Packages changed: Mesa (22.2.3 -> 22.2.4) Mesa-drivers (22.2.3 -> 22.2.4) bind (9.18.8 -> 9.18.9) flatpak (1.14.0 -> 1.14.1) gssdp (1.6.1 -> 1.6.2) gupnp (1.6.1 -> 1.6.2) hplip java-19-openjdk libXdmcp (1.1.3 -> 1.1.4) libXpm (3.5.13 -> 3.5.14) libXrandr (1.5.2 -> 1.5.3) libcontainers-common mozjs102 (102.4.0 -> 102.5.0) mpfr patterns-microos python-Twisted python-rich (12.5.1 -> 12.6.0) python-typing_extensions suse-module-tools (16.0.26 -> 16.0.27) yast2-ntp-client (4.5.1 -> 4.5.2) yast2-online-update (4.5.1 -> 4.5.2) yast2-storage-ng (4.5.13 -> 4.5.14) === Details === ==== Mesa ==== Version update (22.2.3 -> 22.2.4) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - update to 22.2.4: * clover: windows: library filename has \`-1` suffix and a \`lib` prefix when built with mingw * radv, dxvk: Rendering errors in World of Tanks after "Switch to dynamic rendering only" * gen9 gt3e/gt4e skus fail dEQP-VK.pipeline.multisample.sample_locations_ext.* * v3d: Wrong colors (pink) in videos in Firefox (likely YUV->RGB shader issue) * panfrost t860 glmark-es2 regression * radv: Flickering in Spider-Man Remastered (Regression) (Bisected) * radv: Hitman 2 using Direct3D 12 has discolored squares on RDNA2 with DCC enabled * panfrost/midgard - on Duckstation PSX emulator: segfault on GLES 3.0 and bad shader compilations on 3.3 ==== Mesa-drivers ==== Version update (22.2.3 -> 22.2.4) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - update to 22.2.4: * clover: windows: library filename has \`-1` suffix and a \`lib` prefix when built with mingw * radv, dxvk: Rendering errors in World of Tanks after "Switch to dynamic rendering only" * gen9 gt3e/gt4e skus fail dEQP-VK.pipeline.multisample.sample_locations_ext.* * v3d: Wrong colors (pink) in videos in Firefox (likely YUV->RGB shader issue) * panfrost t860 glmark-es2 regression * radv: Flickering in Spider-Man Remastered (Regression) (Bisected) * radv: Hitman 2 using Direct3D 12 has discolored squares on RDNA2 with DCC enabled * panfrost/midgard - on Duckstation PSX emulator: segfault on GLES 3.0 and bad shader compilations on 3.3 ==== bind ==== Version update (9.18.8 -> 9.18.9) - Update to bind release 9.18.9 Bug Fixes: * A crash was fixed that happened when a dnssec-policy zone that used NSEC3 was reconfigured to enable inline-signing. * In certain resolution scenarios, quotas could be erroneously reached for servers, including any configured forwarders, resulting in SERVFAIL answers being sent to clients. * rpz-ip rules in response-policy zones could be ineffective in some cases if a query had the CD (Checking Disabled) bit set to 1. * Previously, if Internet connectivity issues were experienced during the initial startup of named, a BIND resolver with dnssec-validation set to auto could enter into a state where it would not recover without stopping named, manually deleting the managed-keys.bind and managed-keys.bind.jnl files, and starting named again. * The statistics counter representing the current number of clients awaiting recursive resolution results (RecursClients) could overflow in certain resolution scenarios. * Previously, the port in remote servers such as in primaries and parental-agents could be wrongly configured because of an inheritance bug. * Previously, BIND failed to start on Solaris-based systems with hundreds of CPUs. * When a DNS resource record’s TTL value was equal to the resolver’s configured prefetch “eligibility” value, the record was erroneously not treated as eligible for prefetching. ==== flatpak ==== Version update (1.14.0 -> 1.14.1) Subpackages: libflatpak0 system-user-flatpak - Update to version 1.14.1: + New features: Add a httpbackend variable to flatpak.pc, allowing dependent projects like GNOME Software to detect whether they are compatible with libflatpak. + Bugs fixed: - Terminate the flatpak-session-helper and flatpak-portal services when the session ends, so that applications will not inherit outdated Wayland and X11 socket addresses. - When using fish shell, don't overwrite a previously-set XDG_DATA_DIRS. - Don't try to enable HTTP 2 if linked to a libcurl version that doesn't support it. - Stop systemd reporting the session-helper as failed when terminated by a signal. - Fix a warning when listing a document with no permissions. - Fix compilation with GLib 2.66.x (as used in Debian 11). - Fix compilation with GLib 2.58.x (as used in Debian 10). - Fix a compiler warning on 32-bit architectures. - If an app update is blocked by parental controls policies, clean up the temporary deploy directory. - Fix Autotools build with versions of gpgme that no longer provide gpgme-config(1). - When building with Autotools, be more consistent about applying compiler warning flags. - Unset $TEMP, $TEMPDIR and $TMP for apps, the same as $TMPDIR. - Treat /efi the same as /boot/efi. - Make generated files more reproducible. + Updated translations. - Add and recommend a package flatpak-remote-flathub which adds the Flathub repository (boo#1186315) ==== gssdp ==== Version update (1.6.1 -> 1.6.2) - Update to version 1.6.2: + Propagate random port up to client, partial fix for GUPnP/81 + Add manpage for sniffer. - Pass manpages=false to meson, we do not have the needed pandoc BuildRequires available for all arches/buildtargets. ==== gupnp ==== Version update (1.6.1 -> 1.6.2) - Update to version 1.6.2: + Add test for issue 81. + Bugs fixed in this release: - https://gitlab.gnome.org/GNOME/gupnp/issues/81 ==== hplip ==== Subpackages: hplip-hpijs hplip-udev-rules - Update disable_hp-upgrade.patch: Log the 'openSUSE disabled this for security message' is 'info', not 'error'. ==== java-19-openjdk ==== Subpackages: java-19-openjdk-headless - Enable JIT on riscv64 ==== libXdmcp ==== Version update (1.1.3 -> 1.1.4) - Update to version 1.1.4 * Update configure.ac bug URL for gitlab migration * gitlab CI: add a basic build test * Fix build on Solaris 11.3.0 - 11.3.8 * Fix spelling/wording issues * gitlab CI: enable doc builds in basic build test * Use memcpy() instead of memmove() when buffers are known not to overlap * arc4random_buf: Only declare ret if HAVE_GETENTROPY is defined * XdmcpDisposeARRAYofARRAY8: Reduce scope of i * Only link with libbsd if needed for arc4random_buf() * Switch from libbsd to libbsd-overlay ==== libXpm ==== Version update (3.5.13 -> 3.5.14) - Update to version 3.5.14 * Fix spelling/wording issues * man: strip trailing whitespace * gitlab CI: add a basic build test * man pages: Make file names consistent with their displayed names * man pages: Fix shadow man pages * man pages: Make function synopses more consistent with other pages * man pages: Add missing word 'function' where needed * man pages: Fix typos * man pages: Correct Copyright/License notices * add man pages based on doc/xpm.PS * update man pages ==== libXrandr ==== Version update (1.5.2 -> 1.5.3) - Update to version 1.5.3 * Fix spelling/wording issues * gitlab CI: add a basic build test * Xrandr.h: remove misleading comment for XRRGetScreenSizeRange() * XRRGetProviderInfo: Remove unneeded ProviderInfoExtra * Variable scope reductions as recommended by cppcheck * Remove unnecessary casts of return values from malloc() ==== libcontainers-common ==== - add container-storage-driver.sh (bsc#1197093) - postinstall script: slight cleanup, no functional change ==== mozjs102 ==== Version update (102.4.0 -> 102.5.0) - Update to version 102.5.0: + Various stability, functionality, and security fixes. + CVE-2022-45403: Service Workers might have learned size of cross-origin media files. + CVE-2022-45404: Fullscreen notification bypass. + CVE-2022-45405: Use-after-free in InputStream implementation. + CVE-2022-45406: Use-after-free of a JavaScript Realm. + CVE-2022-45408: Fullscreen notification bypass via windowName. + CVE-2022-45409: Use-after-free in Garbage Collection. + CVE-2022-45410: ServiceWorker-intercepted requests bypassed SameSite cookie policy. + CVE-2022-45411: Cross-Site Tracing was possible via non-standard override headers. + CVE-2022-45412: Symlinks may resolve to partially uninitialized buffers. + CVE-2022-45416: Keystroke Side-Channel Leakage. + CVE-2022-45418: Custom mouse cursor could have been drawn over browser UI. + CVE-2022-45420: Iframe contents could be rendered outside the iframe. + CVE-2022-45421: Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5. ==== mpfr ==== - package license files correctly ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Add fonts to KDE pattern, so common unicode characters are displayed on default install (boo#1205546) - Add noto-sans-math-fonts - google-noto-sans-cjk-fonts ==== python-Twisted ==== Subpackages: python310-Twisted python310-Twisted-tls - Skip rpmlint error python-tests-in-package. ==== python-rich ==== Version update (12.5.1 -> 12.6.0) - change Source URL to https://files.pythonhosted.org - change Upstream URL to https://github.com/Textualize/rich - add _service file to easily download this - remove CHANGELOG.md, as this is not present in the PyPI tarball - Update to 12.6.0: * Added - Parse ANSI escape sequences in pretty repr #2470 - Add support for FORCE_COLOR env var #2449 - Allow a max_depth argument to be passed to the install() hook #2486 - Document using None as name in __rich_repr__ for tuple positional args #2379 - Add font_aspect_ratio parameter in SVG export https://github.com/Textualize/rich/pull/2539/files - Added Table.add_section method. #2544 * Fixed - Handle stdout/stderr being null #2513 - Fix NO_COLOR support on legacy Windows #2458 - Fix pretty printer handling of cyclic references #2524 - Fix missing mode property on file wrapper breaking uploads via requests #2495 - Fix mismatching default value of parameter ensure_ascii #2538 - Remove unused height parameter in Layout class #2540 - Fixed exception in Syntax.rich_measure for empty files * Changed - Removed border from code blocks in Markdown ==== python-typing_extensions ==== - Back to multibuild: remove python-testsuite from buildcycle, because of setuptools_scm closing it at the other end. ==== suse-module-tools ==== Version update (16.0.26 -> 16.0.27) - Update to version 16.0.27: * 80-hotplug-cpu-mem.rules: use CONST{arch} (bsc#1204423) ==== yast2-ntp-client ==== Version update (4.5.1 -> 4.5.2) - Fix the netconfig executable path using /sbin/netconfig instead of /usr/sbin/netconfig which is not available in SLE-15-SP5 (bsc#1205401) - 4.5.2 ==== yast2-online-update ==== Version update (4.5.1 -> 4.5.2) Subpackages: yast2-online-update-frontend - bsc#1204907 - Dropped old workaround from 2.13.15 with unconditional refresh of all repositories. - 4.5.2 ==== yast2-storage-ng ==== Version update (4.5.13 -> 4.5.14) - GuidedProposal: support for LUKS2 encryption with a configurable PBKDF to be used by D-Installer (related to jsc#PED-2182). - 4.5.14