Packages changed: at-spi2-core elfutils ethtool (6.2 -> 6.3) gupnp-av health-checker (1.7 -> 1.8) icewm (3.3.2 -> 3.3.4) libcap-ng libxslt (1.1.37 -> 1.1.38) mozjs102 (102.10.0 -> 102.11.0) mutter (44.1 -> 44.1+2) ncurses (6.4.20230429 -> 6.4.20230506) patterns-base patterns-microos policycoreutils python-blinker (1.5 -> 1.6.2) transactional-update (4.1.5 -> 4.2.1) vte wireless-regdb (20230213 -> 20230503) yast2-storage-ng (4.6.5 -> 4.6.8) === Details === ==== at-spi2-core ==== Subpackages: at-spi2-core-lang libatk-1_0-0 libatk-bridge-2_0-0 libatspi0 typelib-1_0-Atk-1_0 typelib-1_0-Atspi-2_0 - Add or dbus-broker to existing dbus-1 Requires: we already pass dbus_broker=/usr/bin/dbus-broker-launch and default_bus=dbus-broker to meson during build. ==== elfutils ==== Subpackages: elfutils-lang libasm1 libdw1 libelf1 - Add _multibuild to define 2nd spec file as additional flavor. Eliminates the need for source package links in OBS. ==== ethtool ==== Version update (6.2 -> 6.3) Subpackages: ethtool-bash-completion - update to upstream release 6.3 * Feature: PLCA support (--[gs]et-plca-cfg, --get-plca-status) * Feature: MAC Merge layer support (--show-mm, --set-mm) * Feature: pass source of statistics for port stats * Feature: get/set rx push in ringparams (-g and -G) * Feature: coalesce tx aggregation parameters (-c and -C) * Feature: PSE and PD devices (--show-pse, --set-pse) * Fix: minor fixes of help text (--help) * Fix: fix build on systems with older system headers * Fix: fix netlink support when PLCA is not present (no option) * Fix: fixes for issues found with gcc13 -fanalyzer * Fix: fix return code in rxclass_rule_ins (-N) * Fix: more robust argc/argv handling ==== gupnp-av ==== Subpackages: libgupnp-av-1_0-3 - Add upstream patch fix: 767388bc.patch: build: Fix Requires: line of pkg-config file. ==== health-checker ==== Version update (1.7 -> 1.8) Subpackages: health-checker-plugins-MicroOS - Update to version 1.8 * Don't rely on t-u's good states in GRUB With the introduction of the "apply" command in transactional-update the snapshots don't require a reboot any more to be registered as a "good" snapshot. Due to [boo#1048088] the GRUB part of health-checker was using the t-u file as a workaround which cannot be done any more now, so store the last good snapshot path from a health-checker perspective independently now. ==== icewm ==== Version update (3.3.2 -> 3.3.4) Subpackages: icewm-config-upstream icewm-default icewm-lang - Update to 3.3.4: * Fix compile error for yximage.cc. * Deprecate XRRDisable. * Fix corrupted text if built without i18n for issue ice-wm/icewm#131. * When internationalization is disabled, unset LIBICONV. * Improve the quality of drawing gradients for the Imlib2 renderer. * Improve arrow navigation in the system dialog. * Let icesh also pick icewm internal and override redirect windows. * Improve the quality of drawing gradients for the GdkPixbuf renderer. * Cache workspace button backgrounds for faster redrawing. * Guard against workspace button gradient being undefined. * Cache toolbar button gradients to speedup drawing. Eliminate half of the button drawings on startup. * Let icesh report up to 1024 bytes of a property in "prop". * Support icesh "focusmodel" for client windows without a WM_HINTS property. * When managing a new client, postpone sending a Configure event until the final position is known, for issue #720. ==== libcap-ng ==== - Add _multibuild to define additional spec files as additional flavors. Eliminates the need for source package links in OBS. ==== libxslt ==== Version update (1.1.37 -> 1.1.38) Subpackages: libexslt0 libxslt-tools libxslt1 - Removed patch 0009-Make-generate-id-deterministic.patch as it's already fixed upstream. - Update to version 1.1.38: * Major changes: - About 40 memory errors in code paths handling malloc failures have been fixed. - While these issues shouldn't impact security, this improves robustness under memory pressure. - The result of generate-id() is now deterministic across multiple transformations fixing many issues with reproducible builds. - Most of the test suite has been ported to C. * Bug fixes: - Fix memory errors in code handling malloc failures - imports: Fix import/include cycle check - xsltlocale: Fix xsltNewLocale on macOS - Make xsl:sort thread-safe - Make generate-id() deterministic * Improvements - Stop using xmlStringCurrentChar - attributes.h needs to include xsltInternals.h (David Kilzer) - transform: Avoid null deref on documents without root node - numbers: Fix floating point overflows - date: Fix integer overflow in exsltDateFormatDuration - numbers: Fix harmless integer sign change - date: Add more overflow checks to formatting code (David Kilzer) - date: Fix rounding to make Windows tests pass - date: Rewrite duration and seconds formatting - xsltlocale: Make API platform-independent - Also accept application/xslt+xml media type in stylesheet PIs - warnings: Fix strict prototypes warning - xsltEvalUserParams() and xsltQuoteUserParams() are susceptible to integer overflow when iterating through const char** array (David Kilzer) - xslt: Return NULL stylesheet on attribute set errors - xsltproc: Fix unused variable warning - xslt: Remove declaration for old libxml2 - Fix various compiler warnings - Fix compiler warnings in xsltGenerateIdFunction - Disable Python bindings for debugger - Don't declare disabled functions - Migrate from PyEval_ to PyObject_ ==== mozjs102 ==== Version update (102.10.0 -> 102.11.0) - Update to version 102.11.0: + Various security fixes. + CVE-2023-32205: Browser prompts could have been obscured by popups + CVE-2023-32206: Crash in RLBox Expat driver + CVE-2023-32207: Potential permissions request bypass via clickjacking + CVE-2023-32211: Content process crash due to invalid wasm code + CVE-2023-32212: Potential spoof due to obscured address bar + CVE-2023-32213: Potential memory corruption in FileReader::DoReadData() + CVE-2023-32214: Potential DoS via exposed protocol handlers + CVE-2023-32215: Memory safety bugs fixed in Firefox 113 and Firefox ESR 102.11 ==== mutter ==== Version update (44.1 -> 44.1+2) Subpackages: mutter-lang - Update to version 44.1+2: + screen-cast/src: Never dequeue pw_buffer's we refuse to record to. + frames: Disable XDND support on the frame window. ==== ncurses ==== Version update (6.4.20230429 -> 6.4.20230506) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20230506 > build-fixes related to configure-options and/or platform: + fix for --enable-fvisibility + fix for unusual values of --with-rel-version + fix for unusual values of --with-abi-version + fix for --disable-tcap-names + fix for termcap in nc_access.h (report by Werner Fink). - Delete patch ncurses-6.4-makeuseof_secure_open.dif as now upstream ==== patterns-base ==== Subpackages: patterns-base-base patterns-base-bootloader patterns-base-documentation patterns-base-enhanced_base patterns-base-minimal_base patterns-base-sw_management patterns-base-x11 patterns-base-x11_enhanced - base: Add wtmpdb as Y2038 safe wtmp replacement ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Use wtmpdb as Y2038 safe wtmp replacement ==== policycoreutils ==== Subpackages: policycoreutils-lang policycoreutils-python-utils python3-policycoreutils - Add python-wheel build dependency to build correctly with latest python-pip version. ==== python-blinker ==== Version update (1.5 -> 1.6.2) - Update to 1.6.2: * Type annotations are not evaluated at runtime. typing-extensions is not a runtime dependency. :pr:`94` - 1.6.1: * Ensure that py.typed is present in the distributions (to enable other projects to use blinker's typing). * Require typing-extensions > 4.2 to ensure it includes ParamSpec. :issue:`90` - 1.6: * Add a muted context manager to temporarily turn off a signal. :pr:`84` * Allow int senders (alongside existing string senders). :pr:`83` * Add a send_async method to the Signal to allow signals to send to coroutine receivers. :pr:`76` * Update and modernise the project structure to match that used by the pallets projects. :pr:`77` * Add an intial set of type hints for the project. ==== transactional-update ==== Version update (4.1.5 -> 4.2.1) Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit - Version 4.2.1 - Implement "apply" command to switch into new snapshot directly [jsc#PED-3912] - Use new snapper functionality to set default snapshot - this makes it possible to execute hooks as requested in [poo#127160], [gh#openSUSE/transactional-update#85] and [gh#openSUSE/transactional-update#105]. - Don't hardcode GRUB2 [gh#openSUSE/transactional-update#100] / [poo#127154] - Fix cleanup handler - Fix unmounting temporary mounts - Prevent loosing track of snapshots in certain rollback scenarios - these would not be marked for deletion otherwise - Document "notify" reboot method - Minimal required snapper version is 0.8.10 now, for the new snapper functionality there is a backwards compatibility layer. - Conflict with health-checker < 1.8 - the "good" snapshot detection of GRUB cannot rely on transactional-update any more due to the new apply command - Depend on usrmerge for apply command ==== vte ==== Subpackages: libvte-2_91-0 vte-lang - Add 24547fb3.patch: widget: Don't consume right clicks on gtk4. ==== wireless-regdb ==== Version update (20230213 -> 20230503) - Update to version 20230503: * wireless-regdb: update regulatory database based on preceding changes * wireless-regdb: Update regulatory rules for Hong Kong (HK) * wireless-regdb: update regulatory rules for India (IN) * wireless-regdb: Update regulatory rules for Russia (RU). Remove DFS requirement. * Update regulatory info for Russia (RU) on 6GHz ==== yast2-storage-ng ==== Version update (4.6.5 -> 4.6.8) - Allow to pass commit callbacks to inst_prepdisk client. - Needed for Agama (gh#openSUSE/agama/558). - 4.6.8 - GuidedProposal adapted to support assigning volumes to specific devices when volumes_allocate_mode is :auto (useful for Agama). - Guided Setup: display a hint for disks with sensible data transports like FCoE or NVMe/oF (bsc#1209588). - 4.6.7 - AutoYaST: correctly import legacy values for parity_algorithm. - Partitioner: when creating an MD RAID, do not ask for the chunk side when it makes no sense. Eg. RAID1 (bsc#1205172). - 4.6.6