Packages changed: MozillaFirefox (121.0 -> 121.0.1) PackageKit baobab bash (5.2.21 -> 5.2.26) dconf-editor desktop-file-utils elfutils (0.189 -> 0.190) elfutils-debuginfod (0.189 -> 0.190) eog evince ffmpeg-6 (6.0.1 -> 6.1.1) fwupd gnome-logs gnome-music gnutls (3.8.2 -> 3.8.3) grub2 gtksourceview iputils (20231222 -> 20240117) libcroco libgsf libjpeg-turbo libjxl-gtk (0.8.2 -> 0.9.0) libosinfo libstorage-ng (4.5.173 -> 4.5.174) libxkbcommon live555 (2023.05.10 -> 2023.11.30) llvm17 mosh ncurses (6.4.20240106 -> 6.4.20240113) nvidia-open-driver-G06-signed orca (45.1 -> 45.2) plocate (1.1.19 -> 1.1.22) polari python-flufl.i18n python-lxml (4.9.4 -> 5.1.0) python-numpy python-redis python-zope.component rdesktop readline (8.2 -> 8.2.10) selinux-policy (20240104 -> 20240116) shadow (4.14.2 -> 4.14.3) sushi telepathy-logger upower xfce4-whiskermenu-plugin (2.8.2 -> 2.8.3) xorg-x11-server (21.1.9 -> 21.1.11) xwayland (23.2.2 -> 23.2.4) === Details === ==== MozillaFirefox ==== Version update (121.0 -> 121.0.1) - Mozilla Firefox 121.0.1 * Fixed unexpected line wrapping in some CJK contexts caused by changes in ideographic space handling. bmo#1870973) * Fixed a hang when loading sites containing column-based layouts under some circumstances. bmo#1867784) * Fixed missing rounded corners for videos playing over another video. bmo#1869994) * Fixed Firefox not closing properly and other applications being unable to use a USB security key after being previously used during a Firefox session. bmo#1863135) ==== PackageKit ==== Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Add PackageKit-find-python-3-6.patch: Specify the Python version we need to build this package. ==== baobab ==== - Convert to source service for easier updating. ==== bash ==== Version update (5.2.21 -> 5.2.26) Subpackages: bash-doc bash-sh - Add upstream patches * bash52-022 It's possible for readline to try to zero out a line that's not null-terminated, leading to a memory fault. * bash52-023 Running `local -' multiple times in a shell function would overwrite the original saved set of options. * bash52-024 Fix bug where associative array compound assignment would not expand tildes in values. * bash52-025 Make sure a subshell checks for and handles any terminating signals before exiting (which might have arrived after the command completed) so the parent and any EXIT trap will see the correct value for $?. ==== dconf-editor ==== - Convert to source service for easier updating. ==== desktop-file-utils ==== - support non-SUSE distributions ==== elfutils ==== Version update (0.189 -> 0.190) Subpackages: libasm1 libdw1 libelf1 - Update to version 0.190: * libelf: Add RELR support. * libdw: Recognize .debug_[ct]u_index sections * readelf: - Support readelf -Ds, --use-dynamic --symbol. - Support .gdb_index version 9 * scrlines: New tool that compiles a list of source files associated with a specified dwarf/elf file. * backends: Various LoongArch updates. ==== elfutils-debuginfod ==== Version update (0.189 -> 0.190) Subpackages: debuginfod-client debuginfod-profile libdebuginfod1 - Update to version 0.190 * Schema change (reindexing required, sorry!) for a 60% compression in filename representation, which was a large part of the sqlite index; also, more deliberate sqlite - wal management during scanning using the - -scan-checkpoint option. ==== eog ==== - Convert to source service for easier updating. - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== evince ==== Subpackages: evince-plugin-comicsdocument evince-plugin-djvudocument evince-plugin-dvidocument evince-plugin-pdfdocument evince-plugin-tiffdocument evince-plugin-xpsdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0 - Convert to source service for easier updating. ==== ffmpeg-6 ==== Version update (6.0.1 -> 6.1.1) Subpackages: libavcodec60 libavfilter9 libavformat60 libavutil58 libpostproc57 libswresample4 libswscale7 - Update to version 6.1.1: * libaribcaption decoder * Playdate video decoder and demuxer * Extend VAAPI support for libva-win32 on Windows * afireqsrc audio source filter * arls filter * ffmpeg CLI new option: -readrate_initial_burst * zoneplate video source filter * command support in the setpts and asetpts filters * Vulkan decode hwaccel, supporting H264, HEVC and AV1 * color_vulkan filter * bwdif_vulkan filter * nlmeans_vulkan filter * RivaTuner video decoder * xfade_vulkan filter * vMix video decoder * Essential Video Coding parser, muxer and demuxer * Essential Video Coding frame merge bsf * bwdif_cuda filter * Microsoft RLE video encoder * Raw AC-4 muxer and demuxer * Raw VVC bitstream parser, muxer and demuxer * Bitstream filter for editing metadata in VVC streams * Bitstream filter for converting VVC from MP4 to Annex B * scale_vt filter for videotoolbox * transpose_vt filter for videotoolbox * support for the P_SKIP hinting to speed up libx264 encoding * Support HEVC,VP9,AV1 codec in enhanced flv format * apsnr and asisdr audio filters * OSQ demuxer and decoder * Support HEVC,VP9,AV1 codec fourcclist in enhanced rtmp protocol * CRI USM demuxer * ffmpeg CLI '-top' option deprecated in favor of the setfield filter * VAAPI AV1 encoder * ffprobe XML output schema changed to account for multiple variable-fields elements within the same parent element * ffprobe -output_format option added as an alias of -of - Remove patch6 0001-avfilter-vf_libplacebo-remove-deprecated-field.diff - Prefer libvpl to libmfx: the latter is deprecated - Delete ffmpeg-6-private-devel package as it is only needed to build libav-tools ==== fwupd ==== Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Fix build failure on s390x and ppc64le + This release modifies spec file - add s390x and ppc64le into default 'with efi_fw_update' so that old dbxtool version can be obsoleted. ==== gnome-logs ==== - Convert to source service for easier updating. ==== gnome-music ==== - Convert to source service for easier updating. ==== gnutls ==== Version update (3.8.2 -> 3.8.3) Subpackages: libgnutls-dane0 libgnutls30 - Update to 3.8.3: * libgnutls: Fix more timing side-channel inside RSA-PSK key exchange. [GNUTLS-SA-2024-01-14, CVSS: medium] [bsc#1218865, CVE-2024-0553] * libgnutls: Fix assertion failure when verifying a certificate chain with a cycle of cross signatures. [GNUTLS-SA-2024-01-09, CVSS: medium] [bsc#1218862, CVE-2024-0567] * libgnutls: Fix regression in handling Ed25519 keys stored in PKCS#11 token certtool was unable to handle Ed25519 keys generated on PKCS#11 with pkcs11-tool (OpenSC). This is a regression introduced in 3.8.2. * Rebase gnutls-FIPS-140-3-references.patch * Updated upstream gnutls.keyring ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Resolved XFS regression leading to the "not a correct XFS inode" error by temporarily reverting the problematic commit (bsc#1218864) * 0001-Revert-fs-xfs-Fix-XFS-directory-extent-parsing.patch ==== gtksourceview ==== Subpackages: libgtksourceview-3_0-1 typelib-1_0-GtkSource-3_0 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== iputils ==== Version update (20231222 -> 20240117) - Update to version 20240117 (ping bugfix release) https://github.com/iputils/iputils/releases/tag/20240117 ==== libcroco ==== - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== libgsf ==== Subpackages: gsf-office-thumbnailer libgsf-1-114 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== libjpeg-turbo ==== - Do not require SIMD support when it does not exist ==== libjxl-gtk ==== Version update (0.8.2 -> 0.9.0) Subpackages: gdk-pixbuf-loader-jxl gimp-plugin-jxl - Remove cjxl/djxl manpages from gtk flavor installation, these are part of the tools subpackage from the main flavor. - Update to release 0.9 * Encoder API: * Add JxlEncoderSetExtraChannelDistance to adjust the quality of extra channels (like alpha) separately. * New API functions for streaming encoding. * New options for more fine-grained control over metadata preservation when using JxlEncoderAddJPEGFrame. * New function JxlEncoderSetUpsamplingMode to change the upsampling method, e.g. to use nearest-neighbor upsampling for pixel art. * New function JxlEncoderDistanceFromQuality for convenience to calculate a distance given a quality. * Decoder API: Implemented JxlDecoderSetOutputColorProfile and JxlDecoderSetCms to enable decoding to desired colorspace. * Deprecated functions removed from encoder and decoder APIs. * Command-line tools: * cjxl can now be used to explicitly add/update/strip Exif/XMP/JUMBF metadata using the decoder-hints syntax, e.g. cjxl input.ppm -x exif=input.exif output.jxl * djxl can now be used to extract Exif/XMP/JUMBF metadata. ==== libosinfo ==== Subpackages: libosinfo-1_0-0 typelib-1_0-Libosinfo-1_0 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== libstorage-ng ==== Version update (4.5.173 -> 4.5.174) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#979 - allow to get Arch object from SystemInfo - make testcase more robust - coding style - 4.5.174 ==== libxkbcommon ==== Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0 - Add libxkbcommon-tools-bash-completions. ==== live555 ==== Version update (2023.05.10 -> 2023.11.30) Subpackages: libBasicUsageEnvironment2 libUsageEnvironment3 libgroupsock30 - update up to 2023.11.30: * In the implementation of the "MPEGVideoStreamFramer" class, gave "TimeCode::operator==()" the "const" qualifier, to make some compilers happy. * Performed the annual update of the copyright years near the start of each file - update to 2023.11.08: * Changed the signature to the virtual function "getRTPSinkandRTCP()" (in "ServerMediaSubession", and its subclasses "OnDemandServerMediaSession" and "PassiveServerMediaSubsession") to make its 'result' arguments "rtpSink" and "rtcp" no longer "const *". There was no real reason to make those "const *". - update to 2023.11.07: * In the class "GenericMediaServer", made the variables "fServerMediaSessions", "fClientConnections", and "fClientSessions" 'protected' rather than 'private', to allow subclasses to access them if desired. - update to 2023.10.30: * Fixed a bug in "deleteEventTrigger()" that had accidentally been introduced during the change to 'event trigger' implementation back in June. - update to 2023.07.24: * Updated the event trigger implementation once again, to allow for the possibility of developers redefining MAX_NUM_EVENT_TRIGGERS (it must always be <= the number of bits in an "EventTriggerId", though. - update to 2023.06.20: * Updated the event trigger implementation again - in the case where "NO_STD_LIB" is defined. In this case, "fTriggersAwaitingHandling" is implemented as an array of "Boolean volatile"s, rather than as a 32-bit bitmap. This should make 'race conditions' less likely even if "NO_STD_LIB" is defined (though you should use the preferred, default implementation - that uses an array of "std::atomic_flag"s - if possible). - update to 2023.06.16: * Changed the (default) implementation of 'event triggers' in "BasicTaskScheduler" to implement "fTriggersAwaitingHandling" using "std:atomic_flag"s, rather than as a bitmap. This should overcome 'race conditions' that some users experienced when calling "triggerEvent()" from a non-LIVE555 thread. * Note that this is the first time the LIVE555 code has required the C++ standard library. (If you cannot use the C++ standard library, then you can compile the code - but getting the old behavior - by defining "NO_STD_LIB".) * Minor change to "RTSPCommon.cpp" to overcome a compilation error in XCode on Mac OS X. - update to 2023.06.14: * Fixed a bug in the Matroska file parsing code that could sometimes cause a 'use after free' error. (bsc#1218758, CVE-2023-20573) - update to 2023.06.10: * Minor change to "GroupsockHelper.cpp" to overcome a compilation error in XCode on Mac OS X. - update to 2023.06.08: * Updated the "dateHeader()" function in "RTSPCommon.cpp" to use "gmtime_r()" instead of the older, non-thread-safe "gmtime()". - Applied workarounds for the build error with atomic_flag test ==== llvm17 ==== - Use %_target_* for determining the compiler host triple (boo#1218701) ==== mosh ==== - Remove the deprecated perl-IO-Socket-INET6 dependency. * Remove the dependency on perl(IO::Socket::INET6) as it has been deprecated by upstream, is no longer suitable for use and its not being maintained. A compatible replacement for this package is perl(IO::Socket::IP) which is shipped by the perl-base package. * In the sources, the perl(IO::Socket::IP) is preferred over INET6. ==== ncurses ==== Version update (6.4.20240106 -> 6.4.20240113) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20240113 + improve formatting/style of manpages (patches by Branden Robinson). + modify dist.mk to avoid passing developer's comments in manpages into the generated html documentation. + use ansi+local, ansi+local1, ansi+pp, ansi+rca, ansi+rca2, ansi+sgr to trim -TD + restore padding for wy520* and vt320-k311 (report by Sven Joachim). ==== nvidia-open-driver-G06-signed ==== - create /run/udev/static_node-tags/uaccess/nvidia${devid} symlinks also during modprobing the nvidia module; this changes the issue of not having access to /dev/nvidia${devid}, when gfxcard has been replaced by a different gfx card after installing the driver ==== orca ==== Version update (45.1 -> 45.2) - Update to version 45.2: + Web: Fix bug causing us to get stuck in menu bar during caret navigation. + General: Dump our cached information in response to children-changed events so that we do not present stale information. + Updated translations. ==== plocate ==== Version update (1.1.19 -> 1.1.22) - remove fallback for _fillupdir in spec file, should be supported everywhere now - update to version 1.1.22: * Revert the updatedb change in 1.1.21 that did not open pruned paths; it broke pruning of paths that were not at the root (e.g. /foo/bar, as opposed to /foo). Reported by David Caldwell - use systemd timer file provided by the project - update to version 1.1.21: * Improve interactions between pruning and bind mount detection logic * Pruned paths are now not opened, which can be useful in certain cases. Note that this does not (yet) apply to filesystems that are pruned due to type and not due to paths; they are still opened and then immediately closed again - update to version 1.1.20: * Fix updatedb writing incomplete .db files under Termux * Make the systemd timer run more consistently during the night * Add an (undocumented) flag --ignore-visibility to plocate, giving the equivalent of building the database with - -require-visibility no ==== polari ==== - Convert to source service for easier updating. ==== python-flufl.i18n ==== - Drop unneeded pdm dependency ==== python-lxml ==== Version update (4.9.4 -> 5.1.0) - update to version 5.1.0: Details on https://lxml.de/5.1/changes-5.1.0.html removed merged patches: - ISO-Schematron-schema-optional.patch - remove-ISO-Schematron-schema.patch - close_file_before_test.patch ==== python-numpy ==== - Update list of expected test failures on riscv64 - Fix gnu-hpc build error for Leap ==== python-redis ==== - add https://github.com/redis/redis-py/pull/3005 as Close-various-objects-created-during-asyncio-tests.patch to fix tests for python 3.12 ==== python-zope.component ==== - Rearrange requirements, run only basic testsuite in SLE-based projects ==== rdesktop ==== - add patch fix_C99_issue_in_configure.patch to fix detection of statvfs64 - add patch fix_dashes_in_manpage.patch to prevent dashes from being utf8 mangled - add patch fix_segfault_in_utils_cert_handle_exception.patch - add patch fix_wrong_string_null_terminated.patch to null-terminate the correct variable - adjust patch rdesktop-fix_pkgconfig_check.patch so it can be applied with "-p1" - minor spec cleanup ==== readline ==== Version update (8.2 -> 8.2.10) Subpackages: libreadline8 readline-doc - Add upstream patch readline82-008 * Add missing prototypes for several function declarations - Add upstream patch readline82-009 * Fix issue where the directory name portion of the word to be completed (the part that is passed to opendir()) requires both tilde expansion and dequoting. Readline only performed tilde expansion in this case, so filename completion would fail. - Add upstream patch readline82-010 * Fix the case where text to be completed from the line buffer (quoted) is compared to the common prefix of the possible matches (unquoted) and the quoting makes the former appear to be longer than the latter. Readline assumes the match doesn't add any characters to the word and doesn't display multiple matches. - Port patches * readline-5.2-conf.patch * readline-6.2-metamode.patch * readline-7.0-screen.patch * readline-8.2.dif ==== selinux-policy ==== Version update (20240104 -> 20240116) Subpackages: selinux-policy-targeted - Update to version 20240116: * Fix gitolite homedir paths (bsc#1218826) ==== shadow ==== Version update (4.14.2 -> 4.14.3) Subpackages: libsubid4 login_defs - Update to 4.14.3: * libshadow: + Avoid null pointer dereference (#904) ==== sushi ==== - Convert to source service for easier updating. ==== telepathy-logger ==== Subpackages: libtelepathy-logger3 telepathy-logger-schema typelib-1_0-TelepathyLogger-0_2 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== upower ==== Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== xfce4-whiskermenu-plugin ==== Version update (2.8.2 -> 2.8.3) Subpackages: xfce4-whiskermenu-plugin-lang - Update to version 2.8.3 * Fix adding launchers to desktop. (Issue #122) * Fix segfault in profile destructor. (Issue #123) * Translation updates ==== xorg-x11-server ==== Version update (21.1.9 -> 21.1.11) Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - Update to version 21.1.11 * This release contains fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html * CVE-2023-6816 (bsc#1218582) * CVE-2024-0229 (bsc#1218583) * CVE-2024-21885 (bsc#1218584) * CVE-2024-21886 (bsc#1218585) * CVE-2024-0408 * CVE-2024-0409 - supersedes the following patches * U_xephyr-Don-t-check-for-SeatId-anymore.patch * U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch ==== xwayland ==== Version update (23.2.2 -> 23.2.4) - This release contains also the following patches mentioned in previous sle15 releases * bsc1218582-0001-dix-allocate-enough-space-for-logical-button-maps.patch * bsc1218583-0001-dix-Allocate-sufficient-xEvents-for-our-DeviceStateN.patch * bsc1218583-0002-dix-fix-DeviceStateNotify-event-calculation.patch * bsc1218583-0003-Xi-when-creating-a-new-ButtonClass-set-the-number-of.patch * bsc1218584-0001-Xi-flush-hierarchy-events-after-adding-removing-mast.patch * bsc1218585-0001-Xi-do-not-keep-linked-list-pointer-during-recursion.patch * bsc1218585-0002-dix-when-disabling-a-master-float-disabled-slaved-de.patch - This release contains also the missing fixes of initial U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch (bsc#1217765) - Update to version 23.2.4 * This release contains fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html * CVE-2023-6816 (bsc#1218582) * CVE-2024-0229 (bsc#1218583) * CVE-2024-21885 (bsc#1218584) * CVE-2024-21886 (bsc#1218585) * CVE-2024-0408 * CVE-2024-0409 - supersedes the patches mentioned below: * U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch