Packages changed: AppStream (1.0.0 -> 1.0.1) MozillaFirefox crun (1.12 -> 1.14) cups-filters (1.28.15 -> 1.28.17) drkonqi5 iproute2 (6.6 -> 6.7) kio kio-extras5 ksystemstats5 kwin5 libksysguard5 mutter parted (3.5 -> 3.6) partitionmanager pipewire (1.0.1 -> 1.0.2) plasma5-addons plasma5-workspace python-Mako (1.3.0 -> 1.3.2) python-Twisted runc (1.1.11 -> 1.1.12) sddm xdg-utils === Details === ==== AppStream ==== Version update (1.0.0 -> 1.0.1) Subpackages: libAppStreamQt5-3 libappstream5 - Update to 1.0.1 Bugfixes: * Fix lib name for Qt5 link target * meson: Pass -D_DARWIN_C_SOURCE on darwin * Fix macOS build * stemmer: Resolve potential issue where stemmer may never be initialized * cli: Don't fail what-provides if components were found * Fix query element order for what-provides queries * validator: Demote developer-name-tag-deprecated to info severity for now * content-rating: Fix missing or wrong value descriptions for rating IDs * curl: Add transfer speed timeouts for HTTP downloads * curl: Retry operations on potentially transient errors Miscellaneous: * validator: Improve hint for content-attribute-value-invalid * Allow building without zstd temporarily - Drop patches, merged upstream: * 0001-validator-Demote-developer-name-tag-deprecated-to-in.patch * 0001-content-rating-Fix-missing-or-wrong-value-descriptio.patch * 0001-Fix-lib-name-for-Qt5-link-target.patch - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== MozillaFirefox ==== Subpackages: MozillaFirefox-translations-common - Recommend libfido2-udev on codestreams that exist, in order to try to get security keys (e.g. Yubikeys) work out of the box. (bsc#1184272) ==== crun ==== Version update (1.12 -> 1.14) - update to 1.14: * build: drop dependency on libgcrypt. Use blake3 to compute the cache key. * cpuset: don't clobber parent cgroup value when writing the cpuset value. * linux: force umask(0). It ensures that the mknodat syscall is not affected by the umask of the calling process, allowing file permissions to be set as specified in the OCI configuration. * ebpf: do not require MEMLOCK for eBPF programs. This requirement was relaxed in Linux 5.11. - update to 1.13: * src: use O_CLOEXEC for all open/openat calls * cgroup v1: use "max" when pids limit < 0. * improve error message when idmap mount fails because the underlying file system has no support for it. * libcrun: fix compilation when building without libseccomp and libcap. * fix relative idmapped mount when using the custom annotation. ==== cups-filters ==== Version update (1.28.15 -> 1.28.17) - Version upgrade to 1.28.17 See https://github.com/OpenPrinting/cups-filters/releases Bug fix release, to more reliably discover all printer capablities from driverless printers, especially borderless printing, and to preferably use Apple Raster instead of PWG Raster or PCLM. * libcupsfilters: In PPD generator create only one *cupsFilter2: line for raster. Only use the most desirable/reliable format, usually Apple Raster (Issue #498). * libcupsfilters: In get_printer_attributes() poll media-col-database separately if needed. On some printers one gets media-col-database only this way. Often it reveals important functionality, like for example borderless printing (Issue #492). * libcupsfilters: Let PPD generator also parse media-col-ready IPP attribute. media-col-ready lists the loaded media, in contrary to media-ready, as list of complete descriptions of the media (media-col data structure). This often lists also variants like borderless (it is the same physical paper). Especially useful when media-col-database is not available (Issue #492). * libcupsfilters: In generate_sizes() consider all margin alternatives. When generating the PPD file for a driverless printer, and in the media-{left,right,top,bottom}-margin-supported printer IPP attributes there was more than 1 value, the first value (which often was the 0 for borderless printing) was not considered, leaving the borderless functionality of many printers undiscovered (Issue #492). Issues are those at https://github.com/OpenPrinting/cups-filters/issues - Version upgrade to 1.28.16 See https://github.com/OpenPrinting/cups-filters/releases Bug fix release, to make images be printed in their original size with "print-scaling=none" and to not use deprecated data types for reading TIFF images. * imagetoraster, imagetopdf, libcupsfilters: Added support for reading the resolution of an image from its EXIF data when loading it. This way we get the image reproduced in its original size with "print-scaling=none" (Issue #362). * libcupsfilters: Replaced deprecated data types uint16 and uint32. The function to read TIFF image files via libtiff in cupsfilters/image-tiff.c uses the deprecated types uint16 and uint32. The replacements for these types are uint16_t and uint32_t. Issues are those at https://github.com/OpenPrinting/cups-filters/issues ==== drkonqi5 ==== Subpackages: drkonqi5-lang - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== iproute2 ==== Version update (6.6 -> 6.7) Subpackages: iproute2-bash-completion - Update to release 6.7 * devlink: Support setting port function ipsec_crypto cap and ipsec_packet cap * iplink: bridge: Add support for bridge FDB learning limits * bridge: fdb: support match on source VNI, nexthop ID, destination VNI, destination port, destination IP address and [no]router flag in the flush command * bridge: mdb: Add get support ==== kio ==== Subpackages: kio-core kio-lang - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== kio-extras5 ==== Subpackages: kio-extras5-lang libkioarchive5 - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== ksystemstats5 ==== Subpackages: ksystemstats5-lang - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== kwin5 ==== Subpackages: kwin5-lang - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== libksysguard5 ==== Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang libksysguard5-plugins - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== mutter ==== Subpackages: mutter-lang - Drop mutter-SLE-bsc984738-grab-display.patch: It blocks non-CSD apps with GNOME 45, and the latest LTS Oracle Installer works fine without it, the original bug is not a problem (bsc#1218935). ==== parted ==== Version update (3.5 -> 3.6) Subpackages: libparted-fs-resize0 libparted2 parted-lang - update to version 3.6: - Support GPT partition attribute bit 63 as no_automount flag - Add type commands to set type-id on MS-DOS and type-uuid on GPT - Add swap flag support to the dasd disklabel - Add display of GPT disk and partition UUIDs in JSON output refreshed patches: - parted-mac.patch - libparted-dasd-implicit-partition-disk-flag.patch - tests-disable.patch removed patches: - direct-handling-of-partition-type-id-and-uuid.patch - type-command.patch - libparted-dasd-improve-lvm-raid-flag-handling.patch - libparted-dasd-add-swap-flag-handling-for-DASD-CDL.patch ==== partitionmanager ==== Subpackages: partitionmanager-lang - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== pipewire ==== Version update (1.0.1 -> 1.0.2) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-lang pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.0.2: * Highlights - Fix v4l2 enumeration with filter. This should fix negotiation in some GStreamer pipelines with capsfilter. Also probe for EXPBUF support before using it. - Fix max-latency property and Buffer param when dealing with small ALSA device buffers. This should fix stuttering with some AMD based soundcards. - More small cleanups an improvements. * Modules - Improve netjack2 channel positions. - Improve RAOP module state after suspend/resume. (#3778) - Avoid crash in some LV2 plugins by configuring the Atom ports. (#3815) * SPA - Bump libcamera requirements to 0.2.0. - Try to avoid unaligned load exceptions. (#3790) - Fix v4l2 enumeration with filter. (#1793) - Fix max-latency property and Buffer param when dealing with small ALSA device buffers. This should fix stuttering with some AMD based soundcards. (#3744,#3622) - Add a resync.ms option to node.driver to make it possible to resync fast to clock jumps. - Probe for EXPBUF support in v4l2 before using it. (#3821) * pulse-server - Also emit change events when the port list change. * Bluetooth - Log a more verbose explanation when other soundservers seem to be interfering with bluetooth. - Add quirks for Rockbox Brick. (#3786) - Add quirks for SoundCore mini2. (#2927) * JACK - Improve check for the running state of clients. (#3794) - Drop patches already included by upstream: * 0001-spa-libcamera-use-CameraConfigurationorientation.patch * 0002-spa-libcamera-bump-minimum-supported-version-to-0.2.0.patch ==== plasma5-addons ==== Subpackages: plasma5-addons-lang - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== plasma5-workspace ==== Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== python-Mako ==== Version update (1.3.0 -> 1.3.2) - update to 1.3.2: * Fixed parsing issue where attempting to render a single percent sign % using an escaped percent %% would not function correctly if the escaped percent were not the first character on a line. Note that this is a revised version of a similar change made in Mako 1.3.1 which caused unexpected parsing regressions, resulting in the release being yanked. ==== python-Twisted ==== Subpackages: python311-Twisted python311-Twisted-tls - Add stop-using-3-arg-throw.patch: * Avoid 3-arg throw to fix a DeprecationWarning in Python 3.12. ==== runc ==== Version update (1.1.11 -> 1.1.12) - Update to runc v1.1.12. Upstream changelog is available from . bsc#1218894 * This release fixes a container breakout vulnerability (CVE-2024-21626). For more details, see the upstream security advisory: * Remove upstreamed patches: - CVE-2024-21626.patch * Update runc.keyring to match upstream changes. [ This was only ever released for SLES. ] - Add upstream patch to fix embargoed issue CVE-2024-21626. bsc#1218894 + CVE-2024-21626.patch ==== sddm ==== Subpackages: sddm-branding-openSUSE sddm-greeter-qt5 - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== xdg-utils ==== - Update to version 1.2.0+20240130: * xdg-icon-resource: unbreak syntax by removing stray grave accent (boo#1219420)