Packages changed: capstone (5.0.5 -> 5.0.6) discount (3.0.0a -> 3.0.0d) gimp grub2 kernel-source (6.14.5 -> 6.14.6) less (668 -> 676) libguestfs (1.55.8 -> 1.55.10) m4 (1.4.18 -> 1.4.20) ncurses (6.5.20250503 -> 6.5.20250510) openSUSE-release (20250512 -> 20250513) python-Pillow (11.1.0 -> 11.2.1) python-PySocks python-cryptography (44.0.2 -> 44.0.3) python-gevent python-greenlet (3.2.1 -> 3.2.2) python311 python311-core python313 python313-core === Details === ==== capstone ==== Version update (5.0.5 -> 5.0.6) - Use %ldconfig_scriptlets - Update to version 5.0.6: * Add little endian support for TMS320c64x * Full changelog at https://github.com/capstone-engine/capstone/compare/5.0.5...5.0.6 ==== discount ==== Version update (3.0.0a -> 3.0.0d) - Update to version 3.0.0d: * Add the new runtime flag ALT_AS_TITLE; if an image has no title, use the alt text as the title. * Fix some brokenness in markdown extra footnotes that made adjacent footnotes not render properly. * Fix a handful of places which didn't guard against underflows or null pointers; add test cases for them in crash.t. * Update the callback creation functions to use the proper arguments. * Left an argument out of main.c's memory deallocator callback. * Fix a bug in tab expansion. * Replace an include of strings.h with string.h. * Allow multiple classes for >% blocks. * Add the --container config option so a ldconfig won't be installed into librarian.sh. - Re-base discount-disable_ldconfig.patch for update. - make: Use multiple threads for tests and install. ==== gimp ==== Subpackages: gimp-plugin-aa gimp-plugin-python3 libgimp-3_0-0 libgimpui-3_0-0 - add gimp-3.0.2_de_shortcut_clash.patch to fix shortcuts of JPEG export ==== grub2 ==== Subpackages: grub2-common grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-efi-bls grub2-x86_64-xen - Fix CVE-2025-4382: TPM auto-decryption data exposure (bsc#1242971) * 0001-kern-rescue_reader-Block-the-rescue-mode-until-the-C.patch * 0002-commands-search-Introduce-the-cryptodisk-only-argume.patch * 0003-disk-diskfilter-Introduce-the-cryptocheck-command.patch * 0004-commands-search-Add-the-diskfilter-support.patch * 0005-docs-Document-available-crypto-disks-checks.patch * 0006-disk-cryptodisk-Add-the-erase-secrets-function.patch * 0007-disk-cryptodisk-Wipe-the-passphrase-from-memory.patch * 0008-cryptocheck-Add-quiet-option.patch - patch rebased * 0001-Improve-TPM-key-protection-on-boot-interruptions.patch * 0004-Key-revocation-on-out-of-bound-file-access.patch - patch refrehed * 0001-Fix-PowerPC-CAS-reboot-to-evaluate-menu-context.patch * 0002-Requiring-authentication-after-tpm-unlock-for-CLI-ac.patch ==== kernel-source ==== Version update (6.14.5 -> 6.14.6) - arm64: proton-pack: Add new CPUs 'k' values for branch mitigation (bsc#1242778). - arm64: bpf: Only mitigate cBPF programs loaded by unprivileged users (bsc#1242778). - arm64: bpf: Add BHB mitigation to the epilogue for cBPF programs (bsc#1242778). - arm64: proton-pack: Expose whether the branchy loop k value (bsc#1242778). - arm64: proton-pack: Expose whether the platform is mitigated by firmware (bsc#1242778). - arm64: insn: Add support for encoding DSB (bsc#1242778). - commit ad69173 - selftest/x86/bugs: Add selftests for ITS (bsc#1242006 CVE-2024-28956). - x86/its: Use dynamic thunks for indirect branches (bsc#1242006 CVE-2024-28956). - x86/ibt: Keep IBT disabled during alternative patching (bsc#1242006 CVE-2024-28956). - x86/its: Align RETs in BHB clear sequence to avoid thunking (bsc#1242006 CVE-2024-28956). - x86/its: Add support for RSB stuffing mitigation (bsc#1242006 CVE-2024-28956). - x86/its: Add "vmexit" option to skip mitigation on some CPUs (bsc#1242006 CVE-2024-28956). - x86/its: Enable Indirect Target Selection mitigation (bsc#1242006 CVE-2024-28956). - x86/its: Add support for ITS-safe return thunk (bsc#1242006 CVE-2024-28956). - x86/its: Add support for ITS-safe indirect thunk (bsc#1242006 CVE-2024-28956). - Update config files. - x86/its: Enumerate Indirect Target Selection (ITS) bug (bsc#1242006 CVE-2024-28956). - Documentation: x86/bugs/its: Add ITS documentation (bsc#1242006 CVE-2024-28956). - x86/bhi: Do not set BHI_DIS_S in 32-bit mode (bsc#1242006 CVE-2024-28956). - x86/bpf: Add IBHF call at end of classic BPF (bsc#1242006 CVE-2024-28956). - x86/bpf: Call branch history clearing sequence on exit (bsc#1242006 CVE-2024-28956). - commit 820ad28 - Revert "Disable patches.kernel.org/6.14.2-607-e1000e-change-k1-configuration-on-MTP-and-late.patch" This reverts commit 607aeebbcf481a6b191013a1846c1eb795213e09. It turns out it is some special HW in the report. Let us be in sync with upstream. - commit c36a0e7 - check-for-config-changes: Fix flag name typo - commit 1046b16 - accel/ivpu: Correct mutex unlock order in job submission (git-fixes). - sch_htb: make htb_deactivate() idempotent (git-fixes). - commit 7de953d - Linux 6.14.6 (bsc#1012628). - Revert "rndis_host: Flag RNDIS modems as WWAN devices" (bsc#1012628). - ALSA: hda/realtek - Add more HP laptops which need mute led fixup (bsc#1012628). - ALSA: usb-audio: Add retry on -EPROTO from usb_set_interface() (bsc#1012628). - ALSA: usb-audio: Add second USB ID for Jabra Evolve 65 headset (bsc#1012628). - ASoC: renesas: rz-ssi: Use NOIRQ_SYSTEM_SLEEP_PM_OPS() (bsc#1012628). - btrfs: adjust subpage bit start based on sectorsize (bsc#1012628). - btrfs: fix COW handling in run_delalloc_nocow() (bsc#1012628). - cpufreq: intel_pstate: Unchecked MSR aceess in legacy mode (bsc#1012628). - drm/fdinfo: Protect against driver unbind (bsc#1012628). - drm/nouveau: Fix WARN_ON in nouveau_fence_context_kill() (bsc#1012628). - EDAC/altera: Test the correct error reg offset (bsc#1012628). - EDAC/altera: Set DDR and SDMMC interrupt mask before registration (bsc#1012628). - i2c: imx-lpi2c: Fix clock count when probe defers (bsc#1012628). - arm64: errata: Add missing sentinels to Spectre-BHB MIDR arrays (bsc#1012628). - parisc: Fix double SIGFPE crash (bsc#1012628). - pinctrl: airoha: fix wrong PHY LED mapping and PHY2 LED defines (bsc#1012628). - perf/x86/intel: Only check the group flag for X86 leader (bsc#1012628). - perf/x86/intel: KVM: Mask PEBS_ENABLE loaded for guest with vCPU's value (bsc#1012628). - amd-xgbe: Fix to ensure dependent features are toggled with RX checksum offload (bsc#1012628). - irqchip/qcom-mpm: Prevent crash when trying to handle non-wake GPIOs (bsc#1012628). - mm/memblock: pass size instead of end to memblock_set_node() (bsc#1012628). - mm/memblock: repeat setting reserved region nid if array is doubled (bsc#1012628). - mmc: renesas_sdhi: Fix error handling in renesas_sdhi_probe (bsc#1012628). - spi: tegra114: Don't fail set_cs_timing when delays are zero (bsc#1012628). - tracing: Do not take trace_event_sem in print_event_fields() (bsc#1012628). ... changelog too long, skipping 261 lines ... - commit 2544d32 ==== less ==== Version update (668 -> 676) - Update to 676 * Treat -r in LESS environment variable as -R. * Add ESC-j and ESC-k commands (github #560). * Add --no-paste option (github #523). * Add --no-edit-warn option (github #513). * Add --form-feed option (github #496). * Add ESC-b command (github #615). * Make TAB complete option name in -- command (github #531). * Update the file size on an attempt to go past end of file. * Make -R able to pass through any OSC escape sequences, not just OSC 8 (github #504). * Setting LESS_IS_MORE=0 now disables "more" compatibility even if invoked via a file link named "more" (github #500). * Pass through escape sequences in prompts even if -R is not set. * Add LESS_SHELL_LINES to support shell prompts which use more than one line (github #514). * Add LESSANSIOSCALLOW to define OSC types which may be passed through. * Add LESSANSIOSCCHARS to define non-standard OSC intro chars. * Add LESS_SIGUSR1 to define user signal handler (github #582). * Add mouse and mouse6 commands to lesskey (github #569). * Improve behavior of ^O^N and ^O^P commands. * Fix unexpected behavior when entering a partial command followed by a valid command (github #543). * Fix bug when coloring prompt string with SGR sequences (github #516). * Fix bug when searching for text near an invalid UTF-8 sequence (github #542). * Fix display bug when file contains ESC followed by NUL (github #550). * Fix bug when using +:n +:p +:x or +:d on the command line (github #552). * Fix bug with --no-number-headers when header is not at start of file (github #566). * Fix bug where lesstest fails if window is resized (github [#570]). * Fix bug using "configure --with-secure=no" (github #584). * Fix bug using multibyte command chars (github #595). * Fix auto_wrap setting on Windows (github #497). * Fix two bugs using ^S search modifier (github #605). * Fix bug searching for UTF-8 strings with the PCRE2 library (github #610). * Fix bug highlighting OSC 8 links when opening a new file. - Remove upstreamed reproducible.patch ==== libguestfs ==== Version update (1.55.8 -> 1.55.10) Subpackages: libguestfs-appliance libguestfs-winsupport libguestfs-xfs libguestfs0 - Use FUSE3 starting with suse_version 1600 (aka CODE16): Release CODE16 from the beginning without relying on FUSE 2. - Do not add the patch conditionally to the .src.rpm, but only apply the patch conditionally: allows to reuse src.rpm across codestreams. - bsc#1242082 - libguestfs: migration to fuse 3 and deprecation of fuse (1) use-fuse3-for-build.patch - Update to version 1.55.10 (jsc#PED-8910) * mltools: decouple and simplify osinfo device support checks * mlcustomize: disable `--inject-virtio-win osinfo` * mltools: Fix de-oUnit-ized tests * mltools: Unreference various objects * Revert "mltools: Unreference various objects" * generator: Implement struct FDevice type * mltools: Fix memory leak in OCaml binding of libosinfo * mlstdutils: Implement String.implode * daemon: Rewrite {pvs,vgs,lvs}-full APIs in OCaml * daemon: inspect: Resolve Ubuntu 22+ /dev/disk/by-id/dm-uuid-LVM-... in fstab * Various build improvements * daemon/fstrim.c: Issue sync_disks after fstri ==== m4 ==== Version update (1.4.18 -> 1.4.20) - Update to 1.4.20 * Fix a bug in the `eval' builtin where it does not suppress warnings about division by zero that occurs within a more complex expression on the right hand side of || or && * The `syscmd' and `esyscmd' builtins no longer mishandle a command line starting with `-' or `+' * Fix regression introduced in 1.4.19 where trace output (such as with `debugmode(t)') could read invalid memory when tracing a series of pushed macros that are popped during argument collection. * Fix regression introduced in 1.4.19 where the `format' builtin inadvertently took on locale-dependent parsing and output of floating point numbers as a side-effect of introducing message translations. * Fix regression introduced in 1.4.11 where the experimental `changeword' builtin could cause a crash if given a regex that does not match all one-byte prefixes of valid longer matches. As a reminder, `changeword' is not recommended for production use, and will likely not be present in the next major version release. * * Update to comply with newer C standards, and inherit portability improvements from gnulib. - Update to 1.4.19 * * A number of portability improvements inherited from gnulib, including the ability to perform stack overflow detection on more platforms without linking to GNU libsigsegv. * * The symbol hash table now defaults to 65537 buckets instead of 509, as modern systems have enough memory to benefit from fewer hash collisions by default. * * Introduce the use of gettext, with the immediate benefit of nicer UTF-8 author names. - Disable profilied built as it lead to segmentation faults in the test suite (test-free). - Drop gnulib-libio.patch as a similar change is part of upstream. - Drop gnulib-c-stack.patch as patched code got removed upstream. ==== ncurses ==== Version update (6.5.20250503 -> 6.5.20250510) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20250510 + add rv/xr codes for domterm, mintty, mlterm -TD + add xr code for putty -TD + update teraterm to 5.0 -TD + add rlogin-color -TD ==== openSUSE-release ==== Version update (20250512 -> 20250513) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== python-Pillow ==== Version update (11.1.0 -> 11.2.1) - Update to 11.2.1 * Moved get_child_images() to ImageFile #8689 [@radarhere] * Add 11.2.1 release notes #8885 [@radarhere] * Added avif to config settings #8875 [@radarhere] * Added release notes for #8330 #8853 [@radarhere] * Added release notes for #8781 and #8837 #8843 [@radarhere] * Added media_white_point to ImageCms documentation #8829 [@radarhere] * Removed FIXME #8825 [@radarhere] * Updated comment #8822 [@radarhere] * Added release notes for #8807 #8824 [@radarhere] * DXT3 images are read in RGBA mode #8817 [@radarhere] * JPEG comments are from the COM marker #8788 [@radarhere] * Update Sphinx to 8.2 to remove nitpick ignore #8763 [@radarhere] * Updated AffineTransform docstring to mention it uses the inverse matrix #8735 [@radarhere] * Added MozJPEG documentation #8699 [@radarhere] * Added Sphinx configuration key #8691 [@radarhere] * Updated macOS tested Pillow versions #8654 [@radarhere] * Updated xz to 5.8.1 #8868 [@radarhere] * Updated harfbuzz to 11.0.1 #8870 [@radarhere] * Update scientific-python/upload-nightly-action action to v0.6.2 #8865 [@renovate[bot]] * Updated xz to 5.8.0 in macOS and Linux wheels, but not on manylinux2014 #8836 [@radarhere] * Update dependency cibuildwheel to v2.23.2 #8832 [@renovate[bot]] * Updated harfbuzz to 11.0.0 #8830 [@radarhere] * Update dependency cibuildwheel to v2.23.1 #8818 [@renovate[bot]] * Updated Ghostscript to 10.5.0 #8814 [@radarhere] * Updated libtiff to 4.7.0 #8812 [@radarhere] * [pre-commit.ci] pre-commit autoupdate #8795 [@pre-commit-ci[bot]] * Updated harfbuzz to 10.4.0 #8770 [@radarhere] * Update dependency mypy to v1.15.0 #8791 [@renovate[bot]] * Updated libpng to 1.6.47 #8764 [@radarhere] * Updated lcms2 to 2.17 #8742 [@radarhere] * Update dependency cibuildwheel to v2.23.0 #8785 [@renovate[bot]] * Updated zlib-ng to 2.2.4 #8745 [@radarhere] * Updated libimagequant to 4.3.4 on Windows #8744 [@radarhere] * [pre-commit.ci] pre-commit autoupdate #8729 [@pre-commit-ci[bot]] * Updated harfbuzz to 10.2.0 #8688 [@radarhere] * Updated xz to 5.6.4 #8711 [@radarhere] * Updated libpng to 1.6.46 #8712 [@radarhere] * Updated libimagequant to 4.3.4 #8710 [@radarhere] * Updated libpng to 1.6.45 #8670 [@radarhere] * Update cygwin/cygwin-install-action action to v5 #8675 [@renovate[bot]] * [pre-commit.ci] pre-commit autoupdate #8665 [@pre-commit-ci[bot]] * Updated freetype to 2.13.3 in macOS and Linux wheels #8653 [@radarhere] * Upgrade zlib-ng to 2.2.3 #8656 [@hugovk] * Fixed unclosed file warning #8847 [@radarhere] * Assert image type #8619 [@radarhere] * Parametrize tests #8838 [@radarhere] * Change back to actions/setup-python #8833 [@radarhere] * Simplified test code #8823 [@radarhere] * Improved FliImagePlugin test coverage #8806 [@radarhere] * Install libtiff-dev on Ubuntu GitHub Actions #8816 [@radarhere] * Test using _seek to skip frames #8804 [@radarhere] * Improved PcxImagePlugin test coverage #8797 [@radarhere] * Use match argument #8801 [@radarhere] * Improved BdfFontFile test coverage #8783 [@radarhere] * Revert "Do not install libimagequant" #8778 [@radarhere] * Improved FtexImagePlugin test coverage #8766 [@radarhere] * Improved FontFile test coverage #8771 [@radarhere] * Improved MpoImagePlugin test coverage #8765 [@radarhere] * Improved SunImagePlugin coverage #8762 [@radarhere] * Improve TarIO test coverage #8759 [@radarhere] * Improve type checking in tests #8618 [@radarhere] * Add PyPy3.11 to CI #8758 [@hugovk] * Don't call make clean or pip in tox #8754 [@hugovk] * Don't shadow builtin open #8756 [@radarhere] * Removed unused test code #8752 [@radarhere] * Use monkeypatch #8747 [@radarhere] * Do not install libimagequant on MinGW #8724 [@radarhere] * Use getpixel() instead of load() #8727 [@radarhere] * Revert "Ignore brew dependencies for libraqm on macOS 13" #8725 [@radarhere] * Fixed exceptions when closing AppendingTiffWriter #8723 [@radarhere] * Fixed unclosed file warnings #8705 [@radarhere] * Use monkeypatch #8707 [@radarhere] * Use Ubuntu 22.04 for 24.04 ppc64le and s390x #8713 [@radarhere] * Updated Ubuntu arm to 24.04 with arm64 runner #8700 [@radarhere] * Test oldest Python on 32-bit Windows 2019 and remove AppVeyor #8525 [@hugovk] * Corrected argument types #8681 [@radarhere] * Test Python 3.14 pre-release #8690 [@radarhere] * Skip test_embeddable if compiler cannot be initialized #8686 [@radarhere] * Improved test coverage #8679 [@radarhere] * Removed xfail for test_embeddable on Python 3.13 #8683 [@radarhere] * Use python-numpy and python-olefile instead of virtual python3 packages #8682 [@hugovk] * Use python-pip instead of python3-pip in MinGW #8678 [@radarhere] * Use ImageFile._Tile #8666 [@radarhere] * Improved SPIDER test coverage #8668 [@radarhere] * Removed unused image open #8649 [@radarhere] * PngImageFile text is a property #8648 [@radarhere] * Trigger wheel builds from changes in pyproject.toml #8674 [@radarhere] * Added fromarrow type hints #8867 [@radarhere] * Assert image type #8619 [@radarhere] * Check that _fp type is not DeferredError before use #8640 [@radarhere] * Corrected type check #8760 [@radarhere] * Improve type checking in tests #8618 [@radarhere] * Corrected argument types #8681 [@radarhere] * Use ImageFile._Tile #8666 [@radarhere] * Added return types #8639 [@radarhere] * Add overloads for exif_transpose #8657 [@cdce8p] * Do not include libavif in wheels #8876 [@radarhere] * Remove GPL v2 from FreeType license #8884 [@radarhere] ... changelog too long, skipping 77 lines ... * Corrected installing ImageMagick on cifuzz #8658 [@radarhere] ==== python-PySocks ==== Subpackages: python311-PySocks python313-PySocks - Convert to pip-based build ==== python-cryptography ==== Version update (44.0.2 -> 44.0.3) Subpackages: python311-cryptography python313-cryptography - Update to 44.0.3 * Fixed compilation when using LibreSSL 4.1.0. ==== python-gevent ==== - Use %_smp_mflags for reproducible builds (boo#1237231) ==== python-greenlet ==== Version update (3.2.1 -> 3.2.2) - Update to 3.2.2 * Make greenlet build and run on Python 3.14 beta 1. It will not run on earlier versions of 3.14; it should run on subsequent versions. See PR 445. ==== python311 ==== Subpackages: python311-curses python311-dbm python311-x86-64-v3 - Remove python-3.3.0b1-test-posix_fadvise.patch (not needed since kernel 3.6-rc1) ==== python311-core ==== Subpackages: libpython3_11-1_0 libpython3_11-1_0-x86-64-v3 python311-base python311-base-x86-64-v3 - Remove python-3.3.0b1-test-posix_fadvise.patch (not needed since kernel 3.6-rc1) ==== python313 ==== Subpackages: python313-curses python313-dbm python313-tk python313-x86-64-v3 - Remove python-3.3.0b1-test-posix_fadvise.patch (not needed since kernel 3.6-rc1) ==== python313-core ==== Subpackages: libpython3_13-1_0 libpython3_13-1_0-x86-64-v3 python313-base python313-base-x86-64-v3 - Remove python-3.3.0b1-test-posix_fadvise.patch (not needed since kernel 3.6-rc1)