Packages changed:
SDL2 (2.30.0 -> 2.30.1)
SVT-AV1 (1.7.0 -> 1.8.0)
cloud-init
crun (1.14 -> 1.14.4)
gcc13
kexec-tools (2.0.27 -> 2.0.28)
libdbusmenu-gtk2
libdbusmenu-gtk3
libeconf (0.6.1 -> 0.6.2)
libosinfo
libreoffice (7.6.4.1 -> 24.2.1.2)
libxcb
multipath-tools (0.9.8+83+suse.bcae610 -> 0.9.8+87+suse.f72b9f3)
perl-X11-Protocol
perl-X500-DN
perl-XML-SAX
perl-XML-Twig
permissions (1699_20240206 -> 1699_20240305)
tcpd
vim (9.1.0111 -> 9.1.0151)
xdm
xz (5.4.6 -> 5.6.0)
yast2-perl-bindings (5.0.1 -> 5.0.2)
=== Details ===
==== SDL2 ====
Version update (2.30.0 -> 2.30.1)
- Update to release 2.30.1
* Fixed a regression causing SDL_WaitEvent() to return spurious
failures
* Wayland windows automatically have OpenGL enabled again
* Fixed memory corruption when converting signed 16-bit audio
to float
* Fixed audio artifacts when converting signed 8-bit audio to
float
* Fixed the clip rectangle not being updated when the viewport
changes in the SDL renderer
==== SVT-AV1 ====
Version update (1.7.0 -> 1.8.0)
- Update to release 1.8.0
* Improve the tradeoffs for the random access mode across presets:
* Speedup CRF presets M6 to M0 by 17-53% while maintaining
similar quality levels
* Re-adjust CRF presets M7 to M13 for better quality with BD-rate
gains ranging from 1-4%
* Improve the quality and speed of the 1-pass VBR mode
* Add API allowing to update bitrate / CRF and Key_frame
placement during the encoding session for CBR lowdelay mode and
CRF Random Access mode
* ARM Neon SIMD optimizations for most critical kernels allowing
for a 4.5-8x fps speedup vs the c implementation
==== cloud-init ====
- Hardcode distribution to suse for proper cloud.cfg generation
(bsc#1220132).
==== crun ====
Version update (1.14 -> 1.14.4)
- New upstream release 1.14.4
* crun-1.14.4
- linux: fix mount of file with recursive flags. Do not assume it is
a directory, but check the source type.
* crun-1.14.3
- follow up for 1.14.2. Drop the version check for each command.
* crun-1.14.2
- crun: drop check for OCI version. A recent bump in the OCI runtime
specs caused crun to fail with every config file. Just drop the
check since it doesn't add any value.
* crun-1.14.1
- there was recently a security vulnerability (CVE-2024-21626) in runc
that allowed a malicious user to chdir(2) to a /proc/*/fd entry that is
outside the container rootfs. While crun is not affected directly,
harden chdir by validating that we are still inside the container
rootfs.
- container: attempt to close all the files before execv(2).
if we leak any fd, it prevents execv to gain access to files outside
the container rootfs through /proc/self/fd/$fd.
- fix a regression caused by 1.14 when installing the ebpf filter on a
kernel older than 5.11.
- cgroup, systemd: fix segfault if the resources block is not specified.
==== gcc13 ====
- Fix libgccjit-devel dependency, a newer shared library is OK.
- Fix libgccjit dependency, the corresponding compiler isn't required.
- Use %patch -P N instead of %patchN.
==== kexec-tools ====
Version update (2.0.27 -> 2.0.28)
- update to 2.0.28:
* LoongArch: Load vmlinux.efi to the link address
* LoongArch: Fix an issue with relocatable vmlinux
* m68k: fix getrandom() use with uclibc
* lzma: Relax memory limit for lzma decompressor
* kexec: ppc64: print help to stdout instead of stderr
* kexec/loongarch64: fix 'make dist' file loss issue
* crashdump/x86: set the elfcorehdr segment size for hotplug
* crashdump/x86: identify elfcorehdr segment for hotplug
* crashdump: exclude elfcorehdr segment from digest for hotplug
* crashdump: setup general hotplug support
* crashdump: introduce the hotplug command line options
* kexec: define KEXEC_UPDATE_ELFCOREHDR
* kexec: update manpage with explicit mention of clean kexec
* zboot: add loongarch kexec_load support
* zboot: enable arm64 kexec_load for zboot image
- drop 6419b008fde783fd0cc2cc266bd1c9cf35e99a0e.patch, upstream
- add fix-building-on-x86_64-with-binutils-2.41.patch:
* fix assembling on binutils >= 2.42
- refresh kexec-tools-disable-test.patch
==== libdbusmenu-gtk2 ====
- Use %autosetup macro. Allows to eliminate the usage of deprecated
%patchN
==== libdbusmenu-gtk3 ====
- Use %autosetup macro. Allows to eliminate the usage of deprecated
%patchN
==== libeconf ====
Version update (0.6.1 -> 0.6.2)
- Update to version 0.6.2:
* version 0.6.2
* Fix static analyzer detected issues (#196)
==== libosinfo ====
Subpackages: libosinfo-1_0-0 libosinfo-lang
- bsc#1220228 - virt-manager crashes when its viewer is opened on a
running guest that uses spice graphics
virt-manager uses both libosinfo and spice-gtk. spice-gtk is now
built to use libsoup 3.0 but libosinfo was still using
libsoup 2.4. Prefer libsoup 3.0 over libsoup 2.4 for Tumbleweed
and newer SLE versions.
==== libreoffice ====
Version update (7.6.4.1 -> 24.2.1.2)
Subpackages: libreoffice-base libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit
- Update to 24.2.1.2 (24.2.1 final):
https://wiki.documentfoundation.org/Releases/24.2.1/RC1 and
https://wiki.documentfoundation.org/Releases/24.2.1/RC2
- Allow building with gcc >= 12 on system where it is the default
- Fix build on SLE12 and SLE15
- Added patch:
* 0001-Allow-building-with-Java-8.patch
+ patch submitted upstream restoring the possibility to build
with JDK >= 8
- Removed patch:
* 0001-Revert-java-9-changes.patch
+ not needed with the new patch above
- Update to 24.2.0.3 (24.2.0 final):
https://wiki.documentfoundation.org/ReleaseNotes/24.2
- Armenian translation added
- Update patch handling to be compatible with rpm 4.20
- Removed 0002-Revert-Require-HarfBuzz-5.1.0.patch
==== libxcb ====
Subpackages: libxcb-composite0 libxcb-damage0 libxcb-dpms0 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-randr0 libxcb-record0 libxcb-render0 libxcb-res0 libxcb-shape0 libxcb-shm0 libxcb-sync1 libxcb-xfixes0 libxcb-xinerama0 libxcb-xinput0 libxcb-xkb1 libxcb-xv0 libxcb1
- Fix n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch,
the rebase in 1.16 caused an regression: It loops indefinitely if
XAUTHLOCALHOSTNAME is unset (boo#1221078)
==== multipath-tools ====
Version update (0.9.8+83+suse.bcae610 -> 0.9.8+87+suse.f72b9f3)
Subpackages: kpartx libmpath0
- Update to version 0.9.8+87+suse.f72b9f3:
* fix misspelled DM_UDEV_DISABLE_OTHER_RULES_FLAG in udev rules
(bsc#1220810)
==== perl-X11-Protocol ====
- Use %autosetup macro. Allows to eliminate the usage of deprecated
%patchN
==== perl-X500-DN ====
- Use %autosetup macro. Allows to eliminate the usage of deprecated
%patchN
- modified patches
% version-string-fix.diff (refreshed)
% version-string-fix2.diff (refreshed)
==== perl-XML-SAX ====
- Use %autosetup macro. Allows to eliminate the usage of deprecated
%patchN
==== perl-XML-Twig ====
- Use %autosetup macro. Allows to eliminate the usage of deprecated
%patchN
==== permissions ====
Version update (1699_20240206 -> 1699_20240305)
Subpackages: chkstat permissions-config
- Update to version 1699_20240305:
* chkstat: EntryProcessor: make error handling in safeOpen() clearer
* chkstat regtests: catch bad error reporting for non-existent files
* chkstat: EntryProcessor: don't report errors for non-existent files
- Update to version 1699_20240223:
* chkstat: replace ProcMountState enum by simple bool member
* chkstat: minor style, spelling and documentation fixes
* chkstat: drop types.h header
* chkstat: make ProcMountState a private type of ChkStat
* chkstat: EntryProcessor: rename some member variables for improved readability
* chkstat: get rid of EntryContext and incorporate it into EntryProcessor
* chkstat: split-off EntryProcessor from Chkstat main class
* chkstat: define _GNU_SOURCE via Makefile
* chkstat: processEntries(): make loop variables const
* chkstat: split up checkHaveProc()
* chkstat: ProfileParser: fix a bug when applying capabilities in custom root
* chkstat: ProfileParser: make adding the root to paths transparent
* chkstat: ProfileParser: refactor the now reduced codebase
* chkstat: split off separate ProfileParser
* chkstat: ProfileEntry: mark dropXID() const to support const ProfileEntry use
* chkstat: parseProfile(): improve badProfileLine() calls
* chkstat: drop deprecated capability check
* chkstat: also move expandProfilePaths() into new VariableExpansions class
* chkstat: split off variable expansion logic into separate class
* chkstat: loadVariableExpansions(): a bit of refactoring
* chkstat: parseSysconfig(): bit of refactoring
* chkstat: remove deprecated CHECK_PERMISSIONS logic
* chkstat: move assorted types into dedicated header
* chkstat: replace #include guards by #pragma once
* chkstat: split off command line arguments from Chkstat main class
* chkstat: drop SaneValueArg wrapper
* chkstat: document new packages.d directory
* chkstat: drop TODO regarding ProfileEntry being changed on-the-fly
* chkstat: harmonize FileCapabilities API
* chkstat: support /usr/share/permissions/package.d for per-package drop-ins
* chkstat: minor coding style fixes
* chkstat: improve readability for rstrip() to strip trailing slashes
* chkstat: remove trailing slashes from paths found on the command line
* chkstat: add warning messages for rare error situations
* chkstat: open profiles right away without racy `access()` check.
- Remove fix_version.sh, handle version with services
==== tcpd ====
- Use %patch -P N instead of deprecated %patchN.
==== vim ====
Version update (9.1.0111 -> 9.1.0151)
Subpackages: vim-data vim-data-common vim-small xxd
- update to 9.1.0151
- refreshed vim-7.3-filetype_spec.patch
* ml_get_buf_len() does not consider text properties
* Several minor 'winfixbuf' issues
* Update Serbian messages
* Recognize "__inline"
* Update base-syntax, fix escaping :syn and :hi sub-groups
* Update syntax file, fix issue #962
* null pointer member access when accessing 'winfixbuf' property
* update syntax script
* Update base-syntax, fix issue #14135
* Highlight the error message at *E1513*
* Update base-syntax, improve :augroup highlighting
* Use unnamed register when clipboard not working
* Vim9: can't call internal methods with objects
* Cannot keep a buffer focused in a window
* Updated Russian installer translation
* Recognise text blocks
* Update ftplugin, browsefilter labels
* Improve the recognition of literals
* v:echospace wrong with invalid value of 'showcmdloc'
* some improvements to getregion() docs
* update "Last Change header", remove trailing whitespace
* handle file/dir symlinks specifically in tree mode
* v:echospace not correct when 'showcmdloc' != last
* getregion() needs more tests
* disable multiline_scalar detection by default
* [security]: autocmd causes use-after-free in set_curbuf()
* getregion() can be improved
* include runtime/syntax/testdir/ftplugin
* Put in Visual mode wrong if it replaces fold marker
* Fix typo under *kitty-terminal* in term.txt
* Update Serbian translation
* Recognise _when_ clauses in _switch_ blocks
* simplify code and allow filetype options
* Update Italian translation
* cursor on wrong row after 1 char 'below' virtual text when EOL is shown
* Update ftplugin, fix #14101
* Update base-syntax, improve :echo highlighting
* update Debian syntax files
* too many STRLEN calls when getting a memline
* Update syntax file, improve :substitute matching
* <Del> in cmdline mode doesn't delete composing chars
* Fix typo in usr_41.txt
* fix inconsistent indent
* Vim9: need more test for exists() methods
* clarify ':set[l] {option}<' behaviour
* Insufficient testing for 'delcombine'
* "C" doesn't include composing chars with 'virtualedit'
* buffer-completion may not always find all matches
* [security]: UAF if win_split_ins autocommands delete "wp"
* Fix truncation of text_wrap 'wrap' virt text after EOL list char
* runtime(doc) Update help text for matchbufline() and matchstrlist()
* small fixes to the zh tutor
* Recognize SourceLicense tag name in RPM spec syntax
* win_gotoid() may abort even when not switching a window
* Naming a non-pointer variable "oap" is strange
* Internal error when using upper-case mark in getregion()
* Update base-syntax, fix :unabbrev highlighting
* add syntax support for Java switch expressions
* unused init of text_prop_idxs in win_line()
* display of below/right virtual text with non-virtual text overlap
* clarify expand() for :terminal windows
* Some minor issues with the getregion() function
* Update tmux syntax
* Infinite loop or signed overflow with 'smoothscroll'
* hard to get visual region using Vim script
* can move away from cmdwin using win_splitmove()
* Use different restoration strategy in win_splitmove
* Stop split-moving from firing WinNew and WinNewPre autocommands
* win_split_ins may not check available room
* Add a place holder section for version 9.2
* Modula-2 files with priority not detected
* announce adoption of various runtime files
* Distinguish Vim9 constructor definitions from the :new ex command
* Using freed memory with full tag stack and user data
* Fix typo in testing.txt
* Setting some options may change curswant
* update "Last Change:" header
* reset readonly setting when disabling less mode
* duplicate code when cleaning undo stack
* Remove undo information, when cleaning quickfix buffer
==== xdm ====
- u_gcc14-fix.patch
* fix build against gcc14 (boo#1221028)
==== xz ====
Version update (5.4.6 -> 5.6.0)
Subpackages: liblzma5 xz-lang
- update to 5.6.0:
* This bumps the minor version of liblzma because new
features were added. The API and ABI are still backward
compatible with liblzma 5.4.x and 5.2.x and 5.0.x.
* liblzma:
- Disabled the branchless C variant in the LZMA
decoder based on the benchmark results from the community.
- Disabled x86-64 inline assembly on x32 to fix the
build.
* Sandboxing support in xz:
- Landlock is now used even when xz needs to create
files.
- Landlock and pledge(2) are now stricter when
reading from more than one input file and only writing to
standard output.
- Added support for Landlock ABI version 4.
- Now builds lzmainfo and lzmadec.
- xzdiff, xzgrep, xzless, xzmore, and their symlinks
are now installed. The scripts are also tested during "make
test".
- Added translation support for xz, lzmainfo, and the
man pages.
- Minimum required CMake version is now 3.14.
* liblzma:
- LZMA decoder: Speed optimizations to the C code and
added GCC & Clang compatible inline assembly for
x86-64.
- Added lzma_mt_block_size() to recommend a Block
size for multithreaded encoding.
- Added CLMUL-based CRC32 on x86-64 and E2K with
runtime processor detection. Similar to CRC64, on 32-bit
x86 it isn't available unless --disable-assembler is used.
- Optimized the CRC32 calculation on ARM64 platforms
using the CRC32 instructions. Runtime detection for the
instruction is used on GNU/Linux, FreeBSD, Windows, and macOS.
- Added definitions of mask values like
LZMA_INDEX_CHECK_MASK_CRC32 to <lzma/index.h>.
* Licensing change: The core components are now under the
* BSD Zero Clause License (0BSD). In XZ Utils 5.4.6 and
older and 5.5.1alpha these components are in the public
domain and obviously remain so; the change affects the new
releases only.
* 0BSD is an extremely permissive license which doesn't
require retaining or reproducing copyright or license notices
when distributing the code, thus in practice there is
extremely little difference to public domain.
* liblzma
- Significant speed optimizations to the LZMA decoder
were made. There are now three variants that can be
chosen at build time:
* Basic C version: This is a few percent faster than
5.4.x due to some new optimizations.
* Branchless C: This is currently the default on platforms
for which there is no assembly code. This should be a few
percent faster than the basic C version.
* x86-64 inline assembly. This works with GCC and Clang.
The default choice can currently be overridden by
setting LZMA_RANGE_DECODER_CONFIG in CPPFLAGS: 0 means the
basic version and 3 means that branchless C version.
* Added a new filter for RISC-V binaries. The filter can be
used for 32-bit and 64-bit binaries with either little or
big endianness. In liblzma, the Filter ID is
LZMA_FILTER_RISCV (0x0B)
- Implemented GNU indirect function (IFUNC) as a
runtime function dispatching method for CRC32 and CRC64
fast implementations on x86. Only GNU/Linux (glibc) and
* xz:
- Multithreaded mode is now the default. This
improves compression speed and creates .xz files that can be
decompressed multithreaded at the cost of increased
memory usage and slightly worse compression ratio.
- Added new command line option --filters to set the
filter chain using liblzma filter string syntax.
- Added new command line options --filters1 ...
- -filters9 to set additional filter chains using liblzma filter
string syntax. The --block-list option now allows
specifying filter chains that were set using these new options.
- Added support for Linux Landlock as a sandboxing
method.
- xzdec now supports pledge(2), Capsicum, and Linux
Landlock as sandboxing methods.
- enable y2038 mode
- enable zstd compression, we no longer have bootstrap
issues as xz is no longer used
==== yast2-perl-bindings ====
Version update (5.0.1 -> 5.0.2)
- Revert the last locale fix to avoid Perl crashing (bsc#1220375)
- 5.0.2