Packages changed:
AppStream
AppStream-qt6
SVT-AV1 (2.1.2 -> 2.2.0)
bash (5.2.26 -> 5.2.32)
ffado (2.4.7 -> 2.4.9)
flatpak (1.15.8 -> 1.15.10)
gstreamer-plugins-bad
libdeflate (1.20 -> 1.21)
libinput (1.26.0 -> 1.26.2)
libpng16
librsvg (2.58.2 -> 2.58.3)
libwacom (2.11.0 -> 2.12.2)
libxmlb (0.3.18 -> 0.3.19)
python-SQLAlchemy (2.0.31 -> 2.0.32)
readline (8.2.10 -> 8.2.13)
selinux-policy (20240814 -> 20240816)
systemd (256.4 -> 256.5)
tiff
xen (4.18.2_06 -> 4.19.0_02)
=== Details ===
==== AppStream ====
- BuildRequire gettext-devel instead of gettext: allow OBS to
shortcut through gettext-runtime-mini.
==== AppStream-qt6 ====
- BuildRequire gettext-devel instead of gettext: allow OBS to
shortcut through gettext-runtime-mini.
==== SVT-AV1 ====
Version update (2.1.2 -> 2.2.0)
- Update to release 2.2.0
* Improve the tradeoffs for the random access mode across presets:
* Speedup of ~15% across presets M0 - M8 while maintaining
similar quality levels
* Improve the tradeoffs for the low-delay mode across presets
* Increased temporal resolution setting to 6L for 4k
resolutions by default
* Added ARM optimizations for functions with c_only equivalent
yielding an average speedup of ~13% for 4k10bit
==== bash ====
Version update (5.2.26 -> 5.2.32)
Subpackages: bash-sh
- Add upstream patches
* bash52-027
The configure test for the presence of strtoimax(3) is inverted.
* bash52-028
A DEBUG trap in an asynchronous process can steal the controlling terminal
away from the calling shell, causing it to exit.
* bash52-030
`wait -n' can fail to return some jobs if they exit due to signals the shell
does not report to the user.
* bash52-031
There is a memory leak in the code that implements the optimized $(<file)
expansion for some code paths.
* bash52-032
When printing functions containing coprocesses, the displayed coproc command
has the word COPROC inserted unconditionally, resulting in function bodies
that cannot be re-read as input.
==== ffado ====
Version update (2.4.7 -> 2.4.9)
- Update to version 2.4.9
* Support compilation against musl libc.
* Remove build-time checks for utilities that are not used
(pyuic).
* Install the ffado-mixer appdata file only if ffado-mixer has
been built.
* Add a DATADIR option to scons and use it in line with GNU
conventions.
* Update the AppStream document with more complete information
and in line with current best practice.
* Rename XDG files to match modern standards.
* Install XDG files manually to simplify the build script and
avoid depending on xdg-utils.
- Changes from version 2.4.8
* Make various mixer modules work under Python 3.10 and later:
Presonus Firebox, Presonus FP10, Presonus Inspire1394 and
Yamaha Go.
* Deal with the removal of SafeConfigParser in Python 3.12.
==== flatpak ====
Version update (1.15.8 -> 1.15.10)
Subpackages: flatpak-selinux libflatpak0 system-user-flatpak
- Update to version 1.15.10:
+ Dependencies: In distributions that compile Flatpak to use a
separate bubblewrap (bwrap) executable, version 0.10.0 is
required. This version adds a new feature which is required by
the security fix in this release.
+ Security fixes: Don't follow symbolic links when mounting
persistent directories (--persist option). This prevents a
sandbox escape where a malicious or compromised app could edit
the symlink to point to a directory that the app should not
have been allowed to read or write. (CVE-2024-42472,
GHSA-7hgv-f2j8-xw87)
+ Documentation: Mark the 1.12.x and 1.10.x branches as
end-of-life
+ Other bug fixes: Fix several memory leaks
+ Internal changes:
- Record a log file when running build-time tests with
AddressSanitizer
- Add initial suppressions file for AddressSanitizer
==== gstreamer-plugins-bad ====
Subpackages: libgstadaptivedemux-1_0-0 libgstanalytics-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstinsertbin-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstmse-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0
- Add 85b4fbf40b1d53a4141941abf70d2d4d83eb140e.patch: msdk: replace
strcmp with g_strcmp0. Because strcmp doesn't handle NULL.
==== libdeflate ====
Version update (1.20 -> 1.21)
- update to 1.21:
* Fixed build error on x86 with gcc 8.1 and gcc 8.2.
* Fixed build error on x86 when gcc 11 is paired with a
binutils version that doesn't support AVX-VNNI
e.g. as it is on RHEL 9.
* Fixed build error on arm64 with gcc 6.
* Fixed build error on arm64 with gcc 13.1 and later with some
- mcpu options.
* Enabled detection of dotprod support in Windows ARM64 builds.
==== libinput ====
Version update (1.26.0 -> 1.26.2)
- Update to release 1.26.2
* Added quirks for the LG Gram 14 and the Minisvorum V3
==== libpng16 ====
- Fix missing backslash
==== librsvg ====
Version update (2.58.2 -> 2.58.3)
Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0
- Update to version 2.58.3:
+ A couple of fixes from fuzz testing:
- Fix assertion failures with large Hue value in hsl() or hwb()
colors.
- Limit the baseFrequency for feTurbulence to avoid integer
overflow.
- Remove an obsolete test.
==== libwacom ====
Version update (2.11.0 -> 2.12.2)
Subpackages: libwacom-data libwacom9
- update to 2.12.2
* Device Fixes:
- HUION Kamvas 16 2019
- Prefix the kamvas pro 13 with Huion like all other Huion
tablets
- Fix the Huion Kamvas 12 file
* Device Other:
- Don't create a default match for fallback devices
* Other Fixes:
- Fix a memory leak
- Set the device name in new_from_path() to override the
fallback name
* Tests:
test: run ruff format over test_svg.py
test: add support for testing new_from_path() through uinput
- update to 2.12.1
* Device Fixes:
- Drop the firmware match from the Huion Inspiroy 2 S
* Features:
- Fix off-by-one check for stripping the quote from NAME/UNIQ
- Use g_clear_pointer() during libwacom_*_unref()
- update to 2.12.0
* New Devices:
- Huion Kamvas Pro 24 (GT-240, QHD)
- Huion WH1409
- Wacom Movink
- Wacom HID 49A0 (Dell latitude 5320 2-in-1)
- Wacom HID 5334 Pen
- XP-PEN Deco Mini 4
* Device Fixes:
- Fix tablet file for the Huion Inspiroy 2S
- Improve Huion Inspiroy 2 m support
- Update the Inspiroy 2L
- Add a dial to the Huion Inspiroy 2 L and M
- Fix the Inspiroy 2S layout
- Set the right PID for the Inpspiroy 2 L and M
- Rename second ButtonB id in the DTI-520 svg layout
- Fix Huion RTM-500 Support
- Added more device names for Kamvas 13 variants
- Fix buttons for Huion and Gaomon tablets
- Mark huion/gaomon tablets with Dials as such
- XP pen tablets have no Rings
- Drop accidental comma from the Gaomon/Huion layout files
* Device Other:
- Auto generated HUION tablet description files
- Auto generated GAOMON tablet description files
- Remove layout files without buttons/strips/dials
- Remove a superfluous rect from the huion mini keydial kd100
- Use NumRings instead of separate Ring/Ring2
- Switch DeviceMatch to use a pipe as separator
- Add a firmware string entry to the matches
- Skip over empty Layout= assignments
* Features:
- Rework match_from_string
- Rework the match approach to prefer uniq over name
- Allow to match by uniq without name
- Add Gaomon S620 firmware match
- Add support for relative dials
- Add libwacom_new_from_builder to construct a new device
* Other Fixes:
- Fetch the name and uniq from udev properties, not sysfs
- Keyboard devices are not ID_INPUT_TABLET_PAD
- Don't mark a Mouse device as tablet or pad
- Set the bustype in libwacom_new_for_path
- Document touch strips
* Tests:
- Remove the requirement for a Layout file
- Replace the SVG validity test with a pytest-based one
- Add a test for unnecessary SVGs
- Add some tracing to the svg validity test
- Svgs for dials need to have CW and CCW labels, not Up/Down
- Set proper test names for the hwdb tests
- Skip errors in SVGs for autogenerated devices
- Check the svg for Dial2 if we have two dials
- Skip hwdb tests if the systemd commands fail
- Install our hwdb file during the test
- Add ids to the parametrized tablet file tests
- Add a pytest wrapper for libwacom
- Skip/fail with an error if the systemd commands failed
- Replace the uinput-based hwdb test with a direct query
- Don't reload the udev rules
- Move the asan check into meson.build
* Build:
- Make pytest more verbose
- Bump to meson 0.56.0
- More logging of the pytests
- Split the pytest invocations into separate ones
==== libxmlb ====
Version update (0.3.18 -> 0.3.19)
- update to 0.3.19:
* Add xb_version_string() to get the runtime ABI version
* - Add the runtime version as the default XMLb invalidation
GUID
==== python-SQLAlchemy ====
Version update (2.0.31 -> 2.0.32)
- update to 2.0.32:
* https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.32
==== readline ====
Version update (8.2.10 -> 8.2.13)
- Add upstream patches
* readline82-011
Some systems (e.g., macOS) send signals early on in interactive
initialization, so readline should retry a failed open of the init file.
* readline82-012
If a user happens to bind do-lowercase-version to something that isn't a
capital letter, so _rl_to_lower doesn't change anything and the result is
still bound to do-lowercase-version, readline can recurse infinitely.
* readline82-013
When readline is accumulating bytes until it reads a complete multibyte
character, reading a byte that makes the multibyte character invalid can
result in discarding the bytes in the partial character.
- Port patch readline-8.2.dif
==== selinux-policy ====
Version update (20240814 -> 20240816)
Subpackages: selinux-policy-targeted
- Update to version 20240816:
* Initial policy for syslog-ng (bsc#1229153)
==== systemd ====
Version update (256.4 -> 256.5)
Subpackages: libsystemd0 libudev1 systemd-boot systemd-experimental udev
- Import commit bef0958f4db1b774c23505e93537ffe16f1b3894 (merge of v256.5)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/5bba1ebe17564b606cc5d1c07b14123c305019a7...bef0958f4db1b774c23505e93537ffe16f1b3894
- Make the 32bit version of libudev.so available again (bsc#1228223)
The symlink for building 32bit applications was mistakenly dropped when the
content of libudev-devel was merged into systemd-devel.
Provide the 32bit flavor of systemd-devel again, which should restore the plug
and play support in Wine for 32bit windows applications.
==== tiff ====
- security update:
* CVE-2024-7006 [bsc#1228924]
Fix pointer deref in tif_dirinfo.c
+ tiff-CVE-2024-7006.patch
==== xen ====
Version update (4.18.2_06 -> 4.19.0_02)
- bsc#1228574 - VUL-0: CVE-2024-31145: xen: error handling in x86
IOMMU identity mapping (XSA-460)
66bb6f78-x86-IOMMU-move-tracking-in-iommu_identity_mapping.patch
- bsc#1228575 - VUL-0: CVE-2024-31146: xen: PCI device pass-through
with shared resources (XSA-461)
66bb6fa5-x86-pass-through-document-as-security-unsupported.patch
- Upstream bug fixes (bsc#1027519)
66a8b8ac-bunzip2-rare-failure.patch
- Update to Xen 4.19.0 FCS release (jsc#PED-8907)
xen-4.19.0-testing-src.tar.bz2
- New Features
* On x86:
- Introduce a new x2APIC driver that uses Cluster Logical addressing mode
for IPIs and Physical addressing mode for external interrupts.
* On Arm:
- FF-A notification support.
- Introduction of dynamic node programming using overlay dtbo.
* Add a new 9pfs backend running as a daemon in dom0. First user is
Xenstore-stubdom now being able to support full Xenstore trace capability.
* libxl support for backendtype=tap with tapback.
- Changed Features
* Changed flexible array definitions in public I/O interface headers to not
use "1" as the number of array elements.
* The minimum supported OCaml toolchain version is now 4.05
* On x86:
- HVM PIRQs are disabled by default.
- Reduce IOMMU setup time for hardware domain.
- Allow HVM/PVH domains to map foreign pages.
- Declare PVH dom0 supported with caveats.
* xl/libxl configures vkb=[] for HVM domains with priority over vkb_device.
* Increase the maximum number of CPUs Xen can be built for from 4095 to
16383.
* When building with Systemd support (./configure --enable-systemd), remove
libsystemd as a build dependency. Systemd Notify support is retained, now
using a standalone library implementation.
* xenalyze no longer requires `--svm-mode` when analyzing traces
generated on AMD CPUs
* Code symbol annotations and MISRA compliance improvements.
- Removed Features
* caml-stubdom. It hasn't built since 2014, was pinned to Ocaml 4.02, and has
been superseded by the MirageOS/SOLO5 projects.
* /usr/bin/pygrub symlink. This was deprecated in Xen 4.2 (2012) but left for
compatibility reasons. VMs configured with bootloader="/usr/bin/pygrub"
should be updated to just bootloader="pygrub".
* The Xen gdbstub on x86.
* xentrace_format has been removed; use xenalyze instead.
- Dropped patches contained in new tarball
6617d62c-x86-hvm-Misra-Rule-19-1-regression.patch
6627a4ee-vRTC-UIP-set-for-longer-than-expected.patch
6627a5fc-x86-MTRR-inverted-WC-check.patch
662a6a4c-x86-spec-reporting-of-BHB-clearing.patch
662a6a8d-x86-spec-adjust-logic-to-elide-LFENCE.patch
663090fd-x86-gen-cpuid-syntax.patch
663a383c-libxs-open-xenbus-fds-as-O_CLOEXEC.patch
663a4f3e-x86-cpu-policy-migration-IceLake-to-CascadeLake.patch
663d05b5-x86-ucode-distinguish-up-to-date.patch
663eaa27-libxl-XenStore-error-handling-in-device-creation.patch
66450626-sched-set-all-sched_resource-data-inside-locked.patch
66450627-x86-respect-mapcache_domain_init-failing.patch
6646031f-x86-ucode-further-identify-already-up-to-date.patch
6666ba52-x86-irq-remove-offline-CPUs-from-old-CPU-mask-when.patch
666994ab-x86-SMP-no-shorthand-IPI-in-hotplug.patch
666994f0-x86-IRQ-limit-interrupt-movement-in-fixup_irqs.patch
666b07ee-x86-EPT-special-page-in-epte_get_entry_emt.patch
666b0819-x86-EPT-avoid-marking-np-ents-for-reconfig.patch
666b085a-x86-EPT-drop-questionable-mfn_valid-from-.patch
667187cc-x86-Intel-unlock-CPUID-earlier.patch
66718849-x86-IRQ-old_cpu_mask-in-fixup_irqs.patch
6671885e-x86-IRQ-handle-moving-in-_assign_irq_vector.patch
6672c846-x86-xstate-initialisation-of-XSS-cache.patch
6672c847-x86-CPUID-XSAVE-dynamic-leaves.patch
6673ffdc-x86-IRQ-forward-pending-to-new-dest-in-fixup_irqs.patch
xsa458.patch
- Enable support for ZSTD and LZO compression formats