Packages changed:
avahi
avahi-glib2
dnf (4.14.0 -> 4.18.0)
ell (0.58 -> 0.59)
fde-tools (0.7.1 -> 0.7.2)
fwupd (1.8.17 -> 1.9.7)
gdm
git (2.42.0 -> 2.42.1)
gjs
glslang
gnome-control-center
gnome-shell (45.0 -> 45.1)
gnome-shell-extensions (45.0 -> 45.1)
gpg2
installation-images-MicroOS (17.98 -> 17.103)
json-c (0.16 -> 0.17)
kdump (1.9.7 -> 1.9.8)
keylime (7.6.0 -> 7.7.0)
kio-fuse
ksystemstats5 (5.27.8 -> 5.27.9)
libdnf (0.70.2 -> 0.72.0)
libmodulemd (2.14.0 -> 2.15.0)
libostree (2023.6 -> 2023.7)
librepo (1.15.1 -> 1.17.0)
libxml2 (2.10.4 -> 2.11.5)
mutter (45.0+45 -> 45.1)
openldap2 (2.6.4 -> 2.6.6)
openldap2-contrib-src (2.6.4 -> 2.6.6)
p11-kit (0.25.1 -> 0.25.2)
patterns-base
pipewire (0.3.83 -> 0.3.84)
podman (4.7.1 -> 4.7.2)
polkit-default-privs (1550+20231006.28f05f1 -> 1550+20231103.3b4a82f)
publicsuffix (20230930 -> 20231028)
python-httpx
raptor (2.0.15 -> 2.0.16)
redis (7.2.2 -> 7.2.3)
rubygem-ruby-dbus
rust-keylime (0.2.2+git.1689256829.3d2b627 -> 0.2.2+git.1697658634.9c7c6fa)
samba (4.19.2+git.322.7e9201cef5 -> 4.19.2+git.324.fa0b54b91b)
sdbootutil (1+git20231023.873adb9 -> 1+git20231026.f43c33c)
shaderc
sssd
systemd
tracker-miners (3.6.1 -> 3.6.2)
util-linux
util-linux-systemd
webkit2gtk3
webkit2gtk4
yast2 (5.0.2 -> 5.0.3)
yast2-installation (5.0.1 -> 5.0.2)
yast2-storage-ng (5.0.3 -> 5.0.4)
yast2-update (5.0.0 -> 5.0.1)
=== Details ===
==== avahi ====
Subpackages: libavahi-client3 libavahi-common3 libavahi-core7
- Add avahi-CVE-2023-38470.patch: Ensure each label is at least one
byte long (bsc#1215947, CVE-2023-38470).
==== avahi-glib2 ====
- Add avahi-CVE-2023-38470.patch: Ensure each label is at least one
byte long (bsc#1215947, CVE-2023-38470).
==== dnf ====
Version update (4.14.0 -> 4.18.0)
- Update to 4.18.0
+ Add reboot option to DNF Automatic (rh#2124793)
+ Add support for rollback of group upgrade rollback (rh#2016070)
+ Omit src RPMs from check-update (rh#2151910)
+ repoquery: Properly sanitize queryformat strings (rh#2140884)
+ Don't double-encode RPM URLs passed on CLI (rh#2103015)
+ Allow passing CLI options when loading remote cfg (rh#2060127)
+ Ignore processing variable files with unsupported encoding (rh#2141215)
+ Fix AttributeError when IO busy and press ctrl+c (rh#2172433)
+ cli: Allow = in setopt values
+ Mark strftime format specifiers for translation
+ Unload plugins upon their deletion
+ Fixes in docs and help command
+ Fix plugins unit tests
+ Add unit tests for dnf mark
+ smtplib: catch OSError, not SMTPException
+ automatic: Fix online detection with proxy (rh#2022440)
+ automatic: Return an error when transaction fails (rh#2170093)
+ repoquery: Allow uppercased query tags (rh#2185239)
+ Update repo metadata cache pattern to include zstd
+ Add provide exception handling
+ When parsing over a KVP list, do not return till the whole list is parsed
+ Provide /usr/bin/dnf4 symlink to /usr/bin/dnf-3
+ Document the symbols in the output of `dnf history list` (rh#2172067)
+ crypto: Use libdnf crypto API instead of using GnuPG/GpgME
+ Block signals during RPM transaction processing (rh#2133398)
+ Fix bash completion due to sqlite changes (rh#2232052)
+ automatic: allow use of STARTTLS/TLS
+ automatic: use email_port specified in config
+ base: Add obsoleters of only latest versions (rh#2183279, rh#2176263)
+ comps: Fix marking a group package as installed (rh#2066638)
+ distro-sync: Print better info message when no match (rh#2011850)
+ Include dist-info for python3-dnf (rh#2239323)
+ Revert "Block signals during RPM transaction processing" (rh#2133398)
+ Do not print details of verifying (rh#1908253)
+ conf: Split $releasever to $releasever_major and $releasever_minor (rh#1789346)
+ Update translations
==== ell ====
Version update (0.58 -> 0.59)
- Update to release 0.59
* Add l_safe_ato* functions to the exported symbol list.
==== fde-tools ====
Version update (0.7.1 -> 0.7.2)
- Update to version 0.7.2
+ Add help output for the command tpm-authorize
+ Improve the multi-devices support
==== fwupd ====
Version update (1.8.17 -> 1.9.7)
Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0
- Disable passim support for now. For openSUSE users this is likely
less intereting that it would be for enterprise customers.
- Update to versrion 1.9.7:
+ This release adds the following features:
- Add support for child device requirements in metadata.
- Allow to have more than one host BKC.
- Delete BootNext as a post-reboot action to work around broken
firmware.
- Parse cabinet archives internally without libgcab.
- Use close-ended mode for eMMC FFU to speed up firmware
updates.
+ This release adds support for the following hardware:
- Logitech Rally System devices.
- More PixartRF HPAC devices.
- More Synaptics Prometheus fingerprint readers.
- Some Western Digital eMMC devices.
- VIA VL830 and VL832.
- Update to version 1.9.6:
+ This release adds the following features:
- Add a launchd agent for macOS.
- Add a new security attribute for BIOS capsule updates to be
enabled.
- Add functionality to fix specific host security attributes.
- Add global information from the context into the report data.
- Add support for coSWID payload sections.
- Add support for parsing the EDID.
- Allow adding only-quirk instance IDs from quirk files.
- Install a sysusers.d systemd file when using
- Dsystemd_unit_user.
+ For The changes of 1.9.0…1.9.5, please consult
https://github.com/fwupd/fwupd/releases
- Add pkgconfig(passim) BuildRequires: new dependency.
- Pass -Dplugin_amdgpu=disabled to meson: not buildable just yet.
- Pass -Dlaunchd=disabled to meson: launched is MacOS only.
- Drop -Dplugin_dell=enabled meson parameter: no longer supported.
- Drop fwupd-bsc1130056-change-shim-path.patch: no longer
applicable.
==== gdm ====
Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Rebase patches for SLE-15-SP6 (bsc#216595):
+ Rebase gdm-add-runtime-option-to-disable-starting-X-server-as-u.patch
+ Rebase gdm-disable-gnome-initial-setup.patch
+ Rebase gdm-restart-session-when-X-server-restart.patch
==== git ====
Version update (2.42.0 -> 2.42.1)
- git 2.24.1:
* The usual number of bug fixes, including
* Fix "git diff" exit code handling
* Various fixes to the behavior of "rebase -i" when the command
got interrupted by conflicting changes
==== gjs ====
Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0
- Add 3cae384aaf15dec6653b1a5400032c2c2e5dc34c.patch: module:
Canonicalize import specifier before inserting it in registry.
- Explicitly BuildRequire /usr/bin/dbus-run-session: needed by the
test suite.
==== glslang ====
- Fix include dirs for headers of SPIRV and StandAlone. According to the setting
in %{_libdir}/cmake/glslang/glslang-targets.cmake, headers of SPIRV and
StandAlone should be installed in %{_includedir}/External
==== gnome-control-center ====
Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces
- Rebase gnome-control-center-disable-error-message-for-NM.patch,
gnome-control-center-info-never-use-gnome-software.patch,
gnome-control-center-more-power-button-actions.patch and
gnome-control-center-bring-back-firewall-zone.patch(bsc#1216601).
==== gnome-shell ====
Version update (45.0 -> 45.1)
Subpackages: gnome-extensions gnome-shell-calendar
- Update to version 45.1:
+ Fix scroll handling on sliders
+ overview: Handle unredirection as part of the state transition
+ Handle DESKTOP windows during workspace animations
+ Fix unexpected focus changes with multi-window apps
+ Improve recording indicator in light style
+ Fix calendar popup shrinking on date changes
+ Fixed crashes
+ Misc. bug fixes and cleanups
+ Updated translations.
- Update to version 45.0+20:
+ workspaceAnimation: Handle DESKTOP windows
+ st/scroll-view: Use clutter_actor_get_effect() to get fade effect
+ overview: Handle unredirection in OverviewShown state machine
+ status/system: Use Intl to format battery percentage
+ slider:
- Ignore left/right scroll directions
- Fix check for emulated scroll events
+ Updated translations.
- Add gnome-shell_nb_fix_trans.patch: Fix typo in translation
breaking gnome-shell calendar overview.
==== gnome-shell-extensions ====
Version update (45.0 -> 45.1)
Subpackages: gnome-shell-classic gnome-shell-extensions-common
- Update to version 45.1:
+ workspace-indicator: Fix initial preview visibility
+ screenshot-window-sizer: Fix cycling between sizes backwards
+ Misc. bug fixes and cleanups
+ Updated translations.
==== gpg2 ====
Subpackages: dirmngr
- Fix the build in SLE and Leap by adding an exclude in the files
section for the dirmngr's systemd user units. [jsc#PED-7093]
==== installation-images-MicroOS ====
Version update (17.98 -> 17.103)
- merge gh#openSUSE/installation-images#673
- fix another symlink warning
- 17.103
- merge gh#openSUSE/installation-images#672
- fix dangling symlink detection
- update symlink config
- add missing tpm packages to spec file
- fix typo in early_setup script
- 17.102
- merge gh#openSUSE/installation-images#670
- add TPM support (bsc#1216835)
- 17.101
- merge gh#openSUSE/installation-images#669
- add spmi-mtk-pmif kernel module (bsc#1216767)
- 17.100
- merge gh#openSUSE/installation-images#667
- Add DTB installation support for Lenovo X13s (bsc#1215647)
- Add lenovo-x13s-firmware-dt BuildRequires to the spec file
(bsc#1215647)
- 17.99
==== json-c ====
Version update (0.16 -> 0.17)
- Update to 0.17:
+ New features:
* json_patch: add first implementation only with patch application
* Add --disable-static and --disable-dynamic options to the cmake-configure script.
* Add -DBUILD_APPS=NO option to disable app build
* Minimum cmake version is now 3.9
+ Significant changes and bug fixes:
* When serializing with JSON_C_TO_STRING_PRETTY set, keep the opening and
closing curly or square braces on same line for empty objects or arrays.
* Disable locale handling when targeting a uClibc system due to problems
with its duplocale() function.
* When parsing with JSON_TOKENER_STRICT set, integer overflow/underflow
now result in a json_tokener_error_parse_number. Without that flag
values are capped at INT64_MIN/UINT64_MAX.
* Fix memory leak with emtpy strings in json_object_set_string
* json_object_from_fd_ex: fail if file is too large (>=INT_MAX bytes)
* Add back json_number_chars, but only because it's part of the public API.
* Entirely drop mode bits from open(O_RDONLY) to avoid warnings on certain
platforms.
* Specify dependent libraries, including -lbsd, in a more consistent way so
linking against a static json-c works better
* Fix a variety of build problems and add & improve tests
* Update RFC reference to https://www.rfc-editor.org/rfc/rfc8259
- Remove deprecated suse_version checks
==== kdump ====
Version update (1.9.7 -> 1.9.8)
- upgrade to version 1.9.8
* drop obsolete dependency on systemd-sysvinit (bsc#1216745)
==== keylime ====
Version update (7.6.0 -> 7.7.0)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python311-keylime
- Update to version v7.7.0:
* Monthly release (7.7.0)
* tpm_cert_store: add the Nationz TPM EK x509 cert
* codestyle: Have mypy ignore import of PoolManager
* codestyle: Suppress pyright errors on methods that do exist
* codestyle: Annotate some string constances (pyright)
* types: Fix a deprecation warning from recent cryptography
* create_policy: Set the generator value to LegacyAllowList
* verifier: Compare generator against enum rather than magic '1'
* Fix pylint C0103 (naming) errors in some files
* crypto: Fix a pyright issue
* test: Fix a pyright issue
==== kio-fuse ====
- dbus-run-session now needs to be explicitly required for the
test suite.
==== ksystemstats5 ====
Version update (5.27.8 -> 5.27.9)
- Update to 5.27.9
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.27.9
- No code changes since 5.27.8
- dbus-1 no longer provides dbus-run-session, so BuildRequire
it explicitly
==== libdnf ====
Version update (0.70.2 -> 0.72.0)
Subpackages: libdnf-repo-config-zypp libdnf2
- Update to 0.72.0
+ PGP: Use new librepo PGP API, remove gpgme dependency
+ API: Basic support for OpenPGP public keys
+ Avoid using GNU extensions in the dependency splitter regex
+ filterAdvisory: match installed_solvables sort with lower_bound (rh#2212838)
+ Make code C++20 compatible
+ Avoid reinstalling installonly packages marked for ERASE (rh#2163474)
+ transaction: Save the reason for installing (rh#1733274)
+ hawkey.subject: get_best_selectors only obsoleters of latest (rh#2183279, rh#2176263)
+ conf: Add limited shell-style variable expansion (rh#1789346)
+ conf: Add support for $releasever_major, $releasever_minor (rh#1789346)
+ repo: Don't download the repository if the local cache is up to date
+ Allow DNF to be removed by DNF 5 (rh#2221907)
+ Include dist-info for python3-libdnf
+ bindings: Load all modules with RTLD_GLOBAL
+ Update translations
- Fix RHBZ references
- Refresh patch to link with static libsolvext
+ Remove patch: libdnf-0.48.0-with-static-libsolvext.patch
+ Add patch: libdnf-0.72.0-with-static-libsolvext.patch
==== libmodulemd ====
Version update (2.14.0 -> 2.15.0)
- Update to 2.15.0
+ Add support for decompressing Zstandard-compressed YAML files
+ Remove a dependency on "file" library (libmagic)
+ Add a XML specification for in-YUM-repository metadata
+ Deprecate intents in modulemd-defaults specification
+ Fix a crash when converting a modulemd-packager object with a default
profile and without a module name or stream to a module index
+ Fix parsing empty profiles
+ A specification for modulemd-v2 format was corrected to require a "content"
license subtree only if the module build contains artifacts.
+ Double-quote strings in scalar YAML values when they look like a number
+ Warnings from g_str_equal() macro of glib2 about passing an unsigned
char * to strcmp() were fixed
==== libostree ====
Version update (2023.6 -> 2023.7)
Subpackages: libostree-1-1
- Update to version 2023.7:
+ support for a "transient etc"
+ HTTP layer now retries requests by default
+ a longstanding bug was fixed where ostree would still try to
fetch "loose" objects even when we were doing a delta pull
+ Fix variety of clang-analyzer fixes (some false positives, some
real memory leaks, etc)
==== librepo ====
Version update (1.15.1 -> 1.17.0)
- Update to 1.17.0
* lr_gpg_check_signature: Forward PGP error messages from RPM
* PGP: fix: Support importing binary public keys in librpm backend
* PGP: Enable creating a UID directory for GnuGP agent socket
in /run/gnupg/user
* PGP: Set a default creation SELinux labels on GnuPG directories
* Update PGP test vectors
* Implement OpenPGP using librpm API
* Fixes and optimizations in header files
* Fix lr_gpg_list_keys function when keys are empty
* Fix CMake warnings
* Bump glib version
==== libxml2 ====
Version update (2.10.4 -> 2.11.5)
Subpackages: libxml2-2 libxml2-tools
- Add python312.patch to make it compatible with python 3.12
https://gitlab.gnome.org/GNOME/libxml2/-/merge_requests/226
- Use pyproject_wheel and pyproject_install macros instead of
python_build, python_install
==== mutter ====
Version update (45.0+45 -> 45.1)
- Update to version 45.1:
+ Fix filtering keybinding events in presence of grabs
+ Fix direct scanout support when using integer scaling
+ Fix capitalization of some keys when caps lock is on
+ Fix vsync regression
+ Fix visibility of software cursors when using direct scanout
+ Fix artifacts at the bottom of some surfaces
+ Discard monitor configs with fractional scale when unusable
+ Apply track point settings
+ xwayland: Enable XDG portal only when not nested
+ Inhibit real-time scheduling when mode setting
+ Don't delay frame updates after idle period
+ Fix running Xwayland in headless setup with nvidia driver
+ wayland: Send keyboard modifiers after the enter event
+ Fixed crashes
+ Misc. bug fixes and cleanups
+ Updated translations.
- Update to version 45.0+61:
+ backend:
- Introduce helpers for turning from/to clutter/evdev buttons
- Use helper to translate from/to clutter/evdev button codes
+ clutter/frame-clock:
- Simplify next_presentation_time_us calculation
- Start next update ASAP after idle period
+ cogl/onscreen: Add missing error untrap calls
+ input-capture:
- Check barriers don't extend into nonexisting monitors
- Fix off-by-one for barrier validation
+ renderer/native:
- Add a new has_addfb2 property
- Send modifiers even without AddFb2
+ screen-cast/stream-src:
- Assert that dmabuf handle lookup succeeds
- Calculate stride after adding handle to hash table
+ tests/clutter/event-delivery: Avoid race with stage update
+ tests/clutter/frame-clock*: Use
clutter_frame_get_target_presentation_time
+ wayland/dma-buf: Advertise INVALID modifier without AddFb2
+ wayland: Send keyboard modifiers after the enter event
+ input-capture: Add more barrier tests, mostly for invalid
barriers
==== openldap2 ====
Version update (2.6.4 -> 2.6.6)
Subpackages: libldap-data libldap2 openldap2-client
- Update to release 2.6.6
* Fixed libldap handling of TCP KEEPALIVE options
* Fixed slapd callback handling with overlays that do extended
operations
==== openldap2-contrib-src ====
Version update (2.6.4 -> 2.6.6)
- Update to release 2.6.6
* Fixed libldap handling of TCP KEEPALIVE options
* Fixed slapd callback handling with overlays that do extended
operations
==== p11-kit ====
Version update (0.25.1 -> 0.25.2)
Subpackages: libp11-kit0 p11-kit-tools
- Update to 0.25.2:
* fix error code checking of readpassphrase for --login option [#595]
* build fixes [#594]
* test fixes [#596]
==== patterns-base ====
Subpackages: patterns-base-base patterns-base-bootloader patterns-base-documentation patterns-base-enhanced_base patterns-base-minimal_base patterns-base-sw_management patterns-base-x11 patterns-base-x11_enhanced
- Do not recommend nscd anymore. NIS is being phased out and modern
technologies like sssd are not compatible with it anyway.
==== pipewire ====
Version update (0.3.83 -> 0.3.84)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Update to version 0.3.84 (1.0RC4):
* Highlights
- Fix a regression with openal because the queued buffers in
the stream were not reported correctly.
- Fix a bug in port busy counters that could cause random
silent links.
- Fix a regression in echo-cancel because it was not reporting
its streams as ASYNC.
- Fix a JACK regression where not all ports were enumerated in
all cases.
- Many more fixes and improvements.
* PipeWire
- pw_stream now reports the queued buffers more accurately.
This fixes a regression when using openal. (#3592)
- The port busy counters were not updated correctly in some
cases. This could lead to negotiation errors and silent
links. (#3547)
- Ignore latency maximum when forcing rate/quantum. (#3613)
- Nodes can now be added to multiple groups and link-groups.
(#3612)
* Modules
- The filter-chain now also handles notify port dependencies
correctly. (#3596)
- Filter-chain has support for new linear, clamp, recip, exp,
log, mult, sine builtin plugins.
- The echo-cancel module now correctly reports its playback and
capture streams as ASYNC to avoid running out of buffers.
(#3593)
- It is now possible to specify an array of remote names to
connect to with the native protocol.
- module-rtp-sap and module-rtp-sink now try to bind to the
specified interface.
* SPA
- The alsa plugin now removes the runtime properties such as
period-num, period-size and max-latency when suspended.
(#3613)
* Bluetooth
- BAP Locations/Context is now set on endpoints as required by
new bluez.
- Improve selection of BAP leader.
* JACK
- Add a jack_set_sample_rate() extension function.
- Make sure we get the info of all nodes/ports before
completing the jack_client_open() operation so that we can
enumerate the ports correctly in all cases. (#3618)
* GStreamer
- Fix types of metadata in pipewiresink.
- Also copy metadata in buffers in all cases.
- Fix size allocation in bufferpool for compressed formats.
- Don't stop streaming thread when unlinked. (#3620)
* ALSA
- The ALSA plugin now handles NULL values from mmap_areas.
(#3600)
- Disable the WebRTC-based echo canceller in big endian
architectures since webrtc-audio-processing is not available
there.
==== podman ====
Version update (4.7.1 -> 4.7.2)
- Update to version 4.7.2:
* v4.7.2
* Update RELEASE_NOTES.md for v4.7.2
* compose: try all possible providers before throwing an error
* Mask /sys/devices/virtual/powercap
* fix: check wsl npipe when executing podman compose
* rtd: implement v2 build file
* Adjust to path name change for resolved unit
* Switch version to 4.7.2-dev
- crun is not available for armv6 (because of criu), so use runc
on armv6
==== polkit-default-privs ====
Version update (1550+20231006.28f05f1 -> 1550+20231103.3b4a82f)
- Update to version 1550+20231103.3b4a82f:
* profiles: fwupd: add host-security-attr actions (bsc#1216832)
* profiles: remove outdates sysprof2 actions
* profiles: drop obsolete udisks2 bcache and zram actions
==== publicsuffix ====
Version update (20230930 -> 20231028)
- Update to version 20231028:
* util: gTLD data autopull updates for 2023-10-28
* AWS Submissions to the Public Suffix List - Q3 2023
* Add <4-8>.azurestaticapps.net DNS suffix
==== python-httpx ====
- Add upstream newer-httpcore.patch
* it only allows httpcore 1.0.0 in the pyproject.toml, no code changes
==== raptor ====
Version update (2.0.15 -> 2.0.16)
- Add support for libxml 2.11.0+
* Added patch raptor-libxml2-2.11-support.patch
- update to 2.0.16:
* long list of accumulated bug, security and portability fixes
* see https://librdf.org/raptor/RELEASE.html#rel2_0_16
- drop
0001-Calcualte-max-nspace-declarations-correctly-for-XML-.patch.1:
obsolete/upstream
- ubsan.patch: refresh
==== redis ====
Version update (7.2.2 -> 7.2.3)
- redis 7.2.3:
- Fix file descriptor leak preventing deleted files from freeing
disk space on replicas (#12693)
- Fix a possible crash after cluster node removal (#12702)
==== rubygem-ruby-dbus ====
- Testsuite requires dbus-daemon and dbus-send which are now
separate packages
==== rust-keylime ====
Version update (0.2.2+git.1689256829.3d2b627 -> 0.2.2+git.1697658634.9c7c6fa)
Subpackages: keylime-ima-policy
- Update to version 0.2.2+git.1697658634.9c7c6fa:
* build(deps): bump rustix from 0.37.11 to 0.37.25
* build(deps): bump tempfile from 3.6.0 to 3.8.0
* build(deps): bump base64 from 0.21.0 to 0.21.4
* build(deps): bump serde_json from 1.0.96 to 1.0.107
* build(deps): bump openssl from 0.10.55 to 0.10.57
* cargo: Bump serde to version 1.0.188
* tests: Fix tarpaulin issues with dropped -v option
* build(deps): bump signal-hook from 0.3.15 to 0.3.17
* build(deps): bump actix-web from 4.3.1 to 4.4.0
* build(deps): bump thiserror from 1.0.40 to 1.0.48
* Remove private_in_public
* Initial PR to add support for IDevID and IAK
* build(deps): bump uuid from 1.3.1 to 1.4.1
* build(deps): bump log from 0.4.17 to 0.4.20
* build(deps): bump reqwest from 0.11.16 to 0.11.20
* Do not use too specific version on cargo audit workflow
* Add workflow to run cargo-audit security audit
* README: update dependencies for Debian and Ubuntu
* Use latest versions of checkout/upload-artifacts
* docker: Add 'keylime' system user
* Use "currently" for swtpm emulator warning (#632)
* Update container workflow actions versions
* Build container image and push to quay.io
* README: update requirements
==== samba ====
Version update (4.19.2+git.322.7e9201cef5 -> 4.19.2+git.324.fa0b54b91b)
Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3
- packaging: samba-tool domain provision requires python3-Markdown;
(bsc#1216519).
==== sdbootutil ====
Version update (1+git20231023.873adb9 -> 1+git20231026.f43c33c)
Subpackages: sdbootutil-rpm-scriptlets sdbootutil-snapper
- Update to version 1+git20231026.f43c33c:
* Fix generating initrd for random snapshots
==== shaderc ====
- Adjust for glslang-nonstd-devel switching paths
==== sssd ====
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap
- Offer the sssd.conf template as %doc (for examples, do actually
see the "Examples" section of the sssd.conf(5) manpage)
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-boot systemd-coredump systemd-doc udev
- Disable utmp support
The announcement can be found at:
https://lists.opensuse.org/archives/list/factory@lists.opensuse.org/thread/MYIWGQEE54VJDBYXMQCEY7XKEAIUFLAU/
The user visible consequence of it is that /run/utmp file is no more created.
systemd itself doesn't depend on utmp anymore since "shared/wall: use logind
if build without utmp support" has been backported.
==== tracker-miners ====
Version update (3.6.1 -> 3.6.2)
Subpackages: tracker-miner-files
- Update to version 3.6.2:
+ Improvements to the seccomp jail, and fixes for spurious SIGSYS
positives.
+ Use GDateTime to handle dates.
+ Updated translations.
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1
- Add patch:
* setterm-resize-uninit-flags.patch
==== util-linux-systemd ====
- Add patch:
* setterm-resize-uninit-flags.patch
==== webkit2gtk3 ====
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Add webkit2gtk3-disable-dmabuf-nvidia.patch: disable DMABuf
renderer for NVIDIA proprietary drivers (boo#1216778).
==== webkit2gtk4 ====
Subpackages: libjavascriptcoregtk6_0-1 libwebkitgtk6_0-4 webkitgtk-6_0-injected-bundles
- Add webkit2gtk3-disable-dmabuf-nvidia.patch: disable DMABuf
renderer for NVIDIA proprietary drivers (boo#1216778).
==== yast2 ====
Version update (5.0.2 -> 5.0.3)
Subpackages: yast2-logs
- Added Repository#refresh method (related to bsc#1215884)
- 5.0.3
==== yast2-installation ====
Version update (5.0.1 -> 5.0.2)
- Refresh repositories with changed URL and reload them again
to activate the changes (related to bsc#1215884)
- 5.0.2
==== yast2-storage-ng ====
Version update (5.0.3 -> 5.0.4)
- Encryption method TpmFde to be used by Agama (and later by YaST)
for setting up LUKS2 devices that are unlocked during boot using
a TPM chip (gh#yast/yast-storage-ng#1088, related to bsc#1210512)
- 5.0.4
==== yast2-update ====
Version update (5.0.0 -> 5.0.1)
- Drop the previously used repositories when going back to the
partition selection at upgrade, this ensures the repositories
are correctly reinitialized later (bsc#1215884)
- 5.0.1