Removed rpms
============
- kernel-livepatch-5_14_21-150500_46-default
- kernel-livepatch-5_14_21-150500_5-rt
- libarm_compute29
- libarm_compute_core29
- libarm_compute_graph29
- libopenlibm3
- libopenshot21
- libparaview5_10
- libvolk2_5
- python3-ucsmsdk
Added rpms
==========
- SDL2_Pango-devel
- budgie-backgrounds
- caja-extension-sendto-blueman
- cargo1.68
- casacore
- casacore-devel
- casacore-openmpi2
- casacore-openmpi2-devel
- casacore-openmpi3
- casacore-openmpi3-devel
- casacore-openmpi4
- casacore-openmpi4-devel
- dlt-viewer
- grandorgue
- grandorgue-demo
- grub2-theme-breeze
- hexyl
- i3status-rust
- kernel-livepatch-5_14_21-150500_47-default
- lemon
- lemon-devel
- lemon-doc
- libSDL2_Pango4
- libSingular-4_3_1
- libSingular-devel
- libarm_compute30
- libarm_compute_core30
- libarm_compute_graph30
- libcasacore7
- libcasacore7-openmpi2
- libcasacore7-openmpi3
- libcasacore7-openmpi4
- libemon1_3_1
- libexmdbpp-devel
- libexmdbpp0
- libfactory-4_3_1
- libfactory-devel
- libfactory-gftables
- libomalloc-4_3_1
- libomalloc-devel
- libopenlibm4
- libopenpgl0
- libopenshot23
- libparaview5_11
- libpolys-4_3_1
- libpolys-devel
- librist-devel
- librist4
- libsingular_resources-4_3_1
- libsingular_resources-devel
- libvolk3_0
- mapi-header-php
- mplus-code-latin-variable-fonts
- mplus-code-latin50-fonts
- mplus-code-latin60-fonts
- mplus1-code-fonts
- mplus1-code-variable-fonts
- mplus1-fonts
- mplus1-variable-fonts
- mplus2-fonts
- mplus2-variable-fonts
- nautilus-extension-sendto-blueman
- nemo-extension-sendto-blueman
- openpgl-devel
- openpgl-doc
- osv-scanner
- oxygen5-sounds
- pari-nflistdata
- perl-Data-Hexdumper
- plasma5-mobile
- plasma5-mobile-lang
- procs
- python3-casacore
- python3-pyexmdb
- rist-tools
- rovasiras-kende-fonts
- rovasiras-roga-fonts
- rust1.68
- singular
- ucblogo
- ucblogo-doc
- velociraptor
- velociraptor-client
- velociraptor-kafka-humio-gateway
- zig
- zig-libs
- zig-rpm-macros
Package Source Changes
======================
ART
+- Update to 1.17.2:
+ * fixed bad interaction between film negative and dehaze or dynamic range compression
+ * fixed regression in loading pixel-shift raw files
+ * draw the crop guides in the batch queue thumbnails
+ * spot removal: fixed history messages
+ * PDAF lines filter: fixed oob accesses
+ * added script to import wb presets from darktable
+ * added DCP profiles from RT
+ * film negative: show deprecation warning for "color space"
+ * grain: removed redundant "scale" parameter
+ * metadata: write star rating to the output image
+ * highlight recovery: fixed crash due to typo
+ * camconst: added raw_crop for Fuji X-H2
+ * support camconst raw_crop when using the libraw decoder
+ * dcraw: reject RGBA tiff files
+ * replaced "balanced" highlight recovery with "inpaint opposed" from darktable
+
+- Update to 1.16.4:
+ * crop window: reset the tool to "hand" after a "spot wb" action
+ * allow to save pngs uncompressed
+ * improved support for custom loaders and savers
+ * metadata: trying to improve lens identification for canon cameras
+ * reverted thumbnail.cc change due to glitch in the file browser (issue #267)
+ * trying to improve the (perceived) responsiveness of the file browser
+
Catch2
+- Update to version 3.3.0:
+ * Added MessageMatches exception matcher
+ (gh#catchorg/Catch2#2570).
+ * Added RangeEquals and UnorderedRangeEquals generic range
+ matchers (gh#catchorg/Catch2#2377).
+ * Added SKIP macro for skipping tests from within the test body
+ (gh#catchorg/Catch2#2360).
+ * Restored support for PPC Macs in the break-into-debugger
+ functionality (gh#catchorg/Catch2#2619).
+ * Made our warning suppression compatible with CUDA toolkit pre
+ 11.5 (gh#catchorg/Catch2#2626).
+ * Cleaned out some static analysis complaints.
+ * Fixed macro redefinition warning when NVCC was reporting as
+ MSVC (gh#catchorg/Catch2#2603).
+ * Fixed throws in generator constructor causing the whole binary
+ to abort (gh#catchorg/Catch2#2615).
+ * Fixed missing transitive include with libstdc++13
+ (gh#catchorg/Catch2#2611).
+ * Improved support for dynamic library build with non-MSVC
+ compilers on Windows (gh#catchorg/Catch2#2630).
+ * When used as a subproject, Catch2 keeps its generated header
+ in a separate directory from the main project
+ (gh#catchorg/Catch2#2604).
+
+- Update to version 3.2.1:
+ * Fix the reworked decomposer to work with older (pre 9) GCC
+ versions (gh#catchorg/Catch2#2571).
+- Changes from version 3.2.0:
+ * Added `CATCH_CONFIG_GETENV` compile-time toggle
+ * (gh#catchorg/Catch2#2562).
+ * Added support for more Bazel test environment variables.
+ * Bunch of small tweaks and improvements in reporters.
+ * Added support for asserting on types that can only be compared
+ * with literal 0 (gh#catchorg/Catch2#2555).
+ * Simplified internals of matcher related macros.
+ * Cleaned out some warnings and static analysis issues.
+ * Fixed serialization of test filters so the output roundtrips.
+ * Catch2's build no longer leaks `-ffile-prefix-map` setting to
+ * dependees (gh#catchorg/Catch2#2533).
+
ComputeLibrary
+- Update to 23.02:
+ * Public major release
+ * Documentation (API, changelogs, build guide,
+ contribution guide, errata, etc.) available here:
+ https://arm-software.github.io/ComputeLibrary/v23.02
+
ImageMagick
+ fix CVE-2023-1289 [bsc#1209141], segmentation fault and possible DoS via specially crafted SVG
+ + ImageMagick-CVE-2023-1289.patch
+
+- security update
+- added patches
MozillaThunderbird
+- Mozilla Thunderbird 102.9.1
+ * fixed: Thunderbird was unable to open file URLs from command
+ line (URLs beginning with "file://") (bmo#1816343)
+ * fixed: Source strings for localized builds not uploaded to
+ FTP as expected (bmo#1817086)
+ * fixed: Visual and theme improvements
+ (bmo#1821358,bmo#1822286)
+ * fixed: Security fixes
+ MFSA 2023-12 (bsc#1209953)
+ * CVE-2023-28427 (bmo#1822595)
+ Matrix SDK bundled with Thunderbird vulnerable to denial-of-
+ service attack
+
+- Mozilla Thunderbird 102.9
+ * fixed: Notification about a sender's changed OpenPGP key was
+ not immediately visible (bmo#1814003)
+ * fixed: TLS Certificate Override dialog did not appear when
+ retrieving messages via IMAP using "Get Messages" context
+ menu (bmo#1816596)
+ * fixed: Spellcheck dictionaries were missing from localized
+ Thunderbird builds that should have included them
+ (bmo#1818257)
+ * fixed: Tooltips for "Show/Hide" calendar toggle did not
+ display (bmo#1809557)
+ * fixed: Various security fixes
+ MFSA 2023-11 (bsc#1209173)
+ * CVE-2023-25751 (bmo#1814899)
+ Incorrect code generation during JIT compilation
+ * CVE-2023-28164 (bmo#1809122)
+ URL being dragged from a removed cross-origin iframe into the
+ same tab triggered navigation
+ * CVE-2023-28162 (bmo#1811327)
+ Invalid downcast in Worklets
+ * CVE-2023-25752 (bmo#1811627)
+ Potential out-of-bounds when accessing throttled streams
+ * CVE-2023-28163 (bmo#1817768)
+ Windows Save As dialog resolved environment variables
+ * CVE-2023-28176 (bmo#1808352, bmo#1811637, bmo#1815904,
+ bmo#1817442, bmo#1818674)
+ Memory safety bugs fixed in Thunderbird 102.9
+
alacritty
+- Update to version 0.11.0:
+ * Packaging
+ - Minimum Rust version has been bumped to 1.57.0
+ - Renamed io.alacritty.Alacritty.appdata.xml to org.alacritty.Alacritty.appdata.xml
+ - Renamed io.alacritty to org.alacritty for Alacritty.app
+ * Fixed
+ - Creating the IPC socket failing if WAYLAND_DISPLAY contains an absolute path
+ - Crash when resetting the terminal while in vi mode
+ - font.glyph_offset not live reloading
+ - Failure when running on 10-bit color system
+ - The colors being slightly different when using srgb displays on macOS
+ - Vi cursor blinking not reset when navigating in search
+ - Scrolling and middle-clicking modifying the primary selection
+ - Bottom gap for certain builtin box drawing characters
+ - Incorrect built-in glyphs for U+2567 and U+2568
+ - Character mappings in the DEC special graphics character set (line drawing)
+ - Window flickering on resize on Wayland
+ - Unnecessary config reload when using /dev/null as a config file
+ - Windows Open Alacritty Here on root of drive displaying error
+ - On macOS, font.use_thin_strokes did not work since Big Sur
+ - On macOS, trying to load a disabled font would crash
+ - On macOS, Alacritty sessions did not appear in the list of tty sessions for w and who
+ - Cursor not hiding on GNOME Wayland
+ - Font having different scale factor after monitor powering off/on on X11
+ - Viewport not updating after opening a new tabbed window on macOS
+ - Terminal not exiting sometimes after closing all windows on macOS
+ - CPU usage spikes due to mouse movements for unfocused windows on X11/Windows
+ - First window on macOS not tabbed with system prefer tabs setting
+ - Window being treaten as focused by default on Wayland
+ * Removed
+ - font.use_thin_strokes config field; to use thin strokes on macOS, set
+ - AppleFontSmoothing to 0 with $ defaults write -g AppleFontSmoothing -int 0
+- Add _constraints file. 8GB of RAM to build alacritty
+
argus
+- Replace wrong libnsl build require with correct libtirpc one
+- fix-configure-libwrap-dependencies.diff: libwrap does not
+ depend on libnsl
+
-- license update: GPL-2.0 and LGPL-2.1 and BSD-3-Clause and MIT
- Based on audit of 3.0.6.1
-
atuin
+- Fix installation of shell completions.
+- Add extra shell stuff in docs.
+
+- Update to version 12.0.0:
+ * Allow stateless commands to be run without config/database by @c-14 in #544
+ * Clear RBUFFER when accepting output from atuin by @c-14 in #545
+ * Add installer support for Termux by @laurentlbm in #540
+ * Bump lukemathwalker/cargo-chef from latest-rust-1.63 to latest-rust-1.64.0 by @dependabot in #546
+ * Add contributors command by @ellie in #550
+ * Add style to config.toml and config.md by @xfzv in #552
+ * Fix compatability with fish vi key bindings by @shreve in #541
+ * add some error messages by @conradludgate in #510
+ * update zh-CN docs by @helbing in #539
+ * Bump debian from bullseye-20220822-slim to bullseye-20221004-slim by @dependabot in #551
+ * Add automatic update checking by @ellie in #555
+ * Bump sqlx from 0.5.13 to 0.6.2 by @dependabot in #536
+ * Bump indicatif from 0.16.2 to 0.17.1 by @dependabot in #537
+ * Bump rpassword from 6.0.1 to 7.0.0 by @dependabot in #530
+ * Bump tui from 0.18.0 to 0.19.0 by @dependabot in #531
+ * Bump rmp-serde from 1.1.0 to 1.1.1 by @dependabot in #557
+ * Bump unicode-width from 0.1.9 to 0.1.10 by @dependabot in #535
+ * rollup of 5 dependency commits by @conradludgate in #562
+ * Add message begging for help lol turtle by @ellie in #569
+ * upgrade clap by @conradludgate in #568
+ * Configure reqwest to use native platform certs by @wpbrz in #574
+ * Bump async-trait from 0.1.57 to 0.1.58 by @dependabot in #575
+ * Never use HISTFILE for fish shell import by @patricksjackson in #573
+ * Respect fish shell's builtin private mode by @patricksjackson in #577
+ * Bump clap from 4.0.15 to 4.0.18 by @dependabot in #578
+ * docs: add more details about date parsing in the stats command by @bvergnaud in #579
+ * Make fuzzy search the default by @ellie in #591
+ * Update server.md by @pevogam in #589
+ * Exit with return code 1 when no results are found in atuin search command by @TymanWasTaken in #489
+ * Update README.md with antigen instruction. by @DanielAtCosmicDNA in #549
+ * Build ARM64 releases & update runners by @Absolucy in #593
+ * Add local event log storage by @ellie in #390
+ * fix #596: Avoid drawing a command section beyond the width of the list by @s0 in #597
+ * Add setting for keeping typed query when exiting by @s0 in #451
+ * Fix copy/paste artifact by @EricCrosson in #598
+ * Release v12 by @ellie in #599
+
bind
+- Update to release 9.16.38
+ Bug Fixes:
+ * A constant stream of zone additions and deletions via rndc
+ reconfig could cause increased memory consumption due to
+ delayed cleaning of view memory. This has been fixed.
+ * The speed of the message digest algorithms (MD5, SHA-1, SHA-2),
+ and of NSEC3 hashing, has been improved.
+ * Building BIND 9 failed when the --enable-dnsrps switch for
+ ./configure was used. This has been fixed.
+ [jsc#SLE-24600]
+- Updated keyring and signature
+
bluedevil5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
blueman
+- Update to version 2.3.5:
+ * Right click menu was pointing to the wrong list row
+ * Double click to connect
+- Changes from version 2.3.4:
+ * Errors when connected to a device with the DisconnectItems plugin enabled
+- Changes from version 2.3.3:
+ * Issues with NM PANU connections of equally named devices
+ * Submenus in KDE Plasma tray
+ * Avoid using StatusNotifierItem and GtkStatusIcon icons in parallel
+ * Do not re-use dbusmenu item identifiers; avoids issues at least with
+ gnome-shell-extension-appindicator
+- Changes from version 2.3.2:
+ * StatusNotifierItem submenus did not work in lxqt-panel (@niknah)
+ * StatusNotifierItem vanished on panel restarts
+ * StatusNotifierItem compatibility issues with libdbusmenu used at least
+ by xfce4-panel and Waybar
+ * StatusNotifierItem showed the menu on left click in xfce4-panel
+- Changes from version 2.3.1:
+ * StatusNotifierItem sent an incomplete NewStatus signal.
+ * Avoid statusbar resize when showing progressbar
+- Changes from version 2.3.0:
+ * Blocked emblem was not visible for scales other than 1
+ * Audio profile switcher in applet menu (@abhijeetviswa)
+ * Symbolic tray icon option (GSettings switch symbolic-status-icons in
+ org.blueman.general)
+ * Replace AppIndicator with DBus StatusNotifierItem
+ * Use a GtkTreeModelFilter to show/hide unnamed devices
+ * Replace sigint hack with GLib to catch it
+ * Port meson from deprecated python3 module
+ * Rework battery handling
+ * Merge Battery applet plugin into ConnectionNotifier
+ * Symbolic icons and small UI improvements
+- Changes from version 2.2.5:
+ * Fix network interface iteration on 32 bit systems
+ * Manager: Fix cancel button in send-note dialog
+ * Fix battery and signals bars
+- Removed blueman-2.2.4-ayatana-appindicator.patch as Appindicator
+ has been replaced with DBus StatusNotifierItem
+- Dependencies.md file is no longer packaged
+
+- Do not recommend -lang package: the auto-generated -lang package
+ already contains relevant supplements.
+
+- Added iproute2 build dependency to satisfy ip requirement
+
+- Update to version 2.2.4:
+ * Dropped the PIN database.
+ * Fix that blueman-mechanism accepted arbitrary file paths and
+ returned the errors from trying to open them,
+ see https://github.com/blueman-project/blueman/security/advisories/GHSA-3r9p-m5c8-8mw8
+- Add blueman-2.2.4-ayatana-appindicator.patch: Support
+ Ayatana AppIndicators.
+- Require dbus(org.freedesktop.Notifications) instead of
+ notification-daemon.
+
+- Disable agent startup on Pantheon desktop
+
+- Update to version 2.2.3
+ * Recent connections disabled after suspend and resume
+ * Service authorization notifications did not respond
+ * Passkeys did not get displayed
+- Updates from version 2.2.2
+ * Issues with power level bars
+ * Error message in blueman-mechanism
+
+- Update to version 2.2.1
+ * New Desktop notifications on connect / disconnect
+ * New notifications with battery level for connecting devices
+ * Allow cancelling device connection attempts
+ * Allow opening device menus via keyboard (Shift+F10 or menu key)
+ * Add Ctrl+Q and Ctrl+W accelerators for closing blueman-manager
+ * Stop discovery and retry connection for broken adapter drivers
+ * Improved passkey handling
+ * Auto-connect settings for supported services
+ * Fix hide devices with no name
+ * Fix disconnecting NMDevice
+ * Fix DiscvManager plugin showed its icon unreliably
+ * Drop blueman-report, and blueman-assistant
+- Add subpackages for caja, nautilus, and nemo sendto extensions
+
- * Security Release for CVE-2020-15238 (boo#1178196)
+ * Security Release for CVE-2020-15238 (bsc#1178196)
breeze
+- Add patches to make the window outline configurable (kde#465948):
+ * 0001-Outline-intensity-setting.patch
+ * 0002-Undo-some-string-changes-from-the-preceding-commit.patch
+
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * Setting height before adding margins
+ * Calling expandSize in flat comboboxes too
+
breeze-gtk
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * gtk3, gtk4: apply searchbar styles to the box inside the revealer inside the searchbar
+ * gtk3, gtk4: Make image-buttons have min-height
+ * Remove margins between linked buttons
+
broot
+- Update to 1.16.2:
+ * you can restrict the panels in which verbs apply with the verb configuration panels parameter
+ * fixes ctrl-left not usable anymore to remove filtering in preview
+ * status messages now displayed on toggling (for example showing hidden files)
+ * New escaping rules let you skip many \, especially when building regexes
+ * --sort-by-type-dirs-first and --sort-by-type-dirs-last - Fix
+ * modal: in intput mode, uppercase letters don't trigger verbs anymore
+ * selecting lines up or down with the mouse wheel now wraps in both direction
+ * Terminal background luma determination now works on all tested unixes, including MacOS
+ * Major Feature: imports (A configuration file can now import one or several other ones)
+ * advice to hit alt-i and|or alt-h when no file is visible
+ * examples on search modes in help screen
+ * close the staging area when it's emptied with a verb (e.g. on :rm)
+
budgie-screensaver
+- Update to version 5.1.0+0:
+ * Bump version
+ * Move mkrelease.sh to scripts folder
+ * Use GdkSeat to grab input
+ * Resolve most compiler warnings
+ * Add back options for xf86gamma, no-locking, and consolekit
+ * Use bullet for invisible char in entry.
+ * Add History section to README
+
cfengine
+- Update to version 3.21.0:
+ * Added cf-support utility for generating support information
+ (ENT-9037)
+ * Adjusted cf-check and package module code for empty updates list
+ (ENT-9050)
+ * '$(this.promiser)' can now be used in 'files' promise attributes
+ 'if', 'ifvarclass' and 'unless' (CFE-2262, ENT-7008)
+ * Fixed storage promise for nfs on MacOS (CFE-4093)
+ * Fixed definition of _low_ldt class from cf-monitord (CFE-4022)
+ * Insertion of contents of a file with blank lines into another
+ file with blank lines no longer results in mixed content (ENT-8788)
+ * Added suggestion to use a negative lookahead when non-convergent edits
+ are attempted (CFE-192)
+ * Unresolved function calls that return scalar values are now
+ considered OK for constraints expecting strings during syntax
+ check (CFE-4094)
+ * cf-monitord now honors monitorfacility in body monitor control
+ (ENT-4492)
+ * cf-serverd now periodically reloads its policy if it contains
+ unresolved variables (e.g. $(sys.policy_hub) in 'allowconnect'). (ENT-8456)
+ * cf-serverd now starts in the network-online.target on systemd-based
+ systems (ENT-8456)
+ * edit_line bundles can now use the new $(edit.empty_before_use)
+ variable mirroring the value of edit_defaults=>empty_before_use
+ of the related files promise (ENT-5866)
+ * Package modules with unresolved variables in their names are
+ now skipped in package queries (ENT-9377)
+ * Removed unsupported name_connect capability for udp_socket class
+ (ENT-8824)
+ * 'meta' attribute can now be used in custom promises (CFE-3440)
+ * Custom promise modules can now support the 'action_policy'
+ feature allowing promises of their custom types to be used
+ in dry-run and simulation modes and in combination with
+ 'action_policy => "warn"'. (CFE-3433)
+ * Use of custom promise modules that don't fully specify protocol
+ now results in warning (CFE-3433)
+ * Warnings are logged if levels of log messages from custom promise
+ modules don't match results of their related promises (CFE-3433)
+ * Adjusted SELinux policy for RHEL 9 (ENT-8824)
+ * Fixed SELinux policy to allow hub to send emails (ENT-9557, ENT-9473)
+ * SELinux no longer breaks SQL queries with large result sets on
+ RHEL 8 hubs (ENT-9496)
+ * Added SELinux LDAP port access for Mission Portal (ENT-9694)
+ * Allowed ciphers are now properly split into TLS 1.3 cipher suites
+ and ciphers used for TLS 1.2 and older (ENT-9018)
+ * Fixed git_cfbs_deploy_refspec in masterfiles_stage leaving temp dir
+- Update to version 3.20.0:
+ * 'rxdirs' now defaults to "false". This means that the read
+ permission bit no longer implies execute bit for directories,
+ by default.
+ Permission bits will be exactly as specified. To restore the
+ old behavior you can still enable 'rxdirs' explicitly. (CFE-951)
+ * 'N' or 'Ns' signal specs can now be used to sleep between signals
+ sent by 'processes' promises (CFE-2207, ENT-5899)
+ * Directories named .no-distrib are no longer copied from policy
+ server (in bootstrap/failsafe) (ENT-8079)
+ * Files promises using content attribute or template method now
+ create files by default unless create => "false" is specified.
+ (CFE-3955, CFE-3916)
+ * template_method mustache and inline_mustache now create file
+ in promiser, if template rendering was successfull and file
+ does not exist. (ENT-4792)
+ * Added support for use of custom bodies in custom promise types
+ (CFE-3574)
+ * Custom promise modules now never get promise data with unresolved
+ variables (CFE-3434)
+ * Custom promises now use standard promise locking and support
+ ifelapsed (CFE-3434)
+ * Enable comment-attribute for custom promise types (CFE-3432)
+ * cf-secret encrypt now encrypts for localhost if no key or host is
+ specified (CFE-3874)
+ * CFEngine now builds with OpenSSL 3 (ENT-8355)
+ * CFEngine now requires OpenSSL 1.0.0 or newer (ENT-8355)
+ * Moved Skipping loading of duplicate policy file messages from
+ VERBOSE to DEBUG (CFE-3934)
+ * CFEngine processes now try to use getent if the builtin user/group
+ info lookup fails (CFE-3937)
+ * No longer possible to undefine reserved hard classes (ENT-7718)
+ * Unspecified 'rxdirs' now produces a warning (CFE-951)
+ * Fixed wrong use of log level in users promises log messages
+ (CFE-3906)
+ * Fixed default for ignore_missing_bundles and ignore_missing_inputs
+ The issue here was that these attributes should default to false,
+ but when they are assigned with an unresolved variable, they
+ would default to true. (ENT-8430)
+ * Added protocol 3 (cookie) to syntax description (ENT-8560)
+ * Moved errors from data_sysctlvalues from inform to verbose
+ (CFE-3818)
+ * Fixed inconsistencies with methods promises and missing bundles
+
cfengine-masterfiles
+- Update to 3.21.0
+ * https://github.com/cfengine/masterfiles/blob/3.21.0/CHANGELOG.md
+
clamav-database
+- database refresh on 2023-04-03 (bsc#1084929)
+
clone-master-clean-up
+- Bump version to 1.11
+- clone-master-clean-up fails when /etc/iscsi/initiatorname.iscsi doesn't exist
+ The entire section is wrapped in a test for the existence of this file.
+ (bsc#1207993)
+
cloud-regionsrv-client
+- Update to version 10.1.0 (bsc#1207133, bsc#1208097, bsc#1208099 )
+ - Removes a warning about system_token entry present in the credentials
+ file.
+ - Adds logrotate configuration for log rotation.
+
crmsh
+- Update to version 4.5.0+20230329.6d95249b:
+ * Fix: utils: qdevice initialization should user_pair_for_ssh() to get appreciated users
+ * Fix: crm report: sustain if there are offline nodes (bsc#1209480)
+ * Fix: validate ssh session when the users is determined by guessing (bsc#1209193)
+ * Fix: parallax: Use 'sudo bash -c' when executing commands via sudoer (bsc#1209192)
+
cyreal-alice-fonts
+- Update to v2.003
+- Package OTF instead of TTF font
+
darktable
+- Switch rpmbuild from GraphicsMagick to ImageMagick
+
+- Update to version 4.2.0
+ https://github.com/darktable-org/darktable/releases/tag/release-4.2.0
+- New BuildRequires:
+ pkgconfig(libheif)
+ pkgconfig(libjxl)
+ pkgconfig(tinfo)
+
datovka
+- Update to 4.21.1
+ * Fixed hanging send message windows when exiting the application having those
+ windows open.
+ * Fixed occasional application hangs when worker tasks have been collected on
+ exit.
+ * GUI application exits in a controlled manner when a POSIX signal is received
+ on UNIX-like systems or when a system shutdown or user log-off event is
+ detected on Windows.
+ * CLI application handles POSIX signals and detects and handles Ctrl+C and
+ Ctrl+Break key combinations in Windows command line.
+ * Added date-based constraints when checking whether messages are stored in
+ records management service.
+ * Listed message data can be exported into a CSV file when checking whether
+ messages are stored in records management service
+ * Accepting backups with missing account identifier. The identifiers may be
+ missing if some accounts have been created from local databases.
+ * Recipient name '%R' can be used when constructing file names.
+ * Reduced computational effort when switching between data messages. Digital
+ signatures are not checked. Attachment data are loaded when attachments are
+ required/selected.
+ * Able to generate e-mails with user-specified content. ZFOs and attachments
+ can be added into a single email.
+ * ZFO attachments can be viewed directly in the application.
+ * Automatic upload targets can be checked for all messages which aren't
+ already uploaded into the records management service.
+ * Fixed an error in the message download dialogue when the download loop
+ hasn't been stopped when the dialogue has been rejected otherwise than using
+ the Cancel button.
+ * New tag database format. All stored data are converted to new format.
+ * Fixed warnings about duplicated database connections.
+ * Weakened some recoverable error statements.
+ * Fixed inability to check the signature of downloaded psrootqca4.crl file.
+ Added PostSignum Qualified CA 5 certificate.
+ * Allowing modification of account settings for existing accounts with
+ incomplete login credentials.
+ * Fixed error when account data have not been downloaded on subsequent
+ account removing and adding.
+ * Checking libcrypto and libdatovka presence during qmake phase when
+ compiling on UNIX-like systems (excluding OS X/macOS).
+ * Improved error and warning messages in preferences database code.
+ * Able to import account data from the mobile application via a backup or
+ transfer archive.
+ * Able to download messages from ISDS via command line when the envelope
+ hasn't been downloaded yet.
+ * Added a tag client for the tag server under development.
+ The tag client must be enabled in the preferences.
+
discover
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * rpm-ostree/notifier: Setup a watcher to trigger reboot check
+ * rpm-ostree/notifier: Fix update/reboot notification logic
+ * ApplicationPage: Allow main app info column to grow with window
+ * ApplicationPage: off-by-one in stackedLayout calc
+ * ApplicationResouceButton: place icon side-by-side to the title
+ * ApplicationResourceButton: attribute the left/right padding
+ * ApplicationPage: drop the ternary operator for buttonWidth
+ * flatpak: Use Downloading as the status for Flatpak transactions
+ * pk: Finish porting away from runservices (kde#466742)
+ * pk: Don't forget to finish streams (kde#466765)
+ * Flatpak: Fix spacing in permissions view
+ * fwupd: Mark the backend as invalid if fwupd_client_connect() fails
+- Drop patches, now upstream:
+ * 0001-pk-Don-t-forget-to-finish-streams.patch
+
drkonqi5
+- Replace '%service_del_postun -n' with '%service_del_postun_without_restart'
+
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * Add emoji picker to mappings
+
dtb-aarch64
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
dub
+- Update to 1.29.0
+ * Harden package version detection from git describe by @kinke
+- Update to 1.28.0
+ * Removes dynamicLibrary being built as staticLibrary for targets
+ other than OMF. by @rikkimax in #2211
+ * move command variable substitution to execution by @WebFreak001
+ in #2217
+ * Fix interactive run-unittest.d by @WebFreak001
+ in #2219
+ * merge stable by @MartinNowak in #2221
+ * fix: parse version from filesystem supplier correctly by
+ @Panke in #2220
+ * merge stable by @MartinNowak in #2225
+ * add CompilerInvocationException by @WebFreak001 in #2226
+ * Adapt determinePlatform to the new defaults for Win32 by
+ @MoonlightSentinel in #2227
+ * Define the $DUB_BUILD_PATH variable. by @veelo in #2228
+ * merge stable by @MartinNowak in #2231
+ * Add link to dub-docs. by @veelo in #2232
+ * Remove travis-ci badge from README.md by @ibuclaw in #2233
+ * Annotate escaping reference. by @veelo in #2237
+ * Posix: use /etc/dub/settings.json if in /usr by @WebFreak001
+ in #2203
+ * Add -fno-druntime to GDC BuildOptions; it is the betterC
+ flag. by @ibara in #2186
+ * Fix #2238 - Renew source files after preGenerateCommands by
+ @atilaneves in #2239
+ * Inject source file (replaces #2207) by @rikkimax in #2240
+- Update to 1.27.0
+ * merge stable by @MartinNowak in #2132
+ * Add environment variables to BuildSettings by @shoo in #2121
+ * merge stable by @MartinNowak in #2138
+ * Fix dependency build settings flooding dflags by @omerfirmak
+ in #2139
+ * merge stable by @MartinNowak in #2140
+ * Adds quotation marks to error message by @denizzzka in #2148
+ * Generate paths relative to visuald project files by @JudgeFish
+ in #2150
+ * merge stable by @MartinNowak in #2152
+ * merge stable by @MartinNowak in #2154
+ * Fix #2141 - When used as a library, the default compiler is
+ different from the expected. by @shoo in #2158
+ * Remove line 'Exclusing package.d blah...' from default dub
+ build by @p0nce in #2157
+ * RegistryPackageSupplier.genPackageDownloadUrl added by
+ @denizzzka in #2156
+- Update to 1.26.0
+ * merge stable by @MartinNowak in #2114
+ * Fix single file package dynamic library by @andre2007
+ in #2112
+ * fix #1867 - Add lowmem for settings by @shoo in #1905
+ * Fix #2046 - Dependencies specified with a path ignore
+ optional settings by @shoo in #2103
+ * Replacing rununittest.sh by @drug007 in #2109
+ * merge stable by @MartinNowak in #2115
+ * merge stable by @MartinNowak in #2117
+ * Only show package.d warning once by @dkorpel in #2131
+ * [stable] LDC: Recognize -gcc as linker D flag by @kinke
+ in #2135
+- Update to 1.25.0
+ * merge stable by @MartinNowak in #2061
+ * Minor code cleanup (whitespace, import) by @Geod24 in #2063
+ * Remove redundant code with relativeTo by @Geod24 in #2062
+ * Set cwd on spawn functions instead of chdir by @Geod24
+ in #2065
+ * Hotfix for #2051 by @drug007 in #2064
+ * Renaming a file by @drug007 in #2066
+ * Raise minimum Vibe.d requirement to v0.9.0 by @Geod24
+ in #2067
+ * merge stable by @MartinNowak in #2071
+ * Cleanup http listener in vibed template by @gizmomogwai in #2072
+ * merge stable by @MartinNowak in #2074
+ * Improve 'linker-D-flag' detection for ldmd2 by @kinke in #2082
+ * Extend 'linker dflags' detection for DMD by @kinke in #2083
+ * Selectively import symbols from std.array. by @veelo in #2089
+ * Remove unused selective imports. by @veelo in #2088
+ * Remove unused imports from compiler.d. by @veelo in #2090
+ * Refactor imports (inet.url -> inet.path). by @veelo in #2091
+ * Remove unused std.range import. by @veelo in #2092
+ * Remove unused imports. by @veelo in #2093
+ * Refactor imports. by @veelo in #2094
+ * Refactor import. Url is not used directly, but path is.
+ by @veelo in #2097
+ * Remove unused imports. by @veelo in #2096
+ * Deprecate unused but public import. by @veelo in #2095
+ * Fix #2085: [visuald] spurious library project by @veelo in #2098
+ * Add some generated files to .gitignore by @ljmf00 in #2102
+ * Fix #2086 copyFiles in subPackage does not honour targetPath.
+ by @veelo in #2087
+ * Replacing run-unittest.sh by run-unittest.d. Inception by
+ @drug007 in #2084
+ * Include copyFiles and extraDependencyFiles in visuald projects.
+ by @veelo in #2099
+ * Bump FRONTEND, move dmd to latest by default. by @maxhaton
+ in #2104
+ * merge stable by @MartinNowak in #2106
+ * Actually copy copyFiles when building in Visual Studio. by
+ @veelo in #2105
+ * import 'std.variant.Algebraic' properly by @BorisCarvajal
+ in #2108
+ * merge stable by @MartinNowak in #2107
+ * Fixed a regression with DFLAGS environment variable and cached
+ generated unittest by @foerdi in #2116
+- Update to 1.24.1
+ * Allow adding dflags on dependencies when using SDL format by
+ @omerfirmak in #2081
+- Update to 1.24.0
+ * merge stable by @MartinNowak in #2011
+ * [stable] Deduplicate dflags and lflags by @Geod24 in #2016
+ * cache the generated test main file: dub_test_root.d by @foerdi
+ in #2005
+ * Revert "Deduplicate dflags and lflags" (#2016) by @s-ludwig
+ in #2020
+ * merge stable by @MartinNowak in #2022
+ * Remove usage of deprecated std.xml by @andre2007 in #1977
+ * Support for .netrc file added by @andre2007 in #2027
+ * ci: build release .tar.gz without travis owner and group id
+ by @ljmf00 in #2030
+ * Add support for '-platformlib' option. Fixes #2031 by
+ @dbankov-vmware in #2032
+ * GH Actions: Use new syntax for set-env by @Geod24 in #2036
+ * Merge stable into master by @Geod24 in #2037
+ * dub.compilers.ldc: Fix --rdmd with --compiler=ldc2 by
+ @CyberShadow in #2033
+ * Correct issue #1673 (with dupe #1797 and #2019) by @p0nce
+ in #2034
+ * betterC flag enabled in generated visuald project file. Fixes #2024
+ by @MrZoraman in #2025
+ * Fix Issue #1474 - Regenerate build settings after preGenerateCommands
+ by @omerfirmak in #2035
+ * Mutually exclude mainSourceFile of different configurations by
+ @omerfirmak in #2039
+ * [CI]: Remove old AppVeyor, TravisCI, SemaphoreCI and build-gdc.sh
+ files by @PetarKirov in #2042
+ * [stable] Use compiler version, not frontend version for build IDs
+ and paths by @kinke in #2045
+ * [stable] Add support for --arch=x86_mscoff for LDC (for DMD
+ compatibility) by @kinke in #2049
+ * Use DC env variable as the default compiler by @omerfirmak in #2047
+ * Fix #2051: Running unit tests from DUB single file packages fails by
+ @drug007 in #2052
+ * Improved ldc cross compile by @foerdi in #2055
+ * improve list command (filter by package spec) by @deviator
+ in #2057
+ * Dont export DFLAGS & LFLAGS by default by @omerfirmak
+ in #2048
+ * Allow custom dflags to be defined for dependencies by
+ @omerfirmak in #2040
+ * Normalize line endings & UTF8 BOMs by @Geod24 in #2058
+ * add ability for specify version range for commandline commands
+ by @deviator in #2056
+
dump1090-fa
+- Updated to version 8.2:
+ * Please see /usr/share/doc/packages/dump1090-fa/changelog for
+ full list of changes in this and previous releases.
+
eid-mw
+- updated to 5.1.4
+ * support new distributions
+ * monitor specific resolution
+ * UI improvements
+ * build improvements
+
+- updated to 5.0.28
+ * improve translations
+ * UI improvements
+
-- Upgrade to 4.0.2
-
-- Made Revision number variable to allow continuous builds.
-
fcitx5-kkc
+- Update to 5.0.11
+ * Update translation
+
+- Update to 5.0.10
+ * Update translation
+
fcitx5-rime
+- Update to 5.0.15
+ * fixes some memory leaks
+- Remove obsolete patch, since Leap 15.3 already has newer CMake
+ * fcitx5-rime-cmake-3.10.patch
+
firecracker
+- Update to version 1.2.0
+ * Added a new CPU template called T2S
+ * Added a new CLI option --metrics-path PATH
+ * Added baselines for m6i.metal and m6a.metal
+ * Changed the jailer option --exec-file to fail if the filename does not
+ contain the string firecracker
+ * Updated Rust toolchain and all dependencies to their respective newest versions
+ * Made the T2 template more robust by explicitly disabling additional
+ CPUID flags that should be off
+ * Now MAC address is correctly displayed when queried with GET /vm/config
+ * Fixed a self-DoS scenario in the virtio-queue code
+ * Fixed the bad handling of kernel cmdline parameters when init arguments were
+ provided via JSON PUT /boot-source request
+ * Fixed a bug on ARM64 hosts where the upper 64bits of the V0-V31 FL/SIMD
+ registers were not saved correctly
+
firewalld
+- Fix firewall-offline-cmd fails with ERROR: Calling pre func
+ Added following patch (bsc#1206928)
+ [+ 0003-firewall-offline-cmd-fail-fix.patch]
+
frr
+- Enable pim6d providing PIMv6 support (bsc#1206234)
+
gcompris-qt
+- Add missing runtime libqt5-qtcharts-imports dependency for
+ Fraction activity.
+
+- Update to bugfix release 3.1
+ - Fix critical bug in the new "Comparator" activity.
+- Update to release 3.0 contains 182 activities, including 8 new ones:
+ - Mouse click training
+ - Create the fractions
+ - Find the fraction
+ - Compare numbers
+ - Swap ten's complement
+ - Use ten's complement
+ - added 2 new command line options:
+ List all the available activities (-l or --list-activities)
+ Directly start a specific activity (--launch activityName)
+- Packaging update copyright years and format with spec-cleaner
+- Update list of dependencies.
+
gcompris-qt-voices
+- Update to version 3.0~20230121 for gcompris-qt 3.1
+
gcovr
+- Updated to release 5.2:
+ New features and notable changes:
+ * Log additional info on gcov parsing errors.
+ * Add support for branch exclude markers.
+ * Additional options to configure the thresholds for lines and branches in HTML separate.
+ Bugfixes:
+ * Remove function coverage from sonarcube report.
+ * Fix parallel processing of gcov data.
+ * Better diagnostics when dealing with corrupted input files.
+ * Accept metadata lines without values (introduced in gcc-11).
+ * Properly close <a> element in detailed HTML report.
+ * Using --add-tracefile will now correctly merge branch coverage.
+ * Fix package-level function coverage statistics in Cobertura XML reports.
+ * Respect excluded/noncode lines for aggregated branchcoverage.
+ * Fix list options in configuration file (search-path).
+ * Fix assert and key error in --decisions flag.
+ * Fix adding none existing lines by decision analysis to data model.
+ * Always treat relative paths in config files as relative to the directory of the file.
+
gdm
+- Update gdm-fingerprint.pamd and gdm-smartcard.pamd: Before this
+ they do not really support fingerprint and smartcard, just put
+ correct configuration to make them work (bsc#1205664).
+- Enable split authentication because we have correct
+ gdm-fingerprint.pamd and gdm-smartcard.pamd.
+
+- Update gdm-disable-gnome-initial-setup.patch: Refactoring to
+ disable it on SLE runtime, so with the same executable it is
+ still possible to run on Leap (jsc#PED-1719).
+
git-cliff
+- Update to version 0.10.0:
+ [#]## Bug Fixes
+ - Warn against invalid tag range for `--current` flag ([#124](https://github.com/orhun/git-cliff/issues/124))
+ - Use an alternative method to fetch registry
+ - Fix syntax error in Dockerfile
+ [#]## Documentation
+ - Add MacPorts install info ([#111](https://github.com/orhun/git-cliff/issues/111))
+ - Update badge URL for Docker builds
+ [#]## Features
+ - Do not skip breaking changes if configured ([#114](https://github.com/orhun/git-cliff/issues/114))
+ - Changelog for the last n commits ([#116](https://github.com/orhun/git-cliff/issues/116))
+ - Add a short variant `-d` for specifying `--date-order` flag
+ [#]## Miscellaneous Tasks
+ - Update versions in Dockerfile
+ - Upgrade core dependencies
+ [#]## Refactor
+ - Improve cargo-chef caching in Dockerfile
+ - Utilize workspace dependencies
+
glibc
+- amd-cacheinfo.patch: x86: Cache computation for AMD architecture
+ (bsc#1207957)
+
+- gmon-hash-table-size.patch: gmon: Fix allocated buffer overflow
+ (CVE-2023-0687, bsc#1207975, BZ #29444)
+
+- strncmp-avx2-boundary.patch: Fix avx2 strncmp offset compare condition
+ check (bsc#1208358, BZ #25933)
+
+- dlopen-filter-object.patch: elf: Allow dlopen of filter object to work
+ (bsc#1207571, BZ #16272)
+- powerpc-tst-ucontext.patch: powerpc: Fix unrecognized instruction errors
+ with recent GCC
+
gnuhealth
+- version 4.2.1
+ * Fix bug TypeError: unsupported operand type(s) for &=: 'bool' and 'GreaterEqual'
+ * Fix bug #63871: Imaging Result Report: genshitemplateevalUndefinedError: None has no member named 'rec_name'
+ * Fix bug #64009: Include signing health professional and avoid scrolling in patient evaluation
+ * Fix bug #64014: Update gender identity in patient evaluations and reports
+
goodvibes
+- Update to 0.7.5:
+ * Update default stations list, add SomaFM stations. !85
+ * Add a "Remove all Stations" to the right-click context menu. #152
+ Translations
+ * New translations: Chinese (Traditional).
+ * Updated translations: Catalan, Croatian, Dutch, French, Slovak, Spanish, Turkish.
+
google-noto-sans-cjk-fonts
+- Fix bsc#1203741: Add _constraint file to make it build (taken from Factory)
+- Use %license to store OFL license text
+
greetd
+- Update to version 0.9.0:
+ * Revert "Remove 'env' from start_session"
+ * ipc: ensure backward compatibility of the protocol
+ * Change order of setting pam environment variables
+ * fakegreet: reset state on errors
+ * For FUSE-based home folders, chdir into them as the user instead of root
+ * Use /bin/sh instead of $SHELL
+ * cargo: Update dependencies
+
+- Put greetd.pam in the right directory.
+ greetd checks for the pam file in /etc/pam.d/, not in /lib/pam.d/
+
h5utils
+- update to 1.13.2:
+ * Support relocatable installations by expanding shell metacharacters
+ `~` and environment variables in the colormaps directory (#16).
+
jdupes
+- update to 1.21.3:
+ * Major performance fix in the double traversal prevention tree
+ code
+ * Added undocumented '-9' benchmark option for testing traversal
+ code
+ * Extra error checks to try to finally solve a very rare crash
+ bug
+ * Tiny code size reduction by discarding unused xxHash code
+ * jody_hash re-added as a build-time option
+ * Many options/features/safety checks can now be selectively
+ compiled out
+ * New 'make BARE_BONES=1' option builds the most minimal jdupes
+ possible
+ * Fix exit behavior when no valid directories are given
+ * Only act on "normal" files and directories
+
kactivitymanagerd
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
kak-lsp
+- Update to version 14.1.0:
+ * Additions:
+ - Default language server for protobuf.
+ - Added support for `codeAction/resolve`, which allows to use code
+ actions sent by Deno for example.
+ - The recommended mappings have been augmented by new command
+ `lsp-diagnostic-object` to jump to next/previous diagnostics.
+ - `lsp-auto-signature-help-enable` now shows an info box by default,
+ and formats the active parameter in a bold font.
+ - `lsp-definition` and friends now select the symbol name instead of merely
+ placing the cursor at symbol start. Same for `lsp-find-error`.
+ - `lsp-highlight-references` now selects all references in the current buffer.
+ - New `lsp-inlay-code-lenses-enable` command allows to render code
+ lenses as virtual text (#623).
+ - The support for `filterText` in completions no longer depends on an
+ out-of-tree Kakoune feature.
+ * Fixes:
+ - Fix lags due to `rust-analyzer` sending a ton of progress reports.
+ - `lsp-rename` will now write hidden buffers that are affected by the rename,
+ to give the language server and other external tools a more consistent
+ view of affected files.
+ - Suppress "language server not initialized" errors that originate from hooks.
+ - Fix a glitch when a line has both a code lens and an inline diagnostic.
+ - When talking to servers that don't support UTF-8 byte-offsets, `kak-lsp`
+ now adheres to the LSP specification by treating column-offsets
+ as UTF-16 Code Units instead of Unicode Code Points.
+
kchmviewer
+- Add kchmviewer-adding-support-for-old-single-pass-gcc-linker.patch,
+ fixes building for openSUSE Leap
+
+- Add InitialPreference-greater-than-okular.patch
+
+- Update to 8.0
+ * This release uses QtWebEngine for rendering instead of the dropped QtWebKit.
+- Remove fix-build.patch as it related to QtWebKit.
+- Add backported patches from Arch:
+ * no-webkit.patch
+ * qtwebengine-1-linkClicked.patch
+ * qtwebengine-2-createWindow.patch
+ * qtwebengine-3-synchronize-url.patch
+ * url-scheme.patch
+- Add a patch from Fedora:
+ * rename-desktop-file.patch
+
-- Fix the SLES build (%make_install is not expanded on SLES)
-
-- Update to version 6.0
- - Removed outdated and buggy QTextBrowser support.
- - Removed unneeded KHTMLPart support. Only QWebKit is now supported.
- - Fixed zoom and "select all".
- - Fixed storing scrollbar position.
- - Added browser options to control JavaScript, Java and HTML5
- features, which now apply to Webkit
- - Fixed crash on start when the number of recent files was set to zero
- - Added support for opening the specific page on startup using the
- - -url switch
- - Fixed scrolling at the same page when links are clicked
- - Fixed the "Locate in content tree" which was broken for QWebKit
- - For CHM entries with an URL but no name use the URL as name
-
-- Update to 5.3
- * Bugfix release:
- - Fixed spelling error (thx Razvan Visan)
- - Changed encodings order for Chinese and Japanese languages
- (thanks Kai-Chieh Ku)
- - Fixed some grammatical errors (thanks Robin 'cheese' Lee)
- - Fixed webkit engine for buggy CHMs which do not have all
- content, as well as cases when external references cannot be
- loaded. Thanks to Kai-Chieh Ku
- * Added Mac Support
- * Added translations: Ukrainian and Brazilian
-
kcm_sddm
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
kde-cli-tools5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
kde-gtk-config5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
kernel-64kb
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-azure
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
kernel-debug
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-default
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-default-base
+- Add exfat (boo#1208822)
+
+- Add _diag modules for included socket types (boo#1204042)
+
kernel-docs
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-firmware-nvidia-gsp-G06
+- update firmware to version 525.105.17
+
kernel-kvmsmall
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-obs-build
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-obs-qa
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-rt
+- locking/rwbase: Mitigate indefinite writer starvation
+ (bsc#1189998 (PREEMPT_RT prerequisite backports), bsc#1206552).
+- commit 455f384
+
kernel-rt_debug
+- locking/rwbase: Mitigate indefinite writer starvation
+ (bsc#1189998 (PREEMPT_RT prerequisite backports), bsc#1206552).
+- commit 455f384
+
kernel-source
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-source-azure
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
kernel-source-rt
+- locking/rwbase: Mitigate indefinite writer starvation
+ (bsc#1189998 (PREEMPT_RT prerequisite backports), bsc#1206552).
+- commit 455f384
+
kernel-syms
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kernel-syms-azure
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
kernel-syms-rt
+- locking/rwbase: Mitigate indefinite writer starvation
+ (bsc#1189998 (PREEMPT_RT prerequisite backports), bsc#1206552).
+- commit 455f384
+
kernel-zfcpdump
+- net: tls: fix possible race condition between
+ do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ (bsc#1209366 CVE-2023-28466).
+- commit 3a1702c
+
+- mm: memcontrol: deprecate charge moving (bsc#1209801).
+- commit a953603
+
+- netdevice: add the case if dev is NULL (bsc#1208628).
+- Refresh
+ patches.suse/net-add-net-device-refcount-tracker-infrastructure.patch.
+- commit 726a950
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_write-a.patch.
+- commit 37a8307
+
+- Rename
+ patches.suse/locking-rwsem-Disable-preemption-in-all-down_read-an.patch.
+- commit f080340
+
+- Refresh
+ patches.suse/locking-rwsem-Prevent-non-first-waiter-from-spinning.patch.
+- commit af52be6
+
+- Delete patches.suse/iwlwifi-module-firmware-ucode-fix.patch (bsc#1209681)
+ linux-firmware tree finally provides iwlwifi-*-72.ucode, and more badly,
+ they dropped *-71.ucode, hence the workaround leads to the firmware load
+ failure. Drop the old workaround now.
+- commit dc4368f
+
+- net/sched: tcindex: update imperfect hash filters respecting
+ rcu (CVE-2023-1281 bsc#1209634).
+- commit aced962
+
+- Update
+ patches.suse/Revert-block-freeze-the-queue-earlier-in-del_gendisk-4c66.patch
+ (git-fixes bsc#1208921).
+- commit b2c9582
+
+- prlimit: do_prlimit needs to have a speculation check
+ (bsc#1209256 CVE-2017-5753).
+- commit b7234d1
+
+- Revert "block: freeze the queue earlier in del_gendisk"
+ (git-fixes).
+- commit 6b26f6b
+
kgamma5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
khotkeys5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
kmenuedit5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
kpipewire
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * Guard m_producer
+ * stream: better fallback for BGR formats when downloading into a QImage
+ * stream: Fix support of SPA_VIDEO_FORMAT_RGB
+ * recording: Drop unnecessary conditional
+ * recording: use "good" deadline rather than quality that is deprecated upstream
+ * recording: Make bitrate depend on the stream size
+
kscreen5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * kded/output: with duplicate edid hashes, use different global config files (kde#452614,kde#448599)
+
kscreenlocker
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
ksshaskpass5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
ksystemstats5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
kwayland-integration
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
kwin5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * colordevice: default the simple transformations to 1
+ * backends/drm: fail commits if nonexistent properties would be set
+ * backends/drm: ignore opaque formats for the cursor plane
+ * Forward keymap and modifier change to input method keyboard grab when changed.
+ * inputmethod: Show the input method even if it was dismissed (kde#466969)
+ * backends/drm: support CTM for simple color transformations (kde#455720)
+ * xwayland: Prevent potential file descriptor leak
+ * wayland: Prevent leaking --wayland-fd and --xwayland-fd to child processes
+ * helper: Don't leak lock file to kwin_wayland
+ * backends/wayland: Don't leak renderD128 fd
+ * backends/wayland: Don't leak WaylandEventThread's pipe fds
+ * Fix text-input-v1 compatibility with 111.0.5563.64-1
+ * input: Make sure input backends are initialised when the workspace is set up (kde#466721)
+ * Tabbox: Fix grouping windows by application
+ * scene: Use correct scale when computing world transform
+ * wayland: Fix interactive resize of debug console
+ * kscreenintegration: read global output data
+ * workspace: move kscreen integration into separate files
+ * screencast: Try harder to be compatible with the pipewire buffer format
+ * screencasting: on memfd, skip the QImage step (kde#466655)
+ * TabBox: Avoid unnecesary resets of the client model (kde#466660)
+ * wayland: Cancel selections if set without focus
+ * windowitem: properly handle sub-subsurfaces (kde#466747)
+ * tabletmodemanager: properly export properties
+ * Enable GLSL for Mali (Lima) / PinePhone devices
+
kwrited5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
layer-shell-qt
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
libesedb
+- Delete system-libs.patch (not needed - system libs are
+ autodetected)
+
+- Update build requirement on libcfile
+
+- Update to relase 20220806
+ * Unspecified changes for error tollerance
+
libgit2
+- Verify ssh remote host keys (boo#1207364 CVE-2023-22742):
+ 0001-ssh-verify-the-remote-s-host-key-against-known_hosts.patch
+ 0002-tests-append-the-github.com-ssh-keys-so-we-have-acce.patch
+ 0003-tests-move-online-clone-ssh_auth_methods-into-the-ss.patch
+ 0004-ssh-look-for-a-key-in-known_hosts-to-set-the-key-typ.patch
+
libheif
+- security update
+- added patches
+ fix CVE-2023-0996 [bsc#1208640], buffer overflow in heif_js_decode_image in libheif
+ + libheif-CVE-2023-0996.patch
+
+- fixed CVE-2020-23109 [bsc#1192382]
+ (bca0162018df9a32d21c05aad1fa203881fa7813)
libkdecoration2
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
libkscreen2
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * libdpms/wayland: Do not create dpms interfaces for placeholder QScreens (kde#466674)
+ * dpms/xcb: Make sure we are setting it as unsupported when it is (kde#466181)
+ * backends/wayland: Round passed scale
+
libksysguard5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
liblouis
+- Add liblouis-CVE-2023-26769.patch: Check the path length before
+ copying into tableFile(CVE-2023-26769 bsc#1209432).
+
+- Add liblouis-CVE-2023-26767.patch: Check the length of path before
+ copying into dataPath(CVE-2023-26767 bsc#1209429).
+
- compilePassOpcode (boo#1197085 CVE-2022-26981).
+ compilePassOpcode (bsc#1197085 CVE-2022-26981).
- write in compileRule (boo#1200120 CVE-2022-31783).
+ write in compileRule (bsc#1200120 CVE-2022-31783).
libmediainfo
+- Update to version 23.03
+ Added features:
+ * DTS: Detection of IMAX Enhanced
+ * MOV/MP4: Add HDR Vivid format support
+ * HEVC: Add HDR Vivid format support
+ * MXF/PCM: detect silent tracks (full parsing only)
+ * Monkey's Audio: support of 32-bit files, show version
+ * MP4 audioProfileLevelIndication: add Low Delay AAC v2 Profile
+ * MP4/MOV: support of FLAC
+ * MOV/MP4: support of TTML with images
+ * MPEG-7: 3 modes (strict, relaxed, extended)
+ * MPEG-7: more sub-termIDs (AudioPresentationCS)
+ * MPEG-7: Add more PublicIdentifiers
+ * MPEG-7: more sub-termIDs (MP4, WAV, AVC, ProRes)
+ * AVI/WAV: display of the kind of fmt chunk
+ * AVC: detection of more profiles
+ * ChannelLayout: difference between M (Mono) and C (Center,
+ part of multichannel content)
+ * AC-3: detection of channel layout also for encrypted content
+ * AC-4 and MPEG-H 3D Audio: Merged channel layout (all
+ sub-streams together)
+ * DTS: Detection of real bit depth e.g. 20 instead of only
+ byte aligned bit depth (16 or 24)
+ * FLAC: support of BWF in Vorbis comments
+ * N19/STL: codepage, subtitle count, max line per subtitle,
+ more metadata
+ * ISAN: detection of descriptions referencing an ISAN
+ * AAC: detection of eSBR (and fix of random wrong PS detection)
+ * Extract of time codes, XML format, currently only for for MXF
+ Fixed bugs:
+ * MP4/MOV: fix freezes with some unknown udta atoms
+ * FLV: fix duration of 0 with some buggy files
+ * AVC: fix PTS of last frame
+ * FFV1: fix potential crash with malformed files
+ * AV1: add HDR format line and fix HDR values
+ * AAC and WAV: fix of channel layout display for 5 front
+ channels
+ * AC-4: Tl/Tr mapped to to Tsl/Tsr
+ * FLAC: fix sampling count
+ * ID3v2: fix Genre not showing ID 0 (Blues)
+ * MPEG-7: VBR fix
+ * JSON/XML: Remove minus sign from element names
+ * Normalization of date/time in report
+
libmicrohttpd
+- Apply patch for bsc#1208745 CVE-2023-27371
+ fix parser bug that could be used to crash servers using the MHD_PostProcessor
+ * fix-parser-bug-MHD_PostProcessor.patch
+
-- do not define test_data before system header inclusion, libgcrypt
- uses this as argument parameters. (libmicrohttpd_test_data.patch)
-
-- disable problematic test case that causes the testsuite to deadlock
- just too often (disable-stalling-test.patch)
-
-- remove dependency on gpg-offline, source validator already
- does that
-
-- Version bump to 0.9.34:
- * Drop tls patch seems to build fine
- * Remove code for other distros we build against 13.1+ anywhere
- within obs and it just clutters the spec.
- * Explicitely name switches in configure to make sure things go
- the desired way.
- * Fix install of libmicrohttpspdy pc file.
- + Added support for TCP FASTOPEN.
- + Removed dependency on plibc for simpler compilation for W32.
- + Added configure option "--disable-pipes" to use socketpairs
- instead of pipes for signalling to child threads. Pipes are
- always disabled on W32.
- + Corrected some uses of 'int' vs. 'size_t'.
- + MHD_USE_DUAL_STACK in libmicrohttpd currently just *inhibits
- setting* the IPV6_V6ONLY socket option, but per Microsoft's
- documentation the default on Windows is that this is enabled, thus
- MHD_USE_DUAL_STACK will not work (since it leaves the
- default). libmicrohttpd should probably just unconditionally set
- IPV6_V6ONLY to the desired value when the option is available.
- + Allow Keep-Alive with HTTP 1.0 (if explicitly requested),
- and automatically set "Connection: Keep-Alive" in response
- in this case as well.
- + Adding explicit annotations to hide symbols that are not for
- export in the C code (gcc 4.0 or higher only).
- + Adding a few lines to avoid warnings from picky compilers.
-- Added patches:
- * libmicrohttpd-0.9.34-spdy-pc.patch
-- Dropped patches:
- * libmicrohttpd-drop-test_tls_options.patch
-
-- do not run checks in parallel - they deadlock from time to time
-- enable make debug to debug the problem on OBS in case it reappears
-
-- refresh libmicrohttpd-drop-test_tls_options.patch
- - add there also ignoring test_https_sni
-- Update to 0.9.33 bsc#854443 CVE-2013-7038 CVE-2013-7039
- + Fixed an issue with a missing argument in the postexample.
- + Fixed issue with bogus offset increment involving sendfile on
- GNU/Linux. Adding support for SNI.
- + Fix for per-worker daemon pipes enabled with
- MHD_USE_SUSPEND_RESUME that were not closed in MHD_stop_daemon.
- + Fixing warnings and build issue if --disable-https is given to
- configure.
- +
- 0.9.32:
- + Security fix: do not read past 0-terminator when unescaping
- strings (thanks to Florian Weimer for reporting).
- + Signaling n times for shutdown works, but for resume we need to
- wake up the correct daemon. Even if we signal n times in
- that case also, there's no guarantee that some daemon can't
- run through its select loop more than once before the
- daemon we want to wake up gets a chance to read. Thus we
- need a signal pipe per thread in the thread pool IF
- MHD_suspend_connection is used. This introduces a new flag
- MHD_USE_SUSPEND_RESUME to add those additional pipes and
- only allow MHD_suspend_connection to be used in conjunction
- with this flag.
- Also, as MHD_resume_connection() will be called on a
- non-daemon thread, but none of the queue insert/delete
- calls are thread safe, we need to be concerned about (a)
- corrupting the queue, and (b) having to add mutex
- protection around every access to the queues, including
- loops through timer queues, etc. This wasn't a problem
- before adding resume; even suspend should be safe since it
- happens in a callback from the daemon.
- I think it's easier to (a) have MHD_suspend_connection() move
- the connection to a suspended queue, (b) have
- MHD_resume_connection() mark the connection as resuming,
- and then (c) do all the actual queue manipulations in
- MHD_select (poll, epoll, etc.) to move the resumed
- connections back to their normal queues, in response to the
- wake up. The changes are simpler & cleaner. There is a cost
- to the basic select loop that is avoided by making
- suspend/resume a startup option. The per-worker pipes can
- then also be enabled only with that option set.
- + Eliminating theoretical stack overflow by limiting length
- of URIs in authentication headers to 32k (only applicable
- if the application explicitly raised the memroy limits,
- and only applies to MHD_digest_auth_check). Issue was
- reported by Florian Weimer.
- + Fix race on shutdown signal with thread pool on non-Linux
- systems by signalling n times for n threads.
- + Introduce state to mark connections in suspended state (with
- epoll); add missing locking operations in MHD_suspend_connection.
- + Fix definition of MHD_TLS_CONNECTION_INIT.
- + Fixing issue in PostProcessor when getting partial boundary
- at the beginning, expanding test suite.
- + Implementing faster processing of upload data in multipart
- encoding (thanks to performance analysis by Adam Homolya).
- + Adding support for connection flow control via
- MHD_suspend_connection and MHD_resume_connection.
- 0.9.31:
- + Fixing build issues on OS X with CLOCK_MONOTONIC not being
- implemented on OS X.
- + Make libmicrohttpd play nicely with upcoming libgcrypt 1.6.0.
- + Improved configure checks for cURL.
- + Signal connection termination as OK (and not as ERROR) if the
- stream was terminated by the callback returning
- MHD_CONTENT_READER_END_OF_STREAM. Also, release response
- mutex before calling the termination callback, to avoid
- possible deadlock if the client destroys the response in
- the termination callback (due to non-recursiveness of the
- lock).
- + Adding #define MHD_HTTP_HEADER_ACCESS_CONTROL_ALLOW_ORIGIN.
- + Also pass MHD connection handle in URI log callback.
- + Improved check for proper OpenSSL version for
- libmicrospdy.
- + Set IPV6_V6ONLY socket option correctly when IPv6 is
- enabled (MHD_USE_IPv6) but not dual stack
- (MHD_USE_DUAL_STACK)
-
-- Update to 0.9.30
- + implements the "SHOULD" clause of RFC 2616 section 8.1.4, which
- may reduce bandwidth consumption when clients cancel requests.
- + fixes build errors with various combinations of operating systems,
- libc versions, and configure flags.
- + fixes a use-after-free crash when using epoll() in combination with
- read errors
- 0.9.29:
- + epoll can now also be used with SSL connections
- + following recent HTTP/1.1 clarfications, MHD no longer send
- a "Content-length" header in CONNECT responses.
- + the "MHD_add_connection" call now consistently sets an "errno"
- value to indicate the cause of errors.
- Connections added this way are now always processed immediately.
- + fixes a recently-introduced bug which prevented HTTP pipelining
- from working properly in some cases and a build error in
- conjunction with the "--disable-messages" configure option.
-- Enable build of (experimental) SPDY support.
-
-- Update to 0.9.28
- + support for epoll-based event loops (Linux-only)
- + various new options:
- - MHD_USE_DUAL_STACK for binding to IPv4 and IPv6 at the same time
- - MHD_USE_PIPE_FOR_SHUTDOWN to cleanly support MHD_quiesce_daemon on
- non-Linux systems
- - MHD_CONNECTION_INFO_CONNECTION_FD to allow COMET applications to
- disable TCP Nagle
- - MHD_OPTION_CONNECTION_MEMORY_INCREMENT for better control over
- buffer size allocations
- + and fixes various minor bugs
-
-- drop test_tls_options if build is in OBS
- libmicrohttpd-drop-test_tls_options.patch
-
-- More robust make install call
-- Remove redundant %clean section
-- Requires(pre) is useless without a %pre script
-
-- Update to 0.9.27
- + performance improvements for POST processing
- + new API call to reduce the number of select calls (if in "external"
- select mode)
- + new function to allow applications to stop MHD from processing new
- incoming connections while finishing ongoing requests
- + fixes an initialization problem on some platforms
- + fixes bug in the postprocessor's URL parser.
- + SSL connections are no longer dropped if the system uptime is less
- than the connection timeout
- + allows creating responses with zero bytes using
- MHD_create_response_from_callback.
- + few "const" statements have been added to allow keeping more static
- strings in ROM.
- + post processor now tolerates uploads which don't contain "\r\n" and
- also returns keys which don't have a matching value
- + fixes the loss of a parameter in processing POST data from IE8 and
- Chrome. It automatically sets a "Connection: close" header if the
- client requests the connection to be closed. Finally, given both
- 'chunked' encoding and 'content-length', MHD now ignores the
- 'content-length' header as per the RFC
- + adds support for building libmicrohttpd for Android
- + fixes an issue with data in TLS buffers sometimes not being completely
- drained if there was no activity on the socket.
-- reenabled tests and moved to %check
-- add source verification using gpg
-
-- Add copyright header to specfile.
-
-- Update to 0.9.22:
- + Allow to configure basic and digest authentication separately
- + Fix URI argument parsing when string contained keys without
- equals sign in middle of the argument.
- + Reduce default size in poft processor buffer.
-- Remove --enable-client-side from configure call, it doesn't exist
- anymore.
-- Update License tag to new SPDX format.
-
-- Updated to 0.9.21
-
-- Updated to 0.9.19
-
-- Updated to 0.9.17
-
-- Updated to 0.9.16
-
-- Updated to 0.9.15
-
-- Updated to 0.9.11
-
-- Updated to 0.9.10
-
-- Updated to 0.9.9
-
-- Updated to 0.9.8
-
-- Updated to 0.9.7
-
-- Updated to 0.9.6
-
-- Updated to 0.9.5
-
-- Updated to 0.9.4
-
-- Updated to 0.9.3
-
-- Updated to 0.9.2
-
-- Updated to 0.9.1
-
-- Updated to 0.9.0
-
-- update to 0.4.6:
- * fixes use of poll causing busy waiting
- * fixes a segfault if inconsistent options were used
- * fixes SSL support on big-endian architectures
- * fixes an issue with error signalling for PUT/POST requests in HTTP 1.1
-
-- Updated to 0.4.5.
-
-- Initial RPM.
-
libnk2
+- Delete system-libs.patch (not needed - system libs are
+ autodetected)
+
+- Update to release 20221122
+ * Removed deprecated API functions and cleaned up
+
libopenshot
+- Update to 0.3.0:
+ * Part of the OpenShot Video Editor v3.0.0 Release
+ * Huge PTS-related improvements (smoother playback, better at finding missing frames, better video compatibility)
+ * Reduce # of threads during video decoding (fixed big regression)
+ * Better handling of invalid durations (return last image with no audio)
+ * Better handling around EOF detection (return all frames)
+ * Improved Support for AV1 videos
+ * Fixed wipe / mask support for contrast (fixed algorithm)
+ * Improved ability to extract audio waveforms (improved data and algorithm)
+ * Added support for many image formats with FFmpegReader
+ * Better thread safety around AddClip/AddEffect and related operations
+ * Many new unit tests to verify thread safety (reducing crashes)
+ * Improved performance and caching for GetMaxTime()
+ * Improved clean-up of allocated readers (FFmpegReader and FrameMapper)
+ * Huge caching optimizations (for improved real-time playback)
+ * Fix to multi-line captions (captions effect)
+ * Improvements to caption effect (background only behind text, text centering)
+ * Better detection for video length and duration
+ * Improved snapping precision for clips and transitions
+ * Improved QImage copying and buffer clean-up
+ * Fix invalid frame mapping calculation (causing some frames to be skipped)
+ * Switch to Catch2 unit tests (from cppunittest)
+ * Added ability to pause video cache (extremely useful in UI when making rapid changes)
+ * Improvements in real-time video & audio playback (sample rate & audio device detection, correct timing)
+ * Adding pre-roll to VideoCacheThread (for smoother playback)
+ * Huge memory leak fixed, related to decoding video
+ * Improved resvg support & performance
+ * Added support for babl color library (improved chroma key effect - many new keying methods)
+ * Added support for anamorphic profiles
+ * Many new unit tests
+
libosip2
+- Update to version 5.3.1:
+ + In multipart bodies, LWS can't exist (CVE-2022-41550).
+
-- Update to 4.1.0:
- * fix sdp re-allocation
- * increase max length size
- * osip_trace_initialize returns 0 if log are compiled.
- * timer e and timer g will use #define DEFAULT_T2 instead of 4000.
- * handle additionnal possible malloc failure.
- * fix compatibility with old UA for INVITE retransmission.
- * fix osip_sem_destroy leak on apple.
- * accept lowercase sip/2.0.
-- Rebase libosip2-3.5.0.dif and rename to libosip2-4.1.0.patch.
-- Rebase libosip2-3.5.0-pthread.patch and rename to libosip2-4.1.0-pthread.patch.
-
libpulp
+- Update package with libpulp-0.2.8:
+ * Minor code refactoring.
+ * Fixed a bug where libpulp rejected correct ELF files as library input.
+ * Fixed a file descriptor leak when -check-stack is passed to ulp.
+ * Fixed a bug where ulp did not shown libcrypto.so.1.1 as a livepatchable library (bsc#1208575)
+
libqt5-qtbase
+- Update to version 5.15.8+kde185:
+ * QFSFileEngine: fix overflow bug when using lseek64
+ * Add QImage null check when QOpenGLTexture converts
+- Add patch to fix return key handling in QGroupBox on GNOME (bsc#1209364):
+ * 0001-Revert-QGnomeTheme-Allow-Space-Return-Enter-and-Sele.patch
+- Add patch to fix XInput2 events in big-endian X11 clients (bsc#1204883, QTBUG-105157):
+ * big-endian-scroll.patch
+
libstorage-ng
+- Translated using Weblate (Portuguese (Brazil)) (bsc#1149754)
+- 4.5.92
+
+- merge gh#openSUSE/libstorage-ng#922
+- add PCIe as disk transport
+- 4.5.91
+
+- merge gh#openSUSE/libstorage-ng#921
+- fixed setting sysfs-name for partitions on nvme disks
+- 4.5.90
+
+- Translated using Weblate (Georgian) (bsc#1149754)
+- 4.5.89
+
+- Translated using Weblate (Polish) (bsc#1149754)
+- 4.5.88
+
libyang
+- update to v2.1.55:
+ * type compilation fixes
+ * multi-error validation support
+ * JSON parser fixes
+ * portability improvements
+ * schema-mount support improvements
+ * minor optimizations
+ * other minor fixes
+- fixed bsc#1210072, CVE-2023-26916
+
+- update to v2.1.30:
+ * many JSON printer/parser fixes and improvements
+ * unintentionally large library size reduced
+ * thread safety improvements
+ * big-endian compatibility fix
+ * uncrustify updated
+ * lots of other fixes and improvements
+
+- update to 2.1.4:
+ * large extensions refactoring
+ * increased ext plugin API version
+ * new callbacks and capabilities of plugins
+ * changes in the parsed and compiled ext instance structures
+ * native support for structure extension
+ * error path logging improvements
+ * fixed unions with leafrefs
+ * yanglint schema mount support
+ * huge number of other fixes and improvements
+
lsvpd
+- Fix NVMe information parsing for some devices (bsc#1208122 ltc#200118)
+ + lsvpd-Add-NVME-f1h-log-page-VPD-information-parsing-.patch
+ + lsvpd-Update-nvme_template-with-logpage-format-for-0.patch
+
+- Replace transitional %usrmerged macro with regular version check (boo#1206798)
+
mdadm
+- sysconfig.mdadm: Remove ServiceRestart line to mdadm since there
+ is not such systemd service. (bsc#1203491)
+
mediainfo
+- Update to version 23.03
+ Added features:
+ * DTS: Detection of IMAX Enhanced
+ * MOV/MP4: Add HDR Vivid format support
+ * HEVC: Add HDR Vivid format support
+ * MXF/PCM: detect silent tracks (full parsing only)
+ * Monkey's Audio: support of 32-bit files, show version
+ * MP4 audioProfileLevelIndication: add Low Delay AAC v2 Profile
+ * MP4/MOV: support of FLAC
+ * MOV/MP4: support of TTML with images
+ * MPEG-7: 3 modes (strict, relaxed, extended)
+ * MPEG-7: more sub-termIDs (AudioPresentationCS)
+ * MPEG-7: Add more PublicIdentifiers
+ * MPEG-7: more sub-termIDs (MP4, WAV, AVC, ProRes)
+ * AVI/WAV: display of the kind of fmt chunk
+ * AVC: detection of more profiles
+ * ChannelLayout: difference between M (Mono) and C (Center,
+ part of multichannel content)
+ * AC-3: detection of channel layout also for encrypted content
+ * AC-4 and MPEG-H 3D Audio: Merged channel layout (all
+ sub-streams together)
+ * DTS: Detection of real bit depth e.g. 20 instead of only
+ byte aligned bit depth (16 or 24)
+ * FLAC: support of BWF in Vorbis comments
+ * N19/STL: codepage, subtitle count, max line per subtitle,
+ more metadata
+ * ISAN: detection of descriptions referencing an ISAN
+ * AAC: detection of eSBR (and fix of random wrong PS detection)
+ * Extract of time codes, XML format, currently only for for MXF
+ Fixed bugs:
+ * MP4/MOV: fix freezes with some unknown udta atoms
+ * FLV: fix duration of 0 with some buggy files
+ * AVC: fix PTS of last frame
+ * FFV1: fix potential crash with malformed files
+ * AV1: add HDR format line and fix HDR values
+ * AAC and WAV: fix of channel layout display for 5 front
+ channels
+ * AC-4: Tl/Tr mapped to to Tsl/Tsr
+ * FLAC: fix sampling count
+ * ID3v2: fix Genre not showing ID 0 (Blues)
+ * MPEG-7: VBR fix
+ * JSON/XML: Remove minus sign from element names
+ * Normalization of date/time in report
+
milou5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
minio-client
+- Update to version 20221213T002328Z:
+ * Add LDAP policy attach/detach commands (#4390)
+ * mirror: continue operations even if source object goes missing (#4402)
+ * Add full list of call types. (#4401)
+ * trace: Add two validations for passed arguments (#4399)
+ * admin update: Add a prompt for confirmation (#4400)
+ * stat: avoid unix epoch time when printing date (#4398)
+ * Stat: Do not append a slash when --rewind is specified (#4396)
+ * find: Add support of --versions flag (#4394)
+ * Report data usage in `mc stat` of bucket (#4392)
+ * Add staticheck to make lint (#4395)
+ * add HiddenAliases to avoid printing aliases when deprecated (#4393)
+ * Move `mc admin bucket quota` to `mc quota` (#4389)
+ * add support for upload/download limits (#4388)
+ * rename force-delete to purge hidden flag (#4387)
+ * Add staticcheck to CI (#4386)
+
+- Update to version 20221202T234847Z:
+ * fix: IDP remove commands (#4384)
+ * Bump up madmin-go to v2 (#4382)
+ * Use NewArnFromString when parsing user-provided ARN string (#4378)
+ * Move `support logs` to `admin logs` (#4381)
+ * Add commands to set, show and remove proxy (#4375)
+ * Restructure `mc support callhome` command (#4372)
+ * top-locks: Include lock duration in --json output (#4366)
+ * fix: stat --json output for single alias (#4376)
+ * Add site resync commands (#4269)
+
+- Update to version 20221117T212039Z:
+ * ilm-ls: report ExpiredObjectDeleteMarker correctly (#4373)
+ * fix `cp --zip` so it copies to given destination name (#4358)
+ * fix: mc stat for filesystem items (#4371)
+ * ls: Fix listing versions when the system clock is off (#4370)
+ * du: Do not count directories in FS mode (#4369)
+ * fix: examples for `mc admin idp` commands (#4368)
+ * update license headers to 2022 (#4360)
+ * fix: 'du' clean the input path to avoid extra counting (#4361)
+ * encrypt: remove sse-s3 example (#4357)
+ * Improve ilm-add flags and ilm-ls output (#4262)
+ * Add LDAP Policy Entities command (#4318)
+
+- Update to version 20221107T234739Z:
+ * Bump up madmin-go for IDP API client bugfix (#4351)
+ * Replicate-update instead of replicate-edit (#4346)
+ * replicate diff: change ui (#4347)
+ * Handling newerNoncurrentVersions Expiry and Transition in validation (#4348)
+ * More improvements in format of perf test results (#4350)
+ * Update admin IDP commands with new design (#4310)
+ * Update version of madmin-go to v1.7.3 (#4344)
+ * add help menu for cmd 'mc admin user add' (#4337)
+ * modify operation type in message (#4339)
+ * fix: stat command with a directory marker (#4341)
+ * generalize input for ctx.Command.Name (#4338)
+ * Fix typo in rebalance-stop output (#4336)
+ * fix up rebalance commands for 'mc' error conventions and usage (#4333)
+ * feat: admin-rebalance subcommands (#4186)
+ * Add support for inspect data v2 (#4185)
+
mksusecd
+- merge gh#openSUSE/mksusecd#65
+- create efi boot image, if missing
+- support grub hybrid boot code
+- update doc
+- show missing s390x file name correctly
+- adjust boot info table checksum in grub
+- better warning of insufficient file permissions
+- support Live media (jsc#PED-2975)
+- 2.10
+
monero-gui
+- Update to version 0.18.1.2:
+ * build: prepare v0.18.1.2
+ * Github workflow android: remove obsolete docker layers
+ * Use different colors for different subaccounts
+ * Android: disable asking for desktop entry
+ * Docker android: update Qt to 5.15.6 (and API level to 29)
+ * workflows: fix windows ci deploy
+ * Fix behavior when switching nodes
+ * Docker android: upgrade base image
+ * Docker android: bump libraries
+ * Docker android: update SDK and NDK
+ * translations from webalte
+ * build: prepare v0.18.1.1
+ * installer: allow to install on arm64
+ * docker: update qt to 5.15.6
+ * cmake: update libicu dll version
+ * main: add --no-igd to simple mode flags
+ * docker: update linux dependencies
+ * repo: remove ldns leftovers
+ * Dockerfile: fix hash
+ * build: prepare v0.18.1.0
+ * main: only check mining status when using local node
+ * libwalletqt: refresh once on wallet opening
+ * trim restore height at info -> change height input
+ * Windows installer: Welcome image for 0.18
+ * TxUtils: don't show resolve for float
+ * README: Update copyright to 2022
+ * build: prepare v0.18.0.0
+ * docker: update linux and android openssl
+ * docker: fix linux build
+ * display wallet files with "." in name
+ * Updated to p2pool v2.2.1
+ * convert nettype to int to return correct rpc port
+ * WizardRestoreWallet1: trim whitespaces from seed
+ * Updated to p2pool v2.2
+ * DaemonManagerDialog: close dialog when GUI is connected
+ * oshelper: fix openContainingFolder on Linux
+ * Transfer: don't create offline tx before wallet is synced
+ * docker: update Qt to 5.15.5
+ * translations from weblate
+ * Mining: add info to start gui as admin for p2pool installation
+ * Use `p2pool` folder for p2pool on Windows
+ * Mining: save selected dropdown index
+ * SettingsWallet: add scan transaction option
+ * libwallet: add scanTransactions function
+ * docker: qt 5.15.4
+ * Only kill p2pool if we started it
+ * qt: replace QRegExp with QRegularExpression
+ * qt: remove QTextCodec
+ * main: disable setting -platformpluginpath
+ * History: fix payment proof button
+ * workflows: add caching for docker android
+ * js: minimize frameless window when clicking on taskbar icon
+ * main: add compile time option to disable updates
+ * WizardModeSelection: disable simple mode on Tails
+ * Makefile: set CMAKE_BUILD_TYPE to debug for debug target
+ * images: update mac icon
+ * WizardCreateDevice1: add Ledger Nano S Plus
+ * WizardCreateDevice1: set default restore height to 1
+ * Wizard: fix stagenet approx blockheight
+ * Settings: option to skip stop local node screen
+ * main: remove outdated code
+
moolticute
+- Update to v1.00.1
+ credential fetching bug fix
+- Changelog from v1.00.0
+ Matches bundle v12 release
+ Built with QT6 on Mac & Windows
+ * All devices changelog:
+ minimize on cmd+q on MacOS
+ * Mini BLE changelog:
+ change BLE name
+ credential mirroring feature
+ multiple domain support
+ TOTP setting bug fix
+ monospaced font for notes
+ allow reprogramming of "soft serial numbers" for non programmed units
+ hide save button for clean categories
+ bug fix: preventing continuous queries when the card is suddenly removed
+ fix Qt6 MMM filter remove display issue
+ fix xenial/bionic Qt related build issue
+ notes not fetched bug fix
+ * New settings:
+ on-screen OTP display after login into website
+ login menu: start from last used service
+ switch off after BLE disconnect
+ sort favorites by last used date
+ allocated for MC, specify subdomain status on device
+ custom delay between enter key and password for unlock
+ screen brightness setting
+ subdomain setting enforcement
+ get TOTP message
+ category enforcement
+ Invert Login And Favorites Icons
+
mplus-fonts
+- Updated to most recent commit (20230116)
+ * Versions no longer provided by upstream so switched to date versioning
+ * _service created to get repository tarball and commit date for versioning
+ * Website got moved to https://mplusfonts.github.io/
+ * License got changed to OFL-1.1
+ * Now there are four families being offered along with variable
+ variants so there are now accompanying subpackages for them
+ - M PLUS 1: mplus1-fonts and mplus1-variable-fonts
+ - M PLUS 2: mplus2-fonts and mplus2-variable-fonts
+ - M PLUS 1 Code: mplus1-code-fonts and mplus1-code-variable-fonts
+ - M PLUS Code Latin (which has 50% and 60% character width versions):
+ * M PLUS Code Latin 50: mplus-code-latin50-fonts
+ * M PLUS Code Latin 60: mplus-code-latin60-fonts
+ * M PLUS Code Variable: mplus-code-latin-variable-fonts
+ - There is only one variable font as its character width can be adjusted
+ * mplus-fonts package will now install mplus1-fonts and mplus2-fonts
+ * See https://mplusfonts.github.io/ for more details
+
-- updated to testflight 052
- * New 100 glyphs and 4300 kanji glyphs are available in total.
- * This version covers JIS Level 1.
-
nextcloud-desktop
+- Update to 3.7.4
+ - desktop#5425 [stable-3.7] check German translation for wrong wording
+ - desktop#5437 [stable-3.7] Fix "Create new folder" menu entries in settings not working correctly on macOS
+ - desktop#5438 [stable-3.7] Clean up account creation and deletion code
+ - desktop#5446 [stable-3.7] Fix share dialog infinite loading
+ - desktop#5450 [stable-3.7] fix edit locally job not finding the user account: wrong user id
+ - desktop#5454 [stable-3.7] skip e2e encrypted files with empty filename in metadata
+ - desktop#5481 [stable-3.7] Always discover blacklisted folders to avoid data loss when modifying selectivesync list.
+ - desktop#5483 [stable-3.7] use new connect syntax
+ - desktop#5484 [stable-3.7] with cfapi when dehydrating files add missing flag
+ - desktop#5487 [stable-3.7] Fix avatars not showing up in settings dialog account actions until clicked on
+ - desktop#5488 [stable-3.7] Fix text labels in Sync Status component
+ - desktop#5489 [stable-3.7] Fix infinite loading in the share dialog when public link shares are disabled on the server
+ - desktop#5490 [stable-3.7] Ci/clang tidy checks init variables
+ - desktop#5494 [stable-3.7] Display 'Search globally' as the last sharees list element
+ - desktop#5499 [stable-3.7] Resize WebView widget once the loginpage rendered
+ - desktop#5502 [stable-3.7] Bugfix/do not restore virtual files
+ - desktop#5505 [stable-3.7] Fix display of 2FA notification.
+
+- Update to 3.7.3
+ - Revert "Fix(l10n): capital_abcd Update translations from Transifex"
+ - Revert "Fix(l10n): capital_abcd Update translations from Transifex"
+ - Revert "Fix(l10n): capital_abcd Update translations from Transifex"
+
+- Update to 3.7.2
+ - No regular changelog from upstream.
+ See instead: https://github.com/nextcloud/desktop/compare/v3.7.1...v3.7.2
+
+- Update to 3.7.1
+ - Backport/5393/stable 3.7 by @mgallien in #5403
+ - Fix wrong estimated time when doing sync. in #4902
+ - Bugfix/selective sync abort error in #4903
+ - Set UnifiedSearchResultNothingFound visibility less messily in #4751
+ - Clean up QML type and singleton registration in #4817
+ - Simplify activity list delegates by making them ItemDelegates, clean up in #4786
+ - Improve activity list highlighting/keyboard item selection in #4781
+ - Replace private API QZipWriter with KArchive in #4768
+ - makes Qt WebEngine optional only on macOS in #4875
+ - Bugfix/conflict resolution when selecting folder in #4914
+ - Fix fileactivitylistmodel QML registration in #4920
+ - Updated link to documentation in #4792
+ - Fix menu bar height calculation on macOS in #4917
+ - Fix ActivityItem activityHover error in #4921
+ - Fix add account window text clipping, enlarge text in #4910
+ - Accept valid lsColJob reply XML content types in #4919
+ - Fix low-resolution file changed overlay icons in activities in #4930
+ - Refactor ActivityListModel population mechanisms in #4736
+ - Make account setup wizard's adjustWizardSize resize to current page size instead of largest wizard page in #4911
+ - Deallocate call notification dialog objects when closed by @claucambra in #4939
+ - Ensure that the file being processed has had its etag properly sanitised, log etag more in #4940
+ - Feature/syncjournaldb handle errors in #4819
+ - Do not format text in QML components as HTML in #4944
+ - Fix two factor auth notification: activity item was disabled. in #4961
+ - Add a placeholder item for empty activity list in #4959
+ - Ensure strings in main window QML are presented as plain text and not HTML by @claucambra in #4972
+ - Improve handling of file name clashes by @claucambra in #4970
+ - Add a QSortFilterProxyModel-based SortedActivityListModel by @claucambra in #4933
+ - Bring back .lnk files on Windows and always treat them as non-virtual files. by @allexzander in #4968
+ - Fix two factor authentication notification by @camilasan in #4967
+ - Ensure placeholder message in emoji picker wraps correctly in #4960
+ - Make activity action button an actual button, clean up contents in #4784
+ - Improve the error box QML component in #4976
+ - Fix 'Reply' primary property. in #4985
+ - Fix sync progress bar colours in dark mode in #4986
+ - Fix predefined status text formatting in #4987
+ - Don't set up tray context menu on macOS, even if not building app bundle in #4988
+ - Ci/check clang tidy in ci in #4995
+ - check our code with clang-tidy in #4999
+ - alway use constexpr for all text constants in #4996
+ - avoid possibly crashing static_cast in #4994
+ - switch AppImage CI to latest tag: client-appimage-6 in #5003
+ - configure a list of checks for clang-tidy in #5004
+ - Fix link shares default expire date being enforced as maximum expire date even when maximum date enforcement is disabled on the server in #4982
+ - apply modernize-use-using via clang-tidy in #4993
+ - Ci/use no discard in #4992
+ - Fix files not unlocking after lock time expired in #4962
+ - Update client image in #5002
+ - let's check the format via some github action in #4991
+ - Feature/vfs windows sharing and lock state in #4942
+ - Update after tx migrate in #5019
+ - Improve 'Handle local file editing' feature. Add loading popup. Add force sync before opening a file. in #4990
+ - Command-line client. Do not trust SSL certificates by default, unless '--trust' option is set. in #5022
+ - Bugfix/files lock fail metadata in #5024
+ - do not ignore return value in #4998
+ - improve logs when adding sync errors in activity list of main dialog in #5032
+ - Fix invisible user status selector button not being checked when user is in Offline mode in #5012
+ - use correct version copmparison on NSIS updater: fix update from rc in #4979
+ - Bugfix/check token for edit locally requests in #5039
+ - Fix the dismiss button: display it whenever possible. in #4989
+ - Fix account not found when doing local file editing. in #5040
+ - Improve "pretty user name"-related strings, display in webflow credentials in #5013
+ - Update CHANGELOG with 3.6.1 changes. in #5066
+ - Fix call notification dialog buttons in #5074
+ - validate certificate for E2EE against private key in #4949
+ - emit missing signal to update folder sync status icon in #5087
+ - Update CMake usage in README build instructions in #5086
+ - Clean up methods in sync engine in #5071
+ - Make Systray's void methods slots in #5042
+ - Remove unneeded parameter from CleanupPollsJob constructor in #5070
+ - Add a 'Sync now' button to the sync status header in the tray window in #5018
+ - Modernise and improve code in AccountManager in #5026
+ - Fix macOS autoupdater settings in #5102
+ - Validate and sanitise edit locally token and relpath before sending to server in #5093
+ - Refactor FolderMan's "Edit Locally" capabilities as separate class in #5107
+ - Modernise and improve code in AccountSettings in #5027
+ - Fix compatibility with newer python3-nautilus in #5105
+ - Only show Sync Now button if account is connected in #5097
+ - use new public API to open an edit locally URL in #5116
+ - Add a new file details window, unify file activity and sharing in #4929
+ - E2EE. Do not generate keypair without user request. in #5067
+ - Fix incorrect current user index when adding or removing a user account. Also fix incorrect user avatar lookup by id. in #5092
+ - Remove unused internal link widget from old share dialog in #5123
+ - Use separate variable for cfg file name in CMAKE. in #5136
+ - Bugfix/delete folders during propagation even when propagation has errors in #5104
+ - Remove unused app pointer in CocoaInitializer in #5127
+ - Ensure 'Sync now' button doesn't have its text elided in #5129
+ - Fix share delegate button icon colors in dark mode in #5132
+ - Do not use copy-assignment of QDialog. in #5148
+ - Remove unused remotePath in User::processCompletedSyncItem in #5118
+ - Make user status selector modal, show user header in #5145
+ - properly escape a path when creating a test file during tests in #5151
+ - Add support cmake unity build in #5109
+ - Fix typo of connector in #5157
+ - fully qualify types in signals and slots in #5088
+ - Remove reference to inexistent property in NCCustomButton in #5173
+ - Fix ActivityList delegate warnings in #5172
+ - Ensure forcing a folder to be synced unpauses syncing on said folder in #5152
+ - switch back to upstream craft in #5178
+ - fix renaming of folders with a deep hierarchy inside them in #5182
+ - fix instances of: c++11 range-loop might detach Qt container warnings in #5089
+ - Implement context menu entry "Leave this share" in #5081
+ - check that we update local file mtime on changes from server in #5188
+ - Add end-to-end tests to our CI in #5124
+ - Modernize the Dolphin action plugin in #5192
+ - Ci/do not modify configuration file duringtests in #5200
+ - cmake: Use FindPkgConfig's pkg_get_variable instead of custom macro in #5199
+ - Fix tray window margins, stop cutting into window border in #5202
+ - fix regressions on pinState management when doing renames in #520
+ - Fix bad custom button alignments, sizings, etc. in #5189
+ - Ci/do not override configuration file in #5206
+ - Clearly tell user that E2EE has been enabled for an account in #5164
+ - Fix CfApiShellExtensionsIPCTest in #5209
+ - l10n: Fixed grammar in #5220
+ - Prevent bad encrypting of folder if E2EE has not been correctly set up in #5223
+ - Remove close/dismiss button from encryption message in #5163
+ - Update macOS shell integration deployment targets in #5227
+ - Bugfix/case cash conflicts should not terminate sync in #5224
+ - Differentiate between E2EE not being enabled at all vs. E2EE being enabled already through another device in account settings message in #5179
+ - Ensure more QML text components are rendering things as plain text in #5231
+ - l10n: Correct spelling in #5221
+ - Make use of plain text-enforcing qml labels in #5233
+ - Feature/edit file locally restart sync in #5175
+ - Fix CI errors for Edit Locally. in #5241
+ - Lock file when editing locally in #5226
+ - Format some QLabels as plain text in #5247
+ - do not create GUI from a random thread and show error on real error in #5253
+ - Fix BasicComboBox internal layout in #5216
+ - Explicitly size and align user status selector text input to avoid bugs with alternate QtQuick styles in #5214
+ - do not use bulk upload for e2ee files in #5256
+ - Only show mnemonic request dialog when user explicitly wants to enable E2EE in #5181
+ - Replace share settings popup with a page on a StackView in #5194
+ - Add interactive NC Talk notifications on macOS in #5143
+ - Show file details within the tray dialog, rather than in a separate dialog in #5139
+ - Silence sync termination errors when running EditLocallyJob. in #5261
+ - Fix typo in #5257
+ - Add an "Encrypt" menu entry in file browser context menu for folders in #5263
+ - Add a nix flake for easy building and dev environments in #5007
+ - Add an internal link share to the share dialog in #5131
+ - Avoid the Get-Task-Allow Entitlement (macOS Notarization) in #5274
+ - sets a fixed version for pixman when buildign desktop client via Craft in #5269
+ - Fix SyncEngineTest failure when localstate is destroyed. in #5273
+ - Feature/remove obsolete names in #5271
+ - Remove unused HeaderBanner component in #5245
+ - Feature/do not sync enc folders if e2ee is not setup in #5258
+ - fix migration from old settings configuration files in #5141
+ - Use QFileInfo::exists where we are only creating a QFileInfo to check if file exists in #5291
+ - Make correct use of Qt signal 'emit' keyword in #5287
+ - Remove unused variables in #5290
+ - Declare all QRegularExpressions statically in #5289
+ - l10n: Remove space in #5297
+ - Feature/move shellextensions to root installdir in #5295
+ - Improve backup dark mode palette for Windows in #5298
+ - Allow setting up an account with apppasword and folder via command-line arguments. For deployment. in #5296
+ - Update file's metadata in the local database when the etag changes while file remains unchanged.
+ Fix subsequent conflict when locking and unlocking. in #5293
+ - Fix warnings on QPROPERTY-s in #5286
+ - Replace now deprecated FSEventStreamScheduleWithRunLoop with FSEventStreamSetDispatchQueue in #5272
+ - Fix macOS shell integration class inits in #5299
+ - Drop dependency on Qt Quick Controls 1 in #5309
+ - Fix full-text search results not being opened in browser in #5279
+ - Feature/allow forceoverrideurl via command line in #5329
+ - Bugfix/e2ee vulnerability empty metadatakeys in #5323
+ - Always generate random initialization vector when uploading encrypted file in #5324
+ - Fix bad string for translation. in #5358
+ - Update legal notice to 2023 in #5361
+ - Fix migration from legacy client when override server url is set in #5322
+ - Don't try to lock folders when editing locally in #5317
+ - Fix fetch more unified search result item not being clickable in #5266
+ - Add ability to disable E2EE in #5167
+ - Remove unused monochrome icons setting in #5366
+ - Feature/sync with case clash names in #5232
+ - Edit locally. Do not lock if locking is disabled on the server. in #5371
+ - Revert "Merge pull request #5366 from nextcloud/bugfix/remove-mono-icons-setting" in #5372
+ - Open calendar notifications in the browser. in #4684
+ - Migrate old configs in #5362
+ - Always unlock E2EE folders, even when network failure or crash. in #5370
+ - [stable-3.7] Fix displaying of file details button for local syncfileitem activities in #5380
+ - [stable-3.7] Improve config upgrade warning dialog in #5386
+ - Backport/5385/stable 3.7 in #5388
+
+- Update to 3.6.6
+ - Revert "Fix(l10n): capital_abcd Update translations from Transifex" 33f3975
+- Drop Fix_3.6.5_Language_Bug_#5339.patch, because now in upstream.
+
+- Add patch Fix_3.6.5_Language_Bug_#5339.patch.
+
+- Update to 3.6.5
+ - do not assert when sharing to a circle in #5310
+ - [stable-3.6] Fix macOS shell integration class inits in #5311
+ - [stable-3.6] Drop dependency on Qt Quick Controls 1 in #5312
+ - [stable-3.6] Feature/allow forceoverrideurl via command line in #5332
+ - [stable-3.6] Fix typo in #5270
+ - [stable-3.6] check that we update local file mtime on changes from server in #5321
+ - [stable-3.6] fix regressions on pinState management when doing renames in #5333
+ - [stable-3.6] Always generate random initialization vector when uploading encrypted file in #5334
+ - [stable-3.6] Fix SyncEngineTest failure when localstate is destroyed. in #5336
+ - [stable-3.6] Bugfix/e2ee vulnerability empty metadatakeys in #5335
+
nvidia-open-driver-G06-signed
+- Update to version 525.105.17
+
openSUSE-release-tools
+- Update to version 20230110.5f7806f:
+ * Switch to ci-test.yml to actions/checkout@v3 and codecov/codecov-action@v3
+ * Drop gocd pipelines for 15.3
+
+- Update to version 20230105.9011ec4:
+ * consistency: remove .sh suffix from openh264_release_to_publish.sh
+ * add set -e to remaining openh264 scripts as well
+ * add set -e to not hide any failures
+ * add openh264 tools into CONTENTS.md
+ * reflect change in script name
+ * fix date pattern %M->%m
+ * Add date into archive name
+ * Spellcheck from cboltz
+ * Use api.opensuse.org instead
+ * Scriptw for manual release workflow of OpenH264
+
+- Update to version 20230103.b4e2549:
+ * retab publish_distro
+ * check_source_tests: Adopt expected error to latest changes
+ * metrics.py: Fix E741 ('l' may look like 'I')
+ * More fixes for editor config compliance
+ * gocd: Apply editorconfig standards
+ * publish_distro_conf: Apply editor config standards
+ * Validate that the files match the editor config
+
+- Update to version 20230102.e49b449:
+ * dashboard: remove 15.3 (EOL)
+
+- Update to version 20221216.84941bd:
+ * gocd: ensure timeout is set for packagelist generation
+
+- Update to version 20221213.82ee694:
+ * dashboard: add openQA information to Legacy x86
+
+- Update to version 20221212.41dbcc8:
+ * dashboard: Add LegacyX86 port and sort the list
+ * staging_accept: update Factory version in LegacyX86 port on accept
+
+- Update to version 20221212.5effc63:
+ * retab the line use spaces instead
+ * publish_distro add --now to set PUBLISH_DELAY=0
+
openlibm
+- Update to 0.8.1:
+ * Fix sqrt function on i387
+ * Fix incorrect results in `hypotl` near underflow
+ * Export `fenv` functions on all platforms
+- add linker flags to prevent executable stack
+
-- Update to version 0.4
- * No changelog available
-- Remove obsolute openlibm-build-targets.patch
-
openshot-qt
+- Update to 3.0.0:
+ * Part of the OpenShot Video Editor v3.0.0 Release
+ * Huge improvements to User-Guide
+ * Fix to About->Changelog dialog (correctly parse logs)
+ * Updated AppStream XML metadata
+ * Many fixes to translations and our entire translation pipeline
+ * Support for many new languages
+ * Huge caching improvements (and new cache preferences)
+ * New Location preferences (for default folders - recent vs project)
+ * Added support for Blender 3.3.x (and many other blender-related improvements)
+ * Fixes to the build-in tutorial system (when hiding/showing widgets)
+ * Many fixes to sorting, including ability to manually sort lists (especially useful when using translations)
+ * Huge improvement to audio waveform support (faster waveforms, improved algorithm, more accurate, caching, and optimizations)
+
openssl-1_0_0
+- Security Fix: [CVE-2023-0464, bsc#1209624]
+ * Excessive Resource Usage Verifying X.509 Policy Constraints
+ * Add openssl-CVE-2023-0464.patch
+
+- Fix DH key generation in FIPS mode, add support for constant BN for
+ DH parameters [bsc#1202062]
+ * Add patch: openssl-fips_fix_DH_key_generation.patch
+
openssl-1_1
+- Security Fix: [CVE-2023-0465, bsc#1209878]
+ * Invalid certificate policies in leaf certificates are silently ignored
+ * Add openssl-CVE-2023-0465.patch
+- Security Fix: [CVE-2023-0466, bsc#1209873]
+ * Certificate policy check not enabled
+ * Add openssl-CVE-2023-0466.patch
+
+- Security Fix: [CVE-2023-0464, bsc#1209624]
+ * Excessive Resource Usage Verifying X.509 Policy Constraints
+ * Add openssl-CVE-2023-0464.patch
+
+- FIPS: Service-level indicator [bsc#1208998]
+ * Add additional check required by FIPS 140-3. Minimum values for
+ PBKDF2 are: 112 bits for key, 128 bits for salt, 1000 for
+ iteration count and 20 characters for password.
+ * Add openssl-1_1-ossl-sli-008-pbkdf2-salt_pass_iteration.patch
+
openssl-3
+- Security Fix: [CVE-2023-0465, bsc#1209878]
+ * Invalid certificate policies in leaf certificates are silently ignored
+ * Add openssl-CVE-2023-0465.patch
+- Security Fix: [CVE-2023-0466, bsc#1209873]
+ * Certificate policy check not enabled
+ * Add openssl-CVE-2023-0466.patch
+
+- Security Fix: [CVE-2023-0464, bsc#1209624]
+ * Excessive Resource Usage Verifying X.509 Policy Constraints
+ * Add openssl-CVE-2023-0464.patch
+
openvpn
+- bsc#1202792: --enable-iproute2 added back as default option.
+
oxygen5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
pacemaker
+- libcrmcommon: allow crm_attribute to try OCF_RESOURCE_INSTANCE environment variable if -p is specified with an empty string (bsc#1209586)
+ * bsc#1209586-0001-Fix-libcrmcommon-allow-crm_attribute-to-try-OCF_RESO.patch
+- libcrmcommon: avoid libqb assertion
+ * 0001-Low-libcrmcommon-avoid-libqb-assertion.patch
+
+- Revert "Fix: libpacemaker: ensure any pending recurring monitor gets updated if it fails" (bsc#1206263)
+ * Drop obsolete bsc#1206263-0004-Fix-libpacemaker-ensure-any-pending-recurring-monito.patch
+- cts-regression: reflect any test failures again with the return code
+ * 0001-Test-cts-regression-reflect-any-test-failures-again-.patch
+- tool: update crm_mon synopsis (bsc#1208868)
+ * bsc#1208868-0001-Fix-tool-update-crm_mon-synopsis.patch
+
+- libcrmcommon: Don't parse "-INFINITY" as a list of cmdline options (CLBZ#5509)
+ * CLBZ#5509-0001-Fix-libcrmcommon-Don-t-parse-INFINITY-as-a-list-of-c.patch
+- tools: crm_shadow --commit now works with CIB_file
+ * 0001-Fix-tools-crm_shadow-commit-now-works-with-CIB_file.patch
+- watchdog-fencing: correctly derive timeout with topology
+ * 0003-Fix-watchdog-fencing-correctly-derive-timeout-with-t.patch
+ * 0002-Refactor-watchdog-fencing-convenience-function-pcmk_.patch
+- watchdog-fencing: terminate dangling timer before watchdog-waiting
+ * 0001-Fix-watchdog-fencing-terminate-dangling-timer-before.patch
+- libcrmcommon: Fix problems with pcmk__output_and_clear_error.
+ * 0001-Low-libcrmcommon-Fix-problems-with-pcmk__output_and_.patch
+
+- libcrmcommon: Fix handling node=NULL in pcmk__attrd_api_query.
+ * 0001-High-libcrmcommon-Fix-handling-node-NULL-in-pcmk__at.patch
+- fencer: Avoid double source remove of op_timer_total (rh#2166967)
+ * rh#2166967-0002-Fix-fencer-Avoid-double-source-remove-of-op_timer_to.patch
+
+- fencer: Prevent double g_source_remove of op_timer_one (rh#2166967)
+ * rh#2166967-0001-Fix-fencer-Prevent-double-g_source_remove-of-op_time.patch
+- scheduler: handle cleaned migrate_from history correctly (bsc#1182313)
+ * bsc#1182313-0005-Test-scheduler-update-expected-output-for-migration-.patch
+ * bsc#1182313-0004-Fix-scheduler-handle-cleaned-migrate_from-history-co.patch
+ * bsc#1182313-0003-Test-scheduler-add-regression-test-for-migration-int.patch
+- scheduler: unknown_on_node() should ignore pending actions (bsc#1182313)
+ * bsc#1182313-0002-Low-scheduler-unknown_on_node-should-ignore-pending-.patch
+ * bsc#1182313-0001-Refactor-scheduler-improve-xpath-efficiency-when-unp.patch
+
-- libcrmcommon: Fix an IPC-related memory leak.
+- libcrmcommon: Fix an IPC-related memory leak. (bsc#1208544)
pam_kwallet
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
paraview
+- Build with system verdict for openSUSE > 1500.
+
+- Update to version 5.11.0:
+ * Many changes, see
+ <https://www.kitware.com/paraview-5-11-0-release-notes/>.
+- Drop paraview-include-sstream.patch: incorporated upstream.
+- New BuildRequires: sqlite3, pkgconfig(liblzma),
+ pkgconfig(nlohmann_json), pkgconfig(proj), pkgconfig(sqlite3).
+- Build without system nlohmann_json for Leap 15.3 and older.
+- Update rpmlintrc file to suppress false positives.
+
patchelf
+- update to 0.17.2:
+ * Also pass STRIP to the tests
+ * Fix Out-of-bounds read in the function modifySoname
+ * Split segment size fix
+
+- update to 0.17.0:
+ * fix pagesize on ia64
+ * write out replace sections in original order
+ * patchelf: correct page size for sparc64/sparc32
+ * update vendored elf file
+ * add workaround for readelf from binutils 2.30
+ * make objdump/objcopy/readelf configurable and respect cross-compiling
+ * build patchelf on windows
+
+- update to 0.16.1:
+ * Handle glibc-hwcaps on ppc64le on CentOS/RHEL/Rocky 8 for tests/replace-add-needed.sh (fixes #406)
+ * Add --print-os-abi and --set-os-abi options
+ * Fix Out-of-bounds read in the function modifyRPath
+ * Sync .note.gnu.property to PT_GNU_PROPERTY
+ * Fix out of bounds access when increasing program header table
+ * Rework file shifting to avoid sections crossing multiple segments
+
+- update to 0.15.0:
+ * Add --add-debug option
+ * Add O_BINARY flag when opening files to allow compilation for Windows
+ * Document --print-needed
+ * modifyRPath: return early if new and old rpath are empty
+ * Add comment explaining calculation for DT_MIPS_RLD_MAP_REL
+ * Add --no-sort option
+ * Handle DT_MIPS_XHASH and .MIPS.xhash
+
+- update to 0.14.5:
+ * fix faulty version in 0.14.4
+ * Several test fixes to fix patchelf test suite on openbsd
+ * Allow multiple modifications in same call
+ * Add support to build with musl
+ * Fix typo: s/folllow/follow/
+ * mips: fix incorrect polarity on dyn_offset
+
+- update to 0.14.3:
+ * this release adds support for static, pre-compiled patchelf binaries
+ * make version number in tarball easier to use for packagers
+ * build fix: add missing include
+ * Bug fixes:
+ - Fix corrupted library names when using --replace-needed multiple times
+ - Fix setting an empty rpath
+ - Don't try to parse .dynamic section of type NOBITS
+ - Fix use-after-free in normalizeNoteSegments
+ - Correct EINTR handling in writeFile
+ - MIPS: Adjust PT_MIPS_ABIFLAGS segment and DT_MIPS_RLD_MAP_REL dynamic section if present
+ - Fix binaries without .gnu.hash section
+ * Support loongarch architecture
+ * Remove limits on output file size for elf files
+ * Allow reading rpath from file
+ * Requires now C++17 for building
+
+- update to 0.13:
+ * mark phdrs synced with sections, avoid rechecking it when syncing not
+ * fix roundUp() to not truncate 64 bit values
+ * Use sh_offset instead of sh_addr when checking already replaced libs
+ * Add ELF test case with invalid string table index
+ * Gracefully handle ELF files with invalid string table indices in header
+ * clang-tidy fixes
+ * avoid needless memory allocation when replacing sections
+ * silence compiler warning because of different signedness
+ * avoid needless copies of std::string
+ * patchelf: Fix alignment issues with contiguous note sections
+
+- update to 0.12:
+ * skip overwriting r(un)path data when old_rpath = new_rpath.
+ * patchelf: Check ELF endianness before writing new runpath
+ * use stable_sort to maintain relative order for equal elemnts
+ * add --clear-symbol-version
+ * Improve the default section alignment choice
+ * Some const-correctness and C++11 auto
+
+- update to 0.11:
+ * More modern C++ has avoided a memory leak
+ * force-rpath is now consistently used
+ * new --output flag
+
+- Changelog and packaging cleanups
+- Fix download url
+
+- Update to version 0.10
+ * remove no-rpath-prebuilt.patch - applied upstream
+ * Lots of bug fixes see https://github.com/NixOS/patchelf/commits/master
+
+- Modernise spec file
+- Install license file
+
-- Update to version 0.8
- * No changelog upstream
-
-- exclude ppc and ppc64. Tests are failed
-
-- initial packaging of patchelf version 0.6
- required for accelerated cross build package
-
patterns-gnome
+- Require xorg-x11-fonts to fix gnome-shell starting failure (bsc#1203966)
+
perl-CPAN-Uploader
+- updated to 0.103018
+ see /usr/share/doc/packages/perl-CPAN-Uploader/Changes
+ 0.103018 2023-01-13 21:11:24-05:00 America/New_York
+ - a bit of refactoring and testing of .pause parser (thanks, Shlomi
+ Fish)
+
+- updated to 0.103017
+ see /usr/share/doc/packages/perl-CPAN-Uploader/Changes
+ 0.103017 2022-12-31 21:14:55-05:00 America/New_York
+ - update author contact info
+
-- updated to 0.103006
- update bugtracker and repo metadata
- Use Config::Identity to permit GPG-encrypting on-disk credentials
- (thanks, Mike Doherty)
-
perl-Config-INI
+- updated to 0.029
+ see /usr/share/doc/packages/perl-Config-INI/Changes
+ 0.029 2023-01-13 20:57:41-05:00 America/New_York
+ - fix typo in Pod
+ - slightly clean up some archaicisms in source
+
+- updated to 0.028
+ see /usr/share/doc/packages/perl-Config-INI/Changes
+ 0.028 2022-12-31 21:02:59-05:00 America/New_York
+ - update author contact info
+ - this library now requires perl v5.12
+
-- initial package 0.017
- * created by cpanspec 1.78.03
-
perl-Config-MVP
+- updated to 2.200013
+ see /usr/share/doc/packages/perl-Config-MVP/Changes
+ 2.200013 2022-12-31 13:48:05-05:00 America/New_York
+ - update packaging and metadata
+ - minimum required Perl is now v5.12
+ - I know, there are still some open issues at this point, but I am
+ mostly looking to get metadata updated on many dists, and not
+ carefully reading bug reports. Sorry!
+
perl-Config-MVP-Reader-INI
+- updated to 2.101465
+ see /usr/share/doc/packages/perl-Config-MVP-Reader-INI/Changes
+ 2.101465 2022-12-31 21:26:16-05:00 America/New_York
+ - update author contact info
+
perl-DBD-CSV
+- updated to 0.60
+ see /usr/share/doc/packages/perl-DBD-CSV/ChangeLog
+ 0.60 - 2023-01-06, H.Merijn Brand
+ * It's 2023
+
perl-Email-MIME
+- updated to 1.953
+ see /usr/share/doc/packages/perl-Email-MIME/Changes
+ 1.953 2023-01-08 19:02:24-05:00 America/New_York
+ - as promised, this release no longer works on v5.8; in fact, due to
+ some upstream libraries, it hasn't in some time
+ - documentation has been cleaned up to stop referencing long-dead other
+ libraries or methods
+ - some small code changes to benefit from v5.10 and v5.12 improvements
+
perl-Email-MIME-ContentType
+- updated to 1.028
+ see /usr/share/doc/packages/perl-Email-MIME-ContentType/Changes
+ 1.028 2023-01-08 19:26:20-05:00 America/New_York
+ - update author info
+
-- remove /var/adm/perl-modules
-
perl-Email-MIME-Encodings
+- updated to 1.317
+ see /usr/share/doc/packages/perl-Email-MIME-Encodings/Changes
+ 1.317 2022-12-31 21:28:56-05:00 America/New_York
+ - update author contact info
+
perl-Email-MessageID
+- updated to 1.408
+ see /usr/share/doc/packages/perl-Email-MessageID/Changes
+ 1.408 2022-12-31 21:28:29-05:00 America/New_York
+ - update author contact info
+
-- Initial release
-
perl-Email-Simple
+- updated to 2.218
+ see /usr/share/doc/packages/perl-Email-Simple/Changes
+ 2.218 2023-01-08 19:49:09-05:00 America/New_York
+ - update author contact info
+ - bump version required to v5.12.0 (it was already effectively that
+ after some upstream changes)
+ 2.217 2020-11-02 19:13:16-05:00 America/New_York (TRIAL RELEASE)
+ - add ->header_rename to header object
+ - issue a warning on non-ASCII codepoints added to message (thanks,
+ Pali Rohár)
+
-- updated to 2.201
- preserve the original header layout unless changed
- fix a bug in header unfolding where "0\n 1" could be unfolded to "01"
- recognize crlf correctly even if there is no body (thanks, Christian
- Walde)
-
perl-Mixin-Linewise
+- updated to 0.111
+ see /usr/share/doc/packages/perl-Mixin-Linewise/Changes
+ 0.111 2022-12-31 21:09:24-05:00 America/New_York
+ - update author information
+
perl-Modern-Perl
+- updated to 1.20230106
+ see /usr/share/doc/packages/perl-Modern-Perl/Changes
+ 1.20230106 2023-01-05 17:15:46-08:00 America/Los_Angeles
+ - update for 2023 year bundle
+ - fix a few nits in tests
+
perl-Mojolicious
+- updated to 9.31
+ see /usr/share/doc/packages/perl-Mojolicious/Changes
+ 9.31 2022-12-21
+ - This release contains fixes for security issues, everybody should upgrade!
+ - Removed experimental status from links method in Mojo::Headers.
+ - Added tls_options attribute to Mojo::UserAgent. (heikojansen)
+ - Fixed multiple "<script>" parsing issues in Mojo::DOM.
+ - Fixed a sporadic warning in Mojo::UserAgent. (s1037989)
+ - Fixed UNIX domain socket support in Mojo::UserAgent debug feature. (s1037989)
+ - Fixed a bug in Mojo::DOM where strings like "<.>" were considered valid tags.
+
perl-MooseX-OneArgNew
+- updated to 0.007
+ see /usr/share/doc/packages/perl-MooseX-OneArgNew/Changes
+ 0.007 2022-12-31 21:16:30-05:00 America/New_York
+ - update metadata: author address
+
perl-MooseX-SetOnce
+- updated to 0.203
+ see /usr/share/doc/packages/perl-MooseX-SetOnce/Changes
+ 0.203 2022-12-31 21:33:33-05:00 America/New_York
+ - update author email contact info (again)
+ - fix how perl version was declared (sorry)
+ 0.202 2022-12-31 17:07:01-05:00 America/New_York
+ - declare required perl version
+ - update author email contact info (again)
+
perl-MooseX-Types-Perl
+- updated to 0.101344
+ see /usr/share/doc/packages/perl-MooseX-Types-Perl/Changes
+ 0.101344 2022-12-31 21:34:32-05:00 America/New_York
+ - update packaging and metadata
+ - minimum required Perl is now v5.12
+
perl-Net-Pcap
+- Add missing dependencies for pcapdump [bsc#1201615]
+- Remove patch not applied and not mentioned in the changelog.
+ * perl-Net-Pcap-avoid-pcap_rmtauth-redefinition.patch
+
+- updated to 0.20
+ see /usr/share/doc/packages/perl-Net-Pcap/Changes
+ 0.19 - 2021-11-27 - Max Maischein (CORION)
+ [Bugfixes]
+ - CPAN RT #127685 Restore compilation with libpcap 1.9+
+ This incorporates the RedHat patch from
+ https://www.cpan.org/authors/id/S/SR/SREZIC/patches/Net-Pcap-0.18-RT127685-RH1485429.patch
+ and guards it with the newly introduced version #define
+ - GH #9, CPAN RT #117831 , CPAN RT #125352 Too strict test for
+ error message from libpcap
+ Fix contributed by KENTNL
+
perl-Perl-Critic
+- updated to 1.148
+ see /usr/share/doc/packages/perl-Perl-Critic/Changes
+ 1.148 Sat Jan 7 15:20:07 CST 2023
+ [Possible breakage]
+ Removed Perl::Critic::Utils::DataConversion. Any add-on policies that used
+ it will need to copy the functions from there into their own code.
+ [Documentation]
+ ProhibitCascadingIfElse no longer suggests using given/when.
+ [Internals]
+ We no longer require Test::Deep for testing.
+ Test::Kwalitee is now only recommended, not required.
+ Random microoptimizations, like using hashes for array contents checking,
+ and using any() instead of calling grep as a boolean.
+
+- updated to 1.146
+ see /usr/share/doc/packages/perl-Perl-Critic/Changes
+ 1.146 Wed Dec 21 21:05:20 CST 2022
+ [New features]
+ ProhibitBarewordDirHandles now checks for sysopen as well as open. Thanks,
+ Tadeusz Sośnierz. (GH #732)
+ Added a Dockerfile in the extras/ directory for those who want to run P::C
+ in a container. Thanks, Isaac Gittins. (GH #832)
+ Subroutines::ProhibitBuiltinHomonyms now can take an "allows" parameter to
+ specify subroutines that won't violate the policy. Thanks, UTAGAWA Kiki.
+ (GH #14, #932)
+ ProhibitStringyEval now allows package declarations in evals when
+ allow_includes = true. This is a common way packages are declared.
+ Thanks, Chris Novakovic. (GH #908)
+ [Bug Fixes]
+ Fixed some problems with how Perl::Critic determined scope. Thanks, Tom
+ Wyant. (GH #793)
+ Fixed improper violation for lexical subroutines in
+ Subroutines::ProhibitBuiltinHomonyms. Thanks, TOYAMA Nao. (GH #973, #955,
+ [#546])
+ ValuesAndExpressions::RequireNumberSeparators no longer complains if your
+ version numbers do not have number separators in them. Thanks, Tom Wyant.
+ (GH #856, #904)
+ Fixed a false positive with split() in ProhibitUnusedCapture. Thanks, Tom
+ Wyant. (GH #888)
+ [Internals]
+ We no longer use or need IO::String. Thanks, Graham Knop. (GH #997)
+ Removed requirements and mentions of modules no longer used:
+ * Fatal
+ * IO::String
+ * IPC::Open2
+ * Pod::Parser
+ * Task::Weaken
+
perl-Perl-PrereqScanner
+- updated to 1.025
+ see /usr/share/doc/packages/perl-Perl-PrereqScanner/Changes
+ 1.025 2022-12-31 21:10:00-05:00 America/New_York
+ - update author contact info
+
-- updated to 1.009
- - switch from Version::Requirements to CPAN::Meta::Requirements
-
perl-Pod-Coverage-TrustPod
+- updated to 0.100006
+ see /usr/share/doc/packages/perl-Pod-Coverage-TrustPod/Changes
+ 0.100006 2022-12-31 14:06:16-05:00 America/New_York
+ - update packaging and metadata
+ - minimum required Perl is now v5.12
+
perl-Pod-Eventual
+- updated to 0.094003
+ see /usr/share/doc/packages/perl-Pod-Eventual/Changes
+ 0.094003 2022-12-31 16:48:21-05:00 America/New_York
+ - update author contact info
+
perl-Role-HasMessage
+- updated to 0.007
+ see /usr/share/doc/packages/perl-Role-HasMessage/Changes
+ 0.007 2022-12-31 15:45:03-05:00 America/New_York
+ - update packaging and metadata
+ - minimum required Perl is now v5.12
+
perl-Role-Identifiable
+- updated to 0.009
+ see /usr/share/doc/packages/perl-Role-Identifiable/Changes
+ 0.009 2022-12-31 16:48:48-05:00 America/New_York
+ - tweak some packaging information (author, etc)
+
perl-String-Errf
+- updated to 0.009
+ see /usr/share/doc/packages/perl-String-Errf/Changes
+ 0.009 2022-12-31 16:43:32-05:00 America/New_York
+ - update packaging and metadata
+ - minimum required Perl is now v5.12
+
perl-String-Formatter
+- updated to 1.235
+ see /usr/share/doc/packages/perl-String-Formatter/Changes
+ 1.235 2022-12-31 16:49:41-05:00 America/New_York
+ - update metadata
+
perl-String-Truncate
+- updated to 1.100603
+ see /usr/share/doc/packages/perl-String-Truncate/Changes
+ 1.100603 2022-12-31 15:48:46-05:00 America/New_York
+ - update packaging and metadata
+ - minimum required Perl is now v5.12
+
perl-Sub-Exporter-ForMethods
+- updated to 0.100055
+ see /usr/share/doc/packages/perl-Sub-Exporter-ForMethods/Changes
+ 0.100055 2022-12-31 16:54:39-05:00 America/New_York
+ - update packaging and metadata
+ - minimum required Perl is now v5.12
+
perl-Sub-Exporter-GlobExporter
+- updated to 0.006
+ see /usr/share/doc/packages/perl-Sub-Exporter-GlobExporter/Changes
+ 0.006 2022-12-31 16:56:16-05:00 America/New_York
+ - update packaging and metadata
+ - minimum required Perl is now v5.12
+
perl-Throwable
+- updated to 1.001
+ see /usr/share/doc/packages/perl-Throwable/Changes
+ 1.001 2022-12-31 19:37:15-05:00 America/New_York
+ - typo fix (thanks, Robert Rothenberg!)
+ - update metadata just a little
+
pgadmin4
+- Add (rebased) patch from upstream to fix a vulnerability that
+ allows a remote unauthenticated user to redirect a user to an
+ arbitrary web site by crafting a malicious URL
+ (boo#1207238, CVE-2023-22298)
+ * 0001-Fixes-a-redirect-vulnerability-when-the-user-opens-the-pgAdmin-URL.patch
+
pkcs11-helper
+- Added pkcs11-helper_support-RSA_NO_PADDING-padding.patch
+ * Fixes bsc#1175219
+ * Adds support for openssl's RSA_NO_PADDING padding
+ * Sourced from https://github.com/OpenSC/pkcs11-helper/commit/c192bb48
+
-- remove static libraries and "la" files
-- fix -devel package dependencies and pkgconfig file
-
plasma-browser-integration
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma-nm5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * Don't crash when importing VPN config with missing NetworkManager plugin (kde#465484)
+ * [kcm] Show VPN import error in the UI
+
plasma-vault
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma5-addons
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma5-desktop
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * Partly revert "make sure screen numbers are consecutive" (kde#464873)
+
plasma5-disks
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma5-firewall
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma5-integration
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * Revert "extend kio with portal-based open-with implementation" (kde#460741)
+
plasma5-nano
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma5-openSUSE
+- Update to 5.27.3
+
plasma5-pa
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * kcm: Fix visuals when testing non-standard channel names
+ * kcm: Fix missing id and implicit parameter signal handler (kde#466075)
+
plasma5-sdk
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma5-systemmonitor
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma5-thunderbolt
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plasma5-workspace
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * klipper: remove duplicate items when loading from history (kde#466236)
+ * kcms/region_language: set LC_PAPER, not LC_PAGE (kde#467269)
+ * Screenpool: avoid uniqueConnection with lambda
+ * kcms/fonts: Enable change notifications for base fonts settings (forceFontDPI)
+ * sddm-theme: Transfer the focus to the text field as we show the OSK (kde#466969)
+ * appstreamtest: fix test failure
+ * wallpapers/image: improve efficiency of ImageFinder
+ * klipper: Make action menu Frameless (kde#466406)
+ * dataengines/mpris2: tolerate non-standards compliant players like mpris-proxy (kde#466288)
+ * klipper: History test passes now
+ * klipper: Insert items before remove (kde#466041)
+ * sddm: Focus something useful when switching between alternative login screens
+
plasma5-workspace-wallpapers
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
plymouth-theme-breeze
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
polkit-kde-agent-5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
powerdevil5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * Suspend by default on AC profile
+ * Use correct tablet mode function to determine mobile-ness
+
python-Werkzeug
+- Add 0001-limit-the-maximum-number-of-multipart-form-parts.patch
+ (bsc#1208283, CVE-2023-25577)
+
+- specfile:
+ * stop pytest collecting test_serving.py to avoid python2
+ import cryptography error (bsc#1208283 comment 10)
+
python-astor
+- Skip test_huge_int gh#berkerpeksag/astor#212
+ bsc#1210118
+
python-parallax
+- Fix: manager: writer thread can only be started once (bsc#1208817)
+ Add patch 0001-Fix-manager-writer-thread-can-only-be-started-once-b.patch
+
python-pyelftools
+- Update to version 0.29 (2022.08.09)
+ - Lots of improvements to DWARFv5 support (#400, #411, #418, #419, #429 and
+ additional PRs)
+ - Support for compressed relocation sections (#395)
+ - Support for supplementary object files - debug fission (#426)
+ - Improved support for corrupted ELF headers (#434)
+ - Readelf used for testing upgraded to 2.38 (#420)
+ - Add auto-testing vs. llvm-dwarfdump (#428)
+
+- update to 0.28:
+ * Added a method for returning the index of a section by name
+ * Allow filtering by section types in iter_sections
+ * Support Android compressed rel/rela sections
+ * Initial support for PPC64LE
+ * Initial DWARF v5 support
+ * Fixed parsing for structures containing uids or gids in core
+ dumps
+ * Allow filtering by segment types in iter_segments
+ * Add support for .note.gnu.property
+ * Update readelf tests to work with more recent version of
+ readelf
+ * Add support for note GNU_PROPERTY_X86_FEATURE_1_AND
+
+- Update to version 0.27:
+ * Add a bit more details to dwarf_pubnames_types example
+ * Make dwarf_pubnames_types example a bit more general
+ * Replace field access with property name access
+ * DebugSectionDescriptor.size initialized with decompressed section size (#339)
+ * hash.py: observe endianness when reading hashes (#338)
+ * DWARFv1 constants in enums, DW_FORM_ref parsing (#335)
+ * elf: support for ELF files with a large number of sections (#333)
+ * Remove Travis config
+
python-social-auth-core
+- Update to 4.0.3:
+ * Updated PyJWT version to 2.0.0 (bsc#1210182)
+ * Remove six dependency
+ * PayPal backend
+ * Fence OIDC-based backend
+ * Dropped Python 2 support from testing stack
+ * Remove discontinued Google OpenId backend
+ * Remove discontinued Yahoo OpenId backend
+ * Fix jwt.decode() passed algorithm
+ * Update Facebook Graph API to 8.0
+ * Update Amazon fetch-profile URL
+ * Fix Azure AD Tenant, unable to load certificate
+ * Fix Okta well-known URL
+ * Updated Discord's API hostname from discordapp.com to discor
+- Refresh patch remove-unittest2.patch
+- Stop shipping saml_config.json, it's now included upstream.
+
python-yarl
+- Skip failing test after fix CVE-2023-24329 (bsc#1208471)
+ the test test_url_parsing.TestScheme.test_not_a_scheme2 fails on all
+ openSUSE/SLE Python interpreters.
+- Added:
+ * fix_test_failure_after_cve_2023_24329.patch
+
+- Include in SLE-15 (bsc#1176785, jsc#ECO-3105, jsc#PM-2352)
+
qqc2-breeze-style
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
racket
+- Update config.sub from upstream
+
+- Update to 8.7:
+ * Typed Racket offers Shallow and Optional modes for its gradual
+ types. These modes lower the cost of interacting with untyped code,
+ but provide less protection against buggy interactions.
+ * Racket uses Unicode 14.0 for character and string operations, and
+ includes grapheme operations. DrRacket supports emojis.
+ * Racket supports RV64G (RISC-V).
+ * Programmers can disable definition shadowing using
+ `(#%declare #:require=define)`.
+ * The module dependency graphs available using raco dependencies-graph
+ and DrRacket's Module browser are faster and have new package
+ filtering support.
+ * DrRacket is more responsive when killing programs that produce a lot
+ of output.
+ * Plot 3D allows negative altitude values (e.g., looking at the plot
+ from "below").
+ * The `scriblib/bibtex` and `scriblib/autobib` libraries support DOIs.
+ * There are many other repairs and improvements!
+
radare2
+- Fix a denial of service vulnerability via misparses symbol information in
+ COFF files (boo#1209686, CVE-2023-1605).
+ + Add radare2-CVE-2023-1605.patch
+
rubygem-rack
+ fix CVE-2023-27539 [bsc#1209503], denial of service in header parsing
+ + rubygem-rack-CVE-2023-27539.patch
+
+- security update
+- added patches
rust
+- Update to version 1.68.0 - for details see the rust1.68 package
+
rust1
-- bsc#1207928 - 1.67 breaks rusticl build in Mesa:drivers
- Version 1.67.1 (2023-02-09)
-- [Fix interoperability with thin archives.](https://github.com/rust-lang/rust/pull/107360)
-- [Fix an internal error in the compiler build process.](https://github.com/rust-lang/rust/pull/105624)
-- [Downgrade `clippy::uninlined_format_args` to pedantic.](https://github.com/rust-lang/rust-clippy/pull/10265)
+- Really disable test of issue-71519 on aarch64
-Version 1.67.0 (2023-01-26)
+- Re-add obsoletes on rust1.62 to prevent file conflicts.
+
+Version 1.68.0 (2023-03-09)
-- [Make `Sized` predicates coinductive, allowing cycles.](https://github.com/rust-lang/rust/pull/100386/)
-- [`#[must_use]` annotations on `async fn` also affect the `Future::Output`.](https://github.com/rust-lang/rust/pull/100633/)
-- [Elaborate supertrait obligations when deducing closure signatures.](https://github.com/rust-lang/rust/pull/101834/)
-- [Invalid literals are no longer an error under `cfg(FALSE)`.](https://github.com/rust-lang/rust/pull/102944/)
-- [Unreserve braced enum variants in value namespace.](https://github.com/rust-lang/rust/pull/103578/)
+- [Stabilize default_alloc_error_handler](https://github.com/rust-lang/rust/pull/102318/)
+ This allows usage of `alloc` on stable without requiring the
+ definition of a handler for allocation failure. Defining custom handlers is still unstable.
+- [Stabilize `efiapi` calling convention.](https://github.com/rust-lang/rust/pull/105795/)
+- [Remove implicit promotion for types with drop glue](https://github.com/rust-lang/rust/pull/105085/)
-- [Enable varargs support for calling conventions other than `C` or `cdecl`.](https://github.com/rust-lang/rust/pull/97971/)
-- [Add new MIR constant propagation based on dataflow analysis.](https://github.com/rust-lang/rust/pull/101168/)
-- [Optimize field ordering by grouping m\*2^n-sized fields with equivalently aligned ones.](https://github.com/rust-lang/rust/pull/102750/)
-- [Stabilize native library modifier `verbatim`.](https://github.com/rust-lang/rust/pull/104360/)
- Added and removed targets:
-- [Add a tier 3 target for PowerPC on AIX](https://github.com/rust-lang/rust/pull/102293/), `powerpc64-ibm-aix`.
-- [Add a tier 3 target for the Sony PlayStation 1](https://github.com/rust-lang/rust/pull/102689/), `mipsel-sony-psx`.
-- [Add tier 3 `no_std` targets for the QNX Neutrino RTOS](https://github.com/rust-lang/rust/pull/102701/),
- `aarch64-unknown-nto-qnx710` and `x86_64-pc-nto-qnx710`.
-- [Remove tier 3 `linuxkernel` targets](https://github.com/rust-lang/rust/pull/104015/) (not used by the actual kernel).
- Refer to Rust's [platform support page][platform-support-doc]
- for more information on Rust's tiered platform support.
+- [Change `bindings_with_variant_name` to deny-by-default](https://github.com/rust-lang/rust/pull/104154/)
+- [Allow .. to be parsed as let initializer](https://github.com/rust-lang/rust/pull/105701/)
+- [Add `armv7-sony-vita-newlibeabihf` as a tier 3 target](https://github.com/rust-lang/rust/pull/105712/)
+- [Always check alignment during compile-time const evaluation](https://github.com/rust-lang/rust/pull/104616/)
+- [Disable "split dwarf inlining" by default.](https://github.com/rust-lang/rust/pull/106709/)
+- [Add vendor to Fuchsia's target triple](https://github.com/rust-lang/rust/pull/106429/)
+- [Enable sanitizers for s390x-linux](https://github.com/rust-lang/rust/pull/107127/)
-- [Merge `crossbeam-channel` into `std::sync::mpsc`.](https://github.com/rust-lang/rust/pull/93563/)
-- [Fix inconsistent rounding of 0.5 when formatted to 0 decimal places.](https://github.com/rust-lang/rust/pull/102935/)
-- [Derive `Eq` and `Hash` for `ControlFlow`.](https://github.com/rust-lang/rust/pull/103084/)
-- [Don't build `compiler_builtins` with `-C panic=abort`.](https://github.com/rust-lang/rust/pull/103786/)
+- [Loosen the bound on the Debug implementation of Weak.](https://github.com/rust-lang/rust/pull/90291/)
+- [Make `std::task::Context` !Send and !Sync](https://github.com/rust-lang/rust/pull/95985/)
+- [PhantomData layout guarantees](https://github.com/rust-lang/rust/pull/104081/)
+- [Don't derive Debug for `OnceWith` & `RepeatWith`](https://github.com/rust-lang/rust/pull/104163/)
+- [Implement DerefMut for PathBuf](https://github.com/rust-lang/rust/pull/105018/)
+- [Add O(1) `Vec -> VecDeque` conversion guarantee](https://github.com/rust-lang/rust/pull/105128/)
+- [Leak amplification for peek_mut() to ensure BinaryHeap's invariant is always met](https://github.com/rust-lang/rust/pull/105851/)
-- [`{integer}::checked_ilog`](https://doc.rust-lang.org/stable/std/primitive.i32.html#method.checked_ilog)
-- [`{integer}::checked_ilog2`](https://doc.rust-lang.org/stable/std/primitive.i32.html#method.checked_ilog2)
-- [`{integer}::checked_ilog10`](https://doc.rust-lang.org/stable/std/primitive.i32.html#method.checked_ilog10)
-- [`{integer}::ilog`](https://doc.rust-lang.org/stable/std/primitive.i32.html#method.ilog)
-- [`{integer}::ilog2`](https://doc.rust-lang.org/stable/std/primitive.i32.html#method.ilog2)
-- [`{integer}::ilog10`](https://doc.rust-lang.org/stable/std/primitive.i32.html#method.ilog10)
-- [`NonZeroU*::ilog2`](https://doc.rust-lang.org/stable/std/num/struct.NonZeroU32.html#method.ilog2)
-- [`NonZeroU*::ilog10`](https://doc.rust-lang.org/stable/std/num/struct.NonZeroU32.html#method.ilog10)
-- [`NonZero*::BITS`](https://doc.rust-lang.org/stable/std/num/struct.NonZeroU32.html#associatedconstant.BITS)
+- [`{core,std}::pin::pin!`](https://doc.rust-lang.org/stable/std/pin/macro.pin.html)
+- [`impl From<bool> for {f32,f64}`](https://doc.rust-lang.org/stable/std/primitive.f32.html#impl-From%3Cbool%3E-for-f32)
+- [`std::path::MAIN_SEPARATOR_STR`](https://doc.rust-lang.org/stable/std/path/constant.MAIN_SEPARATOR_STR.html)
+- [`impl DerefMut for PathBuf`](https://doc.rust-lang.org/stable/std/path/struct.PathBuf.html#impl-DerefMut-for-PathBuf)
-- [`char::from_u32`](https://doc.rust-lang.org/stable/std/primitive.char.html#method.from_u32)
-- [`char::from_digit`](https://doc.rust-lang.org/stable/std/primitive.char.html#method.from_digit)
-- [`char::to_digit`](https://doc.rust-lang.org/stable/std/primitive.char.html#method.to_digit)
-- [`core::char::from_u32`](https://doc.rust-lang.org/stable/core/char/fn.from_u32.html)
-- [`core::char::from_digit`](https://doc.rust-lang.org/stable/core/char/fn.from_digit.html)
+- [`VecDeque::new`](https://doc.rust-lang.org/stable/std/collections/struct.VecDeque.html#method.new)
+ Cargo
+-----
+- [Stabilize sparse registry support for crates.io](https://github.com/rust-lang/cargo/pull/11224/)
+- [`cargo build --verbose` tells you more about why it recompiles.](https://github.com/rust-lang/cargo/pull/11407/)
+- [Show progress of crates.io index update even `net.git-fetch-with-cli` option enabled](https://github.com/rust-lang/cargo/pull/11579/)
+ <a id="1.68.0-Misc"></a>
+ Misc
+----
-- [The layout of `repr(Rust)` types now groups m\*2^n-sized fields with
- equivalently aligned ones.](https://github.com/rust-lang/rust/pull/102750/)
- This is intended to be an optimization, but it is also known to increase type
- sizes in a few cases for the placement of enum tags. As a reminder, the layout
- of `repr(Rust)` types is an implementation detail, subject to change.
-- [0.5 now rounds to 0 when formatted to 0 decimal places.](https://github.com/rust-lang/rust/pull/102935/)
- This makes it consistent with the rest of floating point formatting that
- rounds ties toward even digits.
-- [Chains of `&&` and `||` will now drop temporaries from their sub-expressions in
- evaluation order, left-to-right.](https://github.com/rust-lang/rust/pull/103293/)
- Previously, it was "twisted" such that the _first_ expression dropped its
- temporaries _last_, after all of the other expressions dropped in order.
-- [Underscore suffixes on string literals are now a hard error.](https://github.com/rust-lang/rust/pull/103914/)
- This has been a future-compatibility warning since 1.20.0.
-- [Stop passing `-export-dynamic` to `wasm-ld`.](https://github.com/rust-lang/rust/pull/105405/)
-- [`main` is now mangled as `__main_void` on `wasm32-wasi`.](https://github.com/rust-lang/rust/pull/105468/)
-- [Cargo now emits an error if there are multiple registries in the configuration
- with the same index URL.](https://github.com/rust-lang/cargo/pull/10592)
+- [Add `SEMICOLON_IN_EXPRESSIONS_FROM_MACROS` to future-incompat report](https://github.com/rust-lang/rust/pull/103418/)
+- [Only specify `--target` by default for `-Zgcc-ld=lld` on wasm](https://github.com/rust-lang/rust/pull/101792/)
+- [Bump `IMPLIED_BOUNDS_ENTAILMENT` to Deny + ReportNow](https://github.com/rust-lang/rust/pull/106465/)
+- [`std::task::Context` no longer implements Send and Sync](https://github.com/rust-lang/rust/pull/95985)
rustscan
+- update to 2.1.1:
+ * Minor cosmetic changes
+ * fix links to Docker & Kali wiki
+ * Upgrade rlimit
+ * Improve doc for addresses
+ * Allow CLI customisation of config file path
+ * Supports M1 Macs tada
+ * Partially fix #362: Fix examples (#363)
+ * Scripting engine arguments. Scan engine errors.
+
-- Update to version 2.2.1
+- Update to version 2.0.1
scummvm-tools
+- update to 2.6.0:
+ * The project license has been upgraded to GPLv3+.
+ * Added a tool to extract Sanitarium resource packs.
+ * Removed support for compressing BUN files.
+ * Added Grim engine tools.
+
shim
-- Update the SLE signatures
+- Updated shim signature after shim 15.7 be signed back:
+ signature-sles.x86_64.asc, signature-sles.aarch64.asc (bsc#1198458)
+
+- Add POST_PROCESS_PE_FLAGS=-N to the build command in shim.spec to
+ disable the NX compatibility flag when using post-process-pe because
+ grub2 is not ready. (bsc#1205588)
+ - Kernel can boot with the NX compatibility flag since 82e0d6d76a2a7
+ be merged to v5.19. On the other hand, upstream is working on
+ improve compressed kernel stage for NX:
+ [PATCH v3 00/24] x86_64: Improvements at compressed kernel stage
+ https://www.spinics.net/lists/kernel/msg4599636.html
+
+- Add shim-Enable-the-NX-compatibility-flag-by-default.patch to
+ enable the NX compatibility flag by default. (jsc#PED-127)
+
+- Drop upstreamed patch:
+ - shim-Enable-TDX-measurement-to-RTMR-register.patch
+ - Enable TDX measurement to RTMR register (jsc#PED-1273)
+ - 4fd484e4c2 15.7
+
+- Update to 15.7 (bsc#1198458)(jsc#PED-127)
+ - Patches (git log --oneline --reverse 15.6..15.7)
+ 0eb07e1 Make SBAT variable payload introspectable
+ 092c2b2 Reference MokListRT instead of MokList
+ 8b59b69 Add a link to the test plan in the readme.
+ 4fd484e Enable TDX measurement to RTMR register
+ 14d6339 Discard load-options that start with a NUL
+ 5c537b3 shim: Flush the memory region from i-cache before execution
+ 2d4ebb5 load_cert_file: Fix stack issue
+ ea4911c load_cert_file: Use EFI RT memory function
+ 0cf43ac Add -malign-double to IA32 compiler flags
+ 17f0233 pe: Fix image section entry-point validation
+ 5169769 make-archive: Build reproducible tarball
+ aa1b289 mok: remove MokListTrusted from PCR 7
+ 53509ea CryptoPkg/BaseCryptLib: fix NULL dereference
+ 616c566 More coverity modeling
+ ea0d0a5 Update shim's .sbat to sbat,3
+ dd8be98 Bump grub's sbat requirement to grub,3
+ 1149161 (HEAD -> main, tag: 15.7, origin/main, origin/HEAD) Update version to 15.7
+ - 15.7 release note https://github.com/rhboot/shim/releases
+ Make SBAT variable payload introspectable by @chrisccoulson in #483
+ Reference MokListRT instead of MokList by @esnowberg in #488
+ Add a link to the test plan in the readme. by @vathpela in #494
+ [V3] Enable TDX measurement to RTMR register by @kenplusplus in #485
+ Discard load-options that start with a NUL by @frozencemetery in #505
+ load_cert_file bugs by @esnowberg in #523
+ Add -malign-double to IA32 compiler flags by @nicholasbishop in #516
+ pe: Fix image section entry-point validation by @iokomin in #518
+ make-archive: Build reproducible tarball by @julian-klode in #527
+ mok: remove MokListTrusted from PCR 7 by @baloo in #519
+ - Drop upstreamed patch:
+ - shim-bsc1177789-fix-null-pointer-deref-AuthenticodeVerify.patch
+ - Cryptlib/CryptAuthenticode: fix NULL pointer dereference in AuthenticodeVerify()
+ - 53509eaf22 15.7
+ - shim-jscPED-127-upgrade-shim-in-SLE15-SP5.patch
+ - For backporting the following patches between 15.6 with aa1b289a1a (jsc#PED-127)
+ - The following patches are merged to 15.7
+ aa1b289a1a mok: remove MokListTrusted from PCR 7
+ 0cf43ac6d7 Add -malign-double to IA32 compiler flags
+ ea4911c2f3 load_cert_file: Use EFI RT memory function
+ 2d4ebb5a79 load_cert_file: Fix stack issue
+ 5c537b3d0c shim: Flush the memory region from i-cache before execution
+ 14d6339829 Discard load-options that start with a NUL
+ 092c2b2bbe Reference MokListRT instead of MokList
+ 0eb07e11b2 Make SBAT variable payload introspectable
+
+- Update shim.changes, added missed shim 15.6-rc1 and 15.6 changelog to
+ the item in Update to 15.6. (bsc#1198458)
+
+- Add shim-jscPED-127-upgrade-shim-in-SLE15-SP5.patch for backporting the following
+ patches between 15.6 with aa1b289a1a (jsc#PED-127):
+ aa1b289a1a16774afc3143b8948d97261f0872d0 mok: remove MokListTrusted from PCR 7
+ 0cf43ac6d78c6f47f8b91210639ac1aa63665f0b Add -malign-double to IA32 compiler flags
+ ea4911c2f3ce8f8f703a1476febac86bb16b00fd load_cert_file: Use EFI RT memory function
+ 2d4ebb5a798aafd3b06d2c3cb9c9840c1caa41ef load_cert_file: Fix stack issue
+ 5c537b3d0cf8c393dad2e61d49aade68f3af1401 shim: Flush the memory region from i-cache before execution
+ 14d63398298c8de23036a4cf61594108b7345863 Discard load-options that start with a NUL
+ 092c2b2bbed950727e41cf450b61c794881c33e7 Reference MokListRT instead of MokList
+ 0eb07e11b20680200d3ce9c5bc59299121a75388 Make SBAT variable payload introspectable
+
+- Add shim-Enable-TDX-measurement-to-RTMR-register.patch to support
+ enhance shim measurement to TD RTMR. (jsc#PED-1273)
+
+- For pushing openSUSE:Factory/shim to SLE15-SP5, sync the shim.spec
+ and shim.changes: (jsc#PED-127)
+ - Add some change log from SLE shim.changes to Factory shim.changes
+ Those messages are added "(sync shim.changes from SLE)" tag.
+ - Add the following changes to shim.spec
+ - only apply Patch100, the shim-bsc1198101-opensuse-cert-prompt.patch
+ on openSUSE.
+ - Enable the AArch64 signature check for SLE:
+ [#] AArch64 signature
+ signature=%{SOURCE13}
+
+- shim-install: ensure grub.cfg created is not overwritten after
+ installing grub related files
+
+- Add logic to shim.spec to only set sbat policy when efivarfs is writeable.
+ (bsc#1201066)
+
+- Add logic to shim.spec for detecting --set-sbat-policy option before
+ using mokutil to set sbat policy. (bsc#1202120)
+
+- Change the URL in SBAT section to mail:security@suse.de. (bsc#1193282)
+
+- Revoked the change in shim.spec for "use common SBAT values (boo#1193282)"
+ - we need to build openSUSE Tumbleweed's shim on Leap 15.4 because Factory
+ is unstable for building out a stable shim binary for signing. (bsc#1198458)
+ - But the rpm-config-suse package in Leap 15.4 is direct copied from SLE 15.4
+ because closing-the-leap-gap. So sbat_distro_* variables are SLE version,
+ not for openSUSE. (bsc#1198458)
+
+- Update to 15.6 (bsc#1198458)
+ - shim-15.6.tar.bz2 is downloaded from bsc#1198458#c76
+ which is from upstream grub2.cve_2021_3695.ms keybase channel.
+ - For building 15.6~rc1 aarch64 image (d6eb9c6 Modernize aarch64), objcopy needs to
+ support efi-app-aarch64 target. So we need the following patches in bintuils:
+ - binutils-AArch64-Add-support-for-AArch64-EFI-efi-aarch64.patch
+ b69c9d41e8 AArch64: Add support for AArch64 EFI (efi-*-aarch64).
+ - binutils-Re-AArch64-Add-support-for-AArch64-EFI-efi-aarch64.patch
+ 32384aa396 Re: AArch64: Add support for AArch64 EFI (efi-*-aarch64)
+ - binutils-Re-Add-support-for-AArch64-EFI-efi-aarch64.patch
+ d91c67e873 Re: Add support for AArch64 EFI (efi-*-aarch64)
+ - Patches (git log --oneline --reverse 15.5~..77144e5a4)
+ 448f096 MokManager: removed Locate graphic output protocol fail error message (bsc#1193315, bsc#1198458)
+ a2da05f shim: implement SBAT verification for the shim_lock protocol
+ bda03b8 post-process-pe: Fix a missing return code check
+ af18810 CI: don't cancel testing when one fails
+ ba580f9 CI: remove EOL Fedoras from github actions
+ bfeb4b3 Remove aarch64 build tests before f35
+ 38cc646 CI: Add f36 and centos9 CI build tests.
+ b5185cb post-process-pe: Fix format string warnings on 32-bit platforms
+ 31094e5 tests: also look for system headers in multi-arch directories
+ 4df989a mock-variables.c: fix gcc warning
+ 6aac595 test-str.c: fix gcc warnings with FORTIFY_SOURCE enabled
+ 2670c6a Allow MokListTrusted to be enabled by default
+ 5c44aaf Add code of conduct
+ d6eb9c6 Modernize aarch64
+ 9af50c1 Use ASCII as fallback if Unicode Box Drawing characters fail
+ de87985 make: don't treat cert.S specially
+ 803dc5c shim: use SHIM_DEVEL_VERBOSE when built in devel mode
+ 6402f1f SBAT matching: Break out of the inner sbat loop if we find the entry.
+ bb4b60e Add verify_image
+ acfd48f Abstract out image reading
+ 35d7378 Load additional certs from a signed binary
+ 8ce2832 post-process-pe: there is no 's' argument.
+ 465663e Add some missing PE image flag definitions
+ 226fee2 PE Loader: support and require NX
+ df96f48 Add MokPolicy variable and MOK_POLICY_REQUIRE_NX
+ b104fc4 post-process-pe: set EFI_IMAGE_DLLCHARACTERISTICS_NX_COMPAT
+ f81a7cc SBAT revocation management
+ abe41ab make: unbreak scan-build again for gnu-efi
+ 610a1ac sbat.h: minor reformatting for legibility
+ f28833f peimage.h: make our signature macros force the type
+ 5d789ca Always initialize data/datasize before calling read_image()
+ a50d364 sbat policy: make our policy change actions symbolic
+ 5868789 load_certs: trust dir->Read() slightly less.
+ a78673b mok.c: fix a trivial dead assignment
+ 759f061 Fix preserve_sbat_uefi_variable() logic
+ aa61fdf Give the Coverity scanner some more GCC blinders...
+ 0214cd9 load_cert_file(): don't defererence NULL
+ 1eca363 mok import: handle OOM case
+ 75449bc sbat: Make nth_sbat_field() honor the size limit
+ c0bcd04 shim-15.6~rc1
+ 77144e5 SBAT Policy latest should be a one-shot
+ - 15.5 release note https://github.com/rhboot/shim/releases
+ Broken ia32 relocs and an unimportant submodule change. by @vathpela in #357
+ mok: allocate MOK config table as BootServicesData by @lcp in #361
+ Don't call QueryVariableInfo() on EFI 1.10 machines by @vathpela in #364
+ Relax the check for import_mok_state() by @lcp in #372
+ SBAT.md: trivial changes by @hallyn in #389
+ shim: another attempt to fix load options handling by @chrisccoulson in #379
+ Add tests for our load options parsing. by @vathpela in #390
+ arm/aa64: fix the size of .rela* sections by @lcp in #383
+ mok: fix potential buffer overrun in import_mok_state by @jyong2 in #365
+ mok: relax the maximum variable size check by @lcp in #369
+ Don't unhook ExitBootServices when EBS protection is disabled by @sforshee in #378
+ fallback: find_boot_option() needs to return the index for the boot entry in optnum by @jsetje in #396
+ httpboot: Ignore case when checking HTTP headers by @frozencemetery in #403
+ Fallback allocation errors by @vathpela in #402
+ shim: avoid BOOTx64.EFI in message on other architectures by @xypron in #406
+ str: remove duplicate parameter check by @xypron in #408
+ fallback: add compile option FALLBACK_NONINTERACTIVE by @xnox in #359
+ Test mok mirror by @vathpela in #394
+ Modify sbat.md to help with readability. by @eshiman in #398
+ csv: detect end of csv file correctly by @xypron in #404
+ Specify that the .sbat section is ASCII not UTF-8 by @daxtens in #413
+ tests: add "include-fixed" GCC directory to include directories by @diabonas in #415
+ pe: simplify generate_hash() by @xypron in #411
+ Don't make shim abort when TPM log event fails (RHBZ #2002265) by @rmetrich in #414
+ Fallback to default loader if parsed one does not exist by @julian-klode in #393
+ fallback: Fix for BootOrder crash when index returned by find_boot_option() is not in current BootOrder list by @rmetrich in #422
+ Better console checks by @vathpela in #416
+ docs: update SBAT UEFI variable name by @nicholasbishop in #421
+ Don't parse load options if invoked from removable media path by @julian-klode in #399
+ fallback: fix fallback not passing arguments of the first boot option by @martinezjavier in #433
+ shim: Don't stop forever at "Secure Boot not enabled" notification by @rmetrich in #438
+ Shim 15.5 coverity by @vathpela in #439
+ Allocate mokvar table in runtime memory. by @vathpela in #447
+ Remove post-process-pe on 'make clean' by @vathpela in #448
+ pe: missing perror argument by @xypron in #443
+ - 15.6-rc1 release note https://github.com/rhboot/shim/releases
+ MokManager: removed Locate graphic output protocol fail error message by @joeyli in #441
+ shim: implement SBAT verification for the shim_lock protocol by @chrisccoulson in #456
+ post-process-pe: Fix a missing return code check by @vathpela in #462
+ Update github actions matrix to be more useful by @frozencemetery in #469
+ Add f36 and centos9 CI builds by @vathpela in #470
+ post-process-pe: Fix format string warnings on 32-bit platforms by @steve-mcintyre in #464
+ tests: also look for system headers in multi-arch directories by @steve-mcintyre in #466
+ tests: fix gcc warnings by @akodanev in #463
+ Allow MokListTrusted to be enabled by default by @esnowberg in #455
+ Add code of conduct by @frozencemetery in #427
+ Re-add ARM AArch64 support by @vathpela in #468
+ Use ASCII as fallback if Unicode Box Drawing characters fail by @vathpela in #428
+ make: don't treat cert.S specially by @vathpela in #475
+ shim: use SHIM_DEVEL_VERBOSE when built in devel mode by @vathpela in #474
+ Break out of the inner sbat loop if we find the entry. by @vathpela in #476
+ Support loading additional certificates by @esnowberg in #446
+ Add support for NX (W^X) mitigations. by @vathpela in #459
+ Misc fixups from scan-build. by @vathpela in #477
+ Fix preserve_sbat_uefi_variable() logic by @jsetje in #478
+ - 15.6 release note https://github.com/rhboot/shim/releases
+ MokManager: removed Locate graphic output protocol fail error message by @joeyli in #441
+ shim: implement SBAT verification for the shim_lock protocol by @chrisccoulson in #456
+ post-process-pe: Fix a missing return code check by @vathpela in #462
+ Update github actions matrix to be more useful by @frozencemetery in #469
+ Add f36 and centos9 CI builds by @vathpela in #470
+ post-process-pe: Fix format string warnings on 32-bit platforms by @steve-mcintyre in #464
+ tests: also look for system headers in multi-arch directories by @steve-mcintyre in #466
+ tests: fix gcc warnings by @akodanev in #463
+ Allow MokListTrusted to be enabled by default by @esnowberg in #455
+ Add code of conduct by @frozencemetery in #427
+ Re-add ARM AArch64 support by @vathpela in #468
+ Use ASCII as fallback if Unicode Box Drawing characters fail by @vathpela in #428
+ make: don't treat cert.S specially by @vathpela in #475
+ shim: use SHIM_DEVEL_VERBOSE when built in devel mode by @vathpela in #474
+ Break out of the inner sbat loop if we find the entry. by @vathpela in #476
+ Support loading additional certificates by @esnowberg in #446
+ Add support for NX (W^X) mitigations. by @vathpela in #459
+ Misc fixups from scan-build. by @vathpela in #477
+ Fix preserve_sbat_uefi_variable() logic by @jsetje in #478
+ SBAT Policy latest should be a one-shot by @jsetje in #481
+ pe: Fix a buffer overflow when SizeOfRawData > VirtualSize by @chriscoulson
+ pe: Perform image verification earlier when loading grub by @chriscoulson
+ Update advertised sbat generation number for shim by @jsetje
+ Update SBAT generation requirements for 05/24/22 by @jsetje
+ Also avoid CVE-2022-28737 in verify_image() by @vathpela
+ - Drop upstreamed patch:
+ - shim-bsc1184454-allocate-mok-config-table-BS.patch
+ - Allocate MOK config table as BootServicesData to avoid the error message
+ from linux kernel
+ - 4068fd42c8 15.5-rc1~70
+ - shim-bsc1185441-fix-handling-of-ignore_db-and-user_insecure_mode.patch
+ - Handle ignore_db and user_insecure_mode correctly
+ - 822d07ad4f07 15.5-rc1~73
+ - shim-bsc1185621-relax-max-var-sz-check.patch
+ - Relax the maximum variable size check for u-boot
+ - 3f327f546c219634b2 15.5-rc1~49
+ - shim-bsc1185261-relax-import_mok_state-check.patch
+ - Relax the check for import_mok_state() when Secure Boot is off
+ - 9f973e4e95b113 15.5-rc1~67
+ - shim-bsc1185232-relax-loadoptions-length-check.patch
+ - Relax the check for the LoadOptions length
+ - ada7ff69bd8a95 15.5-rc1~52
+ - shim-fix-aa64-relsz.patch
+ - Fix the size of rela* sections for AArch64
+ - 34e3ef205c5d65 15.5-rc1~51
+ - shim-bsc1187260-fix-efi-1.10-machines.patch
+ - Don't call QueryVariableInfo() on EFI 1.10 machines
+ - 493bd940e5 15.5-rc1~69
+ - shim-bsc1185232-fix-config-table-copying.patch
+ - Avoid buffer overflow when copying the MOK config table
+ - 7501b6bb44 15.5-rc1~50
+ - shim-bsc1187696-avoid-deleting-rt-variables.patch
+ - Avoid deleting the mirrored RT variables
+ - b1fead0f7c9 15.5-rc1~37
+ - Add "rm -f *.o" after building MokManager/fallback in shim.spec
+ to make sure all object files gets rebuilt
+ - reference: https://github.com/rhboot/shim/pull/461
+- The following fix-CVE-2022-28737-v6 patches against bsc#1198458 are included
+ in shim-15.6.tar.bz2
+ - shim-bsc1198458-pe-Fix-a-buffer-overflow-when-SizeOfRawData-VirtualS.patch
+ pe: Fix a buffer overflow when SizeOfRawData VirtualSize
+ - shim-bsc1198458-pe-Perform-image-verification-earlier-when-loading-g.patch
+ pe: Perform image verification earlier when loading grub
+ - shim-bsc1198458-Update-advertised-sbat-generation-number-for-shim.patch
+ Update advertised sbat generation number for shim
+ - shim-bsc1198458-Update-SBAT-generation-requirements-for-05-24-22.patch
+ Update SBAT generation requirements for 05/24/22
+ - shim-bsc1198458-Also-avoid-CVE-2022-28737-in-verify_image.patch
+ Also avoid CVE-2022-28737 in verify_image()
+ - 0006-shim-15.6-rc2.patch
+ - 0007-sbat-add-the-parsed-SBAT-variable-entries-to-the-deb.patch
+ sbat: add the parsed SBAT variable entries to the debug log
+ - 0008-bump-version-to-shim-15.6.patch
+- Add mokutil command to post script for setting sbat policy to latest mode
+ when the SbatPolicy-605dab50-e046-4300-abb6-3dd810dd8b23 is not created.
+ (bsc#1198458)
+- Add shim-bsc1198101-opensuse-cert-prompt.patch back to openSUSE shim to
+ show the prompt to ask whether the user trusts openSUSE certificate or not
+ (bsc#1198101)
+- Updated vendor dbx binary and script (bsc#1198458)
+ - Updated dbx-cert.tar.xz and vendor-dbx-sles.bin for adding
+ SLES-UEFI-SIGN-Certificate-2021-05.crt to vendor dbx list.
+ - Updated dbx-cert.tar.xz and vendor-dbx-opensuse.bin for adding
+ openSUSE-UEFI-SIGN-Certificate-2021-05.crt to vendor dbx list.
+ - Updated vendor-dbx.bin for adding SLES-UEFI-SIGN-Certificate-2021-05.crt
+ and openSUSE-UEFI-SIGN-Certificate-2021-05.crt for testing environment.
+ - Updated generate-vendor-dbx.sh script for generating a vendor-dbx.bin
+ file which includes all .der for testing environment.
+
+- use common SBAT values (boo#1193282)
+
+- Update the SLE signatures (sync shim.changes from SLE)
+(sync shim.changes from SLE)
+- Add shim-bsc1185232-fix-config-table-copying.patch to avoid
+ buffer overflow when copying data to the MOK config table
+ (bsc#1185232)
+
+- Add shim-disable-export-vendor-dbx.patch to disable exporting
+ vendor-dbx to MokListXRT since writing a large RT variable
+ could crash some machines (bsc#1185261)
+- Add shim-bsc1187260-fix-efi-1.10-machines.patch to avoid the
+ potential crash when calling QueryVariableInfo in EFI 1.10
+ machines (bsc#1187260)
+
+- Add shim-fix-aa64-relsz.patch to fix the size of rela sections
+ for AArch64
+ Fix: https://github.com/rhboot/shim/issues/371
+
+- Add shim-bsc1185232-relax-loadoptions-length-check.patch to
+ ignore the odd LoadOptions length (bsc#1185232)
+
+- shim-install: reset def_shim_efi to "shim.efi" if the given
+ file doesn't exist
+
+- Add shim-bsc1185261-relax-import_mok_state-check.patch to relax
+ the check for import_mok_state() when Secure Boot is off.
+ (bsc#1185261)
+
+ (sync shim.changes from SLE)
+
+- Add shim-bsc1185621-relax-max-var-sz-check.patch to relax the
+ maximum variable size check for u-boot (bsc#1185621)
+
+- Add shim-bsc1185441-fix-handling-of-ignore_db-and-user_insecure_mode.patch
+ to handle ignore_db and user_insecure_mode correctly
+ (bsc#1185441, bsc#1187071)
+
+- Split the keys in vendor-dbx.bin to vendor-dbx-sles and
+ vendor-dbx-opensuse for shim-sles and shim-opensuse to reduce
+ the size of MokListXRT (bsc#1185261)
+ + Also update generate-vendor-dbx.sh in dbx-cert.tar.xz
-- Enable the AArch64 signature check for SLE
+- Enable the AArch64 signature check for SLE (sync shim.changes from SLE)
-- Update the SLE signatures
+- Update the SLE signatures (sync shim.changes from SLE)
skopeo
+- disable hard requirement to go1.12, just use the current standard go
+
smartmontools
+- fix smartctl crash for an NVMe on big endian systems [bsc#1208905]
+- added patches
+ fix https://www.smartmontools.org/changeset/5448
+ + smartmontools-smartctl-NVMe-big-endian.patch
+
snd
+- Update to 23.0 (no changelog)
+
starship
+- Update to version 1.12.0:
+ * Features:
+ - add Haxe support
+ - Add operating system module
+ - aws: add a fallback for expiration key
+ - azure: add username to azure module config
+ - bug-report: ask for confirmation before opening issue
+ - directory: add before_repo_root_style
+ - git_commit: support showing lightweight tags
+ - guix_shell: Initial implementation
+ - init: Use which-rs to resolve starship path
+ - localip: use reserved remote address
+ - nu: enable right prompt
+ - Open Policy Agent module
+ - package: added showing gradle version based on the gradle.properties file
+ - preset: Add No Empty Icons preset
+ - preset: Add no-nerd-font preset
+ - release: add chocolatey publishing
+ * Bug Fixes:
+ - aws: enable when using .aws/credentials
+ - buf: broken icon on windows 10
+ - ci: cache after selecting the toolchain
+ - config: unrecognized config properties don't cause config error
+ - container: avoid detecting WSL as a systemd-container
+ - don't attempt to display cmd_duration notification if in TTY
+ - git: check tag_disabled option
+ - java: Improved regex for Java version
+ - nu: remove -c parameter from term size
+ - pwsh: fix error log display on older versions of pwsh
+ - status: replace multiply with cross mark emoji
+
+- Update to version 1.11.0:
+ * add user-defined color palette.
+ * fish: Enable left and right transience.
+ * module: Add a meson devenv indicator.
+ * schema: deny unknown keys.
+ * status: Support formatting of pipestatus separator.
+ * buf: fix spacing & harmonize docs with actual configuration.
+ * directory: don't strip duplicate directory names twice.
+ * pwsh: avoid potential deadlock in init.
+ * directory: Skip repo resolution if unused by directory config.
+
swww
+- Trim excess marketing from description
+
systemd
+- Import commit dad0071f15341be2b24c2c9d073e62617e0b46733 (merge of v249.16)
+
+- Fix return non-zero value when disabling SysVinit service (bsc#1208432)
+
+- Drop build requirement on libpci, it's not more needed since udev hwdb was
+ introduced 11 years ago.
+
+- Move systemd-boot and all components managing (secure) UEFI boot into udev
+ sub-package: they may deserve a dedicated sub-package in the future but for
+ now move them to udev so they aren't installed in systemd based containers.
+
systemsettings5
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- No code changes since 5.27.2
+
tcllib
+- update to 1.21:
+ * https://core.tcl-lang.org/tcllib/doc/tcllib-1-21/support/releases/history/README-1.21.txt
+
-- New version: 1.11
-- Added packages and modules:
- * amazon-s3: access to amazon's S3 service
- * xsxp: XML processing helper
- * picoirc: minimal irc client
- * simulation: simulation tools
- * stringprep, unicode: preparation for internationalized strings
- * struct::disjointset: union-merge structure
- * huddle: generic serialization format
- * yaml: YAML processing
-- Modules that got new features and/or bug fixes: aes, asn,
- base64, bench, blowfish, cmdline, comm, crc, dns, doctools,
- fileutil, ftp, ftpd, grammar_fa, htmlparse, http, inifile,
- jpeg, ldap, log, math, md4, md5, md5crypt, mime, nmea, nns,
- pluginmgr, sasl, term. textutil, tie, tiff, transfer, uev, wip
-- Details can be found under /usr/share/doc/packages/tcllib .
-
terraform-provider-helm
+- Update to version 2.9.0
+ * FEATURES:
+ + provider: Add a new attribute burst_limit for client-side
+ throttling limit configuration. [GH-1012]
+ * ENHANCEMENT:
+ + data_source/helm_template: Add a new attribute crds which when include_crds
+ is set to true will be populated with a list of the manifests from the crds/
+ folder of the chart. [GH-1050]
+ * BUG FIXES:
+ + resource/helm_release: Fix an issue when the provider crashes with the error
+ message Provider produced inconsistent final plan after upgrading from v2.5.1
+ to v2.6.0 and higher. That happened due to changes in the provider schema and
+ the introduction of a new attribute pass_credentials that was not properly
+ handled. [GH-982]
+ * DOCS:
+ + data_source/helm_template: Add a new attribute crds [GH-1050]
+ + data_source/helm_template: Correct some errors in examples. [GH-1027]
+ + provider: Add a new attribute burst_limit. [GH-1012]
+ + provider: Add a note regarding the KUBECONFIG environment variable. [GH-1051]
+ + resource/helm_release: Add usage example for OCI repositories. [GH-1030]
+ + resource/helm_release: Add usage examples for GCS and S3 plugins. [GH-1026]
+ * DEPENDENCIES:
+ + Bump github.com/containerd/containerd from 1.6.6 to 1.6.12 [GH-1029]
+ + Bump golang.org/x/crypto from 0.5.0 to 0.6.0 [GH-1055]
+ + Bump helm.sh/helm/v3 from 3.9.4 to 3.11.1 [GH-1036] [GH-1054] (bsc#1208086, CVE-2023-25165)
+ + Bump k8s.io/client-go from 0.24.2 to 0.26.1 [GH-1037]
+ * NOTES:
+ + provider: kubernetes.exec.api_version no longer supports client.authentication.k8s.io/v1alpha1.
+ Please, switch to client.authentication.k8s.io/v1beta1 or client.authentication.k8s.io/v1. [GH-1037]
+- from version 2.8.0
+ * FEATURES:
+ + Add support for configuring OCI registries inside provider block [GH-862]
+ + Add support for setting kube version on helm_template data source [GH-994]
+ * BUG FIXES:
+ + Fix larger diff than expected when updating helm_release "set" block value [GH-915]
+- from version 2.7.1
+ * BUG FIXES:
+ + Crash Fix: Fix Unknown Value in Manifest Diff [GH-966]
+- from version 2.7.0
+ * FEATURES:
+ + Update helm package to 3.9.4 (#945)
+ + Show Manifest when creating release [GH-903]
+ * BUG FIXES:
+ + Do dependency update in resourceDiff #771 (#855)
+ + Crash: Fix show_only crash when string is empty [GH-950]
+- from version 2.6.0
+ * IMPROVEMENTS:
+ + Upgrade helm dependency to 3.9.0 (#867)
+ + Add args attribute in post_render block in (#869)
+ + Add pass_credentials attribute (#841)
+ + Add proxy_url attribute to provider block (#843)
+ * BUG FIXES:
+ + Don't persist state when update causes an error (#857)
+- from version 2.5.1
+ * FIX:
+ + Only run OCI login on create and update (#846)
+ + OCI login concurrency issue (#848)
+- from version 2.5.0
+ * IMPROVEMENTS:
+ + Upgrade helm dependency to v3.8.1
+ * FEATURES:
+ + Add support for OCI registries
+- from version 2.4.1
+ * HOTFIX:
+ + Fix exec plugin interactive mode regression (#798)
+- from version 2.4.0
+ * IMPROVEMENTS:
+ + Update helm dependency to v3.7.1
+ * FEATURES:
+ + Add wait support to helm_release delete operation
+- Fix terraform architecture mapping for aarch64
+
+- exclude build for 32bit targets
+
+- Update to version 2.2.0
+ * Add support for stand-alone debug mode (launch with -debug argument) (#748)
+ * Add helm_template data source to render chart templates locally (#483)
+ * Surface diagnostics when helm release creation fails (#727)
+- from version 2.1.2
+ * Fix dependency download on resource update (#580)
+ * Add support for the --wait-for-jobs option (#720)
+- from version 2.1.1
+ * Fix dry-run happening at plan when manifest is not enabled (#724)
+- from version 2.1.0
+ IMPROVEMENTS:
+ * Add chart diff support by storing the rendered manifest (#702)
+ * Update to Helm 3.5.3 (#709)
+ * Docs: add link to Learn tutorial (#714)
+ BUG FIXES:
+ * Remove kubeconfig file check (#708)
+- from version 2.0.3
+ BUG FIXES:
+ * Fix documentation for KUBE_TOKEN env var name (#684)
+ * Fix destroy stage error for charts with "helm.sh/resource-policy:keep" annotation (#671)
+ * Fix read function to set resource id to null when not found (#674)
+ IMPROVEMENTS:
+ * Update provider configuration docs (#673)
+- from version 2.0.2
+ BUG FIXES:
+ * Remove check for empty kubernetes block
+- from version 2.0.1
+ BUG FIXES:
+ * Move kubernetes config check out of providerConfigure (#648)
+
+- Update to version 2.0.0:
+ * BREAKING CHANGES:
+ + Update Terraform SDK to v2 (#594)
+ + Remove deprecated helm_repository resource and data source (#600)
+ + Remove implicit support for KUBECONFIG (#604)
+ + Remove load_config_file attribute (#604)
+ + Remove set_string attribute from helm_release (#608)
+ * IMPROVEMENTS:
+ + Add support for multiple paths to kubeconfig files (#636)
+ + Remove remote dependencies from test-fixtures (#638)
+ + Set up matrix build to run acc tests against different tf versions (#637)
+
testng
+- Added patch:
+ * testng-CVE-2022-4065.patch
+ + Issues in sanitization of zip files could lead to path
+ traversal and potentially code execution (bsc#1205628,
+ CVE-2022-4065)
+
tigervnc
+- Fixes for bsc#1209283
+ * Drop chown vnc:vnc calls in with-vnc-key.sh
+ * Add TLSNone to -securitytypes to increase security in xvnc@.service
+
tomcat
+- Fixed CVEs:
+ * CVE-2023-28708: tomcat: not including the secure attribute
+ causes information disclosure (bsc#1209622)
+- Added patches:
+ * tomcat-9.0.43-CVE-2023-28708.patch
+
+- Fixed CVEs:
+ * CVE-2023-24998: tomcat,tomcat6: FileUpload DoS with excessive parts (bsc#1208513)
+- Added patches:
+ * tomcat-9.0.43-CVE-2023-24998.patch
+
tree-sitter
+- Add CVE-2022-45299-update-webbrowser.patch (copied from
+ gh#tree-sitter/tree-sitter#2042) to use more recent version
+ of webbrowser-rs, which has been fixed against CVE-2022-45299
+ (bsc#1207196).
+
trytond
+- Version 6.0.30 - Bugfix Release
+
trytond_account_invoice
+- Version 6.0.10 - Bugfix Release
+
trytond_product
+- Version 6.0.4 - Bugfix Release
+
tuigreet
+- Update to 0.8.0
+ * Remember last successfully opened session per user
+ * Suppress power command output
+ * Allow customization of time format
+ * Added a user selection list from a defined UID range
+ * Miscellaneous UX improvements
+ * Locales improvements
+- add tuigreet-version.patch to fix incorrect 0.7.3 version
+
upx
+- Update to release 4.0.2
+ * Fix unpack of ELF x86-64 that failed with
+ "CantUnpackException: corrupt b_info"
+ * Resolve SEGV on PackLinuxElf64::invert_pt_dynamic
+- Delete upx-endiantests.patch (conflict upstream)
+- Delete 0001-invert_pt_dynamic-fix-thinko-PackLinuxElf64help1-ins.patch
+ (merged)
+
+- Add 0001-invert_pt_dynamic-fix-thinko-PackLinuxElf64help1-ins.patch
+ [boo#1207122] [CVE-2023-23457]
+
variety
+- Update to 0.8.10:
+ * Bugfix #577: Fix Unsplash downloads
+ * Bugfix #553: Keep the current quote when using Image->Next
+ * Bugfix #418: on AwesomeWM, apply the same image on all monitors
+ separately instead of stretching across them
+ * Feature #559: add support for handling Unsplash topic URLs
+ * Improvement #586: Use official API for EarthView
+- Rebase variety-fix-data-path.patch
+
volk
+- Update to version 3.0.0
+ * License switch to LGPLv3+
+ * Fix build for 32 bit arm with neon
+ * Add experimental support for MIPS and RISC-V
+
wireshark
+- Wireshark 3.6.12:
+ * CVE-2023-1161: ISO 15765 and ISO 10681 dissector crash (bsc#1208914).
+- Further features, bug fixes and updated protocol support as listed in:
+ https://www.wireshark.org/docs/relnotes/wireshark-3.6.12.html
+
wlgreet
+- Update to version 0.4.1:
+ * update dependencies to solve an issue with wayland-rs and newer Wayland
+ compositors
+
xdg-desktop-portal-kde
+- Update to 5.27.3
+ * New bugfix release
+ * For more details please see:
+ * https://kde.org/announcements/plasma/5/5.27.3
+- Changes since 5.27.2:
+ * Fix cursor and borders selectors in screenshot dialog
+
xen
+- bsc#1209017 - VUL-0: CVE-2022-42332: xen: x86 shadow plus
+ log-dirty mode use-after-free (XSA-427)
+ xsa427.patch
+- bsc#1209018 - VUL-0: CVE-2022-42333,CVE-2022-42334: xen: x86/HVM
+ pinned cache attributes mis-handling (XSA-428)
+ xsa428-1.patch
+ xsa428-2.patch
+- bsc#1209019 - VUL-0: CVE-2022-42331: xen: x86: speculative
+ vulnerability in 32bit SYSCALL path (XSA-429)
+ xsa429.patch
+
xine-ui
+- Update to 0.99.14
+ * Add Dutch translation.
+ * Add panel mrl display highlight.
+ * Add display flipping support.
+ * Better keyboard support.
+ * Better status OSD.
+ * Better setup, key binding and mediamark editors.
+ * Better filename filter.
+ * Fix build with libcaca.
+ * Fix menu hide.
+ * Fix directory add to playlists.
+ * Many small fixes and optimizations.
+ * Update german translation.
+- Drop Fix-build.patch, included in this release
+- Disable aalib and directfb support as well. As xine-lib is built
+ without them, the corresponding executables (aaxine, fbxine)
+ don't work anyway.
+
xorg-x11-server
+- U_xserver-composite-Fix-use-after-free-of-the-COW.patch
+ * overlay window use-after-free (CVE-2023-1393, ZDI-CAN-19866,
+ bsc#1209543)
+
xpra
+- Migration of PAM settings to /usr/lib/pam.d.
+
+- Update to version v5.0+git20221127.3e61ef1c:
+ * use the correct value for bits-per-pixel with alpha
+ * prefer BGRA to RGBA
+ * add scaling debug logging
+ * f-stringify
+ * fix avif encoder loading
+ * output using the same colorspace used for encoding
+ * missing fake attributes for opengl toolbox test
+ * #3374 spng uses unpremultiplied alpha
+ * preserve ':' prefix for X11 displays
+ * #3692 re-add display to ssh args
+ * add debug logging
+ * #3692 ssh config overrides url
+ * fix minor pylint warnings
+ * more helpful messages
+ * fix minor pylint warnings
+ * use premultiplied alpha with pillow
+ * fix minor warnings
+ * #3359 don't use odd heights for vertically subsampled formats
+ * remove debug logging
+ * support specifying the key file password
+ * #3504 make it possible to bypass the check
+ * minor warnings
+ * #3504 nvjpeg decoder no longer leaks memory with latest drivers
+ * silence minor pylint warnings
+ * more helpful warning when there is no pixel data
+ * fix memoryview TypeError on MS Windows with lz4 raw cursor data
+ * try to continue without a cuda context
+ * oops: another pass missed
+ * find link.exe path with newer versions of VS
+ * make sure to include cuda libs when needed
+ * avoid pycuda import warnings on win32
+ * f-stringify
+ * also need innosetup to generate EXE, MSIWrapper for MSI
+ * handle more invalid x264 version strings
+ * hint for spng
+ * add missing import
+ * fix compatibility with older versions of cryptography
+ * fix minor warnings
+ * more python deps, add verpatch link
+ * #2743 don't enable local sockets by default on win32
+ * path missed during refactoring
+ * silence pylint warning
+ * try VS 2022 Community path
+ * switch to cuda 11.8
+ * don't show '64-bit' which is the default
+ * try to install more indirect dependencies
+ * simplify: install for $MSYSTEM_ARCH
+ * also install pyopengl-accelerate via MSYS2
+ * pycuda 2022.2 can be built on Fedora 37
+ * pycuda 2022.2
+ * #3690 uinput packages can be broken in new ways
+ * #3376 expose quic config object
+ * #3376 expose quic transport info in our connection's scope attribute
+ * #3376 minor tweaks and expose more info
+ * add quic link
+ * add quic link
+ * seamless is X11 only
+ * try harder to get a meaningful connection error message
+ * exceptions are re-thrown, no need to log them at 'error' level here
+ * f-stringify
+ * better diagnostic messages when quic components are missing
+ * failures to connect should not leave the splash screen hanging
+ * remove unused arguments
+ * f-stringify
+ * better log messages
+ * cosmetic
+ * add spng
+ * the key is not a secret
+ * #3376 honour the request path part of the URL
+ * #3376 add webtransport stub + refactoring
+ * unused import
+ * #3685 clamp clock values to 'unsigned long'
+ * cosmetic logging tweaks
+ * #3376 uvloop is not available on win32
+ * #3376 cleanups and explicit IPv6 support
+ * #3376 simplify: create the UDP socket ourselves
+ * move uvloop recommendation to aioquic
+ * support functions that return exceptions
+ * #3376 install aioquic via pip for now
+ * #3376 we no longer need wsproto
+ * missed from ff04ad48e3ec7a894c091a27c5b7cdf0e9374fec
+ * no more csc_* modules matching without csc_cython
+ * #3376 add working client connection
+ * make websocket close packet into a reusable function
+ * log and re-throw errors calling async functions
+ * #3376 simplify
+ * #3376 hook up the server connection
+ * make it easier to re-use opcodes
+ * avoid errors when cleaning up
+ * cosmetic
+ * #3376 remove dependency on wsproto
+ * flush_then_close improvements
+ * cosmetic
+ * provide utility function for waiting for async calls
+ * remove debug logging
+ * use ellipsizer to reduce debug logging
+ * #3376 make uvloop optional, always wait for main loop
+ * missed from 562b1f184792643b6364832b7b4a9d4df93a53e5
+ * #3376 split handlers to separate files
+ * cosmetic
+ * use ValueError for validation
+ * cython mask module should be safe to import globally
+ * clarify test failures
+ * oops: missing delayed imports
+ * older versions of python-cryptography require the backend argument
+ * prevent circular import
+ * prevent circular import
+ * missed from refactoring of header module in 3b68b9f34679b38d8b7f35a541c694af64f7a10d
+ * check for main loop after waiting
+ * move xpra's protocol modules to a subdir
+ * all modules need an __init__ file
+ * test code does not belong in releases
+ * only one backend is supported: python-cryptography
+ * remove unused constant, expose non-backend info
+ * oops: match refactoring in b2d0b2fb5e87bcae631a32a80b2d261e7b07d130
+ * adjust tests for 1492a2210504d9c3428f0e73428220e6df838d5e
+ * move lz4 to a subdir
+ * move qrencode to a subdir
+ * move vsock to a subdir
+ * forgot to remove the old file in b2d0b2fb5e87bcae631a32a80b2d261e7b07d130
+ * split paramiko and exec client code
+ * move ssh bits to sub-directory
+ * #3376 split directory listing, simplify calling async code
+ * d3des is only used with rfb, move it there
+ * #3376 oops: modules needs init file
+ * normalize ssh args function arguments
+ * use isinstance() rather than type()
+ * remove debug logging
+ * #3376 stub client quic connection
+ * #3376 logging tweaks and fixes
+ * #3376 for now, use wsproto
+ * #3679 we may get memoryviews from compressors
+ * strip header from more languages
+ * prevent false positives with memoryview
+ * #3682 no idea why this fails in github actions
+ * #3642 fixed child_command_test in 256c7a7d5bf55ba31926eed8b62487989bd9b30f
+ * fix all pylint warnings
+ * fix all pylint warnings
+ * f-stringify
+ * we don't need the csc cython on RPM platforms
+ * #3669 document splash=yes|no|auto
+ * fix ssh parsing: need to switch to using dicts
+ * test fixes and tweaks
+ * #3642 less intrusive fix
+ * #3667 minor test fixes
+ * #3667 remove tons of dependencies we don't need
+ * update dependencies for v4.4+
+ * #3667 yasm is not needed
+ * oops: don't normalize all display names to 'named-pipe'
+ * add GHA build/test
+ * teach run.py about --skip-*
+ * #3675 also skip spurious 'Control_L' events when releasing the AltGr key
+ * video_colorspace_test skip encodings unsupported by encoder
+ * #3376 hook a basic http3 server
+ * f-stringify
+ * #3359 don't care about mpeg1 / mpeg2
+ * better error message
+ * #3359 make it easier to test a specific encoder
+ * #3359 sample images for testing
+ * constify memory alignment
+ * #3359 x264 can handle odd widths with non-subsampled input
+ * #3359 correctly parse the resulting pixel data
+ * use strongly type accessors
+ * better error messages
+ * #3359 a codec can reject invalid input sizes
+ * #3359 x264 can crash if given odd dimensions with subsampled input
+ * add option to save compressed samples
+ * #3359 add test case for video dimension masks
+ * f-stringify and cleanup
+ * fixup bd22fb3165a856fd7660c99ba63c9cb9f8be2af2 ('p' undefined)
+ * fix minor lint warnings
+ * don't show 'Upgrade' in splash title
+ * f-stringify
+ * guard against stdin / stderr goin MIA
+ * #2174 include useful bug tracker link
+ * doh: protocols don't include the separator
+ * fix minor pylint warnings
+ * #3599 ugly parse_host_string() function was now unused
+ * fix minor pylint warnings
+ * 'join' is what we have to use to wait for threads
+ * unused import
+ * fix minor pylint warnings
+ * continue to support CentOS 8.x and clones
+ * unused import
+ * #3376 aioquic needs the openssl headers
+ * #3376 missed the actual files in ff7d58e7deea6d79e4166dece97d47f47f5410c1
+ * #3667 older versions of Pillow insist on a full palette
+ * #3667 show full encoder parameters when failing
+ * #3376 rpm packages for aioquic and pylsqpack
+ * Update RPM.md
+ * fix minor warnings
+ * this is where docs really belong..
+ * revert most of 23a0555bc94f530b78b7673526846099d60f0d6d
+ * revert 23a0555bc94f530b78b7673526846099d60f0d6d
+ * move docs to fs/
+ * #3670 fix ssh desktop start with older servers
+ * #3592 match all related subcommands
+ * #3668 update bug tracker link to use github
+ * Raise clarity: xpra install on server&client
+ * #3667 fix error handling
+ * Raise clarity: xpra install on server&client
+ * Update README.md
+ * Raise clarity that xpra install on server&client
+ * #3662 values from the URL take precedence
+ * #3664 symlink creation errors don't need a backtrace
+ * bump year
+ * 3664 send the full version when requested
+ * #3471 support expanding chdir option
+ * #3659 use dataclasses improve the code
+ * simplify: lookup packet_type just once
+ * round sizes up, so we never get '0KB'
+ * fix warnings on Ubuntu 20.04
+ * #3599 rename 'unix-domain' to 'socket'
+ * #3647 disable bandwidth-detection by default
+ * #3599 move more ssh parsing to a separate function
+ * fixup 18720c1f1d9fcade877c6174c7ef65d6580471ea
+ * fixup 18720c1f1d9fcade877c6174c7ef65d6580471ea
+ * #3647 don't blacklist any Intel cards
+ * #3599 don't override main attributes with query string values
+ * #3651 client should almost be required
+ * #3514 env vars must be strings
+ * #3599 use urllib.parse rather than custom code
+
+- Update to version 5.0+git20221018.223dc02f:
+ * move nvidia codecs to 'Suggests'
+ * #3651 use dh_movefiles to split the modules into separate packages
+ * fix logging of decompressed messages
+ * revert 0d37df6807729c865cd216f3b4d5eeba2e8f6817
+ * server last info may have more data
+ * f-stringify
+ * remote logging of f-strings
+ * #3582 expose gstreamer version info when FULL_INFO=1
+ * #3582 these lib versions are no longer exposed by default
+ * #3651 we have to use dh_shlibdeps
+ * minor warnings
+ * oops: undo parts of 6fc032eda4ae23917ed770c3d6f1249b3efafa55
+ * fix chunked file uploads
+ * make it possible to force chunking
+ * ensure we don't try to process empty files
+ * f-stringify
+ * warn if we ever somehow get the wrong arguments here
+ * this is a text file
+ * only update one file
+ * fix conf files not updated on Posix OSes
+ * return change boolean just like the superclass
+ * return change boolean just like the superclass
+ * simplify: let update_focus() return the boolean
+ * #3654 disable mixins we don't need
+ * #3649 block the import of pycuda on WSL
+ * #3651 split nvidia codecs into their own package
+ * #3651 split packaging for DEBs
+ * replace assert with explicit check
+ * no need to raise an exception
+ * Allow --max-size and --min-size to work again
+ * the symlink is now in git
+ * make it easier to build debian packages of xpra
+ * #3651 move all cuda files to xpra-codecs-nvidia
+ * #3652 add explicit conflict
+ * #3651 split nvidia codecs into a separate package
+ * #3590 avoid video for small sizes
+ * f-stringify
+ * #3514 disable GTK HiDPI by default
+ * explicitly disable all codecs that use CUDA
+ * #3648 ignore alpha if client can't handle it
+ * forgot to update some codec references during refactoring
+ * minor warnings
+ * oops: fixup 105669b79fb522451f094dd2133be548ccd24966
+ * oops: forgot to update paths here
+ * #3582 the filters never change
+ * #3582 limit default network and sys info
+ * simplify
+ * replace 'asserts' with faster 'RuntimeException's
+ * remove unused var
+ * disable transparency early via env var
+ * #3646 filter out rgb formats with alpha
+ * better debug logging
+ * make it easier to run the examples
+ * make pillow optional in more places
+ * the proxy can be used for other modes
+ * more minor warnings
+ * minor warnings
+ * fix minor warnings
+ * use shorter method
+ * fix minor warnings
+ * fix more warnings
+ * oops: forgot to update paths in tests
+ * doh: typo
+ * avoid errors when running without pillow installed
+ * fix minor warnings
+ * f-stringify + avoid more warnings
+ * fix minor warnings
+ * f-stringify and simplify
+ * add link to #3633
+ * forgot to bump the version here
+ * try to ease upgrades from previous versions
+ * derp
+ * remove scary warning when pillow is missing
+ * pillow, cryptography and xrdb are not strictly required
+ * I have newer headers installed...
+ * we don't have usable evdi libs on Fedora
+ * make pillow optional again
+ * less scary message when we can't load webcam components
+ * make python pillow optional again
+ * missed from move in fa3e6ed7a02c4a5e8aef95102431c423df25c689
+ * fix minor warnings and f-stringify
+ * fix building with clang
+ * all supported distros have tmpfiles.d, including el9
+ * #3592 simplify
+ * less scary message when v4l2loopback is not installed
+ * #3592 warn that these options are deprecated
+ * #3592 warn if not building for 64-bits
+ * #3592 re-arrange codecs
+ * minor lint warnings
+ * #3592 move nv_util with the other nvidia bits
+ * minor lint warnings
+ * #3592 split codecs into their own package
+ * #3592 remove python3 package name prefix
+ * #3592 libfakeXinerama is being deprecated
+ * #3592 remove support for coexisting with python2 RPMs
+ * #3390 forgot to include the compat file in sdist
+ * these files no longer exist or have moved
+ * cosmetic
+ * #3636 also convert to bytes here
+ * #3636 lz4 memoryview data must be converted to bytes
+ * cosmetic
+ * #3641 enable agent forwarding by default
+ * #2303 also remove invalid non-symlink
+ * simplify and update docstring
+ * #2303 stash env option in display args
+ * #2303 preserve the actual display
+ * unused import
+ * #3592 stub vpl encoder
+ * #3592 simplify: just require 64-bit
+ * unused import
+ * fix minor warnings
+ * remove unused def
+ * #3592 bump minimum version requirement
+ * #3592 remove support for older versions of libvpx
+ * #3592 simplify: require libvpx 1.8
+ * simplify
+ * undo WIP from c86d1aaeadadd6c403997d218552e77a9a45ea5e
+ * #3637 update Xdummy documentation links
+ * remove redundant string prefix
+ * f-stringify
+ * don't log huge invalid packets, ellipsize them
+ * Fix test_root_window_model by formatting geometry string correctly
+ * Fix test_get_version_info when the revision is 0
+
+- Update to version 4.4+git20221002.1c1e6e0d:
+ * bump version
+ * add rocky / alma / oracle / centos stream
+ * add latest fix
+ * #3454 too easy to hit resizing loops with xterm
+ * show variants if we find any
+ * #3630 don't populate the full layout list if we don't have to
+ * f-stringify
+ * #3630 add test that causes wayland hang
+ * can only join strings
+ * #3630 make it easier to disable all 'after-handshake' calls
+ * fix missing systray on Ubuntu
+ * the nvjpeg flag has been split in 2
+ * build witout cuda on Fedora 37
+ * add an empty changelog
+ * #3628 try harder to find the 'interactive' version
+ * silence some minor warnings
+ * chop large opengl renderer strings when displaying them in UI
+ * #3628 fix support for cygwin ssh servers
+ * remove warning on MS Windows and MacOS
+ * update the release notes
+ * #3628 cygwin probably behaves like msys
+ * some opengl renderer strings can be very long
+ * refactor: split authandler
+ * simplify: don't copy options we don't reuse
+ * match any variation of 'gnome' DE
+ * #3628 oops, emulate the output format too
+ * typo
+ * #3628 match registry query as a plain string
+ * #3628 re-arrange workaround order
+ * #3626 we can query without cmd.exe scripting
+ * add some new definitions
+ * #3628 use paexec to get an interactive desktop
+ * silence warning
+ * silence warnings: access 'daemon' directly
+ * #3626 try harder to locate xpra on MSYS2
+ * #3626 honour more virtual commands execution on MS Windows
+ * fix for loading 'DSS' keys, aka 'dsa' files
+ * doh: check we found the keyclass
+ * #3626 correctly handle channel exec requests
+ * add funding link
+ * replace chan_send with sendall variants
+ * missed brotli compressor from clean list
+ * never try to use systemd-run on MacOS
+ * cosmetic
+ * also clean the uuid
+ * add utility for dumping xpra's x11 properties
+ * delete the mode property on exit
+ * cosmetic
+ * doh: cut&paste gone wrong
+ * refactor authorized keys parsing into a reusable function
+ * refactor and keep the first match
+ * simplify
+ * fix warnings
+ * refactoring + try to honour 'echo'
+ * cosmetic
+ * #3625 downgrade to a warning
+ * cosmetic
+ * some exceptions have no message
+ * fix '_proxy' mode: don't start a server
+ * verify we have a stdout array before accessing it
+ * cosmetic
+ * avoid errors with ssh sockets
+ * #3626 don't use 'command' command on MS Windows
+ * handle all '_proxy_*' subcommands generically
+ * 'command' can be used without any arguments
+ * f-stringify some more
+ * don't show the full backtrace at 'error' log level
+ * missing alias lookup
+ * f-stringify some more
+ * skip attempting to load codecs that aren't available
+ * f-stringify
+ * f-stringify and use mode aliases earlier
+ * also skip 'importlib._bootstrap' as a debug category
+ * use a more reliable timestamp server
+ * unused import
+ * add full backtrace at debug level
+ * bail out if no GPU found
+ * no visible logging during self-tests
+ * #3625 skip showing scary warnings
+ * f-stringify + fix warnings
+ * add nvfbc to diagnostics
+ * oops: missing exception variable caused an error
+ * cosmetic
+ * dependency is missing on Debian Bookworm
+ * the debian headers are too old
+ * the pkgconfig file takes care of the [lib]drm path
+ * remove unused framework
+ * pynvml 11.515.75
+ * ffmpeg 5.1.1
+ * update faac / faad url to maintained github fork
+ * better libvpx url
+ * 4.4 updates
+ * #3625 add early check for nvidia driver
+ * catch permission errors and report them
+ * #3625 more consistent failure messages with missing hardware
+ * use the correct loggers
+ * keep the 'owned' flag updated
+ * unused import
+ * oops: no more hex
+ * #3504 don't build the nvjpeg decoder by default
+ * simplify
+ * we must use print here
+ * initialize variable so we can handle failures
+ * remove support for gcc versions older than 6
+ * f-stringify and fix warnings
+ * f-stringify and fix warnings
+ * fix legacy packet encoders
+ * f-stringify
+ * #3390 PoC expand server
+ * don't use GLib directly
+ * don't use GLib directly
+ * #3473 also clamp pre-mapped windows
+ * f-stringify
+ * also makes the code less dense?
+ * more generic solution for missing menu items
+ * the qr menu may be missing
+ * no wayland here..
+ * when failing to parse, return 'auto' value
+ * simplify validation
+ * xsettings watcher may be None
+ * f-stringify and fix warnings
+ * shortcut out, avoids backtrace splatter
+ * type annotation was wrong
+ * free wrapper explicitly to avoid warnings
+ * #3390 add drm as a pseudo codec
+ * Fedora 37 needs an updated Cython
+ * #3390 the cursor fix is in 1.9.1
+ * #3390 add compatibility glue for older cursor function
+ * #3390 add compatibility glue for older versions
+ * Cython 3.0 alpha: use pre-release to support python 3.11
+ * #3622 handle config file parsing errors more gracefully
+ * #3390 dumb double buffering
+ * round seconds
+ * f-stringify
+ * late_start() should only run once
+ * log real errors, ignore missing PIL
+ * #3390 oops: forgot to add drm module
+ * don't import logger if we don't need it
+ * skip scary permission warning for socket dirs in XDG_RUNTIME_DIR
+ * f-stringify
+ * split method
+ * cosmetic
+ * f-stringify
+ * fix logging call
+ * win32 DotXpra only uses 'username'
+ * disable clipboard proxies until we have a peer for them
+ * better window info
+ * silence pylint warning
+ * minor warnings
+ * pycuda depends on numpy
+ * restore missing numpy import
+ * typo + add reset_logging()
+ * constify and cleanup
+ * save as jpeg, bail out sooner
+ * use ValueError
+ * cleanup and remove python2 support (simplify)
+ * f-stringify
+ * #3619 better exception message for payload size errors
+ * #3619 don't compress strings
+ * #3390 cleanup and f-stringify
+ * oops, fixup missing import from 3c02e27631d982f0540aac9be0d87272529c74d6
+ * raise min version
+ * f-stringify and minor warnings
+ * validate screen dimensions, round if necessary
+ * #3483 move most of the locking to cuda_context import
+ * better server / session type string (we don't use gtk2)
+ * try to normalize mode names better
+ * #3390 move finding devices to a reusable function
+ * cleanup and f-stringify
+ * delay bindings imports until actually needed
+ * f-stringify
+ * #3390 make save-to-file optional (too slow)
+ * validate platform earlier, remove duplicated check
+ * #3390 typo: check for 'libdrm'
+ * #3390 add kernel module loading helper
+ * #3390 move drm to its own module
+ * f-stringify and fix pylint warnings
+ * #3390 expose drm info when FULL_INFO>1
+ * silence pylint warning
+ * #3390 cleanup and f-stringify
+ * #3390 build dependency updates
+ * #3458 we have ffmpeg builds now
+ * #3390 add drm query tool
+ * #3390 update to latest API
+ * #3390 no need for info logging, we can use 'evdi' for debugging
+ * f-stringify
+ * #3616 add 'autoconnect' checkbox to dialog
+ * better error format
+ * typo
+ * pylint warnings
+ * f-stringify, fix minor warnings
+ * f-stringify and pylint warnings
+ * f-stringify and pylint warnings
+ * f-stringify
+ * f-stringify, fix minor warnings
+ * use our pkgconfig file as template
+ * don't use print()
+ * assume that the user wants to abort authentication
+ * fix pylint warnings
+ * whitespace cleanup
+ * update tests to use 'wants' array
+ * fix minor warnings, avoid print()
+ * avoid naked print() in reusable / exported functions
+ * #3610 use the last line of output
+ * #3610 detect which 'find' command to use
+ * f-stringify and remove print()
+ * #3524 support remote ssh start
+ * oops: typo
+ * linter warning
+ * f-stringify
+ * #3592 move towards generic feature requests
+ * also update default file config
+ * automatically enable sync-xvfb when using Xephyr or Xnest
+ * f-stringify
+ * f-stringify
+ * also remove session tmp dir
+ * f-strings and warnings
+ * #3002 bail out if the user cancels pinentry
+ * we can't call quit() directly from the authentication thread
+ * prettify
+ * f-strings
+ * typo
+ * f-strings
+ * f-strings
+ * #3478 tool for extracting atom names from values
+ * open() warnings and f-strings
+ * silence import warning
+ * ensure tests don't use prompts
+ * re-enable
+ * simplify
+ * remove unused argument
+ * #3610 wait for a valid header on ssh connections
+ * more cleanups, warning fixes, f-strings
+ * fix more minor warnings
+ * fix minor linter warnings
+ * server time is better than using CurrentTime
+ * use f-string
+ * revert fb6621eaf922466a4210f2d03a973893e4bfa74c
+ * re-use the superclass method
+ * we don't have 'long's any more
+ * bug: timestamp clamping should not shortcut out
+ * log all the event data
+ * simplify some more
+ * simplify, a bit
+ * update the release notes
+ * preserve URL arguments in http request path
+ * cosmetic: make code more readable
+ * mostly cosmetic refactoring
+ * fix error path ('reason' was undefined)
+ * unused import
+ * #3604 separate logging from gen-dir
+ * don't use temporary variable with reserved name
+ * OR windows don't have 'client-geometry'
+ * f-strings
+ * f-strings and fix lint warnings
+ * convert to spaces
+ * f-strings
+ * need ssl attributes to parse
+ * honour env to skip coverage
+ * #3601 the lz4 compat header file must be included explicitly
+ * we now support 1.8 or later
+ * #3601 workaround for older versions of lz4
+ * #3601 unit test
+ * remove print debug statement
+ * #3560 also update the client unit test
+ * we have to query the keymap to get properties
+ * typo
+ * oops: missing import
+ * remove unused import, add debug logging
+ * remove unused arg
+ * simplify: raise_xerrors=False is the default
+ * unused import
+ * silence lint warnings
+ * when testing, disable lost-focus-exit behaviour
+ * silence linter warnings
+ * oops, that was for testing only
+ * move x11 tests where they belong
+ * #3582 honour FULL_INFO in get_host_info
+ * pid is no longer included in host info
+ * proxy attributes are now regular display attributes
+ * silence some minor lint warnings
+ * #3560 forgot to update unit test
+ * #1796 make the 'all' list of challenge handlers configurable
+ * vfb bits require the 'display' feature
+ * remove unused imports
+ * avoid None values
+ * avoid more None values
+ * bencode doesn't like None values
+ * add missing indentation
+ * build more codecs
+ * skip test if numpy is missing
+ * tests may not initialize all attributes
+ * vfb bits require the 'display' feature
+ * try to make it clearer this should not be used
+ * skip the dbus test if python-dbus is not installed
+ * also honour the PYTHON env var when launching subprocesses
+ * typo
+ * fix deprecation warning
+ * don't use 'which' on absolute paths
+ * cosmetic
+ * make it possible to test with multiple interpreters in parallel
+ * cosmetic
+ * we can't import the enums directly
+ * skip dbus test if python-dbus is not installed
+ * also honour the interpreter here
+ * fix uninitialized warning with latest Cython
+ * #3373 enable libspng
+ * doh: use the same interpreter for running the tests
+ * make it easier to run with a different interpreter
+ * distinguish connection errors from authentication failures
+ * cosmetic
+ * cosmetic
+ * avoid deprecation warnings
+ * oops: also remove import
+ * refresh delay is no more (#3560)
+ * silence warnings with newer versions of Pillow
+ * #3486 never use print() directly from modules
+ * better error diagnostics
+ * return strings, not bytes
+ * simplify
+ * avoid errors when python-xdg is not installed
+ * downgrade missing paramiko to a warning
+ * catch missing python-dbus earlier
+ * missing python-dbus is just a warning
+ * error handling for menu loading
+ * #3601 updated deps
+ * #3572 we only need the lib
+ * #3601 deb dependencies
+ * #3100 cleanup the authentication handler interface
+ * #3100 exit more quickly if the http connection requires authentication
+ * #3100 make challenge handlers more re-usable
+ * don't add the same digest value multiple times
+ * cosmetic
+ * #3100 make authentication method re-usable
+ * #3100 'Basic' http authentication handler
+ * cuda context locking contention should be a transient problem
+ * the html5 client wants to know the frame type
+ * #3598 expose 'low' 'scaling-quality' for nvenc and nvjpeg
+ * avoid weird closure errors
+ * f-strings
+ * #3607 newer clients don't want flattened caps
+ * easier to read
+ * unused import
+
+- Update to version 4.4+git20220823.6f83fe78f:
+ * #3607 newer clients don't want flattened caps
+ * easier to read
+ * unused import
+ * os.path.abspath always returns a path
+ * MacOS doesn't have an XDG_RUNTIME_DIR
+ * show what type of client disconnected
+ * #3059 X11 pointer grabs
+ * #3059 pointer grabs for win32 using ClipCursor
+ * fix desktop servers
+ * silence linter warnings
+ * #3504 use async calls using a cuda stream
+ * #3582 more fine grained filtering
+ * re-use value from common
+ * move icon functions to a more re-usable location
+ * simplify
+ * cosmetic
+ * oops: 10 seconds is slow
+ * #508 workaround win32 focus events
+ * #508 also show progress of downloads
+ * #508 use the Taskbar to show splash screen progress
+ * remove unused 'display' argument
+ * #1526 get dpi from comtypes
+ * #3504 move nvjpeg code to a separate method
+ * #3589 reset fraction and text and re-generating progressbar widget
+ * try harder to prevent dangling timers
+ * #3589 re-generate new buttons
+ * add debug logging
+ * remove unused 'tooltip' argument
+ * better formatting
+ * wrong positional arg
+ * fix digest errors with unchunked file transfers
+ * better formatting and f-strings
+ * avoid errors deleting the temporary file
+ * fixup version number conversion
+ * drop meaningless 'python-XX' version
+ * import errors can be handled generically
+ * #3601 remove python-lz4 fallback
+ * #3601 remove python-lz4 package dependency
+ * #3601 don't require python-lz4 anymore
+ * #3601 prefer our own lz4 cython module
+ * remove debug
+ * #3601 handle memoryviews
+ * #3601 handle memoryviews natively
+ * remove unused imports
+ * #3582 don't assume 32-bit
+ * silence some warnings
+ * fixup c420dc9170ff08c2d3f3a602114ab0af82e09b8d
+ * #3504 show pycuda context cleanup failures
+ * x11 bindings return bytes
+ * just one repeated typo
+ * #2105 bundle libproxy.py (missed from 82b0698e55f591173a5afbd3df6048de60a4d987)
+ * update embedded xxHash lib
+ * #3592 use namespace for audio caps
+ * skip empty values
+ * #3592 move clipboard caps to a prefix
+
+- Update to version 4.4+git20220807.c52d8ac10:
+ * new git snapshot
+ * .. and here
+ * we can use the same list for '8' and '9'
+ * oops: forgot to bump version
+ * doh: wrong line
+ * ffmpeg 5.1 deprecated 'channels'
+ * use newer commit
+ * pytools 2022.1.12
+ * pbr 5.9.0
+ * ffmpeg 5.1
+ * python-lz4 4.0.2 + fix macro warning
+ * with 'epel-next-release' installed, this is not needed
+ * bump date
+ * match layout update
+ * #3600 try to build python3-lz4 for RHEL 9
+ * #2105 detect proxy settings using libproxy
+
+- Update to version 4.4+git20220801.cc03f573e:
+ * obvious is obvious
+ * simplify: cuda-device-context is a video encoder option
+ * don't increase the quality artifically
+ * don't special case video
+ * remove 'text' special cases
+ * #3420 add control commands for 'max' options
+ * honour refresh attributes
+ * #3420 honour max-quality in more places
+ * #2105 bundle pysocks with MS Windows and MacOS binaries
+ * #3572 brotli option toggles the module
+ * 2105 install pysocks on MS Windows build machines
+ * #2105 connections via proxies using pysocks
+ * Cython 0.29.32
+ * Cython 0.29.31
+ * revert 4425c08d72e08d4d2f0fe487cdc5f03e99ba8c88 which causes crashes
+ * #2779 shortcut for showing the documentation
+ * #2779 try harder to find a valid documentation path
+ * don't install the manual in a subdirectory
+ * #2779 add a shortcut for showing all the shortcuts
+ * warn about uinput
+
+- Making adjustments as per https://build.opensuse.org/request/show/994288
+ * Swapping out '--without-strict'
+ * Using CFLAGS '-Wno-error=deprecated-declarations' for all flavors
+ * Adding 'ExcludeArch: %ix86'
+
+- Making adjustments for 'ffmpeg-4' vs. 'ffmpeg-5'
+
+- %{_libexecdir} issue was fixed upstream, cleaning up spec file
+ * See https://github.com/Xpra-org/xpra/issues/3597
+
+- Update to version 4.4+git20220726.a03b3f67e:
+ * #3597 openSUSE Leap 15.4 still does not use libexec
+ * always pop GDK errors
+ * #3595 add man page entry
+ * #3595 'exit-with-windows' option
+ * fix removing monitor: logging was causing an error
+ * layout may be 'None'
+ * close the splash screen if it loses top level focus
+ * #2630 these values aren't 'real' layout names, don't try to use them
+ * #2630 modify shadow keymap when '--keyboard-layout=auto'
+ * `xpra/x11/server_keyboard_config.py`: `'NoneType' object is not iterable`
+ * #3594 fix vim typo
+ * #3594 backwards compatibility fix
+ * f-strings and more dense output
+ * safer: don't delete recursively, delete with glob explicitly
+ * when calling 'xpra clean' explicitly, we can remove session sub-directories
+ * run 'late_cleanup' before trying to remove the session dir
+ * don't try to parse 'resize-display' as a resolution if it is a boolean
+ * remove spurious import added by IDE
+ * distinguish directories from regular files
+ * it is possible to run without the 'rgb' encoder
+ * make it easier to build without any codecs
+ * we can only use the 'native' mapping with existing x11 keycodes
+ * simplify: remove unused argument
+ * #3592 remove redundant 'xkbmap_' prefix
+ * #3592 remove unstructured setxkbmap query data from server
+ * #35822 start removing 'setxkbmap -query' and 'setxkbmap -print'
+ * #3582 audio info may be missing - and that's fine
+ * don't pretend that these versions should work
+ * more resilient version parsing
+ * #3592 remove xkbmap prefix from client
+ * #3582 audio info may be missing - and that's fine
+ * #3592 same as f192c0312bc98360aec94e6aa92af90511259401 but for the server
+ * #3592 move keymap to a substructure
+ * #2303 support agent forwarding with the builtin ssh server
+ * cosmetic
+ * #2303 ignore '_proxy' command line arguments
+ * cosmetic
+ * #2303 when client exits, find another auth socket
+ * unused import
+ * #2303 keep track of sock path
+ * #2303 make function more re-usable
+ * dead symlinks don't "exist"
+ * #3592 remove unused tcp-proxy feature
+ * typo - why didn't this trigger problems?
+ * the 'install' subcommand does add data files
+ * #2303 error handling
+ * return the exit code
+ * #3592 remove uncompressed 'premult_argb32' icon format
+ * #3592 never use zlib for pixel data
+ * unused import
+
+- A few changes related to local builds of Leap 15.4 referencing 150500
+
+- Update to version 4.4+git20220721.c00134211:
+ * place the verification token at a random address
+ * remove ancient mmap token location code
+ * #3582 limit audio info
+ * always enable bundling - no need for env switch
+ * the '_proxy' subcommand doesn't need to load compressors
+ * skip lib validation warnings when running 'sdist'
+ * #3582 limit client info exposed
+ * doh: return the info
+ * return a dict even when we hit an error
+ * #3591 clamp negative values to display
+ * #3591 also drop negative dimensions
+ * #2303 honour env var and skip processing ssh agent paths
+ * some clients don't have ssh-auth-sock specified.. don't error out
+ * silence linter
+ * only forward ssl socket options to the ssl wrap function
+ * fix ssl breakage: convert attribute names to arguments
+
+- Update to version 4.4+git20220720.22e3ae211:
+ * don't compress rgb pixels with anything but lz4
+ * rename method to prevent confusion
+ * #2303 ssh agent forwarding
+ * #3582 hide detailed version info
+
+- Update to version 4.4+git20220720.d0ae240e2:
+ * #3582 skip opengl info
+ * fixup estr logging method
+ * #2303 make is_socket re-usable
+ * #3483 pycuda also imports numpy
+ * #3579 more f-strings
+ * oops: missing import
+ * #3582 mixins info, option to log capabilities
+
+- Update to version 4.4+git20220719.d301bf723:
+ * #3582 restrict client info exposed
+ * the system tray forwarding is challenging
+ * we are forced to use appindicator now
+ * simplify
+ * #3577 simplify
+ * #3577 reorder
+ * #3577 remove v4l2 legacy workarounds
+ * typo
+ * too many distros are missing pam pkgconfig files
+ * not all Linux distros have this header file
+ * another strangely misnamed package: libpam0g'
+ * fix misnamed package dependencies
+ * RHEL doesn't have a pam-devel package?
+ * distros have all moved pam to /usr/include/security/pam*
+
+- Update to version 4.4+git20220718.6b84ef9f6:
+ * skip all guessing using an env var
+ * #3386 fix typo
+ * procps-devel is not available on RHEL?
+ * pam pkgconfig refs had gone missing
+ * refer to Cython 'Extension' class directly
+ * oops: nvenc is not a package
+ * make it easier to change the number of cores used
+ * ignore 'address' warnings building nvenc
+ * use booleans for switches
+ * no longer used
+ * try the local cuda symlink before anything else
+ * this doesn't do anything
+ * make it easier to choose the number of threads
+ * #3577 remove legacy workarounds
+ * #3577 add switch for 'argb' codec
+ * #3577 group subsystems together
+ * #3577 group macos / win32 bundling workarounds together
+ * #3577 nvenc must use pkgconfig
+ * #3577 enable '-DDEBUG' globally
+ * #3577 convert pam module in pkg-config
+ * CUDA symlink on MS Windows:
+ * #3577 move nvenc tweaks to pkgconfig file
+ * ignore temporary build generated installer file
+ * #3390 evdi uses c++
+ * #3577 use pkgconfig file for nvfbc flags
+ * #3577 simplify nvenc / nvjpeg using pkgconfig files on win32
+ * #3584 typo
+ * fixup bccf36d62f6857094054cb3bd5cefd70b1fd5423: directories must start with a '/'
+ * #2753 RPM file list update
+ * #2753 add new packaging dependency
+ * #3582 limit the info available to remote hosts
+ * convert tray menu to use the new qrencode module
+ * #56 fix miscalculation of initial refresh rate
+ * #3583 update to the new python-cryptography API
+ * #3579 (almost) finish this one module
+ * #3483 only import numpy once, block if necessary
+
+- Update to version 4.4+git20220621.872c7f8d8:
+ * #3559 set non zero global quality with vaapi
+ * #2400 more indirect dependencies
+ * add example pkgconfig files
+ * #3543 make it easier to disable inotify watcher
+ * move away from slow zlib compression
+ * #3556 don't enable hevc by default
+ * report codec information using strings
+ * add docstring
+ * add missing codecs to clean list
+ * #3457 add missing toggle for avif
+ * #3553 extra args for vfb command
+ * Update randr_bindings.pyx
+ * Allow override of idealVSync by env. vars
+ * Fedora 36 build fix: use a more crude glob
+ * doh, typo
+ * #3458 disable LTO on Fedora 36
+ * new upstream release: 11.515.48
+ * show builds from 'git master' as 'beta' builds
+ * utility function to hide platform import ugliness
+ * better error message formating
+ * #3552 only initialize X11 gdk display source on X11..
+ * #56 this function must return an int
+ * #56 we may have already added this mode
+ * #56 don't bother with xinerama workaround when we have randr16
+ * better wording
+ * oops: was meant to specify the list values
+ * fix more warnings
+ * silence some minor warnings
+ * make code more readable
+ * error message would itself cause an error
+ * fix chunk number verification
+ * cosmetic
+
+- Update to version 4.4+git20220531.56f76c715:
+ * fix new warnings generated by latest Cython / gcc on win32
+ * also avoid deprecation warnings on win32
+ * Update OpenGL.md
+
+- Update to version 4.4+git20220523.d5a721cc4:
+ * fix webcam forwarding with older versions
+ * Most build systems respect the CPP env var instead of just calling cpp
+
+- Update to version 4.4+git20220521.cb25967f8:
+ * #3545 opensuse does patch distutils
+
+- Update to version 4.4+git20220519.9be098cc7:
+ * #3371 set the server socket even if we don't forward xdg-open
+ * we need a frame ancestor to use StreamSaver.js
+ * Cython 0.29.30
+ * trays don't have a 'client-geometry' to adjust
+ * if we fail the checksum, delete the file
+ * refactor hash checking functions
+ * detect AlmaLinux and Rocky-Linux
+ * make code more readable?
+ * almalinux list of packages is the same as centos
+ * minor fixes
+ * update to use cuda 11.7 path
+ * #3537 forward port d0d2bae8ad825685a9301855924f3468ae39767d
+ * fix debug logging triggering warnings
+ * better warning message: include the key
+ * #3537 remove DesktopManager and DesktopState
+ * #3537 remove overcomplicated ownership-election
+ * #3537 clamp window models to the new screen size
+ * more understandable message
+ * simplify: size can be passed in, no need for a callback here
+ * back off more gradually
+ * the 'title' lives in the model
+ * #3390 stub evdi capture codec
+ * try harder to distinguish connection failures vs lost connections
+ * only do the context check if we actually access X11 functions
+ * log failures to cleanup contents handle
+ * use the correct short names
+ * these are the correct short names apparently
+ * try harder to show a useful hostinfo
+ * #3530 always use the free_image_wrapper method to ensure we safely access X11 using the context manager
+ * prevent name conflict between errno value and enum
+ * make it possible to call clean multiple times without causing errors
+ * #3535 only unescape what we use, URL handlers can handle it raw
+ * #3486 more thorough testing of json input
+ * #3486 indent error details
+ * #3486 can't catch an error we can't import
+ * fixup c5f7c8804a87eb725e699045800b00322a4633e1: add to the correct prefix
+ * #3486 add MSYS2 dependency
+ * #3486 add suggested dependencies
+ * #3486 fix keycloak auth module thanks to unit tests
+ * #3535 unescape URLs
+ * force rebuild
+ * some distros choke on zstd
+
+- Update to version 4.4+git20220428.94954180d:
+ * #3533 newer versions of Firefox use smaller max-size
+ * make socket info more resilient
+ * only query ioctl if we have a valid file descriptor
+ * move command lookup by pid to window model
+ * #3530 don't send pixels for windows that don't overlap the screen
+ * #3530 add 'unityhub' as browser content type
+ * #3514 fix launch error on systems without X11
+ * fix tabulation
+ * log failures to undock systrays
+ * #3530 crop the damage area if the window is now smaller
+ * add the v4l2 source to the codec loader tool
+ * #3371 guess the session if the environment has it
+ * parse when called, don't return a generator
+ * #3384 pass shadow geometry options to remote server
+ * fix generic subcommand substitution
+ * file should have been removed as part of 0b23cc0e59fd55047e5e73df7a4d39439584fb2d
+ * make the code easier to parse using context managers
+ * log the previous dimensions
+ * use xsync context manager
+ * #3530 use a UI context manager for freeing X11 images
+ * don't use xsync context manager on MacOS
+ * import X11 error handlers from the correct place
+ * #3530 cleaning up the xshm handle may raise X11 errors
+ * #3530 add more context checks
+ * #3530 call context check when XShm resources are freed
+ * lintian hangs on aarch64, skip it
+ * #3524 don't modify the monitors when the client connects
+ * remove debug logging
+ * #3524 make monitor windows fullscreen when desktop-fullscreen is set
+ * #3524 remove functions identical in base class
+ * #3524 doh: modify the monitor we're setting properties on
+ * #3524 better debug logging
+ * #3524 refresh all monitors on layout changes
+ * #3524 add 'monitor' subcommand
+ * #3524 reconfigure monitor models on external resize event
+ * #3524 add stub for handling monitor resizing via xrandr
+ * add missing context check, XRRSelectInput wrapper
+ * #3486 style fixups
+ * Refactoring for PR
+ * Refactoring for PR
+ * #3524 fixups, cleanups, etc
+ * cast is not necessary here
+ * Refactoring for PR
+ * Added keycloak authentication
+
+- Update to version 4.4+git20220419.138728c46:
+ * #3524 allow the client to add and remove monitors
+ * always log the full backtrace
+ * #3524 handle individual monitor resizing
+ * #3524 doh: don't modify the event which may be used elsewhere
+ * #56 / #3524 allow multiple monitors in 'resize-display' option
+ * #3524 disentangle 'set-initial-position' and 'requested-position'
+ * use 'damage' logging
+ * pylint warnings
+ * #3524 multi monitor desktop mode
+ * #56 let the build auto-detect which variants should use Xdummy
+ * we need the dummy installed to check the version number
+ * #56 use Xdummy on Debian: add dependency
+ * discard invalid workarea values
+ * #56 we don't support multiple screens
+ * remove debug logging
+ * #56 let's hope that newer Debian versions no longer mess up the X11 server
+ * #56 ensure the commented out Xdummy command line is valid
+ * fix error if XDG_DATA_DIRS is not set
+ * #56 make get_monitor_properties reusable
+ * we don't support multiple screens, only monitors
+ * Fix shadow server test following changes in #3476
+ * oops: messed up patch context
+ * #56 add disconnect patch to dummy driver builds
+ * #56 enable the new exact monitor layout matching code
+ * #56 match monitors and outputs
+ * #56 try to disable unused crtc's outputs
+ * fix benncode error when cuda info is missing
+ * oops: using floats breaks backwards compatibility (bencode)
+ * #3518 ffplay is video
+ * #3519 use 'scroll' encoding more judiciously
+ * update patch has zero fuzz
+ * #56 keep track of primary monitor, prettify_plug_name
+ * #56 enable Xdummy on arm again
+ * build the dummy driver on arm64, always build xpra
+ * ffmpeg 5.0.1
+ * oops: we do still want those
+ * #56 build updated dummy driver for Debian distros
+ * simplify: don't enable by default on MacOS or MS Windows
+ * MacOS needs a Python interpreter to run the signal listener
+ * #3493 fix signal watcher libexec path on MacOS and MS Windows
+ * ship xpra_signal_listener on MacOS
+ * debug logging tweaks
+ * fix setting of monitor attributes
+ * provide XSync method, use it instead of (useless) XFlush
+ * make it easier to initialize DPI awareness without loading GTK
+ * latest pillow spits out warnings without this
+ * #56 hook up monitor virtualization in seamless server
+ * validate mapping size
+ * oops: missed during renaming
+ * remove unnecessary import
+ * use a stronger type for membuf
+ * #3504 use a MemBuf to quickly allocate host memory
+ * use correct value for bits-per-pixel
+ * #3504 make it clearer this is a CUDA buffer
+ * #3504 simplify: don't use a download callback
+ * explicitly unregister the CUDA RegisteredBuffer
+ * #1467 remove redundant pointer limits patch
+ * #56 oops: fix backwards compatibility for add_screen_size
+ * #56 add modes to output as needed
+ * add XSynchronize and XSync wrappers
+ * #3366 pixel data is a list of bytes
+ * re-use CurrentTime from pxd
+ * #56 configure crtcs, outputs and monitors
+ * #56 expose monitor info
+ * #56 expose primary output, hide gamma for disconnected outputs
+ * #56 also include gamma curves
+ * #56 set WIDTH_MM and HEIGHT_MM dummy output properties
+ * #56 skip irrelevant information
+ * #56 capture most crtc / output info
+ * #56 switch to milimeters everywhere
+ * fix memleak: add missing XRRFreeOutputInfo
+ * non ui clients may not have 'screen_sizes' defined
+ * make it easier to dump monitor info
+ * #56 make the legacy dummy dpi option optional
+ * allow a wider range of clocks
+ * #3504 free buffers as soon as possible, log alpha channel merge cost
+ * #56 oops, missed from a6248574105da32680a9cb2b624cc6d9cf896688
+ * #56 enable dynamic resolution matching with randr >= 1.6
+ * #56 with dummy 0.4.0 or later no need for pre-defined modelines
+ * minor path / extension fixups
+ * fix patch path, remove merged patch, use bz2 archive
+ * dummy v0.4.0
+ * fix 'jpega' decoding using plain 'jpeg' decoder
+ * #3504 add 'jpega' support
+ * also add jpeg / nvjpeg encoders
+ * pylint warning
+
+- Adding 'Recommends: lsb-release' so 'Information' -> 'Session Info'
+ returns results vs. 'unknown'.
+
+- Removing 'BuildRequires: lsb-release'.
+
+- Adjusting to use 'distribution-release' for Tumbleweed and
+ 'openSUSE-release' for < Tumbleweed.
+
+- Swapping out 'openSUSE-release' (for 'distribution-release') BuildRequires.
+
+- xpra-paths.patch has been removed because the developer @totaam committed
+ https://github.com/Xpra-org/xpra/commit/0ed231fb95c8df3ec97d779698e6818faa7e5ef8
+ as a result of https://github.com/Xpra-org/xpra/issues/3501 "build tweaks for openSUSE"
+
+- Updating .spec to accomodate TW (libexec) vs. Leap (lib) for %{_libexecdir}.
+
+- Update to version 4.4+git20220404.1e56be683:
+ * #3503 don't use gtk for reading atom names
+
+- Update to version v4.3+git20220402.2f1c3abe7:
+ * #3504 manage the cuda context outside the nvjpeg decoder
+ * #3504 cuda gpu buffer transfer for opengl backend
+ * #3509 protect access to mutable data
+ * check if paths exist before
+ * check XDG_DATA_DIRS/icons for pixmaps
+ * remove unused declarations
+ * #3509 prevent potential race condition
+ * don't use arrays if we can use tuples
+ * #3504 use pycuda rather than Cython
+ * don't store cython generated file
+ * #3504 common python definitions cannot live in pxd
+ * move common definitions to pxd file
+ * #3505 override sourced env with command line
+ * #3505 command line can override config files
+ * validate the option we're dealing with
+ * #3458 revert f5b1b663bd981b326c4720731b7c97a007b2b247 now that cuda 11.5.2 supports GCC 12
+ * try to build with gcc 12
+ * arch=all triggers warnings, silence them
+ * #3505 skip 'false' values
+
+- Adding a few missing BuildRequires/Requires/Recommends.
+
+- Update to version git20220328.5881281f1:
+ * #3504 add nvjpeg decoder
+ * remove unused definitions
+ * misaligned positional arguments
+ * remove unused definitions
+ * prefer immutable tuples
+ * workaround for libx264 version numbers
+ * export 'relative-position' and 'parent' from X11 shadow servers
+ * doh: group-leader and transient-for had gone AWOL
+ * #3476 support OR windows in shadow servers
+ * add debug logging to video delay calculations
+
+- Initial version for xpra with 'xpra-html5' pulled out.
+
+- Update to version git20220328.5881281f1:
+ * #3504 add nvjpeg decoder
+ * remove unused definitions
+ * misaligned positional arguments
+ * remove unused definitions
+ * prefer immutable tuples
+ * workaround for libx264 version numbers
+ * export 'relative-position' and 'parent' from X11 shadow servers
+ * doh: group-leader and transient-for had gone AWOL
+ * #3476 support OR windows in shadow servers
+ * add debug logging to video delay calculations
+
+- Update to version git20220326.5fd33c46d:
+ * export 'relative-position' and 'parent' from X11 shadow servers
+ * doh: group-leader and transient-for had gone AWOL
+ * #3476 support OR windows in shadow servers
+ * add debug logging to video delay calculations
+ * never delay unless we have a video region
+ * log damage image and scroll latency
+ * remove unused code
+ * #3501 build tweaks for openSUSE
+ * #3477 fixup opengl probing (again)
+ * #3502 control command for (un)setting start env
+
+- Update to version git20220325.7f8ca92ba:
+ * #3477 fixup opengl probing (again)
+ * #3502 control command for (un)setting start env
+
+- Update to version git20220324.785a44e79:
+ * #3476 relative window position tracking
+ * #3493 forgot to update mswindows exe script path
+ * #3493 no need for a man page if the command is hidden
+ * missed from d5e3d9b1d0248cca7fc265f5d390e0b9d63a7a82
+ * move manual to subdir of /u/s/doc/xpra
+ * typo
+ * fix distutils deprecation warning
+ * #3493 move signal watcher to libexec
+ * #3493 these files have moved
+ * #3493 'fs' should mirror the real paths
+
+- Updated to the following source version(s):
+ * xpra_ver 4.3.2
+ * html5_ver 4.5.2
+ * uglifyjs_ver 3.15.3
+- Added pkgconfig requirement for 'xres'.
+- Added a few new/missing items for '%files'.
+
xpra-html5
+- Update to version 7.0+git20221227.017148e:
+ * workaround for setuptools breakage in version 61 and later
+ * typo
+ * Linting
+ * firefox cancas flicker
+ * bitmap_options.set() is not defined
+ * throttle fix
+
+- Update to version 7.0+git20221031.f1e0fa1:
+ * forgot to bump version here
+ * #210 brackets change the event handler scope somehow?
+ * Hotfix in OffscreenDecodeWorker
+
+- Update uglifyjs to '3.17.4'
+
+- Update uglifyjs to '3.17.3'
+- Update to version 6.0+git20221017.21cabde:
+ * bump version
+ * update the release notes
+ * modernize - require python3
+ * bump revision
+ * typo: missing '%'
+ * better wording
+ * #204 don't allow modal windows to be minimized
+
xrootd
+- Update to version 5.5.1:
+ * [XrdFfs] Fix a bug in xrootdfs (gh#xrootd/xrootd#1777).
+ * [Server] Avoid SEGV when client tries to access file after
+ deferred closed.
+ * [XrdHttp] The server certificate is renewed by the Refresh
+ thread of the XrdTlsContext object.
+ * [XrdHttp] Fix a segv happening when a client sends a first
+ line starting with a space.
+ * [XrdTls] Shutdown the socket if a SSL error happens when
+ trying to accept a connection.
+ * [Apps] Avoid SEGV when asking for help.
+ * [XrdCl] copy job: fix memory leak (buffers not queued on
+ error).
+ * [Server] Add O_RDWR open flag when creating file to avoid fs
+ issue.
+ * [Server] Properly handle opaque info for fsctl operations.
+ * [XrdHttp] Allow VO names with spaces and other quoted chars.
+ * [XrdCl] LocalFileHandler: fail gracefuly on overloaded
+ machines.
+ * [XrdCl] Introduce new error code for handling local errors.
+ * [XrdCl] local file handler: obtain error code with aio_error.
+ * [XrdCl] xrdfs ls: sanitize ls entry.
+ * [CMake] Add ENABLE_ switch for scitokens and
+ macaroons(gh#xrootd/xrootd#1728).
+ * [XrdTls] Start the CRLRefresh thread in XrdTlsContext
+ constructor.
+ * [XrdTls] Changed the bit set for the activation of the Refresh
+ thread.
+ * [XrdTls] The CRL refresh thread logic only starts when there
+ is a need for it.
+ * [XrdTls] Free current context when a new context is generated.
+ * [XrdHttpTpc] Pass src size to OFS via oss.asize.
+
xstream
+- Upgrade to 1.4.20
+ * Security fixes
+ + This maintenance release addresses the security
+ vulnerabilities CVE-2022-40151 (bsc#1203520) and
+ CVE-2022-41966 (bsc#1206729), causing a Denial of Service by
+ raising a stack overflow. It also provides new converters for
+ Optional and Atomic types.
+ * Major changes
+ + #308: Add converter for AtomicBoolean, AtomicInteger,
+ AtomicLong, and AtomicReference of package
+ java.util.concurrent.atomic.
+ + #293: Add converter for Optional, OptionalDouble, OptionalInt,
+ and OptionalLong of package java.util.
+ * Minor changes
+ + #287: Close stream opened from provided URL.
+ + #284: Fix disabling check against hash code attack with
+ XStream.setCollectionUpdateLimit(0).
+ * Stream compatibility
+ + The atomic types with new converters of package
+ java.util.concurrent.atomic, that have been written with
+ previous versions of XStream, can still be deserialized.
+ + The Optional types with new converters of package java.util,
+ that have been written with previous versions of XStream,
+ can still be deserialized.
+ + The WildcardTypePermission allows by default no longer
+ anonymous class types.
+ * API changes
+ + Added c.t.x.converters.extended.AtomicBooleanConverter.
+ + Added c.t.x.converters.extended.AtomicIntegerConverter.
+ + Added c.t.x.converters.extended.AtomicLongConverter.
+ + Added c.t.x.converters.extended.AtomicReferenceConverter.
+ + Added c.t.x.converters.extended.OptionalConverter.
+ + Added c.t.x.converters.extended.OptionalDoubleConverter.
+ + Added c.t.x.converters.extended.OptionalIntConverter.
+ + Added c.t.x.converters.extended.OptionalLongConverter.
+ + Added c.t.x.security.WildcardTypePermission
+ .WildcardTypePermission(boolean,String[]).
+
xwayland
+- U_xserver-composite-Fix-use-after-free-of-the-COW.patch
+ * overlay window use-after-free (CVE-2023-1393, ZDI-CAN-19866,
+ bsc#1209543)
+
yast2-snapper
+- Fixed translations: Moved variable message part out of _(...)
+ (bsc#1209956)
+- 4.5.1
+
yast2-storage-ng
+- Fix the translation of widgets titles in the dialog to select
+ a partitioning scheme (bsc#1209697).
+- 4.5.19
+
yast2-users
+- Stop mangling the value of "Create as Btrfs Subvolume" for new
+ users when clicking on "Edit -> Details" (bsc#1209377).
+- 4.5.4
+
+- AutoYaST: Fix creation of home for system users (bsc#1202974).
+
zstd
+- Fix CVE-2022-4899, bsc#1209533
+ * Fix buffer underflow when dir1 == ""
+ * Disallow empty string as an argument for --output-dir-flat=""
+ and --output-dir-mirror="".
+- Added patches:
+ * Disallow-empty-output-directory.patch
+ * Fix-buffer-underflow-for-null-dir1.patch
+
zutty
+- Update description with the good and bad characteristics.
+- Add FAQ document from the project wiki.
+