Packages changed: Mesa Mesa-drivers NetworkManager-openvpn ceph (16.2.15.74+gc5dd01a91d8 -> 16.2.15.82+gc12b9a96bd8) dracut (059+suse.679.g7559201e -> 059+suse.688.g840b9751) ell (0.71 -> 0.73) emacs (29.4 -> 30.1) espeak-ng freetype2 (2.13.2 -> 2.13.3) gimp gnome-shell (47.4 -> 47.5) gnome-terminal (3.54.3 -> 3.54.4) grub2 harfbuzz (10.3.0 -> 10.4.0) kdump (2.0.16 -> 2.0.17) kernel-firmware-amdgpu (20250219 -> 20250302) kernel-firmware-sound (20250219 -> 20250302) libheif (1.19.5 -> 1.19.7) libmediaart (1.9.6 -> 1.9.7) libstorage-ng (4.5.241 -> 4.5.242) libvirt (11.0.0 -> 11.1.0) multipath-tools (0.11.0+164+suse.24eeee7 -> 0.11.0+183+suse.3973293) mutter (47.5 -> 47.6) nftables npth openSUSE-build-key openSUSE-release (20250304 -> 20250306) osinfo-db patterns-base plasma6-workspace python-libvirt-python (11.0.0 -> 11.1.0) qt6-wayland sdbootutil (1+git20250303.63ae770 -> 1+git20250305.278a563) systemd virt-v2v (2.7.6 -> 2.7.7) vte (0.78.3 -> 0.78.4) wtmpdb (0.71.0+git20250206.608632a -> 0.72.0+git20250305.10803fd) xdm xen yast2-bootloader (5.0.14 -> 5.0.15) yast2-network (5.0.4 -> 5.0.5) yast2-samba-client (5.0.1 -> 5.0.2) yast2-trans (84.87.20250221.72f607339a -> 84.87.20250302.f9b2398900) zsh === Details === ==== Mesa ==== Subpackages: Mesa-libEGL1 Mesa-libGL1 libgbm1 - don't obsolete Mesa-libglapi0 on s390x since this is still on Mesa 24.1.7 ==== Mesa-drivers ==== Subpackages: Mesa-dri Mesa-gallium Mesa-libva - don't obsolete Mesa-libglapi0 on s390x since this is still on Mesa 24.1.7 ==== NetworkManager-openvpn ==== Subpackages: NetworkManager-applet-openvpn - Add nm-openvpn-fix-crash.patch: service: fix a crash when empty password is provided (glgo#GNOME/NetworkManager-openvpn!92, bsc#1237570). ==== ceph ==== Version update (16.2.15.74+gc5dd01a91d8 -> 16.2.15.82+gc12b9a96bd8) Subpackages: librados2 librbd1 - Update to 16.2.15-82-gc12b9a96bd8: + ceph.spec.in: remove "Obsoletes: libcephfs1" (boo#1237420) + Suport Python 3.13 ==== dracut ==== Version update (059+suse.679.g7559201e -> 059+suse.688.g840b9751) - Update to version 059+suse.688.g840b9751: * fix(iscsi): make sure services are shut down when switching root (bsc#1237695) * fix(iscsi): don't require network setup for qedi * fix(90kernel-modules): explicitly include xhci-pci-renesas (bsc#1238258) * fix(network-legacy): do not require pgrep when using wicked (bsc#1236982) ==== ell ==== Version update (0.71 -> 0.73) - Update to release 0.73 * Add support for the Test Anything Protocol. * Fix issue with parsing hwdb.bin child structures. ==== emacs ==== Version update (29.4 -> 30.1) Subpackages: emacs-el emacs-eln emacs-info emacs-nox etags - Add patch emacs-30.1-seccomp.patch * Allow also to get attributes of the terminal line as well as support mmap(2) flag MAP_DROPPABLE to allow zero memory under memory pressure. - Disable xwidgets of GTK port for now as webkit2gtk has a regression https://bugs.webkit.org/show_bug.cgi?id=289081 - Update to GNU Emacs version 30.1 (boo#1237518) * On GNU/Linux, Emacs is now the default application for 'org-protocol'. Org mode provides a way to quickly capture bookmarks, notes, and links using 'emacsclient': emacsclient "org-protocol://store-link?url=URL&title=TITLE" * New variable lets Lisp code read emacsclient arguments. When '--eval' is passed to emacsclient and Emacs is evaluating each argument, the new variable 'server-eval-args-left' is set to those arguments not yet evaluated * Tree-Sitter modes are now declared as submodes of the non-TS modes. * Mouse wheel events should now always be 'wheel-up/down/left/right'. * 'completion-auto-help' now affects 'icomplete-in-buffer'. * The "*Completions*" buffer now always accompanies 'icomplete-in-buffer'. * The default process filter was rewritten in native code. * Network Security Manager now warns about 3DES by default. * Network Security Manager now warns about <2048 bits in DH key exchange. * URL now never sends user email addresses in HTTP requests. * Fix shell injection vulnerability in man.el (CVE-2025-1244). * New user option 'trusted-content' to allow potentially dangerous features. This option is used to fix CVE-2024-53920. - Remove obsolete patches * CVE-2025-1244.patch * emacs-25.2-ImageMagick7.patch * emacs-27.1-Xauthority4server.patch * emacs-29.4-boo1234673.patch * emacs-CVE-2024-53920.patch * emacs-gcc14.patch - Port patches * emacs-24.1-ps-mule.patch * emacs-24.3-asian-print.patch * emacs-24.3-iconic.patch * emacs-24.4-flyspell.patch * emacs-24.4-nonvoid.patch * emacs-24.4-ps-bdf.patch * emacs-27.1-pdftex.patch * emacs-29.1.dif * pdump.patch ==== espeak-ng ==== - Add TextToPhonemesWithTerminator to support piper tts * Added espeak-ng-add-piper-support.patch ==== freetype2 ==== Version update (2.13.2 -> 2.13.3) - update to 2.13.2: * Some fields in the `FT_Outline` structure have been changed from signed to unsigned type, which better reflects the actual usage. It is also an additional means to protect against malformed input. * Rare double-free crashes in the cache subsystem have been fixed. * Excessive stack allocation in the autohinter has been fixed. * The B/W rasterizer has received a major upkeep that results in large performance improvements. The rendering speed has increased and even doubled for very complex glyphs. ==== gimp ==== Subpackages: gimp-plugin-aa gimp-plugin-python3 libgimp-3_0-0 libgimpui-3_0-0 - Remove obsolete translation-update-upstream support (jsc#SLE-21105). ==== gnome-shell ==== Version update (47.4 -> 47.5) Subpackages: gnome-extensions gnome-shell-calendar - Update to version 47.5: + Fix occasional stacking glitch during overview transition + Misc. bug fixes and cleanups + Updated translations. ==== gnome-terminal ==== Version update (3.54.3 -> 3.54.4) Subpackages: gnome-shell-search-provider-gnome-terminal nautilus-extension-terminal - Update to version 3.54.4: * util: xte: Check more directories for desktop files * desktop: Add entries for newest xte * util: Lowercase desktop names * tests: Add test binary to check default terminal implementation * Update German translation * build: Use vte-0-78 branch * Revert "metainfo: Add developer info" * metainfo: Add developer info ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-common grub2-snapper-plugin grub2-systemd-sleep-plugin - Cherry-pick upstream XFS fixes * 0001-fs-xfs-Add-new-superblock-features-added-in-Linux-6..patch * 0002-fs-xfs-Fix-grub_xfs_iterate_dir-return-value-in-case.patch - Fix "attempt to read of write outside of partition" error message (bsc#1237844) * 0003-fs-xfs-fix-large-extent-counters-incompat-feature-su.patch ==== harfbuzz ==== Version update (10.3.0 -> 10.4.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - Update to version 10.4.0: + Drawing glyphs using hb-draw API now avoids any “malloc” calls, which improves drawing performance by 10+%. + Add support new “GVAR” table fonts with more than 65535 glyphs. Support is currently behind a compilation flag and is disabled by default. + Some hb-directwrite and hb-ft APIs got renamed with more clear names and the old names are deprecated. + Various build and fuzzing fixes. + New API: - +hb_directwrite_face_get_dw_font_face() - +hb_ft_font_get_ft_face() + Deprecated API: - +hb_directwrite_face_get_font_face() - +hb_ft_font_get_face() ==== kdump ==== Version update (2.0.16 -> 2.0.17) - upgrade to version 2.0.17 * fix bonding options (bsc#1235933) * don't use wicked to read bond and bridge config * prevent KDUMP_NET_TIMEOUT busy loop when DNS fails * limit dump file permissions (bsc#1237497, bsc#1237529) ==== kernel-firmware-amdgpu ==== Version update (20250219 -> 20250302) - Update to version 20250302 (git commit 76e258534a5d): * amdgpu: DMCUB updates for various ASICs * amdgpu: DCUB update for DCN401 and DCN315 ==== kernel-firmware-sound ==== Version update (20250219 -> 20250302) - Update to version 20250302 (git commit 76e258534a5d): * cirrus: cs35l41: Add firmware and tunings for CS35L41 driver for Steam Deck ==== libheif ==== Version update (1.19.5 -> 1.19.7) Subpackages: gdk-pixbuf-loader-libheif libheif-aom libheif-dav1d libheif-ffmpeg libheif-jpeg libheif-openjpeg libheif-rav1e libheif-svtenc libheif1 - update to 1.19.7: * Fixes a build error with SVT-AV1 encoder plugin when using reduced symbol visibility - update to 1.19.6: * C++ and Go wrapper licenses have been changed to MIT * supports SVT-AV1 v3.0.0 encoder * support emscripten builds for ES6 modules - Use correct license (these were changed in 2018) - Remove 0001-support-SVT-AV1-3.0.0.patch (no longer needed) ==== libmediaart ==== Version update (1.9.6 -> 1.9.7) Subpackages: libmediaart-2_0-0 typelib-1_0-MediaArt-2_0 - Update to version 1.9.7: + Fix memory leaks and compiler warnings. ==== libstorage-ng ==== Version update (4.5.241 -> 4.5.242) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#1019 - fixed post create verify for named MD RAIDs - 4.5.242 ==== libvirt ==== Version update (11.0.0 -> 11.1.0) Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Update to libvirt 11.1.0 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html#v11-1-0-2025-03-03 ==== multipath-tools ==== Version update (0.11.0+164+suse.24eeee7 -> 0.11.0+183+suse.3973293) Subpackages: kpartx libmpath0 - Update to version 0.11.0+183+suse.3973293: * multipathd: fix hang during shutdown with queuing maps (bsc#1238484). This adds multipathd-queueing.service. * multipath-tools: make multipathd listen on a pathname socket (/run/multipathd.socket) besides listening on an abstract socket. This allows connecting to multipathd from a containerized application (gh#opensvc/multipath-tools#111). In client mode, applications linked against libmpathcmd will attempt to connect to the pathname socket first, and to the abstract socket if this fails. The MULTIPATH_SOCKET_NAME environment variable can be used to override the socket name. * multipathd: trigger uevents for blacklisted paths in reconfigure (bsc#1236321) * libmultipath: remove buggy reinstate_paths function ==== mutter ==== Version update (47.5 -> 47.6) - Update to version 47.6: + Support presentation-time version 2 + Honor wl_surface.offset on cursor surfaces + Fix sharable surfaces with nvidia as primary + Fixed crash ==== nftables ==== Subpackages: libnftables1 python311-nftables - Add 0001-tools-add-a-systemd-unit-for-static-rulesets.patch [boo#1237277] ==== npth ==== - specfile: update license to LGPL-2.1-or-later ==== openSUSE-build-key ==== - changed keys to use SHA256 UIDs instead of SHA1. (bsc#1237294 bsc#1236779 jsc#PED-12321) - gpg-pubkey-3fa1d6ce-67c856ee.asc to gpg-pubkey-09d9ea69-67c857f3.asc - gpg-pubkey-09d9ea69-645b99ce.asc to gpg-pubkey-3fa1d6ce-63c9481c.asc ==== openSUSE-release ==== Version update (20250304 -> 20250306) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== osinfo-db ==== - Modify SLES and Leap 16 database entries to define new volume id of Agama 12 ISOs (bsc#1236401) add-sles16-support.patch add-opensuse-leap-16.0-support.patch - Add for SLES 16 / Leap 16, add-sles16-support.patch add-opensuse-leap-16.0-support.patch ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-x11 patterns-base-x11_enhanced - Ensure btrfsmaintenance is required by transactional_base (bsc#1238405). - Ensure less, sudo (bsc#1238409) and iputils (bsc#1238371) are required in transactional_base pattern for SLFO. - Ensure branding is also requires on SLFO / SLE16. - patterns-base-transactional_base: requires toolbox-branding-SLE on SL-Micro (bsc#1232346) - Disable x11 / x11_enhanced / basic_desktop on SLFO, we don't ship X11 server. - Disable 32bit patterns on SLFO. ==== plasma6-workspace ==== Subpackages: plasma6-session plasma6-session-x11 plasma6-workspace-libs sddm-qt6-branding-openSUSE - Pull in libqt5-qtwayland if Qt 5 is installed (boo#1224995) ==== python-libvirt-python ==== Version update (11.0.0 -> 11.1.0) - Update to 11.1.0 - Add all new APIs and constants in libvirt 11.1.0 ==== qt6-wayland ==== Subpackages: libQt6WaylandClient6 libQt6WaylandCompositor6 libQt6WaylandEglClientHwIntegration6 libQt6WaylandEglCompositorHwIntegration6 libQt6WlShellIntegration6 - Add patch to fix failures when drag'n'drop in the task manager * fix-taskbar.patch ==== sdbootutil ==== Version update (1+git20250303.63ae770 -> 1+git20250305.278a563) Subpackages: sdbootutil-dracut-measure-pcr sdbootutil-snapper - Update to version 1+git20250305.278a563: * Revert "Remove .conf suffix from grubenv (bsc#1237198)" * Drop unused parentheses * Fix name of local variable - Update to version 1+git20250304.16b1e1b: * Fix location of initial boot entries * Set keyslot as local * Style changes ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-boot systemd-container systemd-experimental udev - Name libsystemd-{shared,core} based on the major version of systemd and the package release number (bsc#1228081) This way, both the old and new versions of these shared libraries will be present during the update. This should prevent issues during package updates when incompatible changes are introduced in the new versions of these shared libraries. Note: these libraries are private so only binaries shipped by systemd and its sub-packages can be linked against them. - Move 20-systemd-stub.conf tmpfiles.d from the systemd-boot package to the systemd main package, as it is needed in the initrd to copy stuff from /.extra to /run/systemd/stub. Installing systemd-boot in the initrd is not the right approach, as that pulls in the bootloader and other files that have no use in the initrd and just take up space. The main package is always in the initrd, so it's the right place to ensure that, if systemd-boot is used, the snippet is present, and it will be a no-op otherwise. ==== virt-v2v ==== Version update (2.7.6 -> 2.7.7) Subpackages: virt-v2v-bash-completion - Update to virt-v2v 2.7.7 (jsc#PED-8910) * convert: Drop kmod-xenpv-* handling * Remove more RHEL 3 support * convert: Handle large output from 'rpm -ql' command * mlcustomize: Drop old virtio-win dir name scraping ==== vte ==== Version update (0.78.3 -> 0.78.4) Subpackages: libvte-2_91-0 typelib-1_0-Vte-2_91 - Update to version 0.78.4: * widget: gtk4: Fix critical warning on a11y init * build: Post release version bump * ci: Add CI * widget: Guard signal disconnect on non-null object * widget: Scroll the alternate screen into the viewport * build: Post release version bump * build: Fix typo in pread check * lib: Remove an unnecessary move * emulation: Use U+2426 for SUB * widget: Use correct type for out param ==== wtmpdb ==== Version update (0.71.0+git20250206.608632a -> 0.72.0+git20250305.10803fd) Subpackages: libwtmpdb0 - Update to version 0.72.0+git20250305.10803fd: * Release version 0.72.0 * i386: fix integer format length errors * Add utmp format importer * Fix wtmp database path in documentation * test: schedule test logins on correct day * rotate: don't throw away microseconds calculating threshold ==== xdm ==== Subpackages: displaymanager-sysconfig - Make build recipe compatible with POSIX sh. ==== xen ==== Subpackages: xen-libs xen-tools-domU - Update to Xen 4.20.0 FCS release (jsc#PED-8907) * See release candidate changelog entries below for 4.20.0 * Reduce xenstore library dependencies. * Enable CONFIG_UBSAN (Arm64, x86, PPC, RISC-V) for GitLab CI. * Support for Intel EPT Paging-Write Feature. * AMD Zen 5 CPU support, including for new hardware mitigations for the SRSO speculative vulnerability. - bsc#1238043 - VUL-0: CVE-2025-1713: xen: deadlock potential with VT-d and legacy PCI device pass-through (XSA-467) This fix is part of the final tarball - Remove references to vm-install from README.SUSE ==== yast2-bootloader ==== Version update (5.0.14 -> 5.0.15) - Enabled secure boot for grub2-bls (jsc#PED-10703). ==== yast2-network ==== Version update (5.0.4 -> 5.0.5) - Added a warn about a possible problem with the configured bond ports configuration using a MAC based renaming schema allowing the user to change all of them to use the BusID. (bsc#1233653) - 5.0.5 ==== yast2-samba-client ==== Version update (5.0.1 -> 5.0.2) - Fix on AD join error "Failed to join domain: failed to create kerberos keytab"; (bsc#1238063);(bso#15727). - 5.0.1 ==== yast2-trans ==== Version update (84.87.20250221.72f607339a -> 84.87.20250302.f9b2398900) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20250302.f9b2398900: * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Added translation using Weblate (Swedish) * Translated using Weblate (Swedish) * Added translation using Weblate (Swedish) - Make build recipe POSIX sh compatible - Trim old specfile constructs ==== zsh ==== - Fix bsc#1226450. Placing skip_global_compinit=1 in your $ZDOTDIR/.zshenv disables compinit from being called - Applied solution for boo#1227119. In case you configured hostnames in ~/.ssh/config file, now TAB completion is working as expected. - Adding zsh-ac1fd06d7ce073c86f00d50fd74464bcb5194e97.patch to fix a segmentation fault. 53146: flags cannot be copied from an undefined function