 2.44.3)
Subpackages: libjavascriptcoregtk-6_0-1 libwebkitgtk-6_0-4 webkitgtk-6_0-injected-bundles
- Update to version 2.44.3:
+ Fix web process cache suspend/resume when sandbox is enabled.
+ Fix accelerated images dissapearing after scrolling.
+ Fix video flickering with DMA-BUF sink.
+ Fix pointer lock on X11.
+ Fix movement delta on mouse events in GTK3.
+ Undeprecate console message API and make it available in 2022
API.
+ Fix several crashes and rendering issues.
- Drop patches now upstream:
9d5844679af8f84036f1b800307e799bd7ab73ba.patch
webkit2gtk3-CVE-2024-40776.patch
webkit2gtk3-CVE-2024-40779.patch
webkit2gtk3-CVE-2024-40780.patch
webkit2gtk3-CVE-2024-40782.patch
==== wtmpdb ====
Version update (0.13.0+git.20240726 -> 0.13.0+git.20240814)
Subpackages: libwtmpdb0
- Update to version 0.13.0+git.20240814:
* wtmpdb-update-boot service requires dbus
==== xdm ====
- sysconfig/windowmanager is deprecated since 7 years, don't
read it if it does not exist.