Packages changed: Mesa (23.3.4 -> 23.3.5) Mesa-drivers (23.3.4 -> 23.3.5) catfish cpio (2.14 -> 2.15) ethtool (6.6 -> 6.7) gc (8.2.4 -> 8.2.6) grub2 jasper (4.1.2 -> 4.2.0) libXext (1.3.5 -> 1.3.6) libXvMC (1.0.13 -> 1.0.14) libei (1.2.0 -> 1.2.1) libgsf (1.14.51 -> 1.14.52) libpciaccess (0.17 -> 0.18) libvpl libxcb libxkbfile (1.1.2 -> 1.1.3) menulibre mousepad (0.6.1 -> 0.6.2) netpbm pipewire (1.0.2 -> 1.0.3) python-MarkupSafe (2.1.4 -> 2.1.5) python-h11 python-msgpack (1.0.5 -> 1.0.7) python-pip qemu (8.1.3 -> 8.2.0) ristretto (0.13.1 -> 0.13.2) rp-pppoe rpm sendmail (8.17.2 -> 8.18.1) wireplumber xfce4-screenshooter (1.10.4 -> 1.10.5) xkbcomp (1.4.6 -> 1.4.7) xprop (1.2.6 -> 1.2.7) yast2-trans (84.87.20240126.9c7185e3f6 -> 84.87.20240205.897f2593b3) === Details === ==== Mesa ==== Version update (23.3.4 -> 23.3.5) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libOSMesa8 libgbm1 - Update to bugfix release 23.3.5 - -> https://docs.mesa3d.org/relnotes/23.3.5.html - re-enabled rusticl on sle15-sp6 after linkpac'ing rust-bindgen in X11:XOrg project ==== Mesa-drivers ==== Version update (23.3.4 -> 23.3.5) Subpackages: Mesa-dri Mesa-gallium Mesa-libva libxatracker2 - Update to bugfix release 23.3.5 - -> https://docs.mesa3d.org/relnotes/23.3.5.html - re-enabled rusticl on sle15-sp6 after linkpac'ing rust-bindgen in X11:XOrg project ==== catfish ==== Subpackages: catfish-lang - As long as a new Python version does not ship a broken python3-distutils, like python311 did in its early days, there is no need to deal with or skip a specific python version at all. Disable all %%{python_module ...} and skip_python... stuff again. - Don't use %%{python_module ...} as we only build for the default Python interpreter. python312 still needs to be skipped due to python3-distutils! - Skip python312 for now until all required Python modules have been built. - Use %%{python_module ...} to specify required Python modules to build this package. ==== cpio ==== Version update (2.14 -> 2.15) Subpackages: cpio-lang cpio-mt - Update to 2.15: * Fix the operation of --no-absolute-filenames --make-directories. * Restore access and modification times of symlinks in copy-in and copy-pass modes. - Remove fix-operation-no-absolute-filenames.patch ==== ethtool ==== Version update (6.6 -> 6.7) Subpackages: ethtool-bash-completion - update to upstream release 6.7 * Feature: support for setting TCP data split * Fix: fix new gcc14 warning * Fix: fix SFF-8472 transceiver module identification (-m) ==== gc ==== Version update (8.2.4 -> 8.2.6) - Update to release 8.2.6 * Compiler warning fixes on various non-Linux platforms * Fix null dereference in check_finalizer_nested if redirecting malloc on Linux * Fix race in init_lib_bounds on Linux/glibc-2.34+ if redirecting malloc ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - Fix build error on gcc-14 (bsc#1218949) * 0001-squash-ieee1275-ofpath-enable-NVMeoF-logical-device-.patch ==== jasper ==== Version update (4.1.2 -> 4.2.0) - Update to 4.2.0: * Add the JAS_PACKAGING option to the CMake build in an attempt to allow easier control over rpath settings by packagers of JasPer. * Remove a number of obsolete scripts. * Make some cosmetic changes to the code for the JPC codec in order to improve readability (#371). * Fix a portability bug related to threads/atomics. * Replace some lingering uses of strtok in the JPC coder with jas_strtok, since the use of strtok is problematic in multithreading contexts. ==== libXext ==== Version update (1.3.5 -> 1.3.6) - Update to version 1.3.6 * Wrap Xext*CheckExtension() in do { ... } while(0) * configure: raise minimum autoconf requirement to 2.70 * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * _xgeGetExtensionVersion should not free info on failure * Check for malloc failure in _xgeGetExtensionVersion * _xgeDpyClose: handle NULL return from _xgeFindDisplay * XEVI: fix -Walloc-size ==== libXvMC ==== Version update (1.0.13 -> 1.0.14) - Update to version 1.0.14 * Make doc install path from meson match autotools * gitlab CI: add a basic build test * gitlab CI: Add libtool to required packages * gitlab CI: stop requiring Signed-off-by in commits * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * Convert to X.Org standard code style * Variable scope reductions as recommended by cppcheck * Replace custom copy of GetReq macro with call to Xlib 1.5's _XGetRequest * Handle implicit conversion warnings from clang - switched to meson build system ==== libei ==== Version update (1.2.0 -> 1.2.1) - Update to release 1.2.1 * Previously, using OEFFIS_DEVICE_ALL_DEVICES in oeffis_create_session() would erroneously result in the portal selecting no devices instead of all. ==== libgsf ==== Version update (1.14.51 -> 1.14.52) Subpackages: gsf-office-thumbnailer libgsf-1-114 libgsf-lang - Update to version 1.14.52: + xml: Fix build with libxml2 2.12. ==== libpciaccess ==== Version update (0.17 -> 0.18) - Update to version 0.18 * Remove "All rights reserved" from Oracle copyright notices * Try fopen(".../pci.ids", "re") on Solarish systems as well * Remove autotools build * gitlab-ci: use `meson setup` * gitlab-ci: don't bother to configure meson for the version check * gitlab-ci: remove unnecessary call to `meson configure` * FreeBSD: Fallback to /usr/share/misc/pci_vendors * FreeBSD: Remove sparc64 code * Fix compilation warnings when building against hurd-amd64. ==== libvpl ==== - Re-enable build on aarch64 ==== libxcb ==== Subpackages: libxcb-composite0 libxcb-damage0 libxcb-dpms0 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-randr0 libxcb-record0 libxcb-render0 libxcb-res0 libxcb-shape0 libxcb-shm0 libxcb-sync1 libxcb-xfixes0 libxcb-xinerama0 libxcb-xinput0 libxcb-xkb1 libxcb-xv0 libxcb1 - devel package: added missing Requires to libxcb-dbe0 (boo#1219572) ==== libxkbfile ==== Version update (1.1.2 -> 1.1.3) - update to 1.1.3 * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * Set close-on-exec when opening files * _XkbMakeAtom: remove check for impossible case * _XkbInitAtoms: check for malloc() failure * XkbChangeAtomDisplay: stop leaking atom name * XkbCFReportError: avoid -Wformat-nonliteral warning * XkbWriteCFile: stop leaking header file ifdef name * DefaultParser: avoid -Wimplicit-fallthrough warnings * xkbtext.c: Add tbGetBufferString helper function * XkbIndentText: Fix -Wsign-compare warning * Fix -Wsign-compare warnings in xkbtext.c & xkmread.c * Add a meson build system - switched to meson build system ==== menulibre ==== - As long as a new Python version does not ship a broken python3-distutils, like python311 did in its early days, there is no need to deal with or skip a specific python version at all. Disable all %%{python_module ...} and skip_python... stuff again. - Don't use %%{python_module ...} as we only build for the default Python interpreter. python312 still needs to be skipped due to python3-distutils! - Skip python312 for now until all required Python modules have been built. - Use %%{python_module ...} to specify required Python modules to build this package. ==== mousepad ==== Version update (0.6.1 -> 0.6.2) Subpackages: libmousepad0 mousepad-lang - Update to version 0.6.2 * Update copyright year * history: Default to yes when user is asked to restore previous session * build: Search for bind_textdomain_codeset in libintl too * tests: Increase timeout a bit * tests: Check for pwait/pidwait * dialogs: Do not reuse text buffer to test encoding in save-as dialog * history: Remove dead code * history: Rework paste menu * Move paste history to mousepad-history.c * window: Fix GVariant management * Do not scroll text view when zooming in or out * file-monitoring: Delay emission of "externaly-modified" signal * Fix a typo in a comment, additionnal → additional. * Add icons at missing sizes, clean up SVG metadata * search: Properly reset current match * Translation Updates ==== netpbm ==== Subpackages: libnetpbm11 - added patches fix CVE-2017-5849 [bsc#1022790], CVE-2017-5849 [bsc#1022791] + netpbm-use-byrow-when-needed.patch ==== pipewire ==== Version update (1.0.2 -> 1.0.3) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-lang pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.0.3: * Highlights - Fix ALSA version check. This should allow the alsa plugin to work again. - Some small fixes and improvements. * PipeWire - Escape @DEFAULT_SINK@ in the conf files. * Modules - Improve logging in module-pipe-tunnel. * SPA - Always recheck rate matching in ALSA when moving drivers. This fixes a potential issue where the adaptive resampler would not be activated in some cases. * ALSA - Fix ALSA version check. This should allow the alsa plugin to work again. ==== python-MarkupSafe ==== Version update (2.1.4 -> 2.1.5) - update to 2.1.5: * Fix striptags not collapsing spaces. :issue:`417` ==== python-h11 ==== - spec cleanup ==== python-msgpack ==== Version update (1.0.5 -> 1.0.7) - update to 1.0.7: * remove inline macro for msvc * do not fallback on build error * fix: build status badge * Drop python2 support * Drop Python 3.6 support * try Cython 3.0 * sphinx-related work ==== python-pip ==== - Fix shebang path for "pip3.XX" binaries ==== qemu ==== Version update (8.1.3 -> 8.2.0) Subpackages: qemu-accel-tcg-x86 qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-pr-helper qemu-seabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-x86 - Fix a build issue of OVMF caused by https://gitlab.com/qemu-project/qemu/-/issues/2064: * target/i386: fix incorrect EIP in PC-relative translation blocks * target/i386: Do not re-compute new pc with CF_PCREL - Update to latest upstream release, 8.2.0: The full list of changes are available at: https://wiki.qemu.org/ChangeLog/8.2 Highlights include: * New virtio-sound device emulation * New virtio-gpu rutabaga device emulation used by Android emulator * New hv-balloon for dynamic memory protocol device for Hyper-V guests * New Universal Flash Storage device emulation * Network Block Device (NBD) 64-bit offsets for improved performance * dump-guest-memory now supports the standard kdump format * ARM: Xilinx Versal board now models the CFU/CFI, and the TRNG device * ARM: CPU emulation support for cortex-a710 and neoverse-n2 * ARM: architectural feature support for PACQARMA3, EPAC, Pauth2, FPAC, FPACCOMBINE, TIDCP1, MOPS, HBC, and HPMN0 * HPPA: CPU emulation support for 64-bit PA-RISC 2.0 * HPPA: machine emulation support for C3700, including Astro memory controller and four Elroy PCI bridges * LoongArch: ISA support for LASX extension and PRELDX instruction * LoongArch: CPU emulation support for la132 * RISC-V: ISA/extension support for AIA virtualization support via KVM, and vector cryptographic instructions * RISC-V: Numerous extension/instruction cleanups, fixes, and reworks * s390x: support for vfio-ap passthrough of crypto adapter for protected virtualization guests * Tricore: support for TC37x CPU which implements ISA v1.6.2 * Tricore: support for CRCN, FTOU, FTOHP, and HPTOF instructions * x86: Zen support for PV console and network devices - Patch added (from upstream stable tree): * include/ui/rect.h: fix qemu_rect_init() mis-assignment - Some packaging and dependencies fixes: * [openSUSE] rpm: restrict canokey to openSUSE only * [openSUSE] rpm: fix virtiofsd dependency on 32 bit systems * [openSUSE] rpm: add support for canokeys (boo#1217520) - Rearrange dependencies and subpackages and filter features for ALP * [openSUSE] rpm: disable Xen support in ALP-based distros * [openSUSE] rpm: some more refinements of inter-subpackage dependencies - Fix boo#1084909 and create a new qemu-spice metapackage: * [openSUSE] rpm: normalize hostname, for reproducible builds (#44) * [openSUSE] rpm: new subpackage, for SPICE ==== ristretto ==== Version update (0.13.1 -> 0.13.2) Subpackages: ristretto-lang - Update to version 0.13.2 * Update copyright year * Fix duplicate mnemonic in File menu * image_viewer: Add missing sanity check * Fix criticals about unset GIO attributes * viewer: Fix possible crash when closing while an image is loading * Ensure that file manager proxy creation is non-blocking * Add icons at missing sizes, clean up SVG metadata * Translation Updates ==== rp-pppoe ==== - Removed rcpppoe and rcpppoe-server rudiments. ==== rpm ==== Subpackages: librpmbuild10 - Need to mention the changed patches for the python-setuptools to cmake migration: * Drop python_setup.diff * Add cmake_python_version.diff ==== sendmail ==== Version update (8.17.2 -> 8.18.1) Subpackages: libmilter1_0 - Update to version sendmail 8.18.1 2024/01/31 * sendmail is now stricter in following the RFCs and rejects some invalid input with respect to line endings and pipelining: - Prevent transaction stuffing by ensuring SMTP clients wait for the HELO/EHLO and DATA response before sending further SMTP commands. This can be disabled using the new srv_features option 'F'. Issue reported by Yepeng Pan and Christian Rossow from CISPA Helmholtz Center for Information Security. - Accept only CRLF . CRLF as end of an SMTP message as required by the RFCs, which can disabled by the new srv_features option 'O'. - Do not accept a CR or LF except in the combination CRLF (as required by the RFCs). These checks can be disabled by the new srv_features options 'U' and 'G', respectively. In this case it is suggested to use 'u2' and 'g2' instead so the server replaces offending bare CR or bare LF with a space. It is recommended to only turn these protections off for trusted networks due to the potential for abuse. * Full DANE support is available if OpenSSL versions 1.1.1 or 3.x are used, i.e., TLSA RR 2-x-y and 3-x-y are supported as required by RFC 7672. * OpenSSL version 3.0.x is supported. Note: OpenSSL 3 loads by default an openssl.cnf file from a location specified in the library which may cause unwanted behaviour in sendmail. Hence sendmail sets the environment variable OPENSSL_CONF to /etc/mail/sendmail.ossl to override the default. The file name can be changed by defining confOPENSSL_CNF in the mc file; using an empty value prevents setting OPENSSL_CONF. Note: referring to a file which does not exist does not cause an an error. * Two new values have been added for {verify}: "DANE_TEMP": DANE verification failed temporarily. "DANE_NOTLS": DANE was required but STARTTLS was not offered by the server. The default rules return a temporary error for these cases, so delivery is not attempted. * If the TLS setup code in the client fails and DANE requirements exist then {verify} will be set to "DANE_TEMP" thus preventing delivery by default. * DANE related logging has been slightly changed for clarification: "DANE configured in DNS but no STARTTLS available" changed to "DANE configured in DNS but STARTTLS not offered" * When the compile time option USE_EAI is enabled, vacation could fail to respond when it should (the code change in 8.17.2 was incomplete). Problem reported by Alex Hautequest. * If SMTPUTF8 BODY=7BIT are used as parameters for the MAIL command the parsing of UTF8 addresses could fail (USE_EAI). * If a reply to a previous RCPT was received while sending another RCPT in pipelining mode then parts of the reply could have been assigned to the wrong RCPT. * New DontBlameSendmail option CertOwner to relax requirement for certificate public and private key ownership. Based on suggestion from Marius Strobl of the FreeBSD project. * clt_features was not checked for connections via Unix domain sockets. * CONFIG: FEATURE(`enhdnsbl') did not handle multiple replies from DNS lookups thus potentially causing random "false negatives". Note: the fix creates an incompatibility: the arguments must not have a trailing dot anymore because the -a. option has been removed (as it only applies to the entire result, not individual values). * CONFIG: New FEATURE(`fips3') for basic FIPS support in OpenSSL 3. * VACATION: Add support for Return-Path header to set sender to match OpenBSD and NetBSD functionality. * VACATION: Honor RFC3834 and avoid an auto-reply if 'Auto-Submitted: no' is found in the headers to match OpenBSD and NetBSD functionality. * VACATION: Avoid an auto-reply if a 'List-Id:' is found in the headers to match OpenBSD functionality. * VACATION: Add support for $SUBJECT in .vacation.msg which is replaced with the first line of the subject of the original message to match OpenBSD and NetBSD functionality. * New Files: cf/feature/fips3.m4 devtools/OS/Darwin.23.x - This release fixes CVE-2023-51765 (bsc#1218351) - Port and rename patch sendmail-8.17.2.dif which is now sendmail-8.18.1.dif ==== wireplumber ==== Subpackages: libwireplumber-0_4-0 wireplumber-audio wireplumber-lang - Add patch to only enable bluetooth when audio support is enabled by installing wireplumber-audio (bsc#1219411): * fix-bsc1219411.patch ==== xfce4-screenshooter ==== Version update (1.10.4 -> 1.10.5) Subpackages: xfce4-screenshooter-lang xfce4-screenshooter-plugin - Update to 1.10.5 * Add imgur support as custom action (!51) * Translation Updates - Recommend curl, jq and zenity for the new script imgur.sh ==== xkbcomp ==== Version update (1.4.6 -> 1.4.7) - update to 1.4.7 * This release mainly focuses on code cleanup and improving maintainability and making static analysis work better on this code base. It also fixes a bug that could cause build failures with gcc when the -ftracer option was used. ==== xprop ==== Version update (1.2.6 -> 1.2.7) - Update to version 1.2.7 * This release fixes a failure to build with C23 compilers. ==== yast2-trans ==== Version update (84.87.20240126.9c7185e3f6 -> 84.87.20240205.897f2593b3) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240205.897f2593b3: * New POT for text domain 'control'. * Translated using Weblate (Russian) * Translated using Weblate (Georgian) * Translated using Weblate (Georgian) * Translated using Weblate (Georgian) * New POT for text domain 'installation'.