Packages changed: audit-secondary autofs branding-openSUSE dtc fcitx ffmpeg-8 fontconfig freerdp (3.20.2 -> 3.21.0) gedit (48.2 -> 49.0) gimp (3.0.6 -> 3.0.8) glslang (16.1.0 -> 16.2.0) gnome-control-center gnome-settings-daemon gnome-shell (49.2 -> 49.3) harfbuzz (12.3.1 -> 12.3.2) hwinfo (25.0 -> 25.1) ibus ibus_gtk4 java-25-openjdk (25.0.1.0 -> 25.0.2.0) kernel-firmware-amdgpu (20260116 -> 20260126) kernel-firmware-intel (20260122 -> 20260123) kernel-firmware-sound (20260110 -> 20260123) libXcomposite (0.4.6 -> 0.4.7) libXdamage (1.1.6 -> 1.1.7) libXext (1.3.6 -> 1.3.7) libXinerama (1.1.5 -> 1.1.6) libXmu (1.2.1 -> 1.3.0) libXpm (3.5.17 -> 3.5.18) libXrandr (1.5.4 -> 1.5.5) libXvMC (1.0.14 -> 1.0.15) libXxf86dga (1.1.6 -> 1.1.7) libXxf86vm (1.1.6 -> 1.1.7) libgedit-gtksourceview (299.5.0 -> 299.6.0) libgedit-tepl (6.13.0 -> 6.14.0) libmbim (1.32.0 -> 1.34.0) libxkbfile (1.1.3 -> 1.2.0) llvm21 ncurses (6.6.20260117 -> 6.6.20260124) nvidia-open-driver-G06-signed openSUSE-release (20260126 -> 20260128) opencc (1.1.9 -> 1.2.0) pcr-oracle python-pycairo (1.28.0 -> 1.29.0) python-pylsqpack (0.3.20 -> 0.3.23) python-tzdata (2025.2 -> 2025.3) selinux-policy (20260120 -> 20260126) tftp thunar update-bootloader (1.26 -> 1.27) vlc yast2-trans (84.87.20260112.417521aa92 -> 84.87.20260125.b09c7f793f) === Details === ==== audit-secondary ==== Subpackages: audit audit-rules python3-audit system-group-audit - Move all /var/spool, /var/log directories to systemd-tmpfiles ==== autofs ==== - fix deadlock on map entry removal (bsc#1246325) * 0001-autofs-5.1.9-fix-get-parent-multi-mount-check-in-try.patch * 0002-autofs-5.1.9-fix-deadlock-in-remount.patch * 0003-CHANGELOG-add-a-few-missing-entries.patch * 0004-autofs-5.1.9-quiet-possibly-noisy-log-message.patch * 0005-autofs-5.1.9-fix-devid-update-on-reload.patch * 0006-autofs-5.1.9-fix-cache-writelock-must-be-taken-in-up.patch * 0007-autofs-5.1.9-fix-skip-valid-map-entries-on-expire-cl.patch * 0008-autofs-5.1.9-remove-unnecessary-call-to-set_direct_m.patch * 0009-autofs-5.1.9-remove-unnecessary-assignment-in-umount.patch * 0010-autofs-5.1.9-fix-direct-mount-trigger-umount-failure.patch * 0011-autofs-5.1.9-refactor-do_umount_autofs_direct.patch * 0012-autofs-5.1.9-fix-stale-direct-mount-trigger-not-umou.patch * 0013-autofs-5.1.9-add-function-table_lookup_ino.patch * 0014-autofs-5.1.9-improve-handling-of-missing-map-entry-f.patch ==== branding-openSUSE ==== Subpackages: grub2-branding-openSUSE libreoffice-branding-openSUSE plymouth-branding-openSUSE wallpaper-branding-openSUSE yast2-qt-branding-openSUSE - Drop update-desktop-files usage, we don't need to update translations on wallpapers .desktop files. ==== dtc ==== - add 9a1c801a1a3c102bf95c5339c9e985b26b823a21.patch (bsc#1257254) ==== fcitx ==== Subpackages: fcitx-branding-openSUSE fcitx-gtk2 fcitx-gtk3 fcitx-pinyin fcitx-table fcitx-table-cn-wubi fcitx-table-cn-wubi-pinyin libfcitx-config4 libfcitx-core0 libfcitx-gclient1 libfcitx-utils0 - Update fcitx.spec: Change the "Recommends" libopencc package from 1_1 to 1_2 to fit the opencc update. ==== ffmpeg-8 ==== Subpackages: libavcodec62 libavfilter11 libavformat62 libavutil60 libswresample6 libswscale9 - Enable harfbuzz-based plugins [boo#1256873] ==== fontconfig ==== Subpackages: fontconfig-lang libfontconfig1 - do not package /var/lib/fontconfig to support immutable mode ==== freerdp ==== Version update (3.20.2 -> 3.21.0) Subpackages: libfreerdp3-3 librdtk0-0 libwinpr3-3 - Update to version 3.21.0: + Bugfix release with a few new API functions addressing shortcomings with regard to input data validation. Thanks to @ehdgks0627 we have fixed the following additional (medium) client side vulnerabilities: * CVE-2026-23530 * CVE-2026-23531 * CVE-2026-23532 * CVE-2026-23533 * CVE-2026-23534 * CVE-2026-23732 * CVE-2026-23883 * CVE-2026-23884 - Changes from version 3.20.2 * [client,sdl] fix monitor resolution (#12142) * [codec,progressive] fix progressive_rfx_upgrade_block (#12143) * Krb cache fix (#12145) * Rdpdr improved checks (#12141) * Codec advanced length checks (#12146) * Glyph fix length checks (#12151) * Wlog printf format string checks (#12150) * [warnings,format] fix format string warnings (#12152) * Double free fixes (#12153) * [clang-tidy] clean up code warnings (#12154) ==== gedit ==== Version update (48.2 -> 49.0) Subpackages: gedit-lang - Update to version 49.0: + Metainfo data: add more infos to fix Flathub warnings. + Cleanup: remove BuildStream and Snap from build-aux/ (outdated) - Changes from version 49.alpha2: + User-visible changes: - Add a max-file-size setting for document loading, fixing the common problem with very large files. - New symbolic app icon (to have a square one). - Statusbar: fix a bug with the language button popover. + Under the hood changes: - Fix a compilation warning. - Statusbar: . Move some features of GeditStatusbar to libgedit-tepl as TeplStatusbar. . GeditWindowStatus: new internal class to offload some work that was done in GeditWindow, to avoid a god class. - *.ui -> code. + Other: * Tools: generate-html-list-of-plugins-description.sh script (output HTML content that is put on the website instead of generating a Markdown file located in the git repository). + Updated translations ==== gimp ==== Version update (3.0.6 -> 3.0.8) Subpackages: gimp-plugin-aa gimp-plugin-python3 libgimp-3_0-0 libgimpui-3_0-0 - Update to 3.0.8 - Font Loading Performance - Improvements in start-up time for users with a large number of fonts was backported from our 3.2 RC2 release. As a result, we now wait to load images until fonts are initialized - this prevents some occasional odd displays and other issues when an XCF file tried to access a partially loaded font. - Assorted updates and fixes - Daniel Plakhotich helped us identify an issue when exporting a lossless WEBP image could be affected by lossy settings (such as Quality being less than 100%). We’ve updated our WEBP plug-in to prevent this from happening. - Thanks to Jehan‘s efforts, the standard gimp-3.0 executable can now be run with a --no-interface flag instead of requiring users to call gimp-console-3.0 even on devices with no display. The --show-debug-menu flag is now visible as well. - programmer_ceds improved our flatpak by adding safe guards to show the correct configuration directory regardless of whether XDG_CONFIG_HOME is defined on the user’s system. This should make it much easier for flatpak users to install and use third party plug-ins. - We fixed a rare but possible crash when using the Equalize filter on images with NaN values. Images that contain these are usually created from scientific or mapping data, so you’re unlikely to come across them in standard editing. - Jeremy Bicha fixed an internal issue where the wrong version number could be used when installing minor releases (such as the 3.2 release candidates and upcoming 3.2 stable release). - As noted in our 3.2RC2 news post, we have updated our SVG import code to improve the rendered path. - Further improvements have been made to our non-destructive filter code to improve stability, especially when copying and pasting layers and images with filters attached to them. Some issues related to applying NDE filters on Quick Masks have also been corrected. - An unintended Search pop-up that appeared when typing while the Channels dockable was selected has been turned off. - When saving XCFs for GIMP 2.10 compatibility, we unintentionally saved Grid color using the new color format. This caused errors when reopening the XCF in 2.10. This problem has now been fixed! If you encounter any other XCF incompatibility, please let us know. - Themes and UX - The Navigation and Selection Editor dockables no longer show a large bright texture when no image is actively selected. This was especially noticeable on dark themes. - When a layer has no active filters, the Fx column had the same “checkbox” outline when hovered over as the lock column. This led to confusion about clicking it to add filters. We have removed the outline on hover as a small step to help address this. - Ondřej Míchal fixed alignment and cut-off issues with the buttons on our Transform tool overlays. All buttons should now be properly centered and visible. - The options for filling layers with colors when resizing the canvas will be turned off when not relevant (such as when you set layers to not be resized). - More GUI elements such as dialog header icons will now respond to your icon size preferences. - Ondřej Míchal has continued his work to update our UI with the more usable Spin Scale widget. He has also updated the widget itself to improve how it works for users and developers alike. - Security fixes - Jacob Boerema and Gabriele Barbero continued to patch potential security issues related to some of our file format plug-ins. In addition to existing fixes mentioned in the release candidate news posts, the following exploits are now prevented: ZDI-CAN-28232 ZDI-CAN-28265 ZDI-CAN-28530 ZDI-CAN-28591 ZDI-CAN-28599 - Another potential issue related to ICO files with incorrect metadata was reported by Dhiraj. It does not have a CVE number yet, but it has been fixed for GIMP 3.0.8. Jacob Boerema also fixed a potential issue with loading Creator blocks in Paintshop Pro PSP images. - API - For plug-in and script developers, a few new public APIs were backported to GIMP 3.0.8. gimp_cairo_surface_get_buffer () allows you to retrieve a GEGL buffer from a Cairo surface (such as a text layer). Note that this deprecates gimp_cairo_surface_create_buffer (). - gimp_config_set_xcf_version () and gimp_config_get_xcf_version () can be used to specify a particular XCF version for a configuration. This will allow you to have that data serialized/deserialized for certain versions of GIMP if there were differences (such as the Grid colors mentioned above). - Fixes were made for retrieving image metadata via scripting. GimpMetadata is now a visible child of GExiv2Metadata, so you can use standard gexiv2 functions to retrieve information from it. - Original thumbnail metadata is also now removed on export to prevent potential issues when exporting into a new format. - drop patches included in the update gimp-CVE-2025-14422.patch (bsc#1255293 CVE-2025-14422) gimp-CVE-2025-14423.patch (bsc#1255294 CVE-2025-14423) gimp-CVE-2025-14424.patch (bsc#1255295 CVE-2025-14424) gimp-CVE-2025-14425.patch (bsc#1255296 CVE-2025-14425) gimp-CVE-2025-15059.patch (bsc#1255766 CVE-2025-15059) ==== glslang ==== Version update (16.1.0 -> 16.2.0) - Update to release 16.2.0 * Allow gl_FragDepth identifier to be redeclared * Replace `GL_TASK(MESH)_SHADER_NV` with `GL_TASK(MESH)_SHADER_EXT` * Scalarize swizzled MeshEXT stores * Support GL_EXT_long_vector * Add missing preamble #define for GL_EXT_nontemporal_keyword * Support GL_NV_push_constant_bank * Support GL_EXT_descriptor_heap ==== gnome-control-center ==== Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-lang gnome-control-center-user-faces gnome-control-center-users - Add gnome-control-center-gvc-31.patch: Fix crash with newer pipewire on switching bluetooth profile (glgo#GNOME/libgnome-volume-control!31). ==== gnome-settings-daemon ==== Subpackages: gnome-settings-daemon-lang - Add gnome-settings-daemon-gvc-31.patch: Fix crash with newer pipewire on switching bluetooth profile (glgo#GNOME/libgnome-volume-control!31). ==== gnome-shell ==== Version update (49.2 -> 49.3) Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang - Add 31.patch: Fix gvc to not crash with newer pipewire and fix device selection (boo#1257062). - Update to version 49.3: + Fix activating app-switcher thumbnails via click + Fix lost focus on lock screen after resume from suspend + Correctly expose/hide caps-lock warning to a11y tree + Improve accessibility of icon buttons in screenshot tool + Fix user deselection after idle on login screen + Improve readability of insensitive text + Misc. bug fixes and cleanups + Updated translations. ==== harfbuzz ==== Version update (12.3.1 -> 12.3.2) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - Update to version 12.3.2: + Fix padding gvar table during subsetting when the original font uses long format and subset font using short format. + Various fuzzing fixes. + Fix NULL pointer deference when malloc fails. ==== hwinfo ==== Version update (25.0 -> 25.1) Subpackages: libhd25 - merge gh#openSUSE/hwinfo#175 - include package spec file in git repo - adjust spec file for immutable mode: switch to using systemd-tmpfiles (jsc#PED-14832) - update git2log script - 25.1 ==== ibus ==== Subpackages: ibus-dict-emoji ibus-gtk ibus-gtk3 ibus-lang libibus-1_0-5 typelib-1_0-IBus-1_0 - Update ibus.spec to get rid of update-desktop-files: * It often duplicates upstream translation effort, wasting a human work, both community translators and contracted ones. * Most of these translations are ~20 years old, and they were never reviewed, so it is possible that they are worse than the upstream ones. In the last 20 years it did not provide any way to upstream the changes and translations. The upstream translations got another 20 years of development. Also Desktop Categories specification was updated, and the upstream specification now covers all aspects of former X-SuSE-* Categories extensions. * As a result, the SUSE desktop menu experience differs from other vendors. Applications have a different name, different translations, different placement in the structured menu etc. * Upstream translations have a wider impact. * Package maintainers have only a limited control over the contents visible to users. It is imported during the runtime, and the visible contents could be different from the contents in the package. * update-desktop-files is a complicated tool. It attempts to fix deprecated and obsolete stuff in the desktop files without even informing the developer that something was wrong and something was modified. * It uses a very complicated toolchain that requires access to SUSE intranet and access to OpenQA VPN. The complete toolchain setup was never published, so it has even problems with Open Source ideas. * It mixes SUSE-unique translations with translations that just duplicate the upstream translation effort. As a result it significantly increases number of strings to translate and decreases the quality of the translation. (jsc#PED-14507) ==== ibus_gtk4 ==== - Update ibus.spec to get rid of update-desktop-files: * It often duplicates upstream translation effort, wasting a human work, both community translators and contracted ones. * Most of these translations are ~20 years old, and they were never reviewed, so it is possible that they are worse than the upstream ones. In the last 20 years it did not provide any way to upstream the changes and translations. The upstream translations got another 20 years of development. Also Desktop Categories specification was updated, and the upstream specification now covers all aspects of former X-SuSE-* Categories extensions. * As a result, the SUSE desktop menu experience differs from other vendors. Applications have a different name, different translations, different placement in the structured menu etc. * Upstream translations have a wider impact. * Package maintainers have only a limited control over the contents visible to users. It is imported during the runtime, and the visible contents could be different from the contents in the package. * update-desktop-files is a complicated tool. It attempts to fix deprecated and obsolete stuff in the desktop files without even informing the developer that something was wrong and something was modified. * It uses a very complicated toolchain that requires access to SUSE intranet and access to OpenQA VPN. The complete toolchain setup was never published, so it has even problems with Open Source ideas. * It mixes SUSE-unique translations with translations that just duplicate the upstream translation effort. As a result it significantly increases number of strings to translate and decreases the quality of the translation. (jsc#PED-14507) ==== java-25-openjdk ==== Version update (25.0.1.0 -> 25.0.2.0) Subpackages: java-25-openjdk-headless - Update to upstream tag jdk-25.0.2+10 (January 2026 CPU) * CVEs + CVE-2026-21925, bsc#1257034 + CVE-2026-21932, bsc#1257036 + CVE-2026-21933, bsc#1257037 + CVE-2026-21945, bsc#1257038 * Changes + JDK-8023263: [TESTBUG] Test closed/java/awt/Focus/ /InactiveWindowTest/InactiveFocusRace fails due to not enough time to initialize graphic components + JDK-8162380: [TEST_BUG] MouseEvent/.../ /AltGraphModifierTest.java has only "Fail" button + JDK-8201778: Speed up test javax/net/ssl/DTLS/PacketLossRetransmission.java + JDK-8265429: Improve GCM encryption + JDK-8277444: Data race between JvmtiClassFileReconstituter::copy_bytecodes and class linking + JDK-8279005: sun/tools/jstat tests do not check for test case exit codes after JDK-8245129 + JDK-8304811: vmTestbase/vm/mlvm/indy/func/jvmti/ /stepBreakPopReturn/INDIFY_Test.java fails with JVMTI_ERROR_TYPE_MISMATCH + JDK-8305567: serviceability/tmtools/jstat/GcTest01.java failed utils.JstatGcResults.assertConsistency + JDK-8317801: java/net/Socket/asyncClose/Race.java fails intermittently (aix) + JDK-8320836: jtreg gtest runs should limit heap size + JDK-8325766: Extend CertificateBuilder to create trust and end entity certificates programmatically + JDK-8333526: Restructure java/nio/channels/DatagramChannel/ /StressNativeSignal.java to a fail fast exception handling policy + JDK-8333783: java/nio/channels/FileChannel/directio/ /DirectIOTest.java is unstable with AV software + JDK-8334238: Enhance AddLShortcutTest jpackage test + JDK-8335986: Test javax/swing/JCheckBox/4449413/ /bug4449413.java fails on Windows 11 x64 because RBMenuItem's and CBMenuItem's checkmark on the left side are not visible + JDK-8341496: Improve JMX connections + JDK-8343218: Add option to disable allocating interface and abstract classes in non-class metaspace + JDK-8343546: GHA: Cache required dependencies in master-branch workflow + JDK-8345810: Custom launchers must be linked with pthread to avoid dynamic linker issues + JDK-8346753: Test javax/swing/JMenuItem/RightLeftOrientation/ /RightLeftOrientation.java fails on Windows Server 2025 x64 because the icons of RBMenuItem and CBMenuItem are not visible in Nimbus LookAndFeel + JDK-8346839: [TESTBUG] "java/awt/textfield/setechochartest4/ /setechochartest4.java" failed because the test frame disappears on clicking "Click Several Times" button + JDK-8346884: Add since checker test to jdk.editpad + JDK-8346952: GetGraphicsStressTest.java fails: Native resources unavailable + JDK-8347277: java/awt/Focus/ComponentLostFocusTest.java fails intermittently + JDK-8349188: LineBorder does not scale correctly + JDK-8350621: Code cache stops scheduling GC + JDK-8351487: [ubsan] jvmti.h runtime error: load of value which is not a valid value + JDK-8352016: Improve java/lang/RuntimeTests/RuntimeExitLogTest.java + JDK-8354348: Enable Extended EVEX to REX2/REX demotion for commutative operations with same dst and src2 + JDK-8354415: [Ubuntu25.04] api/java_awt/GraphicsDevice/ /indexTGF.html#SetDisplayMode - setDisplayMode_REFRESH_RATE_UNKNOWN fails: Height is different on vnc + JDK-8354447: Missing test for retroactive @SuppressWarnings("dangling-doc-comments") behavior + JDK-8354646: java.awt.TextField allows to identify the spaces in a password when double clicked at the starting and end of the text + JDK-8355478: DoubleActionESC.java fails intermittently + JDK-8356324: JVM crash (SIGSEGV at ClassListParser::resolve_indy_impl) during -Xshare:dump starting from 21.0.5 + JDK-8356897: Update NSS library to 3.111 + JDK-8357064: cds/appcds/ArchiveRelocationTest.java failed with missing expected output + JDK-8357141: Update to use jtreg 7.5.2 + JDK-8357382: runtime/cds/appcds/aotClassLinking/ /BulkLoaderTest.java#aot fails with Xcomp and C1 + JDK-8357396: Refactor nmethod::make_not_entrant to use Enum instead of "const char*" + JDK-8357691: File blocked.certs contains bad content when boot jdk 25 is used, sun/security/lib/CheckBlockedCerts.java failing + JDK-8357694: RISC-V: Several IR verification tests fail when vlen=128 + JDK-8357799: Improve instructions for JFileChooser/HTMLFileName.java + JDK-8357816: Add test from JDK-8350576 + JDK-8357822: C2: Multiple string optimization tests are no longer testing string concatenation optimizations + JDK-8357959: (bf) ByteBuffer.allocateDirect initialization can result in large TTSP spikes + JDK-8358048: java/net/httpclient/HttpsTunnelAuthTest.java ... changelog too long, skipping 506 lines ... jsc#PED-15221) ==== kernel-firmware-amdgpu ==== Version update (20260116 -> 20260126) - Update to version 20260126 (git commit 8ae6479889d2): * amdgpu: DMCUB updates for various ASICs ==== kernel-firmware-intel ==== Version update (20260122 -> 20260123) - Update to version 20260123 (git commit 0882248d0504): * intel/ish: Add Lenovo ISH firmware support for X1 and X9 systems ==== kernel-firmware-sound ==== Version update (20260110 -> 20260123) - Update to version 20260123 (git commit 0882248d0504): * cirrus: cs42l45: Add CS42L45 SDCA codec firmware for Lenovo laptops * cirrus: cs42l45: Add CS42L45 SDCA codec firmware for Dell laptops * cirrus: cs35l57 cs35l63: Add firmware for Cirrus Amps for some Lenovo laptops * cirrus: cs35l56 cs35l57: Add and update firmware for some Dell laptops ==== libXcomposite ==== Version update (0.4.6 -> 0.4.7) - Update to version 0.4.7 * Remove "All rights reserved" from Oracle copyright notices * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * meson: Add option to build with meson * gitlab CI: drop the ci-fairy check-mr job - switch to meson build ==== libXdamage ==== Version update (1.1.6 -> 1.1.7) - Update to version 1.1.7 * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * meson: Add option to build with meson * gitlab CI: drop the ci-fairy check-mr job - switch to meson build ==== libXext ==== Version update (1.3.6 -> 1.3.7) - Update to version 1.3.7 * unifdef ATTSHAREDLIB * unifdef NULL_NOT_ZERO * Xevi.man: Improve man page formatting * man pages: Improve man page formatting * gitlab CI: drop the ci-fairy check-mr job * Xevi.3: Some editorial changes for this man page [Debian bug #1050884] * Fix HWND pointer casting errors on MinGW-w64 ==== libXinerama ==== Version update (1.1.5 -> 1.1.6) - Update to version 1.1.6 * Remove "All rights reserved" from Oracle copyright notices * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * meson: Add option to build with meson * Improve man page formatting * gitlab CI: drop the ci-fairy check-mr job - switch to meson build ==== libXmu ==== Version update (1.2.1 -> 1.3.0) Subpackages: libXmu6 libXmuu1 - u_int-to-pointer-cast.patch * fixes build on i586 - Update to version 1.3.0 * test: Avoid incorrect -Wuse-after-free warning from gcc 13 * gitlab CI: drop the ci-fairy check-mr job * Remove duplicate ARGSUSED comment * EditresCom: Fix time argument for XtGetSelectionValue() * Editres: Bump the proto to v6, Widget / Window values are 64-bit ==== libXpm ==== Version update (3.5.17 -> 3.5.18) - Update to 3.5.18 * Remove outdated ifdef checks for including stdint.h * unifdef sequent * unifdef VAX11C * Remove ancient Amiga support * Remove ancient port to 16-bit Windows without X11 libraries * Remove xpmstrcasecmp fallback for strcasecmp * Remove xpmstrdup fallback for strdup * Use _stricmp() instead of strcasecmp() on Windows * man pages: make indentation arguments to .IP be numeric * man pages: ensure .BR macro has multiple arguments * man pages: remove .PP after .SH or .SS lines * man pages: adjust line breaks in source files * Strip trailing whitespace from source files * gitlab CI: drop the ci-fairy check-mr job * XpmCreateBuffer.3: editorial changes for this man page [Debian bug #1102886] * Fix build with current Windows headers * tests: poll for stable compressed output ==== libXrandr ==== Version update (1.5.4 -> 1.5.5) - Update to version 1.5.5 * meson: Add option to build with meson * Improve man page formatting * gitlab CI: drop the ci-fairy check-mr job - switch to meson build ==== libXvMC ==== Version update (1.0.14 -> 1.0.15) - Update to version 1.0.15 * unifdef Lynx * meson: Move protos from Requires.private to Requires in generated .pc files * meson: raise minimum required meson version from 0.58 to 0.62 * meson: set MALLOC_0_RETURNS_NULL to match autoconf * meson: prepend prefix to sysconfdir if it doesn't start with / * gitlab CI: Use diffoscope to compare autoconf & meson installs * gitlab CI: drop the ci-fairy check-mr job ==== libXxf86dga ==== Version update (1.1.6 -> 1.1.7) - Update to version 1.1.7 * Remove "All rights reserved" from Oracle copyright notices * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * meson: Add option to build with meson * Improve man page formatting * gitlab CI: drop the ci-fairy check-mr job ==== libXxf86vm ==== Version update (1.1.6 -> 1.1.7) - Update to version 1.1.7 * meson: Add option to build with meson * Improve man page formatting * XF86VM.3: fix warnings raised by `mandoc -T lint` and `groff -rCHECKSTYLE=10` * gitlab CI: drop the ci-fairy check-mr job * XF86VM.3: Some editorial changes for this man page [Debian bug #1102885] - switch to meson ==== libgedit-gtksourceview ==== Version update (299.5.0 -> 299.6.0) Subpackages: libgedit-gtksourceview-lang typelib-1_0-GtkSource-300 - Update to version 299.6.0: + Completion framework: - The GtkSourceCompletion class no longer implements the GtkBuildable interface. - GtkSourceCompletionProposal: various improvements. - GtkSourceCompletionItem: . Various improvements. . Remove all the properties. + Various gardening tasks: - Move back almost all typedefs from gtksourcetypes.h to the corresponding headers, with the goal to keep in gtksourcetypes.h only what is strictly necessary. - Convert #include guards to #pragma once with the guardonce utility: - Add missing G_BEGIN_DECLS/G_END_DECLS pairs. - Add missing G_GNUC_CONST annotation for get_type() functions. - Have a LICENSES directory, to better follow the REUSE way of applying licenses - Reduce the padding for future expansion in public Class structs, the API/ABI is anyway no longer guaranteed to be stable. + Updated translations - Changes from version 299.6.alpha2: + File loading and saving: - Small bug fix in GtkSourceFile. - GtkSourceBufferOutputStream private class: . Start to refactor it. . Extract the try_convert() function out of the class and re-implement it with GtkSourceIconv. - GtkSourceIconv: . Add the feed_discard_output() function. . Write unit tests. - GtkSourceFileLoader: . Add max-size property. . Improve the unit tests. + GtkSourceView class: - Improve the API documentation. - Remove GtkBuildable interface implementation. + Other: - Docs: improve the CSS for the docs that is manually written in HTML. - Bump sover to 4, following upstream changes. This results in the shared library package being renamed from libgedit-gtksourceview-300-3 to libgedit-gtksourceview-300-4. - Update to version 299.6.alpha1: + GtkSourceIter: - Make some gtk_source_iter_*() functions public. - Move the single tepl_iter_*() function as a public gtk_source_iter_*(). - Write more unit tests. + File loading and saving: - GtkSourceEncoding, GtkSourceFile, GtkSourceFileLoader and GtkSourceFileSaver are maintained again. - Create the "Low-Level File Loading and Saving" category in the API docs, and add GtkSourceIconv and GtkSourceInputStream - Rework GtkSourceEncoding. - Start to rework GtkSourceFile. - Rework GtkSourceFileLoader (modernize the code and use GtkSourceInputStream internally). - Code organization: create the file-loading-and-saving/ subdir. + GtkSourceView class: Small improvements to both the API docs and the implementation. + Tools: Some small changes/improvements to the 'list-langs' and 'uncrustify' tools. + Updated translations ==== libgedit-tepl ==== Version update (6.13.0 -> 6.14.0) Subpackages: libgedit-tepl-6-lang typelib-1_0-Tepl-6 - Update to version 6.14.0: + Nothing new. - Changes from version 6.14.alpha2: + New class: TeplStatusbar. + Updated translations. - Update to version 6.14.alpha1: + Add TeplCodeCommentView for the comment/uncomment feature + Remove tepl_iter_*() function, moved to libgedit-gtksourceview + TeplFileLoader: use libgedit-gfls + Updated translations ==== libmbim ==== Version update (1.32.0 -> 1.34.0) Subpackages: libmbim-glib4 mbimcli-bash-completion - Update to version 1.34.0: + Build: - New "-Dmbim_groupname=" meson build option to restrict MBIM kernel device access to a given Unix group and root. The access check works in parallel to the "-Dmbim_username" option; passing either check allows access to the kernel device (eg, logical OR). + New Intel AT Tunnel service, including the following operations: MBIM_CID_INTEL_AT_TUNNEL_AT_COMMAND + Extended the SMS service: MBIM_CID_SMS_CONFIGURATION now supports notifications + mbimcli: - New '--sms-query-configuration' and '--sms-query-message-store-status' actions - New '--atds-query-rat' and '--atds-query-operators' actions - Update to version 1.33.1dev: + mbimcli: - add ATDS Query Operators support - bump Basic Connect --query-visible-providers timeout to 240s - add ATDS RAT query support - add --sms-query-configuration option - add --sms-query-message-store-status - add test infrastructure and testcases for quectel QDU command parsing - intel-attunnel: new service, set-at-command ==== libxkbfile ==== Version update (1.1.3 -> 1.2.0) - update to 1.2.0 * This release adds a new XkbRF_FreeVarDefs() API, and brings over many fixes from the other copies of XKB code in the various X.Org repos. - supersedes U_CVE-2025-26595-0001-xkb-Fix-buffer-overflow-in-XkbVModMaskText.patch ==== llvm21 ==== - Add bolt-link-shared-library.patch: link bolt with libLLVM.so. - Enable build of bolt ==== ncurses ==== Version update (6.6.20260117 -> 6.6.20260124) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20260124 + add xterm+indirect16, vt100+keypad+emul, putty-direct, putty-direct16, wezterm-direct, wezterm-direct16 (patch by Jakub Horky) + add Smol/Rmol to ms-terminal, konsole, iTerm2 (report by Jared Finder) + add ecma+overline -TD + update configure macros - Port ncurses-6.6.dif - Add description to ncurses-5.9-ibm327x.dif ==== nvidia-open-driver-G06-signed ==== - updated CUDA variant to version 580.126.09 - supersedes kernel-6.18.patch ==== openSUSE-release ==== Version update (20260126 -> 20260128) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== opencc ==== Version update (1.1.9 -> 1.2.0) - Update to 1.2.0: * Fix and optimize: Fix the crash issue when reading configuration files. Add type definitions (Typing). Fix two out-of-bounds reading issues when handling truncated UTF-8 input. * Compilation and environment adaptation: Fix the issue of GCC 15 lacking cstdint. Fix the error during "npm install opencc" that occurs during the build process. Fix the issue of V8 API being deprecated in Node 23. Fix the build problem of GCC 15. Depend on cmake only when there are no system packages. Set the default language version through variables. Fix the "python" command in gyp. Fix the build error on Node.js 24. Fix the deprecated declaration in C++17. Use C++17 in marisa 0.3.0. Adapt CMake changes related to Fedora. Register the hermetic Python 3.12 toolchain. Upgrade the Bazel version from 7.2.1 to 8.5.1. * The vocabulary list and conversion rules have been updated. * Documentation have been added and updated. * CI tools have been repaired and updated. * Fix two out-of-bounds read issues when handling truncated UTF-8 input. (CVE-2025-15536, bsc#1256930) - Update opencc.spec: * Change lib package name and file name to fit this update. - Drop opencc-gcc15.patch: OpenCC-1.2.0 has merged the request 72cae18c, which has the same contents with opencc-gcc15.patch. ==== pcr-oracle ==== - Enable build on %{arm} as it is required by sdbootutil ==== python-pycairo ==== Version update (1.28.0 -> 1.29.0) Subpackages: python311-pycairo python313-pycairo - update to 1.29.0: * :meth:`ImageSurface.get_data`: Return empty memoryview for empty image :pr:`418` * :meth:`ImageSurface.create_for_data`: support empty images :pr:`419` * Drop support for Python 3.9 :pr:`428` * Drop support for PyPy 3.10 * Support multi-phase init :pr:`413` * Experimental support for free-threaded Python :pr:`430` :pr:`429` * Update dependencies (libpng, pixman) for the Windows wheels :pr:`431` * build: add "no-x11" option to disable X11 surface support :pr:`432` :issue:`420` * dev: support uv for development :pr:`433` ==== python-pylsqpack ==== Version update (0.3.20 -> 0.3.23) - update to 0.3.23: * update ls-qpack to latest version * Support 3.14, drop python 3.9 * binding: store reference to xhdr buffer * binding: add sanity asserts ==== python-tzdata ==== Version update (2025.2 -> 2025.3) - update to 2025.3: * Upstream version 2025c released 2025-12-10T22:42:37+00:00 * Baja California agreed with California’s DST rules in 1953 and in 1961 through 1975, instead of observing standard time all year. * The leapseconds file contains commentary about the IERS and NIST last-modified and expiration timestamps for leap second data. ==== selinux-policy ==== Version update (20260120 -> 20260126) Subpackages: selinux-policy-targeted - Update to version 20260126: * Allow thumb_t stream connect to systemd-machined * Allow thumb_t stream connect to systemd-homed * Allow aide get attributes of tmpfs and devtmpfs filesystems * Allow sshd noatsecure on sshd-session execution * Confine rhc-worker-playbook.worker and rhc-playbook-verifier * Allow kernel_t to read/write all domains' pipes * Allow domain read sysfs files * allow abrt_dump_oops to write to init sockets * Add insights_client service interfaces * Allow plasma login manager stop login services * Allow NM nvme dispatcher script start systemd services * Allow sshd_net_t ioctl on unix_stream_socket of sshd_session_t * Allow sshd-session read, write, and map ica tmpfs files * Allow aide get attributes of a filesystem with extended attributes * Set correct label for glycin fontconfig (bsc#1253682) * Set correct gstreamer directory label for gnome-desktop-thumbnailer (bsc#1253682) * Logwatch zz-runtime uses uptime (bsc#1255862) * Add auth_login_pgm_signull interface (bsc#1255862) * Introduce systemd_cryptsetup_generator_var_run_t file type (bsc#1244459) * Allow l2tpd_t access to netlink and sysfs * Label miscellaneous /dev/papr-* devices * Allow qemu-ga to skip authentication * Revert "Allow systemd-coredump signull containers" * Allow systemd-coredump signull containers - Syncing with upstream rawhide selinux-policy up to: * b8928889681b041f10e511fd17accbcb2f82d5e0 ==== tftp ==== - Fix systemd service hardening ==== thunar ==== Subpackages: libthunarx-3-0 thunar-lang - Add 0001-Detect-CDROM-media-changes-using-ID_FD_UUID-udev-pro.patch (bsc#1255667) This patch ensures Thunar only reacts to genuine media insertions, ignoring irrelevant uevents. ==== update-bootloader ==== Version update (1.26 -> 1.27) - merge gh#openSUSE/perl-bootloader#194 - adjust spec file for immutable mode: switch to using systemd-tmpfiles (jsc#PED-14833) - 1.27 ==== vlc ==== Subpackages: libvlc5 libvlccore9 vlc-codec-gstreamer vlc-lang vlc-noX vlc-qt - Disable chromecast for Leap 15.6, fixes building - Rebase gcc requirement for Leap < 16.0 ==== yast2-trans ==== Version update (84.87.20260112.417521aa92 -> 84.87.20260125.b09c7f793f) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20260125.b09c7f793f: * Translated using Weblate (Ukrainian) * Translated using Weblate (German)