Packages changed: MicroOS-release (20240725 -> 20240726) gnutls (3.8.5 -> 3.8.6) kdump (2.0.7 -> 2.0.9) lua54 (5.4.6 -> 5.4.7) ncurses (6.5.20240629 -> 6.5.20240713) openssl-3 powerdevil6 python-pyOpenSSL (24.1.0 -> 24.2.1) qemu (9.0.1 -> 9.0.2) xdg-utils === Details === ==== MicroOS-release ==== Version update (20240725 -> 20240726) Subpackages: MicroOS-release-appliance MicroOS-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== gnutls ==== Version update (3.8.5 -> 3.8.6) - Update to 3.8.6: * libgnutls: PBMAC1 is now supported as a MAC mechanism for PKCS#12 To be compliant with FIPS 140-3, PKCS#12 files with MAC based on PBKDF2 (PBMAC1) is now supported, according to the specification proposed in draft-ietf-lamps-pkcs12-pbmac1. * libgnutls: SHA3 extendable output functions (XOF) are now supported SHA3 XOF, SHAKE128 and SHAKE256, are now usable through a new public API gnutls_hash_squeeze. * API and ABI modifications: - gnutls_pkcs12_generate_mac3: New function - gnutls_pkcs12_flags_t: New enum - gnutls_hash_squeeze: New function * Rebase patches: - gnutls-FIPS-140-3-references.patch - gnutls-FIPS-jitterentropy.patch ==== kdump ==== Version update (2.0.7 -> 2.0.9) - upgrade to version 2.0.9 * start kdump-early earlier using DefaultDependencies=no * fadump: avoid re-registration if kernel is hotplug ready * mkdumprd: use pbl to get default kernel version (boo#1226676) ==== lua54 ==== Version update (5.4.6 -> 5.4.7) - Update to version 5.4.7: * Fixed 11 bugs from 5.4.6 * Tests now run on shared libraries - Removed skip-tests_big-endian.patch: fixed upstream ==== ncurses ==== Version update (6.5.20240629 -> 6.5.20240713) Subpackages: libncurses6 ncurses-utils terminfo-base - Add ncurses patch 20240713 + modify misc/ncurses-config.in, improved match with pkg-config output. - Add ncurses patch 20240706 + update configure script to use macro changes from dialog. + modify CF_NCURSES_PTHREADS to avoid equating package and library names. ==== openssl-3 ==== Subpackages: libopenssl3 - Build with no-afalgeng [bsc#1226463] - Security fix: [bsc#1227138, CVE-2024-5535] * SSL_select_next_proto buffer overread * Add openssl-CVE-2024-5535.patch - Build with enabled sm2 and sm4 support [bsc#1222899] ==== powerdevil6 ==== - Add patch to fix crash on display wake up (kde#490356, kde#490421): * 0001-daemon-Don-t-leave-dangling-Action-pointers-in-idle-.patch ==== python-pyOpenSSL ==== Version update (24.1.0 -> 24.2.1) - 24.2.1: * Deprecated OpenSSL.crypto.X509Req, OpenSSL.crypto.load_certificate_request, OpenSSL.crypto.dump_certificate_request. Instead, cryptography.x509.CertificateSigningRequest,s cryptography.x509.CertificateSigningRequestBuilder,s cryptography.x509.load_der_x509_csr,s or cryptography.x509.load_pem_x509_csr should be used. * Added type hints for the SSL module. #1308. * Changed OpenSSL.crypto.PKey.from_cryptography_key to accept public and private EC, ED25519, ED448 keys ==== qemu ==== Version update (9.0.1 -> 9.0.2) - roms: Build ipxe with NO_WERROR=1 (bsc#1227960) - Update to version 9.0.2: Full list of backports here: https://lore.kernel.org/qemu-devel/1718081053.366429.1238758.nullmailer@tls.msk.ru/ A selection of them is reported here too: hw/nvme: fix number of PIDs for FDP RUH update sphinx/qapidoc: Fix to generate doc for explicit, unboxed arguments char-stdio: Restore blocking mode of stdout on exit virtio: remove virtio_tswap16s() call in vring_packed_event_read() virtio-pci: Fix the failure process in kvm_virtio_pci_vector_use_one() tcg/optimize: Fix TCG_COND_TST* simplification of setcond2 block: Parse filenames only when explicitly requested iotests/270: Don't store data-file with json: prefix in image iotests/244: Don't store data-file with protocol in image qcow2: Don't open data_file with BDRV_O_NO_IO tests: add testing of parameter=3D1 for SMP topology (bsc#1228169) hw/core: allow parameter=3D1 for SMP topology on any machine ... ==== xdg-utils ==== - Separate xdg-screensaver into a subpackage to isolate Perl dependency (bsc#1216537).