Packages changed: aalib acpid (2.0.33 -> 2.0.34) busybox dracut (057+suse.337.g4162a70e -> 057+suse.344.g021aead9) ffmpeg-5 freerdp (2.8.0 -> 2.8.1) grantlee5 (5.2.0 -> 5.3.1) graphviz grub2 hwdata (0.363 -> 0.364) kcalutils kernel-firmware (20221031 -> 20221109) openssh purple-rocketchat (0.0+git20210119 -> 0.0+git20220925) rsyslog (8.2208.0 -> 8.2210.0) system-config-printer (1.5.16 -> 1.5.18) texinfo (6.8 -> 7.0) virt-manager wireplumber === Details === ==== aalib ==== - Homepage link http://aa-project.sourceforge.net/ is a permanent redirect to its HTTPS counterpart https://aa-project.sourceforge.net/ ==== acpid ==== Version update (2.0.33 -> 2.0.34) - Update to version 2.0.34: - Add MSG_CMSG_CLOEXEC for systems that are missing it. - Fix a bug with input layer event table not working on 32-bit builds with 64-bit time types. - Use binary search to find input layer events in the table. - Use AC_PROG_CC instead of the obsolete AC_PROG_CC_STDC. - Add support for more input layer events. ==== busybox ==== Subpackages: busybox-static - Fix build under SLE-12 ==== dracut ==== Version update (057+suse.337.g4162a70e -> 057+suse.344.g021aead9) Subpackages: dracut-mkinitrd-deprecated - Update to version 057+suse.344.g021aead9: * fix(dracut-systemd): run systemctl daemon-reload after remove_hostonly_files * fix(dracut.sh): improve detection of installed kernel versions (bsc#1205175) * fix(network-manager): always install the library plugins directory (bsc#1202014) * feat(dracut-init.sh): add inst_libdir_dir() helper (bsc#1202014) ==== ffmpeg-5 ==== Subpackages: libavcodec59 libavdevice59 libavfilter8 libavformat59 libavutil57 libpostproc56 libswresample4 libswscale6 - Add ffmpeg-CVE-2022-3964.patch: Backport from upstream to fix out of bounds read in update_block_in_prev_frame() (bsc#1205388). ==== freerdp ==== Version update (2.8.0 -> 2.8.1) Subpackages: libfreerdp2-2 libwinpr2-2 - Ugraded to freerdp 2.8.1 * Fixed CVE-2022-39282 - boo#1204258 using the `/parallel` command line switch might read uninitialized data * Fixed CVE-2022-39283 - boo#1204257 using the `/video` command line switch might read uninitialized data * Added missing commit for backported #gh:FreeRDP/FreeRDP#8041: Remove ALAW/ULAW codecs from linux backends (unreliable) * Added hash checks for android build script dependencies - Fixed issues: * #gh:FreeRDP/FreeRDP#8190: Fix build break with newer FFMPEG versions * #gh:FreeRDP/FreeRDP#8234: Updated flatpak with build script * #gh:FreeRDP/FreeRDP#8210: Better execinfo support check for android * #gh:FreeRDP/FreeRDP#7708: Header now defines DumpThreadHandles * #gh:FreeRDP/FreeRDP#8176: Check fullscreen state and not setting * #gh:FreeRDP/FreeRDP#8236: Send resize on window state change * #gh:FreeRDP/FreeRDP#7611: Audin macOS monterey fix * #gh:FreeRDP/FreeRDP#8291: Android build script update * Fix length checks and initialization in the deprecated (disabled per default) tsmf channel ==== grantlee5 ==== Version update (5.2.0 -> 5.3.1) - Update to 5.3.1 * Use C++11 nullptr where appropriate * Use QRandomGenerator instead of deprecated qRand * Increase compatibility with Qt 6 APIs * Add CMake option to build with Qt 6 - GRANTLEE_BUILD_WITH_QT6 * Support enum introspection on Q_GADGET * filesizeformat implementation as well as localized filesize * Make enums comparable with more operations * Add "truncatechars" filter * Fix concatenation of string lists - Refreshed patches: * includes.diff * grantlee-5.2.0-fix-ctest-ld-library-path.patch - Add patch to fix tests on i586 (gh#steveire/grantlee#85): * fix-i586-precision.patch - Add keyring for GPG source verification ==== graphviz ==== Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4 - php8 support was added in swig 4.1.0 ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - Security fixes and hardenings * 0001-font-Reject-glyphs-exceeds-font-max_glyph_width-or-f.patch * 0002-font-Fix-size-overflow-in-grub_font_get_glyph_intern.patch - Fix CVE-2022-2601 (bsc#1205178) * 0003-font-Fix-several-integer-overflows-in-grub_font_cons.patch * 0004-font-Remove-grub_font_dup_glyph.patch * 0005-font-Fix-integer-overflow-in-ensure_comb_space.patch * 0006-font-Fix-integer-overflow-in-BMP-index.patch * 0007-font-Fix-integer-underflow-in-binary-search-of-char-.patch * 0008-fbutil-Fix-integer-overflow.patch - Fix CVE-2022-3775 (bsc#1205182) * 0009-font-Fix-an-integer-underflow-in-blit_comb.patch * 0010-font-Harden-grub_font_blit_glyph-and-grub_font_blit_.patch * 0011-font-Assign-null_font-to-glyphs-in-ascii_font_glyph.patch * 0012-normal-charset-Fix-an-integer-overflow-in-grub_unico.patch - Bump upstream SBAT generation to 3 ==== hwdata ==== Version update (0.363 -> 0.364) - update to 0.364: + Updated pci, usb and vendor ids. ==== kcalutils ==== Subpackages: kcalutils-lang libKF5CalendarUtils5 - Don't hardcode the grantlee short version. ==== kernel-firmware ==== Version update (20221031 -> 20221109) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20221109 (git commit 60310c2deb8c): * linux-firmware: Update firmware file for Intel Bluetooth 9462 * linux-firmware: Update firmware file for Intel Bluetooth 9462 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth AX211 * linux-firmware: Update firmware file for Intel Bluetooth AX211 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * amdgpu: update DMCUB firmware for DCN 3.1.6 * rtl_bt: Update RTL8822C BT UART firmware to 0xFFB8_ABD6 * rtl_bt: Update RTL8822C BT USB firmware to 0xFFB8_ABD3 * WHENCE: mrvl: prestera: Add WHENCE entries for newly updated 4.1 FW images * mrvl: prestera: Update Marvell Prestera Switchdev FW to v4.1 * iwlwifi: add new FWs from core74_pv-60 release * qcom: drop split a530_zap firmware file * qcom/vpu-1.0: drop split firmware in favour of the mbn file * qcom/venus-4.2: drop split firmware in favour of the mbn file * qcom/venus-4.2: replace split firmware with the mbn file * qcom/venus-1.8: replace split firmware with the mbn file ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Update openssh-8.1p1-audit.patch: Merge fix for race condition (bsc#1115550, bsc#1174162). - Add openssh-do-not-send-empty-message.patch, which prevents superfluous newlines with empty MOTD files (bsc#1192439). ==== purple-rocketchat ==== Version update (0.0+git20210119 -> 0.0+git20220925) Subpackages: libpurple-plugin-rocketchat pidgin-plugin-rocketchat - Update to version 0.0+git20220925 (changes since 0.0+git20210219): * compatibility with rocketchat server 4.x * fix various memory leaks * handle http connection errors when building against Purple 2.x * only start the actual login process when api/me could be reached ==== rsyslog ==== Version update (8.2208.0 -> 8.2210.0) - Upgrade to rsyslog 8.2210.0 * 2022-10-13: fix NetBSD build issue * 2022-10-12: omrabbitmq: Add TLS support * 2022-09-14: config: add "abortOnFailedQueueStartup" global config parameter * 2022-09-07: cor bugfix: leak in helper function SetString * 2022-09-07: core bugfix: correct local host name after config processing * 2022-08-31: imtcp: add option notifyonconnectionopen * 2022-08-26: openssl TLS driver: add mechanism to include extra CA files parameter * 2022-08-19: fix compile issue with older gcc compilers ==== system-config-printer ==== Version update (1.5.16 -> 1.5.18) Subpackages: python3-cupshelpers system-config-printer-applet system-config-printer-common system-config-printer-common-lang system-config-printer-dbus-service udev-configure-printer - Update to version 1.5.18: + Add into the .appdata.xml file. + Accessiblity improvements. + system-config-printer couldn't be uninstalled via GNOME Software. + system-config-printer crashes due missing libhandy. + Updated config.sub and config.guess to fix configuration error on RiSC. + Use pkg-config or --with-cups-serverbin-dir for finding SERVERBIN. ==== texinfo ==== Version update (6.8 -> 7.0) Subpackages: info info-lang - Update to version 7.0 (7 November 2022) * texi2any * LaTeX added as an output format, selected with --latex * EPUB 3 added as an output format, selected with --epub3 * reform throughout the code in general * thorough review of character encoding issues * new customization variables involved with character encoding: INPUT_FILE_NAME_ENCODING, OUTPUT_FILE_NAME_ENCODING, DOC_ENCODING_FOR_INPUT_FILE_NAME, DOC_ENCODING_FOR_OUTPUT_FILE_NAME, MESSAGE_ENCODING and COMMAND_LINE_ENCODING * warn if full-text commands (@ref, @footnote, @anchor) appear in @w * new variable NO_TOP_NODE_OUTPUT * IGNORE_BEFORE_SETFILENAME variable removed. former effect is now always on. * HTML output: * use manual_name_html as output directory for split HTML instead of manual_name or manual_name.html * default DOCTYPE declaration changed to plain HTML5 style rather than HTML4 DTD reference * output only the CSS rules that are needed in an output file . remove CSS_LINES variable and add SHOW_BUILTIN_CSS_RULES * (custom CSS can still be output using EXTRA_HEAD) * use tag for the output of @t and @verb instead of * use for @acronym instead of * link to table of contents from short table of contents only if a table of contents is actually output * prefix classes from @example arguments with `user-' * percent encode URL in @url/@uref, @email, @image and external manual file * new USE_XML_SYNTAX, HTML_ROOT_ELEMENT_ATTRIBUTES and NO_CUSTOM_HTML_ATTRIBUTE variables can be used to output valid XHTML * systematic addition of classes attribute in HTML elements based on the Texinfo @-command names. renaming of class attributes to avoid confusion with @-commands formatting and describe the role in the document rather than the formatting style. * COPIABLE_ANCHORS renamed to COPIABLE_LINKS * do not add a title by default; SHOW_TITLE or NO_TOP_NODE_OUTPUT has to be set * USE_TITLEPAGE_FOR_TITLE is now true by default * L2H variable removed, replaced by HTML_MATH set to `l2h' * rename OVERVIEW_LINK_TO_TOC to SHORT_TOC_LINK_TO_TOC * rename BEFORE_OVERVIEW to BEFORE_SHORT_TOC_LINE * rename AFTER_OVERVIEW to AFTER_SHORT_TOC_LINES * remove PRE_ABOUT, AFTER_ABOUT, and add PROGRAM_NAME_IN_ABOUT * remove KEEP_TOP_EXTERNAL_REF * new variables IGNORE_REF_TO_TOP_NODE_UP, CONVERT_TO_LATEX_IN_MATH, HTMLXREF_MODE and HTMLXREF_FILE * DocBook output: * do not output Top node or text before the first @node or sectioning @-command. NO_TOP_NODE_OUTPUT can be set to false to output Top node for now. * replace @definfocenlose defined @-commands by the argument as-is to be more consistent with printed output * HTML/DocBook output: * USE_NUMERIC_ENTITY changed to mean to use numeric entities instead of named entities. former effect is now always on. * ENABLE_ENCODING_USE_ENTITY variable removed. former effect is now always off. * Info output * quote problematic node names (with :, comma...) by default * new customization variable ASCII_PUNCTUATION to use plain ASCII characters for quotation marks and a few other symbols * texinfo.tex * `@microtype on' uses microtypography in formatting for pdfTeX and LuaTeX * do not ignore @part page immediately following Top node * do `@set txicodevaristt' to get slanted typewriter for @var in code, `@clear txicodevaristt' to use slanted, variable-width roman font for @var everywhere. flag is @set by default, but we may turn this off in the future. * new file doc/texinfo-zh.tex for Texinfo documents in Chinese. new support file doc/txi-zh.tex for Chinese. doc/short-sample-zh.texi is a sample document. * info * better support for index entries containing parentheses * better support for getting bold text etc. when displaying manpages * bug fixed where the first index entry in a file could be ignored * M-C-f closes as well as opens footnotes window * do not crash if run in Brazilian Portuguese locale * Language * @deftype* commands use typewriter font in argument list * new commands @latex, @iflatex, @ifnotlatex for new LaTeX output format * do `@set txidefnamenospace' to omit space after a definition name * Other * build fixed for glibc 2.34 - Delete patch 13a8894fe2.patch as now part of upstream tar ball ==== virt-manager ==== Subpackages: virt-install virt-manager-common - bsc#1203252 - virt-manager regression - cannot add second virtio-scsi controller virtman-fix-uninitialized-controller-index.patch ==== wireplumber ==== Subpackages: libwireplumber-0_4-0 wireplumber-audio wireplumber-lang - Add patch from upstream to work around a problem when a link is not activated: * 0001-policy-node-wait-for-unactivated-links-instead-of-removing.patch - Add patch from upstream to fix handling null devices which result in lua exceptions: * 0001-alsa.lua-remove-the-disabled-entities-from-the-names-table.patch