Packages changed: ImageMagick (7.1.1.43 -> 7.1.1.44) Mesa (24.3.4 -> 25.0.0) Mesa-drivers (24.3.4 -> 25.0.0) NetworkManager (1.50.0 -> 1.50.3) apparmor at autoyast2 (5.0.3 -> 5.0.4) bash bash-completion bluedevil6 (6.3.0 -> 6.3.2) bluez breeze6 (6.3.0 -> 6.3.2) breeze6-gtk (6.3.0 -> 6.3.2) cppcheck (2.16.2 -> 2.17.1) discover6 (6.3.0 -> 6.3.2) drkonqi6 (6.3.0 -> 6.3.2) fdupes ffmpeg-4 ffmpeg-7 fftw3 file flatpak-kcm6 (6.3.0 -> 6.3.2) gcc gcc14 (14.2.1+git10750 -> 14.2.1+git11321) glib2 (2.82.4 -> 2.82.5) glibc (2.40 -> 2.41) gmp gnutls (3.8.8 -> 3.8.9) gpg2 (2.5.3 -> 2.5.4) gpgme gpgmeqt6 grub2 guestfs-tools (1.53.5 -> 1.53.7) gvfs harfbuzz (10.2.0 -> 10.3.0) inkscape (1.4+39 -> 1.4+71) json-c (0.17 -> 0.18) kactivitymanagerd6 (6.3.0 -> 6.3.2) kde-cli-tools6 (6.3.0 -> 6.3.2) kde-gtk-config6 (6.3.0 -> 6.3.2) kdecoration6 (6.3.0 -> 6.3.2) kdeplasma6-addons (6.3.0 -> 6.3.2) kernel-firmware-amdgpu (20250206 -> 20250219) kernel-firmware-ath10k kernel-firmware-ath11k (20250206 -> 20250227) kernel-firmware-bluetooth (20250208 -> 20250219) kernel-firmware-mediatek (20250206 -> 20250220) kernel-firmware-network (20250206 -> 20250219) kernel-firmware-platform (20250206 -> 20250220) kernel-firmware-qcom (20250206 -> 20250219) kernel-firmware-realtek (20250206 -> 20250224) kernel-firmware-sound (20250217 -> 20250219) kernel-source (6.13.3 -> 6.13.5) kgamma6 (6.3.0 -> 6.3.2) kglobalacceld6 (6.3.0 -> 6.3.2) kinfocenter6 (6.3.0 -> 6.3.2) kmenuedit6 (6.3.0 -> 6.3.2) kmod (33 -> 34) kpipewire6 (6.3.0 -> 6.3.2) kscreen6 (6.3.0 -> 6.3.2) kscreenlocker6 (6.3.0 -> 6.3.2) ksshaskpass6 (6.3.0 -> 6.3.2) ksystemstats6 (6.3.0 -> 6.3.2) kwayland-integration6 (6.3.0 -> 6.3.2) kwayland6 (6.3.0 -> 6.3.2) kwin6 (6.3.0 -> 6.3.2.1) layer-shell-qt6 (6.3.0 -> 6.3.2) libX11 libXt libaccounts-glib (1.26 -> 1.27) libapparmor libarchive libassuan (3.0.1 -> 3.0.2) libcaca libdisplay-info libfprint (1.94.8+tod1 -> 1.94.9+tod1) libguestfs (1.55.3 -> 1.55.6) libheif libiscsi (1.20.0+git.20241207 -> 1.20.0+git.20250104) libkscreen6 (6.3.0 -> 6.3.2) libksysguard6 (6.3.0 -> 6.3.2) liblouis (3.31.0 -> 3.32.0) libnotify (0.8.3 -> 0.8.4) libostree libplasma6 (6.3.0 -> 6.3.2) libplist (2.3.0 -> 2.6.0) libsecret libssh libstorage-ng (4.5.239 -> 4.5.241) libvirt libwacom (2.12.2 -> 2.14.0) libxcb libxkbfile libxml2 (2.13.5 -> 2.13.6) libxml2-python (2.13.5 -> 2.13.6) libxmlb (0.3.19 -> 0.3.21) libzip (1.11.2 -> 1.11.3) libzypp (17.36.1 -> 17.36.4) llvm18 llvm19 lokalize lvm2 lvm2-device-mapper makedumpfile (1.7.5 -> 1.7.6) mc (4.8.32 -> 4.8.33) microos-tools (4.0+git6 -> 4.0+git7) milou6 (6.3.0 -> 6.3.2) ncurses (6.5.20250201 -> 6.5.20250222) nvidia-open-driver-G06-signed (570.86.16_k6.13.3_1 -> 570.124.04_k6.13.4_1) ocean-sound-theme6 (6.3.0 -> 6.3.2) open-vm-tools openSUSE-release (20250219 -> 20250302) openssh pam_kwallet6 (6.3.0 -> 6.3.2) patterns-base patterns-desktop patterns-gnome patterns-media patterns-server (20210330 -> 20250225) pcr-oracle perl-Error (0.17029 -> 0.170.300) perl-XML-Parser pipewire (1.3.82 -> 1.3.83) plasma5support6 (6.3.0 -> 6.3.2) plasma6-activities (6.3.0 -> 6.3.2) plasma6-activities-stats (6.3.0 -> 6.3.2) plasma6-browser-integration (6.3.0 -> 6.3.2) plasma6-desktop (6.3.0 -> 6.3.2) plasma6-disks (6.3.0 -> 6.3.2) plasma6-integration (6.3.0 -> 6.3.2) plasma6-nm (6.3.0 -> 6.3.2) plasma6-openSUSE plasma6-pa (6.3.0 -> 6.3.2) plasma6-print-manager (6.3.0 -> 6.3.2) plasma6-systemmonitor (6.3.0 -> 6.3.2) plasma6-thunderbolt (6.3.0 -> 6.3.2) plasma6-workspace (6.3.0 -> 6.3.2) plocate polkit-default-privs (1550+20250217.25d4aef -> 1550+20250225.49f846d) polkit-kde-agent-6 (6.3.0 -> 6.3.2) poppler (25.01.0 -> 25.02.0) poppler-qt6 (25.01.0 -> 25.02.0) postfix (3.9.1 -> 3.10.1) postgresql17 (17.3 -> 17.4) powerdevil6 (6.3.0 -> 6.3.2) ppp (2.5.0 -> 2.5.2) procmail publicsuffix (20250212 -> 20250224) pulseaudio-qt6 (1.6.1 -> 1.7.0) python-MarkupSafe python-cryptography (44.0.0 -> 44.0.1) python-distro python-zstandard python311-setuptools (75.6.0 -> 75.8.0) qemu (9.2.1 -> 9.2.2) qqc2-breeze-style6 (6.3.0 -> 6.3.2) qt6-tools rdma-core (54.0 -> 56.0) salt sdbootutil (1+git20250219.a796c24 -> 1+git20250225.b78f812) sddm-kcm6 (6.3.0 -> 6.3.2) selinux-policy (20250218 -> 20250224) shadow (4.17.2 -> 4.17.3) shim-leap spectacle (24.12.2 -> 6.3.2) speech-dispatcher (0.12.0~rc4 -> 0.12.0) sqlite3 (3.49.0 -> 3.49.1) sscep suitesparse sushi (46.0 -> 46.0+11) systemsettings6 (6.3.0 -> 6.3.2) texinfo (7.0.3 -> 7.1) texlive tiff unar usbmuxd (1.1.1+git48.01c94c7 -> 1.1.1+git69.523f700) util-linux util-linux-systemd vim (9.1.1101 -> 9.1.1134) virt-manager virt-v2v (2.7.4 -> 2.7.6) wacomtablet-kcm6 (6.3.0 -> 6.3.2) xapian-core (1.4.21 -> 1.4.22) xdg-desktop-portal (1.19.4 -> 1.20.0) xdg-desktop-portal-kde6 (6.3.0 -> 6.3.2) xdm xen xfce4-whiskermenu-plugin (2.9.1 -> 2.9.2) xinit xorg-x11-server xterm xwayland (24.1.5 -> 24.1.6) yast2 (5.0.11 -> 5.0.12) yast2-kdump (5.0.2 -> 5.0.3) yast2-schema (5.0.1 -> 5.0.2) yast2-storage-ng (5.0.25 -> 5.0.27) yast2-trans (84.87.20250214.b4c23644e7 -> 84.87.20250221.72f607339a) zstd (1.5.6 -> 1.5.7) zxcvbn zypper (1.14.84 -> 1.14.87) === Details === ==== ImageMagick ==== Version update (7.1.1.43 -> 7.1.1.44) Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.1.44 * Bump azure/trusted-signing-action from 0.5.0 to 0.5.1 in #7895 * Enable any dither method such as Floyd-Steinberg for Magick::Image::map() in #7937 * Magick++ Documentation Verification in #7906 * fix type casting in statistic.c in #7982 - removed patched (upstreamed) - ImageMagick-0-1-are-special-cases-for-pow.patch - ImageMagick-check-for-pow-zero.patch - ImageMagick-gamma-should-call-GammaImage.patch ==== Mesa ==== Version update (24.3.4 -> 25.0.0) Subpackages: Mesa-libEGL1 Mesa-libGL1 libgbm1 - Add explanation for the "CM" in "GLESv1_CM". - Drop idempotent %if..%endif guards that do nothing. - Combine some rm calls in the build recipe. - Add -v argument to all rm calls to see the result of the deletion in the build log. - Update to release 25.0.0 - -> https://docs.mesa3d.org/relnotes/25.0.0 - adjusted u_dep_xcb.patch - supersedes U_radeonsi-disallow-compute-queues-on-Raven-Raven2-due.patch - libglapi merged into libgallium - add patches to fix compilation with Python 3.6 (SLE15 SP7, SLE16, Leap 15.6) * u_intel-drop-annotations-from-spv2hex.patch * u_meson-lower-python-version-requirement.patch - -> credits go to "Mikhail Paulyshka" ==== Mesa-drivers ==== Version update (24.3.4 -> 25.0.0) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Add explanation for the "CM" in "GLESv1_CM". - Drop idempotent %if..%endif guards that do nothing. - Combine some rm calls in the build recipe. - Add -v argument to all rm calls to see the result of the deletion in the build log. - Update to release 25.0.0 - -> https://docs.mesa3d.org/relnotes/25.0.0 - adjusted u_dep_xcb.patch - supersedes U_radeonsi-disallow-compute-queues-on-Raven-Raven2-due.patch - libglapi merged into libgallium - add patches to fix compilation with Python 3.6 (SLE15 SP7, SLE16, Leap 15.6) * u_intel-drop-annotations-from-spv2hex.patch * u_meson-lower-python-version-requirement.patch - -> credits go to "Mikhail Paulyshka" ==== NetworkManager ==== Version update (1.50.0 -> 1.50.3) Subpackages: NetworkManager-bluetooth NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0 - Update to version 1.50.3: + Wait configuring MPTCP endpoints until DAD has completed. + Properly autoconnect OVS ports at boot. + Allow configuring "shared" IPv6 method in nmtui. - Changes from version 1.50.2: + Fix potential crash when the property "ipv4.dhcp-send-release" is enabled. + Support routing rules for VPN connections. + Place the route to the VPN gateway into the table defined by the "ipv{4,6}.route-table" properties- + Fix error handling rp_filter when kernel don't support MPTCP. + Fix configuration of VLAN QoS mappings. - Changes from version 1.50.1: + nmcli: fix handling of connection.down-on-poweroff property + sriov: only validate sriov capacity when enabled + wwan: fix crash with IPv4 and method=auto + dns: fix deleting internal global DNS configuration + wifi: fix list corruption when scanning with explicit SSID + bonding: steer IGMP queries to the active bond balance-slb primary port + Remove routes added by NM on reapply + Never retry ACD on NOARP interfaces + Support IPv6 EUI64 link-local address for ipv6 tunnels ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - add py313-aa-notify.patch to adapt the last bits to python 3.13 - Fix commented out macros ==== at ==== - Avoid bashisms in build recipe. - Delete /usr/sbin/rc* symlinks. ==== autoyast2 ==== Version update (5.0.3 -> 5.0.4) Subpackages: autoyast2-installation - Update the partitioning schema to support the pervasive encryption apqns and key type elements (jsc#PED-10950). - 5.0.4 ==== bash ==== Subpackages: bash-sh - Explicitly specify that the build recipe needs bash ==== bash-completion ==== - Drop completions for kmod; kmod>=34 provides its own now. ==== bluedevil6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== bluez ==== Subpackages: bluez-auto-enable-devices bluez-cups bluez-obexd bluez-zsh-completion libbluetooth3 - Add supplements bluedevil6 for bluez-obexd * In Plasma 6 bluedevil5 got renamed to bluedevil6. While bluedevil6 provides bluedevil5 on Tumbleweed it's a good idea to add it for future proofing. ==== breeze6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: breeze6-cursors breeze6-decoration breeze6-style - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * Fix crash in some non-KDE apps (kde#499960) * update version for new release ==== breeze6-gtk ==== Version update (6.3.0 -> 6.3.2) Subpackages: gtk2-metatheme-breeze6 gtk3-metatheme-breeze6 gtk4-metatheme-breeze6 metatheme-breeze6-common - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== cppcheck ==== Version update (2.16.2 -> 2.17.1) - update to 2.17.1: * New checks: - staticFunction: detect functions that should have internal linkage since they are not used outside of their translation unit (C code only). - Check null pointer return from memory/resource allocation functions (nullPointerOutOfMemory, nullPointerArithmeticOutOfMemory, nullPointerOutOfResources, ctunullpointerOutOfMemory, ctunullpointerOutOfResources). * Changed interface: - Added `reduced` check level. It can be activated with `--check-level=reduced`. You get faster analysis but some fewer results. The motivation is to be able to make analysis time "acceptable" for direct usage. - Added `--report-type` option. Enables printing of guidelines and classifications for several coding standards in place of the regular error identifiers and severities. * Other: - Removed deperecated support for builds via qmake. - Using a handwritten rule texts file for MISRA C addon violates license and copyright terms. See the manual for instructions how to download a official rule texts file from MISRA. - switch to qt6 ==== discover6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: discover6-backend-flatpak discover6-backend-fwupd discover6-backend-packagekit discover6-notifier - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release * Fix nonfree app license name colors * Clear the transactions job together with the SNI * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * updatemodel: collate names (kde#499638) * update version for new release ==== drkonqi6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * sentry: send rich gpu context when available * preambletest: repair test_sentry_image_mapping_fail * preamble: limit stack var detection to crashing thread * sentry: tie the python event and drkonqi event together when the payload failed * Fix mapping for kactivitymanagerd * preamble: flush for longer * update version for new release ==== fdupes ==== - Make build recipe succeed with POSIX sh - Add extra quoting along the way ==== ffmpeg-4 ==== Subpackages: libavcodec58_134 libavformat58_76 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9 - Add ffmpeg-7-CVE-2025-22921.patch: Backporting 7f9c7f98 from upstream, clear array length when freeing it. (CVE-2025-22921, bsc#1237382) - Add ffmpeg-7-CVE-2025-25473.patch: Backporting c08d3004 from upstream, clear FFFormatContext packet. When packet_buffer is used in mux.c, and if a muxing process fails at a point where packets remained in said queue. (CVE-2025-25473, bsc#1237351) - Add ffmpeg-7-CVE-2025-0518.patch: Backporting b5b6391d from upstream, fixes memory data leak when use sscanf(). (CVE-2025-0518, bsc#1236007) - Add ffmpeg-7-CVE-2025-22919.patch: Backporting 1446e37d from upstream, check for valid sample rate As the sample rate <= 0 is invalid. (CVE-2025-22919, bsc#1237371) - Add ffmpeg-4-CVE-2024-12361.patch: Backporting 4065ff69 from upstream, add check for av_packet_new_side_data() to avoid null pointer dereference if allocation fails. (CVE-2024-12361, bsc#1237358) - Add ffmpeg-4-CVE-2024-35368.patch: Backporting 45133009 from upstream, After having created the AVBuffer that is put into frame->buf[0], ownership of several objects Fix double-free on the AVFrame is unreferenced. (CVE-2024-35368, bsc#1234028) ==== ffmpeg-7 ==== Subpackages: libavcodec61 libavfilter10 libavformat61 libavutil59 libpostproc58 libswresample5 libswscale8 - Add ffmpeg-7-CVE-2025-22921.patch: Backporting 7f9c7f98 from upstream, clear array length when freeing it. (CVE-2025-22921, bsc#1237382) - Add ffmpeg-7-CVE-2025-25473.patch: Backporting c08d3004 from upstream, clear FFFormatContext packet. When packet_buffer is used in mux.c, and if a muxing process fails at a point where packets remained in said queue. (CVE-2025-25473, bsc#1237351) - Add ffmpeg-7-CVE-2025-0518.patch: Backporting b5b6391d from upstream, fixes memory data leak when use sscanf(). (CVE-2025-0518, bsc#1236007) - Add ffmpeg-7-CVE-2025-22919.patch: Backporting 1446e37d from upstream, check for valid sample rate As the sample rate <= 0 is invalid. (CVE-2025-22919, bsc#1237371) ==== fftw3 ==== - Disable openmpi for 32b non-hpc builds as OpenMPI >= 5 has no support for these architectures. - Cleanup flags handling mpi with s390/s390x ==== file ==== Subpackages: file-magic libmagic1 - Add patch boo1237209.patch temporary * Fix stack overrun (boo#1237209) ==== flatpak-kcm6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - No code changes since 6.3.1 - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - No code changes since 6.3.0 ==== gcc ==== Subpackages: cpp libstdc++-devel - Check is_opensuse for whether plugins are enabled. ==== gcc14 ==== Version update (14.2.1+git10750 -> 14.2.1+git11321) Subpackages: cpp14 libasan8 libatomic1 libgcc_s1 libgfortran5 libgomp1 libhwasan0 libitm1 liblsan0 libobjc4 libstdc++6 libstdc++6-devel-gcc14 libstdc++6-pp libtsan2 libubsan1 - Update to gcc-14 branch head, 9ffecde121af883b60bbe60d0, git11321 * fixes reported ICE in [bsc#1237442] - Drop gcc14-pr116629.patch now backported to the branch. - Adjust cross compiler requirements to use %requires_ge - Fix condition on whether to enable plugins or JIT support to not check sle_version which is not defined in SLFO but to check is_opensuse and suse_version instead. - Add gcc14-pr118780.patch to make the SLFO config work. - For cross compilers require the same or newer binutils, newlib or cross-glibc that was used at build time. [bsc#1232526] - Define ALT_CC_UNDER_TEST and ALT_CXX_UNDER_TEST for compat tests - Switch to glibc based cross-compiler for target hppa - disable go on loongarch64 for now - Add loongarch64 to asan_arch, atomic_arch, itm_arch, lsan_arch, tsan_arch and ubsan_arch - Add larchintrin.h, lasxintrin.h and lsxintrin.h headers to gccXY main package in %files section - Set build_primary_64bit to 1 for loongarch64 - Add loongarch64 as new target ==== glib2 ==== Version update (2.82.4 -> 2.82.5) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - Update to version 2.82.5: + Bugs fixed: - gosxappinfo: Correctly launch list of files - Don't mark test setups as default in subprojects - gdatetime: Fix integer overflow when parsing very long ISO8601 inputs ==== glibc ==== Version update (2.40 -> 2.41) Subpackages: glibc-devel glibc-extra glibc-gconv-modules-extra glibc-locale glibc-locale-base - Bump minimal kernel version to 4.3 to enable use of direct socketcalls on x86-32 and s390x (bsc#1234713) - Build cross-hppa and cross-loongarch64 only with gcc >= 14 - round-log10p1f.patch: math: Fix log10p1f internal table value (BZ [#32626]) - round-sinhf.patch: math: Fix sinhf for some inputs (BZ #32627) - nptl-stack-size-up.patch: nptl: Correct stack size attribute when stack grows up (BZ #32574) - round-tanf.patch: math: Fix tanf for some inputs (BZ 32630) - tst-aarch64-pkey.patch: Fix tst-aarch64-pkey to handle ENOSPC as not supported - float128-sycl.patch: x86 (__HAVE_FLOAT128): Defined to 0 for Intel SYCL compiler (BZ #32723) - Remove nis from nsswitch.conf (bsc#1237210) - Use rpm.execute when available (bsc#1236869) - Update to glibc 2.41 * In /etc/resolv.conf and the RES_OPTIONS environment variable, option flags can now be prefixed with “-” to clear previously set flags * The DNS stub resolver now supports the strict-error option * On Linux, the sched_setattr and sched_getattr functions have been added * The iconv program now supports converting files in place * Character encoding, character type info, and transliteration tables have been updated to Unicode 16.0.0 * The following ISO C23 function families (introduced in TS 18661-4:2015) are now supported in : - Trigonometric functions: acospi, asinpi, atan2pi, atanpi, cospi, sinpi, tanpi. * The GNU C Library now supports a feature test macro _ISOC2Y_SOURCE to enable features from the draft ISO C2Y standard * Optimized and correctly rounded exp10m1f, exp2m1f, expm1f, log10f, log2p1f, log1pf, log10p1f, cbrtf, erff, erfcf, lgammaf, tgammaf, tanf, acosf, acoshf, asinf, asinhf, atanf, atan2f, atanhf, coshf, sinhf, and tanhf functions have been added from the CORE-MATH project * A new tunable, glibc.rtld.execstack, can be used to control whether an executable stack is allowed from the main program, either implicitly due to a mising GNU_STACK ELF header or explicit explicitly because of the executable bit in GNU_STACK * Support for the extensible rseq ABI introduced in the Linux kernel version 6.3 has been added * The GNU C Library now supports the Guarded Control Stack extension that allows to use shadow stacks on AArch64 systems that support this extension * Significant effort has been put into improving the code generation and speed of mathematical functions in the vector mathematics library on AArch64, with regard to the Scalable Vector Extension (SVE) and Advanced SIMD (Neon) intrinsics * Support for memory protection keys on AArch64 systems with enabled Stage 1 permission overlays feature as introduced in Armv8.9 / 9.4 has been added * On PowerPC64, support for the return-oriented programming protection instructions added in ISA 3.1 (Power10) has been added, as well as function optimizations for Power10 * A new architecture type has been introduced internally to better support Hygon x86-64 processors * abort is now async-signal-safe and its implementation makes longjmp from the SIGABRT handler always abort if set up with setjmp * dlopen and dlmopen no longer make the stack executable if a shared library requires it, either implicitly because of a missing GNU_STACK ELF header (and default ABI permission having the executable bit set) or explicitly because of the executable bit in GNU_STACK, and the stack is not already executable * On recent Linux kernels with vDSO getrandom support, getrandom does not act as a "shall occur" cancellation point, in which case it might not issue a syscall or trigger a deferred cancellation event * GLIBC-SA-2025-0001: assert: Buffer overflow when printing assertion failure message (CVE-2025-0395) - Add cross-hppa and cross-loongarch64 packages - gen-tempname-randomness.patch: Removed - ulp-prologue-into-asm-functions.patch: Rebase ==== gmp ==== - Manually select the z13/z14 architecture level specific assembly routines for s390x and SLFO since GMP lacks fat binary support there and also lacks a way to auto-detect the architecture level used at compile-time. [jsc#PED-3270] ==== gnutls ==== Version update (3.8.8 -> 3.8.9) Subpackages: libgnutls-dane0 libgnutls30 - Update to 3.8.9 - libgnutls: leancrypto was added as an interim option for PQC The library can now be built with leancrypto instead of liboqs for post-quantum cryptography (PQC), when configured with - -with-leancrypto option instead of --with-liboqs. - libgnutls: Experimental support for ML-DSA signature algorithm The library and certtool now support ML-DSA signature algorithm as defined in FIPS 204 and based on draft-ietf-lamps-dilithium-certificates-04. This feature is currently marked as experimental and can only be enabled when compiled with --with-leancrypto or --with-liboqs. Contributed by David Dudas. - libgnutls: Support for ML-KEM-1024 key encapsulation mechanism The support for ML-KEM post-quantum key encapsulation mechanisms has been extended to cover ML-KEM-1024, in addition to ML-KEM-768. MLKEM1024 is only offered as SecP384r1MLKEM1024 hybrid as per draft-kwiatkowski-tls-ecdhe-mlkem-03. - libgnutls: Fix potential DoS in handling certificates with numerous name constraints, as a follow-up of CVE-2024-12133 in libtasn1. The bundled copy of libtasn1 has also been updated to the latest 4.20.0 release to complete the fix. Reported by Bing Shi (#1553). [GNUTLS-SA-2025-02-07, CVSS: medium] [bsc#1236974, CVE-2024-12243 - Licensing information moved to REAMDE.md, COPYING, COPYING.LESSERv2 * Rebased gnutls-FIPS-140-3-references.patch * Rebased gnutls-FIPS-TLS_KDF_selftest.patch * Rebased gnutls-FIPS-jitterentropy.patch * Rebased gnutls-disable-flaky-test-dtls-resume.patch * Rebased gnutls-srp-test-SIGPIPE.patch * Rebased gnutls-3.5.11-skip-trust-store-tests.patch * Add gnutls-set-cligen-python-interp.patch * Add gnutls-skip-pqx-test.patch ==== gpg2 ==== Version update (2.5.3 -> 2.5.4) Subpackages: dirmngr - Fixing gpg-agent integration by changing --supervised to - -deprecated-supervised in service files. - Update to 2.5.4: * gpg: New option --disable-pqc-encryption. [rG00c31f8b04] * gpg: Fix --quick-add-key for Weierstrass ECC with usage given. [T7506] * gpg: Fix handling with no CRC armor. [T7071] * gpg: New private Kyber keys are now cross-referenced using a new Link attribute. [T6638] * gpg: Fix an import problem with keys having another primary key as a subkey. [T7527] * gpgsm: Allow unattended PKCS#12 export without passphrase. [rG159e801043] * gpgsm: Allow CSR generation with an unprotected key. [rG89055f24f4] * agent: New option --change-std-env-name. [T7522] * agent: Fix ssh-agent's request_identities for skipped Brainpool keys. [rG2469dc5aae] * Do not package zlib and bzip2 object files in a speedo release build. [T7442] * Rebase patches: - gnupg-add_legacy_FIPS_mode_option.patch - gnupg-allow-import-of-previously-known-keys-even-without-UIDs.patch - gnupg-revert-rfc4880bis.patch ==== gpgme ==== Subpackages: libgpgme11 libgpgmepp6 - Don't own content of all common-lisp directories, just own the directories themselves (adding %dir in front of them). Prevents duplicate ownership of the Common Lisp files. ==== gpgmeqt6 ==== - Don't own content of all common-lisp directories, just own the directories themselves (adding %dir in front of them). Prevents duplicate ownership of the Common Lisp files. ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-common grub2-snapper-plugin grub2-systemd-sleep-plugin - Make SLFO/SLE-16 and openSUSE have identical package structures - Provide grub2--efi-bls for SLFO/SLE-16 - Fix grub-bls does not rollback via setting new default (bsc#1237198) * 0001-bls-Accept-.conf-suffix-in-setting-default-entry.patch ==== guestfs-tools ==== Version update (1.53.5 -> 1.53.7) - Update to version 1.53.7 (jsc#PED-8910) * mlcustomize, mltools: Replace $TEST_FUNCTIONS * mldrivers/linux_bootloaders.ml: Don't overwrite EFI grub2 wrapper * resize: Use stderr consistently for debug messages * resize/test-virt-resize.pl: Various fixes and adjustments - Update to version 1.53.6 (jsc#PED-8910) * build: Move baseline OCaml to 4.08 * builder: add various templates for rhel and fedora * po-docs: A couple adjustments and updates ==== gvfs ==== Subpackages: gvfs-backend-afc gvfs-backend-goa gvfs-backend-samba gvfs-backends gvfs-fuse - add README.SUSE about security concerns in gvfs (bsc#1205607) ==== harfbuzz ==== Version update (10.2.0 -> 10.3.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - Update to version 10.3.0: + Vastly improved “AAT” shaping performance. LucidaGrande benchmark-shape before: 14.6ms after: 5.9ms. + Improved OpenType shaping performance (kerning / ligature), at the expense of ~1kb per face allocated cache memory. Roboto-Regular benchmark-shape before: 10.3ms after: 9.4ms. + Improved “COLRv1” benchmark-font paint performance. Before: 7.85ms after 4.85ms. + Don’t apply glyph substitutions in “morx” table of a font with known broken “morx” table (AALMAGHRIBI.ttf font). + Update IANA and OT language registries. + Various documentation updates. + Various build improvements, and test speed-ups. + The “hb_face_reference_blob()” API now works for faces created with “hb_face_create_for_tables()” if the face sets “get_table_tags” callback. This constructs a new face blob from individual table blobs. + Various fixes to how “trak” table is handled to bring it closer to Core Text behaviour. Particularly, the tracking values for sizes not explicitly set in the table are now properly interpolated, and the tracking is applied to glyph advances when they are returned by ot-font functions, instead of applying them during shaping. The “trak” pseudo OpenType feature that could be used to disable “trak” table application have been dropped. + Core Text font functions now support non-BMP code points. + The drawing algorithm used by hb-draw for “glyf” table now match the algorithm used by FreeType and Core Text. + The “hb_coretext_font_create()” API now copy font variations from Core Text font to the created HarfBuzz font. + Add an API to get the feature tags enabled on a given shape-plan after executing it, which can be used to applications to show in the UI what features are applied by default (which can vary based on the font, the script, the language, and the direction set on the buffer). + Add APIs to created HarfBuzz font from DirectWrite font, and copy the font variations. + New API: hb_directwrite_font_create() hb_directwrite_font_get_dw_font() hb_ot_shape_plan_get_feature_tags() ==== inkscape ==== Version update (1.4+39 -> 1.4+71) Subpackages: inkscape-extensions-extra inkscape-extensions-gimp - Update to version 1.4+71: * Fix building with poppler 25.02.0 * Pass document antialias setting to make a bitmap copy * Fix Paste when SVG Mode is set to "new" * Refresh doc rsrc dialog after deleting objects * Fix PDF import w/ consecutive clippings * Batch export: swap is-file and missing-directory cases to intended use * Don't use std::regex for parsing page size * Cherry-Pick: Fix undo history dialog destruction * Fix file extension defaulting to WMF if unset * Avoid dangling window in app.preferences action * Fix copy+paste of cloned group * Fix modular grid drawing when Y axis is pointing up * Fix crash loading user palettes * Fix circle updates with unset attributes * Page numbers must have a range to be valid for 'all' * Distance to move needs to stay a double * Remove aggressive blind cleaning in path to stroke * Update the app data screenshots to 1.4 * Add double-click hint to guide statusbar tooltip * Fixes inbox#11133: restored missing parameters for perspective LPE. * Allow changing color of Asian patterns * Don't block NodeTool::selection_changed * Modernise some Node Tool constructs * Don't create a new document when closing StartScreen * Fix snap package: printing and print-preview (backport to 1.4.x) * Make comments available to translators * Labels for modifiers can be localised. * Collapse additional children in Commands Toolbar * Updated translations. ==== json-c ==== Version update (0.17 -> 0.18) - update to 0.18: * Clean up pre-3.9 CMake support in CMakeLists.txt * Build pkg-config for msvc as well * Critical fix for binary compatibility with 0.16: Move the json_tokener_error_memory entry to the end of enum json_tokener_error. * Issue #829: attempt to detect clang-cl.exe and pass MSVC- compatile command line arguments. * PR #831 - rename WIN32 to _WIN32 * PR #839 - Fix gcc 5 "may be used uninitialized" failure in json_pointer.c * PR #849 - random_seed.c: add a Coverity Scan suppression * Issue #854: Set error=json_tokener_error_memory in json_tokener_parser_verbose() when allocating the tokener fails. * Issue #857: fix a few places where json_tokener should have been returning json_tokener_error_memory but wasn't. * Handle yet another out-of-memory condition in json_tokener, duplocate can return NULL. * Various fixes in the fuzzers * A few minor doc fixes ==== kactivitymanagerd6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kde-cli-tools6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kde-gtk-config6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: kde-gtk-config6-gtk3 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kdecoration6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * Expose application menu dbus interface info * update version for new release - Fix libkdecorations3private1 package name: * SOVER is 1, not 11 * Add Obsoletes to replace the broken package * Mention sover in %files to prevent this in the future - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kdeplasma6-addons ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release * applets/weather: Fix layout for large station names * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * applets/colorpicker: fix RadioButton * applets/colorpicker: fix tooltips * applets/katesessions: fix keyboard activation * runners/datetime: Fix datetimerunnertest * applets/weather: Promote bbcukmet quality * wallpapers/potd: fix typo * update version for new release ==== kernel-firmware-amdgpu ==== Version update (20250206 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * amdgpu: Update ISP FW for isp v4.1.1 ==== kernel-firmware-ath10k ==== - Don't install superfluous info texts to firmware directory - Update license entry ==== kernel-firmware-ath11k ==== Version update (20250206 -> 20250227) - Update to version 20250227 (git commit 30f36b8b9053): * ath11k: QCN9074 hw1.0: update to WLAN.HK.2.9.0.1-02175-QCAHKSWPL_SILICONZ-2 * ath11k: QCA6698AQ hw2.1: update to WLAN.HSP.1.1-04604-QCAHSPSWPL_V1_V2_SILICONZ_IOE-1 * ath11k: QCA6698AQ hw2.1: update board-2.bin - Don't install superfluous info files to firmware directory ==== kernel-firmware-bluetooth ==== Version update (20250208 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * qca: update WCN3988 firmware ==== kernel-firmware-mediatek ==== Version update (20250206 -> 20250220) - Update to version 20250220 (git commit 6cf959daab2a): * linux-firmware: update firmware for MT7920 WiFi device ==== kernel-firmware-network ==== Version update (20250206 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * linux-firmware: update firmware for en8811h 2.5G ethernet phy ==== kernel-firmware-platform ==== Version update (20250206 -> 20250220) - Update to version 20250220 (git commit 6cf959daab2a): * linux-firmware: Update AMD SEV firmware ==== kernel-firmware-qcom ==== Version update (20250206 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * qcom: add firmware for Adreno A225 ==== kernel-firmware-realtek ==== Version update (20250206 -> 20250224) - Update to version 20250224 (git commit 1a1470d90de2): * rtw89: 8852bt: update fw to v0.29.122.0 and BB parameter to 07 ==== kernel-firmware-sound ==== Version update (20250217 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * cirrus: cs35l56: Add and update firmware for Cirrus CS35L56 for two HP laptops * cirrus: cs35l56: Add firmware for Cirrus Amps for some ASUS laptops * cirrus: cs35l56: Add and update firmware for Cirrus CS35L56 for various Lenovo laptops * cirrus: cs35l56: Update firmware for Cirrus Amps for some Dell laptops ==== kernel-source ==== Version update (6.13.3 -> 6.13.5) Subpackages: kernel-64kb kernel-default - Linux 6.13.5 (bsc#1012628). - drm/amdgpu: bump version for RV/PCO compute fix (bsc#1012628). - drm/amdgpu/gfx9: manually control gfxoff for CS on RV (bsc#1012628). - net: pse-pd: Fix deadlock in current limit functions (bsc#1012628). - tracing: Fix using ret variable in tracing_set_tracer() (bsc#1012628). - drm: select DRM_KMS_HELPER from DRM_GEM_SHMEM_HELPER (bsc#1012628). - ftrace: Do not add duplicate entries in subops manager ops (bsc#1012628). - ftrace: Fix accounting of adding subops to a manager ops (bsc#1012628). - ftrace: Correct preemption accounting for function tracing (bsc#1012628). - EDAC/qcom: Correct interrupt enable register configuration (bsc#1012628). - smb: client: Add check for next_buffer in receive_encrypted_standard() (bsc#1012628). - irqchip/gic-v3: Fix rk3399 workaround when secure interrupts are enabled (bsc#1012628). - perf/x86/intel: Fix event constraints for LNC (bsc#1012628). - mtd: rawnand: cadence: fix incorrect device in dma_unmap_single (bsc#1012628). - mtd: rawnand: cadence: use dma_map_resource for sdma address (bsc#1012628). - mtd: rawnand: cadence: fix error code in cadence_nand_init() (bsc#1012628). - mtd: spi-nor: sst: Fix SST write failure (bsc#1012628). - mm,madvise,hugetlb: check for 0-length range after end address adjustment (bsc#1012628). - acct: block access to kernel internal filesystems (bsc#1012628). - acct: perform last write from workqueue (bsc#1012628). - ASoC: SOF: pcm: Clear the susbstream pointer to NULL on close (bsc#1012628). - ALSA: hda/conexant: Add quirk for HP ProBook 450 G4 mute LED (bsc#1012628). - ALSA: hda: Add error check for snd_ctl_rename_id() in snd_hda_create_dig_out_ctls() (bsc#1012628). - ASoC: fsl_micfil: Enable default case in micfil_set_quality() (bsc#1012628). - ASoC: SOF: stream-ipc: Check for cstream nullity in sof_ipc_msg_data() (bsc#1012628). - gve: set xdp redirect target only when it is available (bsc#1012628). - nfp: bpf: Add check for nfp_app_ctrl_msg_alloc() (bsc#1012628). - mm/zswap: fix inconsistency when zswap_store_page() fails (bsc#1012628). - smb: client: fix chmod(2) regression with ATTR_READONLY (bsc#1012628). - lib/iov_iter: fix import_iovec_ubuf iovec management (bsc#1012628). - xfs: fix online repair probing when CONFIG_XFS_ONLINE_REPAIR=n (bsc#1012628). - s390/boot: Fix ESSA detection (bsc#1012628). - soc: loongson: loongson2_guts: Add check for devm_kstrdup() (bsc#1012628). - gpio: vf610: add locking to gpio direction functions (bsc#1012628). - arm64: dts: rockchip: Disable DMA for uart5 on px30-ringneck (bsc#1012628). - arm64: dts: rockchip: Move uart5 pin configuration to px30 ringneck SoM (bsc#1012628). - arm64: dts: rockchip: Fix broken tsadc pinctrl names for rk3588 (bsc#1012628). - arm64: dts: rockchip: change eth phy mode to rgmii-id for orangepi r1 plus lts (bsc#1012628). - mm/migrate_device: don't add folio to be freed to LRU in migrate_device_finalize() (bsc#1012628). - drop_monitor: fix incorrect initialization order (bsc#1012628). - tee: optee: Fix supplicant wait loop (bsc#1012628). - gpiolib: protect gpio_chip with SRCU in array_info paths in multi get/set (bsc#1012628). - io_uring: prevent opcode speculation (bsc#1012628). - io_uring/rw: forbid multishot async reads (bsc#1012628). - drm/i915/dsi: Use TRANS_DDI_FUNC_CTL's own port width macro (bsc#1012628). - drm/i915/gt: Use spin_lock_irqsave() in interruptible context (bsc#1012628). - drm/i915/ddi: Fix HDMI port width programming in DDI_BUF_CTL (bsc#1012628). - drm/i915/dp: Fix error handling during 128b/132b link training (bsc#1012628). - drm/i915: Make sure all planes in use by the joiner have their crtc included (bsc#1012628). - drm/msm/dpu: Disable dither in phys encoder cleanup (bsc#1012628). - drm/msm/dp: account for widebus and yuv420 during mode validation (bsc#1012628). - drm: panel: jd9365da-h3: fix reset signal polarity (bsc#1012628). - sched: Compact RSEQ concurrency IDs with reduced threads and affinity (bsc#1012628). - irqchip/jcore-aic, clocksource/drivers/jcore: Fix jcore-pit interrupt request (bsc#1012628). - drm/nouveau/pmu: Fix gp10b firmware guard (bsc#1012628). - bpf: skip non exist keys in generic_map_lookup_batch (bsc#1012628). ... changelog too long, skipping 605 lines ... - commit a27f785 ==== kgamma6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kglobalacceld6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: libKGlobalAccelD6-0 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kinfocenter6 ==== Version update (6.3.0 -> 6.3.2) - Downgrade dmidecode (not available on all archs) and /usr/bin/eglinfo (boo#1238199) to recommends again - Update spec to the current state of things: * Requires aha if fwupd * Requires clinfo if OpenCL is installed * Requires dmidecode to show device Product Name, Serial Number and information on system memory * Recommends libdisplay-info-tools (/usr/bin/di-edid-decode) for EDID kcm. * Requires /usr/bin/eglinfo, instead of Recommends. * Deprecate update-desktop-files (https://en.opensuse.org/openSUSE:Update-desktop-files_deprecation) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release * about: align gpu pills more neatly (kde#500355) * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * kcms/energy: Fix page size flickering (kde#480804) ==== kmenuedit6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kmod ==== Version update (33 -> 34) Subpackages: libkmod2 - Update to release 34 * modinfo now dlopens compression libraries, and only if needed. (insmod/modprobe exercises the kernel's built-in decompression anyway, so is unaffected). * depmod: add -m option for overriding the module directory at runtime. * depmod: deleted deprecated options --unresolved-error, --quiet, - root and --map. * rmmod: deleted deprecated option -w. * insmod: deleted deprecated options -p, -s. - Delete 0001-testsuite-fix-path-for-test-user.patch (obsolete) ==== kpipewire6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: kpipewire6-imports libKPipeWire6 libKPipeWireDmaBuf6 libKPipeWireRecord6 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * Use malloc to create AVDRMFrameDescriptor * update version for new release ==== kscreen6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release * kcm: Support scaling with denominator of 120 (kde#500531) * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * kcm: re-enable revert message for color power preference ==== kscreenlocker6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: libKScreenLocker6 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== ksshaskpass6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== ksystemstats6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kwayland-integration6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kwayland6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: libKWaylandClient6 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== kwin6 ==== Version update (6.3.0 -> 6.3.2.1) Subpackages: kwin6-x11 libkwin6 - Update to 6.3.2.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2.1 - Changes since 6.3.2: * Revert "workspace: better deal with having more outputs than the GPU can drive" * kcms/rules: Fix showing selected VD on X11 (kde#484165) * autotests: Fix testInputCapture with libei 1.4.0 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * workspace: don't set brightness to the display value on every startup (kde#494408) * workspace: better deal with having more outputs than the GPU can drive * backends/drm: reject output configurations that can't be powered at all (kde#500031) * update version for new release * Workaround hard freeze during interactive move * input: remove check for touch sequence (kde#500557) * Fix build compat with Qt 6.7 * workspace: use frameGeometry for findWindowToActivate (kde#500529) * core/renderloop: use PreciseTimer for render loop. * killer: take abort result into consideration * backends/drm: log when link training is necessary * core/renderloop: take vrr into account for output layer repaints (kde#499848) * backends/libinput: confine TabletToolEvent to output (kde#480658) * Prevent virtual input devices from blocking tablet mode (kde#500025) * backends/drm: use a shadow buffer with "prefer color accuracy" if night light is enabled (kde#500404) * autotests/test_colorspaces: add some real-world validity check test cases * core/colorspace: relax validity check (kde#500295) * backends/drm: reimplement software brightness for ICC profiles (kde#500210) * Factor out {previousRestricted,restricted}MoveArea calls out of loops (kde#500310) * Implement KDecoration3::DecoratedWindow::applicationMenu{ServiceName,ObjectPath} * wayland: make the fallback for broken HDR metadata less strict (kde#500144) * core/colorspace: improve formatting of logging functions * wayland: switch to the upstream color management protocol * Round native geometry in InternalWindow * Fix overlooked frameRectToClientRect() in InternalWindow * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Too many changes to list here - Drop patch, now upstream: * 0001-core-outputlayer-guard-against-null-m_output.patch ==== layer-shell-qt6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: libLayerShellQtInterface6 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== libX11 ==== Subpackages: libX11-6 libX11-data libX11-xcb1 - U_CVE-2025-26597-0001-xkb-Fix-buffer-overflow-in-XkbChangeTypesOfKey.patch * Buffer overflow in XkbChangeTypesOfKey() (CVE-2025-26597, bsc#1237431) ==== libXt ==== - u_pkgconfig-file-move-sm-from-private-to-public-Requir.patch * pkgconfig file: move 'sm' from private to public Requires Since includes 'sm' should be a public Requires in xt.pc. (boo#1237276) ==== libaccounts-glib ==== Version update (1.26 -> 1.27) - Update to 1.27 * Do not install python gobject introspection files by default. If they are needed, build with `-Dinstall-py-overrides=true`. * Lib: do not attempt to terminate the GTask twice * Fix memory leak on provider tags * Do not emit misleading enabled signals on account services * Fix incorrect cleanup in ag_account_finalize - Drop patches, merged upstream: * 0001-ag-account-fix-incorrect-cleanup-in-ag_account_final.patch * 0002-Build-Don-t-install-Python-overrides-by-default.patch * 0003-Lib-do-not-attempt-to-terminate-the-GTask-twice.patch * 0004-ag-provider-fix-memory-leak-on-provider-tags.patch * 0006-ag-account-do-not-emit-misleading-enabled-signals-on.patch ==== libapparmor ==== - add py313-aa-notify.patch to adapt the last bits to python 3.13 - Fix commented out macros ==== libarchive ==== - Fix CVE-2024-57970, heap-based buffer over-read in header_gnu_longlink because it mishandles truncation (CVE-2024-57970, bsc#1237233) * CVE-2024-57970.patch ==== libassuan ==== Version update (3.0.1 -> 3.0.2) - Update to 3.0.2: * Fix for FreeBSD to set the pid of assuan_peercred_t. [rAdfa5e6532d] * Use socklen_t for the length of socket address. [T5924] * Fix errno setting on Windows for assuan_sock_bind failure. [T7456] * New assuan_sock_get_flag "w32_error" to get the actual Windows error after a system call and not just the mapped errno. [T7456] ==== libcaca ==== - Drop pkgconfig(ftgl) BuildRequires: ftgl is unmaintained and libcaca does not actually link to it, despite configure checking for it and finding it. This was originally added to configure in 2008 (commit 9752e82) to be used 'later'. ==== libdisplay-info ==== - Create package libdisplay-info-tools for di-edid-decode - Remode BuildRequires cmake in favour of c_compiler ==== libfprint ==== Version update (1.94.8+tod1 -> 1.94.9+tod1) - update to 1.94.9+tod1 * uru4000: Use OpenSSL to perform AES-ECB encryption, as per this libfprint does not support on NSS, but on openssl (>= 3.0). * goodixmoc: New PIDs 0x60C2, 0x689A * synaptics: New PIDs 0x016C, 0x0174, 0x0107, 0x0108, 0x00C2, 0x00F0 * fpcmoc: New PID 0xC844 * focaltech_moc: New PIDs 0xA99A, 0xA57A, 0xA78A * elanmoc: New PIDs 0x0C98, 0x0C9D, 0x0CA3 * elanspi: New PIDs 0x3128, 0x2766 * fp-device: Add FP_DEVICE_RETRY_TOO_FAST retry error * data: AppStream meta info listing supported USB devices. * fixed various memory issues in multiple devices - rebase patch % label-can-only-be-part-of-a-statement.patch ==== libguestfs ==== Version update (1.55.3 -> 1.55.6) Subpackages: libguestfs-appliance libguestfs-winsupport libguestfs-xfs libguestfs0 - Update to version 1.55.6 (jsc#PED-8910) * appliance: add dhcpcd support on Debian * appliance: add support for sfdisk on Debian * mlcustomize, mltools: Replace $TEST_FUNCTIONS * ruby: Make sure all object files are cleaned up * daemon: New command_out and sh_out APIs - Update to version 1.55.4 (jsc#PED-8910) * appliance/init: Fix /usr/sbin symlinks in Fedora 42+ * Various translation updates ==== libheif ==== Subpackages: gdk-pixbuf-loader-libheif libheif-aom libheif-dav1d libheif-ffmpeg libheif-jpeg libheif-openjpeg libheif-rav1e libheif-svtenc libheif1 - Add 0001-support-SVT-AV1-3.0.0.patch to make build succeed with new SVT-AV1 API. - Ensure Name: is conditionalized for the multibuild flavors to not overwrite the .src.rpm (which is a processed .spec) and to allow OBS to properly distinguish them flavors. ==== libiscsi ==== Version update (1.20.0+git.20241207 -> 1.20.0+git.20250104) - Update to version 1.20.0+git.20250104: * Add CHAP SHA3-256 support * Add support for CHAP with SHA-256 * Add support for CHAP using SHA1 * Don't use inet_ntoa, it is deprecated ==== libkscreen6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: libKF6Screen8 libKF6ScreenDpms8 libkscreen6-plugin - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * doctor: match the minimum allowed SDR luminance to what the GUI allows * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * doctor: fix dpms mode output ==== libksysguard6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: ksysguardsystemstats6-data libKSysGuardSystemStats2 libksysguard6-imports libksysguard6-plugins - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * Add missing totalSwapMemory implementations * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== liblouis ==== Version update (3.31.0 -> 3.32.0) Subpackages: liblouis-data liblouis20 python3-louis - Update to version 3.32.0: + A lot of intense work by Matt, Paul, Leonard, Eric, Sarah and Bert went into this release. There are new tables for Biblical Language and Ancient Near Eastern Studies. We have improvements for UEB, Spanish, Turkish and Hungarian. There are also a couple of new features, for example the handling of the language metadata has been extended to handle language ranges. ==== libnotify ==== Version update (0.8.3 -> 0.8.4) Subpackages: libnotify-tools libnotify4 typelib-1_0-Notify-0_7 - Update to version 0.8.4: + notification: - Set the icon-name property as image hint instead of as app-icon - Modernize the NotifyNotification class definition (and add support for auto-pointers) + notify-send: - Require valid UTF-8 for Summary and Body - Allow sending an empty summary - Flush stdout after printing notification ID + build: Improve mapfile and support building in solaris + Bugs fixed: - notify-send dumps core if notification message is invalid UTF-8 - libnotify should be quiet - fdo documentation link outdated in README.md - Replace docbook5-xsl-stylesheets with docbook-xsl-stylesheets BuildRequires: Following upstream changes. ==== libostree ==== Subpackages: libostree-1-1 - enable building with composefs, as bootc needs libostree with composefs compiled, which allows us to enable another way of spinning an immutable distribution. ==== libplasma6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: libPlasma6 libplasma6-components libplasma6-desktoptheme - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release * WindowThumbnail: remove uncategorized debug message * Applet: possibility to cleanup transient applets (kde#498175,kde#404641) * Add bool immutable() shortcut * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== libplist ==== Version update (2.3.0 -> 2.6.0) - Fix Cython version requirement: Version 3.0 is required. - Fix python singlespec usage: python_moudle should only ever be used in BuildRequires statements. - Build a proper python subpackage using python-rpm-macros * uses python3 on Factory and python311 on SLE-15 derivatives - Update to version 2.6.0: - Changes: * Revert back API change around PLIST_DATA to use char* again * Change API around PLIST_DATA to use uint8_t* instead of char* * Add PLIST_DICT helper functions for different operations * Require Cython 3.0 for python bindings * Add a PLIST_OPT_NONE value to plist_write_options_t * autoconf: Allow disabling build of test suite * Update doxygen config and document undocumented macros * Add an explicit PLIST_FORMAT_NONE value * Add a libplist_version() function to the interface * docs: Use README.md to generate mainpage with doxygen - Bugfixes: * Several compiler-related fixes and code improvements * Plug memory leak in plist_write_to_stream() * Prevent adding NULL items to array/dictionary nodes * Fix parallel running of test suite * Fix cython bindings * Fix OOB read in plist_from_memory() ==== libsecret ==== Subpackages: libsecret-1-0 typelib-1_0-Secret-1 - Merge secret-tool-bash-completions into main package; the overhead for the small *-completions package outweighs the one file. ==== libssh ==== Subpackages: libssh-config libssh4 - Move global config dir to /usr/etc/libssh (bsc#1222716) * Add patch libssh-cmake-Add-option-WITH_HERMETIC_USR.patch ==== libstorage-ng ==== Version update (4.5.239 -> 4.5.241) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Dutch) (bsc#1149754) - 4.5.241 - Translated using Weblate (Swedish) (bsc#1149754) - 4.5.240 ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Adjust downstream patch 'Add virt-create-rootfs utility' to only install virt-create-rootfs when building the LXC driver - spec: Add note about packages with no files bsc#1237228 ==== libwacom ==== Version update (2.12.2 -> 2.14.0) Subpackages: libwacom-data libwacom9 - update to 2.14.0 * Extended Lenovo Yoga X1 Gen5 support, improved the Huion mini keydial (KD100) * Fixed missing Strip in the Huion Kamvas Pro 16 * Corrected entry for Elan 5515 * Fixed outdated properties for Lenovo Yoga 9 14IAP7 * Add support for Dial status LEDs * .tablet files shadow any ones with the same name * New XP Pen devices supported: Artist 22R Pro, 24 Pro, Deco Fun L, ACK05 Remote, Pro Pen 3E * New Lenovo device ssupported: Yoga 9 14IAP7, Active Pen 3 (2023), Digital Pen 2, X1 Fold 16 Gen1, Precision Pen 2 (2023) stylus * New ELAN devices supported: ELAN-2514 variant 04f3:2f9d, ELAN 9008 and 9009 (Asus Zenbook Duo UX8406MA 1200p), ELAN 2F2A and 41A1 (ZenBook Pro Duo UX8402VV) * New Wacom devices supported: HID 5214 (IdeaPad Flex 5 14ARE05 rev.81X2), HID 52C6 Pen. * New HP devices supported: Spectre x360, Elite Chromebook C1030 * Other devices supported: StarLite Mk V; HP Spectre x360 13-aw0020ng; Huion RTP-700, Huion KeyDial K20 * Database: support $XDG_CONFIG_HOME/libwacom as additional path * tools/clean_svg: allow passing in a .tablet file * tools/list-local-devices: print the vid/pid if available * tools/debug-device: print the device class too ==== libxcb ==== Subpackages: libxcb-composite0 libxcb-damage0 libxcb-dpms0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-randr0 libxcb-record0 libxcb-render0 libxcb-res0 libxcb-shape0 libxcb-shm0 libxcb-sync1 libxcb-xfixes0 libxcb-xinerama0 libxcb-xinput0 libxcb-xkb1 libxcb-xv0 libxcb1 - Switch bug-262309_xcb-xauthlocalhostname.diff to -p1. - Update descriptions and modernize specfile (%autosetup/%ldconfig_scriptlets). ==== libxkbfile ==== - U_CVE-2025-26595-0001-xkb-Fix-buffer-overflow-in-XkbVModMaskText.patch * Buffer overflow in XkbVModMaskText() (CVE-2025-26595, bsc#1237429) ==== libxml2 ==== Version update (2.13.5 -> 2.13.6) Subpackages: libxml2-2 libxml2-tools - Update to version 2.13.6 ([bsc#1237363], [bsc#1237370], [bsc#1237418]): + Security: - [CVE-2025-24928] Fix stack-buffer-overflow in xmlSnprintfElements - [CVE-2024-56171] Fix use-after-free after xmlSchemaItemListAdd - pattern: Fix compilation of explicit child axis + Regressions: - xmllint: Support compressed input from stdin - uri: Fix handling of Windows drive letters - reader: Fix return value of xmlTextReaderReadString again - SAX2: Fix xmlSAX2ResolveEntity if systemId is NULL + Portability: - dict: Handle ENOSYS from getentropy gracefully - Fix compilation with uclibc (Dario Binacchi) - python: Declare init func with PyMODINIT_FUNC - tests: Fix sanitizer version check on old Apple clang - cmake: Work around broken sys/random.h in old macOS SDKs + Build: - autotools: Set AC_CONFIG_AUX_DIR - cmake: Always build Python module as shared library - cmake: add missing `Bcrypt` link on Windows - cmake: Fix compatibility in package version file - xmlIO: Fix reading from non-regular files like pipes - xmlreader: Fix return value of xmlTextReaderReadString - parser: Fix loading of parameter entities in external DTDs - parser: Fix downstream code that swaps DTDs - parser: Fix detection of duplicate attributes - string: Fix va_copy fallback - xpath: Fix parsing of non-ASCII names - Drop libxml2-support-compressed-input-from-stdin.patch: Fixed upstream. - Also CVE-2025-27113 was assigned to this release. ==== libxml2-python ==== Version update (2.13.5 -> 2.13.6) - Update to version 2.13.6 ([bsc#1237363], [bsc#1237370], [bsc#1237418]): + Security: - [CVE-2025-24928] Fix stack-buffer-overflow in xmlSnprintfElements - [CVE-2024-56171] Fix use-after-free after xmlSchemaItemListAdd - pattern: Fix compilation of explicit child axis + Regressions: - xmllint: Support compressed input from stdin - uri: Fix handling of Windows drive letters - reader: Fix return value of xmlTextReaderReadString again - SAX2: Fix xmlSAX2ResolveEntity if systemId is NULL + Portability: - dict: Handle ENOSYS from getentropy gracefully - Fix compilation with uclibc (Dario Binacchi) - python: Declare init func with PyMODINIT_FUNC - tests: Fix sanitizer version check on old Apple clang - cmake: Work around broken sys/random.h in old macOS SDKs + Build: - autotools: Set AC_CONFIG_AUX_DIR - cmake: Always build Python module as shared library - cmake: add missing `Bcrypt` link on Windows - cmake: Fix compatibility in package version file - xmlIO: Fix reading from non-regular files like pipes - xmlreader: Fix return value of xmlTextReaderReadString - parser: Fix loading of parameter entities in external DTDs - parser: Fix downstream code that swaps DTDs - parser: Fix detection of duplicate attributes - string: Fix va_copy fallback - xpath: Fix parsing of non-ASCII names - Drop libxml2-support-compressed-input-from-stdin.patch: Fixed upstream. - Also CVE-2025-27113 was assigned to this release. ==== libxmlb ==== Version update (0.3.19 -> 0.3.21) - Update to 0.3.21 * Check for corrupt XbSiloNode values in a smarter way Changes in 0.3.20: * Do not always strip literal text * Do not assume .txt files are application/xml * Fix a crash when loading a corrupt XMLb store ==== libzip ==== Version update (1.11.2 -> 1.11.3) - update to 1.11.3: * Report read error for corrupted encrypted file data * Avoid unnecessary seeks when writing archive * Don't hardcode _Nullable support in zip.h to allow it to be used with different compilers ==== libzypp ==== Version update (17.36.1 -> 17.36.4) - Add a transaction package preloader (fixes openSUSE/zypper#104) This patch adds a preloader that concurrently downloads files during a transaction commit. It's not yet enabled per default. To enable the preview set ZYPP_CURL2=1 and ZYPP_PCK_PRELOAD=1 in the environment. - RpmPkgSigCheck_test: Exchange the test package signingkey (fixes #622) - Exclude MediaCurl tests if DISABLE_MEDIABACKEND_TESTS (fixes #626) - Strip a mediahandler tag from baseUrl querystrings. - version 17.36.4 (35) - Disable zypp.conf:download.use_deltarpm by default (fixes #620) Measurements show that you don't benefit from using deltarpms unless your network connection is very slow. That's why most distributions even stop offering deltarpms. The default remains unchanged on SUSE-15.6 and older. - Make sure repo variables are evaluated in the right context (bsc#1237044) - Introducing MediaCurl2 a alternative HTTP backend. This patch adds MediaCurl2 as a testbed for experimenting with a more simple way to download files. Set ZYPP_CURL2=1 in the environment to use it. - version 17.36.3 (35) - Filesystem usrmerge must not be done in singletrans mode (bsc#1236481, bsc#1189788) Commit will amend the backend in case the transaction would perform a filesystem usrmerge. - Workaround bsc#1216091 on Code16. - version 17.36.2 (35) ==== llvm18 ==== - add libcxx-use-shlex-quote.patch to fix build with python 3.13 ==== llvm19 ==== Subpackages: clang-tools clang19 libLLVM19 libclang-cpp19 libclang13 libclang_rt19 llvm19-gold - Build with GCC 13 on Leap/SLES 15 (bsc#1235697) ==== lokalize ==== - Add the missing qsqlite runtime dependency ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - fixing HA16.0 Product building issues for packages: lvm2-lockd, cluster-md, dlm, drbd (bsc#1237701) * update lvm2.spec - system with LVM on iSCSI hangs on shutdown because blk-availability.service is not enabled (bsc#1236788) * update lvm2.spec - remove blk-availability.service from %postun - add new Provides 'dont_stop_blk_availability_service' ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - fixing HA16.0 Product building issues for packages: lvm2-lockd, cluster-md, dlm, drbd (bsc#1237701) * update lvm2.spec - system with LVM on iSCSI hangs on shutdown because blk-availability.service is not enabled (bsc#1236788) * update lvm2.spec - remove blk-availability.service from %postun - add new Provides 'dont_stop_blk_availability_service' ==== makedumpfile ==== Version update (1.7.5 -> 1.7.6) - Update to 1.7.5: * Support for kernels up to v6.11 (x86_64) - Drop upstreamed patches: * 0001-PATCH-Fix-failure-of-hugetlb-pages-exclusion-on-Linu.patch * 0002-PATCH-Fix-wrong-exclusion-of-Slab-pages-on-Linux-6.1.patch * make-reserve_diskspace-do-nothing-for-flattened-form.patch - makedumpfile-fix-detection-of-typed-compound-pages-Linux-6.12.patch: Reflect mm changes in kernel v6.12 (bsc#1237269). ==== mc ==== Version update (4.8.32 -> 4.8.33) Subpackages: mc-lang - Update to 4.8.33: - Core * Minimal version of Automake is 1.14 (#4604) * Upgrade C standard to C99 (#4604) * Support ksh variants as subshell (#3748) * Improve fish 4.0 shell support (#4597) * Add support for bash PROMPT_COMMAND being an array (#4599) * Don't override ENV variable for ash/dash subshell (#4605) * Don't disable verbose mode if tty baudrate can't be reliably determined (#2452) * New keymap for vim users (#4588) - VFS * extfs vfs: chmod/chown inside extfs (e.g. zip archive) silently fails (#4629) * Add embedded torrent viewer/vfs (#3100) - Misc * Code cleanup (#4572, #4593, #4595, #4598) * Adjust mc-wrappers to work with the new MC_TMPDIR creation logic (#4575) * Prefer console players for sound, images and video in non-graphical sessions (#4479, #4596) * Support `TERM=xterm-clear` for FreeBSD users (#2633) * mc.ext.ini: - Support for Rust crates file format (#4609) - Support for OpenEmbedded ipk archives (#4626) * ext.d: select browser at runtime (#4615) * Move CI from Travis to GitHub Actions (#4170, #3738, #4602) - Fixes * Segfault if filter makes file panel empty (#4600) * Segfault in built-in help when going to the previous topic (#4627) * Incorrect handling of ext2 attributes of a directory (#4590) * Failed copy/move operations make ETA inaccurate (#3205, #4613, #4623) * Hotlist: use after free (#4621) * mc.ext.ini: typo for apt view command line (#4583) * mcedit: visual glitches if built with aspell, but libraries not installed (#4576) * mcedit: segfault on new file creation (#4580) * mcedit: PageDown skips lines in edit window (#4617) * mcedit: cursor jumps during PageDown in edit window (#4618) * mvciew: false-positive regex search of BOL (#4587) * mcdiff: segmentation fault on empty files merge (#4608) * tar vfs: double free (#4616) * sftpfs vfs: use after free (#4620) * tests: fix charset-related code on non-glibc platforms (Alpine, Illumos) (#3972, #4495) * tests: use weak symbols instead of symbol duplication to support non-GNU linkers / macOS (#4584, #3542) - Removed patches: - 4575-fix-wrapper.patch - merged upstream - mc-extd-misc.patch - reslved upstream - mc-vfs-fish-deleted_source_file.patch - resolved upstream TODO verify - Refreshed patches: - mc-esc-seq.patch - mc-extd-doc.patch - mc-extd-sound.patch - mc-extd-video.patch - mc-extd-xdg.patch - xls2csv_update.patch - Rewrote patch mc-vfs-fish-deleted_source_file.patch ==== microos-tools ==== Version update (4.0+git6 -> 4.0+git7) - Update to version 4.0+git7: * Only autorelabel local filesystems with SELinux support (boo#1237202) ==== milou6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== ncurses ==== Version update (6.5.20250201 -> 6.5.20250222) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20250222 + modify treatment of "n" parameter for waddnstr, waddnwstr, and wins_nwstr to return OK when "n" is zero, for consistency with other implementations (report by Benjamin Barenblat, cf: 20231118). + formatting improvements for terminfo.5 (Debian #1096164). - Add ncurses patch 20250216 + add limit-checks in alloc_entry.c and alloc_ttype.c to avoid indexing errors when using infocmp to compare all capabilities when processing a malformed terminfo binary which has a valid header (testcase by "Ekkosun"). - Add ncurses patch 20250215 + add gzip option for suppressing filename/timestamp information to an overlooked case (cf: 20240330). + correct spelling errors found with codespell. + fix some typos in manpages (report by Sven Joachim) + amend change to lib_set_term.c to work with thread configuration (report by Rajeev Pillai, cf: 20250208). - Add ncurses patch 20250208 + change etip.h.in to include either/both of and , needed for another old BSD. + update st (report by Alexander Kashpir) -TD + add note for ghostty 1.1.0 -TD + fix a few issues found with coverity. - Correct offset of patches * ncurses-5.9-ibm327x.dif * ncurses-6.4.dif * ncurses-6.5-ghostty.dif ==== nvidia-open-driver-G06-signed ==== Version update (570.86.16_k6.13.3_1 -> 570.124.04_k6.13.4_1) - update non-CUDA variant to 570.124.04 (boo#1237585) - update non-CUDA variant to 570.124.02 (boo#1237585) - explicitly enable KMP for kernel-longterm: this will be needed for the transition period, until all KMPs are enabled ==== ocean-sound-theme6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== open-vm-tools ==== Subpackages: libvmtools0 open-vm-tools-desktop - Revert previous change (Thu Feb 20 23:08:43 UTC 2025). The proposed solutions was non-standard. - (bsc#1237180): Ensure vmtoolsd.service, vgauthd.service, and vmblock-fuse.service are set to enabled by default. ==== openSUSE-release ==== Version update (20250219 -> 20250302) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - merge openssh-fips into the main openssh package (bsc#1185116) ==== pam_kwallet6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: pam_kwallet6-common - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-x11 patterns-base-x11_enhanced - Change some core packages to Requires [bsc#1237513] - Only requires busybox on openSUSE MicroOS, not SL Micro. - Don't build apparmor pattern for SLFO. - Disable 32bit pattern on aarch64 and ppc64le. - Build selinux pattern everywhere and requires targeted policy on SLE. ==== patterns-desktop ==== Subpackages: patterns-desktop-books patterns-desktop-imaging patterns-desktop-mobile patterns-desktop-multimedia - Change pattern 'imaging' not forcibly to require X11: The world is moving on and wayland-only is a thing. - drop crda, obsolete since kernel 4.15 ==== patterns-gnome ==== Subpackages: patterns-gnome-gnome patterns-gnome-gnome_basic patterns-gnome-gnome_basis patterns-gnome-gnome_games patterns-gnome-gnome_imaging patterns-gnome-gnome_internet patterns-gnome-gnome_multimedia patterns-gnome-gnome_office patterns-gnome-gnome_utilities patterns-gnome-gnome_x11 patterns-gnome-gnome_yast patterns-gnome-sw_management_gnome - boo#1238067: Recommend opensuse-welcome by patterns-gnome-gnome_basis: this used to be pulled in by gnome_imaging -> imaging -> x11 -> x11_enhanced -> oS-welcome Since imaging was changed to not require the x11 pattern, opensuse-welcome has been lost in some cases. - Move MozillaFirefox from gnome_basis to gnome_internet. For the end-user this is a NO-OP, as gnome_internet is recommended by gnome_basis anyway, but it's more accurate. - Drop recommends of no longer exitsing branding packages: gnome-control-center-branding-openSUSE, gnome-panel-branding-openSUSE, libsocialweb-branding-openSUSE. - Lower gdm-branding-openSUSE, gtk2-branding-openSUSE and gtk3-branding-openSUSE from Recommends to Suggests: only use them as hints for the solver, but do not actually trigger installation. This is especially relevant for gtk2-branding-openSUSE. Being recommended means it's auto-installed by default, even if gtk2 would not be needed. - Lower totem from Required to Recommended. - No longer Recommend totem-browser-plugin, which has been removed from the distro in 2014. - Have pattern gnome_basic recommend pattern() = enhanced_base: most users of a desktop will want those tools. They were pulled in before via the recently removed imaging -> x11 -> enahnced_base. As x11 was removed as a dependency from the desktop-imaging pattern, this was lost. ==== patterns-media ==== Subpackages: patterns-media-rest_cd_core patterns-media-rest_dvd - drop crda, obsolete since kernel 4.15 ==== patterns-server ==== Version update (20210330 -> 20250225) Subpackages: patterns-server-dhcp_dns_server patterns-server-directory_server patterns-server-file_server patterns-server-kvm_server patterns-server-kvm_tools patterns-server-lamp_server patterns-server-mail_server patterns-server-printing - Do not require 389-ds on %ix86: it's not built for 32bit intel arch. - Adapt patterns for SLES 16.0. ==== pcr-oracle ==== - Add fix-bsc1230316-predict-sbatlevelrt.patch to predict SbatLevelRT for the next boot (bsc#1230316) - Update the License tag to GPL-2.0-or-later to match the license declaration in the source files ==== perl-Error ==== Version update (0.17029 -> 0.170.300) - Normalize CPAN version See https://github.com/openSUSE/cpanspec/issues/47 for details. I found no reverse dependencies in devel:languages:perl depending on a certain version higher than the normalized. - updated to 0.17030 see /usr/share/doc/packages/perl-Error/ChangeLog ==== perl-XML-Parser ==== - Fix license manually (module metadata is contradicting). ==== pipewire ==== Version update (1.3.82 -> 1.3.83) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - webrtc-audio-processing-2 2.1 is generating a regression and the echo-cancel module doesn't work with it, so let's keep using webrtc-audio-processing-1 for now (boo#1237315) - Update to version 1.3.83 (1.4RC3): * This is the third and hopefully last 1.4 release candidate that is (almost) API and (entirely) ABI compatible with previous 1.2.x and 1.0.x releases. We note that in the 1.3.x series, the API is slighty not backwards compatible because some methods previously used to accept void* as a parameter while they now require the correct type. We think this is however a good kind of API breakage and expect projects to patch their code to get things compiled with newer version (which will also compile for older versions). Note also that this is not an ABI break. * Highlights - Handle JACK transport updates in a better way. - Fix a SAP regression when starting. - Fix regression in rate scaling. - Improve bluetooth source rate handling. - More small bugfixes and improvements. * PipeWire - Handle JACK transport updates in a better way. (#4543) * Modules - Check that the link factory port and nodes match. Deprecate the port.id when making links. - Improve profiler output by scaling the quantum with the node rate so that we don't end up with confusing information. (#4555) - Fix sending of the SAP SDP. Handle some SDP parsing errors. - Add some more options to the ROC source module. (#4516) * SPA - Fix firewire quirks in udev rules. (#4528) - Fix a bug in the rate scaling in some cases that would make things run with the wrong samplerate. - Improve introspection of control types. * Bluetooth - Use the G722 codec from Android instead of FFmpeg for ASHA. - Use the A2DP source rate as the graph rate. (#4555) - Specify the bluetooth source latency property in the rate of the stream to avoid conversions and rounding errors. ==== plasma5support6 ==== Version update (6.3.0 -> 6.3.2) Subpackages: libPlasma5Support6 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== plasma6-activities ==== Version update (6.3.0 -> 6.3.2) Subpackages: libPlasmaActivities6 plasma6-activities-imports - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== plasma6-activities-stats ==== Version update (6.3.0 -> 6.3.2) Subpackages: libPlasmaActivitiesStats1 - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== plasma6-browser-integration ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * flatpak-integrator: use more sophisticated code to pass around fds (kde#500000) * update version for new release * Add missing include for flatpak-integrator plugin ==== plasma6-desktop ==== Version update (6.3.0 -> 6.3.2) Subpackages: plasma6-desktop-emojier - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release * applets/kickoff: fix touch scrolling not working (kde#500452) * applets/kickoff: fix `TypeError: Cannot read property 'view' of null` * kcms/touchpad: indent subordinate items in RtL too * kcms/touchpad: respect layoutDirection * applets/kicker: respect layoutDirection in keynav * applets/kickoff: import plasmoid on PlacesPage where it's used * desktop/RenameEditor.qml: fix background * applets/kicker: focus the delegate in all cases * kcms/libkwindevices: put template functions in the header (kde#500345) * folderview: Fix drag selection (kde#499898) * pager: remove onContainsMouseChanged, refresh model after desktopMouseArea.clicked (kde#500236) * update version for new release - Update to 6.3.1.1: * New bugfix release - Changes since 6.3.1: * 6.3.1 reroll * kcms/libkwindevices: put template functions in the header (kde#500345) * folderview: Fix drag selection (kde#499898) * pager: remove onContainsMouseChanged, refresh model after desktopMouseArea.clicked (kde#500236) * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * kcms/tablet: Fix appearance of input area if changing it is unsupported (kde#500052) * update version for new release * applets/kicker: focus correct item on arrow key * applets/kicker: actually select delegate on arrow (kde#499971) * applets/TaskManager: don't set non-existing property * Kickoff: Disable triangle filter when switch-on hover is disabled * applets/kickoff: don't forceActiveFocus nothing (kde#500228) * applets/taskmanager: fix TriangleMouseFiler in RtL * kcms/tablet: Apply calibration matrix immediately * applets/kicker: fix direct activation for other cols * update version for new release * applets/kickoff: fix crash when dragging items not in favorite page on Wayland (kde#449426,kde#450215) * [kcms/touchpad] Make toggle touchpad shortcut consistent with Wayland session * Treat StackingOrder as int instead of list (kde#497506) * kcms/access: fix typo top -> to * Use Image for user-selected non-square Kickoff icons (kde#494389) * applets/taskmanager: guard against null contextMenu ==== plasma6-disks ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== plasma6-integration ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * QPlatformTheme::ShowIconsInMenus was added in Qt 6.7.3 ==== plasma6-nm ==== Version update (6.3.0 -> 6.3.2) Subpackages: plasma6-nm-openconnect plasma6-nm-openvpn plasma6-nm-pptp plasma6-nm-vpnc - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * Guard more qcoro usages (kde#499927) * update version for new release ==== plasma6-openSUSE ==== Subpackages: plasma6-branding-openSUSE plasma6-sddm-theme-openSUSE plasma6-theme-openSUSE - Update to 6.3.2 - Update to 6.3.1 ==== plasma6-pa ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * Revert "Only show osd on global shortcuts or scrolling the applet" (kde#500129) * update version for new release ==== plasma6-print-manager ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== plasma6-systemmonitor ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * table: Fix row hovering with Qt 6.9+ * update version for new release * faces/applications: Filter out applications with 0 processes * faces/applications: Use the memory column for application details ==== plasma6-thunderbolt ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - No code changes since 6.3.1 - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - No code changes since 6.3.0 ==== plasma6-workspace ==== Version update (6.3.0 -> 6.3.2) Subpackages: plasma6-session plasma6-session-x11 plasma6-workspace-libs sddm-qt6-branding-openSUSE - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release * klipper: fix clipboard actions not setting clipboard for the first time (kde#500287) * appiumtests: remove unused import in clipboardtest * applets/notifications: don't read out body as HTML * shell: use QMetaObject::invokeMethod to call QML function * Fixes for respecting immutability * klipper: don't hide popup when action popup shows (kde#500438) * libnotificationmanager: clearing the timer array, when deleting old notifications * klipper: don't cover content with highlight * plasma-windowed: set `QT_WAYLAND_DISABLE_FIXED_POSITIONS` to fix resizing loop * libtaskmanager: make XWindowTasksModelTest::test_modelData less flaky * applets/notifications: fix JobItemIcon context menu (kde#499942) * applets/systemtray: Don't unnecessarily append -symbolic to icon names (kde#500102) * kcms/krdb: Wait until root window cursor is set (kde#499965) * applets/systray: guard pointer to innerContainment * klipper: scroll ListView on keyboard navigation * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * weather/bbcukmet: Filter out regions from search results (kde#500065) * klipper: also show highlight for currentItem * appmenu: Place appmenu in the top left screen corner (kde#500141) * [kicker] Fix properties dialog for recent files (kde#499845) * applets/digitalclock: only show separator with date (kde#499945) * applets/systemmonitor: Fixed typo causing undefined constant being used * plasma-windowed: adapt to resizeEvent change in Qt 6.9 * weather/dwd: Capitalize letters after slash * update version for new release * Multiply floating panel shadow margin by scale factor on X11 (kde#496928) * panelview: Fix autohide panel hiding while dragging in task manager (kde#495828) * appiumtests: make clipboardtest less flaky * kcms/users: handle non-existing/readable profile img * klipper: Avoid breaking Listview (kde#448833) * applets/notification: make the new indicator 1px taller ==== plocate ==== - split off apparmor support into its own subpackage, using a conditional dependency for it in the main package (boo#1237689). ==== polkit-default-privs ==== Version update (1550+20250217.25d4aef -> 1550+20250225.49f846d) - Update to version 1550+20250225.49f846d: * profiles: whitelist kio-admin (bsc#1229913) - Update to version 1550+20250224.8d1bf49: * profiles: whitelist apparmor-utils (bsc#1237329) ==== polkit-kde-agent-6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== poppler ==== Version update (25.01.0 -> 25.02.0) Subpackages: libpoppler-cpp2 libpoppler-glib8 poppler-tools - Update to version 25.02.0: + core: - cairo: fix issue for images reaching MAX_CAIRO_IMAGE_SIZE - Improve rendering in some malformed documents - Internal code improvements + glib: - Add new api to allow selecting annotations to render - Fix a crash when getting a font description for a free text annotation if it was not set - Bump poppler sover following upstream changes. ==== poppler-qt6 ==== Version update (25.01.0 -> 25.02.0) - Update to version 25.02.0: + core: - cairo: fix issue for images reaching MAX_CAIRO_IMAGE_SIZE - Improve rendering in some malformed documents - Internal code improvements + glib: - Add new api to allow selecting annotations to render - Fix a crash when getting a font description for a free text annotation if it was not set - Bump poppler sover following upstream changes. ==== postfix ==== Version update (3.9.1 -> 3.10.1) - update to 3.10.1 * Bugfix (defect introduced: 20250210): a recent 'fix' for the default smtp_tls_dane_insecure_mx_policy setting resulted in unnecessary 'dnssec_probe' warnings, on systems that disable DNSSEC lookups (which is the default). - update to 3.10.0 * Internal protocol change: Postfix needs "postfix reload" (or "postfix stop" and "postfix start") after upgrade, because of a change in the delivery agent protocol. If this step is skipped, Postfix delivery agents will log a warning: unexpected attribute smtputf8 from xxx socket (expecting: sendopts) where xxx is the delivery agent service name. * Forward compatibility: Support for OpenSSL 3.5 post-quantum cryptography. To manage algorithm selection, OpenSSL introduces new TLS group syntax that Postfix will not attempt to imitate. Instead, Postfix now allows the tls_eecdh_auto_curves and tls_ffdhe_auto_groups parameter values to have an empty value. When both are set empty, the algorithm selection can be managed through OpenSSL configuration. For more, look for "Post-quantum" in the postconf(5) manpage. * Support for the RFC 8689 "TLS-Required: no" message header to request delivery of messages (such as TLSRPT summaries) even if the preferred TLS security policy cannot be enforced. This limits the Postfix SMTP client to "smtp_tls_security_level = may" which does not authenticate server certificates and which allows falling back to plaintext. * Support for the REQUIRETLS SMTP service extension will evolve in Postfix 3.11. * Support for the TLSRPT protocol (defined in RFC 8460). With this, a domain can publish a policy in DNS that requests daily summary reports for successful and failed SMTP-over-TLS connections to that domain's MX hosts. This supports both DANE (built-in) and MTA-STS (via an smtp_tls_policy_maps plugin). The implementation uses a TLSRPT library and reporting infrastructure that are maintained by sys4. For details, see TLSRPT_README. * Privacy: With "smtpd_hide_client_session = yes", the Postfix SMTP server generates a Received: header without client session info. This setting may be used with the MUA submission services (port 465 and 587). * Support for RFC 2047 encoding of non-ASCII "full name" information in Postfix-generated From: message headers. Encoding non-ASCII full names can avoid the need to use SMTPUTF8, and therefore can avoid incompatibility with sites that do not support SMTPUTF8. See the full_name_encoding_charset parameter description for details. * Database performance: When mysql: or pgsql: configuration specifies a single host, assume that it is a load balancer and reconnect immediately after a single failure, instead of failing all requests for 60s. * The Postfix Milter implementation now logs the reason for a 'quarantine' action, instead of "milter triggers HOLD action". * The SMTP server now logs the queue ID (or "NOQUEUE") when a connection ends abnormally (timeout, lost connection, or too many errors), and the cleanup server now logs "queueid: canceled" when a message transaction is started but not completed. These changes simplify logfile analysis. * Dovecot SASL client logging for "Invalid authentication mechanism" now includes the name of that mechanism. * Postfix SMTP server 'reject' logging now shows the sasl_method, sasl_username, and sasl_sender if available. ==== postgresql17 ==== Version update (17.3 -> 17.4) Subpackages: libpq5 postgresql17-contrib postgresql17-llvmjit postgresql17-server - Upgrade to 17.4: * Improve behavior of libpq's quoting functions: The changes made for CVE-2025-1094 had one serious oversight: PQescapeLiteral() and PQescapeIdentifier() failed to honor their string length parameter, instead always reading to the input string's trailing null. This resulted in including unwanted text in the output, if the caller intended to truncate the string via the length parameter. With very bad luck it could cause a crash due to reading off the end of memory. In addition, modify all these quoting functions so that when invalid encoding is detected, an invalid sequence is substituted for just the first byte of the presumed character, not all of it. This reduces the risk of problems if a calling application performs additional processing on the quoted string. * Fix small memory leak in pg_createsubscriber. * https://www.postgresql.org/docs/release/17.4/ * https://www.postgresql.org/about/news/p-3018/ ==== powerdevil6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release * applets/brightness: fix Return press on switch (kde#500702) * actions/screenbrightnesscontrol: Only enable for systems with battery (kde#498771) * actions/screenbrightnesscontrol: More robust against display changes (kde#498771) * daemon/controllers: Introduce DisplayFilter helper class * daemon: Move brightness key handling to ScreenBrightnessAgent * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * KeyboardBrightnessController: Drop isValid() check for upower interface (kde#486067) * applets/battery: Fix navigation keyboard cycle for the Up key (kde#489099) * kcm: Set buddyFor mnemonics * applets/battery: Fix Space Key on inhibition buttons ==== ppp ==== Version update (2.5.0 -> 2.5.2) - Update to version 2.5.2: * Some old and probably unused code has been removed, notably the pppgetpass program and the passprompt plugin, and some of the files in the sample and scripts directories. * If a remote number has been set, it is available to scripts in the REMOTENUMBER environment variable. * Various other bug fixes and minor enhancements. - Obsoleted patches: * ppp-fix-bashisms.patch - Update to version 2.5.1: * Pppd can now measure and log the round-trip time (RTT) of LCP echo-requests and record them in a binary file structured as a circular buffer. Other programs or scripts can examine the file and provide real-time statistics on link latency. This is enabled by a new "lcp-rtt-file" option. * New scripts net-init, net-pre-up and net-down are executed in the process of bringing the network interface up and down. They provide additional, more deterministic ways for pppd to interact with the rest of the networking configuration. * New options have been added to allow the system administrator to set the location of various scripts and secrets files. * A new "noresolvconf" option tells pppd not to write the /etc/ppp/resolv.conf file; DNS server addresses, if obtained from the peer, are still passed to scripts in the environment. * Pppd will now create the directory for the TDB connection database if it doesn't already exist. - Obsoleted patches: * ppp-mkdir-run.patch * ppp-pidfiles.patch - Drop the ppp_ prefix from /run/ppp_resolv.conf* and put it under /run/ppp like the other generated files. ==== procmail ==== - Add patch procmail-o_nofollow.patch * Avoid to follow symblic link below /var/spool/mail/ ==== publicsuffix ==== Version update (20250212 -> 20250224) - Update to version 20250224: * Add *.square.site for Block, Inc. (#2385) * Add emprende.ve (#2394) * util: gTLD data autopull updates for 2025-02-21T15:17:09 UTC (#2390) * Add Lovable to public_suffix_list.dat (#2379) ==== pulseaudio-qt6 ==== Version update (1.6.1 -> 1.7.0) - Update to 1.7.0 * Remove Qt 5 support * bump compiler setting to 6.0 * bump c++ to 20 * change all dptrs to unique_ptr * debug: correctly mark updates * card: don't mutate the container we iterate on * context: add support for loading and unloading modules * server: consider pipewire/wireplumber the default * Add missing license text - Drop the Qt 5 flavor (but keep the _multibuild setup) ==== python-MarkupSafe ==== - split test dependencies into a multibuild to break cycle with pytest ==== python-cryptography ==== Version update (44.0.0 -> 44.0.1) - update to 44.0.1: * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.4.1. * We now build armv7l manylinux wheels and publish them to PyPI. * We now build manylinux_2_34 wheels and publish them to PyPI. ==== python-distro ==== - Build package for multiple Python flavors on the SLE15 family ==== python-zstandard ==== - Add fix-zstd-1.5.7.patch to make it work with zstd-1.5.7 - Drop fix-zstd-1.5.6.patch - Require libzstd1 = 1.5.7 ==== python311-setuptools ==== Version update (75.6.0 -> 75.8.0) - update to 75.8.0: * Implemented Dynamic field for core metadata (as introduced in PEP 643). The existing implementation is currently experimental and the exact approach may change in future releases. * Synced with pypa/distutils@c97a3db2f including better support for free threaded Python on Windows (pypa/distutils#310), improved typing support, and linter accommodations. * Synced with pypa/distutils@ff11eed0c including bugfix for duplicate CFLAGS and adaption to support Python 3.13 is_abs in the C compiler (#4669). ==== qemu ==== Version update (9.2.1 -> 9.2.2) Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - Update to latest upstream release, 9.2.2: The full list of changes are available at: https://lore.kernel.org/qemu-devel/3e847ae0-8dfc-440e-92f7-6eaa89818837@tls.msk.ru/ Highlights include: * net/slirp: libslirp 4.9.0 compatibility * target/sparc: Fix gdbstub incorrectly handling registers f32-f62 * target/sparc: Fix register selection for all F*TOx and FxTO* instructions * elfload: Fix alignment when unmapping excess reservation * hw/net/smc91c111: Ignore attempt to pop from empty RX fifo * make-release: don't rely on $CWD when excluding subproject directories * ui/sdl2: reenable the SDL2 Windows keyboard hook procedure * vfio/iommufd: Fix SIGSEV in iommufd_cdev_attach() * gitlab-ci.d/cirrus: Update the FreeBSD job to v14.2 * qmp: update vhost-user protocol feature maps * linux-user: Do not define struct sched_attr if libc headers do * block-backend: Fix argument order when calling 'qapi_event_send_block_io_error()' * block: Fix leak in send_qmp_error_event * rust: add --rust-target option for bindgen * ... - Fix bsc#1237603: * linux-user: Do not define struct sched_attr if libc headers do ==== qqc2-breeze-style6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== qt6-tools ==== Subpackages: libQt6Designer6 libQt6Help6 libQt6UiTools6 qt6-tools-qdbus - Use clang 19 on Leap 15.6. The 15.6 update repo got a new llvm version which causes issues if both llvm 17 and 19 are present ==== rdma-core ==== Version update (54.0 -> 56.0) Subpackages: libefa1 libhns1 libibverbs libibverbs1 libmana1 libmlx4-1 libmlx5-1 librdmacm1 rdma-ndd - Update to rdma-core v56.0 (jsc#PED11323) - No release notes available ==== salt ==== Subpackages: python311-salt salt-master salt-minion - Fix issue of using update-alternatives with alts - Fix virt_query outputter and add support for block devices - Make _auth calls visible with master stats - Repair mount.fstab_present always returning pending changes - Set virtual grain in Podman systemd container - Fix crash due wrong client reference on `SaltMakoTemplateLookup` - Enhace batch async and fix some detected issues - Added: * repair-virt_query-outputter-655.patch * make-_auth-calls-visible-with-master-stats-696.patch * repair-fstab_present-test-mode-702.patch * set-virtual-grain-in-podman-systemd-container-703.patch * fixed-file-client-private-attribute-reference-on-sal.patch * backport-batch-async-fixes-and-improvements-701.patch - Enhacement of Salt packaging * Use update-alternatives for all salt scripts * Use flexible dependencies for the subpackages * Make salt-minion to require flavored zypp-plugin * Make zyppnotify to use update-alternatives * Drop unused yumnotify plugin * Add dependency to python3-dnf-plugins-core for RHEL based - Fix tests failures after "repo.saltproject.io" deprecation - Added: * fix-tests-failures-after-repo.saltproject.io-depreca.patch ==== sdbootutil ==== Version update (1+git20250219.a796c24 -> 1+git20250225.b78f812) Subpackages: sdbootutil-dracut-measure-pcr sdbootutil-snapper - Update to version 1+git20250225.b78f812: * Use also cryptenroll key to recover the volume key - Update to version 1+git20250225.292283f: * Support UUID references in crypttab - Update to version 1+git20250224.c9be3b6: * Do not use && when copying signature (bsc#1237505) - Update to version 1+git20250221.19f7d1a: * Reformat the spec file * Rework keyctl calls to keep the session keyring ==== sddm-kcm6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== selinux-policy ==== Version update (20250218 -> 20250224) Subpackages: selinux-policy-targeted - Update to version 20250224: * Label /run/systemd/pcrlock.json systemd_pcrlock_var_lib_t * systemd_pcrlock_t needs to filetrans when recreating /var/lib/pcrlock.d * Allow snapper access to keys * Add rules for pcrlock (bsc#1233358) * allow snapper to call pcrlock and manage its files * allow unconfined_t to execute pcrlock * label rules for default systemd_pcrlock_var_lib_t locations * new interfaces: systemd_domtrans_pcrlock and systemd_pcrlock_exec * introduce systemd_pcrlock_var_lib_t and systemd_manage_pcrlock_files * Introduce interfaces snapper_manage_tmp_files and snapper_manage_tmp_dirs - Update to version 20250221: * Allow named_filetrans_domain filetrans raid/mdadm named content (bsc#1236807) * Grant privoxy_t the sys_chroot capability (bsc#1237375) * Allow init_t nnp_transition to tor_t (bsc#1237375) ==== shadow ==== Version update (4.17.2 -> 4.17.3) Subpackages: libsubid5 login_defs - Update to 4.17.3: * chsh: do not warn about blank shell * lib/: Use strisdigit() instead of its pattern * lib/string/ctype/strisascii/: strisdigit(): Add function * lib/string/: Add comments expanding the letter-soup API names * lib/basename.c: Basename(): Use stprcspn() instead of its pattern * lib/string/strspn/, lib/, src/: stprspn(), strrspn_(): Split API into function and macro * lib/string/strspn/, lib/, src/: Move *spn() APIs to separate subdir * lib/string/strchr/: strrcspn(), stprcspn(): Add function and macro * src/useradd.c: Use !strcaseeq() instead of its pattern * lib/, src/: Use strcaseeq() instead of its pattern * lib/string/strcmp/: strcaseeq(): Add function * man/useradd.8.xml: Document new exit code 19 (E_BAD_NAME) * src/useradd.c: E_BAD_NAME: Use a different error code for bad login names * src/useradd.c: create_home(): Use !streq() instead of its pattern * lib/chkname.c: is_valid_name(): Use streq() instead of its pattern * configure.ac, lib/: Use __has_include() instead of HAVE_GSHADOW_H * configure.ac: Remove unused AC_CHECK_HEADERS() checks * configure.ac, lib/: Use __has_include() instead of HAVE_SYS_CAPABILITY_H * lib/idmapping.c: Unconditionally include * lib/: Use __has_include() instead of HAVE_SECURITY_OPENPAM_H * lib/: Use __has_include() instead of HAVE_SECURITY_PAM_MISC_H * configure.ac, lib/: Use __has_include() instead of HAVE_SYS_RANDOM_H * configure.ac, lib/: Use __has_include() instead of HAVE_CRYPT_H * lib/, src/: motd(): Report errors instead of exiting from library code * lib/motd.c: motd(): Invert logic to reduce indentation * lib/, src/, doc/: Remove pw_auth()'s $3 as dead code * lib/pwauth.*: PW_{ADD,CHANGE,DELETE,FTP,REXEC}: Remove dead code * lib/, src/, doc/: Remove dead code * src/vipw.c: Restore the original terminal pgrp after editing * lib/, src/: Use agetgroups() instead of its pattern * lib/shadow/grp/: agetgroups(): Add function * configure.ac, lib/, src/: Use gid_t instead of GETGROUPS_T * lib/adds.h: addslN(): Use QSORT() instead of its pattern * lib/search/sort/: QSORT(): Add macro * lib/addgrps.c: add_groups(): Remove arbitrary limit * lib/, src/: Rename variables * lib/addgrps.c: add_groups(): Reallocate at once * lib/string/strchr/: strchrscnt(): Add function * lib/addgrps.c: add_groups(): Split variable to avoid sign-mismatch diagnostics * lib/, src/: Use LSEARCH() instead of its pattern * lib/search/l/: LSEARCH(): Add macro * lib/, src/: Replace redundant checks by actual error handling * lib/, src/: Unconditionally call setgroups(2) * lib/addgrps.c: add_groups(): Simplify redundant code with a goto * lib/addgrps.c: add_groups(): Allocate earlier * lib/addgrps.c: add_groups(): Remove useless cast * lib/, src/: Use LFIND() instead of open-coded search loops * lib/search/l/: LFIND(): Add macro * lib/search/cmp/, lib/, tests/: CMP(), cmp_*(): Add macro and functions * lib/, src/: Simplify allocation of buffer * lib/, src/: Un-spageticize code * lib/, src/: Reduce scope of variables * lib/gshadow_.h: Fix compatibility with libc's struct sgrp * configure.ac, lib/gshadow.c: Presume working shadow group support in libc * lib/: Include if it's available * configure.ac, lib/: Assume initgroups(3) exists * configure.ac, lib/, src/: Assume setgroups(2) exists * lib/, src/: Turn error counters into flags * src/gpasswd: Use correct preprocessor definition * src/gpasswd: Clear password in more cases * lib/encrypt.c: Do not exit in error case * man/useradd.8.xml: wfix * src/login_nopam.c: list_match(): Use iteration instead of recursion * src/login_nopam.c: list_match(): Remove local variable * src/login_nopam.c: list_match(): Move code around * src/login_nopam.c: list_match(): '(match)' is always true here * src/login_nopam.c: list_match(): Add superfluous else * src/login_nopam.c: list_match(): Refactor conditional * man/passwd.1.xml: -P disables PAM support * chage: Drop PAM support * src/newusers.c: Turn nusers into size_t * src/: Make line number overflows less likely * man/: Install suauth.5 only if feature exists * add and use a login.defs.test with CREATE_HOME set * Revert "etc/login.defs: enable CREATE_HOME" * etc/login.defs: enable CREATE_HOME * Tests: implement system test framework ==== shim-leap ==== - Only copy uncompressed directories. ==== spectacle ==== Version update (24.12.2 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1.2: * update version for new release * Remove 24.12 versions from appstream file (kde#500396) * Revert "reroll" - Update to 6.3.1.2: * New bugfix release * Tarball built from the correct branch now - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - No code changes since 6.3.0 - Update to 6.3.0: * New bugfix release * Now part of Plasma * For more details see https://kde.org/announcements/plasma/6/6.3.0 - No code changes since 24.12.2 ==== speech-dispatcher ==== Version update (0.12.0~rc4 -> 0.12.0) Subpackages: libspeechd2 libspeechd_module0 python311-speechd speech-dispatcher-module-espeak - Update to version 0.12.0: * Add libspeechd-module library for making it simpler to create external spd modules. * Update CLDR to version 45, symbols from orca 45.2, and symbols from NVDA. * Also support loading symbols from home directory. ==== sqlite3 ==== Version update (3.49.0 -> 3.49.1) Subpackages: libsqlite3-0 sqlite3-tcl - Update to release 3.19.1: * Improve portability of makefiles and configure scripts. * Fix a bug in the concat_ws() function, introduced in version 3.44.0, that could lead to a memory error if the separator string is very large (hundreds of megabytes). * Enhanced the SQLITE_DBCONFIG_LOOKASIDE interface to make it more robust against misuse. ==== sscep ==== - Explicitly call cmake_build in %build section. Do not rely on cmake_install building later on. ==== suitesparse ==== Subpackages: libamd3 libcamd3 libccolamd3 libcholmod5 libcolamd3 libsuitesparseconfig7 libumfpack6 - Modernize specfile ==== sushi ==== Version update (46.0 -> 46.0+11) - Update to version 46.0+11: + Fix a crash caused by missing gvariant parameter. ==== systemsettings6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== texinfo ==== Version update (7.0.3 -> 7.1) Subpackages: info info-lang - Update to version 7.1 (18 October 2023) * Language . new generic definition commands, @defblock, @defline and @deftypeline, for definitions without automatic index entries . new @linemacro facility eases use of generic definition commands . new command @link creates plain links (supported output formats only) . @cartouche takes an argument to specify the cartouche title . you can use the new commands @nodedescription and @nodedescriptionblock to give text to be used in menu descriptions in Info and HTML output * texi2any . @itemx at the beginning of a @table is now an error, not a warning . better validity checking of deeply nested commands . check that @set and @clear only appear at the start of a line . warn about missing menu entries even if CHECK_NORMAL_MENU_STRUCTURE is not set. you can turn this off by setting CHECK_MISSING_MENU_ENTRY to 0. . no longer use --enable-encoding and --disable-encoding to determine whether to output encoded characters (instead of entities or commands) for HTML, XML, DocBook and LaTeX; instead, use the value of the OUTPUT_CHARACTERS customization variable. . stricter checks on input encoding, in particular more warnings and errors with malformed UTF-8 . support any input file encoding if support exists in the operating system, not just a selected list of encodings . resolve an alias referring to another alias at definition time . internally, use "source marks" to keep all Texinfo source information that is not in the final tree (location of macros, values and included files expansion, @if* blocks, DEL comment, and @ protecting end of line on @def* lines) . HTML output: . format @subentry and index entries with @seealso or @seeentry in a more similar way to printed output . output @shortcontents before @contents by default . omit colons after index entries by default. this can still be configured with INDEX_ENTRY_COLON. . add @example syntax highlighting as a texi2any extension . no more capitalization of @sc argument in HTML Cross-references . change @point expansion to U+22C6 in HTML Cross-references . if a @node is not associated with a sectioning command but is followed by a heading command not usually associated to nodes such as @heading and this command appears before other formatted content, the heading command is assumed to supply the node heading. you can customize this with USE_NEXT_HEADING_FOR_LONE_NODE. . Info output: . new variable ASCII_DASHES_AND_QUOTES, on by default, outputs ASCII characters for literal quote or hyphen characters in source, rather than UTF-8. this makes it easier to search Info files. . new ASCII_GLYPH variable for using ASCII renditions for glyph commands (like @bullet) . ASCII_PUNCTUATION still includes the effect of these new variables. . new variables AUTO_MENU_DESCRIPTION_ALIGN_COLUMN and AUTO_MENU_MAX_WIDTH control the format of descriptions in generated menus . XML output: . place menu leading text and menu separators in elements instead of attributes * texi2dvi . macro expansion with texi2any requires at least version 5.0 (only happens with --expand option or with very old texinfo.tex) * texinfo.tex . in @code, ` and ' output by default with backtick and undirected single quote glyphs in the typewriter font. you can still configure this using the @codequoteundirected/@codequotebacktick commands. . do not insert a space for @ def line continuation, matching the behavior of texi2any . align section titles in table of contents when more than 10 sections . microtype is off by default, for speed . page headings generation is no longer linked to the @titlepage command * info . when going Up, position cursor on menu entry for current node . allow mouse scrolling support regardless of termcap entries. this supports some more xterm configurations. . do not use "/index" as a possible file extension for Info files * texi2any . fix performance regression when Perl binary extension (XS) modules are not being used (e.g. with TEXINFO_XS=omit) * info . further fix of recoding of UTF-8 files to ASCII to avoid text disappearing from nodes . avoid possible freeze at start of a file with `-v nodeline=pointers' * texi2any . do not distribute architecture-dependent files . build fixed on OpenIndiana 11 * info . further fix of recoding of UTF-8 files to ASCII . fix check for presence of man pages on Solaris * install-info . fix build by avoiding function name clash on some platforms . compiler warning re strncat silenced * texi2any . avoid crashes on empty @image argument and other potential crashes (with "Can't use an undefined value as an ARRAY reference" message) . avoid hang on @ref command inside section command * info . fix recoding of UTF-8 files to ASCII when run in C locale * js . index search fixed for new HTML output . some obsolete files removed from distribution - Port patch texinfo-zlib.patch - Use libzio 1.09 to support compressed 'dir' data base files ==== texlive ==== - Be prepared for Mesa update to versionm 25.0.0 - Use zlib-ng-compat only for opensuse builds ==== tiff ==== - Use python3-Sphinx instead of %{primary_python}-Sphinx based on recommendation from python maintainers. * Fixes build issue of man flavor on 15.6 ==== unar ==== - Use %autosetup - Add patch to fix checksum calculation on big endian archs (boo#1236917, gh#MacPaw/XADMaster#168) * Revert-Switch-to-faster-CRC-implementations.patch ==== usbmuxd ==== Version update (1.1.1+git48.01c94c7 -> 1.1.1+git69.523f700) - Update to version 1.1.1+git69.523f700: * Updated README * Update libplist requirement to 2.6.0 and use PLIST_DICT helper for cleaner code * conf: fix false plist write error in config_set_device_record * usb: add support for modes 4 and 5 * usb: correctly display 10 Gbps USB 3.x * usb: Revert default mode back to 1 * device: Fix crash caused by wrong variable when logging an error * usb: Set default mode to 3 to include CDC NCM, and fix a log message * systemd: use runstatedir (drop usbmuxd-run-dir.patch). * udev: Make sure iBridge (T1) doesn't end up in an unconfigured state - Refresh harden_usbmuxd.service.patch. ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Delete /usr/sbin/rc* symlinks - Drop bashisms from build recipe ==== util-linux-systemd ==== Subpackages: lastlog2 liblastlog2-2 - Delete /usr/sbin/rc* symlinks - Drop bashisms from build recipe ==== vim ==== Version update (9.1.1101 -> 9.1.1134) Subpackages: vim-data vim-data-common xxd - Version bump to fix bsc#1237359 (fixed as of 9.1.1115). - Update to 9.1.1134. * 9.1.1134: filetype: Guile init file not recognized * 9.1.1133: filetype: xkb files not recognized everywhere * 9.1.1132: Mark positions wrong after triggering multiline completion * 9.1.1131: potential out-of-memory issue in search.c * remove resolved complete item from todo list * 9.1.1130: 'listchars' "precedes" is not drawn on Tabs. * set fileformat=dos in filetype plugin * 9.1.1129: missing out-of-memory test in buf_write() * add commentstring '> %s' to ftplugin * 9.1.1128: 9.1.1119 caused a regression with imports * include simple filetype plugin * 9.1.1127: preinsert text is not cleaned up correctly * 9.1.1126: 9.1.1121 used a wrong way to handle enter * 9.1.1125: cannot loop through pum menu with multiline items * 9.1.1124: No test for 'listchars' "precedes" with double-width char * 9.1.1123: popup hi groups not falling back to defaults * Add support for # comments to ftplugin * 9.1.1122: too many strlen() calls in findfile.c * 9.1.1121: Enter does not insert newline with "noselect" * fix s:NetrwHome() regression * 9.1.1120: tests: Test_registers fails * add reference to extendnew() at extend() * 9.1.1119: Vim9: Not able to use an autoloaded class from another * autoloaded script * 9.1.1118: tests: test_termcodes fails * Update base-syntax, improve performance * 9.1.1117: there are a few minor style issues * 9.1.1116: Vim9: super not supported in lambda expressions * Update the 'specifies' keyword documentation, slightly * reformat * 9.1.1115: [security]: use-after-free in str_to_reg() * 9.1.1114: enabling termguicolors automatically confuses users * Add ukrainian-enhanced keymap * 9.1.1113: tests: Test_terminal_builtin_without_gui waits 2 seconds * 9.1.1112: Inconsistencies in get_next_or_prev_match() * document ComplMatchIns highlight for insert-completion * upstream snapshot of v177 * 9.1.1111: Vim9: variable not found in transitive import * 9.1.1110: Vim tests are slow and flaky * 9.1.1109: cmdexpand.c hard to read * include simple filetype plugin * include simple filetype plugin * 9.1.1108: 'smoothscroll' gets stuck with 'listchars' "eol" * 9.1.1107: cannot loop through completion menu with fuzzy * Update base-syntax, always match continuation comments to EOL * set define option & add matchit config in ftplugin * Update base-syntax, match Vim9 boolean and null literals in * parens * 9.1.1106: tests: Test_log_nonexistent() causes asan failure * 9.1.1105: Vim9: no support for protected new() method * 9.1.1104: CI: using Ubuntu 22.04 Github runners * ci: syntax tests spam output * 9.1.1103: if_perl: still some compile errors with Perl 5.38 * 9.1.1102: tests: Test_WinScrolled_Resized_eiw() uses wrong filename ==== virt-manager ==== Subpackages: virt-install virt-manager-common - Remove unneeded Requires on python3-ipaddr. - Spec file modifications for SLES16 and some cleanups virt-manager.spec - Add additional detection code for SLES 16 media (bsc#1236252) virtinst-add-sle16-detection-support.patch ==== virt-v2v ==== Version update (2.7.4 -> 2.7.6) Subpackages: virt-v2v-bash-completion - Update to virt-v2v 2.7.6 (jsc#PED-8910) * mldrivers/linux_bootloaders.ml: Don't overwrite EFI grub2 wrapper * convert: Use yum/apt/... for package removals, not rpm/dpkg * convert: Reload augeas after package remove - Update to virt-v2v 2.7.5 (jsc#PED-8910) * Various language translation updates * po-docs: fixes and adjustments * valgrind: Add suppressions for two new memory leaks in glib ==== wacomtablet-kcm6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release ==== xapian-core ==== Version update (1.4.21 -> 1.4.22) - update to 1.4.22: * Expand canceltransaction1 to test value changes are rolled back. * Minor optimisations to DPHWeight and TfIdfWeight weighting formulae calculations. * Optimise LatLongDistancePostingSource to avoid pow() call on each document with default k2 setting. * Fix bug in recovery from WritableDatabase::commit() failing. * configure: Enable -fno-math-errno if supported. We don't make use of maths function setting errno and if we tell the compiler that it can optimise them better in some cases. * INSTALL: Document assumptions about platform features * INSTALL: Add section on clang version requirements. ==== xdg-desktop-portal ==== Version update (1.19.4 -> 1.20.0) - Update to version 1.20.0: + Document how the test suite works. + Improve the test runner script. ==== xdg-desktop-portal-kde6 ==== Version update (6.3.0 -> 6.3.2) - Update to 6.3.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.2 - Changes since 6.3.1: * update version for new release - Update to 6.3.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.3.1 - Changes since 6.3.0: * update version for new release * outputsmodel: Handle screens going away (kde#495160) * WaylandIntegration: disconnect from stream after leaving event loop to fix crash ==== xdm ==== Subpackages: displaymanager-sysconfig - display-manager: Do not abort when there is no /usr/bin/X found. Rely on the DM to know how to handle it. E.g gdm could be spawning a wayland-only session. (boo#1237777) ==== xen ==== Subpackages: xen-libs xen-tools-domU - Update to Xen 4.20.0 RC5 release * x86/shutdown: offline APs with interrupts disabled on all CPUs * x86/smp: perform disabling on interrupts ahead of AP shutdown * x86/pci: disable MSI(-X) on all devices at shutdown * x86/iommu: disable interrupts at shutdown * x86/HVM: use XVFREE() in hvmemul_cache_destroy() * xen/console: Fix truncation of panic() messages * xen/memory: Make resource_max_frames() to return 0 on unknown type * x86/svm: Separate STI and VMRUN instructions in svm_asm_do_resume() * x86/MCE-telem: adjust cookie definition - Drop patch contained in new tarball x86-shutdown-offline-APs-with-interrupts-disabled-on-all-CPUs.patch ==== xfce4-whiskermenu-plugin ==== Version update (2.9.1 -> 2.9.2) Subpackages: xfce4-whiskermenu-plugin-lang - Update to version 2.9.2 * Fix menu not shown on correct monitor. (Issue #154) ==== xinit ==== - Make build recipe compatible with POSIX sh ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - U_CVE-2025-26594-0001-Cursor-Refuse-to-free-the-root-cursor.patch U_CVE-2025-26594-0002-dix-keep-a-ref-to-the-rootCursor.patch * Use-after-free of the root cursor (CVE-2025-26594, bsc#1237427) - U_CVE-2025-26595-0001-xkb-Fix-buffer-overflow-in-XkbVModMaskText.patch * Buffer overflow in XkbVModMaskText() (CVE-2025-26595, bsc#1237429) - U_CVE-2025-26596-0001-xkb-Fix-computation-of-XkbSizeKeySyms.patch * Heap overflow in XkbWriteKeySyms() (CVE-2025-26596, bsc#1237430) - U_CVE-2025-26597-0001-xkb-Fix-buffer-overflow-in-XkbChangeTypesOfKey.patch * Buffer overflow in XkbChangeTypesOfKey() (CVE-2025-26597, bsc#1237431) - U_CVE-2025-26598-0001-Xi-Fix-barrier-device-search.patch * Out-of-bounds write in CreatePointerBarrierClient() (CVE-2025-26598, bsc#1237432) - U_CVE-2025-26599-0001-composite-Handle-failure-to-redirect-in-compRedirect.patch U_CVE-2025-26599-0002-composite-initialize-border-clip-even-when-pixmap-al.patch * Use of uninitialized pointer in compRedirectWindow() (CVE-2025-26599, bsc#1237433) - U_CVE-2025-26600-0001-dix-Dequeue-pending-events-on-frozen-device-on-remov.patch * Use-after-free in PlayReleasedEvents() (CVE-2025-26600, bsc#1237434) - U_CVE-2025-26601-0001-sync-Do-not-let-sync-objects-uninitialized.patch U_CVE-2025-26601-0002-sync-Check-values-before-applying-changes.patch U_CVE-2025-26601-0003-sync-Do-not-fail-SyncAddTriggerToSyncObject.patch U_CVE-2025-26601-0004-sync-Apply-changes-last-in-SyncChangeAlarmAttributes.patch * Use-after-free in SyncInitTrigger() (CVE-2025-26601, bsc#1237435) ==== xterm ==== Subpackages: xterm-bin xterm-resize - Trim bashisms from build recipe ==== xwayland ==== Version update (24.1.5 -> 24.1.6) - Update to version 24.1.6: * This release contains the fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg-announce/2025-February/003584.html CVE-2025-26594, CVE-2025-26595, CVE-2025-26596, CVE-2025-26597, CVE-2025-26598, CVE-2025-26599, CVE-2025-26600, CVE-2025-26601. * Additionally, it reverts a recent Xkb change to fix an issue with gamescope. - Drop patches fixed upstream: * U_CVE-2025-26594-0001-Cursor-Refuse-to-free-the-root-cursor.patch * U_CVE-2025-26594-0002-dix-keep-a-ref-to-the-rootCursor.patch * U_CVE-2025-26595-0001-xkb-Fix-buffer-overflow-in-XkbVModMaskText.patch * U_CVE-2025-26596-0001-xkb-Fix-computation-of-XkbSizeKeySyms.patch * U_CVE-2025-26597-0001-xkb-Fix-buffer-overflow-in-XkbChangeTypesOfKey.patch * U_CVE-2025-26598-0001-Xi-Fix-barrier-device-search.patch * U_CVE-2025-26599-0001-composite-Handle-failure-to-redirect-in-compRedirect.patch * U_CVE-2025-26599-0002-composite-initialize-border-clip-even-when-pixmap-al.patch * U_CVE-2025-26600-0001-dix-Dequeue-pending-events-on-frozen-device-on-remov.patch * U_CVE-2025-26601-0001-sync-Do-not-let-sync-objects-uninitialized.patch * U_CVE-2025-26601-0002-sync-Check-values-before-applying-changes.patch * U_CVE-2025-26601-0003-sync-Do-not-fail-SyncAddTriggerToSyncObject.patch * U_CVE-2025-26601-0004-sync-Apply-changes-last-in-SyncChangeAlarmAttributes.patch - U_CVE-2025-26594-0001-Cursor-Refuse-to-free-the-root-cursor.patch U_CVE-2025-26594-0002-dix-keep-a-ref-to-the-rootCursor.patch * Use-after-free of the root cursor (CVE-2025-26594, bsc#1237427) - U_CVE-2025-26595-0001-xkb-Fix-buffer-overflow-in-XkbVModMaskText.patch * Buffer overflow in XkbVModMaskText() (CVE-2025-26595, bsc#1237429) - U_CVE-2025-26596-0001-xkb-Fix-computation-of-XkbSizeKeySyms.patch * Heap overflow in XkbWriteKeySyms() (CVE-2025-26596, bsc#1237430) - U_CVE-2025-26597-0001-xkb-Fix-buffer-overflow-in-XkbChangeTypesOfKey.patch * Buffer overflow in XkbChangeTypesOfKey() (CVE-2025-26597, bsc#1237431) - U_CVE-2025-26598-0001-Xi-Fix-barrier-device-search.patch * Out-of-bounds write in CreatePointerBarrierClient() (CVE-2025-26598, bsc#1237432) - U_CVE-2025-26599-0001-composite-Handle-failure-to-redirect-in-compRedirect.patch U_CVE-2025-26599-0002-composite-initialize-border-clip-even-when-pixmap-al.patch * Use of uninitialized pointer in compRedirectWindow() (CVE-2025-26599, bsc#1237433) - U_CVE-2025-26600-0001-dix-Dequeue-pending-events-on-frozen-device-on-remov.patch * Use-after-free in PlayReleasedEvents() (CVE-2025-26600, bsc#1237434) - U_CVE-2025-26601-0001-sync-Do-not-let-sync-objects-uninitialized.patch U_CVE-2025-26601-0002-sync-Check-values-before-applying-changes.patch U_CVE-2025-26601-0003-sync-Do-not-fail-SyncAddTriggerToSyncObject.patch U_CVE-2025-26601-0004-sync-Apply-changes-last-in-SyncChangeAlarmAttributes.patch * Use-after-free in SyncInitTrigger() (CVE-2025-26601, bsc#1237435) ==== yast2 ==== Version update (5.0.11 -> 5.0.12) Subpackages: yast2-logs - respect kernel parameter filtering from agama if found (bsc#1237390,bsc#1234678) - 5.0.12 ==== yast2-kdump ==== Version update (5.0.2 -> 5.0.3) - Applied patch from jbohac for bsc#1237754, let KDUMP_CPUS=0 - 5.0.3 ==== yast2-schema ==== Version update (5.0.1 -> 5.0.2) - Allow to specify pervasive encryption's APQNs and key type (jsc#PED-10950). - 5.0.2 ==== yast2-storage-ng ==== Version update (5.0.25 -> 5.0.27) - Discarded RAM disks as candidate for installation (gh#agama-project/agama#2042). - 5.0.27 - Added AutoYaST support for selecting the APQNs and pervasive encryption key type (jsc#PED-10950). - 5.0.26 ==== yast2-trans ==== Version update (84.87.20250214.b4c23644e7 -> 84.87.20250221.72f607339a) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20250221.72f607339a: * New POT for text domain 'base'. * New POT for text domain 'samba-client'. ==== zstd ==== Version update (1.5.6 -> 1.5.7) Subpackages: libzstd1 - update to 1.5.7: * zstd now employs multiple threads by default * Fix a rare bug in 32-bit mode * Enhanced Compression Speed for Small Data Blocks * Substantial --patch-from performance improvements - Drop pzstd.1.patch - not upstream, but also not needed ==== zxcvbn ==== - fix build with gcc15 - added patches fix https://github.com/tsyrogit/zxcvbn-c/commit/b9f30993c88d9057d7d95a1b059989f7853fd1b0 + zxcvbn-gcc15.patch ==== zypper ==== Version update (1.14.84 -> 1.14.87) Subpackages: zypper-log zypper-needs-restarting - Package preloader that concurrently downloads files. It's not yet enabled per default. To enable the preview set ZYPP_CURL2=1 and ZYPP_PCK_PRELOAD=1 in the environment. (#104) - BuildRequires: libzypp-devel >= 17.36.4. - version 1.14.87 - refresh: add --include-all-archs (fixes #598) Future multi-arch repos may allow to download only those metadata which refer to packages actually compatible with the systems architecture. Some tools however want zypp to provide the full metadata of a repository without filtering incompatible architectures. - info,search: add option to search and list Enhances (bsc#1237949) - version 1.14.86 - Annonunce --root in commands not launching a Target (bsc#1237044) - BuildRequires: libzypp-devel >= 17.36.3. - version 1.14.85