Packages changed:
  audacity
  audit-secondary
  bash (5.1.8 -> 5.1.12)
  bind
  bluez
  busybox-links
  efibootmgr (14 -> 17)
  ffmpeg-4
  gdb
  geoclue2
  git (2.34.0 -> 2.34.1)
  glslang (11.6.0 -> 11.7.1)
  gnutls
  graphviz (2.49.1 -> 2.49.3)
  graphviz-addons (2.49.1 -> 2.49.3)
  inkscape
  ki18n
  libappindicator (12.10.1+bzr20170215 -> 12.10.1~bzr20200706.298)
  libarchive
  libexif (0.6.23 -> 0.6.24)
  libimagequant (2.15.1 -> 2.17.0)
  libmfx (21.3.4 -> 21.3.5)
  libstorage-ng (4.4.58 -> 4.4.61)
  mousepad (0.5.7 -> 0.5.8)
  mtools (4.0.35 -> 4.0.36)
  pcsc-lite
  plasma5-openSUSE
  pngquant (2.15.1 -> 2.17.0)
  polkit-gnome
  pulseaudio
  python-charset-normalizer (2.0.7 -> 2.0.8)
  python-kiwi (9.24.6 -> 9.24.10)
  python38
  python38-core
  python38-documentation
  qpdf (10.3.2 -> 10.4.0)
  sensors
  smartmontools
  tftp
  trousers
  vulkan-loader (1.2.189.0 -> 1.2.198.0)
  webkit2gtk3 (2.34.1 -> 2.34.2)
  webkit2gtk3-soup2 (2.34.1 -> 2.34.2)
  xauth (1.1 -> 1.1.1)
  xmlsec1 (1.2.32 -> 1.2.33)
  yast2-trans (84.87.20211121.6ee9157350 -> 84.87.20211126.cedf3cc035)
  yast2-update (4.4.4 -> 4.4.5)

=== Details ===

==== audacity ====
Subpackages: audacity-lang

- Remove pipewire-libjack-0_3 conflict. pipewire-libjack-0_3's
  latest version is fixed.

==== audit-secondary ====
Subpackages: audit python3-audit system-group-audit

- Use %autosetup
- Don't include sample rules as %doc, they're already installed
  as normal files
- Fix create-augenrules-service.patch:
  * auditd.service needs to require augenrules.service,
    not the other way around
- Fix documentation for enable-stop-rules.patch

==== bash ====
Version update (5.1.8 -> 5.1.12)
Subpackages: bash-doc bash-lang

- Update bash 5.1 to patch level 12
  * Add official patch bash51-009
    The bash malloc implementation of malloc_usable_size() does not follow the
    specification. This can cause library functions that use it to overwrite
    memory bounds checking.
  * Add official patch bash51-010
    If `wait -n' is interrupted by a trapped signal other than SIGINT, it does
    not completely clean up state, and that can prevent subsequent calls to
    `wait -n' from working correctly.
  * Add official patch bash51-011
    When reading a compound assignment, and running it through the parser to
    split it into words, we need to save and restore any alias we're currently
    expanding.
  * Add official patch bash51-012
    There is a possible race condition that arises when a child process receives
    a signal trapped by the parent before it can reset the signal dispositions.
    The child process is not supposed to trap the signal in this circumstance.
- Using package bash-sh instead of the update-alternative
  mechanism.

==== bind ====
Subpackages: bind-doc bind-utils python3-bind

- Aligned SLE15-SP4 and Factory spec files.
  [bind.spec]
- Fixed CVE-2021-25219:
  The lame-ttl option controls how long named caches certain types
  of broken responses from authoritative servers (see the security
  advisory for details). This caching mechanism could be abused by
  an attacker to significantly degrade resolver performance. The
  vulnerability has been mitigated by changing the default value of
  lame-ttl to 0 and overriding any explicitly set value with 0,
  effectively disabling this mechanism altogether. ISC's testing has
  determined that doing that has a negligible impact on resolver
  performance while also preventing abuse.
  Administrators may observe more traffic towards servers issuing
  certain types of broken responses than in previous BIND 9 releases.
  [bsc#1192146, CVE-2021-25219, bind-CVE-2021-25219.patch]

==== bluez ====
Subpackages: libbluetooth3

- Stop nuking the obex service, we support user systemd services
  just fine now. Following this, no longer hack the dbus service,
  leave it as a systemd service as upstream intended.
- Split out obex in own package with it's needed enabledment as a
  systemd user service.
- Add 0001-obex-Use-GLib-helper-function-to-manipulate-paths.patch:
  obex: Use GLib helper function to manipulate paths. Instead of
  trying to do it by hand. This also makes sure that relative paths
  aren't used by the agent. Patch from fedora.

==== busybox-links ====
Subpackages: busybox-coreutils busybox-findutils busybox-gawk busybox-grep busybox-gzip busybox-psmisc busybox-sed busybox-sendmail busybox-util-linux busybox-xz

- Removed libalternatives machanism. Using direct link from
  /usr/bin/busybox to /usr/bin/sh. The package is conflicting with
  the new packages bash-sh which has a link for /usr/bin/sh too.
- Use libalternatives instead of update-alternatives.

==== efibootmgr ====
Version update (14 -> 17)

- Update to v17:
  * use efivar's logging facility more (more info in -v2 , -v3, etc)
  * Various bug fixes
  * Better -e parsing
  * fix pkg-config invocation for ldflags
  * Make efibootmgr use EFIDIR / efibootmgr.efidir like fwupdate does
  * make --loader default build-time configurable
  * sanitize set_mirror()/get_mirror()
  * Add support for parsing loader options as UCS2
  * GCC 7 fixes
  * Don't use -fshort-wchar since we don't run on EFI machines.
- Drop 0001-Don-t-use-fshort-wchar-when-building-63.patch (upstreamed)
- Drop 0002-Remove-extra-const-keywords-gcc-7-gripes-about.patch
  (upstreamed)
- Drop 0003-Add-support-for-parsing-optional-data-as-ucs2.patch
  (upstreamed)
- Drop MARM-sanitize-set_mirror.diff (upstreamed)
- Drop efibootmgr-derhat.diff (upstreamed)
- Rebase efibootmgr-delete-multiple.diff

==== ffmpeg-4 ====
Subpackages: libavcodec58_134 libavdevice58_13 libavfilter7_110 libavformat58_76 libavresample4_0 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9

- Add ffmpeg-4.keyring: properly validate the added gpg signature.

==== gdb ====

- Patches added (swo#27028, swo#27257):
  * gdb-testsuite-fix-gdb.arch-i386-pkru.exp-on-linux.patch
  * gdb-tdep-fix-avx512-m32-support-in-gdbserver.patch
- Patch added (swo#28539, bsc#1192285):
  * gdb-symtab-fix-segfault-in-search_one_symtab.patch
- Patches removed:
  * gdb-testsuite-debug-gdb.arch-i386-sse.exp.patch
- Maintenance script qa.sh:
  - Drop openSUSE Leap 15.1.
  - Add KFAILs for PR28617.
- Fix SLE-12 x86_64 unresolvable by removing BuildRequire gcc-java.
- Fix openSUSE_Factory_ARM armv7l unresolvable by not doing
  BuildRequire babeltrace-devel.
- Fix SLE-12 x86_64 unresolvable by not doing BuildRequire
  babeltrace-devel.
- Patches added (backport from master):
  * gdb-testsuite-add-missing-wait-in-gdb.base-signals-state-child.exp.patch
- Add BuildRequire libsource-highlight.
- Maintenance script qa.sh:
  - Add KFAIL.
- Patches updated (increase sleep time):
  * gdb-testsuite-fix-race-in-gdb.threads-detach-step-over.exp.patch
- Patches added (debug hard to reproduce failure):
  * gdb-testsuite-debug-gdb.arch-i386-sse.exp.patch
- Maintenance script qa.sh:
  - Add internal-error KFAILs.
  - Rewrite gdb.suse check to distinguish between:
    "zypper hint printed (librpm)" and
    "zypper hint printed (no librpm)".
- Patch updated (zypper hint doesn't use librpm on SLE-11):
  * gdb-testsuite-add-gdb.suse-zypper-hint.exp.patch
- Patches added (backports from trunk):
  * gdb-testsuite-add-gdb.opt-break-on-_exit.exp.patch
  * gdb-tdep-rs6000-don-t-skip-system-call-in-skip_prologue.patch
  * gdb-testsuite-fix-stepi-test-cases-with-unix-m32-fpie-pie.patch
  * gdb-testsuite-fix-assembly-comments-in-gdb.dwarf2-clang-debug-names.exp.tcl.patch
  * gdb-doc-fix-print-inferior-events-default.patch
  * gdb-testsuite-fix-gdb.guile-scm-type.exp-with-gcc-4.8.patch
  * gdb-testsuite-add-gdb.arch-ppc64-break-on-_exit.exp.patch
  * gdb-testsuite-don-t-error-when-trying-to-unset-last_spawn_tty_name.patch
  * gdb-exp-improve-error-reading-variable-message.patch
  * fix-gdb.base-sigstep.exp-test-for-ppc.patch
  * gdb-testsuite-fix-regexp-in-gdb.base-foll-vfork.exp.patch
- Patches added (backports from ml):
  * gdb-testsuite-disable-inferior-output-in-gdb.base-foll-vfork.exp.patch
- Maintenance script qa.sh:
  - Add -m32/-pie to known clean configs.
  - Add kfail for PR28467.
- Fix empty patch:
  * gdb-testsuite-fix-fail-in-gdb.tui-basic.exp.patch
- Limit SLE extra targets to SLE targets.
- Add avr-elf and pru-elf to openSUSE extra targets.
- Maintenance script qa.sh:
  * Add note.
  * Add KFAIL, improve KFAIL patterns.
- Patch updated:
  * gdb-testsuite-fix-data-alignment-in-gdb.arch-i386-avx-sse-.exp.patch
  * gdb-testsuite-fix-race-in-gdb.threads-detach-step-over.exp.patch
- Replace patch (patch from mailing list, fix SLE-11 apply failure):
  * gdb-tdep-aarch64-make-gdbserver-register-set-selection-dynamic.patch
  with (now backported from release branch):
  * aarch64-make-gdbserver-register-set-selection-dynamic.patch
- Patches added:
  * gdb-testsuite-fix-data-alignment-in-gdb.arch-i386-avx-sse-.exp.patch
  * gdb-testsuite-fix-fail-in-gdb.tui-basic.exp.patch
- Patches dropped:
  * gdb-testsuite-add-checks-to-gdb.arch-i386-sse.exp.patch
- Replace patch:
  * gdb-testsuite-Fix-gdb.threads-thread-specific-bp.exp.patch
  with (updated version, and patchname now generated by
  import-patches.sh):
  * gdb-testsuite-fix-gdb.threads-thread-specific-bp.exp.patch
- Maintenance script import-patches.sh:
  * Improve argument checking.
  * Add usage.
  * Use filterdiff to filter out ChangeLog entries.
- Maintenance script qa.sh:
  * Fix usage.
  * Document todo.
- Re-enable big endian powerpc, but keep testing disabled.
- Add KFAIL for PR28553.
- Patch added (move zypper hint test to testsuite):
  * gdb-testsuite-add-gdb.suse-zypper-hint.exp.patch
- Maintenance script qa.sh:
  * Add PR28551 KFAIL.
  * Add missing quotes for some KFAILs.
  * Remove PR28355 KFAIL.

==== geoclue2 ====
Subpackages: system-user-srvGeoClue typelib-1_0-Geoclue-2_0

- Drop geoclue2-revert-2-faulty.patch: Replaced by upstream fix
  in geoclue2-geoip-when-wifi-unavailable.patch:.
- Add geoclue2-geoip-when-wifi-unavailable.patch: [gclue-wifi] Use
  GeoIP when a WiFi device isn't available
  [glfo#geoclue/geoclue#142].

==== git ====
Version update (2.34.0 -> 2.34.1)
Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk perl-Git

- update to 2.34.1:
  * "git grep" looking in a blob that has non-UTF8 payload was
    completely broken when linked with certain versions of PCREv2
    library in the latest release.
  * "git pull" with any strategy when the other side is behind us
    should succeed as it is a no-op, but doesn't.
  * An earlier change in 2.34.0 caused JGit application (that abused
    GIT_EDITOR mechanism when invoking "git config") to get stuck with
    a SIGTTOU signal; it has been reverted.
  * An earlier change that broke .gitignore matching has been reverted.
  * SubmittingPatches document gained a syntactically incorrect mark-up,
    which has been corrected.
- fix url

==== glslang ====
Version update (11.6.0 -> 11.7.1)

- Update to release 11.7.1
  * Accept gl_ViewportMask in version 430 and later
  * Remove support for double trig, pow, exp and log
  * Add the GL_EXT_shader_integer_mix Preamble for glsl
  * Add support for targeting Vulkan 1.2 in the C API

==== gnutls ====
Subpackages: libgnutls-dane0 libgnutls30 libgnutls30-32bit libgnutls30-hmac

- Drop bogus condition "> 1550": that would mean 'more recent than
  Tumbleweed' which is technically impossible, as Tumbleweed is the
  leading project (and the condition causes issues as Tumbleweed
  needs to move away from 1550 due to CODE 15 SP5 plans).

==== graphviz ====
Version update (2.49.1 -> 2.49.3)
Subpackages: graphviz-plugins-core libcdt5 libcgraph6 libgraphviz6 libgvc6 libgvpr2 liblab_gamut1 libpathplan4

- update to 2.49.3:
  - gvpr "split", "tokens", and "index" functions produce incorrect results
    This was a regression that occurred between 2.47.1 and 2.47.2.
  - Lefty is disabled by default in the Autotools build system. To re-enable it,
    pass `--enable-lefty` to `./configure`. In a future release, Lefty will be
    removed.
  - remove PHP5 support in SWIG bindings
  - Msys experimental packages are included in release artifacts
  - CMake build system incorrectly aliases gv2gml to gml2gv
  - Gv2gml Doesn't escape quotes in attributes
  - GVPR incorrectly understands color schemes
- reenable lefty to fix addons build

==== graphviz-addons ====
Version update (2.49.1 -> 2.49.3)
Subpackages: graphviz-gd graphviz-gnome

- update to 2.49.3:
  - gvpr "split", "tokens", and "index" functions produce incorrect results
    This was a regression that occurred between 2.47.1 and 2.47.2.
  - Lefty is disabled by default in the Autotools build system. To re-enable it,
    pass `--enable-lefty` to `./configure`. In a future release, Lefty will be
    removed.
  - remove PHP5 support in SWIG bindings
  - Msys experimental packages are included in release artifacts
  - CMake build system incorrectly aliases gv2gml to gml2gv
  - Gv2gml Doesn't escape quotes in attributes
  - GVPR incorrectly understands color schemes
- reenable lefty to fix addons build

==== inkscape ====
Subpackages: inkscape-extensions-extra inkscape-extensions-gimp inkscape-lang

- Ensure we download the same tarball every time. Also add sig and
  keyring as sources and verify that we have the right one.
- Add ebc4de4bfe34d6c5f2e27da47f5d62e4de0394fd.patch: Fix build
  with poppler 21.11.0, patch from upstream git.

==== ki18n ====
Subpackages: libKF5I18n5 libKF5I18n5-lang

- Require iso-codes-lang. The -lang package is not optional.

==== libappindicator ====
Version update (12.10.1+bzr20170215 -> 12.10.1~bzr20200706.298)
Subpackages: libappindicator3-1 typelib-1_0-AppIndicator3-0_1

- Update to version 12.10.1~bzr20200706.298 (chages since
  12.10.1~bzr20170215.282):
  * Fix build failures.
  * Vendorise indicator-desktop-shortcuts (convenience wrapper
    around gdesktopappinfo) from the libindicator project, to drop
    the dependency on libindicator as none of the rest of it is
    used.
  * Don't build with -Werror.
  * Drop Python 2 bindings and GObject Introspection for GTK 2
    (lp#1740637).
  * app-indicator: Don't pass unexpected parameter to signal
    emissions (lp#1867996).
  * app-indicator: Only check for item numbers when iterating
    array (lp#1867996).
  * Fall back to tray icon when StatusNotifierHost is not
    available.
- Drop libappindicator-no-Werror.patch: fixed upstream.
- Drop only_require_python_for_gtk2.patch: no longer needed.
- Rebase xappstatusicon.patch.

==== libarchive ====

- fix permission settings on following symlinks (fix-following-symlinks.patch)
  this fixes also wrong permissions of /var/tmp in factory systems

==== libexif ====
Version update (0.6.23 -> 0.6.24)

- libexif-0.6.24 (2021-11-25):
  * Translation updates: sr, vi, pl, uk, french
  * fixed regression in exif_data_load_data which could not load EXIF in JPEG data anymore
  * Decode lots of Canon tag names
  * removed empty strings from translation (empty string would translate to the PO info header)
  * various warning removals and code improvements
  * added sample "persistent" afl fuzzer (100x faster than normal afl fuzzer)

==== libimagequant ====
Version update (2.15.1 -> 2.17.0)

- update to 2.17.0:
  * Do not build as unversioned DSO
  * use float as in SSE
  * Initialize rows using heap to handle large images
  * Free rows after remapping
  * Disable SSE on arm64

==== libmfx ====
Version update (21.3.4 -> 21.3.5)

- Update to version 21.3.5:
  * single change: Updates release notes for 21.3.4 release
  * New features:
    + VP9 Encode: Added WebRTC mode.
    + Samples:
    . Added "VuiTC" option to set VUI TransferCharacteristics in
    sample_multi_transcode.
    . Added the verification of input params before used in Init
    for sample_encode
    + Misc:
    . Added support of DRM_FORMAT_NV12 for console mode
    rendering.
    . Added runtimes support matrix for Media SDK and oneVPL GPU
    Runtime.
    + Software requirements:
    . Libdrm 2.4.84 or later
    . Kernel 4.14 or later (5.4 recommended, consult kernel
    support matrix wiki page for details)
    + Known issues: Kernel 5.0 have known issue with endurance on
    Skylake see
    https://bugs.freedesktop.org/show_bug.cgi?id=110285 for
    details.
  * Limited support on certain platforms:
    + MPEG-2 encode is not supported on Apollo Lake
    + H.264 Flexible Encode Infrastructure only supported on
    Broadwell and Skylake
    + Multi Frame Encode (MFE), HEVC Flexible Encode Infrastructure
    only supported on Skylake
    + VP9 decoder is supported starting from Kabylake platform
    + VP9 encoder is supported starting from Icelake platform
    + SW fallback is unsupported for all components but MJPEG
    + Keem Bay requires a VPU runtime library
    + The following features are supported by Keem Bay runtime and
    are not supported by Gen graphics runtime:
    . mfxExtInsertHeaders
    . mfxExtEncoderIPCMArea

==== libstorage-ng ====
Version update (4.4.58 -> 4.4.61)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1

- merge gh#openSUSE/libstorage-ng#846
- make function is_efibootmgr() public (for bsc#937067)
- 4.4.61
- merge gh#openSUSE/libstorage-ng#845
- prefer file system over empty MS-DOS partition table (bsc#1186823)
- fixed testcase
- 4.4.60
- merge gh#openSUSE/libstorage-ng#844
- extended Holder::set_source for multipath devices
- documentation and coding style
- 4.4.59

==== mousepad ====
Version update (0.5.7 -> 0.5.8)
Subpackages: libmousepad0 mousepad-lang

- Update to version 0.5.8
  * Revert "Chain-up to parent in `mousepad_window_scroll_event()`"
    (gxo#apps/mousepad#150)
  * Search: Fix a memory leak
  * Search: Remove obsolete workaround for the document finalization
  * Drop restrictions on URI scheme
  * Update `POTFILES.in`
  * Printing: Remove the "Page Setup" dialog (gxo#apps/mousepad#148)
  * Flatpak: Complete scripts
  * Flatpak: Access remote locations with GVfs
  * Search: Fix the history cleanup
  * Search: Prevent GTask warnings when replacing text
  * Search: Ensure settings synchronization before searching
  * Fix translation domain in Appdata file
  * flatpak: Update README
  * flatpak: Add generic manifest and basic scripts
  * Translation Updates

==== mtools ====
Version update (4.0.35 -> 4.0.36)

- update to 4.0.36:
  * Fix error status of recursive listing of empty root directory
  * If recursive listing, also show matched files at level one
  * Use "seekless" reads & write internally, where possible
  * Text mode conversion refactoring
  * Misc refactoring
- remove mtools-aliasing.diff (obsolete)

==== pcsc-lite ====
Subpackages: libpcsclite1

- Change to systemd-sysusers

==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE

- Update to 5.23.4

==== pngquant ====
Version update (2.15.1 -> 2.17.0)

- update to 2.17.0:
  - reduced stack usage, preventing stack overflow in pathological cases

==== polkit-gnome ====
Subpackages: polkit-gnome-lang

- Disable agent startup on Pantheon desktop

==== pulseaudio ====
Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-bash-completion pulseaudio-gdm-hooks pulseaudio-lang pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils pulseaudio-zsh-completion system-user-pulse

- Improving the handling with pipewire (bsc#1188516):
  * Split the setup script to a sub-package pulseaudio-setup to be
    shared with pipewire-pulseaudio package
  * Modified setup script to adapt pipewire-pulse

==== python-charset-normalizer ====
Version update (2.0.7 -> 2.0.8)

- update to 2.0.8:
  * Improvement over Vietnamese detection
  * MD improvement on trailing data and long foreign (non-pure latin)
  * Efficiency improvements in cd/alphabet_languages
  * call sum() without an intermediary list following PEP 289 recommendations
  * Code style as refactored by Sourcery-AI
  * Minor adjustment on the MD around european words
  * Remove and replace SRTs from assets / tests
  * Initialize the library logger with a `NullHandler` by default
  * Setting kwarg `explain` to True will add provisionally
  * Fix large (misleading) sequence giving UnicodeDecodeError
  * Avoid using too insignificant chunk
  * Add and expose function `set_logging_handler` to configure a specific
    StreamHandler
- require lower-case name instead of breaking build
- Use lower-case name of prettytable package

==== python-kiwi ====
Version update (9.24.6 -> 9.24.10)

- Bump version: 9.24.9 ? 9.24.10
- Added documentation about sharing backends
  The kiwi boxbuild plugin supports several sharing
  backends. Details about them and eventual pre-setup
  steps prior use are mentioned in this document
- Fixed MicroOS build test
  snapper default config has moved from /etc to /usr/share
- Bump version: 9.24.8 ? 9.24.9
- Bump version: 9.24.7 ? 9.24.8
- Added support for reading metalink in info module
  For resolver operations through libsolv the 'kiwi image info'
  module exists. So far it could not read the repos from
  metalink repo definitions. This Fixes #1890
- Force key attribute from signing element to be treated as a URI
  Signed-off-by: David Cassany <dcassany@suse.com>
- Pass signing keys from the XML to the repositories
  This commits makes sure signing keys are passed to
  repositories setup in build task.
  Signed-off-by: David Cassany <dcassany@suse.com>
- Move static sle15 integration test to git
- Bump version: 9.24.6 ? 9.24.7
- Fixed raid integration test using extra boot part
  Due to changes in the distribution the tests needs some
  adaptions. The kernel as provided now by TW uses symlinks
  from boot to /usr/lib/modules/... to point to the kernel
  binary. Of course this breaks for any system that uses
  /boot on another partition. Those image tests which were
  testing this aspect needs fixing.
- Make sure fedora-release is installed on Rawhide
  Follow up to #1957 and #1962:
  The Fedora build tests were using the generic release package and not
  fedora-release. This issue has been partially fixed in #1962, but we forgot to
  port the fix to the rawhide images as well. This commit adds the missing package
  to the Rawhide images as well.

==== python38 ====
Subpackages: python38-curses python38-dbm python38-tk

- Remove shebangs from from python-base libraries in _libdir
  (bsc#1193179).
- Readjust patches:
  - bpo-31046_ensurepip_honours_prefix.patch
  - decimal.patch
  - python-3.3.0b1-fix_date_time_compiler.patch

==== python38-core ====
Subpackages: libpython3_8-1_0 python38-base

- Remove shebangs from from python-base libraries in _libdir
  (bsc#1193179).
- Readjust patches:
  - bpo-31046_ensurepip_honours_prefix.patch
  - decimal.patch
  - python-3.3.0b1-fix_date_time_compiler.patch

==== python38-documentation ====

- Remove shebangs from from python-base libraries in _libdir
  (bsc#1193179).
- Readjust patches:
  - bpo-31046_ensurepip_honours_prefix.patch
  - decimal.patch
  - python-3.3.0b1-fix_date_time_compiler.patch

==== qpdf ====
Version update (10.3.2 -> 10.4.0)

- update to 10.4.0:
  * From the qpdf CLI, the --allow-weak-crypto is now required to suppress a
    warning when explicitly creating PDF files using RC4 encryption. While qpdf
    will always retain the ability to read and write such files, doing so will
    require explicit acknowledgment moving forward. For qpdf 10.4, this change
    only affects the command-line tool. Starting in qpdf 11, there will be
    small API changes to require explicit acknowledgment in those cases as
    well. For additional information, see Chapter 6, Weak Cryptography.
  * Fix potential bounds error when handling shell completion that could occur
    when given bogus input.
  * Properly handle overlay/underlay on completely empty pages
  * Fix crash that could occur under certain conditions when using --pages with
    files that had form fields.
  * Make QPDF::findPage functions public.
  * Add methods to Pl_Flate to be able to receive warnings on certain recoverable
    conditions.
  * Add an extra check to the library to detect when foreign objects are inserted
    directly (instead of using QPDF::copyForeignObject) at the time of insertion
    rather than when the file is written. Catching the error sooner makes it much
    easier to locate the incorrect code.
  * Improve diagnostics around parsing --pages command-line options

==== sensors ====
Subpackages: libsensors4

- Remove ProtectKernelTunables from harden_lm_sensors.service.patch,
  breaks service (boo#1193149)

==== smartmontools ====

- Update smartmontools-drivedb.h to the latest version from the
  upstream branch RELEASE_7_2_DRIVEDB.

==== tftp ====

- Added hardening to systemd service(s) (bsc#1181400). Modified:
  * tftp.service

==== trousers ====

- Added hardening to systemd service(s) (bsc#1181400). Modified:
  * tcsd.service

==== vulkan-loader ====
Version update (1.2.189.0 -> 1.2.198.0)

- Update to release SDK-1.2.198.0
  * Fix loader not knowing about extensions enabled in layers
  * Only return pre-instance functions when instance is NULL
  * Fix vkGetInstanceProcAddr not handling null instance
  * loader: Add aarch64 unknown ext chain implementation

==== webkit2gtk3 ====
Version update (2.34.1 -> 2.34.2)
Subpackages: WebKit2GTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles

- Update to version 2.34.2:
  + Fix scrolling issues when pressing Home and PgDown keys.
  + Update effective appearance after web process switch on
    navigation.
  + Fix the build with video disabled.

==== webkit2gtk3-soup2 ====
Version update (2.34.1 -> 2.34.2)
Subpackages: WebKit2GTK-4.0-lang libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles

- Update to version 2.34.2:
  + Fix scrolling issues when pressing Home and PgDown keys.
  + Update effective appearance after web process switch on
    navigation.
  + Fix the build with video disabled.

==== xauth ====
Version update (1.1 -> 1.1.1)

- update to version 1.1.1
  * This is a minor bugfix release, including fixes for reported
    crashes.

==== xmlsec1 ====
Version update (1.2.32 -> 1.2.33)
Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1

- update to 1.2.33:
  * Fix decrypting session key for two recipients
  * Added --privkey-openssl-engine option to enhance openssl engine support

==== yast2-trans ====
Version update (84.87.20211121.6ee9157350 -> 84.87.20211126.cedf3cc035)
Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu

- Update to version 84.87.20211126.cedf3cc035:
  * New POT for text domain 'installation'.
  * New POT for text domain 'bootloader'.
  * New POT for text domain 'autoinst'.
  * Translated using Weblate (French)
  * Translated using Weblate (French)
  * Translated using Weblate (Slovak)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * New POT for text domain 'storage'.
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Japanese)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * Translated using Weblate (Catalan)
  * New POT for text domain 'xpram'.
  * New POT for text domain 's390'.
  * New POT for text domain 'packager'.
  * New POT for text domain 'autoinst'.

==== yast2-update ====
Version update (4.4.4 -> 4.4.5)

- Remove obsolete code for treating /var differently when mounting
  partitions, avoiding calling old storage code and crashing
  (related to bsc#1186268).
- 4.4.5