Packages changed: autoyast2 (4.5.8 -> 4.5.9) emacs freerdp (2.8.1 -> 2.9.0) krb5 (1.20 -> 1.20.1) libeconf (0.4.6+git20220427.3016f4e -> 0.4.8+git20221114.7ff7704) libstorage-ng (4.5.50 -> 4.5.52) llvm15 (15.0.4 -> 15.0.5) nodejs19 (19.0.1 -> 19.1.0) pipewire (0.3.59 -> 0.3.60) plasma-framework (5.100.0 -> 5.100.1) python-certifi (2021.10.8 -> 2022.9.24) qemu samba (4.17.2+git.273.a55a83528b9 -> 4.17.3+git.279.ff9bb8a298) subversion udisks2 yast2 (4.5.18 -> 4.5.19) yast2-configuration-management (4.5.0 -> 4.5.1) yast2-installation (4.5.8 -> 4.5.9) yast2-packager (4.5.6 -> 4.5.8) yast2-pkg-bindings (4.5.0 -> 4.5.1) yast2-samba-client (4.5.1 -> 4.5.2) yast2-schema-default (4.5.5 -> 4.5.6) yast2-security (4.5.1 -> 4.5.3) yast2-storage-ng (4.5.10 -> 4.5.13) yast2-trans (84.87.20221029.429a275094 -> 84.87.20221114.6ac294712f) yast2-update (4.5.1 -> 4.5.2) === Details === ==== autoyast2 ==== Version update (4.5.8 -> 4.5.9) Subpackages: autoyast2-installation - Add needed packages for kdump even when kdump section is not defined if product enable kdump by default (bsc#1204180) - 4.5.9 ==== emacs ==== Subpackages: emacs-el emacs-eln emacs-info emacs-nox emacs-x11 etags - dbus-update-activation-environment handles only variables with their names ==== freerdp ==== Version update (2.8.1 -> 2.9.0) Subpackages: libfreerdp2-2 libwinpr2-2 - Ugraded to freerdp 2.9.0 * Backported #gh:FreeRDP/FreeRDP#8252: Support sending server redirection PDU * Backported #gh:FreeRDP/FreeRDP#8406: Ensure X11 client cursor is never smaller 1x1 * Backported #gh:FreeRDP/FreeRDP#8403: Fixed multiple client side input validation issues - boo#1205512 (CVE-2022-39316, CVE-2022-39317, CVE-2022-39318, CVE-2022-39319, CVE-2022-39320, CVE-2022-41877, CVE-2022-39347) * Backported #7282: Proxy server now discards input events sent before activation was received * Backported #gh:FreeRDP/FreeRDP#8324: Internal replacements for md4, md5 and hmac-md5 For the time being the RDP protocol requires these outdated hash algorithms. So any distribution that wants to ship a working FreeRDP should check the options WITH_INTERNAL_MD4 (and depending on OpenSSL deprecation status WITH_INTERNAL_MD5) - Fixed issues: * Backported #gh:FreeRDP/FreeRDP#8341: Null checks in winpr_Digest_Free * Backported #gh:FreeRDP/FreeRDP#8335: Missing NULL return in winpr_Digest_New * Backported #gh:FreeRDP/FreeRDP#8192: Support for audin version 2 microphone channel * Backported #gh:FreeRDP/FreeRDP#7282: Discard input events before activation (Fixes #8374) ==== krb5 ==== Version update (1.20 -> 1.20.1) Subpackages: krb5-32bit krb5-client - Update to 1.20.1; (bsc#1205126); (CVE-2022-42898); * Fix integer overflows in PAC parsing [CVE-2022-42898]. * Fix null deref in KDC when decoding invalid NDR. * Fix memory leak in OTP kdcpreauth module. * Fix PKCS11 module path search. ==== libeconf ==== Version update (0.4.6+git20220427.3016f4e -> 0.4.8+git20221114.7ff7704) Subpackages: libeconf0 libeconf0-32bit - Update to version 0.4.8+git20221114.7ff7704: * Parsing files which are containing keys only (#170) All delimiters are allowed now : "", " =", " ", "=". But the user should use "" in order to be distinct. * /usr/etc/shells.d/ will not be parsed if /etc/shells.d/ is defined too. * Lto build fixed (#168) * New calls: econf_comment_tag, econf_delimiter_tag, econf_set_comment_tag, econf_set_delimiter_tag * Checking UID,GroupID, permissions,... of the parsed files (#165) New calls: econf_requireOwner, econf_requireGroup, econf_requirePermissions, econf_followSymlinks * Ignoring Group without brackets; Do not hold brackets in the internal data structure. (#164) * Error handling improved for nums and booleans (#163) ==== libstorage-ng ==== Version update (4.5.50 -> 4.5.52) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Macedonian) (bsc#1149754) - 4.5.52 - merge gh#openSUSE/libstorage-ng#904 - added examples - 4.5.51 ==== llvm15 ==== Version update (15.0.4 -> 15.0.5) Subpackages: clang-tools clang15 clang15-doc libLLVM15 libc++-devel libc++1 libc++abi-devel libc++abi1 libclang-cpp15 libclang13 llvm15-gold - Update to version 15.0.5. * This release contains bug-fixes for the LLVM 15.0.0 release. This release is API and ABI compatible with 15.0.0. - Remove obsolete lldb-swig-4.1.0-build-fix.patch. - Rebase llvm-do-not-install-static-libraries.patch. ==== nodejs19 ==== Version update (19.0.1 -> 19.1.0) Subpackages: npm19 - Update to version 19.1.0: * test: Support function mocking on Node.js test runner * fs.watch recursive support on Linux * util: add MIME utilities - new_python3.patch, icu721_fixes.patch: upstreamed ==== pipewire ==== Version update (0.3.59 -> 0.3.60) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-lang pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Add patch from upstream that fixes audio in qemu where the buffer is very small (glfo#pipewire/pipewire#2830): * 0004-alsa-force-playback-start-when-buffer-is-full.patch - Add more patches from upstream to perform setup in more cases: * 0001-audioadapter-perform-setup-again-after-a-PortConfig.patch * 0002-audioconvert-redo-setup-when-format-changes.patch - Renumber patch 0001-acp-do-probing-in-44100Hz-again.patch to * 0003-acp-do-probing-in-44100Hz-again.patch - Add patch from upstream to fix some devices that don't seem to work in 48000Hz: * 0001-acp-do-probing-in-44100Hz-again.patch - Require pulseaudio-utils from pipewire-pulseaudio to have pactl available to load modules. - Update to version 0.3.60: * Highlights - The filter-chain now handles errors better and has fixes for many crasher bugs. - A new RTP module was added with a sender and receiver. It uses SAP to announce and consume RTP streams and is compatible with the PulseAudio RTP modules. - Many small bluetooth improvements and fixes. - The alsa plugin will now only start playback when there is data. This results in better synch and lower latency between capture and playback. - The v4l2 and libcamera plugins have seen a lot of improvements. They support control properties now. Also pw-v4l2 has seen many improvements and mostly passes the v4l2-compliance test now. - Many more bugfixes and improvements. * PipeWire - Code cleanups, compiler warning fixes. - Add some extra checks to avoid scheduling an inactive node. - Rework the sequence of events to start and stop nodes. - Improve param enumeration. - An option was added to give priority to the Buffer params of the consumer. This makes it possible to use the default values of the consumer (instead of the producer) when capturing from a source. - The graph rate selection was improved to pick a rate closest to the requested one (instead of picking the default). * Modules - Fix some crashes in filter-chain. - X11 Bell module will now be loaded by default when available. - A new RTP module was added with a sender and receiver. It uses SAP to announce and consume RTP streams and is compatible with the PulseAudio RTP modules. - Improve RAOP compatibility. - The echo-cancel module now uses the resampler prefill option to align input and output samples without buffering. Better latency control when starting and stopping has been implemented. - The pulse tunnel will now write aligned samples to pulseaudio even when the ringbuffer wraps around. This fixes playback issues with multichannel sinks. - Add a delay option to module-loopback using a ringbuffer. - Implement echo-cancel params. - The filter-chain module has better error reporting. - The LADSPA search path was extended with some more common paths. - The echo-cancel input can now also be a monitor of a sink. This improves compatibility with some proton games that expect a real sink instead of a virtual one. * Tools - Better error reporting in pw-link. - pw-top now also shows IEC958 passthrough formats and JPEG/H264 video formats. - pw-top refreshes the screen faster. - pw-top now prints the state of the node and shows less info for inactive nodes. - pw-dump now uses the new seq field in the spa_param_info to discard old param updates and avoid duplicate params in the output. * Bluetooth - Add ModemManager support in the native backend. - Clean up GetManagedObjects handling. - Handle QoS from the endpoints in the codec. - Increase the socket buffer to have more control over the rate and QoS. - Simplify the packet flushing code. - Stop processing nodes before destroying them. - Fix timers when a source switches drivers. - Codecs can now share endpoints. This reduces the amount of endpoints and avoids problems with devices that can't handle a large amount of codec endpoints. - Report batery status to UPower for HFP AG. - Fix bitpool increase. * SPA - The audioresampler now avoids clicks and pops between activating and deactivating the adaptive resampler when used by the stream API. - Use default locale to parse float parameters. - The upmix functions now have SSE optimisations. - Avoid recalculating the complete channelmix setup when only the volume changes. - The alsa plugin will now only start playback when there is data. This results in better synch and lower latency between capture and playback. - The ALSA MIDI sequencer will now pull data from the graph even when it did not output anything. Fixes some graph stalls ... changelog too long, skipping 63 lines ... * 0001-pulse-server-also-advance-read-pointer-in-underrun.patch ==== plasma-framework ==== Version update (5.100.0 -> 5.100.1) Subpackages: libKF5Plasma5 plasma-framework-components plasma-framework-lang - Update to 5.100.1. Hotfix release: * svgitem: do not upscale svg when using fractional scaling ==== python-certifi ==== Version update (2021.10.8 -> 2022.9.24) - Update to 2022.9.24: * (no changes) - from version 2022.09.24: * (no changes) - from version 2022.09.14: * (no changes) - from version 2022.06.15.2: * Only use importlib.resources's new files() / Traversable API on Python ≥3.11 (#204) - from version 2022.06.15.1: * Fix deprecation warning on Python 3.11 (#199) * fixes #198 -- update link in license - from version 2022.06.15: * Add py.typed to MANIFEST.in to package in sdist (#196) - from version 2022.05.18.1: * Add support for Python 3.10 and drop EOL 3.5 (#167) - from version 2022.05.18: * Automatically lock github issues after they've been closed for 90 days (#189) * Remove universal wheel, python 2 is unsupported (#187) * Add type annotations to package * Added Required Python Version (#152) * Fix homepage link (#145) - Refresh patches for new version * python-certifi-shipped-requests-cabundle.patch ==== qemu ==== Subpackages: qemu-accel-tcg-x86 qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-seabios qemu-sgabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-x86 - Raise the maximum number of vCPUs a VM can have to 1024 (jsc#PED-2592) * Patches added: pc-q35-Bump-max_cpus-to-1024.patch ==== samba ==== Version update (4.17.2+git.273.a55a83528b9 -> 4.17.3+git.279.ff9bb8a298) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-ad-dc-libs-32bit samba-client samba-client-32bit samba-client-libs samba-client-libs-32bit samba-gpupdate samba-ldb-ldap samba-libs samba-libs-32bit samba-libs-python3 samba-python3 samba-winbind samba-winbind-libs samba-winbind-libs-32bit - CVE-2022-42898: Samba buffer overflow vulnerabilities on 32-bit systems; (bsc#1205126); (bso#15203); - Replace obsolete python-gpgme with python-gpg * Upstream replaced it in v4.9.5 -- bso#13728 ==== subversion ==== Subpackages: libsvn_auth_gnome_keyring-1-0 libsvn_auth_kwallet-1-0 subversion-bash-completion subversion-perl subversion-server subversion-tools - Do not have the main package recommend the bash-completion sub-package, but rather have the subpackage supplement the combination of subversion and bash-completion. ==== udisks2 ==== Subpackages: libudisks2-0 libudisks2-0_btrfs udisks2-lang - fix crash during shutdown (bsc#1205371) * add: 0001-udiskslinuxmountoptions-Do-not-free-static-daemon-re.patch ==== yast2 ==== Version update (4.5.18 -> 4.5.19) Subpackages: yast2-logs - Fix hash vs keyword arguments in RSpec expectations (bsc#1204871) - 4.5.19 ==== yast2-configuration-management ==== Version update (4.5.0 -> 4.5.1) - Fix hash vs keyword arguments in RSpec expectations (bsc#1204871) - 4.5.1 ==== yast2-installation ==== Version update (4.5.8 -> 4.5.9) - Fixed the help in the installation summary to include the texts from the corresponding proposals (related to jsc#SLE-24764). - 4.5.9 - Write config for ssg-apply script according to the enabled security policy (part of jsc#SLE-24764). Tue Nov 15 13:41:41 UTC 2022 - Knut Anderssen - Fix copy of entropy pool during installation (bsc#1204559). - Do not use "xrdb" for setting the "Xft.dpi" value, use a specific YaST tool from the yast2-x11 package (bsc#1201532) (xrdb depends on the C pre-processor increasing the dependencies about of 22MB) - Install yast2-x11 only when GUI (libyui-qt) is installed, avoid installing the dependent X libraries in minimal (text mode) installation (bsc#1201966) ==== yast2-packager ==== Version update (4.5.6 -> 4.5.8) - Do not add an empty repository to the system when upgrading a registered system using the Full installation medium (bsc#1204399) - 4.5.8 - Fix hash vs keyword arguments in RSpec expectations (bsc#1204871) - 4.5.7 ==== yast2-pkg-bindings ==== Version update (4.5.0 -> 4.5.1) - Allow querying orphaned packages (related to bsc#1202007) - 4.5.1 ==== yast2-samba-client ==== Version update (4.5.1 -> 4.5.2) - Enable pam_mount also for gdm-password service; (bsc#1204830); - 4.5.2 ==== yast2-schema-default ==== Version update (4.5.5 -> 4.5.6) - Add support for security policies validation (jsc#SLE-24764). - Synchronize SP4 and master branches (related to bsc#1199165). - 4.5.6 ==== yast2-security ==== Version update (4.5.1 -> 4.5.3) - Add support for DISA STIG security policy validation (jsc#SLE-24764). - Disable the ssg-apply service if the selected SCAP action is "do nothing" (related to jsc#SLE-24764). - 4.5.3 - Fix hash vs keyword arguments in RSpec expectations (bsc#1204871) - 4.5.2 ==== yast2-storage-ng ==== Version update (4.5.10 -> 4.5.13) - Validate security policies in both guided proposal and partitioner (part of jsc#SLE-24764). - 4.5.13 - New functionality for D-Installer: MinGuidedProposal and ability to disable size adjustments (related to gh#yast/d-installer#264). - 4.5.12 - Fix hash vs keyword arguments in RSpec expectations (bsc#1204871) - 4.5.11 ==== yast2-trans ==== Version update (84.87.20221029.429a275094 -> 84.87.20221114.6ac294712f) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20221114.6ac294712f: * New POT for text domain 'qt-pkg'. * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Arabic) * New POT for text domain 'samba-client'. * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) - Update to version 84.87.20221106.2505f85442: * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Dutch) * Translated using Weblate (Macedonian) * Translated using Weblate (Slovak) * Translated using Weblate (Catalan) * Translated using Weblate (Macedonian) * Translated using Weblate (Japanese) * New POT for text domain 'cluster'. * Translated using Weblate (Macedonian) * New POT for text domain 'autoinst'. * Translated using Weblate (Macedonian) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Spanish) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) ==== yast2-update ==== Version update (4.5.1 -> 4.5.2) - Display a warning in the upgrade summary when removing orphaned 3rd party packages (bsc#1202007) - 4.5.2