Packages changed: SVT-AV1 (1.4.0 -> 1.4.1) acpica (20220331 -> 20221020) bolt (0.9.4 -> 0.9.5) f2fs-tools grub2 hplip (3.22.6 -> 3.22.10) libheif (1.12.0 -> 1.14.1) libjpeg-turbo libksba (1.6.2 -> 1.6.3) libxkbcommon (1.4.1 -> 1.5.0) man-pages (5.13 -> 6.02) mhvtl openafs (1.8.9~pre2 -> 1.8.9) os-prober (1.79 -> 1.81) pam_mount perl-Mojolicious (9.30 -> 9.31) perl-Net-DNS (1.35 -> 1.36) poppler (22.12.0 -> 23.01.0) poppler-qt5 (22.12.0 -> 23.01.0) procps4 python-Pillow (9.3.0 -> 9.4.0) python-attrs (22.1.0 -> 22.2.0) python-dbus-python (1.2.18 -> 1.3.2) python-importlib-metadata (5.1.0 -> 6.0.0) python-importlib-resources (5.10.1 -> 5.10.2) python-pycurl (7.45.1 -> 7.45.2) python-pytz (2022.6 -> 2022.7) rav1e (0.6.1+0 -> 0.6.2+0) squid sssd traceroute (2.1.0 -> 2.1.1) xen xlockmore xz (5.2.10 -> 5.4.0) === Details === ==== SVT-AV1 ==== Version update (1.4.0 -> 1.4.1) - update to 1.4.1: * Fix CRF with maxrate bug causing bitrate to be significantly limited for CRF encodings * Fix command line parsing forcing 1-pass in a 2-pass encoding mode when the --keyint=`x`s format is used * Fix decoder segfault due to assuming aligned buffers in the inverse transform assembly ==== acpica ==== Version update (20220331 -> 20221020) - Update to version 20221020: * Added support for FFH (Fixed Function Hardware) Operation Region special context data. * Reverted commit "executer/exsystem: Warn about sleeps greater than 10 ms." Due to user complaints about valid sleeps greater than 10ms seen in some existing machines -- generating lots of warnings. * Do not touch VGA memory when EBDA < 1KiB. * Check that EBDA pointer is in valid memory. * Completed the existing partial support for the CDAT "table". * Updated support for the IORT table - update to version E.e * Added CXL 3.0 structures (CXIMS & RDPAS) to the CEDT table * iASL: Added CCEL table to both compiler/disassembler. * iASL: NHLT table: Fixed compilation of optional undocumented fields * iASL: Fix iASL compile error due to ACPI_TDEL_OFFSET. ==== bolt ==== Version update (0.9.4 -> 0.9.5) - update to 0.9.5: * Fixed several test and build setting issues. * Introduced packit. Packit was used to package rpm to downstream Fedora automatically. Moreover, Koji and bodhi could be triggered by packit automatically. ==== f2fs-tools ==== Subpackages: libf2fs9 - Replace transitional %usrmerged macro with regular version check (boo#1206798) ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - Fix inappropriately including commented lines in crypttab (bsc#1206279) * 0010-templates-import-etc-crypttab-to-grub.cfg.patch - Make grub.cfg invariant to efi and legacy platforms (bsc#1205200) - Removed patch linuxefi * grub2-secureboot-provide-linuxefi-config.patch * grub2-secureboot-use-linuxefi-on-uefi-in-os-prober.patch * grub2-secureboot-use-linuxefi-on-uefi.patch - Rediff * grub2-btrfs-05-grub2-mkconfig.patch * grub2-efi-xen-cmdline.patch * grub2-s390x-05-grub2-mkconfig.patch * grub2-suse-remove-linux-root-param.patch ==== hplip ==== Version update (3.22.6 -> 3.22.10) Subpackages: hplip-hpijs hplip-sane hplip-udev-rules - Update to 3.22.10 * drop no-systray-failure-message.patch (fixed upstream) * adapt Use-lsb_release-fallback-code-if-import-distro-fails.patch (code moved to different source file upstream) ==== libheif ==== Version update (1.12.0 -> 1.14.1) Subpackages: gdk-pixbuf-loader-libheif libheif1 - update to v1.14.1: * various issues is the build system * encoding images smaller than 64x64 with svt-av1 * the 'quality' parameter for svt-av1 * a potentially wrong image orientation for PNG inputs * crash on non-null terminated XMP input * HDR RGB to YCbCr conversion coefficients for limited range coefficients - update to 1.14.0: * adds SVT-AV1 encoder as AVIF backend * dynamic plugin interface for installing codecs independently from libheif (currently Unix only) * add XMP header compression (using zlib) * library should now be initialized with heif_init() * heif_convert: extract EXIF and XMP to separate files * heif_enc: add benchmarking function to compare codecs * copy EXIF/XMP between HEIC/AVIF files and JPEG/PNG in all kinds of combinations * remove EXIF orientation tag from input when converting to HEIC/AVIF and * generate irot/imir boxes matching the input orientation - The newly added thumbnailer is not only useful for gnome, so rename the sub-package gnome-heif-thumbnailer to heif-thumbnailer before its debut - Supplement libeheif1 with heif-thumbnailer - Create a gnome-heif-thumbnailer sub-package (boo#1204865) - Update to 1.13.0: * pay attention to the correct chroma sample positions * heif_image now holds a list of decoding warnings * use AOM AOM_USAGE_ALL_INTRA mode instead of AOM_USAGE_GOOD_QUALITY * 'strict' decoding mode with more checks for standard conformity of input * support for EXIF data >64k in JPEG output * proper library initialization and cleanup * separate quality settings for alpha channel (AOM) * improve color conversion speed (no lroundf) * build and packaging fixes - Remove 0f8496f22d284e1a69df12fe0b72f375aed31315.patch: contained - boo#1204865: No HEIC image preview in nautilus fixed by update ==== libjpeg-turbo ==== Subpackages: libjpeg8 libjpeg8-32bit libturbojpeg0 - Add explicit provides for jpegtran, so it can be installed easier ==== libksba ==== Version update (1.6.2 -> 1.6.3) - update to 1.6.3 (bsc#1206579, CVE-2022-47629): * Fix another integer overflow in the CRL parser. Release-info: https://dev.gnupg.org/T6304 ==== libxkbcommon ==== Version update (1.4.1 -> 1.5.0) Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbcommon0-32bit libxkbregistry0 - Update to release 1.5.0 * Fix crash in `xkbcli interactive-wayland` under a compositor which supports new versions of the xdg-shell protocol. * New API: XKB_CONTEXT_NO_SECURE_GETENV, RXKB_CONTEXT_NO_SECURE_GETENV ==== man-pages ==== Version update (5.13 -> 6.02) - Update to version 6.00 * Updated manual pages and interface documentation * Move definitions of types to separate pages in man2type/ and man3type/. Previously, they were spread (and duplicated) in other pages, or in system_data_types.7 (with links in man3/). * Add man3head/ for pages that document header files. * Add man3const/ for pages that document constants. * Improve consistency of man(7) source * Manual pages sections: * Title (.TH): * Remove 5th argument to TH (middle-header). * Specify "Linux man-pages" and the version in the 4th argument (left-footer). * Add the LIBRARY section. This section standardizes a way to document the library that provides a given interface. * Add the CAVEATS section. BUGS and NOTES were serving that purpose before, but CAVEATS is more appropriate. * Rename the CONFORMING TO section to STANDARDS for consistency with other projects, such as the BSDs. * SYNOPSIS: Add the ISO C2X [[deprecated]] attribute for functions that have been deprecated or removed. * EXAMPLES: Improve consistency of C source code. Also, reduce the number of warnings that several linting tools emit. * COLOPHON: Remove section (its purpose is now served by the title). - Update to version 6.01 * Updated interface documentation * Manual pages' sections: * Title (.TH): * Remove the hardcoded date (TH 3rd argument), and replace it by a placeholder that should be changed when creating the tarball. This removes the need for a tstamp commit before each release. - Update to version 6.02 * Updated manual pages and interface documentation, noteable: * copy_file_range.2: Fix wrong kernel version information * process_madvise.2: Fix capability and ptrace requirements * madvise.2: Update Transparent Huge Pages file/shmem documentation for Linux 5.4+. * Use correct letter case in manual page titles, instead of uppercase. * Use \" t comments when appropriate (Lintian needs this). * SYNOPSIS: * Add _Nullable for functions that receive NULL as a meaningful input. * Use VLA syntax to clarify the meaning of size parameters, rather than hiding it in possibly-confusing text. * Use [[noreturn]] instead of noreturn, which will be deprecated soon. - Rebased man-pages-tcp_fack.patch - Added keyring and signed source ==== mhvtl ==== - Handle the fact that version 15.5 of our kernel back-ported changes to the SCSI queue command, changing args fromn 2 to 1, by adding a patch that helps the code detect the actual number of args (bsc#1206172), adding: * mhvtl-fix-queuecomand-args.patch ==== openafs ==== Version update (1.8.9~pre2 -> 1.8.9) Subpackages: openafs-client openafs-kmp-default - update to offical openafs-1.8.9 * all changes as openafs-1.8.9pre2 * fix possible DoS attack ==== os-prober ==== Version update (1.79 -> 1.81) - update to 1.81 - use %autosetup macro to unpack source and apply patch - drop patch for upstream * os-prober-multiple-initrd.patch - rediff * Improve-btrfs-handling-on-os-probing-for-grub2.patch * os-prober-linux-distro-avoid-expensive-ld-file-test.patch * os-prober-linux-distro-parse-os-release.patch * os-prober-linux-secure-boot.patch ==== pam_mount ==== Subpackages: libcryptmount0 libcryptmount0-32bit pam_mount-32bit - Replace transitional %usrmerged macro with regular version check (boo#1206798) ==== perl-Mojolicious ==== Version update (9.30 -> 9.31) - updated to 9.31 see /usr/share/doc/packages/perl-Mojolicious/Changes 9.31 2022-12-21 - This release contains fixes for security issues, everybody should upgrade! - Removed experimental status from links method in Mojo::Headers. - Added tls_options attribute to Mojo::UserAgent. (heikojansen) - Fixed multiple "<script>" parsing issues in Mojo::DOM. - Fixed a sporadic warning in Mojo::UserAgent. (s1037989) - Fixed UNIX domain socket support in Mojo::UserAgent debug feature. (s1037989) - Fixed a bug in Mojo::DOM where strings like "<.>" were considered valid tags. ==== perl-Net-DNS ==== Version update (1.35 -> 1.36) - updated to 1.36 see /usr/share/doc/packages/perl-Net-DNS/Changes ==== poppler ==== Version update (22.12.0 -> 23.01.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 libpoppler126 poppler-tools - update to 23.01.0: core: * PDFDoc::sign: Fix crash if font can't be found * PDFDoc::sign: Try Arial to sign if Helvetica isn't found * FoFiType1::parse: Be more flexible parsing the encoding content. Issue #1324 * Gfx::opBeginMarkedContent: Support Span with Name. Issue #1327 * Splash: Avoid color issues due to implicit rounding * Splash: Fix crash on malformed file. * CairoOutputDev: Ignore text rendering mode for type3 fonts * Remove unused FoFiType1::load function build system: * Increase minimum required versions of several dependencies * Improve include path handling qt6: * Use less deprecated functions ==== poppler-qt5 ==== Version update (22.12.0 -> 23.01.0) - update to 23.01.0: core: * PDFDoc::sign: Fix crash if font can't be found * PDFDoc::sign: Try Arial to sign if Helvetica isn't found * FoFiType1::parse: Be more flexible parsing the encoding content. Issue #1324 * Gfx::opBeginMarkedContent: Support Span with Name. Issue #1327 * Splash: Avoid color issues due to implicit rounding * Splash: Fix crash on malformed file. * CairoOutputDev: Ignore text rendering mode for type3 fonts * Remove unused FoFiType1::load function build system: * Increase minimum required versions of several dependencies * Improve include path handling qt6: * Use less deprecated functions ==== procps4 ==== Subpackages: libproc2-0 procps4-lang - Replace transitional %usrmerged macro with regular version check (boo#1206798) ==== python-Pillow ==== Version update (9.3.0 -> 9.4.0) - update to 9.4.0 * API Additions - Added start position for getmask and getmask2 - Added the exact encoding option for WebP - Added signed option when saving JPEG2000 - Added IFD, Interop and LightSource ExifTags enums - XMP data can now be decoded for WEBP images through getxmp() - Writing JPEG comments * Security - Fix memory DOS in ImageFont - Null pointer dereference crash in ImageFont * Other Changes - Added support for DDS L and LA images - Formerly deprecated constants are not anymore ==== python-attrs ==== Version update (22.1.0 -> 22.2.0) - update to 22.2.0: * Python 3.5 is not supported anymore. * Python 3.6 is now deprecated and support will be removed in the next release. * `attrs.field()` now supports an *alias* option for explicit `__init__` argument names. * `attrs.NOTHING` is now an enum value, making it possible to use with e.g. `typing.Literal`. * Added missing re-import of `attr.AttrsInstance` to the `attrs` namespace. * Fix slight performance regression in classes with custom `__setattr__` and speedup even more. * Class-creation performance improvements by switching performance- sensitive templating operations to f-strings. ==== python-dbus-python ==== Version update (1.2.18 -> 1.3.2) - update to 1.3.2: * Python 3, version 3.5 or later, is required. * Installing from source code using Autotools requires Python 3.5 or later. * dbus.gobject_service, dbus.types.UTF8String and the utf8_strings keyword argument were only usable with Python 2, and therefore have been removed, along with the rest of the special cases for Python 2. * Add methods to Message objects to manipulate the interactive authorization flag * Add licensing information in REUSE format * Raise ValueError instead of crashing with assertion failure when a Unix fd index number is greater than the number of fds actually attached to the message (firewalld#985; Simon McVittie) * Raise ValueError instead of crashing with assertion failure when a negative number is passed to the UnixFd constructor * Fix undefined escape sequences in docstrings * Make `distcheck` compatible with Automake 1.16.4, by forcing an appropriate prefix to be used * Update AX_PYTHON_DEVEL from autoconf-archive for better forwards-compatibility * Avoid various deprecation warnings in the build system - distutils.sysconfig → sysconfig - distutils.util → sysconfig ==== python-importlib-metadata ==== Version update (5.1.0 -> 6.0.0) - update to 6.0.0: * #419: Declared ``Distribution`` as an abstract class, enforcing definition of abstract methods in instantiated subclasses. It's no longer possible to instantiate a ``Distribution`` or any subclasses unless they define the abstract methods. * #371: Deprecated expectation that ``PackageMetadata.__getitem__`` will return ``None`` for missing keys. In the future, it will raise a ``KeyError``. ==== python-importlib-resources ==== Version update (5.10.1 -> 5.10.2) - update to 5.10.2: * Prefer ``write_bytes`` to context manager as proposed in gh-100586. ==== python-pycurl ==== Version update (7.45.1 -> 7.45.2) - update to 7.45.2: * Python 3.9 compatibility for Py_TRASHCAN_SAFE_BEGIN * Add support for CURL_HTTP_VERSION_3 * Add CURLOPT_TLS13_CIPHERS and CURLOPT_PROXY_TLS13_CIPHERS options * Added HTTP09_ALLOWED option * Removed use of distutils - drop curl-789-error-message.patch (upstream) ==== python-pytz ==== Version update (2022.6 -> 2022.7) - update to 2022.7: * In the Mexican state of Chihuahua, the border strip near the US will change to agree with nearby US locations on 2022-11-30. The strip's western part, represented by Ciudad Juárez, switches from -06 all year to -07/-06 with US DST rules, like El Paso, TX. The eastern part, represented by Ojinaga, will observe US DST next year, like Presidio, TX. A new Zone America/Ciudad_Juarez splits from America/Ojinaga. * Much of Greenland, represented by America/Nuuk, stops observing winter time after March 2023, so its daylight saving time becomes standard time. * Changes for pre-1996 northern Canada * Update to past DST transition in Colombia (1993), Singapore (1981) ==== rav1e ==== Version update (0.6.1+0 -> 0.6.2+0) - Update to version 0.6.2+0: * Prepare for release * Fix new clippy lints for Rust 1.66 * Drop BUILT_TIME_UTC * Shorten progress text * Bump built to 0.5.2 * Make git2 optional * Simplify the version string * Specify default threads behavior * Fix the capi deps - Removed dependency on libgit2 * Added rav1e-cargo-no-git-default.patch ==== squid ==== - Migration of PAM settings to /usr/lib/pam.d. ==== sssd ==== Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-32bit sssd-krb5-common sssd-ldap - Migration of PAM settings to /usr/lib/pam.d. ==== traceroute ==== Version update (2.1.0 -> 2.1.1) - update to version 2.1.1: * Interpret ipv4-mapped ipv6 addresses (::ffff:A.B.C.D) as true ipv4 * Return back more robust poll(2) loop handling ==== xen ==== Subpackages: xen-libs xen-tools xen-tools-domU - Migration of PAM settings to /usr/lib/pam.d. ==== xlockmore ==== - Migration of PAM settings to /usr/lib/pam.d. ==== xz ==== Version update (5.2.10 -> 5.4.0) Subpackages: liblzma5 liblzma5-32bit xz-lang - update to 5.4.0: This bumps the minor version of liblzma because new features were added. The API and ABI are still backward compatible with liblzma 5.2.x and 5.0.x. Summary of new features added in the 5.3.x development releases: * liblzma: - Added threaded .xz decompressor lzma_stream_decoder_mt(). It can use multiple threads with .xz files that have multiple Blocks with size information in Block Headers. The threaded encoder in xz has always created such files. Single-threaded encoder cannot store the size information in Block Headers even if one used LZMA_FULL_FLUSH to create multiple Blocks, so this threaded decoder cannot use multiple threads with such files. If there are multiple Streams (concatenated .xz files), one Stream will be decompressed completely before starting the next Stream. - A new decoder flag LZMA_FAIL_FAST was added. It makes the threaded decompressor report errors soon instead of first flushing all pending data before the error location. - New Filter IDs: * LZMA_FILTER_ARM64 is for ARM64 binaries. * LZMA_FILTER_LZMA1EXT is for raw LZMA1 streams that don't necessarily use the end marker. - Added lzma_str_to_filters(), lzma_str_from_filters(), and lzma_str_list_filters() to convert a preset or a filter chain string to a lzma_filter[] and vice versa. These should make it easier to write applications that allow users to specify custom compression options. - Added lzma_filters_free() which can be convenient for freeing the filter options in a filter chain (an array of lzma_filter structures). - lzma_file_info_decoder() to makes it a little easier to get the Index field from .xz files. This helps in getting the uncompressed file size but an easy-to-use random access API is still missing which has existed in XZ for Java for a long time. - Added lzma_microlzma_encoder() and lzma_microlzma_decoder(). It is used by erofs-utils and may be used by others too. The MicroLZMA format is a raw LZMA stream (without end marker) whose first byte (always 0x00) has been replaced with bitwise-negation of the LZMA properties (lc/lp/pb). It was created for use in EROFS but may be used in other contexts as well where it is important to avoid wasting bytes for stream headers or footers. The format is also supported by XZ Embedded (the XZ Embedded version in Linux got MicroLZMA support in Linux 5.16). The MicroLZMA encoder API in liblzma can compress into a fixed-sized output buffer so that as much data is compressed as can be fit into the buffer while still creating a valid MicroLZMA stream. This is needed for EROFS. - Added lzma_lzip_decoder() to decompress the .lz (lzip) file format version 0 and the original unextended version 1 files. Also lzma_auto_decoder() supports .lz files. - lzma_filters_update() can now be used with the multi-threaded encoder (lzma_stream_encoder_mt()) to change the filter chain after LZMA_FULL_BARRIER or LZMA_FULL_FLUSH. - In lzma_options_lzma, allow nice_len = 2 and 3 with the match finders that require at least 3 or 4. Now it is internally rounded up if needed. - CLMUL-based CRC64 on x86-64 and E2K with runtime processor detection. On 32-bit x86 it currently isn't available unless - -disable-assembler is used which can make the non-CLMUL CRC64 slower; this might be fixed in the future. - Building with --disable-threads --enable-small is now thread-safe if the compiler supports __attribute__((__constructor__)). * xz: - Using -T0 (--threads=0) will now use multi-threaded encoder even on a single-core system. This is to ensure that output from the same xz binary is identical on both single-core and multi-core systems. - --threads=+1 or -T+1 is now a way to put xz into multi-threaded mode while using only one worker thread. The + is ignored if the number is not 1. - A default soft memory usage limit is now used for compression when -T0 is used and no explicit limit has been specified. This soft limit is used to restrict the number of threads but if the limit is exceeded with even one thread then xz will continue with one thread using the multi-threaded encoder and this limit is ignored. If the number of threads is specified manually then no default limit will be used; this affects only -T0. This change helps on systems that have very many cores and using all of them for xz makes no sense. Previously xz -T0 could run out of memory on such systems because it attempted to reserve memory for too many threads. This also helps with 32-bit builds which don't have a large amount of address space that would be required for many threads. The default soft limit for -T0 is at most 1400 MiB on all 32-bit platforms. - Previously a low value in --memlimit-compress wouldn't cause xz to switch from multi-threaded mode to single-threaded mode if the limit cannot otherwise be met; xz failed instead. Now xz can switch to single-threaded mode and then, if needed, scale down the LZMA2 dictionary size too just like it already did when it was started in single-threaded mode. - The option --no-adjust no longer prevents xz from scaling down the number of threads as that doesn't affect the compressed ... changelog too long, skipping 45 lines ... builds too ("make test").