Packages changed:
  brotli
  containerd
  dav1d
  gnome-initial-setup (43.1 -> 43.2)
  installation-images-MicroOS (17.77 -> 17.78)
  keylime
  libmfx
  libyui (4.4.9 -> 4.5.0)
  libyui-ncurses (4.4.9 -> 4.5.0)
  libyui-ncurses-pkg (4.4.9 -> 4.5.0)
  libyui-qt (4.4.9 -> 4.5.0)
  libyui-qt-graph (4.4.9 -> 4.5.0)
  libyui-qt-pkg (4.4.9 -> 4.5.0)
  lz4
  mariadb-connector-c (3.3.3 -> 3.3.4)
  openjpeg2
  podman (4.3.1 -> 4.4.2)
  timezone
  timezone-java
  vim (9.0.1386 -> 9.0.1392)

=== Details ===

==== brotli ====
Subpackages: libbrotlicommon1 libbrotlidec1 libbrotlienc1

- Build AVX2 enabled hwcaps library for x86_64-v3

==== containerd ====

- Re-build containerd to use updated golang-packaging. jsc#1342

==== dav1d ====

- Revert last change. This is now handled in xxhash.

==== gnome-initial-setup ====
Version update (43.1 -> 43.2)
Subpackages: gnome-initial-setup-lang

- Update to version 43.2:
  + The webkitgtk-6.0 API version is now supported, in addition to
    the previous webkit2gtk-5.0 API version.
  + Bugs fixed:
  - The Shell quick settings menu will now be shown in the
    Initial Setup session. This regressed when the previous menu
    was renamed in gnome-shell during the 43 cycle.
  - Error messages shown during enterprise account setup can now
    be closed by clicking the Close button.
  + Updated translations.
- Add boolean pkgconfig(webkitgtk-6.0) BuildRequires following
  upstream changes.

==== installation-images-MicroOS ====
Version update (17.77 -> 17.78)

- merge gh#openSUSE/installation-images#636
- Include openssl hmac for SLE Micro (bsc#1208981)
- 17.78

==== keylime ====
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime

- Add tenant.conf.diff path to do not require a valid EK certificate
  (that is the case in TPM simulator)

==== libmfx ====

- Add upstream gcc13-fix.patch patch.

==== libyui ====
Version update (4.4.9 -> 4.5.0)

- Bump version to 4.5.0 (bsc#1208913)

==== libyui-ncurses ====
Version update (4.4.9 -> 4.5.0)

- Bump version to 4.5.0 (bsc#1208913)

==== libyui-ncurses-pkg ====
Version update (4.4.9 -> 4.5.0)

- Bump version to 4.5.0 (bsc#1208913)

==== libyui-qt ====
Version update (4.4.9 -> 4.5.0)

- Bump version to 4.5.0 (bsc#1208913)

==== libyui-qt-graph ====
Version update (4.4.9 -> 4.5.0)

- Bump version to 4.5.0 (bsc#1208913)

==== libyui-qt-pkg ====
Version update (4.4.9 -> 4.5.0)

- Bump version to 4.5.0 (bsc#1208913)

==== lz4 ====

- Build AVX2 enabled hwcaps library for x86_64-v3

==== mariadb-connector-c ====
Version update (3.3.3 -> 3.3.4)

- update to 3.3.4:
  https://mariadb.com/kb/en/mariadb-connector-c-3-3-4-release-notes/

==== openjpeg2 ====

- Build AVX2 enabled hwcaps library for x86_64-v3

==== podman ====
Version update (4.3.1 -> 4.4.2)
Subpackages: podman-cni-config

- Add patch to let quadlet use the default runtime
  Added patch:
  * Quadlet-use-the-default-runtime.patch
  => Remove dependency on crun
- Update to version 4.4.2:
  * Bump to v4.4.2
  * Release notes for v4.4.2
  * Revert "CI: Temporarily disable all AWS EC2-based tasks"
  * kube play: only enforce passthrough in Quadlet
  * Emergency fix for man pages: check for broken includes
  * CI: Temporarily disable all AWS EC2-based tasks
  * quadlet system tests: add useful defaults, logging
  * volume,container: chroot to source before exporting content
  * install sigproxy before start/attach
  * Update to c/image 5.24.1
  * events + container inspect test: RHEL fixes
  * Bump to v4.4.2-dev
- Remove patches (merged upstream):
  * volume-container-chroot-to-source-before-exporting-content.patch
- podman.spec: add `crun` requirement for quadlet
    (https://github.com/containers/podman/pull/17601)
- podman.spec: set PREFIX at build stage (boo#1208510)
- Add patch to fix bsc#1208364 aka CVE-2023-0778
  Added patch:
  * volume-container-chroot-to-source-before-exporting-content.patch
- Update to version 4.4.1:
  * Bump to v4.4.1
  * Update release notes for Podman 4.4.1
  * kube play: do not teardown unconditionally on error
  * Resolve symlink path for qemu directory if possible
  * events: document journald identifiers
  * Quadlet: exit 0 when there are no files to process
  * Cleanup podman-systemd.unit file
  * Install podman-systemd.unit  man page, make quadlet discoverable
  * Add missing return after errors
  * oci: bind mount /sys with --userns=(auto|pod:)
  * docs: specify order preference for FROM
  * Cirrus: Fix & remove GraphQL API tests
  * test: adapt test to work on cgroupv1
  * make hack/markdown-preprocess parallel-safe
  * Fix default handling of pids-limit
  * system tests: fix volume exec/noexec test
  * Bump to v4.4.1-dev
- Remove patches (merged upstream or resolved otherwise):
  * 0001-Revert-Default-missing-hostPort-to-containerPort-is-.patch
  * 0002-Make-the-priority-for-picking-the-storage-driver-con.patch
  * 0003-Only-override-the-graphdriver-to-vfs-if-the-priority.patch
- remove long obsolete update scriptlets
- Update to version 4.4.0:
  * Bump to v4.4.0
  * Final release notes for v4.4.0
  * Emergency fix for RHEL8 gating tests
  * Do not mount /dev/tty into rootless containers
  * Fixes port collision issue on use of --publish-all
  * Fix usage of absolute windows paths with --image-path
  * fix #17244: use /etc/timezone where `timedatectl` is missing on Linux
  * podman-events: document verbose create events
  * Making gvproxy.exe optional for building Windows installer
  * Add gvproxy to Windows packages
  * Match VT device paths to be blocked from mounting exactly
  * Clean up more language for inclusiveness
  * Set runAsNonRoot=true in gen kube
  * quadlet: Add device support for .volume files
  * fix: running check error when podman is default in wsl
  * fix: don't output "ago" when container is currently up and running
  * journald: podman logs only show logs for current user
  * journald: podman events only show events for current user
  * Add (podman {image,manifest} push --sign-by-sigstore=param-file.yaml)
  * DB: make loading container states optional
  * ps: do not sync container
  * Allow --device-cgroup-rule to be passed in by docker API
  * [v4.4] Bump to Buildah v1.29.0
  * Bump to v4.4.0-dev
  * Bump to v4.4.0-RC3
  * Create release notes for v4.4.0
  * Cirrus: Update operating branch
  * fix APIv2 python attach test flake
  * ps: query health check in batch mode
  * make example volume import, not import volume
  * Correct output when inspecting containers created with --ipc
  * Vendor containers/(storage, image, common, buildah)
  * Get correct username in pod when using --userns=keep-id
  * ps: get network data in batch mode
  * build(deps): bump github.com/onsi/gomega from 1.25.0 to 1.26.0
  * add hack/perf for comparing two container engines
  * systems: retrofit dns options test to honor other search domains
  * ps: do not create copy of container config
  * libpod: set search domain independently of nameservers
  * libpod,netavark: correctly populate /etc/resolv.conf with custom dns server
  * podman: relay custom DNS servers to network stack
  * (fix) mount_program is in storage.options.overlay
  * Change example target to default in doc
  * network create: do not allow `default` as name
  * kube-play: add support for HostPID in podSpec
  * build(deps): bump github.com/docker/docker
  * Let's see if #14653 is fixed or not
  * Add support for podman build --group-add
  * vendor in latests containers/(storage, common, build, image)
  * unskip network update test
    ... changelog too long, skipping 541 lines ...
  * Proof of concept: nightly dependency treadmill

==== timezone ====

- Add gcc13-fix.patch upsteam patch for GCC 13 compiler.

==== timezone-java ====

- Add gcc13-fix.patch upsteam patch for GCC 13 compiler.

==== vim ====
Version update (9.0.1386 -> 9.0.1392)
Subpackages: vim-data vim-data-common vim-small

- Updated to version 9.0.1392, fixes the following problems
- fixes CVE-2023-1264
  * Options test fails with some window width.
  * Scrollbar test sporadically fails.
  * Amiga: not all builds use gethostname().
  * Amiga: a couple of include files are included twice.
  * FOR_ALL_ macros are defined in an unexpected file.
  * "clear" macros are not always used.
  * Using NULL pointer with nested :open command.