Packages changed:
  Mesa (20.1.8 -> 20.2.1)
  Mesa-drivers (20.1.8 -> 20.2.1)
  NetworkManager (1.26.2 -> 1.26.4)
  PackageKit
  apparmor
  bc
  dmidecode (3.2 -> 3.3)
  dracut (050+suse.227.g7a9b782d -> 050+suse.250.ge6b6e843)
  ffmpeg-4
  filesystem
  gnutls
  installation-images-MicroOS (16.23 -> 16.24)
  kactivitymanagerd
  kernel-default-base
  kwin5
  ldb
  libcontainers-common
  libinput
  libqt5-qtbase
  lvm2
  lvm2-device-mapper
  neon
  openldap2 (2.4.53 -> 2.4.54)
  openssh
  openssl (1.1.1g -> 1.1.1h)
  openssl-1_1 (1.1.1g -> 1.1.1h)
  permissions (1550_20200930 -> 1550_20201008)
  pipewire (0.3.11 -> 0.3.13)
  plasma-framework
  plasma5-workspace
  python38
  python38-core
  qrencode (4.1.0 -> 4.1.1)
  shadow
  systemd
  talloc
  transactional-update (2.26 -> 2.27)
  vim (8.2.1775 -> 8.2.1840)
  yast2 (4.3.29 -> 4.3.37)

=== Details ===

==== Mesa ====
Version update (20.1.8 -> 20.2.1)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1

- reenabled U_fix-mpeg1_2-decode-mesa-20.2.patch due to regression
  reported in boo#1173185
- update to 20.2.1
  * first bugfix release for the 20.1 branch
- supersedes U_fix-mpeg1_2-decode.patch
- disabled U_fix-mpeg1_2-decode-mesa-20.2.patch; likely no longer
  needed (boo#1173185)
- U_fix-mpeg1_2-decode-mesa-20.2.patch
  * additional patch currently needed for Mesa 20.2 (boo#1173185)
- update to 20.2.0
  * includes Intel Rocket Lake Platform Support
    (jsc#SLE/SLE-12880, jsc#SLE/SLE-12882)
- adjusted/refreshed patches:
  * n_add-Mesa-headers-again.patch
  * n_drirc-disable-rgb10-for-chromium-on-amd.patch
  * u_dep_xcb.patch
- docs now available in .rst format (html before)
- Add U_fix-mpeg1_2-decode.patch (boo#1173185)
  * fixes colors in kaffeine on Radeon (r600 VAAPI driver)

==== Mesa-drivers ====
Version update (20.1.8 -> 20.2.1)
Subpackages: Mesa-dri Mesa-gallium

- reenabled U_fix-mpeg1_2-decode-mesa-20.2.patch due to regression
  reported in boo#1173185
- update to 20.2.1
  * first bugfix release for the 20.1 branch
- supersedes U_fix-mpeg1_2-decode.patch
- disabled U_fix-mpeg1_2-decode-mesa-20.2.patch; likely no longer
  needed (boo#1173185)
- U_fix-mpeg1_2-decode-mesa-20.2.patch
  * additional patch currently needed for Mesa 20.2 (boo#1173185)
- update to 20.2.0
  * includes Intel Rocket Lake Platform Support
    (jsc#SLE/SLE-12880, jsc#SLE/SLE-12882)
- adjusted/refreshed patches:
  * n_add-Mesa-headers-again.patch
  * n_drirc-disable-rgb10-for-chromium-on-amd.patch
  * u_dep_xcb.patch
- docs now available in .rst format (html before)
- Add U_fix-mpeg1_2-decode.patch (boo#1173185)
  * fixes colors in kaffeine on Radeon (r600 VAAPI driver)

==== NetworkManager ====
Version update (1.26.2 -> 1.26.4)
Subpackages: libnm0 typelib-1_0-NM-1_0

- Update to version 1.26.4:
  + Add support for the DHCPv4 vendor class identifier option.
  + The initrd generator now supports specifying interfaces by MAC
    address.
  + Automatically add the wildcard DNS domain to VPNs with
    never-default=no and no domains.
  + Allow setting bond "primary" option with modes "tlb" and "alb".
  + Fix peer group tracking of Wi-Fi P2P connections.
  + Fix autoactivating virtual devices after a failure.

==== PackageKit ====
Subpackages: PackageKit-backend-zypp libpackagekit-glib2-18

- Add PackageKit-zypp-dont-refresh-repos-on-offline-update.patch:
  zypp: Don?t refresh repos again when actually updating packages
  (gh#/hughsie/PackageKit/commit/81207bd3, bsc#1173562).

==== apparmor ====
Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils perl-apparmor python3-apparmor

- add CAP_CHECKPOINT_RESTORE to severity.db (MR 656,
  cap_checkpoint_restore.diff)
- %service_del_postun_without_restart only works for Tumbleweed,
  keep using DISABLE_RESTART_ON_UPDATE for Leap 15.x

==== bc ====

- fix [bsc#1177579] -- wrong clamping of hexadecimal digits in dc
- deleted patches
  - bc-1.06-dc_ibase.patch (upstreamed)

==== dmidecode ====
Version update (3.2 -> 3.3)

- Update to upstream version 3.3:
  * [COMPATIBILITY] Document how the UUID fields are interpreted.
  * [PORTABILITY] Don't use memcpy on /dev/mem on arm64.
  * Add bios-revision, firmware-revision and system-sku-number to -s option.
  * Use the most appropriate unit for cache size.
  * Decode system slot base bus width and peers.
  * Obsoletes dmidecode-add-enumerated-values-from-smbios-3.3.0.patch,
    dmidecode-add-logical-non-volatile-device.patch,
    dmidecode-allow-overriding-build-settings-from-env.patch,
    dmidecode-dont-choke-on-invalid-processor-voltage.patch,
    dmidecode-fix-formatting-of-tpm-table-output.patch,
    dmidecode-fix-redfish-hostname-print-length.patch,
    dmidecode-fix-system-slot-information-for-pcie-ssd.patch,
    dmidecode-fix-the-alignment-of-type-25-name.patch,
    dmidecode-only-scan-dev-mem-for-entry-point-on-x86.patch, and
    dmidecode-print-type-33-name-unconditionally.patch.

==== dracut ====
Version update (050+suse.227.g7a9b782d -> 050+suse.250.ge6b6e843)
Subpackages: dracut-ima

- Update to version 050+suse.250.ge6b6e843:
  * Revert "Revert "install: also install post weak dependencies of kernel modules""
  * 98dracut-systemd: don't wait for root device if remote cryptsetup active
  * cryptroot-ask: unify /etc/crypttab and rd.luks.key
  * 90kernel-modules: arm: add drivers/hwmon for arm/arm64
  * rootfs-block: only write root argument for block device
  * 90crypt: pull in remote-cryptsetup.target enablement
  * 00systemd: add missing cryptsetup-related targets
  * 95nvmf: Implement 'fc,auto' commandline syntax
  * 95nvmf: add nvmf-autoconnect script
  * 95nvmf: Fixup FC connections
  * 95nvmf: add documentation
  * 95nvmf: rework parameter handling
  * dracut-install: fix edge-case regression with weak modules
  * dracut-install: ignore bogus preload libs
  * dracut.spec: Use make macros
  * dracut.spec: remove fedora pre 30 quirks
  * 50drm: Check drm_encoder_init along drm_crtc_init
  * 50drm: Include drm platform drivers in hostonly
  * 50drm: fix ambiguous redirects
  * Include devfreq drivers in initrd
  * dracut.spec: include the 04watchdog-modules module
- Update to version 050+suse.228.gd0d6792d:
  * 99memstrack: use /bin/bash

==== ffmpeg-4 ====
Subpackages: libavcodec58_91 libavformat58_45 libavutil56_51 libswresample3_7

- Adjust soversion.patch to include a symlink [boo#1177667]
- Add 0001-lavf-srt-fix-build-fail-when-used-the-libsrt-1.4.1.patch

==== filesystem ====

- Add /usr/etc/X11 (boo#1173049)
- Add /usr/etc/xdg (boo#1173316)
- Add /usr/etc/profile.d (boo#1173310)

==== gnutls ====

- Escape rpm command %%expand when used in comment.

==== installation-images-MicroOS ====
Version update (16.23 -> 16.24)

- merge gh#openSUSE/installation-images#430
- Refresh spec file.
- Support 32bit ARM (boo#1177264).
- 16.24

==== kactivitymanagerd ====

- Add Fix-a-dangling-reference-to-the-list-of-database-files.patch
  to fix possible crashes (kde#427650)

==== kernel-default-base ====

- Create the list of crypto modules dynamically, supersedes hardcoded
  list of crc32 implementations (boo#1177577)

==== kwin5 ====

- Add patch to fix software rendering detection with Mesa 20.2+:
  * 0001-Detect-softpipe-and-llvmpipe-on-Mesa-20.2.patch

==== ldb ====
Subpackages: libldb2 python3-ldb

- Remove old if suse_version != 1110 || arch != i386 construct:
  unlikely the current package ever builds for 1110 && 386.

==== libcontainers-common ====

- Simplify %setup statements.

==== libinput ====

- Split libinput-debug-gui from the library package build,
  removes GTK3 and transient build dependencies from libinput.
- Fix cleanup of python3-libevdev dependent helpers, now
  located under libexecdir
- Fix installation path of zsh-completion helpers, move to
  tools package.

==== libqt5-qtbase ====
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5

- Silence xcb errors and qml connection warnings by default, see
  boo#1115541 (xcb) and kde#418793.

==== lvm2 ====
Subpackages: liblvm2cmd2_03

- Update lvm2.spec file (bsc#1174336)
  - enable lvmlockd remote refresh using libdlmcontrol
  - update libdlm dependency relationship

==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03

- Update lvm2.spec file (bsc#1174336)
  - enable lvmlockd remote refresh using libdlmcontrol
  - update libdlm dependency relationship

==== neon ====

- Disable tests fail_ca_* that fail since OpenSSL update to 1.1.1h.
  * Upstream report: https://github.com/notroj/neon/issues/38
- Add neon-0.31.2-CA-tests.patch
- Disable fail_nul_* tests broken with OpenSSL configured to reject
  certificates created with a SHA1.
- Add neon-0.31.2-sha1-tests.patch

==== openldap2 ====
Version update (2.4.53 -> 2.4.54)

- updated to 2.4.54
  OpenLDAP 2.4.54 Release (2020/10/12)
  Fixed slapd delta-syncrepl to ignore delete ops on deleted entry (ITS#9342)
  Fixed slapd delta-syncrepl to be fully serialized (ITS#9330)
  Fixed slapd delta-syncrepl MOD on zero-length context entry (ITS#9352)
  Fixed slapd sessionlog to use a TAVL tree (ITS#8486)
  Fixed slapd syncrepl to be fully serialized (ITS#8102)
  Fixed slapd syncrepl to call check_syncprov on fresh consumer (ITS#9345)
  Fixed slapd syncrepl to propagate errors from overlay_entry_get_ov (ITS#9355)
  Fixed slapd syncrepl to not create empty ADD ops (ITS#9359)
  Fixed slapd syncrepl replace usage on single valued attrs (ITS#9295)
  Fixed slapd-monitor fix monitor_back_register_database for empty suffix DB (ITS#9353)
  Fixed slapo-accesslog normalizer for reqStart (ITS#9358)
  Fixed slapo-accesslog to not generate new contextCSN on purge (ITS#9361)
  Fixed slapo-syncprov contextCSN generation with empty suffix (ITS#9015)

==== openssh ====

- Work around %service_add_post disabling sshd on upgrade with
  package name change (bsc#1177039).
- Fix fillup-template usage:
  + %post server needs to reference ssh (not sshd), which matches
    the sysconfig.ssh file name the package ships.
  + %post client does not need any fillup_ calls, as there is no
    client-relevant sysconfig file present. The naming of the
    sysconfig file (ssh instead of sshd) is unfortunate.
- Use of DISABLE_RESTART_ON_UPDATE is deprecated.
  Replace it with %service_del_postun_without_restart
- Move some Requires to the right subpackage.
- Avoid ">&" bashism in %post.
- Upgrade some old specfile constructs/macros and drop unnecessary
  %{?systemd_*}.
- Trim descriptions and straighten out the grammar.
- Split openssh package into openssh, openssh-common,
  openssh-server and openssh-clients. This allows for the ssh
  clients to be installed without the server component
  (bsc#1176434).

==== openssl ====
Version update (1.1.1g -> 1.1.1h)

- Update to 1.1.1h release

==== openssl-1_1 ====
Version update (1.1.1g -> 1.1.1h)
Subpackages: libopenssl1_1

- Escape rpm command %%expand when used in comment.
- Update to 1.1.1h
  * Disallow explicit curve parameters in verifications chains when X509_V_FLAG_X509_STRICT is used
  * Enable 'MinProtocol' and 'MaxProtocol' to configure both TLS and DTLS contexts
- refresh openssl-fips_selftest_upstream_drbg.patch
  * DRBG internals got renamed back:
    reseed_gen_counter  -> generate_counter
    reseed_prop_counter -> reseed_counter

==== permissions ====
Version update (1550_20200930 -> 1550_20201008)
Subpackages: chkstat permissions-config

- Update to version 20201008:
  * cleanup now useless /usr/lib entries after move to /usr/libexec (bsc#1171164)
  * drop (f)ping capabilities in favor of ICMP_PROTO sockets (bsc#1174504)

==== pipewire ====
Version update (0.3.11 -> 0.3.13)
Subpackages: libpipewire-0_3-0 pipewire-modules pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools

- Update to version 0.3.13:
  * PipeWire improvements
    + Add pw-reserve tool to reserve or monitor a device on DBus.
    + Install spa-resample, a tool to resample a file.
    + Install spa-acp-tool, a tool to inspect the card profile.
    + Various fixes and improvements
    + Fix a bug in pw-stream where a capture stream could run out
    of buffers and become silent.
    + Rework the processing loops in the adapter and stream. There
    is now less latency in PulseAudio and ALSA layers.
  * Session manager improvements
    + Improve the device reservation code. We now try to acquire
    the device using the dbus device reservation API before we
    probe the device. This avoids conflicts with a running
    PulseAudio where devices would disappear (because they were
    locked by the other process).
    + Don't fail on invalid input from the config files.
    + Audio devices now have the same name as what PulseAudio
    would assign.
  * Device support
    + v4l2: try to use the format before enumerating the size and
    framerate. Some drivers don't check the format and might now
    work better.
    + v4l2: Fall back to MMAP when EXPBUF fails. Fix MMAP access,
    just export the fd and the mapoffset. This should make more
    devices work.
    + Fix crash in ALSA Card Profile (ACP) code.
    + ACP: fix selection of default profile. Prefer any possibly
    available profile over 'Off'. This makes some card at least
    start with something.
    + Fix soft volume. After setting the volume to 0, it would stay
    at 0 until pushed over the max volume. This should fix
    various volume related issues.
  * PulseAudio layer improvements
    + Rework the buffering and latency measurements and tweak the
    buffer attributes. This should make browsers and media
    players work better. This should also improve speechd
    performance.
  * JACK layer improvements
    + Fix compilation against newer JACK.
- Rebase patch:
  * do-not-install-alsa-config-files.patch
- Update to version 0.3.12:
  * PipeWire improvements
    + The channelmap converter now handles unknown and strange
    channel layouts much better.
    + The resampler is now cleared correctly, avoiding clicks and
    pops at the start of sound.
    + Fixes for various crasher bugs. (paplay drain, vlc shutdown,
    pactl info, ...)
    + Fix a race condition in the node state changes that caused
    all kinds of sync and other issues (vlc, mpv, ...)
    + Improve the binary name property of applications
    + Fix the scheduling again of nodes that always need a driver
    such as the jack clients.
  * Session manager improvements
    + Fix routing to default nodes. Sometimes nodes were not routed
    to the default node (bluetooth)
  * Device support
    + Disable channelmap from ALSA by default. This is what
    PulseAudio does and thus provides better compatibility.
    + Fix a bug in how the resampler was used in the ALSA source,
    causing distortion and errors when using low latency capture
    clients. (Discord, webrtc, ...)
    + Small bluetooth improvements. More work is needed for
    reliable bluetooth playback.
  * GStreamer plugins
    + The device provider now stops the processing loop before
    shutting down, which avoids crashes (gnome-initial-setup).
  * PulseAudio layer improvements
    + The buffer attributes were reworked to ensure compatibility
    with many more applications such as mpv and audacious.
    + The pulseaudio layer will now try hard to not hand out
    invalid channel maps to the application. (avoids crashes in
    gnome-volume-control). The channel map will now also look
    more like what PulseAudio does.
    + The @DEFAULT_SINK/SOURCE/MONITOR@ wildcards now work. This
    fixes the problem with volume keys when they are bound to
    scripts using pactl and the default sink/source wildcards.
    + The PIPEWIRE_LATENCY environment variable now works again
    + Fix some leaks of ports and port info. Also fix the leak of
    the context when the mainloop is stopped.
    + The sink/source format_info array is now filled up
    completely, this is actually not implemented yet in the real
    PulseAudio.
  * JACK layer improvements
    + jack now returns version 3.0.0 and has PipeWire in the
    version string so that apps can report this.
- Drop patch:
  * 0001-alsa-dont-change-the-resampler-delay-value.patch

==== plasma-framework ====
Subpackages: libKF5Plasma5 plasma-framework-components

- Add patch to avoid 100% CPU usage by plasmashell:
  * 0001-Fix-BusyIndicator-rotating-even-when-invisible-again.patch
- Add patch to improve krunner responsiveness on wayland (kde#426746):
  * 0001-BusyIndicator-Do-not-rotate-when-invisible.patch

==== plasma5-workspace ====
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy

- Generate plasmafullwayland.desktop by editing plasmawayland.desktop
- Make plasma5-session-wayland arch-dependent as it contains %{_libdir}
- Add BuildRequires for pipewire and libdrm
- Don't use %fdupes -s, kpackage doesn't like it and so this broke
  the slideshow wallpaper

==== python38 ====

- Buildrequire timezone only for general flavor. It's used in this
  flavor for the test suite.

==== python38-core ====
Subpackages: libpython3_8-1_0 python38-base

- Buildrequire timezone only for general flavor. It's used in this
  flavor for the test suite.

==== qrencode ====
Version update (4.1.0 -> 4.1.1)

- update to 4.1.1:
  * Some minor bugs in Micro QR Code generation have been fixed.
  * The data capacity calculations are now correct. These bugs probably did not
    affect the Micro QR Code generation.

==== shadow ====

- Add support for /usr/etc/skel to useradd.local script (boo#1173321)
- shadow-login_defs-check.sh: Fix the regexp to get a real variable
  list (boo#1164274).

==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-logger systemd-sysvinit udev

- Do not include %{release} in a few places where we explicitly mention package versions
  It's usually not a good idea especially when used with conflicts.
- Rely on systemd-default-settings for overriding system default settings
  The new branding packages now ships the drop-ins to customize
  systemd either for an openSUSE or a SLE ditro.

==== talloc ====
Subpackages: libtalloc2 python3-talloc

- Fix build with RPM 4.16:
  bad %if condition:  01550 != 1110 || "x86_64" == x86_64
  no bare word support, x86_64 needs to be quoted

==== transactional-update ====
Version update (2.26 -> 2.27)
Subpackages: transactional-update-zypp-config

- Version 2.27
  - Add support for network systemd-resolvd network connections in t-u
    environment
  - Mount /var/lib/ca-certificates read-write to prevent SELinux error
  - Prevent calling transactional-update from within transactional-update

==== vim ====
Version update (8.2.1775 -> 8.2.1840)
Subpackages: vim-data-common vim-small

- Updated to version 8.2.1840, fixes the following problems
- refreshed vim-7.3-filetype_changes.patch and vim-8.0.1568-defaults.patch
  * Filetype.vim may be loaded twice.
  * Vim9: some assignment tests in the wrong file.
  * Vim9: returning from a partial call clears outer context, causing a crash.
  * Some debian changelog files are not recognized.
  * Statusline not updated when splitting windows.
  * Writing to prompt buffer interferes with insert mode.
  * Vim9: cannot pass boolean to mapset().
  * Try-catch test fails.
  * commits are not scanned for security problems
  * Compiler warning for strcp() out of bounds. (Christian Brabandt)
  * Various Normal mode commands not fully tested.
  * Crash with 'incsearch' and very long line.
  * Vim9: still allows :let for declarations.
  * Vim9: crash with invalid list constant. (Dhiraj Mishra)
  * Vim9: debugger test fails.
  * Configure does not recognize Racket 6.1+.
  * Not consistently giving the "is a directory" warning.
  * No falsy Coalescing operator.
  * Vim9: operators && and || have a confusing result.
  * Vim9: invalid memory access with weird function name. (Dhiraj Mishra)
  * Vim9: some parts of the code not tested.
  * Vim9: trinary operator condition is too permissive.
  * Some Normal mode commands not fully tested.
  * Vim9: memory leak if "if" condition is invalid.
  * Undo file not found when using ":args" or ":next".
  * Vim9: crash with unterminated dict. (Dhiraj Mishra)
  * A few failures are not tested.
  * resolve('/') returns an empty string.
  * Unix: terminal mode changed when using ":shell".
  * Can use :help in a terminal popup window.
  * No test coverage for ":spelldump!".
  * Mapping some keys with Ctrl does not work properly.
  * Some code in normal.c not covered by tests.
  * Mapping Ctrl-key does not work for '{', '}' and '|'.
  * Vim9: nested closure throws an internal error.
  * Vim9: can assign wrong type to script dict. (Christian J.  Robinson)
  * Missing change to remove "static".
  * Vim9: memory leak when using function reference.
  * Vim9: another memory leak when using function reference.
  * Vim9: wrong instruction when reusing a local variable spot.
  * SE Linux: deprecation warning for security_context_t.
  * Vim9: Memory leak when using a closure.
  * Vim9: crash when error happens in timer callback.
  * Vim9: concatenating to a NULL list doesn't work.
  * List test doesn't fail.
  * "gN" does not select the matched string.
  * Vim9: variables at the script level escape their scope.
  * Vim9: accessing freed memory.
  * Vim9: cannot use a {} block at script level.
  * Filetype detection does not test enough file names.
  * Build failure without the +eval feature.
  * Warnings when executing Github actions.
  * File missing from distribution.
  * readdirex() error is displayed as a message. (Yegappan Lakshmanan)
  * When reading from stdin dup() is called twice.
  * PyEval_InitThreads() is deprecated in Python 3.9.
  * ":help ??" finds the "!!" tag.
  * Autocmd test fails on pacifist systems.
  * Using "gn" after "gN" does not work.
  * Vim9: cannot insert a comment line in an expression.
  * Vim9: memory leaks reported in assign test.
  * Vim9: error message is not clear about compilation error.

==== yast2 ====
Version update (4.3.29 -> 4.3.37)

- Revert changes for hiding the heading of the dialog in text mode
  (the heading has no height if the title is empty).
- bsc#1176808
- 4.3.37
- AutoYaST: SectionWithAttributes#new_from_hashes accepts
  an enumerable as first element (related to bsc#1177405).
- 4.3.36
- AutoYaST: do not crash when sections like 'raid_options' are
  empty (bsc#1177405).
- 4.3.35
- Revert the drop of SuSEFirewall2 as there are still some packages
  which need to be adapted (bsc#1177160)
- 4.3.34
- Drop SuSEFirewall2 code completely (fate#323460)
- 4.3.33
- Fix non-editable ComboBox handling (bsc#1136454).
- 4.3.32
- Small improvements to CWM based widgets (related to bsc#1136454):
  - An editable ComboBox will refresh the list of items when a new
    one is given as its current value.
  - By default, a MenuButton widget listens to events from all its
    buttons.
- 4.3.31
- Do not crash when trying to parse non-existing ("nil") add-on
  product control XML file (bsc#1176593)
- 4.3.30