Packages changed: MicroOS-release (20241017 -> 20241018) cups cups-filters glib2 (2.82.1 -> 2.82.2) kinfocenter6 kwin6 (6.2.1 -> 6.2.1.1) microos-tools (4.0 -> 4.0+git1) oath-toolkit patterns-base plasma6-workspace (6.2.1 -> 6.2.1.1) polkit-default-privs (1550+20240708.7e0e3f4 -> 1550+20241017.007e12d) python-requests qemu webkit2gtk3 (2.45.92 -> 2.46.1) webkit2gtk4 (2.45.92 -> 2.46.1) === Details === ==== MicroOS-release ==== Version update (20241017 -> 20241018) Subpackages: MicroOS-release-appliance MicroOS-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== cups ==== Subpackages: cups-client cups-config libcups2 libcupsimage2 - Drop rcFOO symlinks for CODE16 (PED-266). ==== cups-filters ==== - Drop rcFOO symlinks for CODE16 (PED-266). ==== glib2 ==== Version update (2.82.1 -> 2.82.2) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - Update to version 2.82.2: + Bugs fixed: - glib/gvariant: incorrect use of G_ANALYZER_ANALYZING - Multicast cannot be joined on Mac OS on non-default interface - glib/gvariant: Fix check for G_ANALYZER_ANALYZING - macos: Fix URL launcher - gopenuriportal: Fix two memory leaks - gio: Fix multicast iface selection on macOS - gdatainputstream: Fix length return value on UTF-8 validation failure + Updated translations. ==== kinfocenter6 ==== - Add patches to fix the memory info page by switching from pkexec to KAuth: * 0001-kcms-pull-dmidecode-helper-into-a-separate-dir.patch * 0002-refactor-dmidecode-helper-support-multiple-methods.patch * 0003-kcms-memory-use-KAuth-dmidecode-helper.patch ==== kwin6 ==== Version update (6.2.1 -> 6.2.1.1) Subpackages: libkwin6 - Update to 6.2.1.1: * New bugfix release - Changes since 6.2.1: * backends/drm: don't skip colorops when matching the pipeline (kde#494611) * backends/drm: transform damage to match the framebuffer (kde#494837) * Set WAYLAND_DISPLAY before starting wayland server * scene/itemrenderer_opengl: use the color pipeline to check if color transformations are needed (kde#493295) * temporarily revert version number for respin * backends/drm: don't scale infiniteRegion() * backends/drm: fix crash with multi gpu * ci: Require tests to pass only on Linux * Report correct input timestamps for popup keyboard events * backends/drm: disable hdr if we removed the capabilities for it (kde#494706) * wayland/color management: ignore obviously wrong HDR metadata (kde#494502) * update version for new release ==== microos-tools ==== Version update (4.0 -> 4.0+git1) Subpackages: selinux-autorelabel - Update to version 4.0+git1: * Regenerate initrd after selinux-autorelabel installation ==== oath-toolkit ==== Subpackages: liboath0 libpskc0 oath-toolkit-xml pam_oath - Update 0001-usersfile-fix-potential-security-issues-in-PAM-modul.patch with bsc#1231699 improvements for security fix CVE-2024-47191 ==== patterns-base ==== Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11 - Add "Requires: selinux-policy-base" to selinux pattern so that selinux-policy-targeted will be installed on systems that disable "Recommends" (bsc#1231720) ==== plasma6-workspace ==== Version update (6.2.1 -> 6.2.1.1) Subpackages: plasma6-session plasma6-workspace-libs - Update to 6.2.1.1: * New bugfix release - Changes since 6.2.1: * temporarily revert version number for respin * startkde: Specify --type=method_call to correctly notify ksplash * applets/devicenotifier: reduce string allocation * klipper: correct boolean in desktop file * PanelView: Fix popups position when NoBackground hint is set (kde#494193) * update version for new release ==== polkit-default-privs ==== Version update (1550+20240708.7e0e3f4 -> 1550+20241017.007e12d) - Update to version 1550+20241017.007e12d: * profiles: whitelist additional kinfocenter action (bsc#1231659) * Update rule for kpmcore (bsc#1203315) ==== python-requests ==== - Add patch inject-default-ca-bundles.patch: * Inject the default CA bundles if they are not specified. (bsc#1226321, bsc#1231500) ==== qemu ==== - Bug and CVE fixes: * softmmu/physmem: fix memory leak in dirty_memory_extend() * softmmu: Support concurrent bounce buffers (bsc#1230915, CVE-2024-8612) * accel/kvm: check for KVM_CAP_READONLY_MEM on VM (bsc#1231519) - Fix bsc#1231519 and bsc#1230140: * accel/kvm: check for KVM_CAP_READONLY_MEM on VM * target/ppc: Fix lxvx/stxvx facility check ==== webkit2gtk3 ==== Version update (2.45.92 -> 2.46.1) Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 webkit2gtk-4_1-injected-bundles - Add bug281492.patch: fix crash in AccessibilityAtspi::textAttributes. - Add bug281495.patch: fix crash in ProcessLauncher socket monitor callback. - Update to version 2.46.1: + Fix login QR code not shown in WhatsApp web. + Disable PSON by default again in GTK 3 API versions. + Disable DMABuf video sink by default to prevent file descriptor leaks. + Fix the build with GCC 13. + Fix several crashes and rendering issues. - Update to version 2.46.0 (boo#1231039): + Use Skia instead of cairo for 2D rendering and enable GPU rendering by default. + Enable offscreen canvas by default. + Add support for system tracing with Sysprof. + Implement printing using the Print portal. + Add new API to load settings from a config file. + Add a new setting to enable or disable the 2D canvas acceleration (enabled by default). + Undeprecate console messages API and make it available in 6.0 API. + Security fixes: CVE-2024-40866, CVE-2024-44187. ==== webkit2gtk4 ==== Version update (2.45.92 -> 2.46.1) Subpackages: libjavascriptcoregtk-6_0-1 libwebkitgtk-6_0-4 webkitgtk-6_0-injected-bundles - Add bug281492.patch: fix crash in AccessibilityAtspi::textAttributes. - Add bug281495.patch: fix crash in ProcessLauncher socket monitor callback. - Update to version 2.46.1: + Fix login QR code not shown in WhatsApp web. + Disable PSON by default again in GTK 3 API versions. + Disable DMABuf video sink by default to prevent file descriptor leaks. + Fix the build with GCC 13. + Fix several crashes and rendering issues. - Update to version 2.46.0 (boo#1231039): + Use Skia instead of cairo for 2D rendering and enable GPU rendering by default. + Enable offscreen canvas by default. + Add support for system tracing with Sysprof. + Implement printing using the Print portal. + Add new API to load settings from a config file. + Add a new setting to enable or disable the 2D canvas acceleration (enabled by default). + Undeprecate console messages API and make it available in 6.0 API. + Security fixes: CVE-2024-40866, CVE-2024-44187.