Packages changed: ImageMagick (7.1.1.29 -> 7.1.1.30) apache2-mod_php8 (8.3.4 -> 8.3.6) editorconfig-core-c (0.12.6 -> 0.12.7) file-roller (44 -> 44.1) grub2 gtk3 inxi (3.3.33+3 -> 3.3.34) kernel-source (6.8.5 -> 6.8.6) libeconf (0.6.2 -> 0.6.3) libostree (2024.4 -> 2024.5) libzypp (17.32.2 -> 17.32.3) lirc ncurses (6.4.20240323 -> 6.4.20240414) openSUSE-release (20240415 -> 20240416) openssh opus (1.5.1 -> 1.5.2) php8 (8.3.4 -> 8.3.6) transmission vim (9.1.0301 -> 9.1.0330) yast2-trans (84.87.20240407.b46e9ca4fd -> 84.87.20240414.d73f60d6af) zypper (1.14.70 -> 1.14.71) === Details === ==== ImageMagick ==== Version update (7.1.1.29 -> 7.1.1.30) Subpackages: libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - relax list-length resource limit, fixes build of python-Wand % ImageMagick-configuration-SUSE.patch - version update to 7.1.1.30 * install perl module into user-specified prefix by @bugfood in #7192 * Fix bmp option to bypass file size check by @OnTheList-1 in #7194 * add support for encoding/decoding ultrahdr images by @aayushsoni111 in #7198 * Updates to uhdr.c by @aayushsoni111 in #7217 - added patches fix https://github.com/ImageMagick/ImageMagick/issues/7230 + ImageMagick-wmflite-detection.patch ==== apache2-mod_php8 ==== Version update (8.3.4 -> 8.3.6) - version update to 8.3.6 Core: Fixed GH-13569 (GC buffer unnecessarily grows up to GC_MAX_BUF_SIZE when scanning WeakMaps). Fixed bug GH-13612 (Corrupted memory in destructor with weak references). Fixed bug GH-13446 (Restore exception handler after it finishes). Fixed bug GH-13784 (AX_GCC_FUNC_ATTRIBUTE failure). Fixed bug GH-13670 (GC does not scale well with a lot of objects created in destructor). DOM: Add some missing ZPP checks. Fix potential memory leak in XPath evaluation results. FPM: Fixed GH-11086 (FPM: config test runs twice in daemonised mode). Fix incorrect check in fpm_shm_free(). GD: Fixed bug GH-12019 (add GDLIB_CFLAGS in feature tests). Gettext: Fixed sigabrt raised with dcgettext/dcngettext calls with gettext 0.22.5 with category set to LC_ALL. MySQLnd: Fix GH-13452 (Fixed handshake response [mysqlnd]). Fix incorrect charset length in check_mb_eucjpms(). Opcache: Fixed GH-13508 (JITed QM_ASSIGN may be optimized out when op1 is null). Fixed GH-13712 (Segmentation fault for enabled observers when calling trait method of internal trait when opcache is loaded). Random: Fixed bug GH-13544 (Pre-PHP 8.2 compatibility for mt_srand with unknown modes). Fixed bug GH-13690 (Global Mt19937 is not properly reset in-between requests when MT_RAND_PHP is used). Session: Fixed bug GH-13680 (Segfault with session_decode and compilation error). SPL: Fixed bug GH-13685 (Unexpected null pointer in zend_string.h). Standard: Fixed bug GH-11808 (Live filesystem modified by tests). Fixed GH-13402 (Added validation of `\n` in $additional_headers of mail()). Fixed bug GH-13203 (file_put_contents fail on strings over 4GB on Windows). Fixed bug GHSA-pc52-254m-w9w7 (Command injection via array-ish $command parameter of proc_open). (CVE-2024-1874) Fixed bug GHSA-wpj3-hf5j-x4v4 (__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix). (CVE-2024-2756) Fixed bug GHSA-h746-cjrr-wfmr (password_verify can erroneously return true, opening ATO risk). (CVE-2024-3096) Fixed bug GHSA-fjp9-9hwx-59fq (mb_encode_mimeheader runs endlessly for some inputs). (CVE-2024-2757) Fix bug GH-13932 (Attempt to fix mbstring on windows build) (msvc). ==== editorconfig-core-c ==== Version update (0.12.6 -> 0.12.7) - update to 0.12.7: * Fix pointer overflow in STRING_CAT * Fix a few more stack buffer overflows - drop HTML docs and editorconfig-core-c-0.12.1-install_paths.patch - drop editorconfig-core-c-0.12.1-no_timestamp.patch, upstream ==== file-roller ==== Version update (44 -> 44.1) Subpackages: file-roller-lang - Update to version 44.1: + Feature: New archive dialog: allow to choose a location without changing name. + Bugfixes: - Fixed adding multiple files on a 'drop' event. - Show the options dialog when adding files in batch mode. - Appdata: Add 44.0 release. + Updated translations. ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - Fix the compatibility issue with bash-completion 2.12 (bsc#1221849) * 0001-util-bash-completion-Fix-for-bash-completion-2.12.patch - Fix os name is used for root file system mount (bsc#1220949) * 0001-10_linux-Ensure-persistence-of-root-file-system-moun.patch - Fix LPAR falls into grub shell after installation with lvm (bsc#1221866) * 0001-ofdisk-Enhance-canonical-path-handling-for-bootpath.patch - Correct the erroneous sequence in determining GRUB_FS and GRUB_DEVICE (bsc#1221904) * grub2-pass-corret-root-for-nfsroot.patch - Fix memdisk becomes the default boot entry, resolving no graphic display device error in guest vnc console (bsc#1221779) * grub2-xen-pv-firmware.cfg - Cleanup spec file to adhere to update-bootloader-rpm-macros definition entirely (bsc#1218241) - Add grub2-bsc1220338-key_protector-implement-the-blocklist.patch to implement a blocklist in the key protector and check the unwanted UEFI variables (bsc#1220338) ==== gtk3 ==== Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-immodule-xim gtk3-lang gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - BuildRequire gettext-devel instead of gettext-tools-mini: the - devel provides is part of gettext-tools, but this allows OBS to pick the package it deems correct. ==== inxi ==== Version update (3.3.33+3 -> 3.3.34) - Updated to version 3.3.34: + This is a nice point release that corrects and updates numerous smaller, and larger, features. Most pressing in terms of numbers affected was the failure to detect in display, non console, for Wayland without Xwayland running. ==== kernel-source ==== Version update (6.8.5 -> 6.8.6) - Linux 6.8.6 (bsc#1012628). - amdkfd: use calloc instead of kzalloc to avoid integer overflow (bsc#1012628). - wifi: ath9k: fix LNA selection in ath_ant_try_scan() (bsc#1012628). - wifi: rtw89: fix null pointer access when abort scan (bsc#1012628). - bnx2x: Fix firmware version string character counts (bsc#1012628). - net: stmmac: dwmac-starfive: Add support for JH7100 SoC (bsc#1012628). - net: phy: phy_device: Prevent nullptr exceptions on ISR (bsc#1012628). - wifi: rtw89: pci: validate RX tag for RXQ and RPQ (bsc#1012628). - wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor (bsc#1012628). - VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() (bsc#1012628). - wifi: iwlwifi: pcie: Add the PCI device id for new hardware (bsc#1012628). - arm64: dts: qcom: qcm6490-idp: Add definition for three LEDs (bsc#1012628). - net: dsa: qca8k: put MDIO controller OF node if unavailable (bsc#1012628). - arm64: dts: qcom: qrb2210-rb1: disable cluster power domains (bsc#1012628). - printk: For @suppress_panic_printk check for other CPU in panic (bsc#1012628). - panic: Flush kernel log buffer at the end (bsc#1012628). - dump_stack: Do not get cpu_sync for panic CPU (bsc#1012628). - wifi: iwlwifi: pcie: Add new PCI device id and CNVI (bsc#1012628). - cpuidle: Avoid potential overflow in integer multiplication (bsc#1012628). - ARM: dts: rockchip: fix rk3288 hdmi ports node (bsc#1012628). - ARM: dts: rockchip: fix rk322x hdmi ports node (bsc#1012628). - arm64: dts: rockchip: fix rk3328 hdmi ports node (bsc#1012628). - arm64: dts: rockchip: fix rk3399 hdmi ports node (bsc#1012628). - net: add netdev_lockdep_set_classes() to virtual drivers (bsc#1012628). - arm64: dts: qcom: qcs6490-rb3gen2: Declare GCC clocks protected (bsc#1012628). - pmdomain: ti: Add a null pointer check to the omap_prm_domain_init (bsc#1012628). - pmdomain: imx8mp-blk-ctrl: imx8mp_blk: Add fdcc clock to hdmimix domain (bsc#1012628). - ACPI: resource: Add IRQ override quirk for ASUS ExpertBook B2502FBA (bsc#1012628). - ionic: set adminq irq affinity (bsc#1012628). - net: skbuff: add overflow debug check to pull/push helpers (bsc#1012628). - firmware: tegra: bpmp: Return directly after a failed kzalloc() in get_filename() (bsc#1012628). - wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro (bsc#1012628). - wifi: mt76: mt7915: add locking for accessing mapped registers (bsc#1012628). - wifi: mt76: mt7996: disable AMSDU for non-data frames (bsc#1012628). - wifi: mt76: mt7996: add locking for accessing mapped registers (bsc#1012628). - ACPI: x86: Move acpi_quirk_skip_serdev_enumeration() out of CONFIG_X86_ANDROID_TABLETS (bsc#1012628). - ACPI: x86: Add DELL0501 handling to acpi_quirk_skip_serdev_enumeration() (bsc#1012628). - pstore/zone: Add a null pointer check to the psz_kmsg_read (bsc#1012628). - tools/power x86_energy_perf_policy: Fix file leak in get_pkg_num() (bsc#1012628). - net: pcs: xpcs: Return EINVAL in the internal methods (bsc#1012628). - dma-direct: Leak pages on dma_set_decrypted() failure (bsc#1012628). - iommu/arm-smmu-v3: Hold arm_smmu_asid_lock during all of attach_dev (bsc#1012628). - cpufreq: Don't unregister cpufreq cooling on CPU hotplug (bsc#1012628). - overflow: Allow non-type arg to type_max() and type_min() (bsc#1012628). - wifi: cfg80211: check A-MSDU format more carefully (bsc#1012628). - btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks() (bsc#1012628). - btrfs: export: handle invalid inode or root reference in btrfs_get_parent() (bsc#1012628). - btrfs: send: handle path ref underflow in header iterate_inode_ref() (bsc#1012628). - ice: use relative VSI index for VFs instead of PF VSI number (bsc#1012628). - net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() (bsc#1012628). - netdev: let netlink core handle -EMSGSIZE errors (bsc#1012628). - Bluetooth: btintel: Fix null ptr deref in btintel_read_version (bsc#1012628). - Bluetooth: Add new quirk for broken read key length on ATS2851 (bsc#1012628). - drm/vc4: don't check if plane->state->fb == state->fb (bsc#1012628). - drm/ci: uprev mesa version: fix kdl commit fetch (bsc#1012628). ... changelog too long, skipping 161 lines ... - commit 15f7a16 ==== libeconf ==== Version update (0.6.2 -> 0.6.3) Subpackages: libeconf0 libeconf0-32bit - Update to version 0.6.3: * Fix build with musl libc on ppc64le (#198) * Creating static library with new package libeconf-devel-static. This is needed for building package util-linux and btrfsprogs. ==== libostree ==== Version update (2024.4 -> 2024.5) Subpackages: libostree-1-1 - update to 2024.5: + sepolicy: Fix publicity mismatch for ostree_sepolicy_host_enabled + main: Ignore SIGPIPE when printing version + otcore: Drop config load print + bootloader/grub2: Don't do anything if we have static configs + sysroot: Turn on bootloader-naming-2 by default + kargs: parse spaces in kargs input and keep quotes + Ensure boot directory is open before accessing it for early pruning + checkout: Always replace existing content with overlay mode ==== libzypp ==== Version update (17.32.2 -> 17.32.3) - Update RepoStatus fromCookieFile according to the files mtime (bsc#1222086) - TmpFile: Don't call chmod if makeSibling failed. - version 17.32.3 (32) ==== lirc ==== - remove dependency on /usr/bin/python3 using %python3_fix_shebang{,_path} macros, [bsc#1212476] ==== ncurses ==== Version update (6.4.20240323 -> 6.4.20240414) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20240414 + build/bug-fix for check-size feature (reports by Sam James, Gabriele Balducci). - Add ncurses patch 20240413 + improve formatting/style of manpages (patches by Branden Robinson). + provide for padding in check-size feature, using new_prescr() to pass interim SCREEN pointer. + complete change for opaque options (Gentoo #928973, cf: 20231021). + update package /debian/rules and related lintian overrides + revise progs.priv.h to provide for NC_ISATTY reuse - Add ncurses patch 20240330 + remove masking of ISIG in cbreak() (report by Benno Schulenberg). + modify test/test_mouse.c to use curses api for raw/noraw. > improved configure macros from other program development: + build-fix for clang on Solaris + suppress filename/timestamp in gzip'd manpages (suggested for byacc by Andrin Geiger) ==== openSUSE-release ==== Version update (20240415 -> 20240416) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - openssh-8.0p1-gssapi-keyex.patch: Added missing struct initializer, added missing parameter (bsc#1222840) - Make openssh-server recommend the openssh-server-config-rootlogin package in SLE in order to keep the same behaviour of previous SPs where the PermitRootLogin default was set to yes (bsc#1221005). - Fix crypto-policies requirement to be set by openssh-server, not the config-rootlogin subpackage. - Add back %config(noreplace) tag for more config files that were already set like this in previous SPs. ==== opus ==== Version update (1.5.1 -> 1.5.2) - Update to 1.5.2: * fix build issues and bugs for other platforms ==== php8 ==== Version update (8.3.4 -> 8.3.6) Subpackages: php8-ctype php8-dom php8-iconv php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - version update to 8.3.6 Core: Fixed GH-13569 (GC buffer unnecessarily grows up to GC_MAX_BUF_SIZE when scanning WeakMaps). Fixed bug GH-13612 (Corrupted memory in destructor with weak references). Fixed bug GH-13446 (Restore exception handler after it finishes). Fixed bug GH-13784 (AX_GCC_FUNC_ATTRIBUTE failure). Fixed bug GH-13670 (GC does not scale well with a lot of objects created in destructor). DOM: Add some missing ZPP checks. Fix potential memory leak in XPath evaluation results. FPM: Fixed GH-11086 (FPM: config test runs twice in daemonised mode). Fix incorrect check in fpm_shm_free(). GD: Fixed bug GH-12019 (add GDLIB_CFLAGS in feature tests). Gettext: Fixed sigabrt raised with dcgettext/dcngettext calls with gettext 0.22.5 with category set to LC_ALL. MySQLnd: Fix GH-13452 (Fixed handshake response [mysqlnd]). Fix incorrect charset length in check_mb_eucjpms(). Opcache: Fixed GH-13508 (JITed QM_ASSIGN may be optimized out when op1 is null). Fixed GH-13712 (Segmentation fault for enabled observers when calling trait method of internal trait when opcache is loaded). Random: Fixed bug GH-13544 (Pre-PHP 8.2 compatibility for mt_srand with unknown modes). Fixed bug GH-13690 (Global Mt19937 is not properly reset in-between requests when MT_RAND_PHP is used). Session: Fixed bug GH-13680 (Segfault with session_decode and compilation error). SPL: Fixed bug GH-13685 (Unexpected null pointer in zend_string.h). Standard: Fixed bug GH-11808 (Live filesystem modified by tests). Fixed GH-13402 (Added validation of `\n` in $additional_headers of mail()). Fixed bug GH-13203 (file_put_contents fail on strings over 4GB on Windows). Fixed bug GHSA-pc52-254m-w9w7 (Command injection via array-ish $command parameter of proc_open). (CVE-2024-1874) Fixed bug GHSA-wpj3-hf5j-x4v4 (__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix). (CVE-2024-2756) Fixed bug GHSA-h746-cjrr-wfmr (password_verify can erroneously return true, opening ATO risk). (CVE-2024-3096) Fixed bug GHSA-fjp9-9hwx-59fq (mb_encode_mimeheader runs endlessly for some inputs). (CVE-2024-2757) Fix bug GH-13932 (Attempt to fix mbstring on windows build) (msvc). ==== transmission ==== Subpackages: transmission-common transmission-gtk transmission-gtk-lang - Build with gcc13 on Leap 15 ==== vim ==== Version update (9.1.0301 -> 9.1.0330) Subpackages: vim-data vim-data-common xxd - update to 9.1.0330 - refreshed vim-7.3-filetype_ftl.patch * v9.1.0327 contains an unrelated change * String interpolation fails for Dict type * CI fails with t_?? test * No support for using $XDG_CONFIG_HOME * filetype: some requirements files are not recognized * filetype: CMakeCache.txt files not recognized * Update base-syntax, fix nested function folding * filetype: some json files are not recognized * include new compiler, use it for '*.custom.yaml' files * filetype: cabal config files may not be recognized * don't set compiler, update a comment for vimdoc compiler * filetype: some mail tools not recognized * Garbled output on serial terminals with XON/XOFF flow control * Recognise non-ASCII identifiers * Wrong cursor position after using setcellwidths() * Using heredoc in string not tested with :execute * use explicit version tags for macos runners * filetype: translate shell config files are not recognized * filetype: matplotlibrc files are not recognized * Update base-syntax, add legacy header folding * filetype: some sh and confini files not recognized * filetype: a few more dosini files are not recognized * Line continuation is not detected for 'set' command * Vim9: Can define a class in a function * fix highlighting import string followed by some comment * Crash when using heredoc with comment in command block * heredocs are not supported for :commands * filetype: Some config files are not recognized * Filler lines not checked properly in get_scroll_overlap() * include ftplugin support * add include to ftplugin * mention :argded for :argedit * crash when 'textwidth' > MAX_INT * typo in intro.txt * Overlong translation files may cause repo to become "dirty" * configure: msgfmt hardcoded * add vimdoc * clarify behaviour or :argadd and :argedit * filetype: texdoc config files is not recognized * filetype: x11vnc config file is not recognized * filetype: some history files are not recognized * add Matchit support * filetype: cgdb config file is not recognized * add basic indent support * add matchit support * filetype: some protocol buffer files not recognized * filetype: blueprint files are not recognized * Improve Vim9 and legacy-script comment highlighting ==== yast2-trans ==== Version update (84.87.20240407.b46e9ca4fd -> 84.87.20240414.d73f60d6af) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240414.d73f60d6af: * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) * Translated using Weblate (Romanian) ==== zypper ==== Version update (1.14.70 -> 1.14.71) Subpackages: zypper-log zypper-needs-restarting - Do not try to refresh repo metadata as non-root user (bsc#1222086) Instead show refresh stats and hint how to update them. - man: Explain how to protect orphaned packages by collecting them in a plaindir repo. - packages: Add --autoinstalled and --userinstalled options to list them. - Don't print 'reboot required' message if download-only or dry-run (fixes #529) Instead point out that a reboot would be required if the option was not used. - Resepect zypper.conf option `showAlias` search commands (bsc#1221963) Repository::asUserString (or Repository::label) respects the zypper.conf option, while name/alias return the property. - version 1.14.71