Packages changed: PackageKit adobe-sourcehanserif-fonts (1.001 -> 2.001) avahi avahi-glib2 aws-cli (1.25.20 -> 1.25.37) bind (9.18.4 -> 9.18.5) cups ffmpeg-5 (5.0.1 -> 5.1) firewalld gegl (0.4.36 -> 0.4.38) google-noto-serif-cjk-fonts (20170403 -> 2.001) hdparm (9.63 -> 9.64) iptables java-11-openjdk (11.0.15.0 -> 11.0.16.0) kio-extras5 libbytesize (2.6 -> 2.7) libdrm (2.4.111 -> 2.4.112) libqb (2.0.4+20211112.a2691b9 -> 2.0.6+20220323.758044b) libslirp (4.6.1+7 -> 4.7.0+44) libstorage-ng (4.5.30 -> 4.5.31) liburing (2.1 -> 2.2) libvpx (1.11.0 -> 1.12.0) libwebp (1.2.2 -> 1.2.3) libxmlb (0.3.6 -> 0.3.9) libzypp (17.30.3 -> 17.31.0) live555 (2022.06.16 -> 2022.07.14) protobuf-c (1.4.0 -> 1.4.1) python-boto3 (1.24.20 -> 1.24.37) python-botocore (1.27.20 -> 1.27.37) python-charset-normalizer (2.0.12 -> 2.1.0) python-ldap (3.4.0 -> 3.4.2) python-rsa (4.8 -> 4.9) qemu (6.2.0 -> 7.0.0) sqlite3 (3.39.0 -> 3.39.2) texlive upower (0.99.17 -> 0.99.20) virtualbox (6.1.34 -> 6.1.36) virtualbox-kmp (6.1.34_k5.18.11_1 -> 6.1.36_k5.18.11_1) vulkan-tools xdg-desktop-portal (1.14.4 -> 1.14.5) zypper (1.14.54 -> 1.14.55) === Details === ==== PackageKit ==== Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module PackageKit-lang libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Move the dbus-1 system.d file to /usr (bsc#1201347) ==== adobe-sourcehanserif-fonts ==== Version update (1.001 -> 2.001) Subpackages: adobe-sourcehanserif-cn-fonts adobe-sourcehanserif-tw-fonts - Update to 2.001R * The copyright year was changed to “2017–2022.” * Many glyphs changes (maps, fixes, additions, adjustments) - Changes from 2.000R * The copyright year was changed to “2017–2021.” * Added support for Hong Kong SCS-2016 * Updated Latin glyphs derived from Source Serif to align with version 4.0 * All fonts have been built as variable fonts * Many glyphs changes (maps, fixes, additions, adjustments) - Add Hongkong specific subset fonts - Add variable fonts for all regions ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - Move the dbus-1 system.d file to /usr (bsc#1201345) ==== avahi-glib2 ==== Subpackages: libavahi-glib1 libavahi-gobject0 libavahi-ui-gtk3-0 - Move the dbus-1 system.d file to /usr (bsc#1201345) ==== aws-cli ==== Version update (1.25.20 -> 1.25.37) - Update to version 1.25.37 + For detailed changes see https://github.com/aws/aws-cli/blob/1.25.37/CHANGELOG.rst - Update Requires in spec file from setup.py ==== bind ==== Version update (9.18.4 -> 9.18.5) Subpackages: bind-doc bind-utils - Update to bind release 9.18.5 Bugs fixed: * When resolving a name, don't give up immediately if an authoritative server returns FORMERR; try the other servers first. * When synth-from-dnssec generated a response using records from a higher zone, it could unexpectedly prove non-existance of records in a subordinate grafted-on namespace. * Update HTTP listener settings on reconfiguration. * Fix a crash in dig NS search mode when one of the NS server queries fail. * Changed dnssec-signzone -H default to 0 additional NSEC3 iterations. * When processing a catalog zone member zone make sure that there is no configured pre-existing forward-only forw]ard zone with that name. [bind-9.18.5.tar.xz bind-9.18.5.tar.xz.sha512.asc] ==== cups ==== Subpackages: cups-client cups-config libcups2 libcupsimage2 - Move the dbus-1 system.d file to /usr (bsc#1201346) ==== ffmpeg-5 ==== Version update (5.0.1 -> 5.1) Subpackages: libavcodec59 libavdevice59 libavfilter8 libavformat59 libavutil57 libpostproc56 libswresample4 libswscale6 - Enable libjxl - Update ffmpeg-chromium.patch from upstream - Update to release 5.1 * AVIF image muxer support for the AV1-based image format * JPEG-XL image support * Removed the X-Video Motion Compensation (XvMC) hardware acceleration * IPFS/IPNS protocol support * PCM-Bluray encoder support - Drop vmaf-trim-usr-local.patch (obsolete), ffmpeg-openh264-averr-on-bad-version.patch (merged) - Add work-around-abi-break.patch ==== firewalld ==== Subpackages: firewalld-bash-completion firewalld-lang firewalld-zsh-completion python3-firewall - readd iptables requires, as docker uses iptables passthrough currently, which calls into iptables (bsc#1201836) - Also remove ipset, ebtables and iptables from the BuildRequires list (compare with change from 2022-03-03 - Thorsten Kukuk ) ==== gegl ==== Version update (0.4.36 -> 0.4.38) Subpackages: gegl-0_4 gegl-0_4-lang libgegl-0_4-0 - Update BuildRequires to reflect it now does work with ffmpeg5. - Update to version 0.4.38: + Operations: - denoise-dct: a NEW denoising operation which decomposes the input buffer to sliding overlapping patches, calculates the DCT denoising in each patch, and then aggregates the denoised patches to the output buffer averaging the overlapped pixels. - ff-load and ff-save: big cleanup API cleanup, now ffmpeg-5.0 compatible. - gif-load: updated to latest upstream libnsgif version. - slic: progress reporting and improved parameter handling. - vector-fill: updated to latest upstream ctx version. - oilify: clamp inputs to avoid nan in output. - gegl:load fix possible double free. - rgbe-write: plug leaks in error paths. + Core: Fixes of some potential NULL dereferences on custom dataformats for malformed inputs. ==== google-noto-serif-cjk-fonts ==== Version update (20170403 -> 2.001) Subpackages: noto-serif-jp-bold-fonts noto-serif-jp-fonts noto-serif-jp-regular-fonts noto-serif-sc-bold-fonts noto-serif-sc-fonts noto-serif-sc-regular-fonts noto-serif-tc-bold-fonts noto-serif-tc-fonts noto-serif-tc-regular-fonts - Move google-noto-serif-cjk-fonts into its own repository again - Update version to 2.001 - Follow upstream versioning: use version numbers instead of dates - Fix the source URL to be properly downloadable - Update version to 2.002(20201202) * The copyright year was changed from “2014–2019” to “2014–2020.” * Addressed Issue #207 including glyph changes to U+4E08 and U+5C83. Extension G encodings were added for U+30729, U+30EDD, U+30EDE, and U+3106C and the previous GSUB rules were removed. * Updated Korean glyph for U+58C4 as reported in Source Han Serif Issue #87 * Addressed Issue #204 for U+50E7, U+89E6, U+8FD0, U+9EA4, U+25C4A * Mapped HK U+5C13 尓 to JP glyph * Fixed U+21B9 as reported in Issue #260 * Changed Korean mapping for U+51A4 as reported in Issue #202 * The weights for Kanbun glyphs U+3191–U+319F have been adjusted as mentioned in the table at the beginning of Issue #205. * Fixed Korean IVS mapping for U+8ACB as reported in Issue #276 ==== hdparm ==== Version update (9.63 -> 9.64) - update to 9.64: * fix truncated output buf with --Istdin ==== iptables ==== Subpackages: libip4tc2 libip6tc2 libxtables12 xtables-plugins - add baselibs.conf for libip4tc2, will be needed by libsystemd-shared-251.so ==== java-11-openjdk ==== Version update (11.0.15.0 -> 11.0.16.0) Subpackages: java-11-openjdk-headless - Update to upstream tag jdk-11.0.16+8 (July 2022 CPU) * Security fixes: + JDK-8272243: Improve DER parsing + JDK-8272249: Better properties of loaded Properties + JDK-8277608: Address IP Addressing + JDK-8281859, CVE-2022-21540, bsc#1201694: Improve class compilation + JDK-8281866, CVE-2022-21541, bsc#1201692: Enhance MethodHandle invocations + JDK-8283190: Improve MIDI processing + JDK-8284370: Improve zlib usage + JDK-8285407, CVE-2022-34169, bsc#1201684: Improve Xalan supports * Other fixes: + JDK-6986863: ProfileDeferralMgr throwing ConcurrentModificationException + JDK-7124293: [macosx] VoiceOver reads percentages rather than the actual values for sliders. + JDK-7124301: [macosx] When in a tab group if you arrow between tabs there are no VoiceOver announcements. + JDK-8133713: [macosx] Accessible JTables always reported as empty + JDK-8139046: Compiler Control: IGVPrintLevel directive should set PrintIdealGraph + JDK-8139173: [macosx] JInternalFrame shadow is not properly drawn + JDK-8163498: Many long-running security libs tests + JDK-8166727: javac crashed: [jimage.dll+0x1942] ImageStrings::find+0x28 + JDK-8169004: Fix redundant @requires tags in tests + JDK-8181571: printing to CUPS fails on mac sandbox app + JDK-8182404: remove jdk.testlibrary.JDKToolFinder and JDKToolLauncher + JDK-8186548: move jdk.testlibrary.JcmdBase closer to tests + JDK-8192057: com/sun/jdi/BadHandshakeTest.java fails with java.net.ConnectException + JDK-8193682: Infinite loop in ZipOutputStream.close() + JDK-8199874: [TESTBUG] runtime/Thread/ThreadPriorities.java fails with "expected 0 to equal 10" + JDK-8202886: [macos] Test java/awt/MenuBar/8007006/ /bug8007006.java fails on MacOS + JDK-8203238: [TESTBUG] rewrite MemOptions shell test in Java + JDK-8203239: [TESTBUG] remove vmTestbase/vm/gc/kind/parOld test + JDK-8206187: javax/management/remote/mandatory/connection/ /DefaultAgentFilterTest.java fails with Port already in use + JDK-8206330: Revisit com/sun/jdi/RedefineCrossEvent.java + JDK-8207364: nsk/jvmti/ResourceExhausted/resexhausted003 fails to start + JDK-8208207: Test nsk/stress/jni/gclocker/gcl001 fails after co-location + JDK-8208246: flags duplications in vmTestbase_vm_g1classunloading tests + JDK-8208249: TriggerUnloadingByFillingMetaspace generates garbage class names + JDK-8208697: vmTestbase/metaspace/stressHierarchy/ /stressHierarchy012/TestDescription.java fails with OutOfMemoryError: Metaspace + JDK-8209150: [TESTBUG] Add logging to verify JDK-8197901 to a different test + JDK-8209776: Refactor jdk/security/JavaDotSecurity/ifdefs.sh to plain java test + JDK-8209883: ZGC: Compile without C1 broken + JDK-8209920: runtime/logging/RedefineClasses.java fail with OOME with ZGC + JDK-8210022: remove jdk.testlibrary.ProcessThread, TestThread and XRun + JDK-8210039: move OSInfo to top level testlibrary + JDK-8210108: sun/tools/jstatd test build failures after JDK-8210022 + JDK-8210112: remove jdk.testlibrary.ProcessTools + JDK-8210649: AssertionError @ jdk.compiler/com.sun.tools.javac.comp.Modules.enter (Modules.java:244) + JDK-8210732: remove jdk.testlibrary.Utils + JDK-8211795: ArrayIndexOutOfBoundsException in PNGImageReader after JDK-6788458 + JDK-8211822: Some tests fail after JDK-8210039 + JDK-8211962: Implicit narrowing in MacOSX java.desktop jsound + JDK-8212151: jdi/ExclusiveBind.java times out due to "bind failed: Address already in use" on Solaris-X64 + JDK-8213440: Lingering INCLUDE_ALL_GCS in test_oopStorage_parperf.cpp + JDK-8214275: CondyRepeatFailedResolution asserts "Dynamic constant has no fixed basic type" + JDK-8214799: Add package declaration to each JTREG test case in the gc folder + JDK-8215544: SA: Modify ClhsdbLauncher to add sudo privileges to enable MacOS tests on Mach5 + JDK-8216137: assert(Compile::current()->live_nodes() < Compile::current()->max_node_limit()) failed: Live Node limit exceeded limit + JDK-8216265: [testbug] Introduce Platform.sharedLibraryPathVariableName() and adapt all tests. + JDK-8217017: [TESTBUG] Tests fail to compile after JDK-8216265 + JDK-8217233: Update build settings for AIX/xlc + JDK-8217340: Compilation failed: tools/launcher/Test7029048.java + JDK-8217473: SA: Tests using ClhsdbLauncher fail on SAP ... changelog too long, skipping 374 lines ... /SSLSessionImpl/NoInvalidateSocketException.java ==== kio-extras5 ==== Subpackages: kio-extras5-lang libkioarchive5 - Add preliminary patch to fix smb connections with samba >= 4.16 (boo#1201737, kde#453090): * 0001-smb-kio_smb_browse-Check-error-code-EINVAL-to-prompt.patch ==== libbytesize ==== Version update (2.6 -> 2.7) Subpackages: libbytesize-lang libbytesize1 - update to 2.7: * Fix skipping tests when required locale is missing * Remove Travis CI configuration * Fix some warnings and typos in docstrings and comments * Fix warnings dicovered by the GCC analyzer * build: avoid bashisms in configure * Update translation files * Do not use distutils to get Python library path ==== libdrm ==== Version update (2.4.111 -> 2.4.112) Subpackages: libdrm-devel libdrm2 libdrm_amdgpu1 libdrm_intel1 libdrm_nouveau2 libdrm_radeon1 - update to 2.4.112: * xf86drmMode: introduce drmModeConnectorGetPossibleCrtcs * xf86drmMode: introduce drmModeGetConnectorTypeName * xf86drmMode: constify drmModeAtomicReq functions * gen_table_fourcc: strip _MODIFIER suffix for INVALID * testsuite fixes ==== libqb ==== Version update (2.0.4+20211112.a2691b9 -> 2.0.6+20220323.758044b) - Make sure that the libstat_wrapper.so library is included in the libqb-tests RPM (when built) - Update to version 2.0.6+20220323.758044b (v2.0.6): - test: Include ipc_sock.test in the libqb-tests rpm (gh#ClusterLabs/libqb##463) - Update to version 2.0.5+20220321.ccdaada (v2.0.5): - blackbox: Sanitize items read from the blackbox header (gh#ClusterLabs/libqb#438) - ipcc: Fix errno returned from qb_ipcc_connect (gh#ClusterLabs/libqb#460) - util: reimplement time functions as a series of fallbacks (gh#ClusterLabs/libqb#457) - util: use HAVE_GETTIMEOFDAY where appropriate - Retry if posix_fallocate is interrupted with EINTR (#453) (gh#ClusterLabs/libqb#451, bsc#1193737, bsc#1193912) - Merge: * bsc#1193737-0001-Retry-if-posix_fallocate-is-interrupted-with-EINTR-4.patch - ipcc: Add an async connect API (gh#ClusterLabs/libqb#450) ==== libslirp ==== Version update (4.6.1+7 -> 4.7.0+44) - Update to version 4.7.0+44 (current git master): * Fix vmstate regression * msvc: use char* for pointer arithmetic * Align outgoing packets * Bump incoming packet alignment to 8 bytes * msvc: fix some gcc-specific pragma warnings * msvc: enable vmstate code on !gnuc * vmstate: only enable when building under GNU C * ncsitest: Fix build with msvc * Avoid running git-version-gen when building with MS VC * windows: export symbols * win32: replace strcasecmp with g_ascii_strcasecmp * Drop spurious inline * Avoid returning void * Fix arithmetic on void * * Avoid using ##__VA_ARGS__ gcc extension * Fix bitfields order for MSVC * Separate out SLIRP_PACKED to SLIRP_PACKED_BEGIN/END * Do not use ssize_t on Windows * Do not include unistd.h on windows, it does not have it * Accept build-aux/git-version-gen failing to run * container_of: avoid using __extension__ * ncsi: Add Mellanox Get Mac Address handler * slirp: Add out-of-band ethernet address * ncsi: Add OEM command handler * ncsi: Add basic test for Get Version ID response * ncsi: Use response header for payload length * ncsi: Pass command header to response handlers * src/slirp.h: Bump the minimum Windows version to Windows 7 * ncsi: Add Get Version ID command * ncsi: Pass Slirp structure to response handlers * slirp: Add manufacturer's ID * Add support for Haiku to meson.build * meson: add extra warnings * win32: declare some local functions as static * Include and for AF_INET6 and inet_pton * Release v4.7.0 * bump ABI version and age * slirp: invoke client callback before creating timers * pingtest: port to timer_new_opaque * introduce timer_new_opaque callback * introduce slirp_timer_new wrapper * icmp6: make ndp_send_ra static * Add sanitizers CI runs * socket: Handle ECONNABORTED from recv * bootp: fix g_str_has_prefix warning/critical * slirp: Don't duplicate packet in tcp_reass * Rename insque/remque -> slirp_[ins|rem]que * mbuf: Use SLIRP_DEBUG to enable mbuf debugging instead of DEBUG * Replace inet_ntoa() with safer inet_ntop() * Add VMS_END marker * bootp: add support for UEFI HTTP boot * IPv6 DNS proxying support * Add missing scope_id in caching * Drop fixed TODO * socket: Move closesocket(so->s_aux) to sofree * socket: Check so_type instead of so_tcpcb for Unix-to-inet translation * socket: Add s_aux field to struct socket for storing auxilliary socket * socket: Initialize so_type in socreate * socket: Allocate Unix-to-TCP hostfwd port from OS by binding to port 0 * Allow to disable internal DHCP server * slirp_pollfds_fill: Explain why dividing so_snd.sb_datalen by two * CI: run integration tests with slirp4netns * socket: Check address family for Unix-to-inet accept translation * socket: Add debug args for tcpx_listen (inet and Unix sockets) * socket: Restore original definition of fhost * socket: Move include to socket.h * Support Unix sockets in hostfwd * resolv: fix IPv6 resolution on Darwin * Use the exact sockaddr size in getnameinfo call * Initialize sin6_scope_id to zero * slirp_socketpair_with_oob: Connect pair through 127.0.0.1 * resolv: fix memory leak when using libresolv * pingtest: Add a trivial ping test * icmp: Support falling back on trying a SOCK_RAW socket ==== libstorage-ng ==== Version update (4.5.30 -> 4.5.31) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#891 - added unit test - fixed typo - 4.5.31 ==== liburing ==== Version update (2.1 -> 2.2) - add handle-eintr.patch, enable tests everywhere - enable tests for != ppc64le - update to 2.2: * Support non-libc builds. * Optimized syscall handling for x86-64/x86/aarch64. * Enable non-lib function calls for fast path functions. * Add support for multishot accept. * io_uring_register_files() will set RLIMIT_NOFILE if necessary. * Add support for registered ring fds, io_uring_register_ring_fd(), reducingthe overhead of an io_uring_enter() system call. * Add support for the message ring opcode. * Add support for newer request cancelation features. * Add support for IORING_SETUP_COOP_TASKRUN, which can help reduce the overhead of io_uring in general. Most applications should set this flag, see the io_uring_setup.2 man page for details. * Add support for registering a sparse buffer and file set. * Add support for a new buffer provide scheme, see io_uring_register_buf_ring.3 for details. * Add io_uring_submit_and_wait_timeout() for submitting IO and waiting for completions with a timeout. * Add io_uring_prep_{read,write}v2 prep helpers. * Add io_uring_prep_close_direct() helper. * Add support for SQE128 and CQE32, which are doubly sized SQE and CQE rings. This is needed for some cases of the new IORING_OP_URING_CMD, notably for NVMe passthrough. * ~5500 lines of man page additions, including adding ~90 new man pages. * Synced with the 5.19 kernel release, supporting all the features of 5.19 and earlier. * 24 new regression test cases, and ~7000 lines of new tests in general. * General optimizations and fixes. ==== libvpx ==== Version update (1.11.0 -> 1.12.0) - update to 1.12.0: This release adds optimizations for Loongarch, adds support for vp8 in the real-time rate control library, upgrades GoogleTest to v1.11.0, updates libwebm to libwebm-1.0.0.28-20-g206d268, and includes numerous bug fixes. - Enhancement: Numerous improvements on checking memory allocations. Optimizations for Loongarch. Code clean-up. - Bug fixes: Fix to a crash related to {vp8/vp9}_set_roi_map. Fix to compiling failure with -Wformat-nonliteral. Fix to integer overflow with vp9 with high resolution content. Fix to AddNoiseTest failure with ARMv7. Fix to libvpx Null-dereference READ in vp8. ==== libwebp ==== Version update (1.2.2 -> 1.2.3) Subpackages: libwebp7 libwebpdemux2 libwebpmux3 - update to 1.2.3: * security fix for lossless encoder (#565, chromium:1313709) * improved progress granularity in WebPReportProgress() when using lossless * improved precision in Sharp YUV (-sharp_yuv) conversion * many corrections to webp-lossless-bitstream-spec.txt (#551) * crash/leak fixes on error/OOM and other bug fixes (#558, #563, #569, #573) ==== libxmlb ==== Version update (0.3.6 -> 0.3.9) - update to 0.3.9: * Fix the crash for when the root tree has no children (Richard Hughes) * Fix the crash when getting the element for the [empty] root (Richard Hughes) * Install xb-tool into bindir (Richard Hughes) * Ensure reproducible results when importing a node (Richard Hughes) * Ignore all hidden files when using _WATCH_DIRECTORY (Richard Hughes) * Show the value bindings when using XB_SILO_PROFILE_FLAG_XPATH (Richard Hughes) * Use the correct lookup method for the python3 script interpreter (Eli Schwartz) ==== libzypp ==== Version update (17.30.3 -> 17.31.0) - Add PoolItem::statusReinit to reset the status it's initial state in the ResPool (might help bsc#1199895) This may either be 'KEEP_STATE bySOLVER' or 'LOCKED byUSER' if the PoolItem matched a hard lock defined in /etc/zypp/locks. - Fix building with GCC 13 on i586 (fixes #407, fixes #396) - Be prepared to receive exceptions from curl_easy_cleanup (bsc#1201092) - Don't auto-flag kernel-firmware as 'reboot-needed' (bsc#1200993) - Remove Medianetwork and dependend code. This commit removes the MediaNetwork tech preview and all related code. First reason for this is that MediaNetwork was just meant as a way to test the new CURL based downloader and second: since the Provide API is going to completely replace the current media backend it would be extra work to ensure that changes on the Downloader do not break MediaNetwork. - version 17.31.0 (22) ==== live555 ==== Version update (2022.06.16 -> 2022.07.14) Subpackages: libBasicUsageEnvironment1 libUsageEnvironment3 libgroupsock30 libliveMedia107 - update to 2022.07.14: * use SHA-1 rather than MD5 to hash the latest tarball of our code ==== protobuf-c ==== Version update (1.4.0 -> 1.4.1) - Update to release 1.4.1 * Fixed unsigned integer overflow (GH#499) * Avoid shifting signed values (GH#508) - Remove 508.patch (merged) ==== python-boto3 ==== Version update (1.24.20 -> 1.24.37) - Update to version 1.24.37 * api-change:``autoscaling``: [``botocore``] Documentation update for Amazon EC2 Auto Scaling. - from version 1.24.36 * api-change:``account``: [``botocore``] This release enables customers to manage the primary contact information for their AWS accounts. For more information, see https://docs.aws.amazon.com/accounts/latest/reference/API_Operations.html * api-change:``ec2``: [``botocore``] Added support for EC2 M1 Mac instances. For more information, please visit aws.amazon.com/mac. * api-change:``iotdeviceadvisor``: [``botocore``] Added new service feature (Early access only) - Long Duration Test, where customers can test the IoT device to observe how it behaves when the device is in operation for longer period. * api-change:``medialive``: [``botocore``] Link devices now support remote rebooting. Link devices now support maintenance windows. Maintenance windows allow a Link device to install software updates without stopping the MediaLive channel. The channel will experience a brief loss of input from the device while updates are installed. * api-change:``rds``: [``botocore``] This release adds the "ModifyActivityStream" API with support for audit policy state locking and unlocking. * api-change:``transcribe``: [``botocore``] Remove unsupported language codes for StartTranscriptionJob and update VocabularyFileUri for UpdateMedicalVocabulary - from version 1.24.35 * api-change:``athena``: [``botocore``] This feature allows customers to retrieve runtime statistics for completed queries * api-change:``cloudwatch``: [``botocore``] Update cloudwatch client to latest version * api-change:``dms``: [``botocore``] Documentation updates for Database Migration Service (DMS). * api-change:``docdb``: [``botocore``] Enable copy-on-write restore type * api-change:``ec2-instance-connect``: [``botocore``] This release includes a new exception type "EC2InstanceUnavailableException" for SendSSHPublicKey and SendSerialConsoleSSHPublicKey APIs. * api-change:``frauddetector``: [``botocore``] The release introduces Account Takeover Insights (ATI) model. The ATI model detects fraud relating to account takeover. This release also adds support for new variable types: ARE_CREDENTIALS_VALID and SESSION_ID and adds new structures to Model Version APIs. * api-change:``iotsitewise``: [``botocore``] Added asynchronous API to ingest bulk historical and current data into IoT SiteWise. * api-change:``kendra``: [``botocore``] Amazon Kendra now provides Oauth2 support for SharePoint Online. For more information, see https://docs.aws.amazon.com/kendra/latest/dg/data-source-sharepoint.html * api-change:``network-firewall``: [``botocore``] Network Firewall now supports referencing dynamic IP sets from stateful rule groups, for IP sets stored in Amazon VPC prefix lists. * api-change:``rds``: [``botocore``] Adds support for creating an RDS Proxy for an RDS for MariaDB database. - from version 1.24.34 * api-change:``acm-pca``: [``botocore``] AWS Certificate Manager (ACM) Private Certificate Authority (PCA) documentation updates * api-change:``iot``: [``botocore``] GA release the ability to enable/disable IoT Fleet Indexing for Device Defender and Named Shadow information, and search them through IoT Fleet Indexing APIs. This includes Named Shadow Selection as a part of the UpdateIndexingConfiguration API. - from version 1.24.33 * api-change:``devops-guru``: [``botocore``] Added new APIs for log anomaly detection feature. * api-change:``glue``: [``botocore``] Documentation updates for AWS Glue Job Timeout and Autoscaling * api-change:``sagemaker-edge``: [``botocore``] Amazon SageMaker Edge Manager provides lightweight model deployment feature to deploy machine learning models on requested devices. * api-change:``sagemaker``: [``botocore``] Fixed an issue with cross account QueryLineage * api-change:``workspaces``: [``botocore``] Increased the character limit of the login message from 850 to 2000 characters. - from version 1.24.32 * api-change:``discovery``: [``botocore``] Add AWS Agentless Collector details to the GetDiscoverySummary API response * api-change:``ec2``: [``botocore``] Documentation updates for Amazon EC2. * api-change:``elasticache``: [``botocore``] Adding AutoMinorVersionUpgrade in the DescribeReplicationGroups API * api-change:``kms``: [``botocore``] Added support for the SM2 KeySpec in China Partition Regions * api-change:``mediapackage``: [``botocore``] This release adds "IncludeIframeOnlyStream" for Dash endpoints and increases the number of supported video and audio encryption presets for Speke v2 * api-change:``sagemaker``: [``botocore``] Amazon SageMaker Edge Manager provides lightweight model deployment feature to deploy machine learning models on requested devices. * api-change:``sso-admin``: [``botocore``] AWS SSO now supports attaching customer managed policies and a permissions boundary to your permission sets. This release adds new API operations to manage and view the customer managed policies and the permissions boundary for a given permission set. - from version 1.24.31 * api-change:``datasync``: [``botocore``] Documentation updates for AWS DataSync regarding configuring Amazon FSx for ONTAP location security groups and SMB user permissions. * api-change:``drs``: [``botocore``] Changed existing APIs to allow choosing a dynamic volume type for replicating volumes, to reduce costs for customers. * api-change:``evidently``: [``botocore``] This release adds support for the new segmentation feature. * api-change:``wafv2``: [``botocore``] This SDK release provide customers ability to add sensitivity level for WAF SQLI Match Statements. - Update BuildRequires and Requires from setup.py - Update to version 1.24.30 * api-change:``athena``: [``botocore``] This release updates data types that contain either QueryExecutionId, NamedQueryId or ExpectedBucketOwner. Ids must be between 1 and 128 characters and contain only non-whitespace characters. ExpectedBucketOwner must be 12-digit string. * api-change:``codeartifact``: [``botocore``] This release introduces Package Origin Controls, a mechanism used to counteract Dependency Confusion attacks. Adds two new APIs, PutPackageOriginConfiguration and DescribePackage, and updates the ListPackage, DescribePackageVersion and ListPackageVersion APIs in support of the feature. * api-change:``config``: [``botocore``] Update ResourceType enum with values for Route53Resolver, Batch, DMS, Workspaces, Stepfunctions, SageMaker, ElasticLoadBalancingV2, MSK types * api-change:``ec2``: [``botocore``] This release adds flow logs for Transit Gateway to allow customers to gain deeper visibility and insights into network traffic through their Transit Gateways. * api-change:``fms``: [``botocore``] Adds support for strict ordering in stateful rule groups in Network Firewall policies. * api-change:``glue``: [``botocore``] This release adds an additional worker type for Glue Streaming jobs. * api-change:``inspector2``: [``botocore``] This release adds support for Inspector V2 scan configurations through the get and update configuration APIs. Currently this allows configuring ECR automated re-scan duration to lifetime or 180 days or 30 days. * api-change:``kendra``: [``botocore``] This release adds AccessControlConfigurations which allow ... changelog too long, skipping 85 lines ... - Update BuildRequires and Requires from setup.py ==== python-botocore ==== Version update (1.27.20 -> 1.27.37) - Update to 1.27.37 * api-change:``autoscaling``: Documentation update for Amazon EC2 Auto Scaling. - from version 1.27.36 * api-change:``account``: This release enables customers to manage the primary contact information for their AWS accounts. For more information, see https://docs.aws.amazon.com/accounts/latest/reference/API_Operations.html * api-change:``ec2``: Added support for EC2 M1 Mac instances. For more information, please visit aws.amazon.com/mac. * api-change:``iotdeviceadvisor``: Added new service feature (Early access only) - Long Duration Test, where customers can test the IoT device to observe how it behaves when the device is in operation for longer period. * api-change:``medialive``: Link devices now support remote rebooting. Link devices now support maintenance windows. Maintenance windows allow a Link device to install software updates without stopping the MediaLive channel. The channel will experience a brief loss of input from the device while updates are installed. * api-change:``rds``: This release adds the "ModifyActivityStream" API with support for audit policy state locking and unlocking. * api-change:``transcribe``: Remove unsupported language codes for StartTranscriptionJob and update VocabularyFileUri for UpdateMedicalVocabulary - from version 1.27.35 * api-change:``athena``: This feature allows customers to retrieve runtime statistics for completed queries * api-change:``cloudwatch``: Update cloudwatch client to latest version * api-change:``dms``: Documentation updates for Database Migration Service (DMS). * api-change:``docdb``: Enable copy-on-write restore type * api-change:``ec2-instance-connect``: This release includes a new exception type "EC2InstanceUnavailableException" for SendSSHPublicKey and SendSerialConsoleSSHPublicKey APIs. * api-change:``frauddetector``: The release introduces Account Takeover Insights (ATI) model. The ATI model detects fraud relating to account takeover. This release also adds support for new variable types: ARE_CREDENTIALS_VALID and SESSION_ID and adds new structures to Model Version APIs. * api-change:``iotsitewise``: Added asynchronous API to ingest bulk historical and current data into IoT SiteWise. * api-change:``kendra``: Amazon Kendra now provides Oauth2 support for SharePoint Online. For more information, see https://docs.aws.amazon.com/kendra/latest/dg/data-source-sharepoint.html * api-change:``network-firewall``: Network Firewall now supports referencing dynamic IP sets from stateful rule groups, for IP sets stored in Amazon VPC prefix lists. * api-change:``rds``: Adds support for creating an RDS Proxy for an RDS for MariaDB database. - from version 1.27.34 * api-change:``acm-pca``: AWS Certificate Manager (ACM) Private Certificate Authority (PCA) documentation updates * api-change:``iot``: GA release the ability to enable/disable IoT Fleet Indexing for Device Defender and Named Shadow information, and search them through IoT Fleet Indexing APIs. This includes Named Shadow Selection as a part of the UpdateIndexingConfiguration API. - from version 1.27.33 * api-change:``devops-guru``: Added new APIs for log anomaly detection feature. * api-change:``glue``: Documentation updates for AWS Glue Job Timeout and Autoscaling * api-change:``sagemaker-edge``: Amazon SageMaker Edge Manager provides lightweight model deployment feature to deploy machine learning models on requested devices. * api-change:``sagemaker``: Fixed an issue with cross account QueryLineage * api-change:``workspaces``: Increased the character limit of the login message from 850 to 2000 characters. - from version 1.27.32 * api-change:``discovery``: Add AWS Agentless Collector details to the GetDiscoverySummary API response * api-change:``ec2``: Documentation updates for Amazon EC2. * api-change:``elasticache``: Adding AutoMinorVersionUpgrade in the DescribeReplicationGroups API * api-change:``kms``: Added support for the SM2 KeySpec in China Partition Regions * api-change:``mediapackage``: This release adds "IncludeIframeOnlyStream" for Dash endpoints and increases the number of supported video and audio encryption presets for Speke v2 * api-change:``sagemaker``: Amazon SageMaker Edge Manager provides lightweight model deployment feature to deploy machine learning models on requested devices. * api-change:``sso-admin``: AWS SSO now supports attaching customer managed policies and a permissions boundary to your permission sets. This release adds new API operations to manage and view the customer managed policies and the permissions boundary for a given permission set. - from version 1.27.31 * api-change:``datasync``: Documentation updates for AWS DataSync regarding configuring Amazon FSx for ONTAP location security groups and SMB user permissions. * api-change:``drs``: Changed existing APIs to allow choosing a dynamic volume type for replicating volumes, to reduce costs for customers. * api-change:``evidently``: This release adds support for the new segmentation feature. * api-change:``wafv2``: This SDK release provide customers ability to add sensitivity level for WAF SQLI Match Statements. - Update to 1.27.30 * api-change:``athena``: This release updates data types that contain either QueryExecutionId, NamedQueryId or ExpectedBucketOwner. Ids must be between 1 and 128 characters and contain only non-whitespace characters. ExpectedBucketOwner must be 12-digit string. * api-change:``codeartifact``: This release introduces Package Origin Controls, a mechanism used to counteract Dependency Confusion attacks. Adds two new APIs, PutPackageOriginConfiguration and DescribePackage, and updates the ListPackage, DescribePackageVersion and ListPackageVersion APIs in support of the feature. * api-change:``config``: Update ResourceType enum with values for Route53Resolver, Batch, DMS, Workspaces, Stepfunctions, SageMaker, ElasticLoadBalancingV2, MSK types * api-change:``ec2``: This release adds flow logs for Transit Gateway to allow customers to gain deeper visibility and insights into network traffic through their Transit Gateways. * api-change:``fms``: Adds support for strict ordering in stateful rule groups in Network Firewall policies. * api-change:``glue``: This release adds an additional worker type for Glue Streaming jobs. * api-change:``inspector2``: This release adds support for Inspector V2 scan configurations through the get and update configuration APIs. Currently this allows configuring ECR automated re-scan duration to lifetime or 180 days or 30 days. * api-change:``kendra``: This release adds AccessControlConfigurations which allow you to redefine your document level access control without the need for content re-indexing. * api-change:``nimble``: Amazon Nimble Studio adds support for IAM-based access to AWS resources for Nimble Studio components and custom studio components. Studio Component scripts use these roles on Nimble Studio workstation to mount filesystems, access S3 buckets, or other configured resources in the Studio's AWS account * api-change:``outposts``: This release adds the ShipmentInformation and AssetInformationList fields to the GetOrder API response. * api-change:``sagemaker``: This release adds support for G5, P4d, and C6i instance types in Amazon ... changelog too long, skipping 72 lines ... in Amazon WorkMail. ==== python-charset-normalizer ==== Version update (2.0.12 -> 2.1.0) - update to 2.1.0: * Output the Unicode table version when running the CLI with `--version` * Re-use decoded buffer for single byte character sets * Fixing some performance bottlenecks * Workaround potential bug in cpython with Zero Width No-Break Space located * in Arabic Presentation Forms-B, Unicode 1.1 not acknowledged as space * CLI default threshold aligned with the API threshold from * Support for Python 3.5 (PR #192) * Use of backport unicodedata from `unicodedata2` as Python is quickly catching up, scheduled for removal in 3.0 ==== python-ldap ==== Version update (3.4.0 -> 3.4.2) - update to upstream release 3.4.2 minor release to provide out-of-the-box compatibility with the merge of libldap and libldap_r that happened with OpenLDAP's 2.5 release. ==== python-rsa ==== Version update (4.8 -> 4.9) - update to 4.9: * Remove debug logging from `rsa/key.py` * Remove overlapping slots in `PrivateKey` and `PublicKey`. * Do not include CHANGELOG/LICENSE/README.md in wheel * Fixed Key Generation Unittest: Public and Private keys are assigned the wrong way around ==== qemu ==== Version update (6.2.0 -> 7.0.0) Subpackages: qemu-accel-tcg-x86 qemu-audio-spice qemu-block-curl qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-seabios qemu-sgabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-x86 - Substantial rework of the spec file: * the 'make check' testsuite now runs in the %check section of the main package, not in a subpackage * switched from %setup to %autosetup * rearranged the content in order to minimize the use of %if, %ifarch, etc - Properly fix bsc#1198038, CVE-2022-0216 * Patches added: scsi-lsi53c895a-really-fix-use-after-fre.patch tests-qtest-Move-the-fuzz-tests-to-x86-o.patch - Make temp dir (for update_git.sh) configurable - Added new subpackages (audio-dbus, ui-dbus) - bsc#1199018 was never fixed in Factory's QEMU 6.2. It is now (since the patches are already in SeaBIOS 1.16.0) - Some tests are having issues when run in OBS. They seem to be due to race conditions, triggered by resource constraints of OBS workers. Let's disable them for now, while looking for a fix - Update to v7.0.0. For full release notese, see: * https://wiki.qemu.org/ChangeLog/7.0 Be sure to also check the following pages: * https://qemu-project.gitlab.io/qemu/about/removed-features.html * https://qemu-project.gitlab.io/qemu/about/deprecated.html Some notable changes: * [ARM] The virt board has gained a new control knob to disable passing a RNG seed in the DTB (dtb-kaslr-seed) * [ARM] The AST2600 SoC now supports a dummy version of the i3c device * [ARM] The virt board can now run guests with KVM on hosts with restricted IPA ranges * [ARM] The virt board now supports virtio-mem-pci * [ARM] The virt board now supports specifying the guest CPU topology * [ARM] On the virt board, we now enable PAuth when using KVM or hvf and the host CPU supports it * [RISC-V] Add support for ratified 1.0 Vector extension * [RISC-V] Support for the Zve64f and Zve32f extensions * [RISC-V] Drop support for draft 0.7.1 Vector extension * [RISC-V] Support Zfhmin and Zfh extensions * [RISC-V] RISC-V KVM support * [RISC-V] Mark Hypervisor extension as non experimental * [RISC-V] Enable Hypervisor extension by default * [x86] Support for Intel AMX. * [PCI/PCIe] Q35: fix PCIe device becoming disabled after migration when ACPI based PCI hotplug is used (6b0969f1ec) * [PCI/PCIe] initial bits of SR/IOV support (250346169) * [PCI/PCIe] arm/virt: fixed PXB interrupt routing (e609301b45) * [PCI/PCIe] arm/virt: support for virtio-mem-pci (b1b87327a9) * [virtiofs] Fix for CVE-2022-0358 - behaviour with supplementary groups and SGID directories * [virtiofs] Improved security label support * [virtiofs] The virtiofsd in qemu is now starting to be deprecated; please start using and contributing to Rust virtiofsd * Patches dropped: acpi-validate-hotplug-selector-on-access.patch block-backend-Retain-permissions-after-m.patch block-qdict-Fix-Werror-maybe-uninitializ.patch brotli-fix-actual-variable-array-paramet.patch display-qxl-render-fix-race-condition-in.patch doc-Add-the-SGX-numa-description.patch hw-i386-amd_iommu-Fix-maybe-uninitialize.patch hw-intc-exynos4210_gic-provide-more-room.patch hw-nvme-fix-CVE-2021-3929.patch hw-nvram-at24-return-0xff-if-1-byte-addr.patch iotest-065-explicit-compression-type.patch iotest-214-explicit-compression-type.patch iotest-302-use-img_info_log-helper.patch iotest-303-explicit-compression-type.patch iotest-39-use-_qcow2_dump_header.patch iotests-60-more-accurate-set-dirty-bit-i.patch iotests-bash-tests-filter-compression-ty.patch iotests-common.rc-introduce-_qcow2_dump_.patch iotests-declare-lack-of-support-for-comp.patch iotests-drop-qemu_img_verbose-helper.patch iotests-massive-use-_qcow2_dump_header.patch iotests-MRCE-Write-data-to-source.patch iotests.py-filter-out-successful-output-.patch iotests.py-img_info_log-rename-imgopts-a.patch iotests.py-implement-unsupported_imgopts.patch iotests.py-qemu_img-create-support-IMGOP.patch iotests.py-rewrite-default-luks-support-.patch iotests-specify-some-unsupported_imgopts.patch meson-build-all-modules-by-default.patch numa-Enable-numa-for-SGX-EPC-sections.patch numa-Support-SGX-numa-in-the-monitor-and.patch python-aqmp-add-__del__-method-to-legacy.patch python-aqmp-add-_session_guard.patch python-aqmp-add-SocketAddrT-to-package-r.patch python-aqmp-add-socket-bind-step-to-lega.patch python-aqmp-add-start_server-and-accept-.patch python-aqmp-copy-type-definitions-from-q.patch python-aqmp-drop-_bind_hack.patch python-aqmp-fix-docstring-typo.patch python-aqmp-Fix-negotiation-with-pre-oob.patch python-aqmp-fix-race-condition-in-legacy.patch Python-aqmp-fix-type-definitions-for-myp.patch python-aqmp-handle-asyncio.TimeoutError-.patch python-aqmp-refactor-_do_accept-into-two.patch python-aqmp-remove-_new_session-and-_est.patch python-aqmp-rename-accept-to-start_serve.patch python-aqmp-rename-AQMPError-to-QMPError.patch python-aqmp-split-_client_connected_cb-o.patch python-aqmp-squelch-pylint-warning-for-t.patch python-aqmp-stop-the-server-during-disco.patch python-introduce-qmp-shell-wrap-convenie.patch python-machine-raise-VMLaunchFailure-exc.patch python-move-qmp-shell-under-the-AQMP-pac.patch python-move-qmp-utilities-to-python-qemu.patch ... changelog too long, skipping 51 lines ... virtio-net-fix-map-leaking-on-error-duri.patch ==== sqlite3 ==== Version update (3.39.0 -> 3.39.2) Subpackages: libsqlite3-0 sqlite3-tcl - update to 3.39.2: * Fix a performance regression in the query planner associated with rearranging the order of FROM clause terms in the presences of a LEFT JOIN. * Apply fixes for CVE-2022-35737, Chromium bugs 1343348 and 1345947, forum post 3607259d3c, and other minor problems discovered by internal testing. [boo#1201783] - update to 3.39.1: * Fix an incorrect result from a query that uses a view that contains a compound SELECT in which only one arm contains a RIGHT JOIN and where the view is not the first FROM clause term of the query that contains the view * Fix a long-standing problem with ALTER TABLE RENAME that can only arise if the sqlite3_limit(SQLITE_LIMIT_SQL_LENGTH) is set to a very small value. * Fix a long-standing problem in FTS3 that can only arise when compiled with the SQLITE_ENABLE_FTS3_PARENTHESIS compile-time option. * Fix the initial-prefix optimization for the REGEXP extension so that it works correctly even if the prefix contains characters that require a 3-byte UTF8 encoding. * Enhance the sqlite_stmt virtual table so that it buffers all of its output. ==== texlive ==== Subpackages: libkpathsea6 libsynctex2 - exclude all powerpc and riscv64 from luajit usage - Correct list of archs supported by luajit - 0004-Add-ppc64-support-based-on-koriakin-GitHub-patchset.patch: Remove defective patch ==== upower ==== Version update (0.99.17 -> 0.99.20) Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 upower-lang - update to 0.99.20: * Ensure polling is resumed after suspend (#198) * Bugfixes to state guessing code (#146) * Stability improvements of automated tests * Move state guessing into DisplayDevice * Always use 90% threshold to consider a battery full * Various test improvements * Fix mice showing up as keyboards (#189) * Allow unit test inspector to fail (#187) * Fix test cases when daemon shuts down too slowly (#188) - update to 0.99.18: * Remove broken wakeup DBus API * Tag UPS hid devices using hwdb and update list from upstream * Only permit Refresh method when in debug mode * Refactor device polling * Refactor udev device discovery and sibling detection * Improved testing and CI * Handle SIGTERM to trigger a clean shutdown * Improve polling of batteries after line-power "online" status change * Multiple wacom tablet detection fixes * Fix updates after a BT hid power supply moves in sysfs * Fix enumeration of "Whats Up!" devices on startup * Accept USB power supplies without warning * Allow building without gtk-doc ==== virtualbox ==== Version update (6.1.34 -> 6.1.36) Subpackages: virtualbox-guest-tools virtualbox-guest-x11 - Version bump to 6.1.36 released by Oracle July 19 2022 This is a maintenance release. The following items were fixed and/or added: VMM: Fixed possible Linux guest kernel crash when configuring Speculative Store Bypass for a single vCPU VM GUI: In the storage page of the virtual machine settings dialog, fixed a bug which disrupted mouse interaction with the native file selector on KDE NAT: Prevent issue when host resolver incorrectly returned NXDOMAIN for unsupported queries (bug #20977) Audio: General improvements in saved state area Recording: Various fixes for settings handling VGA: Performance improvements for screen updates when VBE banking is used USB: Fixed rare crashes when detaching a USB device ATA: Fixed NT4 guests taking a minute to eject CDs vboximg-mount: Fixed broken write support (bug #20896) SDK: Fixed Python bindings incorrectly trying to convert arbitrary byte data into unicode objects with Python 3, causing exceptions (bug #19740) API: Fixed an issue when virtual USB mass storage devices or virtual USB DVD drives are added while the VM is not running are by default not marked as hot-pluggable API: Initial support for Python 3.10 API: Solaris OS types cleanup Linux and Solaris hosts: Allow to mount shared folder if it is represented as a symlink on a host side (bug #17491) Linux Host and Guest drivers: Introduced initial support for kernels 5.18, 5.19 and RHEL 9.1 (bugs #20914, #20941) Linux Host and Guest drivers: Better support for kernels built with clang compiler (bugs #20425 and #20998) Solaris Guest Additions: General improvements in installer area Solaris Guest Additions: Fixed guest screen resize in VMSVGA graphics configuration Linux and Solaris Guest Additions: Fixed multi-screen handling in VBoxVGA and VBoxSVGA graphics configuration Linux and Solaris Guest Additions: Added support for setting primary screen via VBoxManage Linux and Solaris Guest Additions: Fixed X11 resources leak when resizing guest screens Linux and Solaris Guest Additions: Fixed file descriptor leak when starting a process using guest control (bug #20902) Linux and Solaris Guest Additions: Fixed guest control executing processes as root Linux Guest Additions: Improved guests booting time by preventing kernel modules from being rebuilt when it is not necessary (bug #20502) Windows Guest Additions: Fixed VBoxTray crash on startup in NT4 guests on rare circumstances deleted file "fixes_for_kernel_5.18.patch" - fixed upstream. Fixes CVE-2022-21571) VUL-0: CVE-2022-21571,CVE-2022-21554 - boo#1201720 ==== virtualbox-kmp ==== Version update (6.1.34_k5.18.11_1 -> 6.1.36_k5.18.11_1) - Version bump to 6.1.36 released by Oracle July 19 2022 This is a maintenance release. The following items were fixed and/or added: VMM: Fixed possible Linux guest kernel crash when configuring Speculative Store Bypass for a single vCPU VM GUI: In the storage page of the virtual machine settings dialog, fixed a bug which disrupted mouse interaction with the native file selector on KDE NAT: Prevent issue when host resolver incorrectly returned NXDOMAIN for unsupported queries (bug #20977) Audio: General improvements in saved state area Recording: Various fixes for settings handling VGA: Performance improvements for screen updates when VBE banking is used USB: Fixed rare crashes when detaching a USB device ATA: Fixed NT4 guests taking a minute to eject CDs vboximg-mount: Fixed broken write support (bug #20896) SDK: Fixed Python bindings incorrectly trying to convert arbitrary byte data into unicode objects with Python 3, causing exceptions (bug #19740) API: Fixed an issue when virtual USB mass storage devices or virtual USB DVD drives are added while the VM is not running are by default not marked as hot-pluggable API: Initial support for Python 3.10 API: Solaris OS types cleanup Linux and Solaris hosts: Allow to mount shared folder if it is represented as a symlink on a host side (bug #17491) Linux Host and Guest drivers: Introduced initial support for kernels 5.18, 5.19 and RHEL 9.1 (bugs #20914, #20941) Linux Host and Guest drivers: Better support for kernels built with clang compiler (bugs #20425 and #20998) Solaris Guest Additions: General improvements in installer area Solaris Guest Additions: Fixed guest screen resize in VMSVGA graphics configuration Linux and Solaris Guest Additions: Fixed multi-screen handling in VBoxVGA and VBoxSVGA graphics configuration Linux and Solaris Guest Additions: Added support for setting primary screen via VBoxManage Linux and Solaris Guest Additions: Fixed X11 resources leak when resizing guest screens Linux and Solaris Guest Additions: Fixed file descriptor leak when starting a process using guest control (bug #20902) Linux and Solaris Guest Additions: Fixed guest control executing processes as root Linux Guest Additions: Improved guests booting time by preventing kernel modules from being rebuilt when it is not necessary (bug #20502) Windows Guest Additions: Fixed VBoxTray crash on startup in NT4 guests on rare circumstances deleted file "fixes_for_kernel_5.18.patch" - fixed upstream. Fixes CVE-2022-21571) VUL-0: CVE-2022-21571,CVE-2022-21554 - boo#1201720 ==== vulkan-tools ==== - Add 0001-vulkaninfo-include-wayland-client-because-its-functi.patch ==== xdg-desktop-portal ==== Version update (1.14.4 -> 1.14.5) Subpackages: xdg-desktop-portal-lang - Update to version 1.14.5: + realtime: Fix realtime: fix priority type in MakeThreadHighPriority. ==== zypper ==== Version update (1.14.54 -> 1.14.55) Subpackages: zypper-log zypper-needs-restarting - lr: Allow shortening the Name column if table is wider than the terminal (bsc#1201638) - Don't accepts install/remove modifier without argument (bsc#1201576) - zypper-download: Set correct ExitInfoCode when failing to resolve argument. - zypper-download: Handle unresolvable arguments as error. This commit changes zypper-download such that it behaves more consistent to zypper-install when an argument can't be resolved. - version 1.14.55