Packages changed: inxi (3.3.32 -> 3.3.33) java-21-openjdk kdsoap libidn2 (2.3.4 -> 2.3.7) libjxl (0.9.0 -> 0.9.2) libjxl-gtk (0.9.0 -> 0.9.2) libmemcached openssl-3 permissions (1699_20230602 -> 1699_20240206) qt6-wayland rebootmgr (2.1 -> 2.2) spectacle systemd === Details === ==== inxi ==== Version update (3.3.32 -> 3.3.33) - Updated to version 3.3.33: + /usr/share/doc/packages/inxi/inxi.changelog. ==== java-21-openjdk ==== Subpackages: java-21-openjdk-headless - Recommend mozilla-nss-sysinit in order to have available the /etc/pki/nssdb directory and its content, required in fips mode (bsc#1219662) - Do not install our crafted nss.fips.cfg file, but use the one that the build produces with our fips.patch applied - Removed patch: * nss-security-provider.patch + this DISABLED nss security provider was not used for years and is largely rendered obsolete by the NSS-FIPS provider - Modified patch: * fips.patch + adapt to the removal of the nss security provider ==== kdsoap ==== - Fix package docs - Fix build to handle changes in (open)SUSE specific cmake macros, no user visible changes ==== libidn2 ==== Version update (2.3.4 -> 2.3.7) Subpackages: libidn2-0 libidn2-lang - update to 2.3.7: * Un-deprecate idn2_to_ascii_4i and make it NUL terminate output * Export punycode APIs * Developer visible code maintenance ==== libjxl ==== Version update (0.9.0 -> 0.9.2) - Update to release 0.9.2 * Fixed some unspecified bugs in the gdk-pixbuf plugin ==== libjxl-gtk ==== Version update (0.9.0 -> 0.9.2) - Update to release 0.9.2 * Fixed some unspecified bugs in the gdk-pixbuf plugin ==== libmemcached ==== Subpackages: libmemcached11 libmemcachedutil2 - explicitly set docdir to converge cmake doc macro change between leap and tumbleweed ==== openssl-3 ==== Subpackages: libopenssl3 - Add migration script to move old files (bsc#1219562) /etc/ssl/engines.d/* -> /etc/ssl/engines1.1.d.rpmsave /etc/ssl/engdef.d/* -> /etc/ssl/engdef1.1.d.rpmsave They will be later restored by openssl-1_1 package to engines1.1.d and engdef1.1.d - Security fix: [bsc#1219243, CVE-2024-0727] * Add NULL checks where ContentInfo data can be NULL * Add openssl-CVE-2024-0727.patch ==== permissions ==== Version update (1699_20230602 -> 1699_20240206) Subpackages: chkstat permissions-config - Drop superfluous mkdir /usr/share/permissions/permissions.d This is now created by the Makefile. See also commit 5900bc1ffe6275298ded3c96dee03a5c98e4db1c - Update to version 20240206: * Whitelisting libgtop_server2 (bsc#1218921) * Removing bogus whitespaces * chkstat: harmonize and transform to a more compact coding and doc style * gitignore: also ignore hidden ctags * build: Create /usr/share/permissions/permissions.d for packagers * profiles: drop /usr/sbin/lockdev which is no longer packaged in Factory * profiles: drop /etc/ftpusers which is no longer shipped in netcfg ==== qt6-wayland ==== Subpackages: libQt6WaylandClient6 libQt6WaylandCompositor6 libQt6WaylandEglClientHwIntegration6 libQt6WaylandEglCompositorHwIntegration6 libQt6WlShellIntegration6 - Add patch to fix a frequent crash (kde#479302) * client-avoid-creating-decorations-in-the-render-thread.patch ==== rebootmgr ==== Version update (2.1 -> 2.2) - Update to version 2.2 - Make sure /run/reboot-needed get's deleted after a soft-reboot ==== spectacle ==== Subpackages: spectacle-lang - Drop meanwhile unneeeded BuildReqs on kColorPicker and kImageAnnotator ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-boot systemd-coredump systemd-doc systemd-lang udev - Drop python3-pefile dependency from the experimental package. MicroOs is fond of the experimental stuff but OTOH it doesn't ship python3. Let's drop the dependency for now, users of ukify are invited to install python3-pe manually. - Move systemd-reboot.service from udev to the main package as this service is useful in containers.