Packages changed: btrfsprogs (5.9 -> 5.11) curl (7.74.0 -> 7.75.0) file installation-images-MicroOS (16.47 -> 16.56) libaom (2.0.0 -> 2.0.2) libxkbcommon (1.0.3 -> 1.1.0) mozjs78 (78.7.0 -> 78.8.0) openssl-1_1 pulseaudio python-zipp (3.4.0 -> 3.4.1) rebootmgr (1.3 -> 1.3.1) sddm snapper sssd (2.4.0 -> 2.4.2) wpa_supplicant yast2 (4.3.56 -> 4.3.59) === Details === ==== btrfsprogs ==== Version update (5.9 -> 5.11) Subpackages: btrfsprogs-udev-rules libbtrfs0 - Update to 5.11 * fix device path canonicalization for device mapper devices * receive: remove workaround for setting capabilities, all stable kernels have been patched * receive: fix duplicate mount path detection * rescue: new subcommand create-control-device * device stats: minor fix for plain text format output * build: detect if e2fsprogs support 64bit timestamps * build: drop libmount, required functionality has been reimplemented * mkfs: warn when raid56 is used * balance convert: warn when raid56 is used * other * new and updated tests * documentation updates * seeding device * raid56 status * CI updates * docker images for various distros - Update to 5.10.1 * static build works again * other: * add a way to test static binaries with the testsuite * clarify scrub docs * update dependencies, minimum version for libmount is 2.24, this may change in the future - Update to 5.10 * scrub status: * print percentage of progress * add size unit options * fi usage: also print free space from statfs * convert: copy full 64 bit timestamp from ext4 if availalble * check: * add ability to repair extent item generation * new option to remove leftovers from inode number cache (-o inode_cache) * check for already running exclusive operation (balance, device add/...) when starting one * preliminary json output support for 'device stats' * fixes: * subvolume set-default: id 0 correctly falls back to toplevel * receive: align internal buffer to allow fast CRC calculation * logical-resolve: distinguish -o subvol and bind mounts * build: new dependency libmount * other * doc fixes and updates * new tests * ci on gitlab temporarily disabled * debugging output enhancements ==== curl ==== Version update (7.74.0 -> 7.75.0) Subpackages: libcurl4 - Harden build, enable full RELRO - Never allow undefined symbols anywhere. - Update to 7.75.0 * Changes: - curl: add --create-file-mode [mode] - curl: add new variables to --write-out - dns: extend CURLOPT_RESOLVE syntax for adding non-permanent entries - gopher: implement secure gopher protocol - http: add Hyper as new optional HTTP backend - http: introduce AWS HTTP v4 Signature support * Bugfixes: - cmake: Add an option to disable libidn2 - cmake: enable gophers correctly in curl-config - cmake: expose CURL_DISABLE_OPENSSL_AUTO_LOAD_CONFIG - digest_sspi: Show InitializeSecurityContext errors in verbose mode - getinfo: build with disabled HTTP support - http: get CURLOPT_REQUEST_TARGET working with a HTTP proxy - http_proxy: Fix CONNECT chunked encoding race condition - httpauth: make multi-request auth work with custom port - lib: pass in 'struct Curl_easy *' to most functions - lib: remove Curl_ prefix from many static functions - lib: save a bit of space with some structure packing - libssh: avoid plain free() of libssh-memory - mime: make sure setting MIMEPOST to NULL resets properly - multi_runsingle: bail out early on data->conn == NULL - ngtcp2: Fix http3 upload stall - ngtcp2: Fix stack buffer overflow - openssl: lowercase the hostname before using it for SNI - socks: use the download buffer instead - speedcheck: exclude paused transfers - too?_writeout: fix the -w time output units - url: if IDNA conversion fails, fallback to Transitional - Refresh libcurl-ocloexec.patch ==== file ==== Subpackages: file-magic libmagic1 - Remove patch file-5.12-zip.dif as it is upstream solved (boo#1183143) ==== installation-images-MicroOS ==== Version update (16.47 -> 16.56) - merge gh#openSUSE/installation-images#471 - ensure base modules are loaded before starting the rescue system (bsc#1183388) - 16.56 - merge gh#openSUSE/installation-images#469 - Add bcond to build debug iso (boo#1183264) - 16.55 - merge gh#openSUSE/installation-images#467 - Only create lib64 dirs if filesystem has it (boo#1183264) - 16.54 - merge gh#openSUSE/installation-images#468 - disable zram swap only if there's another swap active (bsc#1183276) - 16.53 - merge gh#openSUSE/installation-images#466 - susepaste only for Tumbleweed/Leap (bsc#1182212) - 16.52 - merge gh#openSUSE/installation-images#463 - Add susepaste to the rescue system (bsc#1182212) - Add susepaste to the inst-sys as well - susepaste dependency - 16.51 - merge gh#openSUSE/installation-images#465 - Prepare UsrMerge (boo#1029961) - remove explicit libblogger2 dep - clean up kernel module config - 16.50 - merge gh#openSUSE/installation-images#462 - support using zram device as root file system (jsc#SLE-17630) - 16.49 - merge gh#openSUSE/installation-images#464 - fix efi local boot entry on x86_64 (bsc#1182891) - 16.48 ==== libaom ==== Version update (2.0.0 -> 2.0.2) - Update to version 2.0.2: * Prepare for the libaom v2.0.2 release * Call av1_setup_frame_size() when dropping a frame * Avoid memset in filter_intra_predictor module * Fix a typo bug in apply_temporal_filter_planewise * Modify the assertion in temporal filter intrinsics * Fix unit test ThreadTestLarge.EncoderResultTest/49 * Add -Wimplicit-function-declaration as C flag only * Update CHANGELOG for libaom v2.0.1 * Set allow_screen_content_tools to 0 in rt mode * chroma_check: don't access UV planes if monochrome ==== libxkbcommon ==== Version update (1.0.3 -> 1.1.0) Subpackages: libxkbcommon-x11-0 libxkbcommon0 - Update to release 1.1.0 * Update keysym definitions to latest xorgproto. In particular, this adds many special keysyms corresponding to Linux evdev keycodes. * New XKB_KEY_* definitions. ==== mozjs78 ==== Version update (78.7.0 -> 78.8.0) - Update to version 78.8.0esr: + Fix build with Rust 1.50. ==== openssl-1_1 ==== Subpackages: libopenssl1_1 - Fix unresolved error codes [bsc#1182959] - Update patches: * openssl-1.1.1-fips.patch * openssl-1.1.1-evp-kdf.patch ==== pulseaudio ==== Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils - Upstream fixes for supporting HFP in native backend (bsc#1167940): 0001-bluetooth-use-consistent-profile-names.patch 0002-bluetooth-separate-HSP-and-HFP.patch 0003-bluetooth-add-correct-HFP-rfcomm-negotiation.patch 0004-bluetooth-make-native-the-default-backend.patch 0005-bluetooth-enable-module-bluez5-discover-argument-ena.patch 0006-bluetooth-fix-headset-auto-ofono-handover.patch 0007-bluetooth-prefer-headset-HFP-HF-connection-with-nati.patch 0008-bluetooth-complete-bluetooth-profile-separation.patch 0009-bluetooth-use-device-flag-to-prevent-assertion-failu.patch 0010-bluetooth-rename-enable_hs_role-to-enable_shared_pro.patch 0011-bluetooth-clean-up-rfcomm_write-usage.patch ==== python-zipp ==== Version update (3.4.0 -> 3.4.1) - update to 3.4.1: * refresh packaging ==== rebootmgr ==== Version update (1.3 -> 1.3.1) - Update to version 1.3.1 - Move all dbus config files to /usr/share/dbus-1 ==== sddm ==== Subpackages: sddm-branding-openSUSE - Add patch to reintroduce /etc/profile reading if fish is shell: * 0001-Add-fish-etc-profile-and-HOME-.profile-sourcing-1331.patch ==== snapper ==== Subpackages: libsnapper5 - updated translations (bsc#1149754) ==== sssd ==== Version update (2.4.0 -> 2.4.2) Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap - Update to release 2.4.2 * Default value of "user" config option was fixed into accordance with man page, i.e. default is "root". * pam_sss_gss now support authentication indicators to further harden the authentication. - Pass --with-pid-path=%{_rundir} to configure: adjust rundir according the distro settings, i.e. /run on modern systems. Eliminates a systemd warning like this one in the journal: Feb 12 12:33:32 zeus systemd[1]: /usr/lib/systemd/system/sssd.service:13: PIDFile= references a path below legacy directory /var/run/, updating /var/run/sssd.pid ? /run/sssd.pid; please update the unit file accordingly. - Update to release 2.4.1 * New PAM module pam_sss_gss for authentication using GSSAPI. * case_sensitive=Preserving can now be set for trusted domains with AD and IPA providers. * krb5_use_subdomain_realm=True can now be used when sub-domain user principal names have upnSuffixes which are not known in the parent domain. SSSD will try to send the Kerberos request directly to a KDC of the sub-domain. * SYSLOG_IDENTIFIER was renamed to SSSD_PRG_NAME in journald output, to avoid issues with PID parsing in rsyslog (BSD-style forwarder) output. * Added pam_gssapi_check_upn to enforce authentication only with principal that can be associated with target user. * Added pam_gssapi_services to list PAM services that can authenticate using GSSAPI. ==== wpa_supplicant ==== - Fix systemd device ready dependencies in wpa_supplicant@.service file. (see: https://forums.opensuse.org/showthread.php/547186-wpa_supplicant-service-fails-on-boot-succeeds-on-restart?p=2982844#post2982844) ==== yast2 ==== Version update (4.3.56 -> 4.3.59) - Use meaningful button labels when asking the user if would like to continue when an installation client is missing (related to bsc#1180594). - 4.3.59 - save_y2logs: Make modified content of log files just warning instead of fatal (bsc#1182710 see comment 2) - 4.3.58 - Ask the user if would like to continue when an installation client is missing (related to bsc#1180594). - 4.3.57