------------------------------------------------------------------ --- Changelog.all ----------- Fri Nov 29 04:14:02 UTC 2024 ------ ------------------------------------------------------------------ ------------------------------------------------------------------ ------------------ 2024-11-29 - Nov 29 2024 ------------------- ------------------------------------------------------------------ ++++ openSUSE-release: - automatically generated by openSUSE-release-tools/pkglistgen ------------------------------------------------------------------ ------------------ 2024-11-28 - Nov 28 2024 ------------------- ------------------------------------------------------------------ ++++ foliate: - Update to version 3.2.0: * Revamped translation tool, which now remembers the last target language, and allows filtering languages * Improved PDF support: the rendering is faster and no longer blurry * Improved rendering of fixed layout EPUBs (see comments in #1318) * Improved focus handling: the focus is no longer lost when navigating to new sections, and tabbing no longer breaks layout * Improved text selection across pages, allowing selecting to the previous page * It now only shows more than one column when the viewport is in landscape (or, for vertical writing, in portrait) * Changed shortcut for the table of contents from Ctrl+Alt+T to Ctrl+T. * Added Space/Shift+Space shortcuts for turning pages. * Added option to open books with external application from the library view. * Fixed formatting of copied text. * Fixed extra border in CBZ files. * Fixed handling of bare search template URL in OPDS feeds. ++++ installation-images-openSUSE: - merge gh#openSUSE/installation-images#746 - add extra sync before removing zram swap device (bsc#1233893) - 17.146 - merge gh#openSUSE/installation-images#745 - Drop gamin-server BuildRequires: no longer relevant - 17.145 ++++ python-ipysheet: - Skip python313: no pscript ++++ libqxmpp-qt5: - Update to 1.9.1 * MixManager: Fix update node subscriptions adds and removes all nodes with default parameters ++++ libqxmpp-qt6: - Update to 1.9.1 * MixManager: Fix update node subscriptions adds and removes all nodes with default parameters ++++ sysprof: - Update to version 47.2: + Use pid when generating counter IDs in SysprofCollector. + Fix potential UB in GtkBitset. + Avoid UB in bsearch() with no data. + Increased safety in SysprofDocumentLoader. + Increased safety when parsing CPU counters with async IO. ++++ python-pysol-cards: - remove unneeded dependencies ++++ python-asdf-astropy: - Update to 0.7.0 * strip None factor for spectral_density in equivalency converter to avoid deprecation warnings for astropy 7. [#229] * drop support for python 3.9. [#232] * replace usages of copy_arrays with memmap [#230] * require asdf 2.14.4 [#241] * Add support for astropy.nddata.uncertainty classes [#239] * Add support for astropy.wcs.WCS and astropy.wcs.wcsapi.SlicedLowLevelWCS [#246] ++++ python-discogs-client: - Update to 2.7.1: * Small fixes for Python 3.12 references * Parse artist role field - Drop seperate LICENSE file ++++ python-jsonformatter: - Update to 0.3.4: * Support python 3.13 * fix: python < 3.7 using pip install failed - Use pytest and license macros. - Remove patch remove-failing-test.py, no longer required. ++++ python-redis: - Pin tests to pytest-asyncio < 0.24 - Only require async-timeout for older pythons ++++ tcsh: - Update to tcsh 6.24.14 - 2024-11-26 * Fix issues with S-JIS handling (T. Nosaka) * Handle redirections in bracketed expressions if { foo > /dev/null } (christos) * Recognize history searches in history expansion !?foo (christos) ++++ termotp: - Update to 0.0.11: * 45175e7 Remove upx compression (causes issues with MacOS). ------------------------------------------------------------------ ------------------ 2024-11-27 - Nov 27 2024 ------------------- ------------------------------------------------------------------ ++++ Mesa: - trying to make buildservice happy by adding both tarballs to specfile ... ++++ Mesa-drivers: - trying to make buildservice happy by adding both tarballs to specfile ... ++++ webkit2gtk3-soup2: - Update to version 2.46.4: + Improve memory consumption and performance of Canvas getImageData. + Fix preserve-3D intersection rendering. + Fix video dimensions since GStreamer 1.24.9. + Fix the HTTP-based remote Web Inspector not loading in Chromium. + Fix content filters not working on about:blank iframes. + Fix several crashes and rendering issues. + Security fixes: CVE-2024-44308, CVE-2024-44309. - Drop patches fixed upstream: + 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch + webkit2gtk3-CVE-2024-44308.patch + webkit2gtk3-CVE-2024-44309.patch ++++ webkit2gtk3: - Update to version 2.46.4: + Improve memory consumption and performance of Canvas getImageData. + Fix preserve-3D intersection rendering. + Fix video dimensions since GStreamer 1.24.9. + Fix the HTTP-based remote Web Inspector not loading in Chromium. + Fix content filters not working on about:blank iframes. + Fix several crashes and rendering issues. + Security fixes: CVE-2024-44308, CVE-2024-44309. - Drop patches fixed upstream: + 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch + webkit2gtk3-CVE-2024-44308.patch + webkit2gtk3-CVE-2024-44309.patch ++++ webkit2gtk4: - Update to version 2.46.4: + Improve memory consumption and performance of Canvas getImageData. + Fix preserve-3D intersection rendering. + Fix video dimensions since GStreamer 1.24.9. + Fix the HTTP-based remote Web Inspector not loading in Chromium. + Fix content filters not working on about:blank iframes. + Fix several crashes and rendering issues. + Security fixes: CVE-2024-44308, CVE-2024-44309. - Drop patches fixed upstream: + 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch + webkit2gtk3-CVE-2024-44308.patch + webkit2gtk3-CVE-2024-44309.patch ++++ argocd-autopilot: - Update to version 0.4.18: * updated changelog * fixed `project create` help text * created new release * Sec-fixes (#598) * add sudo command for linux installation (#589) * fix bootstrap for Azure DevOps (#594) * fix clone repo from azure (#595) * updated golang to 1.22 (#555) * Bump github.com/ktrysmt/go-bitbucket from 0.9.73 to 0.9.75 (#553) * Bump github.com/xanzy/go-gitlab from 0.95.2 to 0.97.0 (#552) * bump argo-cd to `v2.10.0` (#554) * Bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 (#546) * Bump code.gitea.io/sdk/gitea from 0.17.0 to 0.17.1 (#544) * Bump github.com/spf13/viper from 1.18.1 to 1.18.2 (#543) * Bump golang.org/x/crypto from 0.16.0 to 0.17.0 (#542) * Bump github.com/ktrysmt/go-bitbucket from 0.9.72 to 0.9.73 (#540) * Bump github.com/xanzy/go-gitlab from 0.94.0 to 0.95.2 (#541) * Bump github.com/go-git/go-git/v5 from 5.10.1 to 5.11.0 (#539) * Bump github.com/spf13/viper from 1.17.0 to 1.18.1 (#537) * Bump code.gitea.io/sdk/gitea from 0.16.0 to 0.17.0 (#532) * Bump github.com/go-git/go-git/v5 from 5.10.0 to 5.10.1 (#531) * Bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 (#528) * Bump github.com/xanzy/go-gitlab from 0.93.2 to 0.94.0 (#526) * Bump github.com/ktrysmt/go-bitbucket from 0.9.71 to 0.9.72 (#527) * Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#525) * Bump github.com/ktrysmt/go-bitbucket from 0.9.70 to 0.9.71 (#524) * Bump github.com/spf13/cobra from 1.7.0 to 1.8.0 (#523) * Bump github.com/xanzy/go-gitlab from 0.93.1 to 0.93.2 (#518) * Bump github.com/go-git/go-git/v5 from 5.9.0 to 5.10.0 (#519) * Release v0.4.17 (#515) ++++ ast-grep: - Update to 0.30.1: * fix: fix --config=config.yml arg parse #1617 * fix: update python version #1614 * fix(deps): update dependency @swc/core to v1.9.3 63c1c8d * chore: revert pyo3 2022f38 * feat: add rule entity inspection c569ec7 - Update to 0.30.0: * Breaking change: feat: semi-structured tracing output #1574 * fix: error=unused-suppression should change exit code #1585 * refactor: move stdErr into inspect mod #1575 * infra: switch to llvm-cov #1570 * Breaking change: refactor: rename --tracing to --inspect 105945e * Breaking change: refactor: remove --json format for tracing ed05be4 * Breaking change: fix: remove builtin dart support cd25a62 * Breaking change: fix: report unused suppression always 893df63 * fix(deps): update babel monorepo b8803ce ++++ autocutsel: - do not compress the manual page manually; it's done by a brp script during build automatically giving us more flexibility ++++ buildpacks-cli: - Update to version 0.36.0: * Emit a performance warning if containerd is enabled and we're exporting to the daemon * build(deps): bump the go-dependencies group across 1 directory with 9 updates * Cleanup after running acceptance tests * Try lifecycle binary 0.20.3 * Bump lifecycle binary version also * Fixing lifecycle validation to use fully qualified names * Allow trusted builders by repo and tag * Use released lifecycle * build(deps): bump buildpacks/github-actions from 5.8.0 to 5.8.1 * build(deps): bump buildpacks/github-actions from 5.7.4 to 5.8.0 * build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 * Update actions * Pin BurntSushi/toml as test failures seem related to https://github.com/BurntSushi/toml/issues/417 * FIXME: update lifecycle (to non-released version) so that we can bump docker * Bump deps and run tidy * Fix lint * Update go and run tidy * Use an existing directory instead of creating and deleting directories for each '--path' flag case to ensure no temp directories are left behind in case of a test failure. * build(deps): bump github.com/docker/docker * build(deps): bump buildpacks/github-actions from 5.5.4 to 5.7.4 * avoid using os.MkdirTemp() to prevent test failures on macOS * rephrase the test description * Make it warns only when a local path with the same string as the specified image name exists * Don't warn about clear-env key while parsing buildpack.toml as this is actually expected. * Fix deletion of ephemeral builder * Improve descriptions for some test cases. * Add a test case for when the 'pack build' is called with the '--path' flag. * Make the 'pack build' command warn that the positional argument will not be treated as the source directory path. * handled case sensitivity * build(deps): bump anchore/scan-action from 3 to 4 * Update image references in internal documents and ci settings to use fully qualified names. * Update references to lifecycle image to use fully qualified image name. ++++ clipscreen: - new package ++++ crmsh: - Update to version 5.0.0+20241127.3e90e46f: * Fix: report: Fix a regression for irregular file collection ++++ ddcutil-service: - 1.0.12 - Return the error status-code if enable_ddca_watch_displays fails - was returning OK even on failure. ++++ xdm: - Split out displaymanager-sycconfig package: The central configuration part that is used by all display managers. This is needed in order to progress towards 'xdm' not acting as wrapper around DMs, but only be used as Dislplay Manager when XDM is supposed to be used, or use the real systemd services of the various DMs (e.g gdm.service, sddm.service). ++++ emacs: - Avoid trouble with unknown X pointer shapes below Wayland (boo#1233795) ++++ exfatprogs: - Update to 1.2.6: CHANGES : * exfatprogs: replace obsolete autoconf and libtool macros. * mkfs.exfat: prefer the physical block size over the logical block size for the exFAT sector size. * mkfs.exfat: add notes about the format of the volume GUID to the man page. * mkfs.exfat: fix an incorrect calculation of the number of used clusters. BUG FIXES : * exfatlabel: fix an user input error when setting a volume serial or label. ++++ forgejo-runner: - update to 5.0.3: * fix: it wasn't possible to mount the docker socket in each container ++++ gnome-session: - Build gnome-session-wayland also on s390x: It was originally excluded because xwayland did not exist. That has been solved in 2021 though. ++++ intel-lpmd: - Avoid double include of cpuid.h and fix older distro builds (could be a gcc7 vs gcc14 issue). Add fix_cpuid_double_include.patch. - Only build for x86 and, as it's an Intel tool, it's probably only intended to run and work on x86 machines, add: ExclusiveArch: %ix86 x86_64 ++++ jupyter-filesystem: - Update to 20241127 * new metapackage jupyter 1.1.1 ++++ lxpanel: - fix build by adjust CFLAGS with -Wno-incompatible-pointer-types - remove update-desktop-files from BR ++++ proj: - Update data to version 1.19 - Bump gcc version used for Leap building to 13 ++++ raylib: - Update to 5.5: * NEW raylib pre-configured Windows package: The new raylib portable and self-contained Windows package for raylib 5.5, intended for nobel devs that start in programming world, comes with one big addition: support for C code building for Web platform with one-single-mouse-click! For the last 10 years, the pre-configured raylib Windows package allowed to edit simple C projects on Notepad++ and easely compile Windows executables with an automatic script; this new release adds the possibility to compile the same C projects for Web platform with a simple mouse click. This new addition greatly simplifies C to WebAssembly project building for new users. The raylib Windows Installer package can be downloaded for free from raylib on itch.io. * NEW raylib project creator tool: A brand new tool developed to help raylib users to setup new projects in a professional way. raylib project creator generates a complete project structure with multiple build systems ready-to-use and GitHub CI/CD actions pre-configured. It only requires providing some C files and basic project parameters! The tools is free and open-source, and it can be used online!. * NEW Platform backend supported: RGFW: Thanks to the rcore platform-split implemented in raylib 5.0, adding new platforms backends has been greatly simplified, new backends can be added using provided template, self-contained in a single C module, completely portable. A new platform backend has been added: RGFW. RGFW is a new single-file header-only portable library (RGFW.h) intended for platform-functionality management (windowing and inputs); in this case for desktop platforms (Windows, Linux, macOS) but also for Web platform. It adds a new alternative to the already existing GLFW and SDL platform backends. * NEW Platform backend version supported: SDL3: Previous raylib 5.0 added support for SDL2 library, and raylib 5.5 not only improves SDL2 functionality, with several issues reviewed, but also adds support for the recently released big SDL update in years: SDL3. Now users can select at compile time the desired SDL version to use, increasing the number of potential platforms supported in the future! * NEW Retro-console platforms supported: Dreamcast, N64, PSP, PSVita, PS4: Thanks to the platform-split on raylib 5.0, supporting new platform backends is easier than ever! Along the raylib rlgl module support for the OpenGL 1.1 graphics API, it opened the door to multiple homebrew retro-consoles backend implementations! It's amazing to see raylib running on +20 year old consoles like Dreamcast, PSP or PSVita, considering the hardware constraints of those platforms and proves raylib outstanding versability! Those additional platforms can be found in separate repositories and have been created by the amazing programmer Antonio Jose Ramos Marquez (@psxdev). * NEW GPU Skinning support: After lots of requests for this feature, it has been finally added to raylib thanks to the contributor Daniel Holden (@orangeduck), probably the developer that has further pushed models animations with raylib, developing two amazing tools to visualize and test animations: GenoView and BVHView. Adding GPU skinning was a tricky feature, considering it had to be available for all raylib supported platforms, including limited ones like Raspberry Pi with OpenGL ES 2.0, where some advance OpenGL features are not available (UBO, SSBO, Transform Feedback) but a multi-platform solution was found to make it possible. A new example, models_gpu_skinning has been added to illustrate this new functionality. As an extra, previous existing CPU animation system has been greatly improved, multiplying performance by a factor (simplifiying required maths). * NEW raymath C++ operators: After several requested for this feature, C++ math operators for Vector2, Vector3, Vector4, Quaternion and Matrix has been added to raymath as an extension to current implementation. Despite being only available for C++ because C does not support it, these operators simplify C++ code when doing math operations. * Normals support on batching system * Clipboard images reading support * CRC32/MD5/SHA1 hash computation * Gamepad vibration support * Improved font loading (no GPU required) with BDF fonts support * Time-based camera movement * Improved GLTF animations loading ++++ libsecp256k1: - Update to 0.6.0: * Add a musig module * Add a significantly more robust method to clear secrets from the stack * Remove the unused secp256k1_scratch_space functions ++++ unbound: - add workaround for bug https://github.com/NLnetLabs/unbound/issues/509 Starting up with 127.0.0.1 in the /etc/resolv.conf leads to long delays if the anchor update is being run as ExecStartPre in the unbound service ++++ linkerd-cli-edge: - Update to version 24.11.8: no CLI-related changes in changelog ++++ melange: - Update to version 0.16.0: * Include locked melange config in control section * build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0 * build(deps): bump the gomod group with 2 updates * build(deps): bump step-security/harden-runner in the actions group ++++ mesheryctl: - update to 0.7.162: * Meshery CLI - Add comment @Jougan-0 (#12756) * Maintenance - fix: permission keys pull 404 pages @jerensl (#12765) - Bump path-to-regexp and serve in /ui @dependabot (#12748) - Bump dawidd6/action-download-artifact from 2 to 6 in /.github/workflows @dependabot (#12758) ++++ nerdctl: - Set build version to package version and revision to unknown ++++ netavark: - Fix source definition for netavark-iptables.conf and netavark-nftables.conf ++++ netty: - Clean a bit the spec file and adapt to the recent changes in netty-tcnative package - Removed patches: * 0005-Do-not-use-the-Graal-annotations.patch * 0006-Do-not-use-the-Jetbrains-annotations.patch + remove the annotations with a macro in the jurand tool * 0007-Do-not-require-the-tcnative-native-library.patch + we are building now the artifact, so we can require it ++++ nginx: - Updated to 1.27.3 * https://github.com/nginx/nginx/releases/tag/release-1.27.3 * Added the "server" directive in the "upstream" block supports the "resolve" parameter. * Added the "resolver" and "resolver_timeout" directives in the "upstream" block. * Added SmarterMail specific mode support for IMAP LOGIN with untagged CAPABILITY response in the mail proxy module. * Changed TLSv1 and TLSv1.1 protocols are disabled by default. * Changed IPv6 address in square brackets and no port can be specified in the "proxy_bind", "fastcgi_bind", "grpc_bind", "memcached_bind", "scgi_bind", and "uwsgi_bind" directives, and as client address in ngx_http_realip_module. * Fixed ngx_http_mp4_module and "proxy_store" directive. ++++ nodejs-electron: - New upstream release 31.7.6 * no user-visible changes - Leap: build with gcc 14 - Drop Fedora 39 support ++++ obs-service-cargo: - Update to version 4.3.5: * fix: finally added the alias. 🫠 * chore: update roast to 5.1.7. update other dependencies as well. ++++ roast: - Update to version 5.1.7: * feat: add zstd as another alias for zst * prepare structure for roast-scm * minor: improve error message here * fix: added trace feature ++++ passt: - Update to version 20241127.c0fbc7e: * dhcp: Honour broadcast flag (RFC 2131, 4.1) * dhcp: Introduce support for Rapid Commit (option 80, RFC 4039) * dhcp: Use -1 as "missing option" length instead of 0 * treewide: Introduce 'local mode' for disconnected setups * test: Improve logic for waiting for SLAAC & DAD to complete in NDP tests * ndp: Don't send first periodic router advertisement right after guest connects * test/perf: Select a single IPv6 namespace address in pasta tests * conf, passt.1: Update --mac-addr default in usage() and man page * passt.1: Fix "default" note about --map-guest-addr ++++ python-azure-communication-callautomation: - New upstream release + Version 1.3.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Adjust upstream source name in spec file - Drop extra LICENSE.txt as upstream now ships its own - Rename LICENSE.txt to LICENSE in %files section - Update Requires from setup.py ++++ python-bokeh: - Update to 3.6.1 [#]# bugfixes: * #14082 [BUG] p.circle(..) can't be added as renderer to PointDrawTool since 3.6 * #14090 [component: bokehjs] [BUG] Google Chrome 130 fails to draw figure, throws `TypeError: Failed to execute 'fill' on 'CanvasRenderingContext2D'` * #14107 [component: bokehjs] [BUG] Loss of mobile touch scrolling with update to Bokeh 3.6.0 [#]# tasks: * #14096 Backports for 3.6.1 - Release 3.6.0 [#]# bugfixes: * #4951 ModelExtensions - all resources from a whole module are loaded * #7524 GroupFilter only accepts strings * #13827 [component: bokehjs] [BUG] Lack of range expansion when there remains unbounded directions, even when `maintain_focus=False` * #13886 [component: bokehjs] [BUG] NPM package has types (*.d.ts) in incorrect location * #13957 [component: bokehjs] Explicit selection glyph example broken * #13959 [BUG] Reset Tool Error in Bokeh Gridplot with Single Plot * #13964 [component: bokehjs] [BUG] page won't render if CustomJS args has a dict with key "constructor" * #13965 [component: bokehjs] [BUG] CategoricalSlider shows ‘undefined’ value and skip that value * #13972 BOKEH_MINIFIED not working * #13984 [component: tests] [BUG] Deprecation warning treated as error in pytest hook * #14014 [component: bokehjs] [BUG] StringFormatter `nan_format` seems broken * #14054 [component: bokehjs] [BUG] Custom hover tooltip on image plot shows all the image data. * #14058 [component: bokehjs] [BUG] Clearing selection with ESC only works on first selection tool * #14068 [component: bokehjs] [BUG] Unable to change figures displayed by altering children attribute of gridplot (or other layout classes) in JS callback * #14072 [component: bokehjs] [BUG] Spinner input not responding to wheel event * #13968 [component: docs] fix indentation in `offset` parameter for `Title` * #14038 [component: bokehjs] Allow `is_equal(0, -0)` to be true to match `===` * #14055 [component: docs] fix some typos * #14065 [component: build] Generate correct `*.d.ts` files for CSS modules [#]# features: * #601 [component: bokehjs] Add support for click events on categorical axes * #11104 [component: bokehjs] [FEATURE] Option for DataTable column sorting to place NaNs last * #13130 [component: bokehjs] Add CustomJSTicker * #13893 [component: bokehjs] [FEATURE] Custom sorting of columns in a table * #13905 [component: bokehjs] [FEATURE] triangle relative size by data units * #13921 [FEATURE] Attach ScaleBar to subplot range * #14035 [component: bokehjs] Add WebGL implementation for Ngon glyph * #14031 [component: bokehjs] Add "open image in a new tab" mode to save tool * #14033 Add support for click-style pan tools [#]# tasks: * #12303 [FEATURE] Improved error message on token expiry * #13835 [FEATURE] NumPy 2.0 support * #13960 [component: docs] Remove sampledata download in contributing guide * #13963 [FEATURE] Add a conda channel for rc releases * #13969 [component: bokehjs] [BUG] Plots fail in Firefox 115.12.0esr (64-bit) * #13946 [component: build] Upgrade to TypeScript 5.5 * #13977 [component: bokehjs] Make `GlyphRenderer` generic in glyph type and remove a lot of `any` types * #13992 Remove docker and old integration tests cruft * #14019 [component: docs] Python docstring argument fixes * #14021 [component: docs] Fix HTML/CSS warning for palette group detail * #14023 [component: docs] Remove outdated known issues list from BokehJS docs * #14024 [component: docs] Update setup and testing docs dev guide * #14037 [component: bokehjs] Clean up factor range and add factor method * #14048 [component: bokehjs] Add missing `abstract` modifier to classes * #14051 [component: bokehjs] Use pseudo type members to avoid casting * #14052 [component: bokehjs] Make `PaletteSelect` use stylehseets instead of inline styles * #14056 [component: bokehjs] Upgrade to TypeScript 5.6 * #14064 [component: build] Add `script:watch` task for incremental builds * #14067 [component: build] Upgrade `@types/node` and fix npm audit's concerns * #14071 [component: docs] fix a typo * #14074 [component: docs] Bring 3.5.x point release notes to 3.6.0 * #14075 [component: docs] Add release notes for bokeh 3.6.0 ++++ python-cloudpickle: - Update to 3.1.0 * Some improvements to make cloudpickle more deterministic when pickling dynamic functions and classes, in particular with CPython 3.13. (PR #524 and PR #534) * Fix a problem with the joint usage of cloudpickle's _whichmodule and multiprocessing. (PR #529) - Drop Fix-test_extract_class_dict-for-Python-313.patch ++++ python-dask: - Skip tokenize test on python313 * See gh#dask/dask#11456, gh#dask/dask#11457 ++++ python-junos-eznc: - Add get-telnetlib-from-netmiko.patch, telnetlib was removed from the standardlibrary in Python 3.13 * https://github.com/Juniper/py-junos-eznc/issues/1324 ++++ python-libtmux: - update to 0.39.0: * Drop Python 3.8 by @tony in #548 Python 3.8 reached end-of-life on October 7th, 2024 (see devguide.python.org, Status of Python Versions, Unsupported versions See also: https://devguide.python.org/versions/#unsupported-versions - update to 0.38.1: * Minimum Python back to 3.8 for now. - update to 0.38.0: * Development - Project and package management: poetry to uv (#547) uv is the new package and project manager for the project, replacing Poetry. - Code quality: Use f-strings in more places (#540) via ruff 0.4.2. * Documentation - [docs] Sphinx v8 compatibility: configure a non-empty inventory name for Python Intersphinx mapping. by @jayaddison in #542 - Fix docstrings in query_list for MultipleObjectsReturned and ObjectDoesNotExist. * Other - Bump dev dependencies, including ruff 0.4.2, f-string tweaks by @tony in #540 ++++ python-mrcz: - Update to 0.5.7 * Renamed np.product to np.prod as the old name is deprecated in NumPy 2.0. - Add patch new-pythons.patch to fix build with Python 3.13 - Python 2 can be finally gone ++++ python-pandas: - Drop tests-nomkl.patch and tests-wasm.patch, not needed anymore - Skip a test failing with new xarray ++++ python-pdm: - Update to 2.21.0 * Support dependency groups as standardized by PEP 735. By default, dev dependencies will be written to [dependency-groups] table. * Fix a bug that strategy.inherit_metadata config is not honored when using - -lockfile option. * Update resolvelib to 1.1.0. * Add a fixer to remove the deprecated cross_platform strategy from lock file. * Pass original working directory as env variable to pdm scripts. * Output similar commands or script command when the input command is not correct. * Print task name by default when using pdm run * Make OrderedSet.__contains__ run in O(1) * Drop support of Python 3.8 ++++ python-pycha: - Add patch remove-makesuite.patch: * Do not use testsuite.makeSuite to construct the testsuite. - Switch to pyproject macros. - Update URL. ++++ python-quantities: - Update to 0.16.1: * Fixed a couple of small bugs * Added umath funcs: `maximum` & `minimum` * Added support for NumPy 2.0, while maintaining support for older versions back to 1.22 * Fixed a potential security hole * Dropped support for Python 3.8 ++++ python-scikit-build: - Add scikit-build-pr1120-upddistutils.patch * gh#scikit-build/scikit-build#1120 ++++ python-zxcvbn-rs-py: - update to 0.1.1+5: * Upgrade to zxcvbn 3.1.0 * Upgrade to PyO3 0.23 ++++ sqlmap: - update to 1.8.11: * fixed #5772, #5761 unhandled exception * fixed #5763 Can not perform sql blind injection again latest dvwa * fixed #5798 Some bugs with common tables and columns check * fixed #5767 direct connection to oracle database not working * update translations ++++ updatecli: - Update to version 0.88.0: * doc: add mermaid to manifest show command output (#3173) * fix: flavour to flavor * feat: add Pipeline graph to issue template * feat: add mermaid graph flavour * fix: only look at target when target has dependsonchange: true (#3160) * deps: bump updatecli version to v0.87.0 (#3148) * doc(e2e tests) add a minimalistic documentation (#1120) ++++ vdu_controls: - Version 2.1.2 * Replace the Preset-scheduler with an implementation that remains accurate after PC-sleep/hibernation. * Fix the day-rollover which was scheduling for the wrong day if triggered at 12:59:59. * When performing a set-vcp, don't increment the NVRAM write count if the VDU doesn't respond. * When reconfiguring VDU controllers, discard pending VDU VCP changes from previous controllers. * Eliminate a potential for deadlock when handling change-events from ddcutil-service. * Better handle ddcutil-service unexpected event types (don't raise an error dialog). * The main window height will now automatically resize to accommodate the number of controls present. * Toggling lux brightness-interpolation now immediately updates the profile-plot to reflect the change. * Fix the Lux Dialog, it was turning off interpolation when first constructed. ++++ werf: - Update to version 2.14.0: * chore: release 2.14.0 Signed-off-by: Aleksei Igrychev * docs(build, dockerfile, giterminism): add secrets description (#6443) * refactor(util): fix ExpandPath does not support "~" * refactor(util): enhance path utility functions * fix(cleanup): fix cleanup for Buildah images by switching to tag-based logic * refactor(cleanup): make it juicy * feat(giterminism): add build secrets (#6436) * chore(test): do not user artifacts * feat(build, docker, buildah, dockerfile): add secrets support (#6429) * fix: unsorted Set.ToSlice usage in parallel task execution * chore(release): add registry cleanup workflow (#6428) * feat(release): publish werf images for linux/arm64 platform (#6427) * refactor(cleanup): do not override the keep reason * refactor(cleanup): introduce StageDescSet and unify array handling * fix(cleanup): keep relatives for keepImagesBuiltWithinLastNHours policy * refactor(build): deduplicate selectSuitableStageDesc * refactor: introduce StageDescSet and unify array handling * refactor: standardize usage of StageDesc naming * refactor(cli): add common components manager to deduplicate code (#6414) * chore(ci): fix the workflow is not valid * chore(release): 1.2 beta,rock-solid 2 all ++++ whatsie: - Update to 4.16.3: * prevent crashes due to custom notification (dde6e02) ------------------------------------------------------------------ ------------------ 2024-11-26 - Nov 26 2024 ------------------- ------------------------------------------------------------------ ++++ Komikku: - update to 1.64.0: * [Servers] Added Weeb Central (EN) * [Servers] Flame Comics (EN): Update * [Servers] Manga Demon (EN): Update * [Servers] Fr-Scan (FR): Disabled * [Servers] Manga Scan (FR): Disabled * [L10n] Updated French translation ++++ Mesa: - on s390x build Mesa 24.1.7 to fix colors with Xvnc (boo#1233167) - adjusted patches for Mesa 24.1.7: * python36-buildfix1-s390x.patch * u_dep_xcb-s390x.patch * u_mesa-CVE-2023-45913-s390x.patch ++++ Mesa-drivers: - on s390x build Mesa 24.1.7 to fix colors with Xvnc (boo#1233167) - adjusted patches for Mesa 24.1.7: * python36-buildfix1-s390x.patch * u_dep_xcb-s390x.patch * u_mesa-CVE-2023-45913-s390x.patch ++++ MozillaThunderbird: - Mozilla Thunderbird 128.5.0 * IMAP could crash when reading cached messages * Enabling "Show Folder Size" on Maildir profile could render Thunderbird unusable * Messages corrupted by folder compaction were only fixed by user intervention * Reading a message from past the end of an mbox file did not cause an error * View -> Folders had duplicate F access keys * Add-ons adding columns to the message list could fail and cause display issue * "Empty trash on exit" and "Expunge inbox on exit" did not always work * Selecting a display option in View -> Tasks did not apply in the Task interface MFSA 2024-68 (bsc#1233695) * CVE-2024-11691 (bmo#1914707, bmo#1924184) Memory corruption in Apple GPU drivers * CVE-2024-11692 (bmo#1909535) Select list elements could be shown over another site * CVE-2024-11693 (bmo#1921458) Download Protections were bypassed by .library-ms files on Windows * CVE-2024-11694 (bmo#1924167) CSP Bypass and XSS Exposure via Web Compatibility Shims * CVE-2024-11695 (bmo#1925496) URL Bar Spoofing via Manipulated Punycode and Whitespace Characters * CVE-2024-11696 (bmo#1929600) Unhandled Exception in Add-on Signature Verification * CVE-2024-11697 (bmo#1842187) Improper Keypress Handling in Executable File Confirmation Dialog * CVE-2024-11698 (bmo#1916152) Fullscreen Lock-Up When Modal Dialog Interrupts Transition on macOS * CVE-2024-11699 (bmo#1880582, bmo#1929911) Memory safety bugs fixed in Firefox 133, Thunderbird 133, Firefox ESR 128.5, and Thunderbird 128.5 - appid is thunderbird-esr currently; use the matching desktop file name (boo#1233650) ++++ autocutsel: - add man pages from Debian - changed LICENSE file from %doc to %license ++++ bluedevil6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ breeze6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ buildkit: - Update to version 0.17.2: * Use view transaction for metadata read * http: fix etag cache scoping * ci: test sandbox build with multiple platforms * dockerfile: use lld linker for containerd build * dockerd: skip content check with containerd snapshotter * vendor: update containerd to v1.7.24 * vendor: update github.com/tonistiigi/fsutil to 31cf1f437184 * Remove pre-Go 1.17 build tags * solver: release unreferenced cache keys after gc * improve stacks of cancels from defers * util/system: remove Atime implementation for containerd/continuity/fs * vendor: github.com/containerd/continuity v0.4.5 * vendor: github.com/docker/cli v27.4.0-rc.2 * vendor: github.com/docker/docker v27.4.0-rc.2 * dockerfile: update runc binary to 1.2.2 * vendor: github.com/tonistiigi/go-actions-cache@v0.0.0-20241108014124-394979b8119e * vendor: update grpc to v1.66.3 * docs: remove duplicate parser directives bullet list * tests: add `testDockerfileFromHTTP` for WCOW * protobuf: fix casing of json attributes with the switch from gogo * history: handle gracefulstop when history is active * contenthash: don't delete records when a directory is only modified * build(deps): bump codecov/codecov-action from 4 to 5 * gateway: ensure llb digests are deterministic when sent by frontends * detect: use newer semconv for resource and add unit test * Dockerfile: update containerd binary to v2.0.0 * client: improve releasable condition in tests * testutil: use containerd config version 2 * fix gc after delete history records * Bump typeurl to 2.2.3 * fix leaving unreleased references behind after SBOM generation * build(deps): bump softprops/action-gh-release from 2.0.9 to 2.1.0 * dockerfile: fix duplicate keys for same arg in history line * detect: sever semconv relationship to otel sdk * dockerfile: add delve to binaries-for-test ++++ cava: - Update to 0.10.3: * added horizontal split view #575 * Fix crash when using pulseaudio #569 * Synchronized Sync (Mode 2026) #576 * add android source code #552 ++++ clpeak: - Update to version 1.1.3 * Add a few more parameters. * Add 24-bit integer compute to RX 5500XT results. * [cmake] use GNUInstallDirs to get canonical paths. * Add log files for additional devices. * Fix compute integer unit reported in xml files. * add profiling for char & short integer types. * Adding results for Tesla P40. * Adding results for MTT S80. * Use stricter host buffer alignment (64B) required by modern CPUs. ++++ libdb-4_8: - Add libdb-4_8-sequence.patch: Fix code to detect/enable 64-bit integral type support for sequences. The m4 macros were not complying with GCC 14's strictness. - Rebase db-4.8.30.patch and libdb-fix-atomic.patch to also apply using -p1 and use the autosetup macro. ++++ discover6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * Hide irrelevant stuff for Flatpak runtimes (kde#496330,kde#496329) * 🍒 LabelBackground: improve text readability (kde#492656) * update: disable quitting on eventloop locker (kde#471548) * update version for new release ++++ drkonqi6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ eza: - Update to 0.20.9: Bug Fixes: * Remove newline after doc comment of regen recipe Refactor: * List all recipes by default * Group related recipes - Update to 0.20.8: Bug Fixes: * Cross-compiling by updating to libz-sys to 1.1.20 - Update to 0.20.7: Bug Fixes: * Palette v0.7.6 -> v0.7.5 - Update to 0.20.6: * Fix typo --get-repos-no-status to --git-repos-no-status ++++ featherpad: - Update to 1.5.2: * The printing thread is fixed (previously, it caused a warning message about QBasicTimer). * An old issue is fixed in replacement highlighting of multiple tabs. * Fixed the localization of date and time with Qt6. * Demand attention under Wayland when a window needs activation (although some Wayland compositors may ignore it). * Small fixes and enhancements. ++++ flatpak-kcm6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * Update selected app when activating the running KCM ++++ fwts: - Update to version 24.11.00: * lib: fwts_version.h - update to V24.11.00 * debian: update changelog * hdaaudio: fix the the build errors under plucky amd64 * auto-packager: mkpackage.sh: add plucky * dmicheck: add more types for version length test. * dmicheck: update for supporting DMI version to 3.8.0 * acpi: iort: memory access flag update. * src/acpi: Fix a few spelling mistakes * acpi/wmi: Warn if WMI GUIDs from the Windows driver samples are found * lib: fwts_acpi_object_eval: Do not return FWTS_OK if method lookup fails * script: fix bash-completion-with-hashbang lintian warning * dmicheck: update for supporting DMI version to 3.7.1 * tpmevlog: Ensure the event log matches the actual TPM PCRs ++++ libjxl-gtk: - Update to release 0.11.1 * Huffman lookup table size fix [CVE-2024-11403] * Check height limit in modular trees [CVE-2024-11498] ++++ glasskube-cli: - Update to version 0.26.0: * no CLI-related changes in the changelog ++++ go-sendxmpp: - Update to 0.12.1: Changed: * Print error instead of quitting if a message of type error is received. * Allow upload of multiple files. Added: * Add flag --suppress-root-warning to suppress the warning when go-sendxmpp is used by the root user. - Update to 0.12.0: Added: * Add possibility to look up direct TLS connection endpoint via hostmeta2 (requires xmppsrv >= 0.3.3). * Add flag --allow-plain to allow PLAIN authentication (requires go-xmpp >= 0.2.5). Changed: * Disable PLAIN authentication per default. * Disable PLAIN authentication after first use of a SCRAM auth mechanism (overrides --allow-plain) (requires go-xmpp >= 0.2.5). ++++ grandorgue: - Update to version 3.15.3. Changelog: https://github.com/GrandOrgue/grandorgue/releases/tag/3.15.3-1 - Fixed crash of reference pipes with the "--justgui" option https://github.com/GrandOrgue/grandorgue/issues/2019 - Fixed crash on attempt of loading an organ if it's files did not exist https://github.com/GrandOrgue/grandorgue/issues/1990 - Fixed the sequencer "Save file" button not lightening after inserting or deleting a combination https://github.com/GrandOrgue/grandorgue/issues/2024 - Fixed appearence, sizing and the scrollbar issues with the Stops window https://github.com/GrandOrgue/grandorgue/issues/1961 ++++ grml-zsh-config: - Update to 0.19.8: * Stop shipping /etc/zsh/zlogout to avoid clearing terminal screen * debian/preinst: drop deprecated dpkg-divert * debian: update Vcs-Git and Vcs-Browser ++++ grype-db: - Update to version 0.27.2: * ignore NVD data age + tests (#441) * ignore NVD data age (#440) * remove v1 & v2 processors (#438) ++++ pipewire: - Update to version 1.2.7: + Highlights - Backport support for lazy scheduling. - Handle the case where processing would stop when an ALSA driver is destroyed. - Add support for v4l2loopback in the v4l2 plugin. - Small bug fixes and improvements. + PipeWire - Invalidate the proxy ID when removed. - Backport support for lazy scheduling. - Fix profiler stats for async nodes. - Fix EARLY_PROCESS again in pw-stream. (#3480) + Modules - Fix a crasher issue when nodes are created in the wrong order in module-filter-chain. - Fix unmap bug in lv2 uri tables. - Add ratelimit to jack-tunnel xruns. - Remove hardcoded limit in filter-chain sofa plugin. - Handle the MTU size correctly in module-rtp and handle large MTUs. (#4396) - Fix JSON float parsing errors in equalizer module. (#4418) + SPA - Fix crash in audiotestsrc when using spa-inspect (#4365). - Improve JSON float infinity checks. - Improve resampler performace a little. - Make audioconvert only output when there is something to output. - Fix regression in v4l2 port flags which would disable support for EXPBUF. - Handle the case where an ALSA driver is destroyed and the follower becomes a driver. Processing would stop. (#4401) - Add support for v4l2loopback in the v4l2 plugin. + Pulse-server - Give a better error message when running out of fds. - Ensure positive latency reporting. + GStreamer - Fix memory leak in deviceprovider. - Fix locking when emitting an error. + Tools - Fix pw-dot link labels. ++++ breeze6-gtk: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * checkbox: Apply indeterminate after checked * update version for new release ++++ haproxy: - Update to version 3.1.0+git0.f2b97918e: https://www.haproxy.com/blog/announcing-haproxy-3-1 ++++ imagej: - update to 1.53u: * the Image>Transform>Bin command now supports z-binning of 4D hyperstacks. * the Analyze>Plot Profile command works with rotated rectangles. * The Edit>Selection>Line to Area command converts straight line selections to rotated rectangle selections. * improved recording of the Edit>Selection>Properties command and added a comment to the Edit>Options>Line Width dialog to make it clearer what the command does. * the Selection Brush Tool is no longer disabled when activating a selection in an overlay by double clicking on it. * made GenericDialog.resetCounters() public so it can be called by plugins using GenericDialog.addButton() (example). * added the recordable Image.removeScale() macro function and the ImagePlus.removeScale() method. * Added the ImageProcessor.setColor(String) method. * fixed a bug that caused toolbar contextual menus to ignore the Edit>Options>Appearance "GUI scale" setting. * fixed a bug that caused the "Results" menu in a table to disappear if the table was renamed. * fixed a bug that caused the File>Import>TIFF Virtual Stack command to not correctly calibrate TIFF stacks that were not created by ImageJ. * fixed a bug that caused the Image>Overlay>From ROI Manager menu command to not transfer the ROI positions. * fixed a bug that caused the Edit>Selection>Straighten command to change the global line selection width. * fixed a bug that caused ROIs with x or y coordinates greater than 60,535 and less than 65,535 to be saved incorrectly. * fixed a bug that caused ImageJ to create TIFF files with invalid RowsPerStrip tags when the image height was greater than 65,535. * fixed several bugs with Image>Stacks>Plot Z-axis Profile "Live" plots. * fixed a bug that caused the "CP" window to not be updated when the Color Picker tool was used to pick new colors from the active image. * fixed a bug that caused the Opener.openAndAddToRecent() method to return 'false' when the file was opened successfully. * worked around a Java bug on Windows that caused the main menu bar sub-menus to not scale to larger than 17 points. Unfortunately, the main menu bar font size on Windows is still limited to 17 points regardless of the "GUI scale" setting. * fixed a bug that caused the Roi.Paste macro function to not work as expected. * fixed a scale bar width rounding error. * fixed a bug that caused the Edit>Selection>Rotate command to convert Rotated Rectangle selections to Polygon selections. * fixed bugs that caused the Scale and Rotate commands in the ROI Manager to only work correctly when processing all the ROIs. * fixed a 1.53t regression that caused the Image>Stacks>Z Project command to ignore the last slice when doing "Average" projection of 32-bit stacks. * fixed a 1.53o regression that caused unexpected error messages when double clicking on a line in a table or in the ROI Manager when a custom action was not defined (example). ++++ imgui: - update to 1.91.0: Breaking Changes: * IO, IME: renamed platform IME hook and added explicit context for consistency and future-proofness. old: io.SetPlatformImeDataFn(ImGuiViewport* viewport, ImGuiPlatformImeData* data); new: io.PlatformSetImeDataFn(ImGuiContext* ctx, ImGuiViewport* viewport, ImGuiPlatformImeData* data); It is expected that for a vast majority of users this is automatically set by core library and/or platform backend so it won't have any effect. * Obsoleted GetContentRegionMax(), GetWindowContentRegionMin() and GetWindowContentRegionMax(). (information thread: #7838) You should never need those functions! You can do everything in less a confusing manner by only using GetCursorScreenPos() and GetContentRegionAvail(). Also always consider that if you are using GetWindowPos() and GetCursorPos() you may also be making things unnecessarily complicated. I repeat: You can do everything with GetCursorScreenPos() and GetContentRegionAvail()! GetWindowContentRegionMax().x - GetCursorPos().x --> GetContentRegionAvail().x GetWindowContentRegionMax().x + GetWindowPos().x --> GetCursorScreenPos().x + GetContentRegionAvail().x // when called from left edge of window GetContentRegionMax() --> GetContentRegionAvail() + GetCursorScreenPos() - GetWindowPos() // right edge in local coordinates GetWindowContentRegionMax().x - GetWindowContentRegionMin().x --> GetContentRegionAvail() // when called from left edge of window * Item flag changes: Obsoleted PushButtonRepeat()/PopButtonRepeat() in favor of using new PushItemFlag()/PopItemFlag() with ImGuiItemFlags_ButtonRepeat. Kept inline redirecting functions (will obsolete). Obsoleted PushTabStop()/PopTabStop() in favor of using new PushItemFlag()/PopItemFlag() with ImGuiItemFlags_NoTabStop. Kept inline redirecting functions (will obsolete). Renamed ImGuiSelectableFlags_DontClosePopups to ImGuiSelectableFlags_NoAutoClosePopups for consistency. Kept inline redirecting functions (will obsolete). + Internals: changed/inverted ImGuiItemFlags_SelectableDontClosePopup (default==false) to ImGuiItemFlags_AutoClosePopups (default==true), same logic, only inverted behavior. (#1379, #1468, #2200, #4936, #5216, #7302, #7573) * Commented out obsolete ImGuiModFlags (renamed to ImGuiKeyChord in 1.89). (#4921, #456) * Commented out obsolete ImGuiModFlags_XXX values (renamed to ImGuiMod_XXX in 1.89). (#4921, #456) ImGuiModFlags_Ctrl -> ImGuiMod_Ctrl, ImGuiModFlags_Shift -> ImGuiMod_Shift etc. * Backends: GLFW+Emscripten: Renamed ImGui_ImplGlfw_InstallEmscriptenCanvasResizeCallback() to ImGui_ImplGlfw_InstallEmscriptenCallbacks(), with an additional GLFWWindow* parameter. (#7647) [@ypujante] Other Changes * Added TextLink(), TextLinkOpenURL() hyperlink widgets. (#7660) * IO: added io.PlatformOpenInShellFn() handler to open a link/folder/file in OS shell. (#7660) Added IMGUI_DISABLE_DEFAULT_SHELL_FUNCTIONS to disable default Windows/Linux/Mac implementation. * IO: added io.ConfigNavSwapGamepadButtons to swap Activate/Cancel (A<>B) buttons, to match the typical "Nintendo/Japanese consoles" button layout when using Gamepad navigation. (#787, #5723) * Added PushItemFlag()/PopItemFlags(), ImGuiItemFlags to modify shared item flags: Added ImGuiItemFlags_NoTabStop to disable tabbing through items. Added ImGuiItemFlags_NoNav to disable any navigation and focus of items. (#787) Added ImGuiItemFlags_NoNavDefaultFocus to disable item being default focus. (#787) Added ImGuiItemFlags_ButtonRepeat to enable repeat on any button-like behavior. Added ImGuiItemFlags_AutoClosePopups to disable menu items/selection auto closing parent popups. Disabling this was previously possible for Selectable() via a direct flag but not for MenuItem(). (#1379, #1468, #2200, #4936, #5216, #7302, #7573) This was mostly all previously in imgui_internal.h. * Multi-Select: added multi-select API and demos. (#1861, #6518) This system implements standard multi-selection idioms (CTRL+mouse click, CTRL+keyboard moves, SHIFT+mouse click, SHIFT+keyboard moves, etc.) with support for clipper (not submitting non-visible items), box-selection with scrolling, and many other details. In the spirit of Dear ImGui design, your code owns both items and actual selection data. This is designed to allow all kinds of selection storage you may use in your application (e.g. set/map/hash, intrusive selection, interval trees, up to you). The supported widgets are Selectable(), Checkbox(). TreeNode() is also technically supported but... using this correctly is more complicated. You need some sort of linear/random access to your tree, which is suited to advanced trees setups already implementing filters and clipper. We will work toward simplifying our existing demo for trees. A helper ImGuiSelectionBasicStorage is provided to facilitate getting started in a typical app (likely to suit a majority of users). Documentation: Wiki page https://github.com/ocornut/imgui/wiki/Multi-Select for API overview. Demo code + headers are well commented. Added BeginMultiSelect(), EndMultiSelect(), SetNextItemSelectionUserData(). Added IsItemToggledSelection() for use if you need latest selection update during current iteration. Added ImGuiMultiSelectIO and ImGuiSelectionRequest structures: BeginMultiSelect() and EndMultiSelect() return a ImGuiMultiSelectIO structure, which is mostly an array of ImGuiSelectionRequest actions (clear, select all, set range, etc.) Other fields are helpful when using a clipper, or wanting to handle deletion nicely. Added ImGuiSelectionBasicStorage helper to store and maintain a selection (optional): This is similar to if you used e.g. a std::set to store a selection, with all the right glue to honor ImGuiMultiSelectIO requests. Most applications can use that. Added ImGuiSelectionExternalStorage helper to maintain an externally stored selection (optional): Helpful to easily bind multi-selection to e.g. an array of checkboxes. Added ImGuiMultiSelectFlags options: ImGuiMultiSelectFlags_SingleSelect: Disable selecting more than one item. This is available to allow single-selection code to share same code/logic if desired. It essential... ++++ istioctl: - update to 1.24.0: https://istio.io/latest/news/releases/1.24.x/announcing-1.24.1/ CLI-related changes: * Fixed an issue where istioctl install was not working as expected on Windows. * Fixed an issue where istioctl install deadlocks if multiple ingress gateways are specified in the IstioOperator file. (Issue #53875) ++++ kactivitymanagerd6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kde-cli-tools6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kde-gtk-config6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kdecoration6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kdeplasma6-addons: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kgamma6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kglobalacceld6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kinfocenter6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kmenuedit6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kpipewire6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ krdp6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * Hide desktop file for krdpserver * update version for new release ++++ kscreen6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kscreenlocker6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ ksshaskpass6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ libksysguard6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * faces: Ensure the temporary dir for a preset remains until installed (kde#485164) * faces/piechart: Use GraphicalEffects.Glow for rendering outline of compact text (kde#494495) * update version for new release ++++ ksystemstats6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * plugins/cpu: Use simpler names when CPU core info is missing * plugins/cpu: Test for the proper CPU property, skip nonexistent CPUs (kde#495524) * update version for new release ++++ kubectl-node-shell: - Update to version 1.11.0: * bump version v1.11.0 * Replicate nsenter options to pod spec (#69) * Adding ability to mount CSI volumes in privildeged shell (#64) * add KUBECTL_NODE_SHELL_IMAGE_PULL_SECRET_NAME to enable imagePullSecrets (#62) * Add flags for netns attach (#68) ++++ kubesec: - Update to version 2.14.2: * docs: add release note for v2.14.2 * chore(deps): bump the gomod group across 1 directory with 6 updates * chore(deps): bump the gha group across 1 directory with 2 updates * Update go to 1.22.7 for fixing High vulnerability * Update go to 1.22.7 for fixing High vulnerability ++++ kwayland-integration6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * Initialize xdg activation * Fix obtaining wl_surface from WId (kde#496365) * update version for new release ++++ kwayland6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ kwin6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * Cancel interactive move resize only on Wayland * backends/drm: reject cursor updates already in beginFrame * compositor_wayland: don't commit cursor changes if the layer wasn't actually enabled (kde#495843) * backends/drm: don't set the dpms mode to AboutToTurnOff if the screen is already off * layers: add null check * outputconfigurationstore: fix choosing the default mode * plugins/screencast, screenshot: switch color transforms to relative colorimetric (kde#496185) * effects/overview: Properly map the windowHeap geometry * effects/overview: Don't make thumbnails fly off the screen (kde#495444) * core: Set object ownership for Output * backends/drm: re-allow HDR on NVidia with driver version 565.57.01+ * backends/drm: re-allow HDR on Intel by default * Revert "scene: Ignore xwayland window shape" (kde#493934) * tiling: fix some asserts from scripts * utils: Use QList::removeLast() in DamageJournal::add() * Ensure active window isn't focused when screen is locked (kde#495325) * Cancel interactive move resize when outputs change * backends/drm: fix DrmGpu::needsModeset check with leased outputs (kde#495400) * effect/offscreenquickview: ensure the view that accepts touch down also gets touch up * workspace: fix the dpms input event filter sometimes being wrongly deleted * Close layer shell window if its preferred output has been removed * activation: don't activate windows that don't accept keyboard input (kde#495537) * tabbox: Do not add windows that have modal children * core/colorspace: fix the max luminance of linear (kde#494930) * update version for new release ++++ kwrited6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ layer-shell-qt6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ libkscreen6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * doctor: clarify the meaning of max. brightness zero (kde#495557) * Update Plasma Wayland Protocols to 1.14 * update version for new release ++++ plasma5support6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ libplasma6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * FlatButtonBackground: Fix background disappearing when pressing checkable ToolButton Pressed seems to go false, causing the animation to run to hide the background, and then checked becomes true immediately after, restoring the background. Using a NumberAnimation instead will interrupt itself and make no visible change. * update version for new release ++++ plasma6-activities: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-activities-stats: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ mozilla-nss: - Remove upstreamed bmo-1400603.patch - Added nss-bmo1930797.patch to fix failing tests in testsuite ++++ libjxl: - Update to release 0.11.1 * Huffman lookup table size fix [CVE-2024-11403] * Check height limit in modular trees [CVE-2024-11498] ++++ xmlrpc-c: - update to 1.59.03: * Build of client libraries: fix failure to find Curl stuff. * Build: Fix link failure in several tools because they fail to link the Curl library. Don't know how long this was broken. * Build: Eliminate compiler warnings with GCC 6.3 * Build: fix bug: won't compile with --enable-libxml2, introduced with Release 1.44 (December 2015). * Build: update config.guess and config.sub so Configure can recognize newer environments. * Abyss XML-RPC server 'runConn' method: throw exception instead of exiting program when unable to execute an HTTP transaction. * Build: fix bug: ignores LDFLAGS_FOR_BUILD, LDFLAGS_PERSONAL, and LDFLAGS_PTHREAD when building the build tool Gennmtab. - add skip-expat.patch: add patch to skip using expat ++++ linkerd-cli-edge: - Update to version 24.11.7: no CLI-related changes in changelog - Update to version 24.11.6: no CLI-related changes in changelog - Update to version 24.11.5: * feat(cli): add check for link version (#13376) ++++ matrix-synapse: - Update to 1.120.0 This release enables the enforcement of authenticated media by default, with exemptions for media that is already present in the homeserver's media store. Most homeservers operating in the public federation will not be impacted by this change, given that the large homeserver matrix.org enabled this in September 2024 and therefore most clients and servers will already have updated as a result. Some server administrators may still wish to disable this enforcement for the time being, in the interest of compatibility with older clients and older federated homeservers. See the upgrade notes for more information. https://element-hq.github.io/synapse/v1.120/upgrade.html#authenticated-media-is-now-enforced-by-default - Bugfixes - Fix a bug introduced in Synapse v1.120rc1 which would cause the newly-introduced `delete_old_otks` job to fail in worker-mode deployments. (#17960) - Features - Enforce authenticated media by default. Administrators can revert this by configuring enable_authenticated_media to false. In a future release of Synapse, this option will be removed and become always-on. (#17889) - Add a one-off task to delete old One-Time Keys, to guard against us having old OTKs in the database that the client has long forgotten about. (#17934) - Improved Documentation - Clarify the semantics of the enable_authenticated_media configuration option. (#17913) - Add documentation about backing up Synapse. (#17931) - Deprecations and Removals - Remove support for MSC3886: Simple client rendezvous capability, which has been superseded by MSC4108 and therefore closed. (#17638) - Internal Changes - Addressed some typos in docs and returned error message for unknown MXC ID. (#17865) - Unpin the upload release GHA action. (#17923) - Bump macos version used to build wheels during release, as current version used is end-of-life. (#17924) - Move server event filtering logic to rust. (#17928) - Support new package name of PyPI package python-multipart 0.0.13 so that distro packagers do not need to work around name conflict with PyPI package multipart. (#17932) - Speed up slow initial sliding syncs on large servers. (#17946) - Updates to locked dependencies - Bump anyhow from 1.0.92 to 1.0.93. (#17920) - Bump bleach from 6.1.0 to 6.2.0. (#17918) - Bump immutabledict from 4.2.0 to 4.2.1. (#17941) - Bump packaging from 24.1 to 24.2. (#17940) - Bump phonenumbers from 8.13.49 to 8.13.50. (#17942) - Bump pygithub from 2.4.0 to 2.5.0. (#17917) - Bump ruff from 0.7.2 to 0.7.3. (#17919) - Bump serde from 1.0.214 to 1.0.215. (#17938) ++++ maven-shade-plugin: - Upgrade to upstream version 3.6.0 * Bug + MSHADE-428: Typo causes mysterious NPE in build + MSHADE-443: Fix problems with shadeSourcesContent + MSHADE-454: Shade Plugin does not work with JDK 20 + MSHADE-420: Reproducible Builds timestamp issue in some cases + MSHADE-462: 3.5.1 not compatible with 3.4.1: The version cannot be empty + MSHADE-467: Dependency-reduced POM with missing exclusions in concurrent build + MSHADE-469: Cannot generate a jar since switching from 3.4.1 to 3.5.x + MSHADE-471: still timestamp issues with timezones (DST) * New Feature + MSHADE-400: Self-minimisation with custom entry points + MSHADE-478: Add ability to inject extra artifacts into shaded output * Improvement + MSHADE-459: Prepare to build and pass tests with Java 21 + MSHADE-461: multi-release jars with java 22 classes cause class version issues + MSHADE-468: add plugin system requirements history section * Task + MSHADE-438: Update to Maven 3.2.5 + MSHADE-450: Upgrade to parent POM 39, reformat + MSHADE-458: Refresh download page + MSHADE-472: upgrade parent POM + MSHADE-473: Drop legacy and superfluous deps: maven-dependency-tree and commons-collections4 * Dependency upgrade + MSHADE-446: Update dependencies + MSHADE-447: Move off forked Guice + MSHADE-448: Upgrade ASM to 9.5 + MSHADE-449: Upgrade plexus-utils to 3.5.1 + MSHADE-457: Upgrade Parent to 40 + MSHADE-463: Bump asmVersion from 9.5 to 9.6 + MSHADE-464: Maven 3.6.3 as minimum requirements + MSHADE-470: Upgrade ASM to 9.7 (Java 23) + MSHADE-474: Align dependencies with Maven 3 (as this is Maven3 plugin) + MSHADE-475: Upgrade commons-io to 2.16.1 + MSHADE-476: Upgrade commons-compress to 1.26.2 + MSHADE-477: (test) Upgrade test dependencies ++++ melange: - Update to version 0.15.14: * fix(pipeline): validate expected commit before passing to git-checkout pipeline (#1667) * Add git version to Summarize output * RELEASE.md update, add statement that tags and releases will update ++++ mesheryctl: - update to 0.7.161: * no CLI-related changes in this release - update to 0.7.160: * no CLI-related changes in this release - update to 0.7.159: * no CLI-related changes in this release - update to 0.7.158: * no CLI-related changes in this release ++++ milou6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ netty-tcnative: - Upgrade to version 2.0.68 Final * No formal changelog present - Build also the dynamic openssl provider and alias it to the static openssl, libressl and boringssl ones. ++++ nodejs-electron: - Fix ffmpeg refusing to play opus audio files (disable-FFmpegAllowLists.patch) ++++ notejot: - fix build by adding 0001-Simplify-an-overcomplicated-Boolean-expression.patch - update spec file for Leap 16.0: * remove %suse_update_desktop_file * remove recommending lang package * use autosetup ++++ ocean-sound-theme6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ oxygen6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ pam_kwallet6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ patterns-base: - fips: change description from 140-2 to 140-3 - fips: require crypto-policies-scripts when openssh is used (bsc#1224802) - fips: drop -hmac packages as they have been merged into the main package (bsc#1185116) ++++ pcsc-eco5000: - Fix compilationo with gcc14 and fix some warnings * Added pcsc-eco5000-fix-compile-gcc14.patch * Added pcsc-eco5000-clean-warnings.patch ++++ plasma6-openSUSE: - Update to 6.2.4 ++++ plasma6-browser-integration: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-desktop: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * Fill panel width/height in custom/fit content modes when flexible spacer is in panel (kde#495378) * update version for new release ++++ plasma6-disks: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-firewall: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-integration: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-mobile: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Too many changes to list here ++++ plasma6-nano: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-nm: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * ConnectivityMonitor: Don't manually set m_notification to null * Create a random-default password for hotspots if one is not set * update version for new release ++++ plasma6-pa: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * listitemmenu: guard activePort against null * kcm: Fix speaker test layout for Pro-Audio profile (kde#495752) * update version for new release ++++ plasma6-print-manager: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * DevicesModel: Register QList of QStringList to DBus * update version for new release ++++ plasma6-sdk: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-workspace: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * BatteryIcon: Add headphone icon * plasmashell: begin earlier to watch for panel destruction (kde#487684) * plasmawindowed: Use shared contexts analogue to plasmashell * applets/notifications: Be explicit about "when" binding on notificationAction * devicenotifier: An optical disc can also be storage access (kde#469706) * ksmserver: Fix copying of auth data (kde#491130) * applets/systemtray: suppress useless tooltips (kde#494463) * X11/multiscreen: Always emit outputOrderChanged when a screen is disconnected * coloreditor: Hide titlebar color buttons if header is set (kde#433059) * devicenotifier: Fix ejecting busy optical media * panelview: Fix resized panel with NoBackground not receiving input in new space * wallpapers/image: Fix wallpaper item resize for screen dimension change * kcms/users: refactor cropping * update version for new release ++++ plasma6-systemmonitor: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * EditablePage: Set loadOverlay margins explicitly, set loader invisible during loading (kde#494902) * BaseCellDelegate: Use correct colorSet when selected (kde#494261) * update version for new release ++++ plasma6-thunderbolt: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - No code changes since 6.2.3 ++++ plasma6-vault: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-welcome: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plasma6-workspace-wallpapers: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ plymouth-theme-breeze6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ podman: - Update to version 5.3.1: * Bump to v5.3.1 * Update release notes for v5.3.1 * Update windows installer tests * Windows: don't install WSL/HyperV on update * Switch to non-installing WSL by default * docs: add 5.3 as Reference version * only read ssh_config for non machine connections * ssh_config: allow IdentityFile file with tilde * ssh_config: do not overwrite values from config file * connection: ignore errors when parsing ssh_config * spec: clamp rlimits in a userns * cirrus: set proper DEST_BRANCH for 5.3 * libpod: addHosts() prevent nil deref * Bump bundled krunkit to 0.1.4 * fix podman machine init --ignition-path * Bump to v5.3.1-dev ++++ polkit-kde-agent-6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ postgresql12-orafce: - Update to version 4.14.0+git0.f0ecbd3: * prepare for 4.14.0 * prepare for 4.13.6 * remove invalid alternative results of dbms_random test * fix dbms_random test for pg 12 * fix error when orafce's triggers was executed on table with dropped columns * update year in info comment * fix white chars * Oracle does switch of low, high when low is higher than high arg of dbms_random.value. Do this in orafce too. Some cleaning in related regress tests. Attention: this change breaks alternative expected results. * regress test for new nvl function * fix Makefile and return type previously added nvl function * Add support to nvl(double precision, integer) and to_date(integer, text). ++++ postgresql13-orafce: - Update to version 4.14.0+git0.f0ecbd3: * prepare for 4.14.0 * prepare for 4.13.6 * remove invalid alternative results of dbms_random test * fix dbms_random test for pg 12 * fix error when orafce's triggers was executed on table with dropped columns * update year in info comment * fix white chars * Oracle does switch of low, high when low is higher than high arg of dbms_random.value. Do this in orafce too. Some cleaning in related regress tests. Attention: this change breaks alternative expected results. * regress test for new nvl function * fix Makefile and return type previously added nvl function * Add support to nvl(double precision, integer) and to_date(integer, text). ++++ postgresql14-orafce: - Update to version 4.14.0+git0.f0ecbd3: * prepare for 4.14.0 * prepare for 4.13.6 * remove invalid alternative results of dbms_random test * fix dbms_random test for pg 12 * fix error when orafce's triggers was executed on table with dropped columns * update year in info comment * fix white chars * Oracle does switch of low, high when low is higher than high arg of dbms_random.value. Do this in orafce too. Some cleaning in related regress tests. Attention: this change breaks alternative expected results. * regress test for new nvl function * fix Makefile and return type previously added nvl function * Add support to nvl(double precision, integer) and to_date(integer, text). ++++ postgresql15-orafce: - Update to version 4.14.0+git0.f0ecbd3: * prepare for 4.14.0 * prepare for 4.13.6 * remove invalid alternative results of dbms_random test * fix dbms_random test for pg 12 * fix error when orafce's triggers was executed on table with dropped columns * update year in info comment * fix white chars * Oracle does switch of low, high when low is higher than high arg of dbms_random.value. Do this in orafce too. Some cleaning in related regress tests. Attention: this change breaks alternative expected results. * regress test for new nvl function * fix Makefile and return type previously added nvl function * Add support to nvl(double precision, integer) and to_date(integer, text). ++++ postgresql16-orafce: - Update to version 4.14.0+git0.f0ecbd3: * prepare for 4.14.0 * prepare for 4.13.6 * remove invalid alternative results of dbms_random test * fix dbms_random test for pg 12 * fix error when orafce's triggers was executed on table with dropped columns * update year in info comment * fix white chars * Oracle does switch of low, high when low is higher than high arg of dbms_random.value. Do this in orafce too. Some cleaning in related regress tests. Attention: this change breaks alternative expected results. * regress test for new nvl function * fix Makefile and return type previously added nvl function * Add support to nvl(double precision, integer) and to_date(integer, text). ++++ postgresql17-orafce: - Update to version 4.14.0+git0.f0ecbd3: * prepare for 4.14.0 * prepare for 4.13.6 * remove invalid alternative results of dbms_random test * fix dbms_random test for pg 12 * fix error when orafce's triggers was executed on table with dropped columns * update year in info comment * fix white chars * Oracle does switch of low, high when low is higher than high arg of dbms_random.value. Do this in orafce too. Some cleaning in related regress tests. Attention: this change breaks alternative expected results. * regress test for new nvl function * fix Makefile and return type previously added nvl function * Add support to nvl(double precision, integer) and to_date(integer, text). ++++ powerdevil6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release * Add dedicated headset and headphone icon for low battery notification * applets/brightness: toggle nightlight only, when enabled (kde#496457) * applets: allow to detect tlp without solid or upower (kde#495918) * applets/brightness: Make brightness of multiple applets stay in sync (kde#495661) * update version for new release ++++ prometheus-simpleclient-java: - Update to upstream version 0.16.0 * Bugfixes: + Don't throw NPE if .help() wasn't called + Don't wrap a RuntimeException in another RuntimeException. + Make pushgateway module compile on Java 11 + Make sure GZIPOutputStream is always closed for httpserver + Specify the charset of HTTPServer response for systems not using utf-8 by default + Use bundle everywhere so that client_java works with OSGI again. + use the correct name for the metric type gaugehistogram in OpenMetrics (previously this was wrongly named gauge_histogram) + Correct handling of HEAD requests. + Apply ServletConfig during Servlet initialization in simpleclient_servlet and simpleclient_servlet_jakarta + HTTPServer: Don't send a Content-Length header when Transfer-Encoding is chunked. + simpleclient_log4j set the log4j dependency scope as provided so that users don't accidentally pull the log4j version used in client_java. Note: This module is for monitoring log4j version 1, in simpleclient_log4j2 the dependency is already provided. + simpleclient_dropwizard set the Dropwizard dependency scope as provided so that users don't accidentally pull the Dropwizard version used in client_java. + Fix missing Dropwizard metrics in Vertx. + Fix incorrect buffer size in the Servlet exporter. + Fix sample name filter for the JMX metric jvm_memory_bytes_committed. * Enhancements: + Bump caffeine dependency to 2.7.0 to support AsyncCache. + Added health check api to simpleclient_httpserver. + Remove dependency on sun.misc.Unsafe, allowing building on JDK11 + Wrap PrintWriter with BufferedWriter, making servlet exposition about 2x faster + Handle empty label values for the pushgateway + Add Bill of Materials + Count HTTP statuses returned for servlet filter + Introduce TestContainers integration test, for example for testing different Java versions. This means you need Docker installed to run ./mvnw verify. + HTTPServer: Set request/response timeouts. + HTTPServer: Make HTTPMetricHandler public so that it can be used in a custom HTTPServer. + New JVM memory metrics: jvm_memory_pool_collection_used_bytes, jvm_memory_pool_collection_committed_bytes, jvm_memory_pool_collection_max_bytes, jvm_memory_pool_collection_init_bytes, jvm_memory_objects_pending_finalization. + Version bumps (junit, jetty, maven plugins) + add support for Jakarta Servlet, implemented in the new simpleclient_servlet_jakarta module. + provide a way for filtering metrics by name / name prefix. This can be configured either in the HTTPServer, or in the Servlet exporter (both javax and Jakarta). For example, if some JMX metrics cause performance issues, this can be used for excluding these metrics. + for the Servlet filter (both javax and Jakarta): Add a parameter to strip the deployment path from the path label. + Add HTTP Authentication to the HTTPServer #682. + Allow passing a custom registry to the logback InstrumentedAppender. + Lots of more integration tests and tests with different Java versions. + Make HTTPMetricHandler public so that users can use them in their own HttpServers. + Make Base64 encoding in the HTTP authentication for the PushGateway work with all Java versions. + The HTTPServer can now be configured to use SSL. + Lots of dependency version bumps. + Environment variable PROMETHEUS_DISABLE_CREATED_SERIES=true for disabling _created metrics. + Support for OpenTelemetry trace sampling: Only traces that are sampled will be used as exemplars. + Handle thread IDs <= 0. Apparently Apache Zookeeper generates negative thread IDs, which causes issues in jmx_exporter. + Mark opentelemetry-api as optional to make it an optional dependency in OSGi. + Move servlet adapters to an internal package to avoid duplicating classes when building OSGi bundles. + Extend the API of the HTTPServer.Builder to allow custom ExecutorService instances. + Reduce the number of core threads in HTTPServer from 5 to 1. The HTTPServer will still start up to 5 threads on demand if there are parallel requests, but it will use only 1 thread as long as requests are sequential. + Optimize metric name sanitization: Replace the regular expression with a hard-coded optimized algorithm to improve performance. + Lots of dependency version bumps. * Changes: + Switch data model to OpenMetrics. Primarily this means that _total if present is stripped from the metric name of counters, and _total is now always a suffix on the sample value. This means that all Counter samples now have a _total suffix + The io.prometheus.client.Collector.Type enum's value UNTYPED renamed to UNKNOWN * Features: + Add Info and Enumeration metric types for direct instrumentation + Counter, Summary, and Histogram metrics now expose a _created sample with when their child was created + Add support for units + Add gauge histograms, info, stateset for custom collectors + Support negotiating and exposing OpenMetrics for all HTTP server exposition + Add ability to filter metrics in DropwizardExports + Exemplars: API for adding OpenMetrics Exemplars and out-of-the-box integration with OpenTelemetry tracing. - Added patch: * remove_opentelemetry_tracer.patch + remove dependency on opentelemetry ++++ pt2-clone: - Update to vaersion 1.71 * MOD2WAV now exports to the current "modules" path, instead of the current open path (regardless of samples/modules mode) in Disk Op. ++++ python-audible: - Add remove-python-restriction.patch to enable build for python313 ++++ python-audioread: - Add patch no-removed-formats.patch: * Only use the rawread backend for Python 3.12 and below. ++++ python-cma: - Update to 4.0.0: * majorly improved mixed-integer handling based on a more concise lower bound of variances and on so-called integer centering * moved options and parameters code into a new file * many small-ish fixes and improvements * fix compatibility to numpy 2.0 (thanks to Sait Cakmak) * improved interface to noise_handler argument which accepts True as value * improved interface to ScaleCoordinates now also with lower and upper value mapping to [0, 1], see issue #210 * changed: 'ftarget' triggers with <= instead of < * assign surrogate attribute (for the record) when calling fmin_lq_surr * various (minor) bug fixes * various (small) improvements of the plots and their usability * display iterations, evaluations and population size and termination criteria in the plots * subtract any recorded x from the plotted x-values by x_opt=index * plots are now versus iteration number instead of evaluations by default * provide legacy bbobbenchmarks without downloading * new: CMADataLogger.zip allows sharing plotting data more easily by a zip file * new: tolxstagnation termination condition for when the incumbent seems stuck * new: collect restart terminations in cma.evalution_strategy.all_stoppings * new: stall_sigma_change_on_divergence_iterations option to stall sigma change when the median fitness is worsening * new: limit active C update for integer variables * new: provide a COCO single function - Remove upper bound on numpy. - Update URL. ++++ python-django-rq: - Update to 3.0 * Added support for RQ 2.0. Thanks @selwin! * Many typing improvements. Thanks @SpecLad and @terencehonles! * Added management command to suspend and resume workers. Thanks @jackkinsella! * Better support for Redis Sentinel. Thanks @alaouimehdi1995! ++++ python-line_profiler: - Update to 4.1.3: * FIX: duration summary now respects the stripzeros argument. * FIX: minor test fixes. * ENH: building osx wheels for x86 and arm64. * ENH: documentation improvements. * Invoke subshell with the current python interpreter * Respect stripzeros in summary report * Normalize path before comparison - Switch to pyproject macros. - Drop patch use-sys-executable-python.patch, included upstream. ++++ python-podman: - update to 5.3.0: * [skip-ci] Packit: downstream_package_name for each package key by @lsm5 in #416 * Make "images.push" method support "format" parameter by @milanbalazs in #415 * Add test of container create with DNS option by @Honny1 in #417 * Fix podman search flake + update CI VM images by @cevich in [#418] * Update dependency containers/automation_images to v20240529 by @renovate in #389 * Remove wait condition in run() by @inknos in #428 * Update dependency containers/automation_images to v20240821 by @renovate in #423 * domain/networks_manager.py: use specified driver in IPAMConfig by @jtluka in #429 * Fix/Disable Pylint R0917 by @inknos in #432 * Extend the parameters of 'images.load' and 'login' methods by @milanbalazs in #434 * Don't use root as default user for exec_run by @aparcar in #431 * Renovate: Update default assignment by @cevich in #437 * Packit: enable c9s downstream update by @lsm5 in #440 * Audit and Update OWNERS file by @baude in #441 * Update dependency ubuntu to v24 by @renovate in #436 * Remove the container in case of detach mode by @milanbalazs in [#435] * Update CI VM images by @inknos in #430 * Fix cyclic-import by @Honny1 in #450 * Packit: constrain koji and bodhi jobs to fedora package by @lsm5 in #442 * Fix default stderr value of container.logs() to match documentation. by @MattBelle in #452 * [skip-ci] RPM: remove conditionals from changelog by @lsm5 in [#453] * Added stream support to Container.exec_run(). by @MattBelle in [#454] * Accept integer ports in containers_create.create by @krrhodes in #447 * Container.labels now returns an empty dict instead of None. by @MattBelle in #462 * Fix typos by @kianmeng in #464 * fix[docs]: Unindented example code on the index page by @Mr-Sunglasses in #467 * Added support for mounting directories through the volume keyword. by @MattBelle in #460 * docs: Add Installation and docs in README.md by @Mr-Sunglasses in #471 * fix: name filter in images.list() by @Mr-Sunglasses in #468 * Bump release to 5.3.0 and drop python<3.8 by @inknos in #469 ++++ python-sparse: - Re-enable python 3.13 since numba has been patched to support it ++++ qemu: - Fix bsc#1233530: * docs: use consistent markup for footnotes (bsc#1233530) * docs: avoid footnotes consisting of just URLs (bsc#1233530) * docs: fix invalid footnote syntax (bsc#1233692) - Fix bsc#1233530: * scsi: megasas: Internal cdbs have 16-byte length (bsc#1233530) - Fix bsc#1221812, bsc#1232283, bsc#1230978: * [openSUSE] block: Move qcow2 invalidation query-block op_blocker - Update to version 9.1.2: Full changelog here: https://lore.kernel.org/qemu-devel/21ba2773-11a6-45ad-bf98-9b5c2cdccb9b@tls.msk.ru/ Some of the most notable features: * usb-hub: Fix handling port power control messages * hw/audio/hda: fix memory leak on audio setup * Revert "hw/audio/hda: fix memory leak on audio setup" (bsc#1232728) * hw/misc/mos6522: Fix bad class definition of the MOS6522 device * vfio/container: Fix container object destruction * target/i386: fix hang when using slow path for ptw_setl * tcg: Allow top bit of SIMD_DATA_BITS to be set in simd_desc() * linux-user/arm: Select vdso for be8 and be32 modes * linux-user/arm: Reduce vdso alignment to 4k * linux-user: Tolerate CONFIG_LSM_MMAP_MIN_ADDR * accel/tcg: Fix user-only probe_access_internal plugin check * target/arm: Drop user-only special case in sve_stN_r * linux-user: Fix setreuid and setregid to use direct syscalls * hw/i386/pc: Don't try to init PCI NICs if there is no PCI bus * target/i386: Fix legacy page table walk * 9pfs: fix crash on 'Treaddir' request * hw/nvme: fix handling of over-committed queues * migration: Ensure vmstate_save() sets errp * target/arm: Fix SVE SDOT/UDOT/USDOT (4-way, indexed) * target/arm: Add new MMU indexes for AArch32 Secure PL1&0 * Revert "target/arm: Fix usage of MMU indexes when EL3 is AArch32" * acpi/disassemle-aml.sh: fix up after dir reorg * hw/acpi: Fix ordering of BDF in Generic Initiator PCI Device Handle. * qemu-ga: Fix a SIGSEGV in ga_run_command() helper * hw/sd/sdcard: Fix calculation of size when using eMMC boot partitions * tests/tcg: Replace -mpower8-vector with -mcpu=power8 * hw/ssi/pnv_spi: Fixes Coverity CID 1558831 * hw/ssi/pnv_spi: Return early in transfer() ++++ qemu-linux-user: - Fix bsc#1233530: * docs: use consistent markup for footnotes (bsc#1233530) * docs: avoid footnotes consisting of just URLs (bsc#1233530) * docs: fix invalid footnote syntax (bsc#1233692) - Fix bsc#1233530: * scsi: megasas: Internal cdbs have 16-byte length (bsc#1233530) - Fix bsc#1221812, bsc#1232283, bsc#1230978: * [openSUSE] block: Move qcow2 invalidation query-block op_blocker - Update to version 9.1.2: Full changelog here: https://lore.kernel.org/qemu-devel/21ba2773-11a6-45ad-bf98-9b5c2cdccb9b@tls.msk.ru/ Some of the most notable features: * usb-hub: Fix handling port power control messages * hw/audio/hda: fix memory leak on audio setup * Revert "hw/audio/hda: fix memory leak on audio setup" (bsc#1232728) * hw/misc/mos6522: Fix bad class definition of the MOS6522 device * vfio/container: Fix container object destruction * target/i386: fix hang when using slow path for ptw_setl * tcg: Allow top bit of SIMD_DATA_BITS to be set in simd_desc() * linux-user/arm: Select vdso for be8 and be32 modes * linux-user/arm: Reduce vdso alignment to 4k * linux-user: Tolerate CONFIG_LSM_MMAP_MIN_ADDR * accel/tcg: Fix user-only probe_access_internal plugin check * target/arm: Drop user-only special case in sve_stN_r * linux-user: Fix setreuid and setregid to use direct syscalls * hw/i386/pc: Don't try to init PCI NICs if there is no PCI bus * target/i386: Fix legacy page table walk * 9pfs: fix crash on 'Treaddir' request * hw/nvme: fix handling of over-committed queues * migration: Ensure vmstate_save() sets errp * target/arm: Fix SVE SDOT/UDOT/USDOT (4-way, indexed) * target/arm: Add new MMU indexes for AArch32 Secure PL1&0 * Revert "target/arm: Fix usage of MMU indexes when EL3 is AArch32" * acpi/disassemle-aml.sh: fix up after dir reorg * hw/acpi: Fix ordering of BDF in Generic Initiator PCI Device Handle. * qemu-ga: Fix a SIGSEGV in ga_run_command() helper * hw/sd/sdcard: Fix calculation of size when using eMMC boot partitions * tests/tcg: Replace -mpower8-vector with -mcpu=power8 * hw/ssi/pnv_spi: Fixes Coverity CID 1558831 * hw/ssi/pnv_spi: Return early in transfer() ++++ qqc2-breeze-style6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * Fix displaying combo box content from abstract item models * update version for new release ++++ ruqola: - Update to 2.3.2 * Many fixes for RocketChat 7.0 * Fix administrator refresh user list * Fix menu when we select video conference message * Fix RocketChat 7.0 server support * Fix create video message * Fix update cache when we change video/attachment description * Fix export message job * Fix show userOffline when we have a group * Fix enable/disable ok button when search room in team dialog * Fix crash when we remove room in team dialog * Fix update channel selection when we reconnect server ++++ sddm-kcm6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ sqlite-jdbc: - Update to v3.47.1.0 * Features ~ sqlite + upgrade to sqlite 3.47.1 (67d28cb) * Fixes ~ possible StringIndexOutOfBoundsException in ExtendedCommand (2fdb1e9), closes #1141 ~ update module-info.java to make org.slf4j static requirement (81b05ec) * Build ~ deps + bump org.codehaus.mojo:versions-maven-plugin (da8596c) + bump org.apache.maven.plugins:maven-javadoc-plugin (6e4c691) + bump org.jreleaser:jreleaser-maven-plugin (9f354be) + bump surefire.version from 3.5.1 to 3.5.2 (aa92c59) * Documentation ~ add supported API level for Android (4a41998), closes #1204 ++++ strongswan: - rename -hmac subpackage to -fips because it isn't providing the hmac files, it provides the configuration drop in to enforce fips mode. ++++ systemsettings6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ terragrunt: - Update to version 0.69.1: * feat: Adding test for slash in source name (#3591) * fix: Adjusting `run-all` docs (#3589) * feat: `-detailed-exitcode` with `run-all` commands (#3585) ++++ tree: - update to 2.2.1 * Fix regression where I free a pointer that should not have been freed due to a variable renaming that wasn't completed. (Daniel Li / Landon Bourma) * Put back, in a modified form, HTML href directory path fixing that was removed in 2.1.2. If the "baseHREF" part after the -H begins with a dash (-), the dash is removed and the lead directory name is removed from the href, otherwise it is left as-is. It can be very difficult to know how to handle the host and directory part given the plethora of protocols and what-not, so hopefully this should give enough control over that to suit most requirements. Version 2.2.0 (11/24/2024) * Add option --opt-toggle which turns on the ability to toggle options such as -a, -p, etc. Useful to add to an alias for turning an option off when using said alias. (Christoph Anton Mitterer) * Add --hyperlink option to print OSC 8 terminal hyperlinks for files. Also adds the --scheme and --authority options to modify the schema and hostname/ authority of the links. (Nicolai Dagestad) OSC 8 Terminal hyperlinks: https://gist.github.com/egmontkob/eb114294efbcd5adb1944c9f3cb5feda * Maybe finally fix JSON error reporting when unable to open a directory and a full tree is required, such as when using --du. (Alchemyst@github) * Fix small rounding error in human readable size (-h) output, where 9.99K is rounded to 10.0K rather than 10K (Ivan Ivanovich) * Fix the totals report for sizes when --du option is used. The directory size total was correct, but the final report was an accumulation of all the directory totals rather than just the top most directory total. (Alchemyst@github) * Add .gitignore file to distribution for those wanting that. (Kenta Arai) * Add 'none' as a valid --sort option (i.e. -U). * Add ability to cross compile for Android (freemedom@github) * List charsets again if --charsets is not given an argument. * Allow --help and usage to use ANSI bold and italic if colorization is enabled. * General code cleanups: - Removed unused externs where possible. - Clean up some warnings issued by -Wextra (Kenta Arai) - Update Makefile to allow CC and the CFLAGS -O3 option to be overridden, move CPPFLAGS into their own variable, add -Wstrict-prototypes (David Seifert) - Long over-due move to stdbool.h, removes custom bool type and changes all occurrences of TRUE/FALSE to true/false. (David Seifert / others) This likely makes C99+ even more of a requirement now. Please let me know if this requires a work-around for your system. - Went ahead and added -Wconversion to the Makefile as well. This required a large number of type conversion fixing which may have unexpected side effects, but should hopefully help with tree safely dealing with absurd sizes/number of things in the future as this promotes using size_t more. This probably needs more work to do properly however. - Apply the const constraint on parameter strings wherever possible. ++++ updatecli: - Update to version 0.87.0: * deps: use go-scm upstream project (#3146) * chore: deps(go): bump module github.com/drone/go-scm to v1.39.0 (#3137) * deps(go): bump module cuelang.org/go (#3131) * deps(go): bump module helm.sh/helm/v3 (#3126) * deps(go): bump module github.com/stretchr/testify (#3119) * deps(go): bump module github.com/goccy/go-yaml (#3111) * deps(go): bump module github.com/Masterminds/semver/v3 (#3101) * chore: deps(go): bump module github.com/drone/go-scm to v1.38.9 (#3091) * feat(autodiscovery/helm): allow to set target.SkipPackaging for helmchart (#3062) * fix: message for golang update in go.mod (#3068) * feat(temurin): introduces condition to check for Adoptium releases existence (#3063) * deps(go): bump module github.com/hashicorp/hcl/v2 (#3055) * deps(go): bump module github.com/goccy/go-yaml (#3044) * deps: Bump Golang version to 1.23.3 (#3031) * deps(go): bump module golang.org/x/text (#3027) * deps(go): bump module golang.org/x/oauth2 (#3011) * deps(go): bump module golang.org/x/mod (#3012) * fix: print Updatecli log to stdout instead of sterr (#2997) * deps(go): bump module github.com/goccy/go-yaml (#2989) * deps: bump updatecli version to v0.86.1 (#2979) ++++ virt-manager: - Update to Version 5.0.0 (jsc#PED-8910) * virt-clone: colne serial files (Oleg Vasilev) * virt-clone: Copy disk permissions as well (Martin Kletzander) * virt-install: Add properties for AMD SEV-SNP (Daniel P. Berrangé) * virt-install: Add passt backend for user network interface * virt-install: Add support for --sound multichannel,stream (Lin Ma) * virt-install: Add support for --tpm backend.debug,backend.source (Lin Ma) * virt-xml: add --edit --convert-to-q35 * virt-xml: add --edit --convert-to-vnc * virt-xml: Add --edit --boot uefi * virt-manager: Fix opening graphical console with egl-headless (Feng Jiang) * virt-manager: Add support to create external snapshots * virt-manager: Default to scaling=Always for consoles * virt-manager: switch to not forking by default * cli: Add more --disk options (Lin Ma) * cli: Add --memdev target.address_base for virtio-mem and virtio-pmem (Lin Ma) * cli: Add --features kvm.pv-ipi.state=on|off (Lin Ma) * cli: Add --video model.blob=on|off (Lin Ma) * Add missing Hyper-V features and enable most of them by default * Add loongarch support (Xianglai Li) * Add support for hvf domain type (Mohamed Akram) * Support creating sparse volumes on ZFS pools (Iain Buclaw) * UEFI improvements for riscv64 and loongarch64 VMs (Andrea Bolognani) * Add graphcis to riscv64 and aarch64 * build: swtich from setuptools to meson * diskbackend: Drop support for sheepdog (Lin Ma) * cli: Deprecate --cpu host in favor of --cpu host-model (Andrea Bolognani) - Drop the following upstream patches contained in new tarball 001-cli-disk-Add-driver.metadata_cache-options.patch 002-tests-cli-Fix-test-output-after-previous-commit.patch 003-fsdetails-Fix-an-error-with-source.socket-of-virtiofs.patch 004-cli-Drop-unnecessary-disk-prop-aliases.patch 005-tests-testdriver-Add-filesystem-socket-example.patch 006-virtinstall-split-no_install-conditional-apart-to-track-code-coverage.patch 007-virtinstall-fix-regression-with-boot-and-no-install-method.patch 008-tests-Add-a-compat-check-for-linux2020-in-amd-sev-test-case.patch 009-cli-cpu-Add-maxphysaddr.mode-bits-options.patch 010-virt-install-help-required-options-are-wrong.patch 011-cloner-Sync-uuid-and-sysinfo-system-uuid.patch 012-virt-install-unattended-and-cloud-init-conflict.patch 013-virt-install-Reuse-cli.fail_conflicting.patch 014-cli-support-boot-loader.stateless-.patch 015-diskbackend-Drop-support-for-sheepdog.patch 016-Fix-pylint-pycodestyle-warnings-with-latest-versions.patch 017-tests-cpio-set-owner-to-00.patch 018-addhardware-Fix-backtrace-when-controller.index-is-None.patch 019-Clean-up-FileChooser-usage-a-bit.patch 020-guest-Query-availability-of-usb-redirdevs-in-domcaps.patch 021-guest-Query-availability-of-spicevmc-channels-in-domcaps.patch 022-tests-Add-domcaps-coverage-for-usb-redir-spicevmc-channel-checks.patch 023-tests-Update-to-latest-kvm-domcaps.patch 024-progress-Fix-showing-correct-final-total.patch 025-virtinstall-Fix-the-allocating-disk-size-printed-by-the-progress-bar.patch 026-virtinstall-Hide-total_size-in-the-progress-bar-if-it-doesnt-need.patch 027-asyncjob-Fix-backtrace-when-no-cursor-theme-installed.patch 029-asyncjob-Remove-unused-import.patch 030-Packit-initial-enablement.patch 031-virt-install-Recommend-boot-uefi.patch 032-virt-install-Document-Secure-Boot-setups.patch 033-cloner-clone-serial-files.patch 034-tests-cli-test-serial-file-clone.patch 035-man-virt-install-Add-a-note-about-different-behavior-of-boot-on-s390x.patch 036-tests-uitests-Fix-window-reposition-on-f38.patch 037-tests-livetests-work-around-qemu-media-change-regression.patch 038-tests-uitests-Fix-manager-window-repositioning-test.patch 039-tests-Default-uitests-to-verbosity-2.patch 040-uitests-Make-hotplug-test-pass-on-both-f37-and-f38.patch 041-uitests-More-attempts-at-making-manager-reposition-test-reliable.patch 042-tests-uitests-make-menu-operations-more-robust.patch 043-rpm-convert-license-to-SPDX-format.patch 044-uitests-Drop-hotplug-work-around-f38-libvirt-is-fixed-now.patch 045-virtinst-delay-lookup_capsinfo-until-we-really-need-it.patch 046-virtinst-suppress-lookup_capsinfo-exception-in-machine-type-alias-check.patch 047-tests-data-refresh-Fedora-tree-URLs-in-virt-install-osinfo-expected-XMLs.patch 048-tests-Add-unit-test-coverage-for-539.patch 049-fix-indentation-of-multiline-log.exception-invocations.patch 050-virt-clone-Copy-disk-permissions-as-well.patch 051-data-appstream-add-launchable-tag.patch 052-Fix-some-pylint.patch 055-connectauth-Drop-sanity-checking-for-libvirtd.patch 056-delete-Fix-ambiguity-that-confused-pylint.patch 057-Fix-filesystem-socket.source.patch 058-uri-Mock-domcaps-returning-NO_SUPPORT.patch 059-tests-cli-Adjust-hotplug-test-for-latest-libvirt.patch 060-Fix-some-pylint.patch 061-tests-ui-make-newvm-test-start-less-flakey.patch 062-tests-ui-make-creatnet-test-start-less-flakey.patch 063-Support-creating-sparse-volumes-on-ZFS-pools.patch 064-domain-rename-handle-firmware-ending-with-.qcow2.patch 065-testdriver-Add-portgroups-example-to-test-many-devices.patch 066-netlist-Fix-UI-error-when-virtual-network-doesnt-exist.patch 067-ui-details-fix-Applications-width.patch 068-ui-details-Increased-scrolledview6s-height-request.patch 069-uitests-Fix-walkUI-flakyness.patch 070-uitests-Handle-slow-app-launch-on-fedora-39.patch 071-createvm-Replace-deprecated-pkgutil.find_loader.patch 072-Fix-pylint-3.1.0-issues.patch 073-console-Move-embeddable_graphics-to-console.py.patch 074-domain-Add-idx-parameter-to-open_graphics_fd.patch 075-console-Select-the-first-embeddable-graphics-device-as-graphical-console.patch 076-console-Cleanup-and-improve-console-menu-handling.patch 077-cli-add-show-systray-option.patch 078-man-document-show-systray-option.patch 079-baseclass-Avoid-glib-Source-ID-XX-not-found-at-app-shutdown.patch 080-uitests-More-handling-for-slow-startup-on-f39.patch 081-systray-Cleanups-and-improvements-for-show-systray.patch 082-virtinst-add-external-snapshot-capability.patch 083-virtinst-snapshot-add-memory-file-attribute.patch 084-virtManager-domain-allow-disk-only-snapshots.patch 085-virtManager-add-support-to-create-external-snapshots.patch 086-virtManager-ignore-agen-livecycle-event-for-shutoff-VMs.patch 087-Allow-serial-console-resize-to-beyond-80-columns.patch 088-tests-Fix-host-copy-XML-with-libvirt-10.1.0.patch 089-hostdev-Fix-error-when-mdev-type_id-is-missing.patch 090-db1b2fbc-Use-GtkFileChooserNative.patch 091-uitests-Fix-with-GtkFileChooserNative.patch 092-cli-Use-regex-for-grep-and-nogrep-args.patch 093-cli-Fix-with-latest-libvirt.patch 094-uitests-handle-newer-libvirt-test-driver-UpdateDevice-support.patch 095-uitests-force-internal-snapshots-in-test_snapshot.py.patch - Drop the following downstream patches no longer required virtinst-dont-create-storage-pool-for-dryrun.patch virtinst-add-pvh-support.patch virtinst-enable-video-virtio-for-arm.patch virtinst-add-hyperv-performance-options.patch virtman-dont-specify-gtksource-version.patch virtman-language-fixes.patch ++++ wacomtablet-kcm6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ++++ xdg-desktop-portal-kde6: - Update to 6.2.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.2.4 - Changes since 6.2.3: * update version for new release ------------------------------------------------------------------ ------------------ 2024-11-25 - Nov 25 2024 ------------------- ------------------------------------------------------------------ ++++ Jamulus: - Update to 3.11.0 - Client: Added "Delete Entry" button to Advanced Settings, Custom Directories (#3260). (contributed by @AdamGLIN) - Client: Added "delete server" button to connect dialog (#3159). (contributed by @pljones) - Client: Fixed the display of delete buttons on Mac (#3305). (contributed by @softins) - Client/Server: Display Qt versions for both build and runtime (#3231). (contributed by @softins) - Client/Server: Improved start up logging (#3117). (contributed by @pljones) - Server: Fix systemd ExecStart command line to support start/stop recording signal (#3187). (contributed by @rdica) - Server: Only de-register on quit (#3302). (contributed by @pljones) - Mac: Changed bundle ID. You may need to re configure Jamulus to your liking after a new install (#3353). (contributed by @ann0see) - Android: save settings on app state change (#3144). (contributed by @pljones) - Refactor Release upload to two step process (#3374). (contributed by @ann0see) - Refactoring: Decouple App Store upload from dmg build (#3350). (contributed by @ann0see) - Refactor some CHostAddress parameters to be const references (#3259). (contributed by @softins) - Refactor src/main.cpp (#3191). (contributed by @pljones) - Translations updated from Hosted Weblate (#3193, #3246, #3284, #3325, #3363). (contributed by @weblate) - Documentation: Improved link for Server CLI options (#3303). (contributed by @gilgongo) - Documentation: updated TRANSLATING.md for current build process (#3312). (contributed by @softins) - Build: adds macOS signed pkg build automation (#2624). (contributed by @danryu) - Build: Bump actions/cache from 3 to 4 (#3232). (contributed by @app/dependabot) - Build: Bump actions/checkout from 3 to 4 (#3168). (contributed by @app/dependabot) - Build: Bump actions/download-artifact from 3 to 4 (#3211). (contributed by @app/dependabot) - Build: Bump actions/upload-artifact from 3 to 4 (#3213). (contributed by @app/dependabot) - Build: Bump DoozyX/clang-format-lint-action from 0.16 to 0.17 (#3215). (contributed by @app/dependabot) - Build: Bump github/codeql-action from 2 to 3 (#3212). (contributed by @app/dependabot) - Build: Bump maxim-lobanov/setup-xcode from 1.5.1 to 1.6.0 (#3181). (contributed by @app/dependabot) - Build: checkout of submodules only needed for Android (#3289). (contributed by @softins) - Build: Ensure apt version >=2.4 to prove that the system is Debian based (using apt and dpkg) and can validate the repo (#3199). (contributed by @houbsta) - Build: Generate qm files and embedded resource during build (#3288). (contributed by @softins) - Build: Place build files in separate directories instead of project root (#3299). (contributed by @softins) - Build: Replace deprecated Q_OS_MACX with Q_OS_MACOS (Jamulus now requires building with Qt >= 5.7.1) (#3227). (contributed by @softins) - Build: Updated bundled Qt6 to version 6.6.3 (#3182, #3204, #3236). (contributed by @app/github-actions) - Build: Updated Mac Legacy build to use Qt 5.15.2, now compatible with MacOS 10.13 (High Sierra) or newer (#3235). (contributed by @softins) - Build: Updated the build runner for iOS in Github from macos-11 to macos-12 (#3292). (contributed by @softins) - Build: Updated Windows Installer base (NSIS) to version 3.10 (#3254). (contributed by @app/github-actions) - Build: Upgrade main macOS build to macOS 14 and Apple Silicon build (#3297). (contributed by @ann0see) - Autobuild: Build Linux releases on Ubuntu 20.04 instead of 18.04 (#3229). (contributed by @softins) - Autobuild: Prevent CodeQL-induced build failures for MacOS (#3223). (contributed by @softins) - Autobuild: Use notarytool instead of action for macOS notarization (#3352). (contributed by @ann0see) - Switch build to Qt6. ++++ MozillaFirefox: - Mozilla Firefox 133.0 https://www.mozilla.org/en-US/firefox/133.0/releasenotes MFSA 2024-63 (bsc#1233695) * CVE-2024-11691 (bmo#1914707, bmo#1924184) Memory corruption in Apple GPU drivers * CVE-2024-11700 (bmo#1836921) Potential Tapjacking Exploit for Intent Confirmation on Android * CVE-2024-11692 (bmo#1909535) Select list elements could be shown over another site * CVE-2024-11701 (bmo#1914797) Misleading Address Bar State During Navigation Interruption * CVE-2024-11702 (bmo#1918884) Inadequate Clipboard Protection in Private Browsing Mode on Android * CVE-2024-11693 (bmo#1921458) Download Protections were bypassed by .library-ms files on Windows * CVE-2024-11694 (bmo#1924167) CSP Bypass and XSS Exposure via Web Compatibility Shims * CVE-2024-11695 (bmo#1925496) URL Bar Spoofing via Manipulated Punycode and Whitespace Characters * CVE-2024-11703 (bmo#1928779) Password access without authentication via PIN bypass on Android * CVE-2024-11696 (bmo#1929600) Unhandled Exception in Add-on Signature Verification * CVE-2024-11697 (bmo#1842187) Improper Keypress Handling in Executable File Confirmation Dialog * CVE-2024-11704 (bmo#1899402) Potential Double-Free Vulnerability in PKCS#7 Decryption Handling * CVE-2024-11698 (bmo#1916152) Fullscreen Lock-Up When Modal Dialog Interrupts Transition on macOS * CVE-2024-11705 (bmo#1921768) Null Pointer Dereference in NSC_DeriveKey * CVE-2024-11706 (bmo#1923767) Null Pointer Dereference in PKCS#12 Utility * CVE-2024-11708 (bmo#1922912) Data race with PlaybackParams * CVE-2024-11699 (bmo#1880582, bmo#1929911) Memory safety bugs fixed in Firefox 133, Firefox ESR 128.5, and Thunderbird 128.5 - requires NSS 3.106 - remove obsolete mozilla-python313.patch ++++ webkit2gtk3-soup2: - Add webkit2gtk3-CVE-2024-44308.patch: don't allocate DFG register after a slow path (boo#1233631 CVE-2024-44308). - Add webkit2gtk3-CVE-2024-44309.patch: fix a cookie management issue (boo#1233632 CVE-2024-44309). ++++ webkit2gtk3: - Add webkit2gtk3-CVE-2024-44308.patch: don't allocate DFG register after a slow path (boo#1233631 CVE-2024-44308). - Add webkit2gtk3-CVE-2024-44309.patch: fix a cookie management issue (boo#1233632 CVE-2024-44309). ++++ webkit2gtk4: - Add webkit2gtk3-CVE-2024-44308.patch: don't allocate DFG register after a slow path (boo#1233631 CVE-2024-44308). - Add webkit2gtk3-CVE-2024-44309.patch: fix a cookie management issue (boo#1233632 CVE-2024-44309). ++++ clisp: - Make it build with latest pari version ++++ cloudflared: - Update version to 2024.11.1 * Add cloudflared tunnel health command * PPIP-2310: Update quick tunnel disclaimer * TUN-8621: Prevent QUIC connection from closing before grace period after unregistering * TUN-8484: Print response when QuickTunnel can't be unmarshalled * TUN-8592: Use metadata from the edge to determine if request body is empty for QUIC transport * TUN-8621: Fix cloudflared version in change notes to account for release date * TUN-8638: Add datagram v3 serializers and deserializers * TUN-8685: Bump coredns dependency * TUN-8688: Correct UDP bind for IPv6 edge connectivity on macOS * TUN-8694: Fix github release script * TUN-8694: Rework release script * TUN-8661: Refactor connection methods to support future different datagram muxing methods * TUN-8692: remove dashes from session id * TUN-8708: Bump python min version to 3.10 * TUN-8667: Add datagram v3 session manager * TUN-8553: Bump go to 1.22.5 and go-boring 1.22.5-1 * TUN-8700: Add datagram v3 muxer * TUN-8646: Allow experimental feature support for datagram v3 * TUN-8641: Expose methods to simplify V3 Datagram parsing on the edge * VULN-66059: remove ssh server tests * TUN-8709: Add session migration for datagram v3 * TUN-8701: Add metrics and adjust logs for datagram v3 * add: new go-fuzz targets * TUN-8701: Simplify flow registration logs for datagram v3 ++++ crmsh: - Update to version 5.0.0+20241125.ae21432f: * Dev: unittests: Adjust unit test for previous commit * Dev: bootstrap: Remove import_ssh_key function * Dev: unittests: Adjust unit test for previous commits * Dev: ssh_key: Split fetch_public_key_list into two functions * Dev: bootstrap: Improve shell script in generate_ssh_key_pair_on_remote * Dev: bootstrap: Reuse AuthorizedKeyManager to add key to authorized_keys * Dev: bootstrap: Adjust the docstring of configure_ssh_key function * Dev: bootstrap: Change the parameter name in swap_public_ssh_key function * Dev: bootstrap: Avoid hardcoding the ssh key type as RSA * Dev: ssh_key: Avoid hardcoding the ssh key type as RSA * Dev: utils: Avoid hardcoding the ssh key type as RSA ++++ gala: - small fix for Leap 1500 - update to 8.0.3: * DragDropAction: Fix actor_clicked emission on touch event * Introduce AnimationsSettings * DragDropAction: properly handle button release event * Introduce a WindowPositioner * Pass Meta.Display instead of Gala.WindowManager where possible * Add support for Mutter47 * AnimationSettings: Introduce get_animation_duration * HideTracker: Take windows that are only vertically maximized * Add panel hide delay - update to 8.0.2: * WindowIcon: reload icon if more info about the window becomes available * ManagedClient: Inherit fds * Fix autohide * Fix stacking order after workspace switch * ScreenshotManager: Fix cursor inclusion for non window screenshots * Fix panel sometimes being behind windows - remove support-libmutter15.patch, as upstream integrated the patch ++++ gede: - New upstream version 2.20.2 * Fixed incorrect cursor position in console output ++++ git: - update to 2.47.1: * Use after free and double freeing at the end in "git log -L... -p" had been identified and fixed. * "git maintenance start" crashed due to an uninitialized variable reference, which has been corrected. * Fail gracefully instead of crashing when attempting to write the contents of a corrupt in-core index as a tree object. * A "git fetch" from the superproject going down to a submodule used a wrong remote when the default remote names are set differently between them. * The "gitk" project tree has been synchronized again ++++ gnome-control-center: - Update to version 47.2: + Accessibility: Remove "screen" labels that take too much space + Appearance: Fix accidental reset of accent colors config + Apps: Fix some memory leaks + Color: Ensure profiles are connected before operating on them + Mobile Networks: Fix alignment of status pages + Mouse: - Fix illustration assets requiring gstreamer-plugins-bad - Update illustration assets + Printers: Remove wrong tooltip in the "Add Printer" button + Updated translations. ++++ gnome-shell: - Update to version 47.2: + Fix graphical artifacts in partially-rounded buttons + Fix caret tracking in magnifier + Improve accessibility of keyboard backlight quick settings toggle + Fix resetting non-caps shift key in on-screen keyboard + Misc. bug fixes and cleanups + Updated translations. ++++ gnome-music: - Update to version 47.1: + Bugs fixed: - Do not open multiple preferences windows using keyboard shortcut. - Show MPRIS albumart on delayed retrieval. ++++ gnome-shell-extensions: - Update to version 47.2: + places-menu: Fix a11y labelling + screenshot-window-sizer: Mention shortcut in description + Misc. bug fixes and cleanups + Updated translations. ++++ gnome-software: - Update to version 47.2: + Fix distro upgrade when certain version of PackageKit is used + Fix a crash when uninstalling a Snap app + Make uninstall dialog adaptive for small screens + Prefer Appstream data from swcatalog instead of app-info directories + Updated translations. ++++ gnome-user-share: - Adjust _service definition: upstream has changed their tag format to be a simple VERSION tag. ++++ golangci-lint: - Update to version 1.62.2: * dev: fix release workflow (#5156) - Update to version 1.62.1: * build(deps): bump github.com/uudashr/iface from 1.2.0 to 1.2.1 (#5154) * dev: publish snap (#5130) * build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#5152) * build(deps): bump github.com/Crocmagnon/fatcontext from 0.5.2 to 0.5.3 (#5153) * dev: add missing AUR_KEY secret (#5151) * dev: simplify sort results processors (#5150) * docs: Simplify team and contributors section (#5148) * dev: publish AUR -bin automatically (#5146) * build(deps): bump cross-spawn from 6.0.5 to 6.0.6 in /.github/contributors (#5145) * docs: remove golint on 'performance' page (#5139) * docs: fix URL for revive.ignore-generated-header (#5140) * build(deps): bump github.com/polyfloyd/go-errorlint from 1.6.0 to 1.7.0 (#5134) * build(deps): bump cross-spawn from 7.0.3 to 7.0.5 in /.github/peril (#5136) * build(deps): bump github.com/nunnatsa/ginkgolinter from 0.18.0 to 0.18.3 (#5133) * build(deps): bump github.com/mgechev/revive from 1.5.0 to 1.5.1 (#5135) * build(deps): bump github.com/Antonboom/testifylint from 1.5.0 to 1.5.2 (#5132) * docs: improve testifylint description of require-f-funcs flag (#5131) * fix: ignore cache error when file not found (#5129) * build(deps): bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 in /scripts/gen_github_action_config (#5128) * docs: missing doc link for sloglint.args-on-sep-lines (#5126) * docs: fix links to gocritic checks (#5125) * docs: update documentation (#5124) * docs: update documentation assets (#5122) * docs: update GitHub Action assets (#5123) ++++ kernel-firmware: - Update to version 20241125 (git commit 508d770ee6f3): * ice: update ice DDP wireless_edge package to 1.3.20.0 * ice: update ice DDP comms package to 1.3.52.0 * ice: update ice DDP package to ice-1.3.41.0 * amdgpu: update DMCUB to v9.0.10.0 for DCN314 * amdgpu: update DMCUB to v9.0.10.0 for DCN351 ++++ libqt5-qt3d: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 * Doc: Add missing leading asterisk to qdoc command ++++ libqt5-qtconnectivity: - Update to version 5.15.16+kde1, rebased upstream: * sdpscanner: fix format strings for (u)int64_t * Bump version to 5.15.16 ++++ libqt5-qtlottie: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtbase: - Update to version 5.15.16+kde130, rebased upstream: * xcb: Sync XCB connection after reparenting window * xcb: check validity of RandR output info before using it * QDuplicateTracker: fix redundant ; * qxmlstreamparser_p.h: fix -Wshadow in parse() * Fix -Wdouble-promotion in FP overload of convertDoubleTo() * Protect headers against min/max macros * Add __attribute__((format(printf()))) to q(v)nprintf() * qsavefile_p.h: fix missing qsavefile.h include * qendian_p.h: fix -Wshadow warning * qtextstream_p.h: fix -Wshadow in QDeviceClosedNotifier * QFutureInterface: fix build with GCC14/C++20: template-id not allowed * qfuturewatcher_p.h: fix missing qfuturewatcher.h include * qhttpmultipart_p.h: add missing qiodevice.h include * Fix crash in font distancefield computation * Avoid crash in font distancefield computation * Revert "Update Harfbuzz to 7.2.0" * Revert "Update Harfbuzz to 7.2.0" * Fix WinRT/ARM build * Update Harfbuzz to version 8.2.2 * Upgrade Harfbuzz to version 8.2.0 * Update bundled libjpeg-turbo to version 3.0.1 * SQLite: Update SQLite to v3.43.2 * Add a script for updating from publicsuffix/list.git * Fix undefined symbol qt_version_tag with lld(16.0) for non core lib * QInputMethod: check if focusobject supports the "new" IM function before calling it * Un-deprecate qSwap() * Doc: state that models are not thread-safe * Fix android build error * xcb: replace a warning with debug info * qurl-generateTLDs: filter empty and comment lines * qurltlds_p.h: support easier automatic updates * SQLite: Update SQLite to v3.43.1 * Upgrade to Freetype 2.13.2 * Fix crash when reading corrupt font data (CVE-2023-43114) * qmake: Don't error out if QMAKE_DEFAULT_LIBDIRS is empty on macOS * qxkbcommon: Keep lower case as Qt key when upper case is not in Latin1 * Doc: Fix documented default for QCalendarWidget maximumDate, minimumDate * QDataStream: clarify QDataStream::operator>>(char *&s) API docs * doc: Remove QSettings' paths for embedded linux * Update bundled zlib to version 1.3 * tst_QDtls: use DTLS v 1.0 test data conditionally * Bump version to 5.15.16 * Android: fix handling of tree content uri with sub-document * QTextFormat: documentation fix * SQLite: Update SQLite to v3.43.0 * tst_QSslSocket: skip tests requiring TLS v 1.0 downgrade * Update to Harfbuzz 8.1.1 * Update version of FreeType attribution * tst_QHashFunctions: use actual seed in consistent() test function * Android: fix content URI handling for non-ascii file names * Upgrade Harfbuzz to 7.3.0 * Update download location for Harfbuzz as well - Commits dropped by the rebase: * Add missing line continuations for memory_resource opt-out on Apple systems * Fix CVE-2023-43114 ++++ libqt5-qtcharts: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtdatavis3d: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qttools: - Update to version 5.15.16+kde3, rebased upstream: * Bump version to 5.15.16 * Qt Designer: Fix invalid QIcon entry "." ++++ libqt5-qtgamepad: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtvirtualkeyboard: - Update to version 5.15.16+kde0, rebased upstream: * Fix repeated style loading * Bump version to 5.15.16 ++++ libqt5-qtlocation: - Update to version 5.15.16+kde7, rebased upstream: * Android: fix null array when requesting available providers * WeatherInfo example: fix a potential crash * Bump version to 5.15.16 ++++ libqt5-qtmultimedia: - Update to version 5.15.16+kde2, rebased upstream: * supportedResolutions() - do not append the same resolution twice * pulseaudio: Use pa_context_new_with_propslist * Stop using std::unary_function * Bump version to 5.15.16 ++++ libqt5-qtnetworkauth: - Update to version 5.15.16+kde1, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtquick3d: - Update to version 5.15.16+kde1, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtquickcontrols2: - Update to version 5.15.16+kde5, rebased upstream: * Don't leak buttons in QQuickDialogButtonBox * Fix connection leak in header proxy model * Bump version to 5.15.16 ++++ libqt5-qtremoteobjects: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtscxml: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtsensors: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtserialbus: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtserialport: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtsvg: - Update to version 5.15.16+kde5, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtspeech: - Update to version 5.15.16+kde1, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtwayland: - Update to version 5.15.16+kde59, rebased upstream: * client: use current modifiers in repeat keys * fix: variable not initialized * Add license headers to shader files * Bump version to 5.15.16 ++++ libqt5-qtwebchannel: - Update to version 5.15.16+kde3, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtwebsockets: - Update to version 5.15.16+kde2, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtwebview: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtx11extras: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtxmlpatterns: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtdeclarative: - Update to version 5.15.16+kde22, rebased upstream: * QML Debugger: Don't crash when looking up values from imported modules * Avoid memory leaks in QQuickListView and tst_qqmlinstantiator * QQuickItemView: avoid leaking of highlights and animators * Doc: Fix unqualified access in PathView example * QQmlSequence: fix compilation with GCC12/C++20 * Context properties: Don't trigger an assert for numeric names * pixmapcache: avoid deadlock when canceling async image load * Fix positioning of text decoration with some fonts * Bump version to 5.15.16 * Doc: fix Qt Quick Test header ++++ libfvalue: - Update 0001-Export-libfvalue_value_get_entry.patch so libnk2 does not fail to build ++++ ncurses: - Add ncurses patch 20241123 + remove dependency on stdbool.h from configure script check for type of bool when C++ binding is omitted (report by Sam James). + compiler-warning fixes ++++ libnetfilter_conntrack: - Specfile modernization ++++ libnvme: - Fix tests on s390 * add 0002-test-mock-pass-thru-unknown-ioctls.patch ++++ libqt5-qtgraphicaleffects: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtimageformats: - Update to version 5.15.16+kde2, rebased upstream: * Revert "Update bundled libtiff to version 4.5.1" * Revert "Update bundled libwebp to version 1.3.1" * Bump version to 5.15.16 ++++ libqt5-qtquickcontrols: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qtquicktimeline: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libqt5-qttranslations: - Update to version 5.15.16+kde0, rebased upstream: * Bump version to 5.15.16 ++++ libsndfile: - Fix out-of-bounds read in function vorbis_analysis_wrote in ogg_vorbis.c (CVE-2024-50612, bsc#1232438): libsndfile-CVE-2024-50612.patch ++++ libsndfile-progs: - Fix out-of-bounds read in function vorbis_analysis_wrote in ogg_vorbis.c (CVE-2024-50612, bsc#1232438): libsndfile-CVE-2024-50612.patch ++++ libt3key: - Update to release 0.2.11 * GCC 14 support - Delete ncurses.patch (merged) ++++ tesseract-ocr: - Update versioned dependencies and add missing buildrequirements - Bump Leap version of gcc - Update to 5.5.0 - Fix TARGET_PDB_FILE error for static linking. in #4271 - Make regular usage of CMAKE_INSTALL_LIBDIR and GNUInstallDirs in #4272 - Ignore illegal TESSDATA_PREFIX (not existing filesystem entry, issue #4277) in #4278 - Fix confidence output for the PAGE XML renderer in #4283 - Set hOCR capabilities ocrp_dir and ocrp_lang unconditionally in #4301 - Reduce clock syscalls in #4303 - Calculate row bounding box in single-word mode per #4304 in #4305 - Replace access/_access by std::filesystem::exists in #4307 - Modernize code for list of available models in #4308 - Fix performance and other issues reported by Codacy in #4309 - Remove unnecessary assignment and assertions in #4313 - Update code for tprintf in #4306 - Add C++ stream for log messages and use it in two debug messages in #4314 - cmake: Correctly set the soversion based on SemVer properties in #4319 - Replace deprecated runner macos-12 by macos-latest in GitHub actions in #4326 - Modernize code for renderers and remove filename conversion for Windows in #4330 - Fix some typos and grammer issues in #4337 - Add GitHub action and Makefile target for Windows installer in #4341 - Support symbolic values for --oem and --psm options in #4344 - Replace some tprintf by tesserr stream (fixes Windows compiler warnings) in #4345 - Add RISC-V V support #4346 - Fix and improve Windows installer in #4348 - Remove Tensorflow support in #4350 - Update submodule googletest to release v1.15.2 in #4352 ++++ libtranscript: - Update to release 0.3.4 * GCC 14 support - Delete 0001-build-fix-configure-failure-in-gcc-14.patch (merged) ++++ lxqt-panel: - Update to version 2.1.2: * Fixed changing of desktop names under X11 ++++ mozilla-nspr: - update to version 4.36 * remove support for OS/2 * remove support for Unixware, Bsdi, old AIX, old HPUX9 & scoos * remove support for Windows 16 bit * renamed the prwin16.h header to prwin.h * configure was updated from 2.69 to 2.71 * various build, test and automation script fixes * major parts of the source code were reformatted ++++ mutter: - Update to version 47.2: + Fix warping pointer after releasing pointer constraints + Default to high thread instead of realtime priority for KMS thread + Avoid CPU stalls with NVIDIA secondary GPUs with directly-attached monitors + Fix updating cursor immediately when starting window drag + Add pipeline hooks to user program pipelines + Prefer GPUs with built-in panels connected as primary GPU + Fix cursor glitches when using virtual monitors + Ensure frame events are sent for cursor surfaces + Allow BGRX8888 format on big endian + Fix touchscreen drag-and-drop on wayland + Fixed crashes + Misc. bug fixes and cleanups ++++ openafs: - update to latest git branch stable-1_8_x, includes security update 1.8.13 - change version to openafs-1.8.13.g... since the new stable release is 1.8.13 - remove patch handle_backports.diff, it is now included upstream - remove intermediate patches: * 03b280649f5e22ed74c217d7c98c3416a2fa9052: Linux-6.10: remove includes for asm/ia32_unistd.h * 0f6a3a402f4a66114da9231032bd68cdc4dee7bc: Linux-6.10: Use filemap_alloc_folio when avail * 658942f2791fad5e33ec7542158c16dfc66eed39: Linux-6.10: define a wrapper for vmalloc * d8b56f21994ce66d8daebb7d69e792f34c1a19ed: afs: avoid empty-body warning * 7097eec17bc01bcfc12c4d299136b2d3b94ec3d7: Linux 6.10: Move 'inline' before func return type ++++ opencl-headers: - Update to version 2024.10.24: * Temporarily disable PPA builds (#267) * Update headers regenerated from latest xml (#264) * Add properties parameter to all command-buffer commands (#260) * Use array for clUpdateMutableCommandsKHR (#245) * Disable gcc-11 on MacOS (#262) * Update generated headers and remove CL/GL types from cl_platform.h (#257) * Fix CI failures (#256) * Introduce extension macros (#251) * Update CI matrix (#252) * Updated CI, added CD (#239) ++++ openqa-mon: - Update to version 1.3.1: * Prepeare maintenance release * Update cmd/openqa-mon/util.go * Update dependencies * Add SLEM6 * Refactor util with generics and cleanup * Consider no arguments wrong usage * Update module dependencies * Update QE-C Maintenance template * Remove unneeded code * Move project to os-autoinst * ci: Run workflow on pull requests as well * Set version not go to 1.21 in workflows * Propagate err in checkReviewed * Set version to release ++++ openttd: - Add upstreamed but unreleased patch 0001-icu-build-fix.patch to fix builds with ICU >= 76 ++++ pantheon-camera: - update to 8.0.1: * Workflows/Merge: install rust extension for gettext * MainWindow: Make headerbar buttons insensitive by default * Always use decimal point * Updated translations ++++ pantheon-onboarding: - update to 8.0.2: * WelcomeView: Fix missing handler when a row activated * Updated translations - update to 8.0.1: * AbstractOnboardingView: replace skip all with back on non-welcome * WelcomeView: copy links redesign from Settings * Update onboarding.metainfo.xml.in ++++ pantheon-shortcut-overlay: - update to 8.0.1: * Use new keybindings schema ++++ pantheon-sideload: - update to 6.3.0: * Handle flatpak+https scheme * MainWindow: fix invalid bundle cast ++++ passt: - Update to version 20241121.238c69f: * tcp: Acknowledge keep-alive segments, ignore them for the rest * tcp: Reset ACK_TO_TAP_DUE flag whenever an ACK isn't needed anymore * ndp: Don't send unsolicited RAs if NDP is disabled * ndp: Don't send unsolicited router advertisement if we can't, yet * selinux: Use auth_read_passwd() interface for all our getpwnam() needs * ndp: Send unsolicited Router Advertisements * passt: Seed libc's pseudo random number generator * util: Add general low-level random bytes helper * ndp: Make route lifetime a #define * ndp: Use struct assignment in preference to memcpy() for IPv6 addresses * ndp: Split out helpers for sending specific NDP message types * ndp: Add ndp_send() helper * ndp: Remove redundant update to addr_seen * cppcheck: Don't check the system headers * linux_dep: Fix CLOSE_RANGE_UNSHARE availability handling * linux_dep: Move close_range() conditional handling to linux_dep.h * log: Only check for FALLOC_FL_COLLAPSE_RANGE availability at runtime * tap, tcp, util: Add some missing SOCK_CLOEXEC flags * passt: Use NOLINT clang-tidy block instead of NOLINTNEXTLINE * util: Define small and big thresholds for socket buffers as unsigned long long * tap: Cast TAP_BUF_BYTES - ETH_MAX_MTU to ssize_t, not TAP_BUF_BYTES * dhcpv6: Turn some option headers pointers to const * dhcpv6: Use for loop instead of goto to avoid false positive cppcheck warning * tcp: unify payload and flags l2 frames array * test: Improve test for NDP assigned prefix * test: Don't require 64-bit prefixes in perf tests * test: Make nstool hold robust against interruptions to control clients * test: Rename propagating signal handler * util: Work around cppcheck bug 6936 * udp: Don't dereference uflow before NULL check in udp_reply_sock_handler() * ndp: Use const pointer for ndp_ns packet * linux_dep: Generalise tcp_info.h to handling Linux extension compatibility * fwd: Squash different-signedness comparison warning * util: Remove unused ffsl() function * clang: Add rudimentary clangd configuration * Makefile: Don't attempt to auto-detect stack size * Makefile: Use -DARCH for qrap only * seccomp: Simplify handling of AUDIT_ARCH * Makefile: Move NETNS_RUN_DIR definition to C code * netlink: RTA_PAYLOAD() returns int, not size_t * flow: Correct type of flowside_at_sidx() * arch: Avoid explicit access to 'environ' * clang: Move clang-tidy configuration from Makefile to .clang-tidy * Makefile: Simplify exclusion of qrap from static checks * clang: Add .clang-format file * test: Adjust misplaced sleeps in two_guests code * tap: Explicitly cast TUNSETIFF to fix build warning with musl on ppc64le * tcp: Fix build against musl, __sum16 comes from linux/types.h ++++ python-ara: - Update to 1.7.2 * When recording diffs, properly format and display the "prepared" key for the modules that use it (apt, git, cli_config and others) * Sorting task results by duration when browsing playbook results works once again * Updated bootstrap css from 5.3.0 to 5.3.3 * Catch SIGINT and SIGTERM signals resulting in the interruption of playbooks to set the status of the playbook to "expired" instead of keeping it running forever unless expired with `ara playbook expire` from the CLI. * Add support for UTF-8 encoded usernames and passwords * Add .readthedocs.yaml to fix broken documentation builds * Formally include ara as a dependency in order to include --help commands in the docs * Added an introduction page * Made dependency on ruamel.yaml explicit rather than implicit * Update usage of logging.warn to logging.warning for python 3.13 * Updated versions of Ansible tested in CI to Ansible 10 and ansible-core 2.17 ++++ python-Deprecated: - Update to 1.2.15 * Resolve Python 2.7 support issue introduced in v1.2.14 in ``sphinx.py``. * Fix #69: Add ``extra_stacklevel`` argument for interoperating with other wrapper functions (refer to #68 for a concrete use case). * Fix #73: Update class method deprecation warnings for Python 3.13. * Fix #75: Update GitHub workflows and fix development dependencies for Python 3.12. * Fix #66: discontinue TravisCI and AppVeyor due to end of free support. - Adjust upstream source name in spec file - Drop fix-python3.13-ftbfs.patch, merged upstream ++++ python-Pympler: - Disable test_otracker_diff on aarch64 as it randomly makes the check to fail due to worker slowness ++++ python-aiohttp-socks: - Update to 0.9.1 * Update Github CI configuration * Update README.md * Update .gitignore * Move project metadata to pyproject.toml * Update pyproject.toml, bump version ++++ python-azure-mgmt-containerinstance: - New upstream release + Version 10.2.0b1 + For detailed information about changes see the CHANGELOG.md file provided with this package - Adjust upstream source name in spec file - Drop extra LICENSE.txt as upstream now ships its own - Override upstream version with 10.2.0~b1 - Remove unzip package from BuildRequires - Rename LICENSE.txt to LICENSE in %files section - Switch source archive format to TAR.GZ - Update Requires from setup.py ++++ python-azure-mgmt-datalake-store: - New upstream release + Version 1.1.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Drop extra LICENSE.txt as upstream now ships its own - Override upstream version with 1.1.0~b1 - Rename LICENSE.txt to LICENSE in %files section - Update Requires from setup.py ++++ python-azure-mgmt-postgresqlflexibleservers: - New upstream release + Version 1.1.0b1 + For detailed information about changes see the CHANGELOG.md file provided with this package - Override upstream version with 1.1.0~b1 ++++ python-caldav: - Update to 1.4.0 * Lots of work lifting the project up to more modern standards and improving code, thanks to Georges Toth (github @sim0nx), Matthias Urlichs (github @smurfix) and @ArtemIsmagilov. While this shouldn't matter for existing users, it will make the library more future-proof. * Quite long lists of fixes, improvements and some few changes, nothing big, main focus is on ensuring compatibility with as many server implementations as possible. See below. * Partial workaround for https://github.com/python-caldav/caldav/issues/401 - some servers require comptype in the search query - * At least one bugfix, possibly fixing #399 - the `accept_invite`-method not working - https://github.com/python-caldav/caldav/pull/403 * Fix/workaround for servers sending MAILTO in uppercase - https://github.com/python-caldav/caldav/issues/388, https://github.com/python-caldav/caldav/issues/399 and https://github.com/python-caldav/caldav/pull/403 * `get_duration`: make sure the algorithm doesn't raise an exception comparing dates with timestamps - https://github.com/python-caldav/caldav/pull/381 * `set_due`: make sure the algorithm doesn't raise an exception comparing naive timestamps with timezone timestamps - https://github.com/python-caldav/caldav/pull/381 * Code formatting / style fixes. * Jason Yau introduced the possibility to add arbitrary headers - but things like User-Agent would anyway always be overwritten. Now the custom logic takes precedence. Pull request https://github.com/python-caldav/caldav/pull/386, issue https://github.com/python-caldav/caldav/issues/385 * Search method has some logic handling non-conformant servers (loading data from the server if the search response didn't include the icalendar data, ignoring trash from the Google server when it returns data without a VTODO/VEVENT/VJOURNAL component), but it was inside an if-statement and applied only if Expanded-flag was set to True. Moved the logic out of the if, so it always applies. * Revisited a problem that Google sometimes delivers junk when doing searches - credits to github user @zhwei in https://github.com/python-caldav/caldav/pull/366 * There were some compatibility-logic loading objects if the server does not deliver icalendar data (as it's suppsoed to do according to the RFC), but only if passing the `expand`-flag to the `search`-method. Fixed that it loads regardless of weather `expand` is set or not. Also in https://github.com/python-caldav/caldav/pull/366 * Tests - lots of work getting as much test code as possible to pass on different servers, and now testing also for Python 3.12 - ref https://github.com/python-caldav/caldav/pull/368 https://github.com/python-caldav/caldav/issues/360 https://github.com/python-caldav/caldav/pull/447 https://github.com/python-caldav/caldav/pull/369 https://github.com/python-caldav/caldav/pull/370 https://github.com/python-caldav/caldav/pull/441 https://github.com/python-caldav/caldav/pull/443a * The vcal fixup method was converting implicit dates into timestamps in the COMPLETED property, as it should be a timestamp according to the RFC - however, the regexp failed on explicit dates. Now it will take explicit dates too. https://github.com/python-caldav/caldav/pull/387 * Code cleanups and modernizing the code - https://github.com/python-caldav/caldav/pull/404 https://github.com/python-caldav/caldav/pull/405 https://github.com/python-caldav/caldav/pull/406 https://github.com/python-caldav/caldav/pull/407 https://github.com/python-caldav/caldav/pull/408 https://github.com/python-caldav/caldav/pull/409 https://github.com/python-caldav/caldav/pull/412 https://github.com/python-caldav/caldav/pull/414 https://github.com/python-caldav/caldav/pull/415 https://github.com/python-caldav/caldav/pull/418 https://github.com/python-caldav/caldav/pull/419 https://github.com/python-caldav/caldav/pull/417 https://github.com/python-caldav/caldav/pull/421 https://github.com/python-caldav/caldav/pull/423 https://github.com/python-caldav/caldav/pull/430 https://github.com/python-caldav/caldav/pull/431 https://github.com/python-caldav/caldav/pull/440 https://github.com/python-caldav/caldav/pull/365 * Doc - improved examples, https://github.com/python-caldav/caldav/pull/427 * Purelymail sends absolute URLs, which is allowed by the RFC but was not supported by the library. Fixed in https://github.com/python-caldav/caldav/pull/442 * In https://github.com/python-caldav/caldav/pull/366, I optimized the logic in `search` a bit, now all data from the server not containing a VEVENT, VTODO or VJOURNAL will be thrown away. I believe this won't cause any problems for anyone, as the server should only deliver such components, but I may be wrong. * Default User-Agent changed from `Mozilla/5` to `python-caldav/{__version__}` - https://github.com/python-caldav/caldav/pull/392 * Change fixup log lvl to warning and merge diff log messages into related parent log by @MrEbbinghaus in https://github.com/python-caldav/caldav/pull/438 * Mandatory fields are now added if trying to save incomplete icalendar data, https://github.com/python-caldav/caldav/pull/447 * Allow to reverse the sorting order on search function by @twissell - in https://github.com/python-caldav/caldav/pull/433 * Work on integrating typing information. Details in https://github.com/python-caldav/caldav/pull/358 * Remove dependency on pytz. Details in https://github.com/python-caldav/caldav/issues/231 and https://github.com/python-caldav/caldav/pull/363 * Use setuptools-scm / pyproject.toml (modern packaging). Details in https://github.com/python-caldav/caldav/pull/364 and https://github.com/python-caldav/caldav/pull/367 * Debugging tool - an environment variable can be set, causing the library to spew out server communications into files under /tmp. Details in https://github.com/python-caldav/caldav/pull/249 and https://github.com/python-caldav/caldav/issues/248 * Comaptibility matrix for posteo.de servers in `tests/compatibility_issues.py` * Added sort_reverse option to the search function to reverse the sorting order of the found objects. * It's now possible to specify if `expand` should be done on the server side or client side. Default is as before, expanding on server side, then on the client side if unexpanded data is returned. It was found that some servers does expanding, but does not add `RECURRENCE-ID`. https://github.com/python-caldav/caldav/pull/447 * The debug information gathering hook has been in the limbo for a long time, due to security concerns: - An attacker that has access to alter the environment the application is running under may cause a DoS-attack, filling up available disk space with debug logging. - An attacker that has access to alter the environment the application is running under, and access to read files under /tmp (files being 0600 and owned by the uid the application is running under), will be able to read the communication between the server and the client, communication that may be private and confidential. * Thinking it through three times, I'm not too concerned - if someone has access to alter the environment the process is running under and access to read files run by the uid of the application, then this someone should already be trusted and will probably have the possibility to DoS the system or gather this communication through other means. - Switch build system from setuptools to pyproject.toml * Add python-pip and python-wheel to BuildRequires * Replace %python_build with %pyproject_wheel * Replace %python_install with %pyproject_install * Update name for dist directory in %files section ++++ python-exiv2: - Fix building - Enable tests - Add skip_network_tests.patch to mark network-requiring tests and skip them ++++ python-hypothesis: - Skip tests matching `test_adds_note_showing_which_strategy` (gh#HypothesisWorks/hypothesis#4185). - Add missing BR: rich. ++++ python-legacycrypt: - Initial release of 0.3 ++++ python-numpy1: - Drop meson-python upper bound * https://github.com/numpy/numpy/pull/26301 - Skip some tests failing on Python 3.13 ++++ python-pytest-benchmark: - update to 5.1.0: * Fixed broken hooks handling on pytest 8.1 or later (the TypeError: import_path() missing 1 required keyword-only argument: 'consider_namespace_packages' issue). Unfortunately this sets the minimum supported pytest version to 8.1. * Fixed bad fixture check that broke down then nbmake was enabled. * Dropped support for now EOL Python 3.8. Also moved tests suite to only test the latest pytest versions (8.3.x). * Fix generate parametrize tests benchmark csv report errors (issue #268). Contributed by Johnny Huang in #269. * Added the --benchmark-time-unit cli option for overriding the measurement unit used for display. Contributed by Tony Kuo in [#257]. * Fixes spelling in some help texts. Contributed by Eugeniy in [#267]. * Added new cprofile options: --benchmark-cprofile-loops=LOOPS - previously profiling only ran the function once, this allow customization. --benchmark-cprofile-top=COUNT - allows showing more rows. --benchmark-cprofile-dump=[FILENAME- PREFIX] - allows saving to a file (that you can load in snakeviz, RunSnakeRun or other tools). * --benchmark-cprofile-loops=LOOPS - previously profiling only ran the function once, this allow customization. * --benchmark-cprofile-top=COUNT - allows showing more rows. * --benchmark-cprofile-dump=[FILENAME-PREFIX] - allows saving to a file (that you can load in snakeviz, RunSnakeRun or other tools). * Removed hidden dependency on py.path (replaced with pathlib). - drop fix-test-fast.patch, py311.patch, fix-test-fast.patch: upstream ++++ python-pytest-httpx: - update to 0.34.0: * `is_optional` parameter is now available on responses and callbacks registration. Allowing to add optional responses while keeping other responses as mandatory. Refer to documentation for more details. * `is_reusable` parameter is now available on responses and callbacks registration. Allowing to add multi-match responses while keeping other responses as single-match. Refer to documentation for more details. * `httpx_mock.get_request` will now also propose to refine filters if more than one request is found instead of only proposing to switch to `httpx_mock.get_requests`. * Explicit support for python `3.13`. * `should_mock` option (callable returning a boolean) is now available, defaulting to always returning `True`. Refer to documentation for more details. * Matching on the full multipart body can now be performed using `match_files` and `match_data` parameters. Refer to documentation for more details. * Matching on extensions (including timeout) can now be performed using `match_extensions` parameter. Refer to documentation for more details. * The following option is now available: * `can_send_already_matched_responses` (boolean), defaulting to `False`. * Assertion failure message in case of unmatched responses is now linking documentation on how to deactivate the check. * Assertion failure message in case of unmatched requests is now linking documentation on how to deactivate the check. * `httpx.TimeoutException` message issued in case of unmatched request is now linking documentation on how to reuse responses (in case some responses are already matched). * Documentation now clearly state the risks associated with changing the default options. * Assertion failure message in case of unmatched requests at teardown is now describing requests in a more user-friendly way. * Assertion failure message in case of unmatched requests at teardown is now prefixing requests with `- ` to highlight the fact that this is a list, preventing misapprehension in case only one element exists. * Assertion failure message in case of unmatched responses at teardown is now prefixing responses with `- ` to highlight the fact that this is a list, preventing misapprehension in case only one element exists. * `httpx.TimeoutException` message issued in case of unmatched request is now prefixing available responses with `- ` to highlight the fact that this is a list, preventing misapprehension in case only one element exists. * `httpx.TimeoutException` message issued in case of unmatched request is now listing unmatched responses (in registration order) before already matched one (still in registration order). * The incentive behind this change is to help identify a potential mismatch faster as the first unmatched response is the most likely to be the one expected to match. * Response description in failure messages (`httpx.TimeoutException` message issued in case of unmatched request or assertion failure message in case of unmatched responses at teardown) is now displaying if the response was already matched or not and less misleading in it's phrasing about what it can match (a single request by default). * ### Changed * Last registered matching response will not be reused by default anymore in case all matching responses have already been sent. * This behavior can be changed thanks to the new `pytest.mark.h ttpx_mock(can_send_already_matched_responses=True)` option. * The incentive behind this change is to spot regression if a request was issued more than the expected number of times. * `HTTPXMock` class was only exposed for type hinting purpose. This is now explained in the class docstring. * As a result this is the last time a change to `__init__` signature will be documented and considered a breaking change. * Future changes will not be documented and will be considered as internal refactoring not worth a version bump. * `__init__` now expects one parameter, the newly introduced (since [0.31.0]) options. * `HTTPXMockOptions` class was never intended to be exposed and is now marked as private. * `httpx_mock` marker can now be defined at different levels for a single test. * It is now possible to match on content provided as async iterable by the client. * Tests will now fail at teardown by default if some requests were issued but were not matched. * This behavior can be changed thanks to the new `pytest.mark.h ttpx_mock(assert_all_requests_were_expected=False)` option. * The incentive behind this change is to spot unexpected requests in case code is swallowing `httpx.TimeoutException`. * The `httpx_mock` fixture is now configured using a marker (many thanks to `Frazer McLean`). * ```python * # Apply marker to whole module * pytestmark = pytest.mark.httpx_mock(assert_all_responses_were _requested=False) * # Or to specific tests * @pytest.mark.httpx_mock(non_mocked_hosts=[...]) * def test_foo(httpx_mock): * ... * ``` * The following options are available: * `assert_all_responses_were_requested` (boolean), defaulting to `True`. * `assert_all_requests_were_expected` (boolean), defaulting to `True`. * `non_mocked_hosts` (iterable), defaulting to an empty list, meaning all hosts are mocked. * `httpx_mock.reset` do not expect any parameter anymore and will only reset the mock state (no assertions will be performed). * `pytest` `7` is not supported anymore (`pytest` `8` has been out for 9 months already). * `assert_all_responses_were_requested` fixture is not available anymore, use `pytest.mark.httpx_mock(assert_all_res ponses_were_requested=False)` instead. * `non_mocked_hosts` fixture is not available anymore, use `pytest.mark.httpx_mock(non_mocked_hosts=[])` instead. ++++ python-pytest-rerunfailures: - update to 15.0: * Drop support for Python 3.8. * Drop support for pytest < 7.4. * Fix compatibility with pytest 8.2. * Add support for pytest 8.2, 8.3. * Add --fail-on-flaky option to fail the test run with custom exit code when test passed on rerun. ++++ python-pytest-spec: - update to 4.0.0: * v.4.0.0 * Drop support for Python 2.7, 3.5, 3.6, 3.7 * Added support for Python 3.11, 3.12 * Migrate project back to pip from poetry * Replace mock by version from stdlib - drop python-pytest-spec-nopython2.patch: upstream ++++ python-python-gvm: - Add opensuse-fix-tests-1-core.patch custom patch to fix tests running in OBS with limited resources, running on 1-core-VM. bsc#1233398 ++++ python-tornado6: - Update to 6.4.2: + Security Improvements: * Parsing of the cookie header is now much more efficient. The older algorithm sometimes had quadratic performance which allowed for a denial-of-service attack in which the server would spend excessive CPU time parsing cookies and block the event loop. (CVE-2024-52804, bsc#1233668) ++++ qjackctl: - Update to 1.0.3 - Long missing D-Bus method slot added: "reset" (dbus-send --system / org.rncbc.qjackctl.reset). - Graph: Node reference positioning changed to the top-left corner, improving the base snapping-to-grid perception. - Prepping up next development cycle (Qt >= 6.8) - Changes from 1.0.2 - Graph: when visible the thumb-view may now be drag-moved over to a different corner position anytime. - Session: introducing new Save session name/directory dialog. - Connections: connector line colors are now uniquely mapped on a (readable/output) client name basis. ++++ qubesome: - Update to version 0.0.7: * host-run: Convert output to string * start: Refactor Config loading Config loading needs to behave in different ways than other commands like xdg-open and run. Move it inside the start package instead. * run: Simplify GITDIR sourcing * inception: Ignore config and profile selection * build(deps): bump github.com/urfave/cli/v3 * build(deps): bump anchore/sbom-action from 0.17.7 to 0.17.8 * build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0 * build(deps): bump google.golang.org/protobuf from 1.34.2 to 1.35.2 * Add examples for cli commands * Make profile setting optional Some commands in specific scenarios can infer the profile, decreasing the amount of parameters or flags to be used. Examples: * wayland: Show experimental warning for all subcommands * Add host-run subcommand * Refactor inception to use gRPC * build: Fix gofmt violations * build: Enable dependabot * build: Lock goreleaser to v2 * Add autocomplete subcommand * Add flag -runner to enable runner override Runners can be defined at the workload level. Now those runners can be overriden by the -runner flag. * deps: Print output in tabular format * build: Add GH attestation for release artefacts * build: Add version field to goreleaser config * build: Bump goreleaser-action to v6 * clipboard: Add subcommand to-host * build: Use urfave/cli for CLI wiring * profile: Fix issue finding workloads dir For profiles started from a Git repository, the Config.RootDir was being initiated with a full path. Later in the workload run process, that full path was being joined to another full path, leading to an invalid workload dir. * build: Update main.go reference on goreleaser. * profiles: Preemptive pull workload images * profiles: Clean up CLI messages * wayland: Set additional params for xwayland-run Disable testing extensions and ensure the auth file is set. * Add QS_DEBUG=true to run on debug mode * wayland: Pass XDG_RUNTIME_DIR to profile container * wayland: Initial support for profiles * build: Fix golangci-lint warnings * profiles: Remove dbus code This feature was work in progress and can be removed until it is fully implemented. * build: Bump golangci-lint to v1.62.0 * build: Run make test and make verify on push * build: Bump Go to v1.23 * build: Bump dependencies * build: Move main.go for easier installation * Add initial support for podman * mime: Rename default mime handler to qubesome * Add version subcommand * Increase workload args max length to 250 * Update install steps ++++ re-flex: - Update to version 5.0.1: * faster SIMD regex search methods * improved anchor and word boundary matching speed and support * new std::string_view strview() matcher method ++++ rss-glx: - Moved binaries to libexecdir to avoid conflicts with other packages ++++ scsh: - Update scsh to git commit 6770db2 - Delete scsh-install-lib-1.3.0.tar.gz as not used anymore - Make it build even with scheme48 >= 1.9.2 ++++ scsh-base: - Update scsh to git commit 6770db2 - Delete scsh-install-lib-1.3.0.tar.gz as not used anymore - Make it build even with scheme48 >= 1.9.2 ++++ seamonkey: - disable --with-system-icu on Tumbleweed due to https://bugzilla.mozilla.org/show_bug.cgi?id=1933117 - remove obsolete patch mozilla-bmo1862601.patch ++++ shared-mime-info: - Uninstall silently if update-mime-database is not present (bsc#1231463). ++++ systemd-presets-branding-openSUSE: - enable the supergfxd service for hybrid graphic systems ++++ urlscan: - Update to urlscan 1.0.6 * Bugfix in GitHub Action * Github action update to release to pypi and github on tag push and release to testpypi on commit. * Keybindings for page up/down ++++ yast2-trans: - Update to version 84.87.20241123.891024d88b: * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Swedish) ------------------------------------------------------------------ ------------------ 2024-11-24 - Nov 24 2024 ------------------- ------------------------------------------------------------------ ++++ alsa: - Fix header inclusions for implicit dependnecies (bsc#1233682) 0002-configure-Make-sequencer-dependent-on-rawmidi.patch 0003-seq-include-UMP-headers.patch ++++ aqbanking: - Update to 6.5.9 (beta) - Changelog for 6.5.6 (beta) + fixed bugs with "Decoupled TAN" + first server tests successful (thanks to Anselm!) - Changelog for 6.5.6 (beta) + first version with support for HKTAN#7 and first implementation of "Decoupled TAN" for app-based TAN entry ++++ extension-manager: - update to 0.5.1+244: * general: Handle not found errors with empty page * local: Regenerate shell-dbus-interface * cleanup: Add and update license headers * installed-page: Add local search * manager: Unify user and system extensions list property * resource: Make path dependent on app_id * comment-dialog: Add license header * comment-dialog: Improve network error handling * upgrade-assistant: Improve network error handling * detail-view: Improve network error handling * browse-page: Improve network error handling * workflows: Add missing libxml2 dependency * drop text-engine * request-handler: Handle http status code * readme: Update dependencies * comment: Use the new HTML viewer * utils: Introduce a simple HTML viewer * comment-tile: Use GtkLabel as a comment text viewer * browse-page: Port load more results button to AdwButtonRow * rating: Fix warnings when finalizing with remaining child widgets * comment-tile: Fix warnings when finalizing with remaining child widgets * upgrade-assistant: g_print -> g_info * window: Stop manually setting a shortcut controller * detail-view: Remove unused variables * window: Stop explicitly setting toast timeout * window: Drop unused version check code * accessibility improvements * browse-page: Focus first new row after loading more results * window: Add mnemonic to toast button * info-bar: Rework items into AdwActionRow * rating: Add tooltip * extension-row: Hide version label if unavailable * extension-row: Improve accessibility * upgrade-assistant: Improve accessibility * detail-view: Improve accessibility * screenshot: Set accessible role * installed-page: Port updates info bar to AdwBanner * browse-page: Remove unused header * browse-page: Use search entry setter * browse-page: Enable type-ahead search * search-row: Remove unused import * local: Add support for version-name * window: Show badge number when updates are available * browse-page: Increase search-delay value * app: Add back help overlay * icons: Remove zoom symbolics * app: Fix criticals in master runtime * backtrace: Fix incompatible pointer types * comment-tile: Adapt to text-engine changes * Update com.mattjakeman.ExtensionManager.desktop.in.in * comment-tile: Add date label * comment: Add date property * Display info icon for Initialized/Inactive extension state * Set the extension state as a tooltip for extension toggle button * detail-view: Add donation row * search-result: Add donation urls property * Fix some warnings ++++ file-roller: - Update to version 44.4: + Features: - Added bzip3 support. - File selector: show volumes and allow to mount unmounted volumes. - New archive dialog: allow to use all the possible extensions a mime type supports, and allow to specify a name without extension, which will be concatenated to the selected extension to get the full name. - File selector: save and restore the sort order. - Properties dialog: show an icon, make the headerbar flat. + Bugfixes: - Error opening rar archive in RAR4 format and password protected. - Rar: fixed file list parsing for some encrypted archives. - Fixed error when renaming a file inside an encrypted archive. - Disabled the native appchooser by default. - 'Show destination' sometimes opens the wrong folder. - 'Show destination' sometimes doesn't show anything. - Use the native appchooser only for a single file. - Show flat headerbar in empty state. - Fixed error messages impossible to close. - Fixed segfaults when opening an empty .deb file. - --extract-to keeps asking to create a directory. - Fixed wrong context menu item activation. - Avoid the exit timeout unless file-roller was launched with `--service`. - Error when opening the created archive after saving as 7zip multi-volume. + Updated translations. ++++ gtk4: - Update to version 4.16.7: + Text: Reduce the size of error underlines. + Accessibility: - Fix a wrong return value type. - Fix an invalid free call. ++++ gnome-remote-desktop: - Update to version 47.2: + Updated translations. ++++ gnome-terminal: - Update to version 3.54.2: + Updated translations. ++++ gnucash: - Add gnucash-icu.patch: Fix build with recent ICU libraries - Add gnucash-swig43.patch: Fix build with SWIG 4.3 ++++ gpxsee: - Update to version 13.32 * Improved Mapsforge maps rendering performance. * Improved Mapsforge map render theme. ++++ gwenhywfar: - Update to 5.11.2 (beta) - Changelog for 5.11.0 (beta) + first version with support for HKTAN#7 and first implementation of "Decoupled TAN" for app-based TAN input ++++ spooles: - Fix build failure due to stricter GCC checks, add 0001-Fix-compile-error-due-to-apparent-invalid-cast.patch ++++ spooles-openmpi: - Fix build failure due to stricter GCC checks, add 0001-Fix-compile-error-due-to-apparent-invalid-cast.patch ++++ vte: - Update to version 0.78.2: + build: Fix typo in pread check + emulation: Use U+2426 for SUB + lib: Remove an unnecessary move + widget: - Use correct type for out param - Use correct termprop name ++++ nasc: - fix build by using CFLAGS="-Wno-implicit-function-declaration" - update spec file for Leap 16.0: * remove %suse_update_desktop_file * use autosetup * remove packaging for Leap < 1500 * update to newer upstream url ++++ ofono: - Update to version 2.13 * Add support for handling QMI PIN and Lock methods. * Add support for handling QMI WWAN interfaces. * Add support for handling RMNet interfaces. ++++ python-exiv2: - Update to 0.17.1: * Update README and INSTALL docs * Allow linux libdir name to be 'lib64' or 'lib' * Test localised exception with non-ASCII characters - Updates from 0.17.0: * API change: derived classes of BasicIo are omitted from Python. * enableBMFF() function is deprecated. * Documentation is available on https://python-exiv2.readthedocs.io/ - Updates from 0.16.2: * Removed AnyError alias of Exiv2Error exception. * Metadatum.print() method is no longer renamed to _print. * Improved handling of enums: * Enum results are returned as Python enum instead of int. * Passing ints as enum parameters is deprecated. * Added dict-like behaviour to "data" structs. * Log handlers can be set/cleared from Python. * SWIG v4.1.0 or later required to run SWIG. - Updates from 0.16.0: * Include native language support in Windows binary wheel builds. * API change: DateValue.getDate() returns Python dict. * API change: TimeValue.getTime() returns Python dict. * Deprecated: exiv2.Date and exiv2.Time objects. * Added buffer interface to PreviewImage * Set datum value from Python object directly instead of via string. * Moved Position enum to BasicIo class. * Moved CharsetId enum to CommentValue class. * Moved XmpArrayType and XmpStruct enums to XmpValue class. * Added enums for LogMsg.Level * More exiv2 structs are iterable for easy conversion to Python dict. - Updates from 0.15.0: * Added __version_tuple__ for easy runtime version testing. * exiv2.testVersion() can be called from Python. * exiv2.DataBuf can be created from Python data. * Most data() methods return a Python memoryview. * exiv2.DataBuf and exiv2.BasicIo have writeable Python buffer interface. ++++ python-statsd: - update to 4.0.1: * Updated trove classifiers, see #174 - update to 4.0.0: * Updates support to Python 3.7 through 3.11. * Added `close()` method to UDP-based `StatsClient`. * Drops support for Python 2. * Using a timing decorator on an async function should now properly measure the execution time, instead of counting immediately. See #119. ++++ python-xarray: - skip test test_asi8 on 32bit, results in "OverflowError: Python int too large to convert to C long" - delete obsolete patches xarray-pr9356-dasktests.patch, xarray-pr9321-dasktests.patch and xarray-pr9403-np2.1-scalar.patch - update to version .2024.11.0: - This release brings better support for wrapping JAX arrays and Astropy Quantity objects, :py:meth:`DataTree.persist`, algorithmic improvements: - to many methods with dask (:py:meth:`Dataset.polyfit`, :py:meth:`Dataset.ffill`, :py:meth:`Dataset.bfill`, rolling reductions), and bug fixes.: - Thanks to the 22 contributors to this release: - Benoit Bovy, Deepak Cherian, Dimitri Papadopoulos Orfanos, Holly Mandel, James Bourbeau, Joe Hamman, Justus Magin, Kai Mühlbauer, Lukas Trippe, Mathias Hauser, Maximilian Roos, Michael Niklas, Pascal Bourgault, Patrick Hoefler, Sam Levang, Sarah Charlotte Johnson, Scott Huberty, Stephan Hoyer, Tom Nicholas, Virgile Andreani, joseph nowak and tvo: - New Features: - Added :py:meth:`DataTree.persist` method (:issue:`9675`, :pull:`9682`). By `Sam Levang `_. - Added ``write_inherited_coords`` option to :py:meth:`DataTree.to_netcdf` and :py:meth:`DataTree.to_zarr` (:pull:`9677`). By `Stephan Hoyer `_. - Support lazy grouping by dask arrays, and allow specifying ordered groups with ``UniqueGrouper(labels=["a", "b", "c"])`` (:issue:`2852`, :issue:`757`). By `Deepak Cherian `_. - Add new ``automatic_rechunk`` kwarg to :py:meth:`DataArrayRolling.construct` and :py:meth:`DatasetRolling.construct`. This is only useful on ``dask>=2024.11.0`` (:issue:`9550`). By `Deepak Cherian `_. - Optimize ffill, bfill with dask when limit is specified (:pull:`9771`). By `Joseph Nowak `_, and `Patrick Hoefler `_. - Allow wrapping ``np.ndarray`` subclasses, e.g. ``astropy.units.Quantity`` (:issue:`9704`, :pull:`9760`). By `Sam Levang `_ and `Tien Vo `_. - Optimize :py:meth:`DataArray.polyfit` and :py:meth:`Dataset.polyfit` with dask, when used with arrays with more than two dimensions. (:issue:`5629`). By `Deepak Cherian `_. - Support for directly opening remote files as string paths (for example, ``s3://bucket/data.nc``) with ``fsspec`` when using the ``h5netcdf`` engine (:issue:`9723`, :pull:`9797`). By `James Bourbeau `_. - Re-implement the :py:mod:`ufuncs` module, which now dynamically dispatches to the underlying array's backend. Provides better support for certain wrapped array types like ``jax.numpy.ndarray``. (:issue:`7848`, :pull:`9776`). By `Sam Levang `_. - Speed up loading of large zarr stores using dask arrays. (:issue:`8902`) By `Deepak Cherian `_. - Breaking Changes: - The minimum versions of some dependencies were changed ===================== ========= ======= Package Old New ===================== ========= ======= boto3 1.28 1.29 dask-core 2023.9 2023.11 distributed 2023.9 2023.11 h5netcdf 1.2 1.3 numbagg 0.2.1 0.6 typing_extensions 4.7 4.8 ===================== ========= ======= - Deprecations: - Grouping by a chunked array (e.g. dask or cubed) currently eagerly loads that variable in to memory. This behaviour is deprecated. If eager loading was intended, please load such arrays manually using ``.load()`` or ``.compute()``. Else pass ``eagerly_compute_group=False``, and provide expected group labels using the ``labels`` kwarg to a grouper object such as :py:class:`grouper.UniqueGrouper` or :py:class:`grouper.BinGrouper`. - Bug fixes: - Fix inadvertent deep-copying of child data in DataTree (:issue:`9683`, :pull:`9684`). By `Stephan Hoyer `_. - Avoid including parent groups when writing DataTree subgroups to Zarr or netCDF (:pull:`9682`). By `Stephan Hoyer `_. - Fix regression in the interoperability of :py:meth:`DataArray.polyfit` and :py:meth:`xr.polyval` for date-time coordinates. (:pull:`9691`). By `Pascal Bourgault `_. - Fix CF decoding of ``grid_mapping`` to allow all possible formats, add tests (:issue:`9761`, :pull:`9765`). By `Kai Mühlbauer `_. - Add ``User-Agent`` to request-headers when retrieving tutorial data (:issue:`9774`, :pull:`9782`) By `Kai Mühlbauer `_. - Documentation: - Mention attribute peculiarities in docs/docstrings (:issue:`4798`, :pull:`9700`). By `Kai Mühlbauer `_. - Internal Changes: - ``persist`` methods now route through the :py:class:`xr.core.parallelcompat.ChunkManagerEntrypoint` (:pull:`9682`). By `Sam Levang `_. - update to version 2024.10.0: - This release brings official support for ``xarray.DataTree``, and compatibility with zarr-python v3!: - Aside from these two huge features, it also improves support for vectorised interpolation and fixes various bugs.: - Thanks to the 31 contributors to this release: - Alfonso Ladino, DWesl, Deepak Cherian, Eni, Etienne Schalk, Holly Mandel, Ilan Gold, Illviljan, Joe Hamman, Justus Magin, Kai Mühlbauer, Karl Krauth, Mark Harfouche, Martey Dodoo, Matt Savoie, Maximilian Roos, Patrick Hoefler, Peter Hill, Renat Sibgatulin, Ryan Abernathey, Spencer Clark, Stephan Hoyer, Tom Augspurger, Tom Nicholas, Vecko, Virgile Andreani, Yvonne Fröhlich, carschandler, joseph nowak, mgunyho and owenlittlejohns: - New Features: - ``DataTree`` related functionality is now exposed in the main ``xarray`` public API. This includes: ``xarray.DataTree``, ``xarray.open_datatree``, ``xarray.open_groups``, ``xarray.map_over_datasets``, ``xarray.group_subtrees``, ``xarray.register_datatree_accessor`` and ``xarray.testing.assert_isomorphic``. By `Owen Littlejohns `_, `Eni Awowale `_, `Matt Savoie `_, `Stephan Hoyer `_, `Tom Nicholas `_, `Justus Magin `_, and `Alfonso Ladino `_. - A migration guide for users of the prototype `xarray-contrib/datatree repository `_ has been added, and can be found in the ``DATATREE_MIGRATION_GUIDE.md`` file in the repository root. By `Tom Nicholas `_. - Support for Zarr-Python 3 (:issue:`95515`, :pull:`9552`). By `Tom Augspurger `_, `Ryan Abernathey `_ and `Joe Hamman `_. - Added zarr backends for :py:func:`open_groups` (:issue:`9430`, :pull:`9469`). By `Eni Awowale `_. - Added support for vectorized interpolation using additional interpolators from the ``scipy.interpolate`` module (:issue:`9049`, :pull:`9526`). By `Holly Mandel `_. - Implement handling of complex numbers (netcdf4/h5netcdf) and enums (h5netcdf) (:issue:`9246`, :issue:`3297`, :pull:`9509`). By `Kai Mühlbauer `_. - Fix passing missing arguments to when opening hdf5 and netCDF4 datatrees (:issue:`9427`, :pull:`9428`). By `Alfonso Ladino `_. - Bug fixes: - Make illegal path-like variable names when constructing a DataTree from a Dataset (:issue:`9339`, :pull:`9378`) By `Etienne Schalk `_. - Work around `upstream pandas issue `_ to ensure that we can decode times encoded with small integer dtype values (e.g. ``np.int32``) in environments with NumPy 2.0 or greater without needing to fall back to cftime (:pull:`9518`). By `Spencer Clark `_. - Fix bug when encoding times with missing values as floats in the case when the non-missing times could in theory be encoded with integers (:issue:`9488`, :pull:`9497`). By `Spencer Clark `_. - Fix a few bugs affecting groupby reductions with ``flox``. (:issue:`8090`, :issue:`9398`, :issue:`9648`). - Fix a few bugs affecting groupby reductions with ``flox``. (:issue:`8090`, :issue:`9398`). By `Deepak Cherian `_. - Fix the safe_chunks validation option on the to_zarr method (:issue:`5511`, :pull:`9559`). By `Joseph Nowak `_. - Fix binning by multiple variables where some bins have no observations. (:issue:`9630`). By `Deepak Cherian `_. - Fix issue where polyfit wouldn't handle non-dimension coordinates. (:issue:`4375`, :pull:`9369`) By `Karl Krauth `_. - Documentation: - Migrate documentation for ``datatree`` into main ``xarray`` documentation (:pull:`9033`). For information on previous ``datatree`` releases, please see: `datatree's historical release notes `_. By `Owen Littlejohns `_, `Matt Savoie `_, and `Tom Nicholas `_. - Internal Changes: - update to version 2024.09.0: - This release drops support for Python 3.9, and adds support for grouping by :ref:`multiple arrays `, while providing numerous performance improvements and bug fixes.: - Thanks to the 33 contributors to this release: - Alfonso Ladino, Andrew Scherer, Anurag Nayak, David Hoese, Deepak Cherian, Diogo Teles Sant'Anna, Dom, Elliott Sales de Andrade, Eni, Holly Mandel, Illviljan, Jack Kelly, Julius Busecke, Justus Magin, Kai Mühlbauer, Manish Kumar Gupta, Matt Savoie, Maximilian Roos, Michele Claus, Miguel Jimenez, Niclas Rieger, Pascal Bourgault, Philip Chmielowiec, Spencer Clark, Stephan Hoyer, Tao Xin, Tiago Sanona, TimothyCera-NOAA, Tom Nicholas, Tom White, Virgile Andreani, oliverhiggs and tiago: - New Features: - Add :py:attr:`~core.accessor_dt.DatetimeAccessor.days_in_year` and :py:attr:`~core.accessor_dt.DatetimeAccessor.decimal_year` to the ``DatetimeAccessor`` on ``xr.DataArray``. (:pull:`9105`). By `Pascal Bourgault `_. - Performance: - Make chunk manager an option in ``set_options`` (:pull:`9362`). By `Tom White `_. - Support for :ref:`grouping by multiple variables `. This is quite new, so please check your results and report bugs. Binary operations after grouping by multiple arrays are not supported yet. (:issue:`1056`, :issue:`9332`, :issue:`324`, :pull:`9372`). By `Deepak Cherian `_. - Allow data variable specific ``constant_values`` in the dataset ``pad`` function (:pull:`9353`). By `Tiago Sanona `_. - Speed up grouping by avoiding deep-copy of non-dimension coordinates (:issue:`9426`, :pull:`9393`) By `Deepak Cherian `_. - Breaking changes: - Support for ``python 3.9`` has been dropped (:pull:`8937`) - The minimum versions of some dependencies were changed ===================== ========= ======= Package Old New ===================== ========= ======= boto3 1.26 1.28 cartopy 0.21 0.22 dask-core 2023.4 2023.9 distributed 2023.4 2023.9 h5netcdf 1.1 1.2 iris 3.4 3.7 numba 0.56 0.57 numpy 1.23 1.24 pandas 2.0 2.1 scipy 1.10 1.11 typing_extensions 4.5 4.7 zarr 2.14 2.16 ===================== ========= ======= - Bug fixes: - Fix bug with rechunking to a frequency when some periods contain no data (:issue:`9360`). By `Deepak Cherian `_. - Fix bug causing ``DataTree.from_dict`` to be sensitive to insertion order (:issue:`9276`, :pull:`9292`). By `Tom Nicholas `_. - Fix resampling error with monthly, quarterly, or yearly frequencies with cftime when the time bins straddle the date "0001-01-01". For example, this can happen in certain circumstances when the time coordinate contains the date "0001-01-01". (:issue:`9108`, :pull:`9116`) By `Spencer Clark `_ and `Deepak Cherian `_. - Fix issue with passing parameters to ZarrStore.open_store when opening datatree in zarr format (:issue:`9376`, :pull:`9377`). By `Alfonso Ladino `_ - Fix deprecation warning that was raised when calling ``np.array`` on an ``xr.DataArray`` in NumPy 2.0 (:issue:`9312`, :pull:`9393`) By `Andrew Scherer `_. - Fix passing missing arguments to when opening hdf5 and netCDF4 datatrees (:issue:`9427`, :pull:`9428`). By `Alfonso Ladino `_. - Fix support for using ``pandas.DateOffset``, ``pandas.Timedelta``, and ``datetime.timedelta`` objects as ``resample`` frequencies (:issue:`9408`, :pull:`9413`). By `Oliver Higgs `_. - Internal Changes: - Re-enable testing ``pydap`` backend with ``numpy>=2`` (:pull:`9391`). By `Miguel Jimenez `_ . - disable the 'parallel' subpackage because dask is unavailable 3.12, which is because numba is unavailable on 3.13 https://build.opensuse.org/request/show/1225144 https://github.com/numba/numba/issues/9760 - disabled tests requiring dask ++++ quilter: - fix build by passing -Wno-int-conversion -Wno-incompatible-pointer-types as CFLAGS - update spec file for Leap 16.0: * remove %suse_update_desktop_file * remove recommending lang package * remove mentions of elementary ++++ screencast: - fix build by using CFLAGS="-Wno-implicit-function-declaration" - update spec file for Leap 16.0: * remove %suse_update_desktop_file * remove recommending lang package * use autosetup * remove HiDPI workaround ++++ typescript: - Update to version 5.7.2 * New features: + Checks for Never-Initialized Variables + Path Rewriting for Relative Paths + Support for --target es2024 and --lib es2024 + Searching Ancestor Configuration Files for Project Ownership + Faster Project Ownership Checks in Editors for Composite Projects + Validated JSON Imports in --module nodenext + Support for V8 Compile Caching in Node.js * Notable Behavioral Changes: + lib.d.ts Types generated for the DOM may have an impact on type-checking your codebase. + TypedArrays Are Now Generic Over ArrayBufferLike + Creating Index Signatures from Non-Literal Method Names in Classes + More Implicit any Errors on Functions Returning null and undefined For the full changelog see https://devblogs.microsoft.com/typescript/announcing-typescript-5-7/ ++++ zk: - added fix_test.patch to fix build fail due to test TestFormatDateHelperElapsedYear ------------------------------------------------------------------ ------------------ 2024-11-23 - Nov 23 2024 ------------------- ------------------------------------------------------------------ ++++ AdwSteamGtk: - update to 0.7.2: * Improved error handling when retrieving window control settings through portal - switch to _datadir/icons, so Leap16 builds ++++ LiE: - Add reproducible-noaslr.patch (boo#1231626) ++++ MozillaFirefox: - add mozilla-python313.patch to fix build with python 3.13+ ++++ crmsh: - Update to version 5.0.0+20241123.9b1d80fb: * Fix: behave: systemd bpf-restrict-fs fails in opensuse tumbleweed ++++ dxvk: - Update to 2.5.1: * Fixed a major regression where anisotropic filtering would not work correctly in D3D9 games * Fixed some build issues with dxvk-native * Fixed some build issues with recent versions of clang * GTA Trilogy Definitive Edition: Work around a crash when HDR is enabled * Note: Since these games use Unreal Engine 4, HDR is unsupported in D3D11 mode ++++ gnome-doc-utils: - add python3-setuptools to fix build with python 3.13+ ++++ gnome-maps: - Update to version 47.2: + Fix a bug where the zoom level was reset to 0 when opening a geo: URI not specifying an explicit zoom level. + Updated translatations. ++++ gnome-online-accounts: - Update to version 3.52.2: + Bugs fixed: - goadavclient.c: add WebDAV default candidate to test - goafedoraprovider: fix use-after-free + Updated translations. ++++ gnome-user-share: - Update to version 47.2: + Fix a compiling issue for non-gnu C toolchain. ++++ jack: - add python313-waflib.patch to fix build with python 3.13 ++++ luajit2: - Updated to 2.1.20241113 (2.1.1731486438). * Upstream doesn't provide a ChangeLog. ++++ opencv: - fix build with python 3.13 (needs python-setuptools) ++++ vkd3d: - Update to version 1.14: - libvkd3d Depth bounds can be changed dynamically using the OMSetDepthBounds() method of the ID3D12GraphicsCommandList1 interface. The new VKD3D_CAPS_OVERRIDE environment variable can be used to override the value of capabilities like the maximum feature level and resource binding tier reported to applications. - libvkd3d-shader Too long for changelog, for full changes, visit: https://gitlab.winehq.org/wine/vkd3d/-/blob/master/ChangeLog.md - libvkd3d-utils The GetDesc() method of the ID3D12ShaderReflection interface returned by D3DReflect() returns shader version information. New interfaces: D3DCompile2VKD3D() is a variant of D3DCompile2() that allows targeting the behaviour of a specific d3dcompiler version. - vkd3d-compiler The ‘--alias-double-as-float’ option specifies that the ‘double’ type behaves as an alias for the ‘float’ type in HLSL sources with shader model 1-3 target profiles. The ‘fx’ source type specifies binary Direct3D effects. The ‘msl’ target type specifies Metal Shading Language shaders. ++++ loupe: - Update to version 47.2: + Don't call style manager in application constructor since this is too early. Do it in startup instead. Without this fix, GTK 4.17.0 will terminate the app on startup. ++++ minetest: - Update to version 5.10.0: * Note: The engine has renamed to Luanti and this is the first release with the new name! For more information read: https://blog.minetest.net/2024/10/13/Introducing-Our-New-Name/ * Full changes: https://dev.minetest.net/Changelog#5.9.1_.E2.86.92_5.10.0 ++++ python-Pallets-Sphinx-Themes: - update to 2.3.0: * When getting the canonical URL on Read the Docs, replace the path with /en/stable/ instead of /page/. This can be configured with rtd_canonical_path. :pr:`122` * The version banner can be disabled by setting version_banner = False. On Read the Docs, it is disabled when building the stable version or PRs. :pr:`123` ++++ python-beniget: - update to 0.4.2.post1: * remove setuptools from runtime dependencies ++++ python-cmd2: - Update to version 2.5.7 * Fixed issue where argument parsers for overridden commands were not being created.. * Fixed issue where Cmd.ppaged() was not writing to the passed in destination. ++++ python-cmyt: - skip failing test on 32bit platforms ++++ python-django-environ: - update to 0.11.2: * Revert "Add variable expansion." feature * Revert "Add interpolate argument to avoid resolving proxied values." feature * Added support for Django 4.2 * Added support for secure Elasticsearch connections * Added variable expansion * Added capability to handle comments after #, after quoted values, * Added support for ``interpolate`` parameter * Use the core redis library by default if running Django >= 4.0 * Value of dict can now contain an equal sign * Added support for Python 3.11. * Added ``CONN_HEALTH_CHECKS`` to database base options * Added ``encoding`` parameter to ``read_env`` with default value 'utf8' * Added support for Django 4.1 ++++ python-dulwich: - update to 0.22.6: * ``ObjectStore.iter_prefix``: fix handling of missing loose object directories. (Jelmer Vernooij) * Reject invalid refcontainer values (not 40 characters or symref). * Add type hints to various functions. (Castedo Ellerman) * Drop support for Python 3.8. (Jelmer Vernooij) * Fix refspec handling in porcelain.pull. (Jelmer Vernooij) * Drop broken refspec support in porcelain.clone. * Provide ``ref_prefix`` functionality client-side if the server does not support it. * Consistently honor ``ref_prefix`` and ``protocol_version`` arguments in client. (Jelmer Vernooij) * Strip pkt-line when negotiating protocol v2. Fixes compatibility with gerrit. (Rémy Pecqueur, #1423) * Don't pull in ``setuptools_rust`` when building pure package. (Eli Schwartz) * Return peeled refs from ``GitClient.get_refs`` if protocol-v2 is used. (Stefan Sperling, #1410) * Drop outdated performance file. (Jelmer Vernooij, #1411) * Fix handling of symrefs with protocol v2. * Add ``ObjectStore.iter_prefix``. (Jelmer Vernooij) * Revert back to version 3 of ``Cargo.lock``, to allow building with older Cargo versions. * Use a default ref-prefix when fetching with git protocol v2 * Add `ObjectStore.iter_prefix`. (Jelmer Vernooij) * Improve wheel building in CI, so we can upload wheels for the next release. * Ship ``Cargo.lock``. (Jelmer Vernooij, #1287) * Ship ``tests/`` and ``testdata/`` in sdist. (Jelmer Vernooij, * Add initial integration with OSS-Fuzz for continuous fuzz testing and first fuzzing test (David Lakin, #1302) * Drop Python 3.7 support. (Jelmer Vernooij) * Improve fuzzing coverage (David Lakin) * Support Python 3.13. (Edgar Ramírez-Mondragón, #1352) * Initial support for smart protocol v2. (Stefan Sperling) - drop geventhttpclient-compat.patch (upstream) ++++ python-et_xmlfile: - update to 2.0.0: * Add new writer method and namespace Element / parsing * Readd the Element with namespaces * Add el_has_namespaces to ElementTree classes * Deprecate python 3.6 and 3.7 as nsetree requires a more recent XMLParser * Fix docstrings of _IncrementalFileWriter ++++ python-fastparquet: - update to 2024.11.0: * feat: support for writing to buffers * fix(_dtypes): np.float_ was deprecated * update for py3.13 ++++ python-mutmut: - Remove unneeded {Build,}Requires on hammett. - We only need rich for the testsuite. - We need toml for Python 3.10 only. ++++ python-pulsectl: - update to 24.11.0: * pulsectl: check return from pa_context_new to be not NULL ++++ python-pymssql: - Update to version 2.3.2 * Update FreeTDS to 1.4.23. * Workaround setuptools-74.0 changes. ++++ python-pyproj: - Update to 3.7.0 [#]# Dependencies: * DEP: Minimum PROJ version 9.2 by @snowman2 in #1394 [#]# Enhancements: * PERF: drop GIL during long-running proj database calls by @tpwrules in #1354 * PERF: thread local context by @snowman2 in #1419 * ENH: Add is_deprecated and get_non_deprecated() to CRS by @jjimenezshaw in #1383 * ENH: Add runtime & compiled PROJ versions by @snowman2 in #1427 [#]# Bug fixes: * BUG: Handle changes to HotineObliqueMercatorBConversion by @snowman2 in #1430 * BUG: Support azimuthal_equidistant coordinate operation to CF by @snowman2 in #1380 - Drop v3.6.1-BUG-Support-azimuthal_equidistant-coordinate-operati.patch - Drop v3.6.1-test-datum-ensemble-allowing-new-members.patch ++++ python-sentry-sdk: - update to 2.19.0: * New: introduce `rust_tracing` integration. See https://docs.s entry.io/platforms/python/integrations/rust_tracing/ (#3717) * Auto enable Litestar integration * Deprecate `sentry_sdk.init` context manager * feat(spotlight): Send PII to Spotlight when no DSN is set * feat(spotlight): Add info logs when Sentry is enabled * feat(spotlight): Inject Spotlight button on Django * feat(spotlight): Auto enable cache_spans for Spotlight on DEBUG * fix(logging): Handle parameter `stack_info` for the `LoggingIntegration` * fix(pure-eval): Make sentry-sdk[pure-eval] installable with pip==24.0 * fix(rust_tracing): include_tracing_fields arg to control unvetted data in rust_tracing integration * fix(aws) Fix aws lambda tests (by reducing event size) * fix(arq): fix integration with Worker settings as a dict * fix(httpx): Prevent Sentry baggage duplication * fix(falcon): Don't exhaust request body stream * fix(integrations): Check `retries_left` before capturing exception * fix(openai): Use name instead of description * test(gcp): Only run GCP tests when they should ++++ python-types-humanfriendly: - update to 10.0.1.20241105: * remove unused io-related allowlist entries * fallout from https://github.com/python/typeshed/pull/12947 * fixes https://github.com/python/typeshed/issues/12954 ++++ python-ufoLib2: - update to 0.17.0: * Added `outputImpliedClosingLine` parameter to Glyph.draw() method ++++ python-webauthn: - update to 2.3.0: * The minimum supported version of Python has been bumped up to Python 3.9, with ongoing testing from Python 3.9 through Python 3.13. Dependencies have been updated as well, including upgrading to `cryptography==43.0.3` ++++ python-wheel: - update to 0.45.1: * Fixed pure Python wheels converted from eggs and wininst files having the ABI tag in the file name ++++ python-xdg-base-dirs: - update to 6.0.2: * Use GitHub's alert syntax for rename warning * Test with Python 3.12 in CI * Check `# type: ignore` directives include error code * Add Python 3.13 to CI * Bump version to 6.0.2 ++++ strawberry: - Update to version 1.2.2 + Bugfixes: + Fixed crash when creating a new smart playlist (#1609). + Fixed last playlist column being added when dragging a song and switching playlists. ++++ tomcat10: - Update to Tomcat 10.1.33 * Fixed CVEs: + CVE-2024-52316: If the Jakarta Authentication fails with an exception, set a 500 status (bsc#1233434) * Catalina + Add: Add support for the new Servlet API method HttpServletResponse.sendEarlyHints(). (markt) + Add: 55470: Add debug logging that reports the class path when a ClassNotFoundException occurs in the digester or the web application class loader. Based on a patch by Ralf Hauser. (markt) + Update: 69374: Properly separate between table header and body in DefaultServlet's listing. (michaelo) + Update: 69373: Make DefaultServlet's HTML listing file last modified rendering better (flexible). (michaelo) + Update: Improve HTML output of DefaultServlet. (michaelo) + Code: Refactor RateLimitFilter to use FilterBase as the base class. The primary advantage is less code to process init-param values. (markt) + Update: 69370: DefaultServlet's HTML listing uses incorrect labels. (michaelo) + Fix: Avoid NPE in CrawlerSessionManagerValve for partially mapped requests. (remm) + Fix: Add missing WebDAV Lock-Token header in the response when locking a folder. (remm) + Fix: Invalid WebDAV lock requests should be rejected with 400. (remm) + Fix: Fix regression in WebDAV when attempting to unlock a collection. (remm) + Fix: Verify that destination is not locked for a WebDAV copy operation. (remm) + Fix: Send 415 response to WebDAV MKCOL operations that include a request body since this is optional and unsupported. (remm) + Fix: Enforce DAV: namespace on WebDAV XML elements. (remm) + Fix: Do not allow a new WebDAV lock on a child resource if a parent collection is locked (RFC 4918 section 6.1). (remm) + Fix: WebDAV DELETE should remove any existing lock on successfully deleted resources. (remm) + Update: Remove WebDAV lock null support in accordance with RFC 4918 section 7.3 and annex D. Instead, a lock on a non-existing resource will create an empty file locked with a regular lock. (remm) + Update: Rewrite implementation of WebDAV shared locks to comply with RFC 4918. (remm) + Update: Implement WebDAV If header using code from the Apache Jackrabbit project. (remm) + Add: Add PropertyStore interface in the WebDAV Servlet, to allow implementation of dead properties storage. The store used can be configured using the propertyStore init parameter of the WebDAV servlet by specifying the class name of the store. A simple non-persistent implementation is used if no custom store is configured. (remm) + Update: Implement WebDAV PROPPATCH method using the newly added PropertyStore, and update PROPFIND to support it. (remm) + Fix: Cache not found results when searching for web application class loader resources. This addresses performance problems caused by components such as java.sql.DriverManager, which in some circumstances will search for the same class repeatedly. The size of the cache can be controlled via the new notFoundClassResourceCacheSize on the StandardContext. (markt) + Fix: Stop after INITIALIZED state should be a noop since it is possible for subcomponents to be in FAILED after init. (remm) + Fix: Fix incorrect web resource cache size calculations when there are concurrent PUT and DELETE requests for the same resource. (markt) + Add: Add debug logging for the web resource cache so the current size can be tracked as resources are added and removed. (markt) + Update: Replace legacy WebDAV opaquelocktoken: scheme for lock tokens with urn:uuid: as recommended by RFC 4918, and remove secret init parameter. (remm) + Fix: Concurrent reads and writes (e.g. GET and PUT / DELETE) for the same path caused corruption of the FileResource where some of the fields were set as if the file exists and some as set as if it does not. This resulted in inconsistent metadata. (markt) + Fix: 69415: Ensure that the ExpiresFilter only sets cache headers on GET and HEAD requests. Also, skip requests where the application has set Cache-Control: no-store. (markt) + Fix: 69419: Improve the performance of ServletRequest.getAttribute() when there are multiple levels of nested includes. Based on a patch provided by John Engebretson. (markt) + Add: All applications to send an early hints informational response by calling HttpServletResponse.sendError() with a status code of 103. (schultz) + Fix: Ensure that ServerAuthModule.initialize() is called when a Jakarta Authentication module is configured via registerServerAuthModule(). (markt) + Fix: Ensure that the Jakarta Authentication CallbackHandler only creates one GenericPrincipal in the Subject. (markt) + Fix: If the Jakarta Authentication process fails with an Exception, explicitly set the HTTP response status to 500 as the ServerAuthContext may not have set it. (markt) + Fix: When persisting the Jakarta Authentication provider configuration, create any necessary parent directories that don't already exist. (markt) + Fix: Correct the logic used to detect errors when deleting temporary files associated with persisting the Jakarta Authentication provider configuration. (markt) + Fix: When processing Jakarta Authentication callbacks, don't overwrite a Principal obtained from the PasswordValidationCallback with null if the CallerPrincipalCallback does not provide a Principal. (markt) + Fix: Avoid store config backup loss when storing one configuration more than once per second. (remm) + Fix: 69359: WebdavServlet duplicates getRelativePath() method from super class with incorrect Javadoc. (michaelo) + Fix: 69360: Inconsistent DELETE behavior between WebdavServlet and DefaultServlet. (michaelo) + Fix: Make WebdavServlet properly return the Allow header when deletion of a resource is not allowed. (michaelo) + Fix: Add log warning if non-wildcard mappings are used with the WebdavServlet. (remm) + Fix: 69361: Ensure that the order of entries in a multi-status response to a WebDAV is consistent with the order in which resources were processed. (markt) + Fix: 69362: Provide a better multi-status response when deleting a collection via WebDAV fails. Empty directories that cannot be deleted will now be included in the response. (markt) + Fix: 69363: Use getPathPrefix() consistently in the WebDAV servlet to ensure that the correct path is used when the WebDAV servlet is mounted at a sub-path within the web application. (markt) + Fix 69320, a regression in the fix for 69302 that meant the HTTP/2 processing was likely to be broken for all clients once any client sent an HTTP/2 reset frame. (markt) + Fix: Improve performance of ApplicationHttpRequest.parseParameters(). Based on sample code and test cases provided by John Engebretson. (markt) + Fix: Correct regressions in the refactoring that added recycling of the coyote request and response to the HTTP/2 processing. (markt) + Add: Add support for RFC 8297 (Early Hints). Applications can use this feature by casting the HttpServletResponse to org.apache.catalina.connector. Response and then calling the method void sendEarlyHints(). This method will be added to the Servlet API (removing the need for the cast) in Servlet 6.2 onwards. (markt) + Fix: 69214: Do not reject a CORS request that uses POST but does not include a content-type header. Tomcat now correctly processes this as a simple CORS request. Based on a patch suggested by thebluemountain. (markt) + Fix: Refactor SpnegoAuthenticator so it uses Subject.callAs() rather than Subject.doAs() when available. (markt) + Fix: Allow JAASRealm to use the configuration source to load a configured configFile, for easier use with testing. (remm) + Fix: Add missing algorithm callback to the JAASCallbackHandler. (remm) + Fix: Add the OpenSSL version number on the APR and OpenSSL status classes. (remm) + Fix: 69131: Expand the implementation of the filter value of the Authenticator attribute allowCorsPreflight, so that it applies to all requests that match the configured URL patterns for the CORS filter, rather than only applying if the CORS filter is mapped to /*. (markt) + Fix: Using the OpenSSLListener will now cause the connector to use OpenSSL if available. (remm) * Coyote + Fix: Return null SSL session id on zero-length byte array returned from the SSL implementation. (remm) + Fix: Skip OpenSSLConf with BoringSSL since it is unsupported. (remm) + Fix: Create the HttpParser in Http11Processor if it is not present on the AbstractHttp11Protocol to provide better lifecycle robustness for regular HTTP/1.1. The new behavior was introduced in a previous refactoring to improve HTTP/2 performance. (remm) + Fix: OpenSSLContext will now throw a KeyManagementException if something is known to have gone wrong in the init method, which is the behavior documented by javax.net.ssl.SSLContext.init. This makes error handling more consistent. (remm) + Fix: 69379: The default HEAD response no longer includes the payload HTTP header fields as per section 9.3.2 of RFC 9110. (markt) + Fix: 69316: Ensure that FastHttpDateFormat#getCurrentDate() (used to generate Date headers for HTTP responses) generates the correct string for the given input. Prior to this change, the output may have been wrong by one second in some cases. Pull request #751 provided by Chenjp. (markt) + Fix: Request start time may not have been accurately recorded for HTTP/1.1 requests preceded by a large number of blank lines. (markt) + Add: Add server and serverRemoveAppProvidedValues to the list of attributes the HTTP/2 protocol will inherit from the HTTP/1.1 connector it is nested within. (markt) + Fix: Avoid possible crashes when using Apache Tomcat Native, caused by destroying SSLContext objects through GC after APR has been terminated. (remm) + Fix: Improve HTTP/2 handling of trailer fields for requests. Trailer fields no longer need to be received before the headers of the subsequent stream, nor are trailer fields for an in-progress stream swallowed if the Connector is paused before the trailer fields are received. (markt) + Fix: Ensure the request and response are not recycled too soon for an HTTP/2 stream when a stream-level error is detected during the processing of incoming HTTP/2 frames. This could lead to incorrect processing times appearing in the access log. (markt) + Fix: Correct a regression in the fix for non-blocking reads of chunked request bodies that caused InputStream.available() to return a non-zero value when there was no data to read. In some circumstances this could cause a blocking read to block waiting for more data rather than return the data it had already received. (markt) + Add: Add a new attribute cookiesWithoutEquals to the Rfc6265CookieProcessor. The default behaviour is unchanged. (markt) + Fix: Ensure that Tomcat sends a TLS close_notify message after receiving one from the client when using the OpenSSLImplementation. (markt) + Fix: 69301: Fix trailer headers replacing non-trailer headers when writing response headers to the access log. Based on a patch and test case provided by hypnoce. (markt) + Fix: 69302: If an HTTP/2 client resets a stream before the request body is fully written, ensure that any ReadListener is notified via a call to ReadListener.onError(). (markt) + Fix: Ensure that HTTP/2 stream input buffers are only created when there is a request body to be read. (markt) + Code: Refactor creation of HttpParser instances from the Processor level to the Protocol level since the parser configuration depends on the protocol and the parser is, otherwise, stateless. (markt) + Add: Align HTTP/2 with HTTP/1.1 and recycle the container internal request and response processing objects by default. This behaviour can be controlled via the new discardRequestsAndResponses attribute on the HTTP/2 upgrade protocol. (markt) + Fix: Clean and log OpenSSL errors before processing of OpenSSL conf commands in the FFM code. (remm) + Fix: 69121: Ensure that the onComplete() event is triggered if AsyncListener. onError() dispatches to a target that throws an exception. (markt) + Fix: Following the trailer header field refactoring, -1 is no longer an allowed value for maxTrailerSize. Adjust documentation accordingly. (remm) + Update: Move OpenSSL support using FFM to a separate JAR named tomcat-coyote-ffm. jar that advertises Java 22 in its manifest. (remm) + Fix: Fix search for OpenSSL library for FFM on Mac OS so that java.library.path is searched. (markt) + Update: Add FFM compatibility methods for LibreSSL support. Renegotiation is not supported at the moment. (remm) + Update: Add org.apache.tomcat.util.openssl.LIBRARY_NAME (specifies the name of the library to load) and org.apache.tomcat.util.openssl.USE_SYSTEM_LOAD_LIBRARY (set to true to use System.loadLibrary rather than the FFM library loading code) to configure the OpenSSL library loading using FFM. (remm) + Update: Add FFM compatibility methods for BoringSSL support. Renegotiation is not supported in many cases. (remm) * Jasper + Fix: Add back tag release method as deprecated in the runtime for compatibility with old generated code. (remm) + Fix: 69399: Fix regression caused by improvement 69333, which caused the tag release to be called when using tag pooling, and to be skipped when not using it. Patch submitted by Michal Sobkiewicz. (remm) + Fix: 69381: Improve method lookup performance in expression language. When the required method has no arguments, there is no need to consider casting or coercion, and the method lookup process can be simplified. Based on a pull request by John Engebretson. (markt) + Fix: 69382: Improve the performance of the JSP include action by re-using results of relatively expensive method calls in the generated code rather than repeating them. Patch provided by John Engebretson. (markt) + Fix: 69398: Avoid unnecessary object allocation in PageContextImpl. Based on a suggestion by John Engebretson. (markt) + Fix: 69406: When using StringInterpreterEnum, do not throw an IllegalArgumentException when an invalid Enum is encountered. Instead, resolve the value at runtime. Patch provided by John Engebretson. (markt) + Fix: 69429: Optimize EL evaluation of method parameters for methods that do not accept any parameters. Patch provided by John Engebretson. (markt) + Fix: Further optimize EL evaluation of method parameters. Patch provided by Paolo B. (markt) + Fix: 69333: Remove unnecessary code from generated JSPs. (markt) + Fix: 69338: Improve the performance of processing expressions that include AND or OR operations with more than two operands and expressions that use not empty. (markt) + Fix: 69348: Reduce memory consumption in ELContext by using lazy initialization for the data structure used to track lambda arguments. (markt) + Fix: Switch the TldScanner back to logging detailed scan results at debug level rather than trace level. (markt) + Fix: Update the optimisation in jakarta.el.ImportHandler so it is aware of new classes added to the java.lang package in Java 23. (markt) + Fix: Ensure that an exception in toString() still results in an ELException when an object is coerced to a String using ExpressionFactory.coerceToType(). (markt) + Add: Add support for specifying Java 24 (with the value 24) as the compiler source and/or compiler target for JSP compilation. If used with an Eclipse JDT compiler version that does not support these values, a warning will be logged and the default will be used. (markt) + Fix: 69135: When using include directives in a tag file packaged in a JAR file, ensure that context relative includes are processed correctly. (markt) + Fix: 69135: When using include directives in a tag file packaged in a JAR file, ensure that file relative includes are processed correctly. (markt) + Fix: 69135: When using include directives in a tag file packaged in a JAR file, ensure that file relative includes are not permitted to access files outside of the /META_INF/tags/ directory nor outside of the JAR file. (markt) * WebSocket + Fix: If a blocking message write exceeds the timeout, don't attempt the write again before throwing the exception. (markt) + Fix: An EncodeException being thrown during a message write should not automatically cause the connection to close. The application should handle the exception and make the decision whether or not to close the connection. (markt) * Web applications + Fix: The manager webapp will now be able to access certificates again when OpenSSL is used. (remm) + Fix: Documentation. Align the logging configuration documentation with the current defaults. (markt) + Fix: Fix status servlet detailed view of the connectors when using automatic port. (remm) * jdbc-pool + Fix: 69255: Correct a regression in the fix for 69206 that meant exceptions executing statements were wrapped in a java.lang.reflect.UndeclaredThrowableException rather than the application seeing the original SQLException. Fixed by pull request #744 provided by Michael Clarke. (markt) + Fix: 69279: Correct a regression in the fix for 69206 that meant that methods that previously returned a null ResultSet were returning a proxy with a null delegate. Fixed by pull request #745 provided by Huub de Beer. (markt) + Fix: 69206: Ensure statements returned from Statement methods executeQuery(), getResultSet() and getGeneratedKeys() are correctly wrapped before being returned to the caller. Based on pull request #742 provided by Michael Clarke. (markt) * Other + Update: Switch from DigiCert ONE to ssl.com eSigner for code signing. (markt) + Update: Update Byte Buddy to 1.15.10. (markt) + Update: Update CheckStyle to 10.20.0. (markt) + Add: Improvements to German translations. (remm) + Update: Update Byte Buddy to 1.15.3. (markt) + Update: Update CheckStyle to 10.18.2. (markt) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations by tak7iji. (markt) + Add: Improvements to Chinese translations by Ch_jp. (markt) + Add: Exclude the tomcat-coyote-ffm.jar from JAR scanning by default. (markt) + Fix: Change the default log handler level to ALL so log messages are not dropped by default if a logger is configured to use trace (FINEST) level logging. (markt) + Update: Update Hamcrest to 3.0. (markt) + Update: Update EasyMock to 5.4.0. (markt) + Update: Update Byte Buddy to 1.15.0. (markt) + Update: Update CheckStyle to 10.18.0. (markt) + Update: Update the internal fork of Apache Commons BCEL to 6.10.0. (markt) + Add: Improvements to Spanish translations by Fernando. (markt) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations by tak7iji. (markt) + Fix: Fix packaging regression with missing osgi information following addition of the test-only build target. (remm) + Update: Update Tomcat Native to 2.0.8. (markt) + Update: Update Byte Buddy to 1.14.18. (markt) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations by tak7iji. (markt) + Update: Add test-only build target to allow running only the testsuite, supporting Java versions down to the minimum supported to run Tomcat. (rjung) + Update: Update UnboundID to 7.0.1. (markt) + Update: Update to SpotBugs 4.8.6. (markt) + Update: Remove cglib dependency as it is not required by the version of EasyMock used by the unit tests. (markt) + Update: Update EasyMock to 5.3.0. This adds a test dependency on Byte-Buddy 1.14.17. (markt) + Add: Improvements to Czech translations by Vladimír Chlup. (markt) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations by tak7iji. (markt) + Add: Improvements to Chinese translations by fangzheng. (markt) ++++ ugrep: - Update to version 7.1.0: * add TUI glob editor syntax highlighting * bin/ug(|rep)+: Let the helper script work if no helper is available ------------------------------------------------------------------ ------------------ 2024-11-22 - Nov 22 2024 ------------------- ------------------------------------------------------------------ ++++ 0ad: - Add 0ad-link-icu-76.patch: Fix build against ICU 76.x. ++++ Mesa: - Update to release 24.3.0 - -> https://docs.mesa3d.org/relnotes/24.3.0 ++++ Mesa-drivers: - Update to release 24.3.0 - -> https://docs.mesa3d.org/relnotes/24.3.0 ++++ tre: - update to 0.9.0: * Modify the bound parser to allow the minimum and maximum count to be omitted, defaulting to zero and infinity, respectively. * Add API variants for operating on raw byte vectors: tre_regnexecb, tre_regexecb, tre_regncompb, tre_regaexecb, tre_regcompb * Bug fixes - drop unneeded patches or patches included upstream: * 0001-Remove-broken-agrep-test-entry.patch * CVE-2016-8859.patch * tre-chicken.patch * tre.diff - drop legacy obsoletes/provides ++++ ansible-core-2.16: - Backport patch to relax resolvelib dependency: 771f7ad29ca4d259761eaa88673c2e32f6412bbe.patch - Added necessary test dependencies: pytest-xdist, pytest-mock, pytz, passlib, git-core, and openssh to ensure proper test execution. - Introduced the `ansible_python_version` variable and updated the test command. ++++ ansible-core: - Backport patch to relax resolvelib dependency: 771f7ad29ca4d259761eaa88673c2e32f6412bbe.patch ++++ codespell: - update to 2.3.0: * Add schematrion->schematron * Add explicit Python 3.12 support * Add miscellaneous typos * Add more labour* variants * Return exit status in __main__.py * Fix ruff alerts (currently) not caught by pre-commit * Added new word * Add Gelma's typos that start with "a" * Add Gelma's typos from "b" to "cl" * Add Gelma's typos from "co" to "cy" * Add Gelma's typos that start with "d" * Add Gelma's typos that start with "e" * Add Gelma's typos from "f" to "h" * Add entries to rare dictionary * Add Gelma's typos that start with "i" * diagional -> diagonal * Add Gelma's typos from "j" to "m" * Add Gelma's typos from "n" to "o" * Add corrections for vulnerbailit(y|ies)->vulnerabilit(y|ies). * Add Gelma's typos that start with "p" * Add Gelma's typos from "q" to "r" * openign->opening * Add Gelma's typos that start with "s" * Add Gelma's typos from "t" to "z" * Improve existing suggestions * Add a timeout to jobs that may benefit from it * don't show stacktrace from KeyboardInterrupt #3217 * Adding 'hareware' to spelling corrections. * Add typos for knownledge->knowledge, analyzis->analysis and compialtion->compilation * Add --stdin-single-line option * Add spelling corrections for parameters * Ignore line endings in exclude-file * Add typo offsers * add velcoity -> velocity * ot is a typo also for it, which i is close to o * test: remove warning when aspell is not installed * Add carrets->carets * Add support for ANSI colors on Windows * Add prettier to pre-commit * Apply Repo-Review suggestions * dictionary: pathes can be patches * fix: typos in comments * doc: Specify .codespellrc is INI formatted * Add sanetize->sanitize * sampe->sample * Assorted mispellings * Add corrections for all *in->*ing words starting with "A" * Add corrections for all *in->*ing words starting with "B" * Add corrections for all *in->*ing words starting with "C" * Add corrections for all *in->*ing words starting with "D" * Add corrections for all *in->*ing words starting with "E" * Add corrections for all *in->*ing words starting with "F" * Add correction for spoofing and spoofed. * Add reliabe->reliable * Add corrections for all *in->*ing words starting with "G" * Add corrections for all *in->*ing words starting with "H" * Add corrections for all *in->*ing words starting with "I" * Add corrections for all *in->*ing words starting with "J" * Add corrections for all *in->*ing words starting with "K" * Add corrections for all *in->*ing words starting with "L" * Add corrections for all *in->*ing words starting with "M" * Add corrections for all *in->*ing words starting with "N" * Add corrections for all *in->*ing words starting with "O" * Add corrections for all *in->*ing words starting with "R" * Add corrections for all *in->*ing words starting with "S" * Add corrections for all *in->*ing words starting with "P" * Add corrections for all *in->*ing words starting with "Q" * Add corrections for all *in->*ing words starting with "T" * Add corrections for all *in->*ing words starting with "U" * Add corrections for all *in->*ing words starting with "V" * Add corrections for all *in->*ing words starting with "W" * Add corrections for all *in->*ing words starting with "Y" * Add corrections for all *in->*ing words starting with "Z" * Add 'quotted->quoted' - drop patch_version.patch: obsolete, use pypi tarball instead ++++ coredns: - Update to version 1.12.0: * New multisocket plugin - allows CoreDNS to listen on multiple sockets * bump deps ++++ crmsh: - Update to version 5.0.0+20241122.37cd25b6: * Dev: behave: add CAP_SYS_ADMIN to container for systemd hardening ++++ dracut: - Update to version 059+suse.665.gd2af7028: * feat(systemd-coredump): save coredumps to journal * fix(suse-initrd): shellcheck SC1007 * fix(pcsc): add libpcsclite_real.so.* * fix(dracut-systemd): use expected PS1 in the emergency shell * fix(dracut-systemd): unquote systemd conf strings * feat: add header comment to generators * refactor: change TimeoutSec=0 to TimeoutSec=infinity * fix(dracut.sh): do not add cmdline for force_drivers if --kernel-only * fix(btrfs): write cmdline in install() * fix(dracut.sh): omit compressed kernel modules from find searching exec files * fix(dracut): don't apply aggressive strip to kernel modules * fix(dracut-install): copy xattr when use clone ioctl ++++ evolution: - Update to version 3.54.2: + Bug Fixes: - Composer: Possible crash on paste - Correct certificate key usage constants - ToDo bar sometimes does not display due tasks + Miscellaneous: Default inbox email: Update URIs, remove link to defunct mailing list. + Updated translations. ++++ evolution-data-server: - Update to version 3.54.2: + Bug Fixed: - libedataserverui: Avoid initializing the icon_theme when building introspection data - Fails to build/link against icu 76.1 - Correct certificate key usage constants + Updated translations. ++++ evolution-ews: - Update to version 3.54.2: + Bug Fixes: m365: Calendar color reset on calendar list refresh. + Miscellaneous: m365: Fix cancel of an instance of a recurring meeting. + Updated translations. ++++ extension-manager: - fix CFLAGS, as with the earlier try, there was a typo with optflags ++++ gnome-settings-daemon: - Only recommend xf86-input-libinput if xorg-x11-server is present: wayland does not rely on the xf86 drivers. ++++ gnome-text-editor: - Update to version 47.2: + Unescaping URIs for tooltips to improve legibility + Fix initial-trailing-newline when settings auto-discovery is disabled + Fix save-as when using admin:// URIs + Pin document encoding when loading a file + Override extend_selection for multi-mouse-press to avoid some slow corner cases in minified JSON files + Markup fixes in properties dialog + Updated translations. ++++ gnome-user-docs: - Update to version 47.2: + Updated translations. ++++ v2ray-core: - Update version to 5.22.0 * Add packetEncoding for Hysteria * Add ECH Client Support * Add support for parsing some shadowsocks links * Add Mekya Transport * Fix bugs ++++ gpxsee: - Update to version 13.31 * Improved Mapsforge maps rendering performance. * Improved Mapsforge map render theme. ++++ grype: - Update to version 0.85.0: * dependencies: latest syft and stereoscope (#2275) * chore(deps): bump github/codeql-action from 3.27.4 to 3.27.5 (#2272) * chore(deps): bump github.com/charmbracelet/bubbletea from 1.2.2 to 1.2.3 (#2273) * chore(deps): bump github.com/gabriel-vasile/mimetype from 1.4.6 to 1.4.7 (#2274) * chore(deps): update tools to latest versions (#2269) * fix: bump clio to fix logging when no tty present (#2268) * chore(deps): bump github/codeql-action from 3.27.3 to 3.27.4 (#2260) * fix failing tests (#2261) * Add v6 DB curator (#2151) * Add affected CPE store (#2258) * chore(deps): bump github.com/charmbracelet/bubbletea from 1.1.2 to 1.2.2 (#2256) * Add AffectedPackage store (#2245) * Add v6 vulnerability & blob stores (#2243) * chore(deps): bump anchore/sbom-action from 0.17.6 to 0.17.7 (#2238) * chore(deps): bump github.com/anchore/stereoscope (#2246) * chore(deps): bump github/codeql-action from 3.27.0 to 3.27.3 (#2257) * Add v6 distribution client (#2150) * restore log on ui teardown (#2248) * Merge indirect matches with direct matches (#2241) * doc: Add official Grype logo license information (#2244) * add v6 provider store (#2232) ++++ grype-db: - Update to version 0.27.1: * Update Grype to v0.85.0 (#435) * remove push event for code gen * Remove support for v1 & v2 schemas (#434) * add os codename fetcher/helper method (#433) * Migrate common processor code to internal (#432) * chore(deps): Bump golang.org/x/text from 0.19.0 to 0.20.0 (#426) * chore(deps-dev): Bump werkzeug from 3.0.3 to 3.0.6 (#427) * Update grype-db bootstrap tools to latest versions. (#428) * chore(deps): Bump github.com/anchore/grype from 0.83.0 to 0.84.0 (#424) ++++ hubble: - Update to version 1.16.4: * Prepare for v1.16.4 release * chore(deps): update docker.io/library/alpine:3.20.3 docker digest to 1e42bbe * chore(deps): update golang * chore(deps): update dependency helm/helm to v3.16.3 * chore(deps): update dependency kubernetes-sigs/kind to v0.25.0 * chore(deps): update golang to v1.23.3 * Update stable release to 1.16.3 ++++ hugin: - Update to version 2024.0.1: * Removed more event tables and replaced with Bind calls * Fixes missing include for older wxWidgets version (3.1 series) ++++ icingaweb2-module-director: - Update to 1.11.2 * UI - FIX: No more errors when changing import source modifier priorities (#2270) - FIX: Choosing HTTP proxy in import source type REST API no longer causes deprecation notice (#2889) - FIX: Deleting data lists when using PostgreSQL as backend no longer yields errors (#2913) - FIX: Previewing sync rules with boolean properties now functions without errors (#2905) - FIX: Basket snapshots correctly display content if present (#2901) - FIX: Time periods now include Add to basket functionality (#2542) * API - FIX: API updates for notifications return 304 instead of 200 when unchanged (#2882) * Internals - FIX: The apply_changes setting from sync jobs restored from a basket is applied properly (#2904) - FIX: The Get host by name (DNS lookup) modifier handles failed lookups without errors (#2877) * Director Branches - FIX: Cloning a host retains its services and service sets (#2897) - FIX: Service sets are now clonable (#2890) * Integrations - Show Director labels in monitoring module and Icinga DB custom vars section (#2239) * Fixed issues - You can find issues and feature requests related to this release on our roadmap ++++ libimobiledevice: - add python3-setuptools for python 3.13 support ++++ imv: - imv-link-icu-uc.patch: specify icu-uc as dependency instead of icu-io: IMV does not use the Stream & I/O parts of ICU, the common library is sufficient (and required). ++++ kdump: - upgrade to version 2.0.12 * fadump: pass additional parameters for capture kernel (jsc#PED-9889) ++++ kernel-source-longterm: - Linux 6.6.63 (bsc#1218260). - mm/damon/core: copy nr_accesses when splitting region (bsc#1218260). - mm/damon/core: handle zero schemes apply interval (bsc#1218260). - mm/damon/core: check apply interval in damon_do_apply_schemes() (bsc#1218260). - mm: resolve faulty mmap_region() error path behaviour (bsc#1218260). - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling (bsc#1218260). - mm: refactor map_deny_write_exec() (bsc#1218260). - mm: unconditionally close VMAs on error (bsc#1218260). - mm: avoid unsafe VMA hook invocation when error arises on mmap hook (bsc#1218260). - leds: mlxreg: Use devm_mutex_init() for mutex initialization (bsc#1218260). - fs/9p: fix uninitialized values during inode evict (bsc#1218260). - drm/amd/pm: Vangogh: Fix kernel memory out of bounds write (bsc#1218260). - mptcp: pm: use _rcu variant under rcu_read_lock (bsc#1218260). - mptcp: drop lookup_by_id in lookup_addr (bsc#1218260). - mptcp: hold pm lock when deleting entry (bsc#1218260). - mptcp: update local address flags when setting it (bsc#1218260). - mptcp: add userspace_pm_lookup_addr_by_id helper (bsc#1218260). - mptcp: define more local variables sk (bsc#1218260). - NFSD: Never decrement pending_async_copies on error (bsc#1218260). - NFSD: Initialize struct nfsd4_copy earlier (bsc#1218260). - NFSD: Limit the number of concurrent async COPY operations (bsc#1218260). - NFSD: Async COPY result needs to return a write verifier (bsc#1218260). - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point (bsc#1218260). - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set (bsc#1218260). - lib/buildid: Fix build ID parsing logic (bsc#1218260). - staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation (bsc#1218260). - staging: vchiq_arm: Get the rid off struct vchiq_2835_state (bsc#1218260). - mm/damon/core: handle zero {aggregation,ops_update} intervals (bsc#1218260). - mm/damon/core: implement scheme-specific apply interval (bsc#1218260). - drm/amd/display: Adjust VSDB parser for replay feature (bsc#1218260). - drm/amd: Fix initialization mistake for NBIO 7.7.0 (bsc#1218260). - nouveau: fw: sync dma after setup is called (bsc#1218260). - pmdomain: imx93-blk-ctrl: correct remove path (bsc#1218260). - drm/bridge: tc358768: Fix DSI command tx (bsc#1218260). - mmc: sunxi-mmc: Fix A100 compatible description (bsc#1218260). - Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K" (bsc#1218260). - LoongArch: Make KASAN work with 5-level page-tables (bsc#1218260). - LoongArch: Disable KASAN if PGDIR_SIZE is too large for cpu_vabits (bsc#1218260). - LoongArch: Fix early_numa_add_cpu() usage for FDT systems (bsc#1218260). - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint (bsc#1218260). - ocfs2: fix UBSAN warning in ocfs2_verify_volume() (bsc#1218260). - ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10 (bsc#1218260). - ALSA: hda/realtek - Fixed Clevo platform headset Mic issue (bsc#1218260). - nommu: pass NULL argument to vma_iter_prealloc() (bsc#1218260). - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint (bsc#1218260). - KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN (bsc#1218260). - KVM: x86: Unconditionally set irr_pending when updating APICv state (bsc#1218260). - KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID disabled (bsc#1218260). - ima: fix buffer overrun in ima_eventdigest_init_common (bsc#1218260). - vp_vdpa: fix id_table array not null terminated error (bsc#1218260). - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map (bsc#1218260). - vdpa: solidrun: Fix UB bug with devres (bsc#1218260). - mm: revert "mm: shmem: fix data-race in shmem_getattr()" (bsc#1218260). - ocfs2: uncache inode which has failed entering the group (bsc#1218260). - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof (bsc#1218260). - x86/mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y (bsc#1218260). - tools/mm: fix compile error (bsc#1218260). - ARM: 9419/1: mm: Fix kernel memory mapping for xip kernels (bsc#1218260). - bonding: add ns target multicast address to slave device (bsc#1218260). - net: ti: icssg-prueth: Fix 1 PPS sync (bsc#1218260). - stmmac: dwmac-intel-plat: fix call balance of tx_clk handling routines (bsc#1218260). - net: stmmac: rename stmmac_pltfr_remove_no_dt to stmmac_pltfr_remove (bsc#1218260). - net: stmmac: dwmac-visconti: use devm_stmmac_probe_config_dt() (bsc#1218260). - net: stmmac: dwmac-intel-plat: use devm_stmmac_probe_config_dt() (bsc#1218260). - net: Make copy_safe_from_sockptr() match documentation (bsc#1218260). - net: stmmac: dwmac-mediatek: Fix inverted handling of mediatek,mac-wol (bsc#1218260). - samples: pktgen: correct dev to DEV (bsc#1218260). - net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for hnodes (bsc#1218260). - net/sched: cls_u32: replace int refcounts with proper refcounts (bsc#1218260). - Bluetooth: btintel: Direct exception event to bluetooth stack (bsc#1218260). - Bluetooth: hci_core: Fix calling mgmt_device_connected (bsc#1218260). - Revert "RDMA/core: Fix ENODEV error for iWARP test over vlan" (bsc#1218260). - virtio/vsock: Fix accept_queue memory leak (bsc#1218260). - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow (bsc#1218260). - net/mlx5e: clear xdp features on non-uplink representors (bsc#1218260). - net/mlx5e: kTLS, Fix incorrect page refcounting (bsc#1218260). - net/mlx5: fs, lock FTE when checking if active (bsc#1218260). - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust (bsc#1218260). - mptcp: error out earlier on disconnect (bsc#1218260). - drm/rockchip: vop: Fix a dereferenced before check warning (bsc#1218260). - net: vertexcom: mse102x: Fix tx_bytes calculation (bsc#1218260). - sctp: fix possible UAF in sctp_v6_available() (bsc#1218260). - netlink: terminate outstanding dump on socket close (bsc#1218260). - commit bd50075 ++++ kernel-firmware: - Update to version 20241121 (git commit 48bb90cceb88): * linux-firmware: Update AMD cpu microcode * xe: Update GUC to v70.36.0 for BMG, LNL * i915: Update GUC to v70.36.0 for ADL-P, DG1, DG2, MTL, TGL ++++ kubefirst: - Update to version 2.7.5: * set next macro chart for kubefirst - 2.7.5 * bump api (#2326) * update blog link (#2325) * fix: delete k1dir instead of kubeconfig file ++++ kubeone: - Update to version 1.9.0: * Urgent Upgrade Notes https://docs.kubermatic.com/kubeone/v1.9/tutorials/upgrading/upgrading-from-1.8-to-1.9/ (No, really, you MUST read this before you upgrade) - Add support for Ubuntu 24.04. Example Terraform configs for all providers are now using Ubuntu 24.04 by default. If you're using the latest Terraform configs with an existing cluster, make sure to bind the operating system/image to the image that you're currently using, otherwise your instances/cluster might get recreated by Terraform. On some providers, machine-controller will use Ubuntu 24.04 if the image is not explicitly specified. (#3302, @SimonTheLeg) - Example Terraform configs for Hetzner are now using cx22 instead of cx21 instance type by default. If you use the latest Terraform configs with an existing cluster, make sure to override the instance type as needed, otherwise your instances/cluster might get recreated by Terraform. (#3370, @kron4eg) - KubeOne is now validating that IP addresses and hostnames provided for control plane nodes and static worker nodes are different. In other words, it's not possible to use the same machine both as a control plane node and a static worker node. This behavior has never been supported by KubeOne; if you want a control plane node that can schedule any pod, you can provision it as a control plane node and remove the control plane taint (node-role.kubernetes.io/control-plane:NoSchedule). (#3334, @kron4eg) - Update Cilium to v1.16.3. This change might affect users that have nodes that are low on capacity (pods or resources wise). The Cilium architecture has been changed so that the Envoy Proxy is not integrated into Cilium, but is a dedicated component/DaemonSet. If you have nodes that are low on capacity, you might encounter issues when trying to start Envoy Proxy pods on those nodes. In this case, you'll need to override the Cilium addon to use the old architecture with Envoy Proxy integrated into Cilium. (#3415, @xmudrii) kubeone install and kubeone upgrade subcommands are removed. We have deprecated these commands in KubeOne 1.4, and made them hidden in KubeOne 1.5. With this change, we're permanently removing these two commands. kubeone apply should be used instead. (#3349, @mohamed-rafraf) ++++ lego: - Update to version 4.20.4: * Prepare release v4.20.4 * chore: publish snap to the stable channel * Detach v4.20.3 - Update to version 4.20.3: * Prepare release v4.20.3 * technitium: fix status code handling (#2357) * chore: publish aur lego-bin (#2356) * chore: check DNSProvider interface (#2352) * directadmin: fix timeout configuration (#2351) * chore: fix snap name (#2349) * chore: restore snap packaging (#2348) * docs: fix typos * docs: improve changelog style (#2346) * fix: HTTP server IPv6 matching (#2345) * Detach v4.20.2 ++++ libadwaita: - Update to version 1.6.2: + AdwDialog: Fix accessible role critical when using window-backed dialogs. + AdwHeaderBar: Fix a typo in docs. + AdwMessageDialog: Fix a typo in adw_message_dialog_response() deprecation message. + AdwStyleManager: Fix initial color scheme value on Windows. + Updated translations. ++++ libpwquality: - Drop python 2.x support (it's been 4 years). - Add python3-setuptools BuildRequires which is needed for distutils. ++++ libsoup: - Update to version 3.6.1: + Fix `soup_uri_copy()` reading port as a long instead of an int + Fix possible NULL deref in `soup_uri_decode_data_uri()` + Fix possible overflow in `SoupContentSniffer` + Fix assertion in `soup_uri_decode_data_uri()` on URLs with a path starting with `//` + headers: Be more robust against invalid input when parsing params + websocket: Fix possibility of being stuck in a read loop - Drop patches fixed upstream: + 6adc0e3e.patch + 29b96fab.patch + a35222dd.patch + 4c9e75c6.patch ++++ libspelling: - Update to version 0.4.5: + Various robustness fixes for weak ref tracking + Various GObject Introspection fixes + A new build option to install a static library (libspelling-1.a) + Fix a minor leak of extra_word_chars for a language dictionary + Fix ICU success check + Updated translations. ++++ yaz: - Update to version 5.34.2: + Remove outdated distros: Debian Stretch and Ubuntu Trusty + LICENSE: Update to match Index Data's online Revised BSD license + Vscode XML editor settings + YAZ 5.34.1 breaks search with OCLC's "Sisis InfoGuide" origin - Add yaz-icu-76.patch: Fix build against ICU 76: most sources found in the wild wrongly define the need on icu-i18n, when most actually would need icu-uc. - Add libtool BuildRequires and call autoreconf in build section, as above patch touches the build system. ++++ matrix-synapse: - allow newer setuptools-rust ++++ melange: - Update to version 0.15.13: * Consider symlinks as potential provides for so: * drop ntia e2e test ++++ meson: - Add meson-testsuite-with-cmake-3.31.patch: Fix test suite run against CMake 3.31. ++++ mpd: - Added mpd-icu76.patch (fixed build with icu 76.1). ++++ nomino: - Update to version 1.3.6: * update dependencies ++++ orca: - Update to version 47.2: + Web: - Report "required" and "invalid" state on password input. - Present ARIA alerts as UI; not a text container. - Fix regression in presentation of table cell content during word nav. + LibreOffice: Ensure we announce Calc sheet changes. + General: - Multiple "chattiness" fixes. - Treat GTK4 groupings as panels. - Fix performance issue determining posinset and setsize in giant sets. - Try to filter out redundant description-change events. + Updated translations. ++++ php8-imagick: - Fix removed "php_strtolower" for PHP 8.4 + imagick-php_strtolower-php84.patch ++++ python-rdflib-doc: - Add %{?sle15_python_module_pythons} ++++ python-azure-data-tables: - New upstream release + Version 12.6.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Adjust upstream source name in spec file - Drop extra LICENSE.txt as upstream now ships its own ++++ python-biopython: - add py313-support.patch to fix build with python 3.13 ++++ python-constantly: - update to 23.10.4: * switch to PEP517 build * Python 3.12 support ++++ python-dask: - reenable for python 313 as numba is now available ++++ python-dask-expr: - reenable python313, numba is available ++++ python-distributed: - reenable python313 (keep tests disabled for now) ++++ python-django-tastypie: - Update to 0.15.0: * Pin Sphinx to last known working version for now * Fix race condition between POST / PATCH resources by using update_fields * Use non-deprecated assertion methods * Django 5.1 support - Drop patch correct-assertion-methods.patch, included upstream. ++++ python-fastnumbers: - Add fix-compiler-errors.patch with upstream fixes for compiler errors. - Use %pytest_arch instead of home made calling of pytest. ++++ python-littleutils: - update to 0.2.4: * Fix invalid regex escape * CI improvements ++++ python-msal-extensions: - Add patch to relax python-portalocker version dependency in setup.py + me_relax-portalocker.patch - Relax python-portalocker version dependency in BuildRequires and Requires ++++ python-named: - Add no-coverage.patch eliminating coverage measurement. - Add %{?sle15_python_module_pythons} ++++ python-numba: - Add upstream py313.patch to support Python 3.13 ++++ python-numpy: - Add update-meson-1_5_2.patch (gh#numpy/numpy#27531) - Skip failing test test_api_importable ++++ python-prompt_toolkit: - add compat provides on the safe name ++++ python-proto-plus: - Update to 1.25.0 * Add support for Python 3.13 * Construct messages with nested struct * Fix 'Couldn't build proto file' when using Python 3.13 * Fix conda compatibility issue * Fix issue with equality comparison of repeated field with None * Remove check for Protobuf version - Drop merged pytest-staticmethod.patch ++++ python-pydicom-data: - add pytest8.patch ++++ python-rdflib: - Add %{?sle15_python_module_pythons} ++++ python-selenium: - Add %{?sle15_python_module_pythons} ++++ python-trio-websocket: - Add %{?sle15_python_module_pythons} ++++ python-zlib-ng: - update to 0.5.1: * Fix a bug where flushing in threaded mode did not write the data to the output file. * Threaded reading and writing do no longer block exiting when an exception occurs in the main thread. - update to 0.5.0: * Fix a bug where READ and WRITE in zlib_ng.gzip_ng were inconsistent with the values in gzip on Python 3.13 * Small simplifications to the ``gzip_ng.compress`` and ``gzip_ng.decompress`` functions, which should lead to less overhead. - update to 0.4.3: * Fix a bug where files larger than 4GB could not be decompressed. - update to 0.4.2: * Fix a reference counting error that happened on module initialization and triggered an error in the CPython debug build. * Fix a setup.py error that was triggered on MacOS ARM64. ++++ rekor: - Update to version 1.3.7: * New Features - log request body on 500 error to aid debugging (#2283) - Add support for signing with Tink keyset (#2228) - Add public key hash check in Signed Note verification (#2214) - update Trillian TLS configuration (#2202) - Add TLS support for Trillian server (#2164) - Replace docker-compose with plugin if available (#2153) - Add flags to backfill script (#2146) - Unset DisableKeepalive for backfill HTTP client (#2137) - Add script to delete indexes from Redis (#2120) - Run CREATE statement in backfill script (#2109) - Add MySQL support to backfill script (#2081) - Run e2e tests on mysql and redis index backends (#2079) * Bug Fixes - remove unneeded value in log message (#2282) - Add error message when computing consistency proof (#2278) - fix validation error handling on API (#2217) - fix error in pretty-printed inclusion proof from verify subcommand (#2210) - Fix index scripts (#2203) - fix failing sharding test - Better error handling in backfill script (#2148) - Batch entries in cleanup script (#2158) - Add missing workflow for index cleanup test (#2121) - hashedrekord: fix schema $id (#2092) ++++ sane-airscan: - do not replace config (as configured scanners are saved to that file) ++++ shadowsocks-rust: - Update version to 1.21.2 * supports generic I/O socket type * Support OpenBSD Packet-Filter (pf) * Fix bugs ++++ supergfxctl: - Added prime-run binary that just links process to the nvidia libraries ++++ tomcat: - Update to Tomcat 9.0.97 * Fixed CVEs: + CVE-2024-52316: If the Jakarta Authentication fails with an exception, set a 500 status (bsc#1233434) * Catalina + Add: Add support for the new Servlet API method HttpServletResponse.sendEarlyHints(). (markt) + Add: 55470: Add debug logging that reports the class path when a ClassNotFoundException occurs in the digester or the web application class loader. Based on a patch by Ralf Hauser. (markt) + Update: 69374: Properly separate between table header and body in DefaultServlet's listing. (michaelo) + Update: 69373: Make DefaultServlet's HTML listing file last modified rendering better (flexible). (michaelo) + Update: Improve HTML output of DefaultServlet. (michaelo) + Code: Refactor RateLimitFilter to use FilterBase as the base class. The primary advantage for doing this is less code to process init-param values. (markt) + Update: 69370: DefaultServlet's HTML listing uses incorrect labels. (michaelo) + Fix: Avoid NPE in CrawlerSessionManagerValve for partially mapped requests. (remm) + Fix: Add missing WebDAV Lock-Token header in the response when locking a folder. (remm) + Fix: Invalid WebDAV lock requests should be rejected with 400. (remm) + Fix: Fix regression in WebDAV when attempting to unlock a collection. (remm) + Fix: Verify that destination is not locked for a WebDAV copy operation. (remm) + Fix: Send 415 response to WebDAV MKCOL operations that include a request body since this is optional and unsupported. (remm) + Fix: Enforce DAV: namespace on WebDAV XML elements. (remm) + Fix: Do not allow a new WebDAV lock on a child resource if a parent collection is locked (RFC 4918 section 6.1). (remm) + Fix: WebDAV Delete should remove any existing lock on successfully deleted resources. (remm) + Update: Remove WebDAV lock null support in accordance with RFC 4918 section 7.3 and annex D. Instead, a lock on a non-existing resource will create an empty file locked with a regular lock. (remm) + Update: Rewrite implementation of WebDAV shared locks to comply with RFC 4918. (remm) + Update: Implement WebDAV If header using code from the Apache Jackrabbit project. (remm) + Add: Add PropertyStore interface in the WebDAV Servlet, to allow implementation of dead properties storage. The store used can be configured using the 'propertyStore' init parameter of the WebDAV servlet. A simple non-persistent implementation is used if no custom store is configured. (remm) + Update: Implement WebDAV PROPPATCH method using the newly added PropertyStore. (remm) + Fix: Cache not found results when searching for web application class loader resources. This addresses performance problems caused by components such as java.sql.DriverManager which, in some circumstances, will search for the same class repeatedly. In a large web application this can cause performance problems. The size of the cache can be controlled via the new notFoundClassResourceCacheSize on the StandardContext. (markt) + Fix: Stop after INITIALIZED state should be a noop since it is possible for subcomponents to be in FAILED after init. (remm) + Fix: Fix incorrect web resource cache size calculations when there are concurrent PUT and DELETE requests for the same resource. (markt) + Add: Add debug logging for the web resource cache so the current size can be tracked as resources are added and removed. (markt) + Update: Replace legacy WebDAV opaquelocktoken: scheme for lock tokens with urn:uuid: as recommended by RFC 4918, and remove secret init parameter. (remm) + Fix: Concurrent reads and writes (e.g. GET and PUT / DELETE) for the same path caused corruption of the FileResource where some of the fields were set as if the file exists and some as set as if it does not. This resulted in inconsistent metadata. (markt) + Fix: 69415: Ensure that the ExpiresFilter only sets cache headers on GET and HEAD requests. Also skip requests where the application has set Cache-Control: no-store. (markt) + Fix: 69419: Improve the performance of ServletRequest.getAttribute() when there are multiple levels of nested includes. Based on a patch provided by John Engebretson. (markt) + Add: All applications to send an early hints informational response by calling HttpServletResponse.sendError() with a status code of 103. (schultz) + Fix: Ensure that the Jakarta Authentication CallbackHandler only creates one GenericPrincipal in the Subject. (markt) + Fix: If the Jakarta Authentication process fails with an Exception, explicitly set the HTTP response status to 500 as the ServerAuthContext may not have set it. (markt) + Fix: When persisting the Jakarta Authentication provider configuration, create any necessary parent directories that don't already exist. (markt) + Fix: Correct the logic used to detect errors when deleting temporary files associated with persisting the Jakarta Authentication provider configuration. (markt) + Fix: When processing Jakarta Authentication callbacks, don't overwrite a Principal obtained from the PasswordValidationCallback with null if the CallerPrincipalCallback does not provide a Principal. (markt) + Fix: Avoid store config backup loss when storing one configuration more than once per second. (remm) + Fix: 69359: WebdavServlet duplicates getRelativePath() method from super class with incorrect Javadoc. (michaelo) + Fix: 69360: Inconsistent DELETE behavior between WebdavServlet and DefaultServlet. (michaelo) + Fix: Make WebdavServlet properly return the Allow header when deletion of a resource is not allowed. (michaelo) + Fix: Add log warning if non wildcard mappings are used with the WebdavServlet. (remm) + Fix: 69361: Ensure that the order of entries in a multi-status response to a WebDAV is consistent with the order in which resources were processed. (markt) + Fix: 69362: Provide a better multi-status response when deleting a collection via WebDAV fails. Empty directories that cannot be deleted will now be included in the response. (markt) + Fix: 69363: Use getPathPrefix() consistently in the WebDAV servlet to ensure that the correct path is used when the WebDAV servlet is mounted at a sub-path within the web application. (markt) + Fix: Improve performance of ApplicationHttpRequest.parseParameters(). Based on sample code and test cases provided by John Engebretson. (markt) + Add: Add support for RFC 8297 (Early Hints). Applications can use this feature by casting the HttpServletResponse to org.apache.catalina.connector.Reponse and then calling the method void sendEarlyHints(). This method will be added to the Servlet API (removing the need for the cast) in Servlet 6.2 onwards. (markt) + Fix: 69214: Do not reject a CORS request that uses POST but does not include a content-type header. Tomcat now correctly processes this as a simple CORS request. Based on a patch suggested by thebluemountain. (markt) + Fix: Refactor SpnegoAuthenticator so it uses Subject.callAs() rather than Subject.doAs() when available. (markt) * Coyote + Fix: Return null SSL session id on zero length byte array returned from the SSL implementation. (remm) + Fix: Skip OpenSSLConf with BoringSSL since it is unsupported. (remm) + Fix: Create the HttpParser in Http11Processor if it is not present on the AbstractHttp11Protocol to provide better lifecycle robustness for regular HTTP/1.1. The new behavior was introduced on a previous refactoring to improve HTTP/2 performance. (remm) + Fix: OpenSSLContext will now throw a KeyManagementException if something is known to have gone wrong in the init method, which is the behavior documented by javax.net.ssl.SSLContext.init. This makes error handling more consistent. (remm) + Fix: 69316: Ensure that FastHttpDateFormat#getCurrentDate() (used to generate Date headers for HTTP responses) generates the correct string for the given input. Prior to this change, the output may have been wrong by one second in some cases. Pull request #751 provided by Chenjp. (markt) + Add: Add server and serverRemoveAppProvidedValues to the list of attributes the HTTP/2 protocol will inherit from the HTTP/1.1 connector it is nested within. (markt) + Fix: Avoid possible crashes when using Apache Tomcat Native, caused by destroying SSLContext objects through GC after APR has been terminated. (remm) + Fix: Improve HTTP/2 handling of trailer fields for requests. Trailer fields no longer need to be received before the headers of the subsequent stream nor are trailer fields for an in-progress stream swallowed if the Connector is paused before the trailer fields are received. (markt) + Fix: Ensure the request and response are not recycled too soon for an HTTP/2 stream when a stream level error is detected during the processing of incoming HTTP/2 frames. This could lead to incorrect processing times appearing in the access log. (markt) + Fix: Fix 69320, a regression in the fix for 69302 that meant the HTTP/2 processing was likely to be broken for all clients once any client sent an HTTP/2 reset frame. (markt) + Fix: Correct a regression in the fix for non-blocking reads of chunked request bodies that caused InputStream.available() to return a non-zero value when there was no data to read. In some circumstances this could cause a blocking read to block waiting for more data rather than return the data it had already received. (markt) + Add: Add a new attribute cookiesWithoutEquals to the Rfc6265CookieProcessor. The default behaviour is unchanged. (markt) + Fix: Ensure that Tomcat sends a TLS close_notify message after receiving one from the client when using the OpenSSLImplementation. (markt) + Fix: 69301: Fix trailer headers replacing non-trailer headers when writing response headers to the access log. Based on a patch and test case provided by hypnoce. (markt) + Fix: 69302: If an HTTP/2 client resets a stream before the request body is fully written, ensure that any ReadListener is notified via a call to ReadListener.onErrror(). (markt) + Fix: Correct regressions in the refactoring that added recycling of the coyote request and response to the HTTP/2 processing. (markt) + Add: Add OpenSSL integration using the FFM API rather than Tomcat Native. OpenSSL support may be enabled by adding the org.apache.catalina.core.OpenSSLLifecycleListener listener on the Server element when using Java 22 or later. (remm) + Fix: Ensure that HTTP/2 stream input buffers are only created when there is a request body to be read. (markt) + Code: Refactor creation of HttpParser instances from the Processor level to the Protocol level since the parser configuration depends on the protocol and the parser is, otherwise, stateless. (markt) + Add: Align HTTP/2 with HTTP/1.1 and recycle the container internal request and response processing objects by default. This behaviour can be controlled via the new discardRequestsAndResponses attribute on the HTTP/2 upgrade protocol. (markt) * Jasper + Fix: Add back tag release method as deprecated in the runtime for compatibility with old generated code. (remm) + Fix: 69399: Fix regression caused by the improvement 69333 which caused the tag release to be called when using tag pooling, and to be skipped when not using it. Patch submitted by Michal Sobkiewicz. (remm) + Fix: 69381: Improve method lookup performance in expression language. When the required method has no arguments there is no need to consider casting or coercion and the method lookup process can be simplified. Based on pull request #770 by John Engebretson. + Fix: 69382: Improve the performance of the JSP include action by re-using results of relatively expensive method calls in the generated code rather than repeating them. Patch provided by John Engebretson. (markt) + Fix: 69398: Avoid unnecessary object allocation in PageContextImpl. Based on a suggestion by John Engebretson. (markt) + Fix: 69406: When using StringInterpreterEnum, do not throw an IllegalArgumentException when an invalid Enum is encountered. Instead, resolve the value at runtime. Patch provided by John Engebretson. (markt) + Fix: 69429: Optimise EL evaluation of method parameters for methods that do not accept any parameters. Patch provided by John Engebretson. (markt) + Fix: 69333: Remove unnecessary code from generated JSPs. (markt) + Fix: 69338: Improve the performance of processing expressions that include AND or OR operations with more than two operands and expressions that use not empty. (markt) + Fix: 69348: Reduce memory consumption in ELContext by using lazy initialization for the data structure used to track lambda arguments. (markt) + Fix: Switch the TldScanner back to logging detailed scan results at debug level rather than trace level. (markt) * Web applications + Fix: The manager webapp will now be able to access certificates again when OpenSSL is used. (remm) + Fix: Documentation. Align the logging configuration documentation with the current defaults. (markt) * WebSocket + Fix: If a blocking message write exceeds the timeout, don't attempt the write again before throwing the exception. (markt) + Fix: An EncodeException being thrown during a message write should not automatically cause the connection to close. The application should handle the exception and make the decision whether or not to close the connection. (markt) * jdbc-pool + Fix: 69255: Correct a regression in the fix for 69206 that meant exceptions executing statements were wrapped in a java.lang.reflect.UndeclaredThrowableException rather than the application seeing the original SQLException. Fixed by pull request #744 provided by Michael Clarke. (markt) + Fix: 69279: Correct a regression in the fix for 69206 that meant that methods that previously returned a null ResultSet were returning a proxy with a null delegate. Fixed by pull request #745 provided by Huub de Beer. (markt) + Fix: 69206: Ensure statements returned from Statement methods executeQuery(), getResultSet() and getGeneratedKeys() are correctly wrapped before being returned to the caller. Based on pull request [#742] provided by Michael Clarke. * Other + Update: Switch from DigiCert ONE to ssl.com eSigner for code signing. (markt) + Update: Update Byte Buddy to 1.15.10. (markt) + Update: Update CheckStyle to 10.20.0. (markt) + Add: Improvements to German translations. (remm) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations by tak7iji. (markt) + Add: Improvements to Chinese translations by Ch_jp. (markt) + Add: Exclude the tomcat-coyote-ffm.jar from JAR scanning by default. (markt) + Fix: Change the default log handler level to ALL so log messages are not dropped by default if a logger is configured to use trace (FINEST) level logging. (markt) + Update: Update Hamcrest to 3.0. (markt) + Update: Update EasyMock to 5.4.0. (markt) + Update: Update Byte Buddy to 1.15.0. (markt) + Update: Update CheckStyle to 10.18.0. (markt) + Update: Update the internal fork of Apache Commons BCEL to 6.10.0. (markt) + Add: Improvements to Spanish translations by Fernando. (markt) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations by tak7iji. (markt) + Fix: Fix packaging regression with missing osgi information following addition of the test-only build target. (remm) + Update: Update Tomcat Native to 1.3.1. (markt) + Update: Update Byte Buddy to 1.14.18. (markt) + Add: Improvements to French translations. (remm) + Add: Improvements to Japanese translations by tak7iji. (markt) ------------------------------------------------------------------ ------------------ 2024-11-21 - Nov 21 2024 ------------------- ------------------------------------------------------------------ ++++ Mesa: - Update to release 24.3.0~rc2 - -> https://www.phoronix.com/news/Mesa-24.3-rc2 - Update to release 24.3.0~rc1 - -> https://www.phoronix.com/news/Mesa-24.3-rc1-Released - refreshed patches: * n_drirc-disable-rgb10-for-chromium-on-amd.patch * python36-buildfix1.patch * python36-buildfix2.patch * tlsdesc_test.patch * u_mesa-CVE-2023-45913.patch * u_mesa-CVE-2023-45919.patch * u_mesa-CVE-2023-45922.patch * u_dep_xcb.patch - drop no longer supported options: * -Ddri3=enabled * -Ddri-search-path=%{_libdir}/dri - new files added in this update currently packaged as part of Mesa-dri: * %{_libdir}/gbm/dri_gbm.so ++++ Mesa-drivers: - Update to release 24.3.0~rc2 - -> https://www.phoronix.com/news/Mesa-24.3-rc2 - Update to release 24.3.0~rc1 - -> https://www.phoronix.com/news/Mesa-24.3-rc1-Released - refreshed patches: * n_drirc-disable-rgb10-for-chromium-on-amd.patch * python36-buildfix1.patch * python36-buildfix2.patch * tlsdesc_test.patch * u_mesa-CVE-2023-45913.patch * u_mesa-CVE-2023-45919.patch * u_mesa-CVE-2023-45922.patch * u_dep_xcb.patch - drop no longer supported options: * -Ddri3=enabled * -Ddri-search-path=%{_libdir}/dri - new files added in this update currently packaged as part of Mesa-dri: * %{_libdir}/gbm/dri_gbm.so ++++ ansible-core: - Added necessary test dependencies: pytest-xdist, pytest-mock, pytz, passlib, git-core, and openssh to ensure proper test execution. - Introduced the `ansible_python_version` variable and updated the test command. ++++ apache2-mod_php8: - version update to 8.3.14 [bsc#1233644] [bsc#1233651] [bsc#1233703] [bsc#1233702] [bsc#1233705] CLI: Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server started through shebang). Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface). COM: Fixed out of bound writes to SafeArray data. Core: Fixed bug GH-16168 (php 8.1 and earlier crash immediately when compiled with Xcode 16 clang on macOS 15). Fixed bug GH-16371 (Assertion failure in Zend/zend_weakrefs.c:646). Fixed bug GH-16515 (Incorrect propagation of ZEND_ACC_RETURN_REFERENCE for call trampoline). Fixed bug GH-16509 (Incorrect line number in function redeclaration error). Fixed bug GH-16508 (Incorrect line number in inheritance errors of delayed early bound classes). Fixed bug GH-16648 (Use-after-free during array sorting). Curl: Fixed bug GH-16302 (CurlMultiHandle holds a reference to CurlHandle if curl_multi_add_handle fails). Date: Fixed bug GH-16454 (Unhandled INF in date_sunset() with tiny $utcOffset). Fixed bug GH-14732 (date_sun_info() fails for non-finite values). DBA: Fixed bug GH-16390 (dba_open() can segfault for "pathless" streams). DOM: Fixed bug GH-16316 (DOMXPath breaks when not initialized properly). Add missing hierarchy checks to replaceChild. Fixed bug GH-16336 (Attribute intern document mismanagement). Fixed bug GH-16338 (Null-dereference in ext/dom/node.c). Fixed bug GH-16473 (dom_import_simplexml stub is wrong). Fixed bug GH-16533 (Segfault when adding attribute to parent that is not an element). Fixed bug GH-16535 (UAF when using document as a child). Fixed bug GH-16593 (Assertion failure in DOM->replaceChild). Fixed bug GH-16595 (Another UAF in DOM -> cloneNode). EXIF: Fixed bug GH-16409 (Segfault in exif_thumbnail when not dealing with a real file). FFI: Fixed bug GH-16397 (Segmentation fault when comparing FFI object). Filter: Fixed bug GH-16523 (FILTER_FLAG_HOSTNAME accepts ending hyphen). FPM: Fixed bug GH-16628 (FPM logs are getting corrupted with this log statement). GD: Fixed bug GH-16334 (imageaffine overflow on matrix elements). Fixed bug GH-16427 (Unchecked libavif return values). Fixed bug GH-16559 (UBSan abort in ext/gd/libgd/gd_interpolation.c:1007). GMP: Fixed floating point exception bug with gmp_pow when using large exposant values. (David Carlier). Fixed bug GH-16411 (gmp_export() can cause overflow). Fixed bug GH-16501 (gmp_random_bits() can cause overflow). Fixed gmp_pow() overflow bug with large base/exponents. Fixed segfaults and other issues related to operator overloading with GMP objects. LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MBstring: Fixed bug GH-16361 (mb_substr overflow on start/length arguments). MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) Opcache: Fixed bug GH-16408 (Array to string conversion warning emitted in optimizer). OpenSSL: Fixed bug GH-16357 (openssl may modify member types of certificate arrays). Fixed bug GH-16433 (Large values for openssl_csr_sign() $days overflow). Fix various memory leaks on error conditions in openssl_x509_parse(). PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) PDO ODBC: Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). Phar: Fixed bug GH-16406 (Assertion failure in ext/phar/phar.c:2808). PHPDBG: Fixed bug GH-16174 (Empty string is an invalid expression for ev). Reflection: Fixed bug GH-16601 (Memory leak in Reflection constructors). Session: Fixed bug GH-16385 (Unexpected null returned by session_set_cookie_params). Fixed bug GH-16290 (overflow on cookie_lifetime ini value). SOAP: Fixed bug GH-16318 (Recursive array segfaults soap encoding). Fixed bug GH-16429 (Segmentation fault access null pointer in SoapClient). Sockets: Fixed bug with overflow socket_recvfrom $length argument. SPL: Fixed bug GH-16337 (Use-after-free in SplHeap). Fixed bug GH-16464 (Use-after-free in SplDoublyLinkedList::offsetSet()). Fixed bug GH-16479 (Use-after-free in SplObjectStorage::setInfo()). Fixed bug GH-16478 (Use-after-free in SplFixedArray::unset()). Fixed bug GH-16588 (UAF in Observer->serialize). Fix GH-16477 (Segmentation fault when calling __debugInfo() after failed SplFileObject::__constructor). Fixed bug GH-16589 (UAF in SplDoublyLinked->serialize()). Fixed bug GH-14687 (segfault on SplObjectIterator instance). Fixed bug GH-16604 (Memory leaks in SPL constructors). Fixed bug GH-16646 (UAF in ArrayObject::unset() and ArrayObject::exchangeArray()). Standard: Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with bail enabled). Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) SysVMsg: Fixed bug GH-16592 (msg_send() crashes when a type does not properly serialized). SysVShm: Fixed bug GH-16591 (Assertion error in shm_put_var). XMLReader: Fixed bug GH-16292 (Segmentation fault in ext/xmlreader/php_xmlreader.c). Zlib: Fixed bug GH-16326 (Memory management is broken for bad dictionaries.) (cmb) ++++ apko: - Update to version 0.20.1: * fix: Allow accounts to belong to GID 0 (#1407) * build(deps): bump github/codeql-action from 3.27.4 to 3.27.5 (#1410) * build(deps): bump google.golang.org/api from 0.206.0 to 0.207.0 (#1409) * build(deps): bump step-security/harden-runner from 2.10.1 to 2.10.2 (#1408) * build(deps): bump google.golang.org/api from 0.205.0 to 0.206.0 (#1405) ++++ aws-c-cal: - Update to version 0.8.1 * chore: Modified bug issue template to add checkbox to report potential regression. by @ashishdhingra in (#199) * RSA PKCS1.5 SHA1 signing by @DmitriyMusatkin in (#201) ++++ aws-checksums: - Update to version 0.2.2 * Fix predefines for bswap for old compilers by @DmitriyMusatkin in (#99) - from version 0.2.1 * chore: Modified bug issue template to add checkbox to report potential regression. by @ashishdhingra in (#95) * CRC big endian support by @DmitriyMusatkin in (#97) ++++ aws-crt-cpp: - Update to version 0.29.5 * Update submodule by @xiazhvera in (#684) - from version 0.29.4 * Request response workspace by @bretambrose in (#664) ++++ bitwarden: - New upstream release 2024.11.2 * Revert the passphrase minimum back to 3 words ++++ clBLAS: - Fix build on aarch64 with upstream patch: * 362.patch ++++ dovecot23: - Add dovecot-link-icu76.patch: configure: Explicitly check for icu-uc Ensure we link against libicu-uc when it's split in v76 (boo#1233582). - Call autoreconf in build section, as above patch touches the build system. ++++ emacs-auctex: - Use gzip -n for deterministic gzip headers ++++ falcoctl: - Update to version 0.10.1: * update(go): bumped driverkit dep to v0.20.4. * fix(pkg/oci): fix Tags pagination support. * chore(deps): Bump cloud.google.com/go/storage from 1.46.0 to 1.47.0 * chore(deps): Bump google.golang.org/api from 0.205.0 to 0.206.0 * chore(deps): Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 * chore(deps): Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 * chore(deps): Bump github.com/distribution/distribution/v3 * chore(deps): Bump golang.org/x/net from 0.30.0 to 0.31.0 * chore(deps): Bump golang.org/x/term from 0.25.0 to 0.26.0 * chore(deps): Bump google.golang.org/api from 0.204.0 to 0.205.0 * chore(deps): Bump goreleaser/goreleaser-action in the actions group * chore(deps): Bump github.com/onsi/ginkgo/v2 from 2.20.2 to 2.21.0 * chore(deps): Bump google.golang.org/api from 0.200.0 to 0.204.0 * chore(deps): Bump cloud.google.com/go/storage from 1.45.0 to 1.46.0 * chore(deps): Bump github.com/onsi/gomega from 1.34.2 to 1.35.1 * chore(deps): Bump k8s.io/client-go from 0.30.2 to 0.31.2 * chore(deps): Bump github.com/sigstore/cosign/v2 from 2.2.4 to 2.4.1 * chore(deps): Bump github.com/onsi/ginkgo/v2 from 2.19.0 to 2.20.2 * chore(deps): Bump github.com/docker/docker * chore(deps): Bump k8s.io/apimachinery from 0.30.2 to 0.31.2 * chore(deps): Bump cloud.google.com/go/storage from 1.43.0 to 1.45.0 * chore(deps): Bump github.com/onsi/gomega from 1.33.1 to 1.34.2 * chore(deps): Bump github.com/docker/cli * chore(deps): Bump the actions group with 2 updates * chore(deps): Bump github.com/cilium/ebpf from 0.15.0 to 0.16.0 * chore(deps): Bump github.com/distribution/distribution/v3 * chore(deps): align go.opentelemetry.io/otel/sdk/metric with otel/sdk v1.29.0 * update go to 1.22.8 * chore(deps): Bump the gomod group across 1 directory with 11 updates * chore(deps): Bump the actions group with 2 updates * fix(cmd): relax file perms for Falco driver config override * chore(deps): Bump the actions group with 4 updates * chore(deps): Bump the actions group with 2 updates ++++ fontforge: - add use-sysconfig-not-distutils.patch: fix build with python 3.13 ++++ forgejo-runner: - Update to version 5.0.2: * Fixes a regression that was introduced in version 5.0.0 by which skipped jobs were marked as failed instead ++++ gtk4: - Update to version 4.16.6: + To prevent issues when using GTK under kwin, this release makes Wayland color management opt-in. To experiment with it, set GDK_DEBUG=color-mgmt. + GtkText: Don't select inserted Emoji + GtkApplication: Set the default window icon from the app ID + GtkFontChooser: Make the dialog more shrinkable + Updated translations. ++++ git-lfs: - update to version 3.6.0: https://github.com/git-lfs/git-lfs/releases/tag/v3.6.0 ++++ gnome-initial-setup: - Update to version 47.2: + Previously, the timezone page would list duplicate entries for some cities, and selecting the wrong one would crash Initial Setup. In this release these problematic entries are not shown. + Previous versions would crash on startup when run with GTK 4.17, which has made it a fatal error to use certain functions before gtk_init() has been called. This crash is fixed in this release. + Updated translations. ++++ gnome-settings-daemon: - Update to version 47.2: + Power: - Fix possible invalid reads if backlight fails to initialize. - Handle broken upower more elegantly. - Test warning fixes. + Updated translations. ++++ govulncheck-vulndb: - Update to version 0.0.20241121T195252 2024-11-21T19:52:52Z. Refs jsc#PED-11136 Go CVE Numbering Authority IDs added or updated with aliases: * GO-2024-3279 GHSA-7225-m954-23v7 * GO-2024-3280 CVE-2024-52282 GHSA-9c5p-35gj-jqp4 * GO-2024-3281 CVE-2024-52280 GHSA-j5hq-5jcr-xwx7 * GO-2024-3282 GHSA-r4pg-vg54-wxx4 * GO-2024-3283 CVE-2024-52309 ++++ gp2c: - Update to release 0.14 * By default, support PARI 2.17 now. * Support for ``_*`` (primorial) operator from pari 2.16.1 * Support for ``#_~`` from 2.16.1 ++++ gpu-screen-recorder: - Update to version 20241121: * Allow recording from both audio devices and application audio at the same time * Workaround amd driver bug that causes garbage output on some gpus in some amd driver versions * Improve window content sizing behavior (no more horizontal scroll) ++++ gpu-screen-recorder-gtk: - Update to version 20241121: * Merge audio devices and application audio into one list * Always show record buttons * Better scrolled window resizing ++++ gtksourceview5: - Update to version 5.14.2: + Ignore various libxml2 deprecations + Fix some incorrect GI annotations + Fix extraneous dismissal of hover providers in some cases + Add missing 5_14 version macros ++++ iptraf-ng: - Update to release 1.2.2 * serv.c: validate loading/saving/entry of port ranges * limit interface name lengths to IFNAMSIZ [CVE-2024-52949] ++++ python-bqplot: - Also skip python313 gh#bqplot/bqplot#1639 ++++ kopia: - Update to version 0.18.2: * feat(general): JSON marshaler helper for `time.Duration` (#4194) * feat(ui): upgraded htmlui to the latest version (#4268) * feat(snapshots): Fix for #2037 Add symlink support for .kopiaignore (#4190) * build(deps): bump github.com/hanwen/go-fuse/v2 from 2.6.3 to 2.6.4 (#4265) * build(deps): bump github.com/mocktools/go-smtp-mock/v2 (#4264) * build(deps): bump the common-golang-dependencies group with 4 updates (#4263) * fix(server): handle unset password hash version in user profile (#4259) * fix(notifications): fixed headers for email notifications (#4258) ++++ multipath-tools: - Update to version 0.11.0~1+118+suse.4a51b1a See NEWS.md for details about upstream changes in 0.11.0. * Pre-release of upstream 0.11.0 * Rework of the path checking algorithm to reduce wait time and improve performance * Modified the systemd unit `multipathd.service` such that multipathd will now restart after a failure or crash (gh#opensvc/multipath-tools#100) * multipathd: move systemd watchdog handling into daemon (bsc#1232227) * libmultipath: dm_get_maps(): don't bail out for single-map failures (bsc#1233588, gh#opensvc/multipath-tools#102) * libmultipath: don't set dev_loss_tmo to 0 for NO_PATH_RETRY_FAIL * multipathd: fix deferred_failback_tick for reload removes ++++ mozilla-nss: - update to NSS 3.106 * bmo#1925975 - NSS 3.106 should be distributed with NSPR 4.36. * bmo#1923767 - pk12util: improve error handling in p12U_ReadPKCS12File. * bmo#1899402 - Correctly destroy bulkkey in error scenario. * bmo#1919997 - PKCS7 fuzz target, r=djackson,nss-reviewers. * bmo#1923002 - Extract certificates with handshake collection script. * bmo#1923006 - Specify len_control for fuzz targets. * bmo#1923280 - Fix memory leak in dumpCertificatePEM. * bmo#1102981 - Fix UBSan errors for SECU_PrintCertificate and SECU_PrintCertificateBasicInfo. * bmo#1921528 - add new error codes to mozilla::pkix for Firefox to use. * bmo#1921768 - allow null phKey in NSC_DeriveKey. * bmo#1921801 - Only create seed corpus zip from existing corpus. * bmo#1826035 - Use explicit allowlist for for KDF PRFS. * bmo#1920138 - Increase optimization level for fuzz builds. * bmo#1920470 - Remove incorrect assert. * bmo#1914870 - Use libFuzzer options from fuzz/options/\*.options in CI. * bmo#1920945 - Polish corpus collection for automation. * bmo#1917572 - Detect new and unfuzzed SSL options. * bmo#1804646 - PKCS12 fuzzing target. - requires NSPR 4.36 ++++ mozjs78: - Fix build against icu 76.1: link the correct libraries (icu-uc instead of icu-i18n) (boo#1233576). ++++ pari: - Update to release 2.17 * Fixed rare SEGV in sumnumrat function * Fixed `gp -p N` not checking for N < 2^32 ++++ s2n: - Update to version 1.5.9 * feat: Reworking cleanup behavior (#4871) * chore: broaden use of flaky mark (#4865) * chore: configure dependabot (#4861) - from version 1.5.8 * fix: fix open AF_INET sockets in s2n_self_talk_ktls_test.c (#4852) * chore: update github PR template (#4885) * feat: add new security policy `20241106` (#4874) * chore: remove unused benchmarks (#4869) * ci: Clean dup source tree for CRT (#4882) * ci: remove www.mozilla.com from well-known to unblock CI (#4880) * fix: move prelude inclusion as PRIVATE (#4876) * build: add s2n_prelude.h to consolidate defines (#4465) * chore: bindings release 0.3.6 (#4867) * doc: fix incorrect README references (#4863) * fix: typo in comment of s2n_self_talk_tls13_test (#4864) ++++ spdlog: - Updated spdlog to 1.15.0 - Release notes 1.15.0: * Update bundled fmt to 11.0.2 by @gabime in #3236 * Add wide character formatting and output support to console in wincolor_sink. by @DominikGrabiec in #3092 * Allow customization of syslog_sink by @Silex in #3124 * make example compatible with fmt 11 by @ziyao233 in #3130 * Fix building with FMT_ENFORCE_COMPILE_STRING by @AJIOB in #3137 * fix: set /Zc:__cplusplus and /MP to MSVC only by @zjyhjqs in #3139 * V1.x : fixed "suggest override" errors for gcc 8.5 and gcc 9.1 by @esmirno in #3158 * Add info about max_files in the docstrings of hourly/daily file sinks by @themightyoarfish in #3170 * use std::lock_guard instead of std::unique_lock by @wsehjk in #3179 * fix/issue-3101: fix the issue where mdc ignores SPDLOG_NO_TLS by @Allen-20180115 in #3184 * Update mdc.h error message by @gabime in #3185 * [docs] Update conan install command in README by @uilianries in #3172 * Update CMakeLists.txt, Fix spelling errors by @zgzhengSEU in #3193 * Fix warning - extra ';' for -Wextra-semi by @hydai in #3198 * Improve Cross-Platform Build Instructions in Documentation by @Mq-b in #3229 * Exchange promise for condition_variable when flushing (fixes #3221) by @Oipo in #3228 * Ensure flush callback gets called in move-assign operator by @Oipo in #3232 * Make flush async again in async logger to prevent crashes and hangs by @gabime in #3235 * Update README.md by @gabime in #3240 * utf8_to_wstrbuf now handles invalid utf8 sequences by @captainurist in #3244 and #3245 * Added tsan option to CMake and CI by @gabime in #3237 and #3247 /pull/3244 ++++ tinysparql: - Update to version 3.8.1: + Fix leak iterating bus-based cursors + Fix allowed extension for Turtle files in ontology definitions + Test fixes + Updated translations. ++++ wireshark: - Wireshark 4.4.2 * CVE-2024-11595: FiveCo RAP dissector infinite loop (boo#1233594). * CVE-2024-11596: ECMP dissector crash (boo#1233593). - Many more features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-4.4.2.html ++++ localsearch: - Update to version 3.8.1: + Fix multiple leaks in metadata extractors + Fix reporting of metadata extraction progress in "localsearch daemon -f" and "localsearch status" + Cache mounts for generating stable content identifiers + Added missing includes necessary for Musl libc + Updated translations. ++++ pantheon-stylesheet: - update to 8.2.0: * Improve support for LibAdwaita widgets ++++ php8: - version update to 8.3.14 [bsc#1233644] [bsc#1233651] [bsc#1233703] [bsc#1233702] [bsc#1233705] CLI: Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server started through shebang). Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface). COM: Fixed out of bound writes to SafeArray data. Core: Fixed bug GH-16168 (php 8.1 and earlier crash immediately when compiled with Xcode 16 clang on macOS 15). Fixed bug GH-16371 (Assertion failure in Zend/zend_weakrefs.c:646). Fixed bug GH-16515 (Incorrect propagation of ZEND_ACC_RETURN_REFERENCE for call trampoline). Fixed bug GH-16509 (Incorrect line number in function redeclaration error). Fixed bug GH-16508 (Incorrect line number in inheritance errors of delayed early bound classes). Fixed bug GH-16648 (Use-after-free during array sorting). Curl: Fixed bug GH-16302 (CurlMultiHandle holds a reference to CurlHandle if curl_multi_add_handle fails). Date: Fixed bug GH-16454 (Unhandled INF in date_sunset() with tiny $utcOffset). Fixed bug GH-14732 (date_sun_info() fails for non-finite values). DBA: Fixed bug GH-16390 (dba_open() can segfault for "pathless" streams). DOM: Fixed bug GH-16316 (DOMXPath breaks when not initialized properly). Add missing hierarchy checks to replaceChild. Fixed bug GH-16336 (Attribute intern document mismanagement). Fixed bug GH-16338 (Null-dereference in ext/dom/node.c). Fixed bug GH-16473 (dom_import_simplexml stub is wrong). Fixed bug GH-16533 (Segfault when adding attribute to parent that is not an element). Fixed bug GH-16535 (UAF when using document as a child). Fixed bug GH-16593 (Assertion failure in DOM->replaceChild). Fixed bug GH-16595 (Another UAF in DOM -> cloneNode). EXIF: Fixed bug GH-16409 (Segfault in exif_thumbnail when not dealing with a real file). FFI: Fixed bug GH-16397 (Segmentation fault when comparing FFI object). Filter: Fixed bug GH-16523 (FILTER_FLAG_HOSTNAME accepts ending hyphen). FPM: Fixed bug GH-16628 (FPM logs are getting corrupted with this log statement). GD: Fixed bug GH-16334 (imageaffine overflow on matrix elements). Fixed bug GH-16427 (Unchecked libavif return values). Fixed bug GH-16559 (UBSan abort in ext/gd/libgd/gd_interpolation.c:1007). GMP: Fixed floating point exception bug with gmp_pow when using large exposant values. (David Carlier). Fixed bug GH-16411 (gmp_export() can cause overflow). Fixed bug GH-16501 (gmp_random_bits() can cause overflow). Fixed gmp_pow() overflow bug with large base/exponents. Fixed segfaults and other issues related to operator overloading with GMP objects. LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MBstring: Fixed bug GH-16361 (mb_substr overflow on start/length arguments). MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) Opcache: Fixed bug GH-16408 (Array to string conversion warning emitted in optimizer). OpenSSL: Fixed bug GH-16357 (openssl may modify member types of certificate arrays). Fixed bug GH-16433 (Large values for openssl_csr_sign() $days overflow). Fix various memory leaks on error conditions in openssl_x509_parse(). PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) PDO ODBC: Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). Phar: Fixed bug GH-16406 (Assertion failure in ext/phar/phar.c:2808). PHPDBG: Fixed bug GH-16174 (Empty string is an invalid expression for ev). Reflection: Fixed bug GH-16601 (Memory leak in Reflection constructors). Session: Fixed bug GH-16385 (Unexpected null returned by session_set_cookie_params). Fixed bug GH-16290 (overflow on cookie_lifetime ini value). SOAP: Fixed bug GH-16318 (Recursive array segfaults soap encoding). Fixed bug GH-16429 (Segmentation fault access null pointer in SoapClient). Sockets: Fixed bug with overflow socket_recvfrom $length argument. SPL: Fixed bug GH-16337 (Use-after-free in SplHeap). Fixed bug GH-16464 (Use-after-free in SplDoublyLinkedList::offsetSet()). Fixed bug GH-16479 (Use-after-free in SplObjectStorage::setInfo()). Fixed bug GH-16478 (Use-after-free in SplFixedArray::unset()). Fixed bug GH-16588 (UAF in Observer->serialize). Fix GH-16477 (Segmentation fault when calling __debugInfo() after failed SplFileObject::__constructor). Fixed bug GH-16589 (UAF in SplDoublyLinked->serialize()). Fixed bug GH-14687 (segfault on SplObjectIterator instance). Fixed bug GH-16604 (Memory leaks in SPL constructors). Fixed bug GH-16646 (UAF in ArrayObject::unset() and ArrayObject::exchangeArray()). Standard: Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with bail enabled). Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) SysVMsg: Fixed bug GH-16592 (msg_send() crashes when a type does not properly serialized). SysVShm: Fixed bug GH-16591 (Assertion error in shm_put_var). XMLReader: Fixed bug GH-16292 (Segmentation fault in ext/xmlreader/php_xmlreader.c). Zlib: Fixed bug GH-16326 (Memory management is broken for bad dictionaries.) (cmb) ++++ php8-embed: - version update to 8.3.14 [bsc#1233644] [bsc#1233651] [bsc#1233703] [bsc#1233702] [bsc#1233705] CLI: Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server started through shebang). Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface). COM: Fixed out of bound writes to SafeArray data. Core: Fixed bug GH-16168 (php 8.1 and earlier crash immediately when compiled with Xcode 16 clang on macOS 15). Fixed bug GH-16371 (Assertion failure in Zend/zend_weakrefs.c:646). Fixed bug GH-16515 (Incorrect propagation of ZEND_ACC_RETURN_REFERENCE for call trampoline). Fixed bug GH-16509 (Incorrect line number in function redeclaration error). Fixed bug GH-16508 (Incorrect line number in inheritance errors of delayed early bound classes). Fixed bug GH-16648 (Use-after-free during array sorting). Curl: Fixed bug GH-16302 (CurlMultiHandle holds a reference to CurlHandle if curl_multi_add_handle fails). Date: Fixed bug GH-16454 (Unhandled INF in date_sunset() with tiny $utcOffset). Fixed bug GH-14732 (date_sun_info() fails for non-finite values). DBA: Fixed bug GH-16390 (dba_open() can segfault for "pathless" streams). DOM: Fixed bug GH-16316 (DOMXPath breaks when not initialized properly). Add missing hierarchy checks to replaceChild. Fixed bug GH-16336 (Attribute intern document mismanagement). Fixed bug GH-16338 (Null-dereference in ext/dom/node.c). Fixed bug GH-16473 (dom_import_simplexml stub is wrong). Fixed bug GH-16533 (Segfault when adding attribute to parent that is not an element). Fixed bug GH-16535 (UAF when using document as a child). Fixed bug GH-16593 (Assertion failure in DOM->replaceChild). Fixed bug GH-16595 (Another UAF in DOM -> cloneNode). EXIF: Fixed bug GH-16409 (Segfault in exif_thumbnail when not dealing with a real file). FFI: Fixed bug GH-16397 (Segmentation fault when comparing FFI object). Filter: Fixed bug GH-16523 (FILTER_FLAG_HOSTNAME accepts ending hyphen). FPM: Fixed bug GH-16628 (FPM logs are getting corrupted with this log statement). GD: Fixed bug GH-16334 (imageaffine overflow on matrix elements). Fixed bug GH-16427 (Unchecked libavif return values). Fixed bug GH-16559 (UBSan abort in ext/gd/libgd/gd_interpolation.c:1007). GMP: Fixed floating point exception bug with gmp_pow when using large exposant values. (David Carlier). Fixed bug GH-16411 (gmp_export() can cause overflow). Fixed bug GH-16501 (gmp_random_bits() can cause overflow). Fixed gmp_pow() overflow bug with large base/exponents. Fixed segfaults and other issues related to operator overloading with GMP objects. LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MBstring: Fixed bug GH-16361 (mb_substr overflow on start/length arguments). MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) Opcache: Fixed bug GH-16408 (Array to string conversion warning emitted in optimizer). OpenSSL: Fixed bug GH-16357 (openssl may modify member types of certificate arrays). Fixed bug GH-16433 (Large values for openssl_csr_sign() $days overflow). Fix various memory leaks on error conditions in openssl_x509_parse(). PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) PDO ODBC: Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). Phar: Fixed bug GH-16406 (Assertion failure in ext/phar/phar.c:2808). PHPDBG: Fixed bug GH-16174 (Empty string is an invalid expression for ev). Reflection: Fixed bug GH-16601 (Memory leak in Reflection constructors). Session: Fixed bug GH-16385 (Unexpected null returned by session_set_cookie_params). Fixed bug GH-16290 (overflow on cookie_lifetime ini value). SOAP: Fixed bug GH-16318 (Recursive array segfaults soap encoding). Fixed bug GH-16429 (Segmentation fault access null pointer in SoapClient). Sockets: Fixed bug with overflow socket_recvfrom $length argument. SPL: Fixed bug GH-16337 (Use-after-free in SplHeap). Fixed bug GH-16464 (Use-after-free in SplDoublyLinkedList::offsetSet()). Fixed bug GH-16479 (Use-after-free in SplObjectStorage::setInfo()). Fixed bug GH-16478 (Use-after-free in SplFixedArray::unset()). Fixed bug GH-16588 (UAF in Observer->serialize). Fix GH-16477 (Segmentation fault when calling __debugInfo() after failed SplFileObject::__constructor). Fixed bug GH-16589 (UAF in SplDoublyLinked->serialize()). Fixed bug GH-14687 (segfault on SplObjectIterator instance). Fixed bug GH-16604 (Memory leaks in SPL constructors). Fixed bug GH-16646 (UAF in ArrayObject::unset() and ArrayObject::exchangeArray()). Standard: Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with bail enabled). Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) SysVMsg: Fixed bug GH-16592 (msg_send() crashes when a type does not properly serialized). SysVShm: Fixed bug GH-16591 (Assertion error in shm_put_var). XMLReader: Fixed bug GH-16292 (Segmentation fault in ext/xmlreader/php_xmlreader.c). Zlib: Fixed bug GH-16326 (Memory management is broken for bad dictionaries.) (cmb) ++++ php8-fastcgi: - version update to 8.3.14 [bsc#1233644] [bsc#1233651] [bsc#1233703] [bsc#1233702] [bsc#1233705] CLI: Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server started through shebang). Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface). COM: Fixed out of bound writes to SafeArray data. Core: Fixed bug GH-16168 (php 8.1 and earlier crash immediately when compiled with Xcode 16 clang on macOS 15). Fixed bug GH-16371 (Assertion failure in Zend/zend_weakrefs.c:646). Fixed bug GH-16515 (Incorrect propagation of ZEND_ACC_RETURN_REFERENCE for call trampoline). Fixed bug GH-16509 (Incorrect line number in function redeclaration error). Fixed bug GH-16508 (Incorrect line number in inheritance errors of delayed early bound classes). Fixed bug GH-16648 (Use-after-free during array sorting). Curl: Fixed bug GH-16302 (CurlMultiHandle holds a reference to CurlHandle if curl_multi_add_handle fails). Date: Fixed bug GH-16454 (Unhandled INF in date_sunset() with tiny $utcOffset). Fixed bug GH-14732 (date_sun_info() fails for non-finite values). DBA: Fixed bug GH-16390 (dba_open() can segfault for "pathless" streams). DOM: Fixed bug GH-16316 (DOMXPath breaks when not initialized properly). Add missing hierarchy checks to replaceChild. Fixed bug GH-16336 (Attribute intern document mismanagement). Fixed bug GH-16338 (Null-dereference in ext/dom/node.c). Fixed bug GH-16473 (dom_import_simplexml stub is wrong). Fixed bug GH-16533 (Segfault when adding attribute to parent that is not an element). Fixed bug GH-16535 (UAF when using document as a child). Fixed bug GH-16593 (Assertion failure in DOM->replaceChild). Fixed bug GH-16595 (Another UAF in DOM -> cloneNode). EXIF: Fixed bug GH-16409 (Segfault in exif_thumbnail when not dealing with a real file). FFI: Fixed bug GH-16397 (Segmentation fault when comparing FFI object). Filter: Fixed bug GH-16523 (FILTER_FLAG_HOSTNAME accepts ending hyphen). FPM: Fixed bug GH-16628 (FPM logs are getting corrupted with this log statement). GD: Fixed bug GH-16334 (imageaffine overflow on matrix elements). Fixed bug GH-16427 (Unchecked libavif return values). Fixed bug GH-16559 (UBSan abort in ext/gd/libgd/gd_interpolation.c:1007). GMP: Fixed floating point exception bug with gmp_pow when using large exposant values. (David Carlier). Fixed bug GH-16411 (gmp_export() can cause overflow). Fixed bug GH-16501 (gmp_random_bits() can cause overflow). Fixed gmp_pow() overflow bug with large base/exponents. Fixed segfaults and other issues related to operator overloading with GMP objects. LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MBstring: Fixed bug GH-16361 (mb_substr overflow on start/length arguments). MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) Opcache: Fixed bug GH-16408 (Array to string conversion warning emitted in optimizer). OpenSSL: Fixed bug GH-16357 (openssl may modify member types of certificate arrays). Fixed bug GH-16433 (Large values for openssl_csr_sign() $days overflow). Fix various memory leaks on error conditions in openssl_x509_parse(). PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) PDO ODBC: Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). Phar: Fixed bug GH-16406 (Assertion failure in ext/phar/phar.c:2808). PHPDBG: Fixed bug GH-16174 (Empty string is an invalid expression for ev). Reflection: Fixed bug GH-16601 (Memory leak in Reflection constructors). Session: Fixed bug GH-16385 (Unexpected null returned by session_set_cookie_params). Fixed bug GH-16290 (overflow on cookie_lifetime ini value). SOAP: Fixed bug GH-16318 (Recursive array segfaults soap encoding). Fixed bug GH-16429 (Segmentation fault access null pointer in SoapClient). Sockets: Fixed bug with overflow socket_recvfrom $length argument. SPL: Fixed bug GH-16337 (Use-after-free in SplHeap). Fixed bug GH-16464 (Use-after-free in SplDoublyLinkedList::offsetSet()). Fixed bug GH-16479 (Use-after-free in SplObjectStorage::setInfo()). Fixed bug GH-16478 (Use-after-free in SplFixedArray::unset()). Fixed bug GH-16588 (UAF in Observer->serialize). Fix GH-16477 (Segmentation fault when calling __debugInfo() after failed SplFileObject::__constructor). Fixed bug GH-16589 (UAF in SplDoublyLinked->serialize()). Fixed bug GH-14687 (segfault on SplObjectIterator instance). Fixed bug GH-16604 (Memory leaks in SPL constructors). Fixed bug GH-16646 (UAF in ArrayObject::unset() and ArrayObject::exchangeArray()). Standard: Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with bail enabled). Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) SysVMsg: Fixed bug GH-16592 (msg_send() crashes when a type does not properly serialized). SysVShm: Fixed bug GH-16591 (Assertion error in shm_put_var). XMLReader: Fixed bug GH-16292 (Segmentation fault in ext/xmlreader/php_xmlreader.c). Zlib: Fixed bug GH-16326 (Memory management is broken for bad dictionaries.) (cmb) ++++ php8-fpm: - version update to 8.3.14 [bsc#1233644] [bsc#1233651] [bsc#1233703] [bsc#1233702] [bsc#1233705] CLI: Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server started through shebang). Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface). COM: Fixed out of bound writes to SafeArray data. Core: Fixed bug GH-16168 (php 8.1 and earlier crash immediately when compiled with Xcode 16 clang on macOS 15). Fixed bug GH-16371 (Assertion failure in Zend/zend_weakrefs.c:646). Fixed bug GH-16515 (Incorrect propagation of ZEND_ACC_RETURN_REFERENCE for call trampoline). Fixed bug GH-16509 (Incorrect line number in function redeclaration error). Fixed bug GH-16508 (Incorrect line number in inheritance errors of delayed early bound classes). Fixed bug GH-16648 (Use-after-free during array sorting). Curl: Fixed bug GH-16302 (CurlMultiHandle holds a reference to CurlHandle if curl_multi_add_handle fails). Date: Fixed bug GH-16454 (Unhandled INF in date_sunset() with tiny $utcOffset). Fixed bug GH-14732 (date_sun_info() fails for non-finite values). DBA: Fixed bug GH-16390 (dba_open() can segfault for "pathless" streams). DOM: Fixed bug GH-16316 (DOMXPath breaks when not initialized properly). Add missing hierarchy checks to replaceChild. Fixed bug GH-16336 (Attribute intern document mismanagement). Fixed bug GH-16338 (Null-dereference in ext/dom/node.c). Fixed bug GH-16473 (dom_import_simplexml stub is wrong). Fixed bug GH-16533 (Segfault when adding attribute to parent that is not an element). Fixed bug GH-16535 (UAF when using document as a child). Fixed bug GH-16593 (Assertion failure in DOM->replaceChild). Fixed bug GH-16595 (Another UAF in DOM -> cloneNode). EXIF: Fixed bug GH-16409 (Segfault in exif_thumbnail when not dealing with a real file). FFI: Fixed bug GH-16397 (Segmentation fault when comparing FFI object). Filter: Fixed bug GH-16523 (FILTER_FLAG_HOSTNAME accepts ending hyphen). FPM: Fixed bug GH-16628 (FPM logs are getting corrupted with this log statement). GD: Fixed bug GH-16334 (imageaffine overflow on matrix elements). Fixed bug GH-16427 (Unchecked libavif return values). Fixed bug GH-16559 (UBSan abort in ext/gd/libgd/gd_interpolation.c:1007). GMP: Fixed floating point exception bug with gmp_pow when using large exposant values. (David Carlier). Fixed bug GH-16411 (gmp_export() can cause overflow). Fixed bug GH-16501 (gmp_random_bits() can cause overflow). Fixed gmp_pow() overflow bug with large base/exponents. Fixed segfaults and other issues related to operator overloading with GMP objects. LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MBstring: Fixed bug GH-16361 (mb_substr overflow on start/length arguments). MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) Opcache: Fixed bug GH-16408 (Array to string conversion warning emitted in optimizer). OpenSSL: Fixed bug GH-16357 (openssl may modify member types of certificate arrays). Fixed bug GH-16433 (Large values for openssl_csr_sign() $days overflow). Fix various memory leaks on error conditions in openssl_x509_parse(). PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) PDO ODBC: Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). Phar: Fixed bug GH-16406 (Assertion failure in ext/phar/phar.c:2808). PHPDBG: Fixed bug GH-16174 (Empty string is an invalid expression for ev). Reflection: Fixed bug GH-16601 (Memory leak in Reflection constructors). Session: Fixed bug GH-16385 (Unexpected null returned by session_set_cookie_params). Fixed bug GH-16290 (overflow on cookie_lifetime ini value). SOAP: Fixed bug GH-16318 (Recursive array segfaults soap encoding). Fixed bug GH-16429 (Segmentation fault access null pointer in SoapClient). Sockets: Fixed bug with overflow socket_recvfrom $length argument. SPL: Fixed bug GH-16337 (Use-after-free in SplHeap). Fixed bug GH-16464 (Use-after-free in SplDoublyLinkedList::offsetSet()). Fixed bug GH-16479 (Use-after-free in SplObjectStorage::setInfo()). Fixed bug GH-16478 (Use-after-free in SplFixedArray::unset()). Fixed bug GH-16588 (UAF in Observer->serialize). Fix GH-16477 (Segmentation fault when calling __debugInfo() after failed SplFileObject::__constructor). Fixed bug GH-16589 (UAF in SplDoublyLinked->serialize()). Fixed bug GH-14687 (segfault on SplObjectIterator instance). Fixed bug GH-16604 (Memory leaks in SPL constructors). Fixed bug GH-16646 (UAF in ArrayObject::unset() and ArrayObject::exchangeArray()). Standard: Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with bail enabled). Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) SysVMsg: Fixed bug GH-16592 (msg_send() crashes when a type does not properly serialized). SysVShm: Fixed bug GH-16591 (Assertion error in shm_put_var). XMLReader: Fixed bug GH-16292 (Segmentation fault in ext/xmlreader/php_xmlreader.c). Zlib: Fixed bug GH-16326 (Memory management is broken for bad dictionaries.) (cmb) ++++ php8-test: - version update to 8.3.14 [bsc#1233644] [bsc#1233651] [bsc#1233703] [bsc#1233702] [bsc#1233705] CLI: Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server started through shebang). Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface). COM: Fixed out of bound writes to SafeArray data. Core: Fixed bug GH-16168 (php 8.1 and earlier crash immediately when compiled with Xcode 16 clang on macOS 15). Fixed bug GH-16371 (Assertion failure in Zend/zend_weakrefs.c:646). Fixed bug GH-16515 (Incorrect propagation of ZEND_ACC_RETURN_REFERENCE for call trampoline). Fixed bug GH-16509 (Incorrect line number in function redeclaration error). Fixed bug GH-16508 (Incorrect line number in inheritance errors of delayed early bound classes). Fixed bug GH-16648 (Use-after-free during array sorting). Curl: Fixed bug GH-16302 (CurlMultiHandle holds a reference to CurlHandle if curl_multi_add_handle fails). Date: Fixed bug GH-16454 (Unhandled INF in date_sunset() with tiny $utcOffset). Fixed bug GH-14732 (date_sun_info() fails for non-finite values). DBA: Fixed bug GH-16390 (dba_open() can segfault for "pathless" streams). DOM: Fixed bug GH-16316 (DOMXPath breaks when not initialized properly). Add missing hierarchy checks to replaceChild. Fixed bug GH-16336 (Attribute intern document mismanagement). Fixed bug GH-16338 (Null-dereference in ext/dom/node.c). Fixed bug GH-16473 (dom_import_simplexml stub is wrong). Fixed bug GH-16533 (Segfault when adding attribute to parent that is not an element). Fixed bug GH-16535 (UAF when using document as a child). Fixed bug GH-16593 (Assertion failure in DOM->replaceChild). Fixed bug GH-16595 (Another UAF in DOM -> cloneNode). EXIF: Fixed bug GH-16409 (Segfault in exif_thumbnail when not dealing with a real file). FFI: Fixed bug GH-16397 (Segmentation fault when comparing FFI object). Filter: Fixed bug GH-16523 (FILTER_FLAG_HOSTNAME accepts ending hyphen). FPM: Fixed bug GH-16628 (FPM logs are getting corrupted with this log statement). GD: Fixed bug GH-16334 (imageaffine overflow on matrix elements). Fixed bug GH-16427 (Unchecked libavif return values). Fixed bug GH-16559 (UBSan abort in ext/gd/libgd/gd_interpolation.c:1007). GMP: Fixed floating point exception bug with gmp_pow when using large exposant values. (David Carlier). Fixed bug GH-16411 (gmp_export() can cause overflow). Fixed bug GH-16501 (gmp_random_bits() can cause overflow). Fixed gmp_pow() overflow bug with large base/exponents. Fixed segfaults and other issues related to operator overloading with GMP objects. LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MBstring: Fixed bug GH-16361 (mb_substr overflow on start/length arguments). MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) Opcache: Fixed bug GH-16408 (Array to string conversion warning emitted in optimizer). OpenSSL: Fixed bug GH-16357 (openssl may modify member types of certificate arrays). Fixed bug GH-16433 (Large values for openssl_csr_sign() $days overflow). Fix various memory leaks on error conditions in openssl_x509_parse(). PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) PDO ODBC: Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). Phar: Fixed bug GH-16406 (Assertion failure in ext/phar/phar.c:2808). PHPDBG: Fixed bug GH-16174 (Empty string is an invalid expression for ev). Reflection: Fixed bug GH-16601 (Memory leak in Reflection constructors). Session: Fixed bug GH-16385 (Unexpected null returned by session_set_cookie_params). Fixed bug GH-16290 (overflow on cookie_lifetime ini value). SOAP: Fixed bug GH-16318 (Recursive array segfaults soap encoding). Fixed bug GH-16429 (Segmentation fault access null pointer in SoapClient). Sockets: Fixed bug with overflow socket_recvfrom $length argument. SPL: Fixed bug GH-16337 (Use-after-free in SplHeap). Fixed bug GH-16464 (Use-after-free in SplDoublyLinkedList::offsetSet()). Fixed bug GH-16479 (Use-after-free in SplObjectStorage::setInfo()). Fixed bug GH-16478 (Use-after-free in SplFixedArray::unset()). Fixed bug GH-16588 (UAF in Observer->serialize). Fix GH-16477 (Segmentation fault when calling __debugInfo() after failed SplFileObject::__constructor). Fixed bug GH-16589 (UAF in SplDoublyLinked->serialize()). Fixed bug GH-14687 (segfault on SplObjectIterator instance). Fixed bug GH-16604 (Memory leaks in SPL constructors). Fixed bug GH-16646 (UAF in ArrayObject::unset() and ArrayObject::exchangeArray()). Standard: Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with bail enabled). Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) SysVMsg: Fixed bug GH-16592 (msg_send() crashes when a type does not properly serialized). SysVShm: Fixed bug GH-16591 (Assertion error in shm_put_var). XMLReader: Fixed bug GH-16292 (Segmentation fault in ext/xmlreader/php_xmlreader.c). Zlib: Fixed bug GH-16326 (Memory management is broken for bad dictionaries.) (cmb) ++++ ptyxis: - Update to version 47.5: + Bump the FD soft limit to the max allowed, now that there are more FDs open for Vulkan shader caches. + Fix monitoring of podman for changes which fixes auto-discovery of quadlets in systemd --user services. + Fix disposal of tabs without a foreground process upon closing a Ptyxis window. + Robustness fixes in icon discover for tabs with containers + Robustness fixes in checking for active container + Fix scrolling within close-tabs dialog ++++ pyenv: - Update 2.4.19 * Add CPython 3.14.0a2 by @nedbat in #3110 * Add quick start section and gif demo to accompany it. by @madhu-GG in #3044 - Update 2.4.18 * Add miniforge3-24.9.2-0 by @goerz in #3106 ++++ python-peppercorn: - require legacy-cgi for python 3.13 support ++++ python-Shapely: - avoid stale "requires:" requirement on shapely packages ++++ python-Telethon: - update to 1.38.0: * Formatting entities misbehaved with albums. * Sending a Message object with a file did not use the new file. - update to 1.37.0: * Support for CDN downloads should be back. Telethon still prefers no CDN by default. * FloodWaitPremium should now be handled like any other floodwaits. * Fixed edge-case when using get_messages(..., reverse=True). * ConnectionError when using proxies should be raised properly. - update to 1.36.0: * Certain updates, such as :tl:`UpdateBotStopped`, should now be processed reliably. - update to 1.35.0: * "Custom secret support" should work with TcpMTProxy. * Some type hints should now be more accurate. * Session path couldn't be a pathlib.Path or None. * Python versions older than 3.9 should now be supported again. * Readthedocs should hopefully build the v1 documentation again. - update to 1.34.0: * reply_to_chat and reply_to_sender are now in Message. * parse_mode with a custom instance containing both parse and unparse should now work. * Parsing and unparsing message entities should now behave better in certain corner-cases. - update to 1.33.0: * webbrowser is now imported conditionally, to support niche environments. Library should now retry on the suddenly-common TimedOutError. - update to 1.32.0: * new and changed raw API methods - update to 1.31.0: * dropped imghdr support to prepare for python 3.12 ++++ python-astunparse: - skip for python 3.13 ++++ python-azure-mgmt-devopsinfrastructure: - New upstream release + Version 1.0.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Adjust upstream source name in spec file - Remove temporary version override - Update Requires from setup.py ++++ python-azure-mgmt-healthdataaiservices: - New upstream release + Version 1.0.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Adjust upstream source name in spec file - Remove temporary version override ++++ python-decopatch: - new package python-decopatch, required for tests in python-click-extra ++++ python-distributed: - Skip python313 -- gh#dask/dask#11457 ++++ python-fastapi: - update to 0.115.5: * Update internal checks to support Pydantic 2.10. * Fix error in `docs/en/docs/tutorial/middleware.md`. - update to 0.115.4: * Update logic to import and check `python-multipart` for compatibility with newer version. - update to 0.115.3: * Upgrade Starlette to `>=0.40.0,<0.42.0`. * Fix broken link in docs. - drop allow-new-starlette.patch (obsolete) ++++ python-hammett: - drop optional astunparse dependency for python 3.13 ++++ python-ipdb: - Skip python313: not supported gh#gotcha/ipdb#279 ++++ python-jdatetime: - add py313-support.patch to fix tests with python 3.13 ++++ python-lxml_html_clean: - Update to 0.4.1 * Bugs fixed - Removed superfluous debug prints. - Changes from 0.4.0 * Bugs fixed - The Cleaner() now scans for hidden JavaScript code embedded within CSS comments. In certain contexts, such as within or tags,