Packages changed: 389-ds (2.2.2~git0.55e2c7ab3 -> 2.2.2~git11.f002e9e09) 7zip (22.00 -> 22.01) apparmor (3.0.4 -> 3.0.5) augeas ceph (16.2.9.536+g41a9f9a5573 -> 16.2.9.538+g9de83fa4064) createrepo_c (0.20.0 -> 0.20.1) file gcc12 (12.1.1+git215 -> 12.1.1+git287) ghostscript (9.54.0 -> 9.56.1) libapparmor (3.0.4 -> 3.0.5) openldap2 (2.6.2 -> 2.6.3) openldap2-contrib-src (2.6.2 -> 2.6.3) policycoreutils python310 python310-core selinux-policy util-linux util-linux-systemd vim (9.0.0032 -> 9.0.0073) xf86-video-nv (2.1.21 -> 2.1.22) yast2 (4.5.6 -> 4.5.10) === Details === ==== 389-ds ==== Version update (2.2.2~git0.55e2c7ab3 -> 2.2.2~git11.f002e9e09) Subpackages: lib389 libsvrcore0 - Update to version 2.2.2~git11.f002e9e09: * Issue 5383 - UI - Various fixes and RFE's for UI * Issue 4656 - Remove problematic language from source code * Issue 5380 - Separate cleanAllRUV code into new file * Issue 5322 - optime & wtime on rejected connections is not properly set * Issue 5335 - RFE - Add Security Audit Log * Issue 5375 - CI - disable TLS hostname checking * Issue 981 Managed Entries betxnpreoperation - transaction not aborted on managed entry failure (#5369) * Issue 5373 - dsidm user get_dn fails with search_ext() argument 1 must be str, not function * Issue 5371 - Update npm and cargo packages * Issue 3069 - Support ECDSA private keys for TLS (#5365) ==== 7zip ==== Version update (22.00 -> 22.01) - update to 22.01: * UDF support was improved to UDF version 2.60. * HFS and APFS support was improved. ==== apparmor ==== Version update (3.0.4 -> 3.0.5) Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang pam_apparmor pam_apparmor-32bit python3-apparmor - update to AppArmor 3.0.5 - several additions to profiles and abstractions - bugfixes in parser and utils - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.5 for the detailed upstream changelog - remove upstream(ed) patchs: - apparmor-setuptools61-mr897.patch - dovecot-profiles-boo1199535-mr881.diff - php8-fpm-mr876.patch - python310-help-mr848.patch - samba-new-dcerpcd.patch - samba_deny_net_admin.patch - update-samba-bgqd.diff - update-usr-sbin-smbd.diff - apparmor-samba-include-permissions-for-shares.diff: remove upstreamed part - add dirtest-sort-mr900.diff to fix random test failures - change apache-extra-profile-include-if-exists.diff to the post-mv path (new quilt executes mv) - stop disabling lto (fixed upstream) (boo#1133091) - package profile-load script in -parser ==== augeas ==== Subpackages: augeas-lenses libaugeas0 libfa1 - Unset MALLOC_PERTURB_ to speed up %check significantly (boo#1201884, gh#hercules-team#768) ==== ceph ==== Version update (16.2.9.536+g41a9f9a5573 -> 16.2.9.538+g9de83fa4064) Subpackages: librados2 librbd1 - Update to 16.2.9-538-g9de83fa4064: + (bsc#1201604) cephfs-shell: move source to separate subdirectory ==== createrepo_c ==== Version update (0.20.0 -> 0.20.1) Subpackages: libcreaterepo_c0 python3-createrepo_c - update to 0.20.1: * fix performance problems with large repositories related to tasks queue management ==== file ==== Subpackages: file-magic libmagic1 - Add upstream patch to fix boo#1201350 * file-boo1201350.patch which combines the commits c80065fe6900be5e794941e29b32440e9969b1c3 7e59d34206d7c962e093d4239e5367a2cd8b7623 f042050f59bfc037677871c4d1037c33273f5213 d471022b2772071877895759f209f2c346757a4c 441ac2b15508909e82ad467960df4ac0adf9644c ==== gcc12 ==== Version update (12.1.1+git215 -> 12.1.1+git287) Subpackages: cpp12 gcc12-info gcc12-locale libasan8 libatomic1 libgcc_s1 libgcc_s1-32bit libgccjit0 libgfortran5 libgomp1 libitm1 liblsan0 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-devel-gcc12 libstdc++6-locale libstdc++6-pp libstdc++6-pp-32bit libtsan2 libubsan1 - Add Provides of libstdc++6-pp-gccN to libstdc++6-pp. [bsc#1201848] - Update to gcc-12 branch head, 4f15d2234608e82159d030dadb1, git287 * includes build fixes when building against glibc 2.33. ==== ghostscript ==== Version update (9.54.0 -> 9.56.1) Subpackages: ghostscript-x11 - update to 9.56.1: * New PDF Interpreter: This is an entirely new implementation written in C (rather than PostScript, as before) * Calling Ghostscript via the GS API is now thread safe. The one limitation is that the X11 devices for Unix-like systems (x11, x11alpha, x11cmyk, x11cmyk2, x11cmyk4, x11cmyk8, x11gray2, x11gray4 and x11mono) cannot be made thread safe, due to their interaction with the X11 server, those devices have been modified to only allow one instance in an executable. * The PSD output device now writes ICC profiles to their output files, for improved color fidelity. * Our efforts in code hygiene and maintainability continue. * The usual round of bug fixes, compatibility changes, and incremental improvements. * We have added the capability to build with the Tesseract OCR engine. In such a build, new devices are available (pdfocr8/pdfocr24/ pdfocr32) which render the output file to an image, OCR that image, and output the image "wrapped" up as a PDF file, with the OCR generated text information included as "invisible" text (in PDF terms, text rendering mode 3). - drop CVE-2021-3781.patch, CVE-2021-45949.patch: upstream - use _multibuild ==== libapparmor ==== Version update (3.0.4 -> 3.0.5) Subpackages: libapparmor1 libapparmor1-32bit - update to AppArmor 3.0.5 - several additions to profiles and abstractions - bugfixes in parser and utils - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.5 for the detailed upstream changelog - remove upstream(ed) patchs: - apparmor-setuptools61-mr897.patch - dovecot-profiles-boo1199535-mr881.diff - php8-fpm-mr876.patch - python310-help-mr848.patch - samba-new-dcerpcd.patch - samba_deny_net_admin.patch - update-samba-bgqd.diff - update-usr-sbin-smbd.diff - apparmor-samba-include-permissions-for-shares.diff: remove upstreamed part - add dirtest-sort-mr900.diff to fix random test failures - change apache-extra-profile-include-if-exists.diff to the post-mv path (new quilt executes mv) - stop disabling lto (fixed upstream) (boo#1133091) - package profile-load script in -parser ==== openldap2 ==== Version update (2.6.2 -> 2.6.3) Subpackages: libldap-data libldap2 libldap2-32bit openldap2-client - removed obsolete 0017-Resolve-error-handling-in-new-ctx-when-global.patch - update to 2.6.3 * Fixed librewrite declaration of calloc (ITS#9841) * Fixed libldap to check for NULL ld (ITS#9157) * Fixed libldap memory leaks (ITS#9876) * Fixed lloadd to correctly tag Notice of Disconnection (ITS#9856) * Fixed slapd delta-sync DN leak on ADD ops (ITS#9866) * Fixed slapd replication with back-glue (ITS#9868) * Fixed slapd lastbind replication with chaining (ITS#9863) * Fixed slapd-ldap to correctly set authzid (ITS#9863) * Fixed slapd-mdb to check for stale readers on MDB_READERS_FULL (ITS#7165) * Fixed slapd-mdb indexer task with replicated config (ITS#9858) * Fixed slapo-accesslog onetime memory leak (ITS#9864) * Fixed slapo-ppolicy interaction with slapo-rwm (ITS#9871) * Fixed slapo-rwm to handle escaping special characters (ITS#9817) * Fixed slapo-syncprov memory leaks (ITS#9867) * Fixed slapo-syncprov fallback in delta-sync mode (ITS#9823) * Fixed slapo-unique to not release NULL entry (ITS#8245) * doc: Fixed ldap_get_option(3) to clarify ldap_get/set_option restrictions (ITS#9824) ==== openldap2-contrib-src ==== Version update (2.6.2 -> 2.6.3) - removed obsolete 0017-Resolve-error-handling-in-new-ctx-when-global.patch - update to 2.6.3 * Fixed librewrite declaration of calloc (ITS#9841) * Fixed libldap to check for NULL ld (ITS#9157) * Fixed libldap memory leaks (ITS#9876) * Fixed lloadd to correctly tag Notice of Disconnection (ITS#9856) * Fixed slapd delta-sync DN leak on ADD ops (ITS#9866) * Fixed slapd replication with back-glue (ITS#9868) * Fixed slapd lastbind replication with chaining (ITS#9863) * Fixed slapd-ldap to correctly set authzid (ITS#9863) * Fixed slapd-mdb to check for stale readers on MDB_READERS_FULL (ITS#7165) * Fixed slapd-mdb indexer task with replicated config (ITS#9858) * Fixed slapo-accesslog onetime memory leak (ITS#9864) * Fixed slapo-ppolicy interaction with slapo-rwm (ITS#9871) * Fixed slapo-rwm to handle escaping special characters (ITS#9817) * Fixed slapo-syncprov memory leaks (ITS#9867) * Fixed slapo-syncprov fallback in delta-sync mode (ITS#9823) * Fixed slapo-unique to not release NULL entry (ITS#8245) * doc: Fixed ldap_get_option(3) to clarify ldap_get/set_option restrictions (ITS#9824) ==== policycoreutils ==== Subpackages: policycoreutils-lang policycoreutils-python-utils python3-policycoreutils - Add recommends for ausearch binary (bsc#1201043) ==== python310 ==== Subpackages: python310-curses python310-dbm python310-tk - Switch from %primary_interpreter to prjconf-defined %primary_python (gh#openSUSE/python-rpm-macros#127). ==== python310-core ==== Subpackages: libpython3_10-1_0 python310-base - Switch from %primary_interpreter to prjconf-defined %primary_python (gh#openSUSE/python-rpm-macros#127). ==== selinux-policy ==== Subpackages: selinux-policy-targeted - fix_networkmanager.patch: Allow NetworkManager_dispatcher_tlp_t and NetworkManager_dispatcher_custom_t to access nscd socket (bsc#1201741) - Add fix_cloudform.patch to fix cloud-init runcmd issue with snapper (bnc#201015) ==== util-linux ==== Subpackages: libblkid1 libblkid1-32bit libfdisk1 libmount1 libmount1-32bit libsmartcols1 libuuid1 libuuid1-32bit util-linux-lang - linux-fs.patch: Fix conflict between and ==== util-linux-systemd ==== - linux-fs.patch: Fix conflict between and ==== vim ==== Version update (9.0.0032 -> 9.0.0073) Subpackages: gvim vim-data vim-data-common - Updated to version 9.0.0073, fixes the following problems - fix CVE-2022-2522 - boo#1201863 * In the quickfix window 'cursorline' overrules QuickFixLine highlighting. * On a Belgian keyboard CTRL-[ does not work. * Spell tests do not always clear the word list. * Spell dump may go beyond end of an array. * 'fillchars' cannot have window-local values. * 'listchars' test fails. * Not all systems have GDK_KEY_dead_circumflex. (Hisashi T Fujinaka) * Use of set_chars_option() is confusing. * A couple of filetype patterns do not have "*" before "/etc". * Missing change for filetype detection. * Insufficient testing for bracket commands. * Typos in comments, wrapping lines. * Reading past end of completion with a long line and 'infercase' set. * Reading past end of completion with duplicate match. * Using freed memory with recursive substitute. * Cursor in wrong column with mouse click after concealed text. * Csv and tsv files are not recognized. * Split else-if is confusing. * Using CTRL-C wih :append may hang Vim. * "zG" may throw an error if invalid character follows. * E1281 not tested with the old regexp engine. * Compiler warning for size_t to int conversion. * Bitbake files are not detected. * Wrong line number reported when :cexpr fails in :def function. * has('patch-xxx') returns true. * Test file has wrong name. * Accessing uninitialized memory when completing long line. * ml_get error with nested autocommand. * Compiler warnings for signed/unsigned char. * Too many type casts for dict_get functions. * Confusing error when using "q:" in command line window. * Cross-compiling doesn't work because of timer_create check. * Switching window uneccarily when getting buffer options. * Cannot show virtual text. * Build fails with tiny features. * Leaking memory when using text prop with inserted text. * Using utfc_ptr2char_len() when length is negative. * Command overlaps with printed text in scrollback. * Compiler warning for uninitialized variable. * Too many files recognized as bsdl. ==== xf86-video-nv ==== Version update (2.1.21 -> 2.1.22) - Update to version 2.1.22 * Update README for gitlab migration * Update configure.ac bug URL for gitlab migration * Build xz tarballs instead of bzip2 * Fix spelling/wording issues * gitlab CI: add a basic build test * Update README.G80 for gitlab migration * riva_xaa: don't build RivaSetRopPattern when XAA is not supported * autogen.sh: Implement GNOME Build API * autogen.sh: use quoted string variables * autogen: add default patch prefix * configure: Drop AM_MAINTAINER_MODE * autogen.sh: use exec instead of waiting for configure to finish * Replace xf86PciInfo.h with our own pci ids ==== yast2 ==== Version update (4.5.6 -> 4.5.10) Subpackages: yast2-logs - Do not ask for user input while checking file conflicts if the delayed progress popup is not shown (bsc#1201924) - 4.5.10 - bsc#1200016 - added a method for finding a package according to a pattern - 4.5.9 - Fixed libzypp initialization, in the YaST container read the configured repositories from the host (related to bsc#1199840) - 4.5.8 - Text mode control center: always display the YaST modules installed in the system root (when running in a container display the modules installed in the container) (bsc#1199840) - 4.5.7