openSUSE-2022-146 moderate openSUSE Backports SLE-15-SP4 Update This update for keepassxc fixes the following issues: keepassxc was updated to 2.7.1: * Show when tags are changed in entry history * Improve tags editing and allow spaces in tags * Improve layout of entry preview panel * Incorporate patches to support Flatpak distribution * Add expiration presets for 12 and 24 hours * Fix crash when building history change list * Fix hiding password on database unlock * Fix AES KDF slow transform speed * Auto-Type: Correct timing issue on macOS and Linux that prevented typing * Auto-Type: Fix use of Ctrl/Alt/Shift/Win modifiers on Windows * Auto-Type: Reduce/eliminate delay when searching for entries * Auto-Type: Map ASCII dead keys on Linux for international keyboards * CLI: Fix detection of hardware keys (YubiKey) * CLI: Add missing parameter -c to add/edit entries command * Secret Service: Fix crash when multiple prompts are shown * SSH Agent: Fix default agent selection on Windows * Fix database unlock dialog not being the top window on Linux * Fix drag/drop entries between tabs on Wayland * Fix compiling with minizip-ng Update to 2.7.0 - Major Additions - Implement KDBX 4.1 [#7114] - Add direct write save option for cloud storage and GVFS [#6594] - Prevent screen capture on Windows and macOS [#6030] - Support quick unlock using Windows Hello [#7384] - Support quick unlock using Apple Watch [#5526] - Allow specifying database backup paths [#7035] - Add tag functionality [#6487][#7436][#7446] - Add password rating column to entry view [#4797] - Add group clone action [#6124] - Show modifications between entry history items [#6789] - Ability to bulk-delete and purge unused custom icons [#5970] - Support adding custom passphrase wordlists [#6799] - Support passphrase wordlists in numbered and PGP-signed formats [#6791] - Implement support for hardware keys via wireless NFC [#6895] - SSH Agent: Add support for OpenSSH 8.2 FIDO/U2F keys [#6371] - CLI: Implement attachment handling [#5538] - CLI: Add support for okon in offline HIBP checks [#5478] - CLI: Implement search command and remove locate [#6805] - CLI: Add db statistic output to db-info command [#7032] - CLI: Add -i/--include option to generate command. [#7112] - CLI: Add a -n (--notes) option to add and edit commands [#4646] - CLI: Add keyfile option to import command [#5402] - CLI: Adding a best option to clip to copy a password of the best match [#4489] - Browser: Add Microsoft Edge support on Linux [#7100] - Browser: Support native password generator from the extension [#6529] - Browser: Add group settings [#4180] - Browser: Add feature to ignore entries for HTTP-Auth Logins [#5394] - Browser: Support triggering Auto-Type from browser extension [#6272] - Browser: Add delete-entry command to API [#6899] - Browser: Add search 'by-path' url to API [#5535] - Browser: search for entries by UUID to API [#4763] - Browser: Support auto-download of favicon on entry addition [#7179] - Auto-Type: Major improvements to Auto-Type [#5864][#7463][#7435][#7391][#7129][#6400][#6364][#6361][#5283][#7507] - Auto-Type: Fix typing to virtual machines on Windows [#7366] - Auto-Type: Re-implement X11 keysym emulation [#7098] - Auto-Type: Support multiple Xkb layouts [#6247] - Auto-Type: Abort keystroke if modifiers held on X11 [#6351][#6357] - Auto-Type: Add TOTP option to entry level Auto-Type menu [#6675] - FdoSecrets: Major Refactor and Code Consolidation [#5747][#5660][#7043][#6915] - FdoSecrets: Implement unlock before search [#6943] - Reports: Add browser statistics report [#7197] - Major Changes - Port crypto backend to Botan [#6209] - Improve attachment handling and security [#6606][#5034][#7083] - Allow selecting any open database in unlock dialog [#5427] - KeeShare: Remove checking signed container and QuaZip dependency [#7223] - Introduce security option to enable copy on double click (default off) [#6433] - Add 'delete entry without confirm' functionality [#5812] - Improve macOS and Windows platform integration [#5851] - Lock only the current database by default [#6652] - Show expired entries on DB unlock [#7290] - Update D-Bus adaptor interface class name to match definition file [#7523] - Other Changes and Fixes - Add countdown progress bar to TOTP preview [#6930] - Enter favicon url directly on icons page [#6614] - Set C++17 as standard in the build system [#7180] - Internalize ykcore into code base [#6654] - Transition to Visual Studio builds on Windows [#5874] - Ability to delete entries from health check reports [#6537] - Enhance remembering last-used directories [#6711] - Implement org.freedesktop.appearance.color-scheme support on Linux [#7422] - Support sorting HTML export [#7011] - Add display number of characters in passphrases [#5449] - Use Alt+Tab on macOS to switch between databases [#5407] - Add feature to sort groups using shortcut keys [#6999] - Add CTRL+Enter to apply password generator changes [#6414] - Display Database created timestamp on statistics report [#6876] - Browser: Improve best matching credentials setting [#6893] - SSH Agent: Use both Pageant and OpenSSH agent simultaneously on Windows [#6288] - SSH Agent: Allow using database path to resolve keys [#6365] - SSH Agent: Show correct error messages in main window [#7166] - Multiple fixes for MSI installer [#6630] - Fix tab order for CSV import dialog to match screen order [#7315] - Don't mark kdbx:// urls as invalid [#7221] - Make selected text copyable instead of copying password [#7209] - Detect timestamp resolution for CSV files [#7196] - Fix crash while downloading favicon [#7104] - Correct naming of newly generated keyx files [#7010] - Place the 'Recycle Bin' at the bottom of the list when groups are sorted [#7004] - Handle tilde with custom browser paths [#6659] - Don't scroll up when deleting an entry [#6833] - Set the MIME-Type to text/plain when using wl-copy on wayland [#6832] - Fix adaptive icon painting [#5989][#6033] - Fix favicon download from URL with non-standard port [#5509] - Ignore recycle bin on KeePassHTTP migration [#5481] - Fix keepassxc-cr-recovery utility [#7521] - Fix Auto-Type not working when audio recording indicator is active on macOS 12.2+ [#7526] keepassxc-2.7.1-bp154.3.3.1.src.rpm keepassxc-2.7.1-bp154.3.3.1.x86_64.rpm keepassxc-lang-2.7.1-bp154.3.3.1.noarch.rpm keepassxc-2.7.1-bp154.3.3.1.aarch64.rpm keepassxc-2.6.6-bp154.3.2.1.ppc64le.rpm keepassxc-2.6.6-bp154.3.2.1.src.rpm keepassxc-lang-2.6.6-bp154.3.2.1.noarch.rpm keepassxc-2.7.1-bp154.3.3.1.s390x.rpm openSUSE-2022-144 important openSUSE Backports SLE-15-SP4 Update This update for varnish fixes the following issues: varnish was updated to release 7.1.0 [boo#1195188] [CVE-2022-23959] * VCL: It is now possible to assign a BLOB value to a BODY variable, in addition to STRING as before. * VMOD: New STRING strftime(TIME time, STRING format) function for UTC formatting. libvarnishapi3-7.1.0-bp154.2.3.1.x86_64.rpm varnish-7.1.0-bp154.2.3.1.src.rpm varnish-7.1.0-bp154.2.3.1.x86_64.rpm varnish-devel-7.1.0-bp154.2.3.1.x86_64.rpm libvarnishapi3-7.1.0-bp154.2.3.1.i586.rpm varnish-7.1.0-bp154.2.3.1.i586.rpm varnish-devel-7.1.0-bp154.2.3.1.i586.rpm libvarnishapi3-7.1.0-bp154.2.3.1.aarch64.rpm varnish-7.1.0-bp154.2.3.1.aarch64.rpm varnish-devel-7.1.0-bp154.2.3.1.aarch64.rpm libvarnishapi3-7.1.0-bp154.2.3.1.ppc64le.rpm varnish-7.1.0-bp154.2.3.1.ppc64le.rpm varnish-devel-7.1.0-bp154.2.3.1.ppc64le.rpm libvarnishapi3-7.1.0-bp154.2.3.1.s390x.rpm varnish-7.1.0-bp154.2.3.1.s390x.rpm varnish-devel-7.1.0-bp154.2.3.1.s390x.rpm openSUSE-2022-155 moderate openSUSE Backports SLE-15-SP4 Update This update for libredwg fixes the following issues: Update to release 0.12.5 [boo#1193372] [CVE-2021-28237] * Restricted accepted DXF objects to all stable and unstable classes, minus MATERIAL, ARC_DIMENSION, SUN, PROXY*. I.e. most unstable objects do not allow unknown DXF codes anymore. This fixed most oss-fuzz errors. libredwg-0.12.5-bp154.2.3.1.src.rpm libredwg-devel-0.12.5-bp154.2.3.1.x86_64.rpm libredwg-tools-0.12.5-bp154.2.3.1.x86_64.rpm libredwg0-0.12.5-bp154.2.3.1.x86_64.rpm libredwg-devel-0.12.5-bp154.2.3.1.i586.rpm libredwg-tools-0.12.5-bp154.2.3.1.i586.rpm libredwg0-0.12.5-bp154.2.3.1.i586.rpm libredwg-devel-0.12.5-bp154.2.3.1.aarch64.rpm libredwg-tools-0.12.5-bp154.2.3.1.aarch64.rpm libredwg0-0.12.5-bp154.2.3.1.aarch64.rpm libredwg-devel-0.12.5-bp154.2.3.1.ppc64le.rpm libredwg-tools-0.12.5-bp154.2.3.1.ppc64le.rpm libredwg0-0.12.5-bp154.2.3.1.ppc64le.rpm libredwg-devel-0.12.5-bp154.2.3.1.s390x.rpm libredwg-tools-0.12.5-bp154.2.3.1.s390x.rpm libredwg0-0.12.5-bp154.2.3.1.s390x.rpm openSUSE-2022-157 moderate openSUSE Backports SLE-15-SP4 Update This update for libxls fixes the following issues: - CVE-2021-27836: Fixed possible NULL pointer dereference via crafted XLS file (boo#1192323) libxls-1.6.2-bp154.2.3.1.src.rpm libxls-devel-1.6.2-bp154.2.3.1.x86_64.rpm libxls-tools-1.6.2-bp154.2.3.1.x86_64.rpm libxlsreader8-1.6.2-bp154.2.3.1.x86_64.rpm libxls-devel-1.6.2-bp154.2.3.1.i586.rpm libxls-tools-1.6.2-bp154.2.3.1.i586.rpm libxlsreader8-1.6.2-bp154.2.3.1.i586.rpm libxls-devel-1.6.2-bp154.2.3.1.aarch64.rpm libxls-tools-1.6.2-bp154.2.3.1.aarch64.rpm libxlsreader8-1.6.2-bp154.2.3.1.aarch64.rpm libxls-devel-1.6.2-bp154.2.3.1.ppc64le.rpm libxls-tools-1.6.2-bp154.2.3.1.ppc64le.rpm libxlsreader8-1.6.2-bp154.2.3.1.ppc64le.rpm libxls-devel-1.6.2-bp154.2.3.1.s390x.rpm libxls-tools-1.6.2-bp154.2.3.1.s390x.rpm libxlsreader8-1.6.2-bp154.2.3.1.s390x.rpm openSUSE-2022-10002 important openSUSE Backports SLE-15-SP4 Update This update for librecad fixes the following issues: - CVE-2021-45341: Fixed a buffer overflow vulnerability in LibreCAD allows an attacker to achieve remote code execution via a crafted JWW document [boo#1195105] - CVE-2021-45342: Fixed a buffer overflow vulnerability in jwwlib in LibreCAD allows an attacker to achieve remote code execution via a crafted JWW document [boo#1195122] - Strip excess blank fields from librecad.desktop:MimeType [boo#1197664] Update to 2.2.0-rc3 * major release * DWG imports are more reliable now * and a lot more of bugfixes and improvements libdxfrw-1.0.1+git.20220109-bp154.2.3.1.src.rpm libdxfrw-debuginfo-1.0.1+git.20220109-bp154.2.3.1.x86_64.rpm libdxfrw-debugsource-1.0.1+git.20220109-bp154.2.3.1.x86_64.rpm libdxfrw-devel-1.0.1+git.20220109-bp154.2.3.1.x86_64.rpm libdxfrw-tools-1.0.1+git.20220109-bp154.2.3.1.x86_64.rpm libdxfrw-tools-debuginfo-1.0.1+git.20220109-bp154.2.3.1.x86_64.rpm libdxfrw1-1.0.1+git.20220109-bp154.2.3.1.x86_64.rpm libdxfrw1-debuginfo-1.0.1+git.20220109-bp154.2.3.1.x86_64.rpm librecad-2.2.0~rc3-bp154.3.3.1.src.rpm librecad-2.2.0~rc3-bp154.3.3.1.x86_64.rpm librecad-parts-2.2.0~rc3-bp154.3.3.1.noarch.rpm libdxfrw-debuginfo-1.0.1+git.20220109-bp154.2.3.1.i586.rpm libdxfrw-debugsource-1.0.1+git.20220109-bp154.2.3.1.i586.rpm libdxfrw-devel-1.0.1+git.20220109-bp154.2.3.1.i586.rpm libdxfrw-tools-1.0.1+git.20220109-bp154.2.3.1.i586.rpm libdxfrw-tools-debuginfo-1.0.1+git.20220109-bp154.2.3.1.i586.rpm libdxfrw1-1.0.1+git.20220109-bp154.2.3.1.i586.rpm libdxfrw1-debuginfo-1.0.1+git.20220109-bp154.2.3.1.i586.rpm libdxfrw-debuginfo-1.0.1+git.20220109-bp154.2.3.1.aarch64.rpm libdxfrw-debugsource-1.0.1+git.20220109-bp154.2.3.1.aarch64.rpm libdxfrw-devel-1.0.1+git.20220109-bp154.2.3.1.aarch64.rpm libdxfrw-tools-1.0.1+git.20220109-bp154.2.3.1.aarch64.rpm libdxfrw-tools-debuginfo-1.0.1+git.20220109-bp154.2.3.1.aarch64.rpm libdxfrw1-1.0.1+git.20220109-bp154.2.3.1.aarch64.rpm libdxfrw1-debuginfo-1.0.1+git.20220109-bp154.2.3.1.aarch64.rpm librecad-2.2.0~rc3-bp154.3.3.1.aarch64.rpm libdxfrw-debuginfo-1.0.1+git.20220109-bp154.2.3.1.ppc64le.rpm libdxfrw-debugsource-1.0.1+git.20220109-bp154.2.3.1.ppc64le.rpm libdxfrw-devel-1.0.1+git.20220109-bp154.2.3.1.ppc64le.rpm libdxfrw-tools-1.0.1+git.20220109-bp154.2.3.1.ppc64le.rpm libdxfrw-tools-debuginfo-1.0.1+git.20220109-bp154.2.3.1.ppc64le.rpm libdxfrw1-1.0.1+git.20220109-bp154.2.3.1.ppc64le.rpm libdxfrw1-debuginfo-1.0.1+git.20220109-bp154.2.3.1.ppc64le.rpm librecad-2.2.0~rc3-bp154.3.3.1.ppc64le.rpm libdxfrw-debuginfo-1.0.1+git.20220109-bp154.2.3.1.s390x.rpm libdxfrw-debugsource-1.0.1+git.20220109-bp154.2.3.1.s390x.rpm libdxfrw-devel-1.0.1+git.20220109-bp154.2.3.1.s390x.rpm libdxfrw-tools-1.0.1+git.20220109-bp154.2.3.1.s390x.rpm libdxfrw-tools-debuginfo-1.0.1+git.20220109-bp154.2.3.1.s390x.rpm libdxfrw1-1.0.1+git.20220109-bp154.2.3.1.s390x.rpm libdxfrw1-debuginfo-1.0.1+git.20220109-bp154.2.3.1.s390x.rpm librecad-2.2.0~rc3-bp154.3.3.1.s390x.rpm openSUSE-2022-10026 moderate openSUSE Backports SLE-15-SP4 Update This update for xournalpp fixes the following issues: - Add Recommends tex(scontents.tex) : - Required for LaTeX rendering using Xournalpp's default_template.tex Update to version 1.1.1: * Change the edge panning behavior when an element is selected, fixing the absurdly fast edge pan speed bug. * Fixed several crashing/freezing issues. * Fixed several bugs involving stroke input and rendering. * Fixed several bugs involving PDF rendering (in application) and export. * lots of bug fixes; for the full list, see https://github.com/xournalpp/xournalpp/blob/v1.1.1/CHANGELOG.md xournalpp-1.1.1-bp154.2.3.1.src.rpm xournalpp-1.1.1-bp154.2.3.1.x86_64.rpm xournalpp-lang-1.1.1-bp154.2.3.1.noarch.rpm xournalpp-1.1.1-bp154.2.3.1.i586.rpm xournalpp-1.1.1-bp154.2.3.1.aarch64.rpm xournalpp-1.1.1-bp154.2.3.1.ppc64le.rpm xournalpp-1.1.1-bp154.2.3.1.s390x.rpm openSUSE-2022-10005 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 102.0.5001.61 (boo#1199893) * CVE-2022-1853: Use after free in Indexed DB * CVE-2022-1854: Use after free in ANGLE * CVE-2022-1855: Use after free in Messaging * CVE-2022-1856: Use after free in User Education * CVE-2022-1857: Insufficient policy enforcement in File System API * CVE-2022-1858: Out of bounds read in DevTools * CVE-2022-1859: Use after free in Performance Manager * CVE-2022-1860: Use after free in UI Foundations * CVE-2022-1861: Use after free in Sharing * CVE-2022-1862: Inappropriate implementation in Extensions * CVE-2022-1863: Use after free in Tab Groups * CVE-2022-1864: Use after free in WebApp Installs * CVE-2022-1865: Use after free in Bookmarks * CVE-2022-1866: Use after free in Tablet Mode * CVE-2022-1867: Insufficient validation of untrusted input in Data Transfer * CVE-2022-1868: Inappropriate implementation in Extensions API * CVE-2022-1869: Type Confusion in V8 * CVE-2022-1870: Use after free in App Service * CVE-2022-1871: Insufficient policy enforcement in File System API * CVE-2022-1872: Insufficient policy enforcement in Extensions API * CVE-2022-1873: Insufficient policy enforcement in COOP * CVE-2022-1874: Insufficient policy enforcement in Safe Browsing * CVE-2022-1875: Inappropriate implementation in PDF * CVE-2022-1876: Heap buffer overflow in DevTools - Chromium 101.0.4951.67 * fixes for other platforms chromedriver-102.0.5005.61-bp154.2.5.3.x86_64.rpm chromedriver-debuginfo-102.0.5005.61-bp154.2.5.3.x86_64.rpm chromium-102.0.5005.61-bp154.2.5.3.src.rpm chromium-102.0.5005.61-bp154.2.5.3.x86_64.rpm chromium-debuginfo-102.0.5005.61-bp154.2.5.3.x86_64.rpm chromedriver-102.0.5005.61-bp154.2.5.3.aarch64.rpm chromedriver-debuginfo-102.0.5005.61-bp154.2.5.3.aarch64.rpm chromium-102.0.5005.61-bp154.2.5.3.aarch64.rpm chromium-debuginfo-102.0.5005.61-bp154.2.5.3.aarch64.rpm openSUSE-2022-10006 moderate openSUSE Backports SLE-15-SP4 Update This update for knewstuff fixes the following issues: - Fixed content downloading (boo#1200014) knewstuff-5.90.0-bp154.3.3.1.src.rpm knewstuff-5.90.0-bp154.3.3.1.x86_64.rpm knewstuff-core-devel-5.90.0-bp154.3.3.1.x86_64.rpm knewstuff-devel-5.90.0-bp154.3.3.1.x86_64.rpm knewstuff-imports-5.90.0-bp154.3.3.1.x86_64.rpm knewstuff-quick-devel-5.90.0-bp154.3.3.1.x86_64.rpm libKF5NewStuff5-5.90.0-bp154.3.3.1.x86_64.rpm libKF5NewStuff5-lang-5.90.0-bp154.3.3.1.noarch.rpm libKF5NewStuffCore5-5.90.0-bp154.3.3.1.x86_64.rpm libKF5NewStuffWidgets5-5.90.0-bp154.3.3.1.x86_64.rpm knewstuff-5.90.0-bp154.3.3.1.aarch64.rpm knewstuff-core-devel-5.90.0-bp154.3.3.1.aarch64.rpm knewstuff-devel-5.90.0-bp154.3.3.1.aarch64.rpm knewstuff-imports-5.90.0-bp154.3.3.1.aarch64.rpm knewstuff-quick-devel-5.90.0-bp154.3.3.1.aarch64.rpm libKF5NewStuff5-5.90.0-bp154.3.3.1.aarch64.rpm libKF5NewStuffCore5-5.90.0-bp154.3.3.1.aarch64.rpm libKF5NewStuffWidgets5-5.90.0-bp154.3.3.1.aarch64.rpm knewstuff-5.90.0-bp154.3.3.1.ppc64le.rpm knewstuff-core-devel-5.90.0-bp154.3.3.1.ppc64le.rpm knewstuff-devel-5.90.0-bp154.3.3.1.ppc64le.rpm knewstuff-imports-5.90.0-bp154.3.3.1.ppc64le.rpm knewstuff-quick-devel-5.90.0-bp154.3.3.1.ppc64le.rpm libKF5NewStuff5-5.90.0-bp154.3.3.1.ppc64le.rpm libKF5NewStuffCore5-5.90.0-bp154.3.3.1.ppc64le.rpm libKF5NewStuffWidgets5-5.90.0-bp154.3.3.1.ppc64le.rpm knewstuff-5.90.0-bp154.3.3.1.s390x.rpm knewstuff-core-devel-5.90.0-bp154.3.3.1.s390x.rpm knewstuff-devel-5.90.0-bp154.3.3.1.s390x.rpm knewstuff-imports-5.90.0-bp154.3.3.1.s390x.rpm knewstuff-quick-devel-5.90.0-bp154.3.3.1.s390x.rpm libKF5NewStuff5-5.90.0-bp154.3.3.1.s390x.rpm libKF5NewStuffCore5-5.90.0-bp154.3.3.1.s390x.rpm libKF5NewStuffWidgets5-5.90.0-bp154.3.3.1.s390x.rpm openSUSE-2022-10048 moderate openSUSE Backports SLE-15-SP4 Update This update for fwts fixes the following issues: fwts was updated to version 22.05.00: * lib: fwts_version.h - update to V22.05.00 * debian: update changelog * fwts-test: sync up IORT test with specification version E.d * acpi: mcfg: checking kernel lockdown when doing mmap PCI config space * auto-packager:mkpackage.sh: add kinetic * acpi: iort: update IORT test to specification version E.d * Update copyright year to 2022 * acpi: iort: update the IORT node dump * acpi: iort: update IORT node revision check * ACPICA: Update to version 20220331 Update to version 22.03.00: * lib: fwts_version.h - update to V22.03.00 * debian: update changelog * fwts-test: sync up the sdev checking secure access components * acpi: sdev: add checking secure access components * acpi: macf: report failures instead of just logging the errors * acpi/time: skip a number of TAD methods when _GCP[0] is clear * acpi:dmar: update the link of DMAR table * fwts-tests: update acpi dump data to be in sync with latest ACPICA * ACPICA: Update to version 20211217 Update to version 22.01.00: * fwts-test: sync up the adding option for get next high monotonic count * uefirtmisc: add option to specify iterations get next high monitonic count * uefirtmisc: add checking the resources for testing * lib: fwts_version.h - update to V22.01.00 * debian: update changelog * fwts_acpica: skip unneccessary null check * s3: use system suspend default if --s3-sleep-type is not used * tpmevlogdump: add supporting several new types for event log dumping * auto-packager: mkpackage.sh: remove hirsute * tpmevlog: add supporting several new types for event log checking * lib: fwts_tpm.h: add new type definition Update build dependencies (add zlib) Update to version 21.12.00: * lib: fwts_version.h - update to V21.12.00 * debian: update changelog * dmicheck: skip scanning smbios in /dev/mem on aarch64 * s3: increase s2idle_residency to u64 to avoid overflows * s3: fix incorrect error messages for s2idle_residency * acpi: uniqueid: clean up pedantic static analysis warnings * s4: clean up pedantic static analysis warnings fwts-22.05.00-bp154.2.3.5.src.rpm fwts-22.05.00-bp154.2.3.5.x86_64.rpm fwts-debuginfo-22.05.00-bp154.2.3.5.x86_64.rpm fwts-debugsource-22.05.00-bp154.2.3.5.x86_64.rpm fwts-22.05.00-bp154.2.3.5.i586.rpm fwts-debuginfo-22.05.00-bp154.2.3.5.i586.rpm fwts-debugsource-22.05.00-bp154.2.3.5.i586.rpm fwts-22.05.00-bp154.2.3.5.aarch64.rpm fwts-debuginfo-22.05.00-bp154.2.3.5.aarch64.rpm fwts-debugsource-22.05.00-bp154.2.3.5.aarch64.rpm openSUSE-2022-10007 moderate openSUSE Backports SLE-15-SP4 Update This update for caddy fixes the following issues: Update to version 2.5.1: * Fixed regression in Unix socket admin endpoints. * Fixed regression in caddy trust commands. * Hash-based load balancing policies (ip_hash, uri_hash, header, and cookie) use an improved highest-random-weight (HRW) algorithm for increased consistency. * Dynamic upstreams, which is the ability to get the list of upstreams at every request (more specifically, every iteration in the proxy loop of every request) rather than just once at config-load time. * Caddy will automatically try to get relevant certificates from the local Tailscale instance. * New OpenTelemetry integration. * Added new endpoints /pki/ca/<id> and /pki/ca/<id>/certificates for getting information about Caddy's managed CAs. * Rename _caddy to zsh-completion * Fix MatchPath sanitizing [bsc#1200279, CVE-2022-29718] caddy-2.5.1-bp154.2.5.1.src.rpm caddy-2.5.1-bp154.2.5.1.x86_64.rpm caddy-2.5.1-bp154.2.5.1.i586.rpm caddy-2.5.1-bp154.2.5.1.aarch64.rpm caddy-2.5.1-bp154.2.5.1.ppc64le.rpm caddy-2.5.1-bp154.2.5.1.s390x.rpm openSUSE-2022-10008 moderate openSUSE Backports SLE-15-SP4 Update This update for opi fixes the following issues: Version 2.5.0 - Use $releasever in repo creation on Leap Version 2.4.7 - Fix release script - Fix numbering in --help - Update README.md - Add release helper script Version 2.4.6 - Update .NET SDK to 6.0 Version 2.4.5 - Packman codec changes Version 2.5.0 - Run ci for both tumbleweed and leap - Use $releasever in repo creation on Leap Version 2.4.7 - Fix numbering in --help - Add release helper script Version 2.4.6 - Update .NET SDK to 6.0 Version 2.4.5 - Update packman codecs plugin to reflect recent changes that apply to Tumbleweed and releases after 15.4 see https://lists.opensuse.org/archives/list/factory@lists.opensuse.org/thread/VMXOWQWC4WW3W6PM7WPZDRMNCV26KKGY/ opi-2.5.0-bp154.2.3.1.noarch.rpm opi-2.5.0-bp154.2.3.1.src.rpm openSUSE-2022-10012 moderate openSUSE Backports SLE-15-SP4 Update This update for libksysguard5 fixes the following issues: - Recommend the plugins package (boo#1199851) Update to 5.24.5 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.24.5 - No code changes since 5.24.4 ksysguardsystemstats-data-5.24.5-bp154.2.3.2.x86_64.rpm libKSysGuardSystemStats1-5.24.5-bp154.2.3.2.x86_64.rpm libksysguard5-5.24.5-bp154.2.3.2.src.rpm libksysguard5-5.24.5-bp154.2.3.2.x86_64.rpm libksysguard5-devel-5.24.5-bp154.2.3.2.x86_64.rpm libksysguard5-imports-5.24.5-bp154.2.3.2.x86_64.rpm libksysguard5-lang-5.24.5-bp154.2.3.2.noarch.rpm libksysguard5-plugins-5.24.5-bp154.2.3.2.x86_64.rpm ksysguardsystemstats-data-5.24.5-bp154.2.3.2.aarch64.rpm libKSysGuardSystemStats1-5.24.5-bp154.2.3.2.aarch64.rpm libksysguard5-5.24.5-bp154.2.3.2.aarch64.rpm libksysguard5-devel-5.24.5-bp154.2.3.2.aarch64.rpm libksysguard5-imports-5.24.5-bp154.2.3.2.aarch64.rpm libksysguard5-plugins-5.24.5-bp154.2.3.2.aarch64.rpm ksysguardsystemstats-data-5.24.5-bp154.2.3.2.ppc64le.rpm libKSysGuardSystemStats1-5.24.5-bp154.2.3.2.ppc64le.rpm libksysguard5-5.24.5-bp154.2.3.2.ppc64le.rpm libksysguard5-devel-5.24.5-bp154.2.3.2.ppc64le.rpm libksysguard5-imports-5.24.5-bp154.2.3.2.ppc64le.rpm libksysguard5-plugins-5.24.5-bp154.2.3.2.ppc64le.rpm openSUSE-2022-10010 critical openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - Chromium 102.0.5005.115 (boo#1200423) * CVE-2022-2007: Use after free in WebGPU * CVE-2022-2008: Out of bounds memory access in WebGL * CVE-2022-2010: Out of bounds read in compositing * CVE-2022-2011: Use after free in ANGLE chromedriver-102.0.5005.115-bp154.2.8.1.x86_64.rpm chromium-102.0.5005.115-bp154.2.8.1.src.rpm chromium-102.0.5005.115-bp154.2.8.1.x86_64.rpm chromedriver-102.0.5005.115-bp154.2.8.1.aarch64.rpm chromium-102.0.5005.115-bp154.2.8.1.aarch64.rpm openSUSE-2022-10011 moderate openSUSE Backports SLE-15-SP4 Update This update for opi fixes the following issues: Version 2.7.0 - Make repo parsing more stable and improve error handling - Do not compress man page during build/install phase, but rather rely on the brp-scripts to pick the right compression format. Version 2.6.0 - Move to global config in /etc/opi.cfg - Check if desired repo is already added instead of relying on prefix - Add config option use_releasever_var opi-2.7.0-bp154.2.6.1.noarch.rpm opi-2.7.0-bp154.2.6.1.src.rpm openSUSE-2022-10020 moderate openSUSE Backports SLE-15-SP4 Update This update for neomutt fixes the following issues: neomutt was updated to 20220429: * Bug Fixes * Do not crash on an invalid use_threads/sort combination * Fix: stuck browser cursor * Resolve (move) the cursor after <edit-label> * Index: fix menu size on new mail * Don't overlimit LMDB mmap size * OpenBSD y/n translation fix * Generic: split out OP_EXIT binding * Fix parsing of sendmail cmd * Fix: crash with menu_move_off=no * Newsrc: bugfix; nntp_user and nntp_pass ignored * Menu: ensure config changes cause a repaint * Mbox: fix sync duplicates * Make sure the index redraws all that's needed * Translations * 100% Chinese (Simplified) * 100% Czech * 100% German * 100% Hungarian * 100% Lithuanian * 100% Serbian * 100% Turkish * Docs * add missing pattern modifier ~I for external_search_command * Code * menu: eliminate custom_redraw() * modernise mixmaster * Kill global and Propagate display attach status through State- neomutt was updated to 20220415: * Security * Fix uudecode buffer overflow (CVE-2022-1328) * Features * Colours, colours, colours * Bug Fixes * Pager: fix pager_stop * Merge colours with normal * Color: disable mono command * Fix forwarding text attachments when honor_disposition is set * Pager: drop the nntp change-group bindings * Use mailbox_check flags coherently, add IMMEDIATE flag * Fix: tagging in attachment list * Fix: misalignment of mini-index * Make sure to update the menu size after a resort * Translations * 100% Hungarian * Build * Update acutest * Code * Unify pipe functions * Index: notify if navigation fails * Gui: set colour to be merged with normal * Fix: leak in tls_check_one_certificate() * Upstream * Flush iconv() in mutt_convert_string() * Fix integer overflow in mutt_convert_string() * Fix uudecode cleanup on unexpected eof update to 20220408: * Compose multipart emails * Fix screen mode after attempting decryption * imap: increase max size of oauth2 token * Fix autocrypt * Unify Alias/Query workflow * Fix colours * Say which file exists when saving attachments * Force SMTP authentication if `smtp_user` is set * Fix selecting the right email after limiting * Make sure we have enough memory for a new email * Don't overwrite with zeroes after unlinking the file * Fix crash when forwarding attachments * Fix help reformatting on window resize * Fix poll to use PollFdsCount and not PollFdsLen * regex: range check arrays strictly * Fix Coverity defects * Fix out of bounds write with long log lines * Apply `fast_reply` to 'to', 'cc', or 'bcc' * Prevent warning on empty emails * New default: `set rfc2047_parameters = yes` * 100% German * 100% Lithuanian * 100% Serbian * 100% Czech * 100% Turkish * 72% Hungarian * Improve header cache explanation * Improve description of some notmuch variables * Explain how timezones and `!`s work inside `%{}`, `%[]` and `%()` * Document config synonyms and deprecations * Create lots of GitHub Actions * Drop TravisCI * Add automated Fuzzing tests * Add automated ASAN tests * Create Dockers for building Centos/Fedora * Build fixes for Solaris 10 * New libraries: browser, enter, envelope * New configure options: `--fuzzing` `--debug-color` `--debug-queue` * Split Index/Pager GUIs/functions * Add lots of function dispatchers * Eliminate `menu_loop()` * Refactor function opcodes * Refactor cursor setting * Unify Alias/Query functions * Refactor Compose/Envelope functions * Modernise the Colour handling * Refactor the Attachment View * Eliminate the global `Context` * Upgrade `mutt_get_field()` * Refactor the `color quoted` code * Fix lots of memory leaks * Refactor Index resolve code * Refactor PatternList parsing * Refactor Mailbox freeing * Improve key mapping * Factor out charset hooks * Expose mutt_file_seek API * Improve API of `strto*` wrappers * imap QRESYNC fixes * Allow an empty To: address prompt * Fix argc==0 handling * Don't queue IMAP close commands * Fix IMAP UTF-7 for code points >= U+10000 * Don't include inactive messages in msgset generation update to 20211029 (boo#1185705, CVE-2021-32055): * Notmuch: support separate database and mail roots without .notmuch * fix notmuch crash on open failure * fix crypto crash handling pgp keys * fix ncrypt/pgp file_get_size return check * fix restore case-insensitive header sort * fix pager redrawing of long lines * fix notmuch: check database dir for xapian dir * fix notmuch: update index count after <entire-thread> * fix protect hash table against empty keys * fix prevent real_subj being set but empty * fix leak when saving fcc * fix leak after <edit-or-view-raw-message> * fix leak after trash to hidden mailbox * fix leak restoring postponed emails * fix new mail notifications * fix pattern compilation error for ( !>(~P) ) * fix menu display on window resize * Stop batch mode emails with no argument or recipients * Add sanitize call in print mailcap function * fix hdr_order to use the longest match * fix (un)setenv to not return an error with unset env vars * fix Imap sync when closing a mailbox * fix segfault on OpenBSD current * sidebar: restore sidebar_spoolfile colour * fix assert when displaying a file from the browser * fix exec command in compose * fix check_stats for Notmuch mailboxes * Fallback: Open Notmuch database without config * fix gui hook commands on startup * threads: implement the $use_threads feature * https://neomutt.org/feature/use-threads * hooks: allow a -noregex param to folder and mbox hooks * mailing lists: implement list-(un)subscribe using RFC2369 headers * mailcap: implement x-neomutt-nowrap flag * pager: add $local_date_header option * imap, smtp: add support for authenticating using XOAUTH2 * Allow <sync-mailbox> to fail quietly * imap: speed up server-side searches * pager: improve skip-quoted and skip-headers * notmuch: open database with user's configuration * notmuch: implement <vfolder-window-reset> * config: allow += modification of my_ variables * notmuch: tolerate file renames behind neomutt's back * pager: implement $pager_read_delay * notmuch: validate nm_query_window_timebase * notmuch: make $nm_record work in non-notmuch mailboxes * compose: add $greeting - a welcome message on top of emails * notmuch: show additional mail in query windows * imap: fix crash on external IMAP events * notmuch: handle missing libnotmuch version bumps * imap: add sanity check for qresync * notmuch: allow windows with 0 duration * index: fix index selection on <collapse-all> * imap: fix crash when sync'ing labels * search: fix searching by Message-Id in <mark-message> * threads: fix double sorting of threads * stats: don't check mailbox stats unless told * alias: fix crash on empty query * pager: honor mid-message config changes * mailbox: don't propagate read-only state across reopens * hcache: fix caching new labels in the header cache * crypto: set invalidity flags for gpgme/smime keys * notmuch: fix parsing of multiple type= * notmuch: validate $nm_default_url * messages: avoid unnecessary opening of messages * imap: fix seqset iterator when it ends in a comma * build: refuse to build without pcre2 when pcre2 is linked in ncurses neomutt-20220429-bp154.2.3.1.src.rpm neomutt-20220429-bp154.2.3.1.x86_64.rpm neomutt-doc-20220429-bp154.2.3.1.noarch.rpm neomutt-lang-20220429-bp154.2.3.1.noarch.rpm neomutt-20220429-bp154.2.3.1.aarch64.rpm neomutt-20220429-bp154.2.3.1.ppc64le.rpm neomutt-20220429-bp154.2.3.1.s390x.rpm openSUSE-2022-10016 important openSUSE Backports SLE-15-SP4 Update This update for firejail fixes the following issues: firejail was updated to version 0.9.70: - CVE-2022-31214 - root escalation in --join logic (boo#1199148) Reported by Matthias Gerstner, working exploit code was provided to our development team. In the same time frame, the problem was independently reported by Birk Blechschmidt. Full working exploit code was also provided. - feature: enable shell tab completion with --tab (#4936) - feature: disable user profiles at compile time (#4990) - feature: Allow resolution of .local names with avahi-daemon in the apparmor - profile (#5088) - feature: always log seccomp errors (#5110) - feature: firecfg --guide, guided user configuration (#5111) - feature: --oom, kernel OutOfMemory-killer (#5122) - modif: --ids feature needs to be enabled at compile time (#5155) - modif: --nettrace only available to root user - rework: whitelist restructuring (#4985) - rework: firemon, speed up and lots of fixes - bugfix: --private-cwd not expanding macros, broken hyperrogue (#4910) - bugfix: nogroups + wrc prints confusing messages (#4930 #4933) - bugfix: openSUSE Leap - whitelist-run-common.inc (#4954) - bugfix: fix printing in evince (#5011) - bugfix: gcov: fix gcov functions always declared as dummy (#5028) - bugfix: Stop warning on safe supplementary group clean (#5114) - build: remove ultimately unused INSTALL and RANLIB check macros (#5133) - build: mkdeb.sh.in: pass remaining arguments to ./configure (#5154) - ci: replace centos (EOL) with almalinux (#4912) - ci: fix --version not printing compile-time features (#5147) - ci: print version after install & fix apparmor support on build_apparmor (#5148) - docs: Refer to firejail.config in configuration files (#4916) - docs: firejail.config: add warning about allow-tray (#4946) - docs: mention that the protocol command accumulates (#5043) - docs: mention inconsistent homedir bug involving --private=dir (#5052) - docs: mention capabilities(7) on --caps (#5078) - new profiles: onionshare, onionshare-cli, opera-developer, songrec - new profiles: node-gyp, npx, semver, ping-hardened - removed profiles: nvm update to firejail 0.9.68: - security: on Ubuntu, the PPA is now recommended over the distro package (see README.md) (#4748) - security: bugfix: private-cwd leaks access to the entire filesystem (#4780); reported by Hugo Osvaldo Barrera - feature: remove (some) environment variables with auth-tokens (#4157) - feature: ALLOW_TRAY condition (#4510 #4599) - feature: add basic Firejail support to AppArmor base abstraction (#3226 #4628) - feature: intrusion detection system (--ids-init, --ids-check) - feature: deterministic shutdown command (--deterministic-exit-code, --deterministic-shutdown) (#928 #3042 #4635) - feature: noprinters command (#4607 #4827) - feature: network monitor (--nettrace) - feature: network locker (--netlock) (#4848) - feature: whitelist-ro profile command (#4740) - feature: disable pipewire with --nosound (#4855) - feature: Unset TMP if it doesn't exist inside of sandbox (#4151) - feature: Allow apostrophe in whitelist and blacklist (#4614) - feature: AppImage support in --build command (#4878) - modifs: exit code: distinguish fatal signals by adding 128 (#4533) - modifs: firecfg.config is now installed to /etc/firejail/ (#408 #4669) - modifs: close file descriptors greater than 2 (--keep-fd) (#4845) - modifs: nogroups now stopped causing certain system groups to be dropped, - which are now controlled by the relevant "no" options instead (such as - nosound -> drop audio group), which fixes device access issues on systems - not using (e)logind (such as with seatd) (#4632 #4725 #4732 #4851) - removal: --disable-whitelist at compile time - removal: whitelist=yes/no in /etc/firejail/firejail.config - bugfix: Fix sndio support (#4362 #4365) - bugfix: Error mounting tmpfs (MS_REMOUNT flag not being cleared) (#4387) - bugfix: --build clears the environment (#4460 #4467) - bugfix: firejail hangs with net parameter (#3958 #4476) - bugfix: Firejail does not work with a custom hosts file (#2758 #4560) - bugfix: --tracelog and --trace override /etc/ld.so.preload (#4558 #4586) - bugfix: PATH_MAX is undeclared on musl libc (#4578 #4579 #4583 #4606) - bugfix: firejail symlinks are not skipped with private-bin + globs (#4626) - bugfix: Firejail rejects empty arguments (#4395) - bugfix: firecfg does not work with symlinks (discord.desktop) (#4235) - bugfix: Seccomp list output goes to stdout instead of stderr (#4328) - bugfix: private-etc does not work with symlinks (#4887) - bugfix: Hardware key not detected on keepassxc (#4883) - build: allow building with address sanitizer (#4594) - build: Stop linking pthread (#4695) - build: Configure cleanup and improvements (#4712) - ci: add profile checks for sorting disable-programs.inc and - firecfg.config and for the required arguments in private-etc (#2739 #4643) - ci: pin GitHub actions to SHAs and use Dependabot to update them (#4774) - docs: Add new command checklist to CONTRIBUTING.md (#4413) - docs: Rework bug report issue template and add both a question and a - feature request template (#4479 #4515 #4561) - docs: fix contradictory descriptions of machine-id ("preserves" vs "spoofs") (#4689) - docs: Document that private-bin and private-etc always accumulate (#4078) - new includes: whitelist-run-common.inc (#4288), disable-X11.inc (#4462) - new includes: disable-proc.inc (#4521) - removed includes: disable-passwordmgr.inc (#4454 #4461) - new profiles: microsoft-edge-beta, clion-eap, lifeograph, zim - new profiles: io.github.lainsce.Notejot, rednotebook, gallery-dl - new profiles: yt-dlp, goldendict, goldendict, bundle, cmake - new profiles: make, meson, pip, codium, telnet, ftp, OpenStego - new profiles: imv, retroarch, torbrowser, CachyBrowser, - new profiles: notable, RPCS3, wget2, raincat, conitop, 1passwd, - new profiles: Seafile, neovim, com.github.tchx84.Flatseal firejail-0.9.70-bp154.2.3.1.src.rpm firejail-0.9.70-bp154.2.3.1.x86_64.rpm firejail-bash-completion-0.9.70-bp154.2.3.1.x86_64.rpm firejail-zsh-completion-0.9.70-bp154.2.3.1.x86_64.rpm firejail-0.9.70-bp154.2.3.1.i586.rpm firejail-bash-completion-0.9.70-bp154.2.3.1.i586.rpm firejail-zsh-completion-0.9.70-bp154.2.3.1.i586.rpm firejail-0.9.70-bp154.2.3.1.aarch64.rpm firejail-bash-completion-0.9.70-bp154.2.3.1.aarch64.rpm firejail-zsh-completion-0.9.70-bp154.2.3.1.aarch64.rpm firejail-0.9.70-bp154.2.3.1.ppc64le.rpm firejail-bash-completion-0.9.70-bp154.2.3.1.ppc64le.rpm firejail-zsh-completion-0.9.70-bp154.2.3.1.ppc64le.rpm firejail-0.9.70-bp154.2.3.1.s390x.rpm firejail-bash-completion-0.9.70-bp154.2.3.1.s390x.rpm firejail-zsh-completion-0.9.70-bp154.2.3.1.s390x.rpm openSUSE-2022-10017 important openSUSE Backports SLE-15-SP4 Update This update for chafa fixes the following issues: - CVE-2022-2061: Fix heap based buffer overflow in lzw_decode (boo#1200510) chafa-1.8.0-bp154.3.3.1.src.rpm chafa-1.8.0-bp154.3.3.1.x86_64.rpm chafa-devel-1.8.0-bp154.3.3.1.x86_64.rpm chafa-doc-1.8.0-bp154.3.3.1.noarch.rpm libchafa0-1.8.0-bp154.3.3.1.x86_64.rpm chafa-1.8.0-bp154.3.3.1.i586.rpm chafa-devel-1.8.0-bp154.3.3.1.i586.rpm libchafa0-1.8.0-bp154.3.3.1.i586.rpm chafa-1.8.0-bp154.3.3.1.aarch64.rpm chafa-devel-1.8.0-bp154.3.3.1.aarch64.rpm libchafa0-1.8.0-bp154.3.3.1.aarch64.rpm chafa-1.8.0-bp154.3.3.1.ppc64le.rpm chafa-devel-1.8.0-bp154.3.3.1.ppc64le.rpm libchafa0-1.8.0-bp154.3.3.1.ppc64le.rpm chafa-1.8.0-bp154.3.3.1.s390x.rpm chafa-devel-1.8.0-bp154.3.3.1.s390x.rpm libchafa0-1.8.0-bp154.3.3.1.s390x.rpm openSUSE-2022-10023 important openSUSE Backports SLE-15-SP4 Update This update for tor fixes the following issues: tor was updated to 0.4.7.8: * Fix a scenario where RTT estimation can become wedged, seriously degrading congestion control performance on all circuits. This impacts clients, onion services, and relays, and can be triggered remotely by a malicious endpoint. (TROVE-2022-001, CVE-2022-33903, boo#1200672) * Regenerate fallback directories generated on June 17, 2022. * Update the geoip files to match the IPFire Location Database, as retrieved on 2022/06/17. * Allow the rseq system call in the sandbox * logging bug fixes tor-0.4.7.8-bp154.2.3.1.src.rpm tor-0.4.7.8-bp154.2.3.1.x86_64.rpm tor-debuginfo-0.4.7.8-bp154.2.3.1.x86_64.rpm tor-debugsource-0.4.7.8-bp154.2.3.1.x86_64.rpm tor-0.4.7.8-bp154.2.3.1.i586.rpm tor-debuginfo-0.4.7.8-bp154.2.3.1.i586.rpm tor-debugsource-0.4.7.8-bp154.2.3.1.i586.rpm tor-0.4.7.8-bp154.2.3.1.aarch64.rpm tor-debuginfo-0.4.7.8-bp154.2.3.1.aarch64.rpm tor-debugsource-0.4.7.8-bp154.2.3.1.aarch64.rpm tor-0.4.7.8-bp154.2.3.1.ppc64le.rpm tor-debuginfo-0.4.7.8-bp154.2.3.1.ppc64le.rpm tor-debugsource-0.4.7.8-bp154.2.3.1.ppc64le.rpm tor-0.4.7.8-bp154.2.3.1.s390x.rpm tor-debuginfo-0.4.7.8-bp154.2.3.1.s390x.rpm tor-debugsource-0.4.7.8-bp154.2.3.1.s390x.rpm openSUSE-2022-10022 moderate openSUSE Backports SLE-15-SP4 Update This update for trivy fixes the following issues: trivy was updated to version 0.28.0 (boo#1199760, CVE-2022-28946): * fix: remove Highlighted from json output (#2131) * fix: remove trivy-kubernetes replace (#2132) * docs: Add Operator docs under Kubernetes section (#2111) * fix(k8s): security-checks panic (#2127) * ci: added k8s scope (#2130) * docs: Update misconfig output in examples (#2128) * fix(misconf): Fix coloured output in Goland terminal (#2126) * docs(secret): Fix default value of --security-checks in docs (#2107) * refactor(report): move colorize function from trivy-db (#2122) * feat: k8s resource scanning (#2118) * chore: add CODEOWNERS (#2121) * feat(image): add `--server` option for remote scans (#1871) * refactor: k8s (#2116) * refactor: export useful APIs (#2108) * docs: fix k8s doc (#2114) * feat(kubernetes): Add report flag for summary (#2112) * fix: Remove problematic advanced rego policies (#2113) * feat(misconf): Add special output format for misconfigurations (#2100) * feat: add k8s subcommand (#2065) * chore: fix make lint version (#2102) * fix(java): handle relative pom modules (#2101) * fix(misconf): Add missing links for non-rego misconfig results (#2094) * feat(misconf): Added fs.FS based scanning via latest defsec (#2084) * chore(deps): bump trivy-issue-action to v0.0.4 (#2091) * chore(deps): bump github.com/twitchtv/twirp (#2077) * chore(deps): bump github.com/urfave/cli/v2 from 2.4.0 to 2.5.1 (#2074) * chore(os): updated fanal version and alpine distroless test (#2086) * chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.5.1 to 0.5.2 (#2075) * chore(deps): bump github.com/samber/lo from 1.16.0 to 1.19.0 (#2076) * feat(report): add support for SPDX (#2059) * chore(deps): bump actions/setup-go from 2 to 3 (#2073) * chore(deps): bump actions/cache from 3.0.1 to 3.0.2 (#2071) * chore(deps): bump golang from 1.18.0 to 1.18.1 (#2069) * chore(deps): bump actions/stale from 4 to 5 (#2070) * chore(deps): bump sigstore/cosign-installer from 2.0.0 to 2.3.0 (#2072) * chore(deps): bump github.com/open-policy-agent/opa from 0.39.0 to 0.40.0 (#2079) * chore: app version 0.27.0 (#2046) * fix(misconf): added to skip conf files if their scanning is not enabled (#2066) * docs(secret) fix rule path in docs (#2061) * docs: change from go.sum to go.mod (#2056) Update to version 0.27.1: * chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.5.0 to 0.5.1 (#1926) * refactor(fs): scanner options (#2050) * feat(secret): truncate long line (#2052) * docs: fix a broken bullets (#2042) * feat(ubuntu): add 22.04 approx eol date (#2044) * docs: update installation.md (#2027) * docs: add Containerfile (#2032) Update to version 0.27.0: * fix(go): fixed panic to scan gomod without version (#2038) * docs(mariner): confirm it works with Mariner 2.0 VM (#2036) * feat(secret): support enable rules (#2035) * chore: app version 26.0 (#2030) * docs(secret): add a demo movie (#2031) * feat: support cache TTL in Redis (#2021) * fix(go): skip system installed binaries (#2028) * fix(go): check if go.sum is nil (#2029) * feat: add secret scanning (#1901) * chore: gh publish only with push the tag release (#2025) * fix(fs): ignore permission errors (#2022) * test(mod): using correct module inside test go.mod (#2020) * feat(server): re-add proxy support for client/server communications (#1995) * fix(report): truncate a description before escaping in ASFF template (#2004) * fix(cloudformation): correct margin removal for empty lines (#2002) * fix(template): correct check of old sarif template files (#2003) Update to version 0.26.0: * feat(alpine): warn mixing versions (#2000) * Update ASFF template (#1914) * chore(deps): replace `containerd/containerd` version to fix CVE-2022-23648 (#1994) * chore(deps): bump alpine from 3.15.3 to 3.15.4 (#1993) * test(go): add integration tests for gomod (#1989) * fix(python): fixed panic when scan .egg archive (#1992) * fix(go): set correct go modules type (#1990) * feat(alpine): support apk repositories (#1987) * docs: add CBL-Mariner (#1982) * docs(go): fix version (#1986) * feat(go): support go.mod in Go 1.17+ (#1985) * ci: fix URLs in the PR template (#1972) * ci: add semantic pull requests check (#1968) * docs(issue): added docs for wrong detection issues (#1961) Update to version 0.25.4: * docs: move CONTRIBUTING.md to docs (#1971) * refactor(table): use file name instead package path (#1966) * fix(sbom): add --db-repository (#1964) * feat(table): add PkgPath in table result (#1960) * fix(pom): merge multiple pom imports in a good manner (#1959) Update to version 0.25.3: * fix(downloadDB): add dbRepositoryFlag to repository and rootfs commands (#1956) * fix(misconf): update BurntSushi/toml for fix runtime error (#1948) * fix(misconf): Update fanal/defsec to resolve missing metadata issues (#1947) * feat(jar): allow setting Maven Central URL using environment variable (#1939) * chore(chart): update Trivy version in HelmChart to 0.25.0 (#1931) * chore(chart): remove version comments (#1933) Update to version 0.25.2: * fix(downloadDB): add flag to server command (#1942) Update to version 0.25.1: * fix(misconf): update defsec to resolve panics (#1935) * chore(deps): bump github.com/docker/docker (#1924) * docs: restructure the documentation (#1887) * chore(deps): bump github.com/urfave/cli/v2 from 2.3.0 to 2.4.0 (#1923) * chore(deps): bump actions/cache from 2 to 3.0.1 (#1920) * chore(deps): bump actions/checkout from 2 to 3 (#1916) * chore(deps): bump github.com/open-policy-agent/opa from 0.37.2 to 0.39.0 (#1921) * chore(deps): bump sigstore/cosign-installer from 2.0.0 to 2.1.0 (#1919) * chore(deps): bump helm/chart-testing-action from 2.2.0 to 2.2.1 (#1918) * chore(deps): bump golang from 1.17 to 1.18.0 (#1915) * Add trivy horizontal logo (#1932) * chore(deps): bump alpine from 3.15.0 to 3.15.3 (#1917) * chore(deps): bump github.com/go-redis/redis/v8 from 8.11.4 to 8.11.5 (#1925) * chore(deps): bump github.com/stretchr/testify from 1.7.0 to 1.7.1 (#1927) * feat(db): Add dbRepository flag to get advisory database from OCI registry (#1873) Update to version 0.25.0: * docs(filter vulnerabilities): fix link (#1880) * feat(template) Add misconfigurations to gitlab codequality report (#1756) * fix(rpc): add PkgPath field to client / server mode (#1643) * fix(vulnerabilities): fixed trivy-db vulns (#1883) * feat(cache): remove temporary cache after filesystem scanning (#1868) * feat(sbom): add a dedicated sbom command (#1799) * feat(cyclonedx): add vulnerabilities (#1832) * fix(option): hide false warning about remote options (#1865) * chore: bump up Go to 1.18 (#1862) * feat(filesystem): scan in client/server mode (#1829) * refactor(template): remove unused test (#1861) * fix(cli): json format for trivy version (#1854) * docs: change URL for tfsec-checks (#1857) trivy-0.28.0-bp154.2.3.1.src.rpm trivy-0.28.0-bp154.2.3.1.x86_64.rpm trivy-0.28.0-bp154.2.3.1.i586.rpm trivy-0.28.0-bp154.2.3.1.aarch64.rpm trivy-0.28.0-bp154.2.3.1.s390x.rpm openSUSE-2022-10019 important openSUSE Backports SLE-15-SP4 Update This update for atheme fixes the following issues: atheme was updated to release 7.2.12: * CVE-2022-24976: Fixed General authentication bypass in Atheme IRC services with InspIRCd 3 [boo#1195989] * Track SASL login EID atheme-7.2.12-bp154.2.3.1.src.rpm atheme-7.2.12-bp154.2.3.1.x86_64.rpm atheme-devel-7.2.12-bp154.2.3.1.x86_64.rpm libathemecore1-7.2.12-bp154.2.3.1.x86_64.rpm atheme-7.2.12-bp154.2.3.1.i586.rpm atheme-devel-7.2.12-bp154.2.3.1.i586.rpm libathemecore1-7.2.12-bp154.2.3.1.i586.rpm atheme-7.2.12-bp154.2.3.1.aarch64.rpm atheme-devel-7.2.12-bp154.2.3.1.aarch64.rpm libathemecore1-7.2.12-bp154.2.3.1.aarch64.rpm atheme-7.2.12-bp154.2.3.1.ppc64le.rpm atheme-devel-7.2.12-bp154.2.3.1.ppc64le.rpm libathemecore1-7.2.12-bp154.2.3.1.ppc64le.rpm atheme-7.2.12-bp154.2.3.1.s390x.rpm atheme-devel-7.2.12-bp154.2.3.1.s390x.rpm libathemecore1-7.2.12-bp154.2.3.1.s390x.rpm openSUSE-2022-10024 moderate openSUSE Backports SLE-15-SP4 Update This update for atop fixes the following issues: atop was updated to 2.7.1: * Correct disk stats in atopsar (#182) * Explicit type definition in atop.service (#180) Update to 2.7.0: * Describe (un)restricted view in first screen * Cosmetic change * Determine (un)restricted view by verifying suid instead of euid. * Do not ignore unknown network interface * Parseable output: optionally exchange spaces in command * No setuid by default * Correct conversion to 2.7 raw files * Corrected type * Only show per-node NUMA stats when more than 1 node * Prepare man pages for version 2.7 * Prepare atopconvert for version 2.7 * Detect logrotation for process accounting with psacct/acct * Speed and duplex mode not correctly filled for interface * Bug solution related to discards * Support discard counter for disks and skip unused disks * ifprop.c: fix ioctl parameter after handshaking with kernel * Show gigabits/sec instead of megabits/sec for Infiniband #131 * CVE: use execvp with a specified path to avoid PATH hijacking * Correct memory busy logic in atopsar * Add parseable output for per-node NUMA counters * Additions to NUMA counters Table overflow checks * Gather and show per numa cpu related statistics * Gather and show per numa memory related statistics * Correction in handling of zswap and ksm counters * Support containers created by podman * Cleanup old messages * Do not change owner to root in Makefile (#76) * Support process accounting log /var/log/account/pacct (#138) * Polish do_perfevents when atop built with NOPERFEVENT * Do not use doconvert funtion to validate counter (#160) * New counter for number of NUMA pages migrated * Modify field order and priority of paging counters * Small text modification for migrated counter * Avoid non-initialized prestat by introducing extra pointer * Function 'calcdiff' (deviate.c) used uninitialized prestat struct * Reserver space for future counters. * Clean up ignored files * Variable number of positions for sortitem * Adapt man page of atop for state selection (add state 'I'). * Allow thread state 'I' with state selection (key 'Q') * Count idle threads as non-interruptible threads * Uninitialized index might cause segmentation fault. * Support NVMe multipath disk statistics * Support page migration counter * photosyst.c: fix build on musl * Use of struct ethtool_link_settings should be conditional * Cosmetic change (source code layout) * Various bug fixes and in general add 'thread' to all messages * Properly define if interface is virtual or physical * Add license info to various include files (solves issue #144) * HTTP statistics modified from -h flag to -o flag (#152) * Possible buffer overflow with huge number of seconds Number of seconds will be limited to 5 positions. * Possible buffer overflow with average disk I/O * Allow process selection based on specific process states. * Correct definition of environment variable LOGOPTS * Switch to using curses vw_printw as vwprintw is deprecated * Support multiple counters 'allocstall_' in /proc/vmstat. * Avoid integer overflow when calculating PSI percentages. * Suppress irrelevant counters (solves issue #148) * Add the number of OOM kills to the -s report * Record the number of process stalls to run memory compaction * Make clean removes atopsar now (issue 145) * Add counter for the number of OOM kills to the PAG line * Add counters for zswap and KSM. * ifprop.c: fix build with kernel < 4.6 * Fix initifprop() when obtaining properties of all interfaces * Fixed rounding problems in the average-per-second mode. Update to version 2.6.0 * Sort threads within process. * Individual threads within a process (key 'y') are shown in the order of their TID. With the additional key 'Y' threads within a process are sorted based on the current sort criterium. * Show the WCHAN per thread. * With the key 'W' is active, the wait channel is determined per thread and shown with the scheduling information (key 's'). * Show runqueue delay per thread/process. * For every process (cumulated) and every thread the time spent waiting on the runqueue is shown as value 'RDELAY'. * Show other modified/new metrics: + PSI pressure during interval time is shown + Counter 'avio' (average I/O time) for fast disks in microseconds or nanoseconds + Counter 'zfarc' showing the current size of the ARC (cache) for ZFSonlinux + Counter 'swcac' showing the current size of the swap cache + Counter LOCKSZ showing the virtual locked memory size * Avoid crash with very high load average values. * Fix errors in reading InfiniBand states. * Support of rawlog files spanning multiple days. * The time specification to define the begin time (-b flag) and end time (-e flag) of both atop and atopsar is [YYYYMMDD]hhmm now * This also applies to the branch key ('b') when using atop interactively. * Support reading rawlog from a pipe. * Rawlog data can be read from a pipe by atop and atopsar with the option '-r -'. In this way, concatenated rawlog data from the command atopcat can be directly processed. * New program atopcat, the program atopcat concatenates rawlog files and writes this data to stdout. The output can be redirected to a new rawlog file or to atop/atopsar directly via a pipe (see option '-r -' of these commands). In this way e.g. weekly or monthly reports or extractions can be created. Update to version 2.5.0 Modifications for atop: * Avoid using perf counters in VM New option 'perfevents' in the atoprc file to define if the Instructions Per Cycle (IPC) should be retrieved via the 'perf' counters. Specify value 'auto' (default), 'enable' or 'disable'. In case of 'auto', the Instructions Per Cycle counter will not be retrieved on VMs due to the overhead of reading this counter in a guest. * Improve daily rotation of logfile for systemd-based systems. Exchange the files /etc/cron.d/atop, /etc/logrotate.d/psaccs_atop, /etc/logrotate.d/psaccu_atop, /usr/share/atop/atop.daily, /var/log/atop/dummy_after and /var/log/atop/dummy_before by atop-rotate.service and atop-rotate.timer. * Bug fixes: Correction of PSI value 'io full'. Use smaps_rollup (if present) instead of smaps for better performance. Use writev instead of 3 single writes to avoid logfile corruption. Modified handling of error messages (remain visible after window is closed). Correct CID for containers created by Kubernetes. Allow reading a logfile via a named pipe (non-seekable). Modifications for atopconvert: * Show version of input file (even if only one parameter specified). General: * The format of the raw file is compatible with version 2.4. atop-2.7.1-bp154.2.3.1.src.rpm atop-2.7.1-bp154.2.3.1.x86_64.rpm atop-daemon-2.7.1-bp154.2.3.1.x86_64.rpm atop-2.7.1-bp154.2.3.1.i586.rpm atop-daemon-2.7.1-bp154.2.3.1.i586.rpm atop-2.7.1-bp154.2.3.1.aarch64.rpm atop-daemon-2.7.1-bp154.2.3.1.aarch64.rpm atop-2.7.1-bp154.2.3.1.ppc64le.rpm atop-daemon-2.7.1-bp154.2.3.1.ppc64le.rpm atop-2.7.1-bp154.2.3.1.s390x.rpm atop-daemon-2.7.1-bp154.2.3.1.s390x.rpm openSUSE-2022-10030 moderate openSUSE Backports SLE-15-SP4 Update This update for dbus-broker fixes the following issues: - CVE-2022-31212: Fix a stack buffer over-read in bundled c-shquote (boo#1200332) - CVE-2022-31213: Fix a NULL pointer dereferences in bundled c-shquote (boo#1200333) dbus-broker-28-bp154.2.3.1.src.rpm dbus-broker-28-bp154.2.3.1.x86_64.rpm dbus-broker-28-bp154.2.3.1.i586.rpm dbus-broker-28-bp154.2.3.1.aarch64.rpm dbus-broker-28-bp154.2.3.1.ppc64le.rpm dbus-broker-28-bp154.2.3.1.s390x.rpm openSUSE-2022-10031 moderate openSUSE Backports SLE-15-SP4 Update This update for wdiff fixes the following issues: This update ships wdiff. Updated to 1.2.2: * Updated Vietnamese, Swedish, Estonian, Chinese (traditional), Brazilian Portuguese and Russian translations. * Updated gnulib. * Used more recent autotools: autoconf 2.69 and automake 1.14.1. updated to 1.2.1: * Added Esperanto translation. * Updated Czech, German, Spanish, Finnish, Galician, Italian, Dutch, Polish, Slovenian, Serbian, Swedish, Ukrainian and Vietnamese translations. * Updated gnulib. * Recreated build system using recent versions of autotools. This will avoid security issues in "make distcheck" target. (CVE-2012-3386) updated to 1.1.2: * Backport gnulib change to deal with removal of gets function. This is a build-time-only fix. (Mentioned in Fedora bug #821791) * Added Serbian translation. * Updated Danish and Vietnamese translations. * Work around a bug in the formatting of the man page. (Debian bug #669340) * Updated Czech, German, Spanish, Finnish, Dutch, Polish, Slovenian, Swedish and Ukrainian translations. * Fix several issue with the use of screen in the test suite. * Allow WDIFF_PAGER to override PAGER environment variable. * Do not autodetect less, so we don't auto-enable less-mode. This should improve things for UTF8 text. (Savannah bug #34224) Less-mode is considered deprecated, as it isn't fit for multi-byte encodings. Nevertheless it can still be enabled on the command line. * Introduces use of ngettext to allow correct handling of plural forms updated to 1.0.1: * Updated Polish, Ukrainian, Slovenian, Dutch, Finnish, Swedish and Czech translations * Changed major version to 1 to reflect maturity of the package * Updated Dutch, French, Danish and Slovenian translations * Added Ukrainian translation * Improved error reporting in case a child process has problems * Added tests to the test suite * Updated gnulib updated to 0.6.5: * Never initialize or deinitialize terminals, as we do no cursor movement * Deprecated --no-init-term (-K) command line option * Avoid relative path in man pages * Updated gnulib, might be particularly important for uClibc users updated to 0.6.4: * Updated Catalan translations * Updated gnulib update to 0.6.3: * `wdiff -d' to read input from single unified diff, perhaps stdin. * Updated texinfo documentation taking experimental switch into account. * Experimental programs (mdiff & friends) and a configure switch --enable-experimental to control them. * Recent imports from gnulib, use of recent autotools. * Improved autodetection of termcap library like ncurses. * Reformatted translations, still a number of fuzzy translations. * Changed from CVS to bzr for source code version control. * Various bug fixes. See ChangeLog for a more exhaustive list. * Introduce --with-default-pager=PAGER configure switch. * Fix missing newline in info dir entry list. * Fix shell syntax in configure script * Updated gnulib and gettext, the latter to 0.18 * Updated Dutch translation * Fixed a number of portability issues reported by maint.mk syntax checks * Updated Italian and Swedish translations * Updated gnulib wdiff-1.2.2-bp154.2.1.src.rpm wdiff-1.2.2-bp154.2.1.x86_64.rpm wdiff-lang-1.2.2-bp154.2.1.noarch.rpm wdiff-1.2.2-bp154.2.1.i586.rpm wdiff-1.2.2-bp154.2.1.aarch64.rpm wdiff-1.2.2-bp154.2.1.ppc64le.rpm wdiff-1.2.2-bp154.2.1.s390x.rpm openSUSE-2022-10049 moderate openSUSE Backports SLE-15-SP4 Update This update for libqt5-qtwebengine fixes the following issues: Update to version 5.15.10: * Fix top level build with no widget * Fix read-after-free on EGL extensions * Update Chromium * Add workaround for unstable gn on macOS in ci * Pass archiver to gn build * Fix navigation to non-local URLs * Add support for universal builds for qtwebengine and qtpdf * Enable Apple Silicon support * Fix cross compilation x86_64->arm64 on mac * Bump version to 5.15.10 * CustomDialogs: Make custom input fields readable in dark mode * CookieBrowser: Make alternating rows readable in dark mode * Update Chromium: * Bump V8_PATCH_LEVEL * Fix clang set-but-unused-variable warning * Fix mac toolchain python linker script call * Fix missing dependency for gpu sources * Fix python calls * Fix undefined symbol for universal link * Quick fix for regression in service workers by reverting backports * [Backport] CVE-2022-0797: Out of bounds memory access in Mojo * [Backport] CVE-2022-1125 * [Backport] CVE-2022-1138: Inappropriate implementation in Web Cursor. * [Backport] CVE-2022-1305: Use after free in storage * [Backport] CVE-2022-1310: Use after free in regular expressions * [Backport] CVE-2022-1314: Type Confusion in V8 * [Backport] CVE-2022-1493: Use after free in Dev Tools * [Backport] On arm64 hosts, set host_cpu to 'arm64', not 'arm' * [Backport] Security Bug 1296876 * [Backport] Security bug 1269999 * [Backport] Security bug 1280852 * [Backport] Security bug 1292905 * [Backport] Security bug 1304659 * [Backport] Security bug 1306507 libQt5Pdf5-5.15.10-bp154.2.3.2.x86_64.rpm libQt5PdfWidgets5-5.15.10-bp154.2.3.2.x86_64.rpm libqt5-qtpdf-devel-5.15.10-bp154.2.3.2.x86_64.rpm libqt5-qtpdf-examples-5.15.10-bp154.2.3.2.x86_64.rpm libqt5-qtpdf-imports-5.15.10-bp154.2.3.2.x86_64.rpm libqt5-qtpdf-private-headers-devel-5.15.10-bp154.2.3.2.noarch.rpm libqt5-qtwebengine-5.15.10-bp154.2.3.2.src.rpm libqt5-qtwebengine-5.15.10-bp154.2.3.2.x86_64.rpm libqt5-qtwebengine-devel-5.15.10-bp154.2.3.2.x86_64.rpm libqt5-qtwebengine-examples-5.15.10-bp154.2.3.2.x86_64.rpm libqt5-qtwebengine-private-headers-devel-5.15.10-bp154.2.3.2.noarch.rpm libQt5Pdf5-5.15.10-bp154.2.3.2.aarch64.rpm libQt5PdfWidgets5-5.15.10-bp154.2.3.2.aarch64.rpm libqt5-qtpdf-devel-5.15.10-bp154.2.3.2.aarch64.rpm libqt5-qtpdf-examples-5.15.10-bp154.2.3.2.aarch64.rpm libqt5-qtpdf-imports-5.15.10-bp154.2.3.2.aarch64.rpm libqt5-qtwebengine-5.15.10-bp154.2.3.2.aarch64.rpm libqt5-qtwebengine-devel-5.15.10-bp154.2.3.2.aarch64.rpm libqt5-qtwebengine-examples-5.15.10-bp154.2.3.2.aarch64.rpm openSUSE-2022-10050 moderate openSUSE Backports SLE-15-SP4 Update This update for amarok fixes the following issues: - Update to version 2.9.75git.20220614T014846~dc55a00143: * Mark Amarok as a single main window program - Update to version 2.9.75git.20220224T114455~9300034c57: * Add DBus service file to actually make it activatable (boo#1200767) * No need to link to KF5::KIONTLM amarok-2.9.75git.20220614T014846~dc55a00143-bp154.2.3.1.src.rpm amarok-2.9.75git.20220614T014846~dc55a00143-bp154.2.3.1.x86_64.rpm amarok-lang-2.9.75git.20220614T014846~dc55a00143-bp154.2.3.1.noarch.rpm amarok-2.9.75git.20220614T014846~dc55a00143-bp154.2.3.1.aarch64.rpm openSUSE-2022-10051 moderate openSUSE Backports SLE-15-SP4 Update This update for translate-toolkit fixes the following issues: - We need full python interpreter boo#1172650, boo#1195269 python3-translate-toolkit-2.5.0-bp154.2.3.1.noarch.rpm translate-toolkit-2.5.0-bp154.2.3.1.src.rpm translate-toolkit-devel-doc-2.5.0-bp154.2.3.1.noarch.rpm translate-toolkit-test-2.5.0-bp154.2.3.1.src.rpm openSUSE-2022-10035 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 103.0.5060.53 (boo#1200783) * CVE-2022-2156: Use after free in Base * CVE-2022-2157: Use after free in Interest groups * CVE-2022-2158: Type Confusion in V8 * CVE-2022-2160: Insufficient policy enforcement in DevTools * CVE-2022-2161: Use after free in WebApp Provider * CVE-2022-2162: Insufficient policy enforcement in File System API * CVE-2022-2163: Use after free in Cast UI and Toolbar * CVE-2022-2164: Inappropriate implementation in Extensions API * CVE-2022-2165: Insufficient data validation in URL formatting chromedriver-103.0.5060.53-bp154.2.11.1.x86_64.rpm chromium-103.0.5060.53-bp154.2.11.1.src.rpm chromium-103.0.5060.53-bp154.2.11.1.x86_64.rpm chromedriver-103.0.5060.53-bp154.2.11.1.aarch64.rpm chromium-103.0.5060.53-bp154.2.11.1.aarch64.rpm openSUSE-2022-10039 moderate openSUSE Backports SLE-15-SP4 Update darktable was updated to fix: - cmake macro now uses DCMAKE_SKIP_INSTALL_RPATH rather then DCMAKE_SKIP_RPATH (boo#1200482 boo#1200483) darktable-3.6.1-bp154.2.3.1.src.rpm darktable-3.6.1-bp154.2.3.1.x86_64.rpm darktable-doc-3.6.1-bp154.2.3.1.noarch.rpm darktable-tools-basecurve-3.6.1-bp154.2.3.1.x86_64.rpm darktable-tools-noise-3.6.1-bp154.2.3.1.x86_64.rpm darktable-3.6.1-bp154.2.3.1.aarch64.rpm darktable-tools-basecurve-3.6.1-bp154.2.3.1.aarch64.rpm darktable-tools-noise-3.6.1-bp154.2.3.1.aarch64.rpm openSUSE-2022-10041 moderate openSUSE Backports SLE-15-SP4 Update gnuhealth-client was updated to version 4.0.1 * various bug fixes, see changelog * plugins adapted and renamed for 4.0 gnuhealth was updated to version 4.0.4 * various bugfixes - see changelog for details trytond_account_invoice_stock was updated to version 6.0.1 * Bugfix Release trytond_account was updated to version 6.0.11 * Bugfix Release trytond was updated to 6.0.19 * Bugfix Release * Version 6.0.18 - Bugfix Release trytond_party was updated to 6.0.3 * Bugfix Release trytond_purchase was updated to 6.0.7 * Bugfix Release trytond_stock was updated to 6.0.14: * Bugfix Release trytond_stock_supply was updated to 6.0.3: * Bugfix Release gnuhealth-client-4.0.1-bp154.2.3.1.noarch.rpm gnuhealth-client-4.0.1-bp154.2.3.1.src.rpm gnuhealth-4.0.4-bp154.2.3.2.noarch.rpm gnuhealth-4.0.4-bp154.2.3.2.src.rpm gnuhealth-orthanc-4.0.4-bp154.2.3.2.noarch.rpm trytond-6.0.19-bp154.2.3.1.noarch.rpm trytond-6.0.19-bp154.2.3.1.src.rpm trytond_account-6.0.11-bp154.2.3.1.noarch.rpm trytond_account-6.0.11-bp154.2.3.1.src.rpm trytond_account_invoice_stock-6.0.1-bp154.2.3.1.noarch.rpm trytond_account_invoice_stock-6.0.1-bp154.2.3.1.src.rpm trytond_party-6.0.3-bp154.2.3.1.noarch.rpm trytond_party-6.0.3-bp154.2.3.1.src.rpm trytond_purchase-6.0.7-bp154.2.3.1.noarch.rpm trytond_purchase-6.0.7-bp154.2.3.1.src.rpm trytond_stock-6.0.14-bp154.2.3.1.noarch.rpm trytond_stock-6.0.14-bp154.2.3.1.src.rpm trytond_stock_supply-6.0.3-bp154.2.3.1.noarch.rpm trytond_stock_supply-6.0.3-bp154.2.3.1.src.rpm openSUSE-2022-10052 moderate openSUSE Backports SLE-15-SP4 Update This update for trytond, trytond_stock fixes the following issues: Changes in trytond_stock: - Version 6.0.15 - Bugfix Release Changes in trytond: - Version 6.0.20 - Bugfix Release Changes in trytond: - Version 5.0.49 - Bugfix Release - Version 5.0.48 - Bugfix Release - Version 5.0.47 - Bugfix Release - Version 5.0.46 - Bugfix Release - Version 5.0.45 - Bugfix Release - Version 5.0.44 - Bugfix Release - Version 5.0.43 - Bugfix Release trytond-6.0.20-bp154.2.6.1.noarch.rpm trytond-6.0.20-bp154.2.6.1.src.rpm trytond_stock-6.0.15-bp154.2.6.1.noarch.rpm trytond_stock-6.0.15-bp154.2.6.1.src.rpm openSUSE-2022-10045 moderate openSUSE Backports SLE-15-SP4 Update This update for chafa fixes the following issues: - CVE-2022-2301: Fixed buffer over-read (boo#1201211) chafa-1.8.0-bp154.3.8.1.src.rpm chafa-1.8.0-bp154.3.8.1.x86_64.rpm chafa-debuginfo-1.8.0-bp154.3.8.1.x86_64.rpm chafa-debugsource-1.8.0-bp154.3.8.1.x86_64.rpm chafa-devel-1.8.0-bp154.3.8.1.x86_64.rpm chafa-doc-1.8.0-bp154.3.8.1.noarch.rpm libchafa0-1.8.0-bp154.3.8.1.x86_64.rpm libchafa0-debuginfo-1.8.0-bp154.3.8.1.x86_64.rpm chafa-1.8.0-bp154.3.8.1.i586.rpm chafa-debuginfo-1.8.0-bp154.3.8.1.i586.rpm chafa-debugsource-1.8.0-bp154.3.8.1.i586.rpm chafa-devel-1.8.0-bp154.3.8.1.i586.rpm libchafa0-1.8.0-bp154.3.8.1.i586.rpm libchafa0-debuginfo-1.8.0-bp154.3.8.1.i586.rpm chafa-1.8.0-bp154.3.8.1.aarch64.rpm chafa-debuginfo-1.8.0-bp154.3.8.1.aarch64.rpm chafa-debugsource-1.8.0-bp154.3.8.1.aarch64.rpm chafa-devel-1.8.0-bp154.3.8.1.aarch64.rpm libchafa0-1.8.0-bp154.3.8.1.aarch64.rpm libchafa0-debuginfo-1.8.0-bp154.3.8.1.aarch64.rpm chafa-1.8.0-bp154.3.8.1.ppc64le.rpm chafa-debuginfo-1.8.0-bp154.3.8.1.ppc64le.rpm chafa-debugsource-1.8.0-bp154.3.8.1.ppc64le.rpm chafa-devel-1.8.0-bp154.3.8.1.ppc64le.rpm libchafa0-1.8.0-bp154.3.8.1.ppc64le.rpm libchafa0-debuginfo-1.8.0-bp154.3.8.1.ppc64le.rpm chafa-1.8.0-bp154.3.8.1.s390x.rpm chafa-debuginfo-1.8.0-bp154.3.8.1.s390x.rpm chafa-debugsource-1.8.0-bp154.3.8.1.s390x.rpm chafa-devel-1.8.0-bp154.3.8.1.s390x.rpm libchafa0-1.8.0-bp154.3.8.1.s390x.rpm libchafa0-debuginfo-1.8.0-bp154.3.8.1.s390x.rpm openSUSE-2022-10042 important openSUSE Backports SLE-15-SP4 Update This update for librttopo fixes the following issues: - CVE-2017-18359: Fixed a denial of service in rtgeom_to_x3d3() (boo#1201215) librttopo-1.1.0-bp154.2.3.1.src.rpm librttopo-devel-1.1.0-bp154.2.3.1.x86_64.rpm librttopo1-1.1.0-bp154.2.3.1.x86_64.rpm librttopo-devel-1.1.0-bp154.2.3.1.aarch64.rpm librttopo1-1.1.0-bp154.2.3.1.aarch64.rpm librttopo-devel-1.1.0-bp154.2.3.1.ppc64le.rpm librttopo1-1.1.0-bp154.2.3.1.ppc64le.rpm librttopo-devel-1.1.0-bp154.2.3.1.s390x.rpm librttopo1-1.1.0-bp154.2.3.1.s390x.rpm openSUSE-2022-10053 moderate openSUSE Backports SLE-15-SP4 Update This update for plasma5-desktop, plasma5-workspace fixes the following issues: - Disable reuseItems to avoid a crash in plasmashell (kde#452660) - Fix a potential crash when deleting a panel with a system tray applet (kde#453726) - Fix a potential crash on logout (kde#454159) plasma5-desktop-5.24.4-bp154.2.3.2.src.rpm plasma5-desktop-5.24.4-bp154.2.3.2.x86_64.rpm plasma5-desktop-emojier-5.24.4-bp154.2.3.2.x86_64.rpm plasma5-desktop-lang-5.24.4-bp154.2.3.2.noarch.rpm gmenudbusmenuproxy-5.24.4-bp154.2.3.1.x86_64.rpm gmenudbusmenuproxy-debuginfo-5.24.4-bp154.2.3.1.x86_64.rpm plasma5-session-5.24.4-bp154.2.3.1.noarch.rpm plasma5-session-wayland-5.24.4-bp154.2.3.1.x86_64.rpm plasma5-workspace-5.24.4-bp154.2.3.1.src.rpm plasma5-workspace-5.24.4-bp154.2.3.1.x86_64.rpm plasma5-workspace-debuginfo-5.24.4-bp154.2.3.1.x86_64.rpm plasma5-workspace-debugsource-5.24.4-bp154.2.3.1.x86_64.rpm plasma5-workspace-devel-5.24.4-bp154.2.3.1.x86_64.rpm plasma5-workspace-lang-5.24.4-bp154.2.3.1.noarch.rpm plasma5-workspace-libs-5.24.4-bp154.2.3.1.x86_64.rpm plasma5-workspace-libs-debuginfo-5.24.4-bp154.2.3.1.x86_64.rpm xembedsniproxy-5.24.4-bp154.2.3.1.x86_64.rpm xembedsniproxy-debuginfo-5.24.4-bp154.2.3.1.x86_64.rpm plasma5-desktop-5.24.4-bp154.2.3.2.aarch64.rpm plasma5-desktop-emojier-5.24.4-bp154.2.3.2.aarch64.rpm gmenudbusmenuproxy-5.24.4-bp154.2.3.1.aarch64.rpm gmenudbusmenuproxy-debuginfo-5.24.4-bp154.2.3.1.aarch64.rpm plasma5-session-wayland-5.24.4-bp154.2.3.1.aarch64.rpm plasma5-workspace-5.24.4-bp154.2.3.1.aarch64.rpm plasma5-workspace-debuginfo-5.24.4-bp154.2.3.1.aarch64.rpm plasma5-workspace-debugsource-5.24.4-bp154.2.3.1.aarch64.rpm plasma5-workspace-devel-5.24.4-bp154.2.3.1.aarch64.rpm plasma5-workspace-libs-5.24.4-bp154.2.3.1.aarch64.rpm plasma5-workspace-libs-debuginfo-5.24.4-bp154.2.3.1.aarch64.rpm xembedsniproxy-5.24.4-bp154.2.3.1.aarch64.rpm xembedsniproxy-debuginfo-5.24.4-bp154.2.3.1.aarch64.rpm plasma5-desktop-5.24.4-bp154.2.3.2.ppc64le.rpm plasma5-desktop-emojier-5.24.4-bp154.2.3.2.ppc64le.rpm gmenudbusmenuproxy-5.24.4-bp154.2.3.1.ppc64le.rpm gmenudbusmenuproxy-debuginfo-5.24.4-bp154.2.3.1.ppc64le.rpm plasma5-session-wayland-5.24.4-bp154.2.3.1.ppc64le.rpm plasma5-workspace-5.24.4-bp154.2.3.1.ppc64le.rpm plasma5-workspace-debuginfo-5.24.4-bp154.2.3.1.ppc64le.rpm plasma5-workspace-debugsource-5.24.4-bp154.2.3.1.ppc64le.rpm plasma5-workspace-devel-5.24.4-bp154.2.3.1.ppc64le.rpm plasma5-workspace-libs-5.24.4-bp154.2.3.1.ppc64le.rpm plasma5-workspace-libs-debuginfo-5.24.4-bp154.2.3.1.ppc64le.rpm xembedsniproxy-5.24.4-bp154.2.3.1.ppc64le.rpm xembedsniproxy-debuginfo-5.24.4-bp154.2.3.1.ppc64le.rpm openSUSE-2022-10055 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 103.0.5060.114 (boo#1201216) * CVE-2022-2294: Heap buffer overflow in WebRTC * CVE-2022-2295: Type Confusion in V8 * CVE-2022-2296: Use after free in Chrome OS Shell chromedriver-103.0.5060.114-bp154.2.14.1.x86_64.rpm chromedriver-debuginfo-103.0.5060.114-bp154.2.14.1.x86_64.rpm chromium-103.0.5060.114-bp154.2.14.1.src.rpm chromium-103.0.5060.114-bp154.2.14.1.x86_64.rpm chromium-debuginfo-103.0.5060.114-bp154.2.14.1.x86_64.rpm chromedriver-103.0.5060.114-bp154.2.14.1.aarch64.rpm chromedriver-debuginfo-103.0.5060.114-bp154.2.14.1.aarch64.rpm chromium-103.0.5060.114-bp154.2.14.1.aarch64.rpm chromium-debuginfo-103.0.5060.114-bp154.2.14.1.aarch64.rpm openSUSE-2022-10058 moderate openSUSE Backports SLE-15-SP4 Update This update for withlock fixes the following issues: update to version 0.5 - modernize for Python 2 and 3 compatibility withlock-0.5-bp154.2.3.1.noarch.rpm withlock-0.5-bp154.2.3.1.src.rpm openSUSE-2022-10054 low openSUSE Backports SLE-15-SP4 Update This update provides certbot to openSUSE Leap 15.4 and SUSE Package Hub 15 SP4. python-acme-1.22.0-bp154.2.3.3.src.rpm python3-acme-1.22.0-bp154.2.3.3.noarch.rpm python-certbot-apache-1.22.0-bp154.2.2.src.rpm python3-certbot-apache-1.22.0-bp154.2.2.noarch.rpm python-certbot-dns-cloudflare-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-cloudflare-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-cloudxns-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-cloudxns-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-digitalocean-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-digitalocean-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-dnsimple-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-dnsimple-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-dnsmadeeasy-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-dnsmadeeasy-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-google-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-google-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-linode-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-linode-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-luadns-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-luadns-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-nsone-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-nsone-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-rfc2136-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-rfc2136-1.22.0-bp154.2.1.noarch.rpm python-certbot-dns-route53-1.22.0-bp154.2.1.src.rpm python3-certbot-dns-route53-1.22.0-bp154.2.1.noarch.rpm python-certbot-nginx-1.22.0-bp154.2.2.src.rpm python3-certbot-nginx-1.22.0-bp154.2.2.noarch.rpm python-certbot-1.22.0-bp154.2.1.src.rpm python3-certbot-1.22.0-bp154.2.1.noarch.rpm python-josepy-1.10.0-bp154.2.3.4.src.rpm python3-josepy-1.10.0-bp154.2.3.4.noarch.rpm openSUSE-2022-10068 moderate openSUSE Backports SLE-15-SP4 Update This update for strawberry fixes the following issues: Update to version 1.0.5 + Bugfixes: + Fixed smart playlist filetype search. + Fixed Radio Paradise URLs to use HTTPS instead of HTTP. + Fixed horizontal scrolling not affecting currently playing track (#952). + Fixed keep running in the background when window is closed with Wayland (#964). + Fixed percent-encoding of URLs when loading and saving XSPF playlists (#821). + Fixed fancy tabbar context menu showing on right clicks outside of tabbar when a song is playing. + Fixed possible duplicating songs in the database when moving songs to the collection using the organize feature. + Enhancements: + Show more details in error dialog on GStreamer errors (#958). + Allow setting blur amount of playlist background image up to 100px (#939). + Include 128x128 icon sizes (#954). + Show right click copy context menu in context view on top text and lyrics (#965). + Improve fading between album covers in context view. + Added option for overwriting database playcounts in collection settings (#962). + Added option for disabling bar on currently playing track (#972). Update to version 1.0.4 + Bugfixes: + Fixed use-after-free memory in ALSA PCM device finder. + Translate global shortcuts. + Enhancement: + Added save all playlists action. + Other: + Removed use of custom font in context. Update to version 1.0.3 + Bugfixes: + Remove slash and backslash from filenames when saving album covers using album directory cover filenames (#903). + Remove playlist file-extensions from accepted audio file extensions (#909). + Fixed Qobuz requests only receiving the first 50 albums (#922). + New features + Added support for bs2b (Improved headphone listening of stereo audio records using Bauer stereophonic-to-binaural DSP) (#249). - Remove the unneeded qt6-network-tls requirement. libQt6Network6 already requires the plugin. strawberry-1.0.5-bp154.2.3.6.src.rpm strawberry-1.0.5-bp154.2.3.6.x86_64.rpm strawberry-1.0.5-bp154.2.3.6.aarch64.rpm strawberry-1.0.5-bp154.2.3.6.ppc64le.rpm openSUSE-2022-10069 moderate openSUSE Backports SLE-15-SP4 Update This update for python-ipython fixes the following issues: - Avoid crashes on tab completion to more completely support jedi 0.18 (boo#1200228) python-ipython-7.16.1-bp154.2.3.3.src.rpm python3-ipython-7.16.1-bp154.2.3.3.noarch.rpm python3-ipython-iptest-7.16.1-bp154.2.3.3.noarch.rpm python-ipython-test-7.16.1-bp154.2.3.3.src.rpm openSUSE-2022-10061 moderate openSUSE Backports SLE-15-SP4 Update This update for glusterfs fixes the following issues: - add explicit Requires for the dependencies, so we make sure the dependencies are installed in the same version glusterfs-9.3-bp154.2.3.1.src.rpm glusterfs-9.3-bp154.2.3.1.x86_64.rpm glusterfs-devel-9.3-bp154.2.3.1.x86_64.rpm libgfapi0-9.3-bp154.2.3.1.x86_64.rpm libgfchangelog0-9.3-bp154.2.3.1.x86_64.rpm libgfrpc0-9.3-bp154.2.3.1.x86_64.rpm libgfxdr0-9.3-bp154.2.3.1.x86_64.rpm libglusterd0-9.3-bp154.2.3.1.x86_64.rpm libglusterfs0-9.3-bp154.2.3.1.x86_64.rpm python3-gluster-9.3-bp154.2.3.1.noarch.rpm glusterfs-9.3-bp154.2.3.1.i586.rpm glusterfs-devel-9.3-bp154.2.3.1.i586.rpm libgfapi0-9.3-bp154.2.3.1.i586.rpm libgfchangelog0-9.3-bp154.2.3.1.i586.rpm libgfrpc0-9.3-bp154.2.3.1.i586.rpm libgfxdr0-9.3-bp154.2.3.1.i586.rpm libglusterd0-9.3-bp154.2.3.1.i586.rpm libglusterfs0-9.3-bp154.2.3.1.i586.rpm glusterfs-9.3-bp154.2.3.1.aarch64.rpm glusterfs-devel-9.3-bp154.2.3.1.aarch64.rpm libgfapi0-9.3-bp154.2.3.1.aarch64.rpm libgfchangelog0-9.3-bp154.2.3.1.aarch64.rpm libgfrpc0-9.3-bp154.2.3.1.aarch64.rpm libgfxdr0-9.3-bp154.2.3.1.aarch64.rpm libglusterd0-9.3-bp154.2.3.1.aarch64.rpm libglusterfs0-9.3-bp154.2.3.1.aarch64.rpm glusterfs-9.3-bp154.2.3.1.ppc64le.rpm glusterfs-devel-9.3-bp154.2.3.1.ppc64le.rpm libgfapi0-9.3-bp154.2.3.1.ppc64le.rpm libgfchangelog0-9.3-bp154.2.3.1.ppc64le.rpm libgfrpc0-9.3-bp154.2.3.1.ppc64le.rpm libgfxdr0-9.3-bp154.2.3.1.ppc64le.rpm libglusterd0-9.3-bp154.2.3.1.ppc64le.rpm libglusterfs0-9.3-bp154.2.3.1.ppc64le.rpm glusterfs-9.3-bp154.2.3.1.s390x.rpm glusterfs-devel-9.3-bp154.2.3.1.s390x.rpm libgfapi0-9.3-bp154.2.3.1.s390x.rpm libgfchangelog0-9.3-bp154.2.3.1.s390x.rpm libgfrpc0-9.3-bp154.2.3.1.s390x.rpm libgfxdr0-9.3-bp154.2.3.1.s390x.rpm libglusterd0-9.3-bp154.2.3.1.s390x.rpm libglusterfs0-9.3-bp154.2.3.1.s390x.rpm openSUSE-2022-10065 critical openSUSE Backports SLE-15-SP4 Update This update for phpPgAdmin fixes the following issues: - CVE-2019-10784: Fixed improper source validation that could lead to CSRF (boo#1162794) phpPgAdmin-7.13.0-bp154.2.3.1.noarch.rpm phpPgAdmin-7.13.0-bp154.2.3.1.src.rpm phpPgAdmin-apache-7.13.0-bp154.2.3.1.noarch.rpm openSUSE-2022-10066 moderate openSUSE Backports SLE-15-SP4 Update This update for systemd-zram-service fixes the following issues: - Drop systemd hardenings again. The current set causes issues (boo#1193402) systemd-zram-service-0.2.1-bp154.3.3.1.noarch.rpm systemd-zram-service-0.2.1-bp154.3.3.1.src.rpm openSUSE-2022-10074 moderate openSUSE Backports SLE-15-SP4 Update This update for os-autoinst fixes the following issues: - Fix os-autoinst-devel opencv dependency for upgrade (boo#1201552) os-autoinst-test-4.6.1639403953.ae94c4bd-bp154.2.3.1.src.rpm os-autoinst-4.6.1639403953.ae94c4bd-bp154.2.3.1.src.rpm os-autoinst-4.6.1639403953.ae94c4bd-bp154.2.3.1.x86_64.rpm os-autoinst-devel-4.6.1639403953.ae94c4bd-bp154.2.3.1.x86_64.rpm os-autoinst-openvswitch-4.6.1639403953.ae94c4bd-bp154.2.3.1.x86_64.rpm os-autoinst-qemu-kvm-4.6.1639403953.ae94c4bd-bp154.2.3.1.x86_64.rpm os-autoinst-qemu-x86-4.6.1639403953.ae94c4bd-bp154.2.3.1.x86_64.rpm os-autoinst-s390-deps-4.6.1639403953.ae94c4bd-bp154.2.3.1.x86_64.rpm os-autoinst-4.6.1639403953.ae94c4bd-bp154.2.3.1.aarch64.rpm os-autoinst-devel-4.6.1639403953.ae94c4bd-bp154.2.3.1.aarch64.rpm os-autoinst-openvswitch-4.6.1639403953.ae94c4bd-bp154.2.3.1.aarch64.rpm os-autoinst-s390-deps-4.6.1639403953.ae94c4bd-bp154.2.3.1.aarch64.rpm os-autoinst-4.6.1639403953.ae94c4bd-bp154.2.3.1.ppc64le.rpm os-autoinst-devel-4.6.1639403953.ae94c4bd-bp154.2.3.1.ppc64le.rpm os-autoinst-openvswitch-4.6.1639403953.ae94c4bd-bp154.2.3.1.ppc64le.rpm os-autoinst-s390-deps-4.6.1639403953.ae94c4bd-bp154.2.3.1.ppc64le.rpm os-autoinst-4.6.1639403953.ae94c4bd-bp154.2.3.1.s390x.rpm os-autoinst-devel-4.6.1639403953.ae94c4bd-bp154.2.3.1.s390x.rpm os-autoinst-openvswitch-4.6.1639403953.ae94c4bd-bp154.2.3.1.s390x.rpm os-autoinst-s390-deps-4.6.1639403953.ae94c4bd-bp154.2.3.1.s390x.rpm openSUSE-2022-10073 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium was updated to 103.0.5060.134 (boo#1201679): * CVE-2022-2477 : Use after free in Guest View * CVE-2022-2478 : Use after free in PDF * CVE-2022-2479 : Insufficient validation of untrusted input in File * CVE-2022-2480 : Use after free in Service Worker API * CVE-2022-2481: Use after free in Views * CVE-2022-2163: Use after free in Cast UI and Toolbar * Various fixes from internal audits, fuzzing and other initiatives chromedriver-103.0.5060.134-bp154.2.17.2.x86_64.rpm chromedriver-debuginfo-103.0.5060.134-bp154.2.17.2.x86_64.rpm chromium-103.0.5060.134-bp154.2.17.2.src.rpm chromium-103.0.5060.134-bp154.2.17.2.x86_64.rpm chromium-debuginfo-103.0.5060.134-bp154.2.17.2.x86_64.rpm chromedriver-103.0.5060.134-bp154.2.17.2.aarch64.rpm chromedriver-debuginfo-103.0.5060.134-bp154.2.17.2.aarch64.rpm chromium-103.0.5060.134-bp154.2.17.2.aarch64.rpm chromium-debuginfo-103.0.5060.134-bp154.2.17.2.aarch64.rpm openSUSE-2022-10072 moderate openSUSE Backports SLE-15-SP4 Update This update for jupyter-jupyterlab-server fixes the following issues: Update to 1.2.0: * Expose settings API to other handlers. * Always wait for process to finish * ensure the 'WHICH' command returns absolute path instead of relative path * Clean up terminate logic * Kill the subprocess if it does not stop * Do not try to close the watch process file handle * Update nodejs error message to not give an outdated version. * Black and White Listings Handler * Fix URL prefixing for absolute URLs jupyter-jupyterlab-server-1.2.0-bp154.2.3.3.noarch.rpm jupyter-jupyterlab-server-1.2.0-bp154.2.3.3.src.rpm openSUSE-2022-10075 important openSUSE Backports SLE-15-SP4 Update This update for python-jupyterlab fixes the following issues: Update to 2.2.10: * Remove `form` tags' `action` attribute during sanitizing, to prevent an XSS (CVE-2021-32797) (boo#1196663) * Header ‘Content-Type’ should not be overwritten * Do not use token parameters in websocket urls * Properly handle errors in async browser_check * Cells can no longer be executed while kernels are terminating or restarting. There is a new status for these events on the Kernel Indicator * Add styling for high memory usage warning in status bar with nbresuse * Adds support for Python version 3.10 * Support live editing of SVG with updating rendering * Lazy load codemirror theme stylesheets * Add feature request template + slight reorg in readme * Add link to react example in extension-examples repo * Close correct tab with close tab * Remove unused css rules * Simplified multicursor backspace code * Fix recent breaking changes to normalizepath in filebrowser * Handle quit_button when launched as an extension * Add worker-loader * Fix icon sidebar height for third party extensions * Scrolls cells into view after deletion * Support Node.js 10+ * Select search text when focusing the search overlay * Throttle fetch requests in the setting registry’s data connector * Avoid redundant checkpoint calls on loading a notebook jupyter-jupyterlab-2.2.10-bp154.2.3.1.noarch.rpm python-jupyterlab-2.2.10-bp154.2.3.1.src.rpm python3-jupyterlab-2.2.10-bp154.2.3.1.noarch.rpm openSUSE-2022-10076 critical openSUSE Backports SLE-15-SP4 Update This update for connman fixes the following issues: - CVE-2022-32292: Add refcounting to wispr portal detection to avoid heap overflow (boo#1200190) - CVE-2022-32292: Fix OOB write in received_data (boo#1200189) connman-1.41-bp154.2.3.1.src.rpm connman-1.41-bp154.2.3.1.x86_64.rpm connman-client-1.41-bp154.2.3.1.x86_64.rpm connman-devel-1.41-bp154.2.3.1.x86_64.rpm connman-doc-1.41-bp154.2.3.1.x86_64.rpm connman-nmcompat-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-hh2serial-gps-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-iospm-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-l2tp-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-openvpn-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-polkit-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-pptp-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-tist-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-vpnc-1.41-bp154.2.3.1.x86_64.rpm connman-plugin-wireguard-1.41-bp154.2.3.1.x86_64.rpm connman-test-1.41-bp154.2.3.1.x86_64.rpm connman-1.41-bp154.2.3.1.i586.rpm connman-client-1.41-bp154.2.3.1.i586.rpm connman-devel-1.41-bp154.2.3.1.i586.rpm connman-doc-1.41-bp154.2.3.1.i586.rpm connman-nmcompat-1.41-bp154.2.3.1.i586.rpm connman-plugin-hh2serial-gps-1.41-bp154.2.3.1.i586.rpm connman-plugin-iospm-1.41-bp154.2.3.1.i586.rpm connman-plugin-l2tp-1.41-bp154.2.3.1.i586.rpm connman-plugin-openvpn-1.41-bp154.2.3.1.i586.rpm connman-plugin-polkit-1.41-bp154.2.3.1.i586.rpm connman-plugin-pptp-1.41-bp154.2.3.1.i586.rpm connman-plugin-tist-1.41-bp154.2.3.1.i586.rpm connman-plugin-wireguard-1.41-bp154.2.3.1.i586.rpm connman-test-1.41-bp154.2.3.1.i586.rpm connman-1.41-bp154.2.3.1.aarch64.rpm connman-client-1.41-bp154.2.3.1.aarch64.rpm connman-devel-1.41-bp154.2.3.1.aarch64.rpm connman-doc-1.41-bp154.2.3.1.aarch64.rpm connman-nmcompat-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-hh2serial-gps-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-iospm-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-l2tp-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-openvpn-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-polkit-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-pptp-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-tist-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-vpnc-1.41-bp154.2.3.1.aarch64.rpm connman-plugin-wireguard-1.41-bp154.2.3.1.aarch64.rpm connman-test-1.41-bp154.2.3.1.aarch64.rpm connman-1.41-bp154.2.3.1.ppc64le.rpm connman-client-1.41-bp154.2.3.1.ppc64le.rpm connman-devel-1.41-bp154.2.3.1.ppc64le.rpm connman-doc-1.41-bp154.2.3.1.ppc64le.rpm connman-nmcompat-1.41-bp154.2.3.1.ppc64le.rpm connman-plugin-iospm-1.41-bp154.2.3.1.ppc64le.rpm connman-plugin-l2tp-1.41-bp154.2.3.1.ppc64le.rpm connman-plugin-openvpn-1.41-bp154.2.3.1.ppc64le.rpm connman-plugin-polkit-1.41-bp154.2.3.1.ppc64le.rpm connman-plugin-pptp-1.41-bp154.2.3.1.ppc64le.rpm connman-plugin-vpnc-1.41-bp154.2.3.1.ppc64le.rpm connman-plugin-wireguard-1.41-bp154.2.3.1.ppc64le.rpm connman-test-1.41-bp154.2.3.1.ppc64le.rpm connman-1.41-bp154.2.3.1.s390x.rpm connman-client-1.41-bp154.2.3.1.s390x.rpm connman-devel-1.41-bp154.2.3.1.s390x.rpm connman-doc-1.41-bp154.2.3.1.s390x.rpm connman-nmcompat-1.41-bp154.2.3.1.s390x.rpm connman-plugin-hh2serial-gps-1.41-bp154.2.3.1.s390x.rpm connman-plugin-iospm-1.41-bp154.2.3.1.s390x.rpm connman-plugin-l2tp-1.41-bp154.2.3.1.s390x.rpm connman-plugin-openvpn-1.41-bp154.2.3.1.s390x.rpm connman-plugin-polkit-1.41-bp154.2.3.1.s390x.rpm connman-plugin-pptp-1.41-bp154.2.3.1.s390x.rpm connman-plugin-tist-1.41-bp154.2.3.1.s390x.rpm connman-plugin-vpnc-1.41-bp154.2.3.1.s390x.rpm connman-plugin-wireguard-1.41-bp154.2.3.1.s390x.rpm connman-test-1.41-bp154.2.3.1.s390x.rpm openSUSE-2022-10079 moderate openSUSE Backports SLE-15-SP4 Update This update for nano fixes the following issues: - Support syntax highlighting for _channel and _patchinfo files used by OBS nano was updated to version 6.3: * For multiline regexes, text is now colored as soon a start match is found, also when there is no end match at all. * The colorizing of any line is stopped after two thousand bytes to avoid frustrating delays. * When environment variable NO_COLOR is set, the two default colors (yellow for the spotlight, red for error messages) are suppressed when no interface colors are specified in a nanorc file. * Full justification and piping the whole buffer through a command now keep the cursor at the same line number. * Utility 'xsel' can be used to copy a marked region to the system's clipboard. See doc/sample.nanorc for an example. GNU nano 6.2 * The file browser clears the prompt bar also when using --minibar * Linting now works also with a newer 'pyflakes' GNU nano 6.1: * The behavior of ^K at a prompt has been enhanced: when there is text after the cursor, just this text is erased * At a prompt, M-6 copies the current answer into the cutbuffer * Large external pastes into nano are handled more quickly GNU nano 6.0: * Option --zero hides the interface and uses the whole terminal for editing * Colors can be given also in #rgb hexadecimal, to select the nearest color from the 6x6x6 color-cube palette available on 256-color terminals * Fourteen new color names are available, from rosy to crimson nano-6.3-bp154.2.3.1.src.rpm nano-6.3-bp154.2.3.1.x86_64.rpm nano-lang-6.3-bp154.2.3.1.noarch.rpm nano-6.3-bp154.2.3.1.i586.rpm nano-6.3-bp154.2.3.1.aarch64.rpm nano-6.3-bp154.2.3.1.ppc64le.rpm nano-6.3-bp154.2.3.1.s390x.rpm openSUSE-2022-10080 moderate openSUSE Backports SLE-15-SP4 Update This update for caddy fixes the following issues: Update to version 2.5.2: * admin: expect quoted ETags (#4879) * headers: Only replace known placeholders (#4880) * reverseproxy: Err 503 if all upstreams unavailable * reverseproxy: Adjust new TLS Caddyfile directive names (#4872) * fileserver: Use safe redirects in file browser * admin: support ETag on config endpoints (#4579) * caddytls: Reuse issuer between PreCheck and Issue (#4866) * admin: Implement /adapt endpoint (close #4465) (#4846) * forwardauth: Fix case when `copy_headers` is omitted (#4856) * Expose several Caddy HTTP Matchers to the CEL Matcher (#4715) * reverseproxy: Fix double headers in response handlers (#4847) * reverseproxy: Fix panic when TLS is not configured (#4848) * reverseproxy: Skip TLS for certain configured ports (#4843) * forwardauth: Support renaming copied headers, block support (#4783) * Add comment about xcaddy to main * headers: Support wildcards for delete ops (close #4830) (#4831) * reverseproxy: Dynamic ServerName for TLS upstreams (#4836) * reverseproxy: Make TLS renegotiation optional * reverseproxy: Add renegotiation param in TLS client (#4784) * caddyhttp: Log error from CEL evaluation (fix #4832) * reverseproxy: Correct the `tls_server_name` docs (#4827) * reverseproxy: HTTP 504 for upstream timeouts (#4824) * caddytls: Make peer certificate verification pluggable (#4389) * reverseproxy: api: Remove misleading 'healthy' value * Fix #4822 and fix #4779 * reverseproxy: Add --internal-certs CLI flag #3589 (#4817) * ci: Fix build caching on Windows (#4811) * templates: Add `humanize` function (#4767) * core: Micro-optim in run() (#4810) * httpcaddyfile: Add `{err.*}` placeholder shortcut (#4798) * templates: Documentation consistency (#4796) * chore: Bump quic-go to v0.27.0 (#4782) * reverseproxy: Support http1.1>h2c (close #4777) (#4778) * rewrite: Handle fragment before query (fix #4775) [boo#1201822, CVE-2022-34037] * httpcaddyfile: Support multiple values for `default_bind` (#4774) caddy-2.5.2-bp154.2.8.1.src.rpm caddy-2.5.2-bp154.2.8.1.x86_64.rpm caddy-2.5.2-bp154.2.8.1.i586.rpm caddy-2.5.2-bp154.2.8.1.aarch64.rpm caddy-2.5.2-bp154.2.8.1.ppc64le.rpm caddy-2.5.2-bp154.2.8.1.s390x.rpm openSUSE-2022-10082 moderate openSUSE Backports SLE-15-SP4 Update This update for strawberry fixes the following issues: Update to version 1.0.7: + Fixed checking file extension case-insensitive when loading and saving playlists. + Fixed reading and saving rating with TagParser. + Added option for selecting file extension when saving all playlists. - Build with Qt 6 on openSUSE Leap 15.4 and higher Update to version 1.0.6: Bugfixes: + Fixed certain albums not added to playlist in correct track order from search for Tidal and QObuz. + Fixed songs not added to playlist in numeric order when added from file view with right click (#977). + Fixed "Stop after this track" graying out next track in dynamic mode (#912). + Fixed a gstreamer caps leak when transcoding songs. + Fixed errors in translation files (#994). + Enhancements + Add songs to the collection even when they have invalid ctime or mtime. + Made ListenBrainz scrobbler respect "Prefer album artist" option (#989). + Send track duration, number, player name and version when scrobbling to ListenBrainz (#995). strawberry-1.0.7-bp154.2.6.4.src.rpm strawberry-1.0.7-bp154.2.6.4.x86_64.rpm strawberry-1.0.7-bp154.2.6.4.aarch64.rpm strawberry-1.0.7-bp154.2.6.4.ppc64le.rpm openSUSE-2022-10081 moderate openSUSE Backports SLE-15-SP4 Update This update for trivy fixes the following issues: trivy was updated to version 0.30.4: * fix: remove the first arg when running as a plugin (#2595) * fix: k8s controlplaner scanning (#2593) * fix(vuln): GitLab report template (#2578) Update to version 0.30.3: * fix(server): use a new db worker for hot updates (#2581) * docs: add trivy with download-db-only flag to Air-Gapped Environment (#2583) * docs: split commands to download db for different versions of oras (#2582) * feat(report): export exitcode for license checks (#2564) * fix: cli can use lowercase for severities (#2565) * fix: allow subcommands with TRIVY_RUN_AS_PLUGIN (#2577) * fix: add missing types in TypeOSes and TypeLanguages in analyzer (#2569) * fix: enable some features of the wasm runtime (#2575) * fix(k8s): no error logged if trivy can't get docker image in kubernetes mode (#2521) * docs(sbom): improve sbom attestation documentation (#2566) Update to version 0.30.2: * fix(report): show the summary without results (#2548) * fix(cli): replace '-' to '_' for env vars (#2561) Update to version 0.30.1: * chore: remove a test repository (#2551) * fix(license): lazy loading of classifiers (#2547) * fix: CVE-2022-1996 in Trivy (#2499) * docs(sbom): add sbom attestation (#2527) * feat(rocky): set Rocky Linux 9 EOL (#2543) * docs: add attributes to the video tag to autoplay demo videos (#2538) * fix: yaml files with non-string chart name (#2534) * fix: skip dirs (#2530) * feat(repo): add support for branch, commit, & tag (#2494) * fix: remove auto configure environment variables via viper (#2526) Update to version 0.30.0: * fix: separating multiple licenses from one line in dpkg copyright files (#2508) * fix: change a capital letter for `plugin uninstall` subcommand (#2519) * fix: k8s hide empty report when scanning resource (#2517) * refactor: fix comments (#2516) * fix: scan vendor dir (#2515) * feat: Add support for license scanning (#2418) * chore: add owners for secret scanning (#2485) * fix: remove dependency-tree flag for image subcommand (#2492) * fix(k8s): add shorthand for k8s namespace flag (#2495) * docs: add information about using multiple servers to troubleshooting (#2498) * ci: add pushing canary build images to registries (#2428) * feat(dotnet): add support for .Net core .deps.json files (#2487) * feat(amazon): add support for 2022 version (#2429) * Type correction bitnami chart (#2415) * docs: add config file and update CLI references (#2489) * feat: add support for flag groups (#2488) * refactor: move from urfave/cli to spf13/cobra (#2458) * fix: Fix secrets output not containing file/lines (#2467) * fix: clear output with modules (#2478) * docs(cbl): distroless 1.0 supported (#2473) * fix: Fix example dockerfile rego policy (#2460) * fix(config): add helm to list of config analyzers (#2457) * feat: k8s resouces scan (#2395) * feat(sbom): add cyclonedx sbom scan (#2203) * docs: remove links to removed content (#2431) * ci: added rpm build for rhel 9 (#2437) * fix(secret): remove space from asymmetric private key (#2434) * test(integration): fix golden files for debian 9 (#2435) * fix(cli): fix version string in docs link when secret scanning is enabled (#2422) * refactor: move CycloneDX marshaling (#2420) * docs(nodejs): add docs about pnpm support (#2423) * docs: improve k8s usage documentation (#2425) * feat: Make secrets scanning output consistant (#2410) * ci: create canary build after main branch changes (#1638) * fix(misconf): skip broken scans (#2396) * feat(nodejs): add pnpm support (#2414) * fix: Fix false positive for use of COS images (#2413) * eliminate nerdctl dependency (#2412) * Add EOL date for SUSE SLES 15.3, 15.4 and OpenSUSE 15.4 (#2403) * fix(go): no cast to lowercase go package names (#2401) * BREAKING(sbom): change 'trivy sbom' to scan SBOM (#2408) * fix(server): hot update the db from custom repository (#2406) * feat: added license parser for dpkg (#2381) * fix(misconf): Update defsec (v0.68.5) to fix docker rego duplicate key (#2400) * feat: extract stripe publishable and secret keys (#2392) * feat: rbac support k8s sub-command (#2339) * feat(ruby): drop platform strings from dependency versions bundled with bundler v2 (#2390) * docs: Updating README with new CLI command (#2359) * fix(misconf): Update defsec to v0.68.4 to resolve CF detection bug (#2383) * chore: add integration label and merge security label (#2316) Update to version 0.29.2: * chore: skip Visual Studio Code project folder (#2379) * fix(helm): handle charts with templated names (#2374) * docs: redirect operator docs to trivy-operator repo (#2372) * fix(secret): use secret result when determining Failed status (#2370) * try removing libdb-dev * run integration tests in fanal * use same testing images in fanal * feat(helm): add support for trivy dbRepository (#2345) * fix: Fix failing test due to deref lint issue * test: Fix broken test * fix: Fix makefile when no previous named ref is visible in a shallow clone * chore: Fix linting issues in fanal * refactor: Fix fanal import paths and remove dotfiles Update to version 0.29.1: * fix(report): add required fields to the SARIF template (#2341) * chore: fix spelling errors (#2352) * Omit Remediation if PrimaryURL is empty (#2006) * docs(repo): Link to installation documentation in readme shows 404 (#2348) * feat(alma): support for scanning of modular packages for AlmaLinux (#2347) Update to version 0.29.0: * fix(lang): fix dependency graph in client server mode (#2336) * feat: allow expiration date for .trivyignore entries (#2332) * feat(lang): add dependency origin graph (#1970) * docs: update nix installation info (#2331) * feat: add rbac scanning support (#2328) * refactor: move WordPress module to another repository (#2329) * ci: add support for ppc64le (#2281) * feat: add support for WASM modules (#2195) * feat(secret): show recommendation for slow scanning (#2051) * fix(flag): remove --clear-cache flag client mode (#2301) * fix(java): added check for looping for variable evaluation in pom file (#2322) * BREAKING(k8s): change CLI API (#2186) * feat(alpine): add Alpine Linux 3.16 (#2319) * ci: add `go mod tidy` check (#2314) * chore: run `go mod tidy` (#2313) * fix: do not exit if one resource is not found (#2311) * feat(cli): use stderr for all log messages (resolve #381) (#2289) * test: replace deprecated subcommand client in integration tests (#2308) * feat: add support for containerd (#2305) * fix(kubernetes): Support floats in manifest yaml (#2297) * docs(kubernetes): dead links (#2307) * chore: add license label (#2304) * feat(mariner): added support for CBL-Mariner Distroless v2.0 (#2293) * feat(helm): add pod annotations (#2272) * refactor: do not import defsec in fanal types package (#2292) * feat(report): Add misconfiguration support to ASFF report template (#2285) * test: use images in GHCR (#2275) * feat(helm): support pod annotations (#2265) * feat(misconf): Helm chart scanning (#2269) * docs: Update custom rego policy docs to reflect latest defsec/fanal changes (#2267) * fix: mask redis credentials when logging (#2264) * refactor: extract commands Runner interface (#2147) * docs: update operator release (#2263) * feat(redhat): added architecture check (#2172) * docs: updating links in the docs to work again (#2256) * docs: fix readme (#2251) * fix: fixed incorrect CycloneDX output format (#2255) * refactor(deps): move dependencies to package (#2189) * fix(report): change github format version to required (#2229) * docs: update readme (#2110) * docs: added information about choosing advisory database (#2212) * chore: update trivy-kubernetes (#2224) * docs: clarifying parts of the k8s docs and updating links (#2222) * fix(k8s): timeout error logging (#2179) * chore(deps): updated fanal after fix AsymmetricPrivateKeys (#2214) * feat(k8s): add --context flag (#2171) * fix(k8s): properly instantiate TableWriter (#2175) * test: fixed integration tests after updating testcontainers to v0.13.0 (#2208) * chore: update labels (#2197) * fix(report): fixed panic if all misconf reports were removed in filter (#2188) * feat(k8s): scan secrets (#2178) * feat(report): GitHub Dependency Snapshots support (#1522) * feat(db): added insecure skip tls verify to download trivy db (#2140) * fix(redhat): always use vulns with fixed version if there is one (#2165) * chore(redhat): Add support for Red Hat UBI 9. (#2183) * fix(k8s): update trivy-kubernetes (#2163) * fix misconfig start line for code quality tpl (#2181) * fix: update docker/distribution from 2.8.0 to 2.8.1 (#2176) * docs(vuln): Include GitLab 15.0 integration (#2153) * docs: fix the operator version (#2167) * fix(k8s): summary report when when only vulns exit (#2146) * chore(deps): Update fanal to get defsec v0.58.2 (fixes false positives in ksv038) (#2156) * perf(misconf): Improve performance when scanning very large files (#2152) * docs(misconf): Update examples and docs to refer to builtin/defsec instead of appshield (#2150) * chore(deps): Update fanal (for less verbose code in misconf results) (#2151) * docs: fixed installation instruction for rhel/centos (#2143) trivy-0.30.4-bp154.2.6.1.src.rpm trivy-0.30.4-bp154.2.6.1.x86_64.rpm trivy-0.30.4-bp154.2.6.1.i586.rpm trivy-0.30.4-bp154.2.6.1.aarch64.rpm trivy-0.30.4-bp154.2.6.1.s390x.rpm openSUSE-2022-10083 moderate openSUSE Backports SLE-15-SP4 Update This update for trytond_account, trytond_account_invoice, trytond_purchase fixes the following issues: - trytond_purchase was updated to version 6.0.8 - Bugfix Release - trytond_account_invoice was updated to version 6.0.7 - Bugfix Release - trytond_account was updated to version 6.0.12 - Bugfix Release trytond_account-6.0.12-bp154.2.6.1.noarch.rpm trytond_account-6.0.12-bp154.2.6.1.src.rpm trytond_account_invoice-6.0.7-bp154.2.3.1.noarch.rpm trytond_account_invoice-6.0.7-bp154.2.3.1.src.rpm trytond_purchase-6.0.8-bp154.2.6.1.noarch.rpm trytond_purchase-6.0.8-bp154.2.6.1.src.rpm openSUSE-2022-10085 moderate openSUSE Backports SLE-15-SP4 Update This update for urlscan fixes the following issues: - Do not remove egg info anymore as the python3 interpreter does not work anymore without this information (boo#1202137) urlscan was updated to version 0.9.9: * Bugfix in f-string * Updated setup.py after tagging previous version urlscan was updated to version 0.9.8: * Update TLD list * Fix #118, crash on navigating to non-existant line * Pylint fixes * Move to subprocess run instead of call and Popen * Switch to f-strings urlscan-0.9.9-bp154.2.3.1.noarch.rpm urlscan-0.9.9-bp154.2.3.1.src.rpm openSUSE-2022-10137 moderate openSUSE Backports SLE-15-SP4 Update This update for PTL fixes the following issues: PTL is shipped in version 2.3.3. PTL-2.3.3-bp154.2.1.src.rpm libptl2-2.3.3-bp154.2.1.x86_64.rpm ptl-devel-2.3.3-bp154.2.1.x86_64.rpm libptl2-2.3.3-bp154.2.1.i586.rpm ptl-devel-2.3.3-bp154.2.1.i586.rpm libptl2-2.3.3-bp154.2.1.aarch64.rpm ptl-devel-2.3.3-bp154.2.1.aarch64.rpm libptl2-2.3.3-bp154.2.1.ppc64le.rpm ptl-devel-2.3.3-bp154.2.1.ppc64le.rpm libptl2-2.3.3-bp154.2.1.s390x.rpm ptl-devel-2.3.3-bp154.2.1.s390x.rpm openSUSE-2022-10086 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 104.0.5112.79 (boo#1202075) * CVE-2022-2603: Use after free in Omnibox * CVE-2022-2604: Use after free in Safe Browsing * CVE-2022-2605: Out of bounds read in Dawn * CVE-2022-2606: Use after free in Managed devices API * CVE-2022-2607: Use after free in Tab Strip * CVE-2022-2608: Use after free in Overview Mode * CVE-2022-2609: Use after free in Nearby Share * CVE-2022-2610: Insufficient policy enforcement in Background Fetch * CVE-2022-2611: Inappropriate implementation in Fullscreen API * CVE-2022-2612: Side-channel information leakage in Keyboard input * CVE-2022-2613: Use after free in Input * CVE-2022-2614: Use after free in Sign-In Flow * CVE-2022-2615: Insufficient policy enforcement in Cookies * CVE-2022-2616: Inappropriate implementation in Extensions API * CVE-2022-2617: Use after free in Extensions API * CVE-2022-2618: Insufficient validation of untrusted input in Internals * CVE-2022-2619: Insufficient validation of untrusted input in Settings * CVE-2022-2620: Use after free in WebUI * CVE-2022-2621: Use after free in Extensions * CVE-2022-2622: Insufficient validation of untrusted input in Safe Browsing * CVE-2022-2623: Use after free in Offline * CVE-2022-2624: Heap buffer overflow in PDF - Switch back to Clang so that we can use BTI on aarch64 * Gold is too old - doesn't understand BTI * LD crashes on aarch64 - Re-enable LTO - Prepare move to FFmpeg 5 for new channel layout (requires 5.1+) chromedriver-104.0.5112.79-bp154.2.20.1.x86_64.rpm chromium-104.0.5112.79-bp154.2.20.1.src.rpm chromium-104.0.5112.79-bp154.2.20.1.x86_64.rpm chromedriver-104.0.5112.79-bp154.2.20.1.aarch64.rpm chromium-104.0.5112.79-bp154.2.20.1.aarch64.rpm openSUSE-2022-10093 moderate openSUSE Backports SLE-15-SP4 Update This update for proftpd fixes the following issues: proftpd was updated to 1.3.7e - Released 23-Jul-2022 * Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x. 1.3.7d - Released 23-Apr-2022 * Issue 1321 - Crash with long lines in AuthGroupFile due to large realloc(3). * Issue 1325 - NLST does not behave consistently for relative paths. * Issue 1346 - Implement AllowForeignAddress class matching for passive data transfers. * Bug 4467 - DeleteAbortedStores removes successfully transferred files unexpectedly. * Issue 1401 - Keepalive socket options should be set using IPPROTO_TCP, not SOL_SOCKET. * Issue 1402 - TCP keepalive SocketOptions should apply to control as well as data connection. * Issue 1396 - ProFTPD always uses the same PassivePorts port for first transfer. * Issue 1369 - Name-based virtual hosts not working as expected after upgrade from 1.3.7a to 1.3.7b. Update to version 1.3.7c: * http://proftpd.org/docs/NEWS-1.3.7c * http://proftpd.org/docs/RELEASE_NOTES-1.3.7c - Added hardening to systemd service(s) (boo#1181400). 1.3.7e - Released 23-Jul-2022 * Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x. 1.3.7d - Released 23-Apr-2022 * Issue 1321 - Crash with long lines in AuthGroupFile due to large realloc(3). * Issue 1325 - NLST does not behave consistently for relative paths. * Issue 1346 - Implement AllowForeignAddress class matching for passive data transfers. * Bug 4467 - DeleteAbortedStores removes successfully transferred files unexpectedly. * Issue 1401 - Keepalive socket options should be set using IPPROTO_TCP, not SOL_SOCKET. * Issue 1402 - TCP keepalive SocketOptions should apply to control as well as data connection. * Issue 1396 - ProFTPD always uses the same PassivePorts port for first transfer. * Issue 1369 - Name-based virtual hosts not working as expected after upgrade from 1.3.7a to 1.3.7b. Update to version 1.3.7c: * http://proftpd.org/docs/NEWS-1.3.7c * http://proftpd.org/docs/RELEASE_NOTES-1.3.7c proftpd-1.3.7e-bp154.3.3.1.src.rpm proftpd-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-debuginfo-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-debugsource-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-devel-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-doc-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-lang-1.3.7e-bp154.3.3.1.noarch.rpm proftpd-ldap-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-mysql-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-pgsql-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-radius-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-sqlite-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.3.1.x86_64.rpm proftpd-1.3.7e-bp154.3.3.1.i586.rpm proftpd-debuginfo-1.3.7e-bp154.3.3.1.i586.rpm proftpd-debugsource-1.3.7e-bp154.3.3.1.i586.rpm proftpd-devel-1.3.7e-bp154.3.3.1.i586.rpm proftpd-doc-1.3.7e-bp154.3.3.1.i586.rpm proftpd-ldap-1.3.7e-bp154.3.3.1.i586.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.3.1.i586.rpm proftpd-mysql-1.3.7e-bp154.3.3.1.i586.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.3.1.i586.rpm proftpd-pgsql-1.3.7e-bp154.3.3.1.i586.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.3.1.i586.rpm proftpd-radius-1.3.7e-bp154.3.3.1.i586.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.3.1.i586.rpm proftpd-sqlite-1.3.7e-bp154.3.3.1.i586.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.3.1.i586.rpm proftpd-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-debuginfo-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-debugsource-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-devel-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-doc-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-ldap-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-mysql-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-pgsql-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-radius-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-sqlite-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.3.1.aarch64.rpm proftpd-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-debuginfo-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-debugsource-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-devel-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-doc-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-ldap-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-mysql-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-pgsql-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-radius-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-sqlite-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.3.1.ppc64le.rpm proftpd-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-debuginfo-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-debugsource-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-devel-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-doc-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-ldap-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-mysql-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-pgsql-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-radius-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-sqlite-1.3.7e-bp154.3.3.1.s390x.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.3.1.s390x.rpm openSUSE-2022-10091 important openSUSE Backports SLE-15-SP4 Update This update for canna fixes the following issues: - CVE-2022-21950: Move UNIX socket dir from /tmp to /run to avoid local attackers being able to place bogus directories in its stead. Use systemd-tmpfiles for cleaning old sockets (boo#1199280). canna-3.7p3-bp154.3.3.1.src.rpm canna-3.7p3-bp154.3.3.1.x86_64.rpm canna-devel-3.7p3-bp154.3.3.1.x86_64.rpm canna-libs-3.7p3-bp154.3.3.1.x86_64.rpm canna-3.7p3-bp154.3.3.1.i586.rpm canna-devel-3.7p3-bp154.3.3.1.i586.rpm canna-libs-3.7p3-bp154.3.3.1.i586.rpm canna-libs-32bit-3.7p3-bp154.3.3.1.x86_64.rpm canna-3.7p3-bp154.3.3.1.aarch64.rpm canna-devel-3.7p3-bp154.3.3.1.aarch64.rpm canna-libs-3.7p3-bp154.3.3.1.aarch64.rpm canna-libs-64bit-3.7p3-bp154.3.3.1.aarch64_ilp32.rpm canna-3.7p3-bp154.3.3.1.ppc64le.rpm canna-devel-3.7p3-bp154.3.3.1.ppc64le.rpm canna-libs-3.7p3-bp154.3.3.1.ppc64le.rpm canna-3.7p3-bp154.3.3.1.s390x.rpm canna-devel-3.7p3-bp154.3.3.1.s390x.rpm canna-libs-3.7p3-bp154.3.3.1.s390x.rpm openSUSE-2022-10101 important openSUSE Backports SLE-15-SP4 Update This update for nim fixes the following issues: Includes upstream security fixes for: * (boo#1175333, CVE-2020-15693) httpClient is vulnerable to a CR-LF injection * (boo#1175334, CVE-2020-15692) mishandle of argument to browsers.openDefaultBrowser * (boo#1175332, CVE-2020-15694) httpClient.get().contentLength() fails to properly validate the server response * (boo#1192712, CVE-2021-41259) null byte accepted in getContent function, leading to URI validation bypass * (boo#1185948, CVE-2021-29495) stdlib httpClient does not validate peer certificates by default * (boo#1185085, CVE-2021-21374) Improper verification of the SSL/TLS certificate * (boo#1185084, CVE-2021-21373) "nimble refresh" falls back to a non-TLS URL in case of error * (boo#1185083, CVE-2021-21372) doCmd can be leveraged to execute arbitrary commands * (boo#1181705, CVE-2020-15690) Standard library asyncftpclient lacks a check for newline character Update to 1.6.6 * standard library use consistent styles for variable names so it can be used in projects which force a consistent style with --styleCheck:usages option. * ARC/ORC are now considerably faster at method dispatching, bringing its performance back on the level of the refc memory management. * Full changelog: https://nim-lang.org/blog/2022/05/05/version-166-released.html - Previous updates and changelogs: * 1.6.4: https://nim-lang.org/blog/2022/02/08/version-164-released.html * 1.6.2: https://nim-lang.org/blog/2021/12/17/version-162-released.html * 1.6.0: https://nim-lang.org/blog/2021/10/19/version-160-released.html * 1.4.8: https://nim-lang.org/blog/2021/05/25/version-148-released.html * 1.4.6: https://nim-lang.org/blog/2021/04/15/versions-146-and-1212-released.html * 1.4.4: https://nim-lang.org/blog/2021/02/23/versions-144-and-1210-released.html * 1.4.2: https://nim-lang.org/blog/2020/12/01/version-142-released.html * 1.4.0: https://nim-lang.org/blog/2020/10/16/version-140-released.html update to 1.2.16 * oids: switch from PRNG to random module * nimc.rst: fix table markup * nimRawSetjmp: support Windows * correctly enable chronos * bigints are not supposed to work on 1.2.x * disable nimpy * misc bugfixes * fixes a 'mixin' statement handling regression [backport:1.2 nim-1.6.6-bp154.2.3.1.src.rpm nim-1.6.6-bp154.2.3.1.x86_64.rpm nim-1.6.6-bp154.2.3.1.aarch64.rpm nim-1.6.6-bp154.2.3.1.ppc64le.rpm openSUSE-2022-10103 important openSUSE Backports SLE-15-SP4 Update This update for python-Django fixes the following issues: - CVE-2022-36359: Fixed potential reflected file download vulnerability in FileResponse (boo#1201923) * Backport fix and tests from uptream branch 3.2.X python-Django-2.2.28-bp154.2.3.3.src.rpm python3-Django-2.2.28-bp154.2.3.3.noarch.rpm openSUSE-2022-10105 moderate openSUSE Backports SLE-15-SP4 Update This update for telegram-desktop fixes the following issues: Telegram-desktop was updated to a valid version (boo#1193516) - Update to version 4.0.2 * Fix window title on Windows 7. (again) * Fix file chooser and global menu on macOS. * Crash fix and OpenAL check for PipeWire fix on Linux. - Update to version 4.0.1 * Fix window title on Windows 7. * Bug fixes and other minor improvements. - Update tg_owt. - Add suport for Qt version 6 - Update to version 4.0.0 * Premium: Send media and files each up to 4 GB in size. * Premium: Download media and files at the fastest possible speed, with no limits. * Premium: Double most of the limits in the app. * Premium: Get a new button next to any voice message to generate a transcript of its audio. * Premium: React with even more emoji, including :clown: and 😍. * Premium: Send unique stickers with additional effects, updated monthly. * Premium: Set a default chat folder or enable tools to auto-archive and hide new chats. * Premium: Subscribers have a badge next to their name, showing they help support Telegram. * Premium: Show off your profile video that will be animated for everyone in chats and the chat list. * Premium: Sponsored Messages that are sometimes shown in public channels will no longer appear. * Enable join requests for your public groups – no invite links required. * Users who open the group will see an Apply to Join Group button. * Once approved by an admin, users will be able to participate in the chat. * Bots that are integrated into the attachment menu can be programmed to work in groups and channels. - Update to version 3.7.6 * Settings > Advanced > Experimental adds an option to open chats in separate windows. * Fix possible crash in video chat reconnection. * Fix possible crash after account switch. - Update to version 3.7.5 * Improve cloud password management design. * Fix a crash in shared media search. * Fix audio recording on macOS. - Update to version 3.7.4 * More icons for chat folders. * Improve some more sections design. * Update the OpenAL library to 1.22.0. - Update to version 3.7.3 * Fix a crash in the pinned bar bot button refresh. - Update to version 3.7.2 * Fix mute period selector values. * Fix a crash in repeated context menu item selection. * Fix context menu item selection of systems without a compositor. - Update to version 3.7.1 * Hardware accelerated video decoding off by default. * Fix several crashes. - Update to version 3.7.0 * NO SUPPORT FOR QT5 ON LINUX ANYMORE! USE QT6! * Use any short music file or voice message as a notification sound. * Right click audio files in chats to add them to your list of sounds - or use 'Upload Sound' in the Notifications menu. * Click on Mute notifications > Select sound in a chat's (...) menu to change its notification sound. * Set custom tones for notifications in Settings > Notifications > Play sound. * Click on Mute notifications in a chat's (...) menu to manage its notifications. * Choose 'Mute for...' to turn off notifications for a preset period, like 1 hour or 1 day. * Quickly configure Auto-Delete settings from any chat info page. * Click (...) to turn on Auto-Delete, then select a specific duration. * Replies are now preserved when forwarding messages, making forwarded conversations easier to read. * Bots can now open detailed pages directly in the chat. * Use these streamlined interfaces to buy real-world goods and services without leaving the app. * Open a bot's profile to add it to your group or channel. * Instantly configure a bot's rights and permissions when adding it. * Bots can send a new type of button that lets you add them to your group or channel. - Update to 3.6.1 * Change volume for RTMP stream from the context menu. * Set a profile photo from your camera. * Improve RTMP stream full screen mode. * Improve edit account section design. * Fix switching personal account or channel in video chats. * Fix pinning chats in folders with 100 chats. * Fix YouTube timestamp links after 10 hours. - Update tg_owt - Update to 3.6.0 * Active and recently finished downloads pop up in bar in the bottom left corner, like they do in browsers. * View recently downloaded files in Settings > Advanced > Downloads. * Get an alert before closing the app if you have unfinished downloads. * Share a direct t.me link to your phone number that instantly opens a chat with you. Use the full number in international format, like t.me/+123456789 * Manage Live Streams in your channels using external software like OBS Studio or XSplit Broadcaster. Choose "Stream With..." when staring a video chat or live stream - then copy your Stream Key and paste it into your streaming software. - Update tg_owt - Update to 3.5.2 * Fix a freeze in audio playback on Linux. * Fix a crash in screen sharing initialization on Linux. - Update to 3.5.0 * Use a new type of detailed stickers with smooth animations. * Create new sets by sending .webm videos to @stickers. * Bring your custom animated stickers from other apps. * See smaller, compact animations when reacting to messages. * See real-time animations in chat when a user reacts to your message. * React with additional emoji expressing love, appreciation, anger or surprise. * Tap the new button in chats to jump to your messages that have unseen reactions. * Watch the animations for unseen reactions play when you hit the button. * The app will warn you before closing if you are uploading photos or files to a chat. * Enjoy better screencast quality in video chats. - Update to 3.4.3 * Bug fixes and other minor improvements. - Update to 3.4.2 * Bug fixes and other minor improvements. - Update to 3.4.1 * Bug fixes and other minor improvements. - Update to 3.4.0 * Send reactions to messages. * Group and Channel admins can enable reactions in their chat via '...' * menu > Manage > Reactions. * Select text when typing and choose 'Formatting > Spoiler' in the context menu to hide some or all of the contents of a message. * Click on the spoiler in chat to reveal its hidden text. * Spoiler formatting hides text in chat, as well as in the chat list and notifications. - Update tg_owt - Update to 3.3.0 * Content creators can restrict the ability to save media and forward messages from their groups and channels. * Clear messages in one-on-one chats from a specific day or date range. * Comment as one of your channels in public groups and channel comments. - Update to 3.2.8 * Fix crash in opening shared media with another user. * Try out the new audio player with playlist shuffle and repeat. * Give a custom name to your desktop session to distinguish it in the sessions list. - Update tg_owt - Update to 3.1.11 * Create special invite links that require admins to approve users before they become members. * Admins can view the applicants' profiles and bios by tapping the Join Requests bar at the top of the chat. * Add internal labels to your chat's Invite Links to keep them organized. * Run natively on Apple Silicon - Update tg_owt - Update to 3.1.9 * Show small media previews in chats list. * Show media album previews and caption text in chats list. * Add "Quick Reply" and "Mark as Read" to native Windows notifications. - Add explicit BuildRequires for webkit2gtk-4.0 - Update to 3.1.1 * Choose one from dozens of new gorgeous animated backgrounds in Chat Settings > Chat background. * Tile chat background patterns horizontally. * Broadcast video and share your screen to an unlimited number of viewers. * To begin, tap the Live Stream button in the title bar of a community where you are an admin. * Tap the "Forward Message" label above the input field to change how messages will be sent. * Hide or show the original sender's name. * Remove or keep captions from media messages. * See how many unread comments there are when opening a channel's comments. * Check who've seen your message in small groups from the context menu. * Enable recording with video in live streams and video chats. * Add a "Close to Taskbar" option when tray icon is disabled. * Add support for Emoji 13.1. * Some animated emoji now have extra effects. * Send fireworks tada, balloon, :like:, hankey or heart to any private chat, then click on the animated emoji to launch the effect. * If your chat partner also has the chat open, you will both see the effects. * See the "Watching" status when your chat partner is enjoying emoji effects with you. * More interactive emoji coming soon. * Right click one of your outgoing messages in small groups to see who recently viewed it. * To protect privacy, read receipts are only stored for 7 days after the message was sent. * Record video and audio from live broadcasts in your group or channel. * Admins can start recording from the '...' menu. * Choose between recording in portrait or landscape orientation. * Finished recordings are sent to the admin's Saved Messages and can be easily shared. - Update tg_owt - Remove 0003-prioritize-gtk2.patch, the file it was applied to was removed upstream - Enable GCC11 again - Enable build on armv6/armv7 since the build has been fixed upstream - Update to 2.9.0 * Enable auto-delete in your chats to remove messages. * Quickly find all GIFs from a chat using the new GIF section. * Reset your Two-Step Verification password even if you forgot. * Enjoy a new app icon and default background. - Update tg_owt - Update 0001-use-bundled-ranged-exptected-gsl.patch * Use bundled rlottie - Add 0004-use-dynamic-x-libraries.patch - Add 0005-add-wayland-include-path.patch - Add 0003-prioritize-gtk2.patch and enable GTK integration. Fixes boo#1149986 regression. - Temporarily stick to GCC10 to work around build failures - Update to 2.7.5 (beta) * Add "Voice chats" filter in "Recent actions" for channels. * Write local drafts to disk on a background thread. * Support autoupdate for Telegram in write-protected folders on Linux. * Fix crash in native notifications on Linux. * Fix crash in file dialog on Linux. - Update tg_owt - Update to 2.7.4 * Fix crash in viewing an invoice after a payment is made. * Respect Focus Assist only for native notifications. * Mark messages as read only in active window. - Update to 2.7.3 * Fix crash on some versions of Linux. * Fix video not stopping when PiP window is closed. * Fix messages marking as read if the Windows session is locked. - Update to 2.7.2 * Offer real goods and services for sale in any group, channel or bot – Telegram doesn't charge a commission. * Pay for goods securely using one of the 8 integrated payment providers – Telegram doesn't collect your payment info. * See how this works in our @teststore. * Schedule voice chats to let participants know about them in advance. * View a countdown to the voice chat and get notified when it starts. - Update tg_owt - Drop telegram-desktop-cinttypes-header.patch, fixed upstream - Expand the ExcludeArch. - Exclude i586, support was dropped upstream (gh#telegramdesktop/tdesktop#10037) - Add telegram-desktop-cinttypes-header.patch: Include cinttypes header to use uint32_t. - Add xkbcommon and wayland header dirs to CXXFLAGS to fix build failures. - Require Qt >= 5.15: Required since version 2.5.9 (gh#telegramdesktop/tdesktop#10398). - Pass -q to unzip to avoid echoing long file list while unzipping. - Update to 2.7.1 * Fix editing 'Manage Voice Chats' rights for channel admins. * Fix verification check display in voice chat participants list. * Allow removing and blocking channels from voice chats. - Update tg_owt - Update to 2.7.0 * Start limitless Voice Chats in Groups and Channels. * Host discussions that can be listened to by millions of people simultaneously. * Record voice chats to share or publish in Channels later. * See that a chat is being recorded from the red dot next to its title. * See user bio texts right from the list of participants. * Raise your hand to show admins you want to speak. * Create separate Voice Chat Invite Links for listeners or speakers. * Change the title of your Voice Chat to give people an idea of the current topic. * Join Voice Chats as one of your Channels to hide your personal account. - Use higher dwz memory limits for the package. - Update to 2.6.2 * Fix text disappearing because of cloud drafts sync. - Update to 2.6.1 * Fix time formatting in links. * Fix copy QR code in night mode. * Fix invite link sharing without a comment. * Fix crash in link editing on Linux. - Update to 2.6.0 * Set messages to auto-delete for everyone 24 hours or 7 days after sending. * Control auto-delete settings in any of your chats, as well as in groups and channels where you are an admin. * To enable auto-delete, right click on the chat in the chat list > Clear History > Enable Auto-Delete. * Create invite links that work for a limited time or a limited number of uses. * See which users joined using your, or your admins', invite links. * Turn any invite link into a QR code users can scan with their phone cameras. * To manage invite links, click ... > Manage Group/Channel > Invite Links. * Convert groups that have reached 200,000 members into unlimited Broadcast Groups. - Remove 0000-gtk2-default.patch, the code was removed upstream, meaning GTK integration is again broken, see boo#1149986 - Update to 2.5.9 * Add 'Invite via Link' button to Add Members box. * Fix window size in Windows 10 Tablet Mode. * Fix layout of round video messages in channels. telegram-desktop-4.0.2-bp154.2.3.2.src.rpm telegram-desktop-4.0.2-bp154.2.3.2.x86_64.rpm telegram-desktop-4.0.2-bp154.2.3.2.aarch64.rpm telegram-desktop-4.0.2-bp154.2.3.2.ppc64le.rpm openSUSE-2022-10089 important openSUSE Backports SLE-15-SP4 Update This update for seamonkey fixes the following issues: update to SeaMonkey 2.53.13 * Updates to devtools. * Updates to build configuration. * Starting the switch from Python 2 to Python 3 in the build system. * Removal of array comprehensions, legacy iterators and generators bug 1414340 and bug 1098412. * Adding initial optional chaining and Promise.allSettled() support. * SeaMonkey 2.53.13 uses the same backend as Firefox and contains the relevant Firefox 60.8 security fixes. * SeaMonkey 2.53.13 shares most parts of the mail and news code with Thunderbird. Please read the Thunderbird 60.8.0 release notes for specific security fixes in this release. * Additional important security fixes up to Current Firefox 91.11 and Thunderbird 91.11 ESR plus many enhancements have been backported. We will continue to enhance SeaMonkey security in subsequent 2.53.x beta and release versions as fast as we are able to. update to SeaMonkey 2.53.12 * Format Toolbar forgets its hidden status when switching to other view modes bug 1719020. * Remove obsolete plugin code from SeaMonkey bug 1762733. * Fix a few strict warnings in SeaMonkey bug 1755553. * Remove Run Flash from Site permissions and page info bug 1758289. * Use fixIterator and replace use of removeItemAt in FilterListDialog bug 1756359. * Remove RDF usage in tabmail.js bug 1758282. * Implement 'Edit Template' and 'New Message From Template' commands and UI bug 1759376. * [SM] Implement 'Edit Draft' command and hide it when not in a draft folder (port Thunderbird bug 1106412) bug 1256716. * Messages in Template folder need "Edit Template" button in header (like for Drafts) bug 80280. * Refactor and simplify the feed Subscribe dialog options updates bug 1420473. * Add system memory and disk size and placeDB page limit to about:support bug 1753729. * Remove warning about missing plugins in SeaMonkey 2.53 and 2.57 bug 1755558. * SeaMonkey 2.53.12 uses the same backend as Firefox and contains the relevant Firefox 60.8 security fixes. * SeaMonkey 2.53.12 shares most parts of the mail and news code with Thunderbird. Please read the Thunderbird 60.8.0 release notes for specific security fixes in this release. * Additional important security fixes up to Current Firefox 91.9 and Thunderbird 91.9 ESR plus many enhancements have been backported. We will continue to enhance SeaMonkey security in subsequent 2.53.x beta and release versions as fast as we are able to. update to SeaMonkey 2.53.11.1 * Fix edge case when setting IntersectionObserver threshold bug 1758291. * OAuth2 prefs should use realuserName instead of username bug 1518126. * SeaMonkey 2.53.11.1 uses the same backend as Firefox and contains the relevant Firefox 60.8 security fixes. * SeaMonkey 2.53.11.1 shares most parts of the mail and news code with Thunderbird. Please read the Thunderbird 60.8.0 release notes for specific security fixes in this release. * Additional important security fixes up to Current Firefox 91.7 and Thunderbird 91.7 ESR plus many enhancements have been backported. We will continue to enhance SeaMonkey security in subsequent 2.53.x beta and release versions as fast as we are able to. update to SeaMonkey 2.53.11 * Remove obsolete MOZ_EXTENSIONS check in suite bug 1749146. * Add connect button to cZ Networks Editor bug 1736443. * Remove freenode remnants from ChatZilla in SeaMonkey bug 1741082. * Prefer secure over insecure protocol in network list in ChatZilla bug 1744440. * Composer - Change tag textbox is not removed after use bug 1755369. * Clean up repo links in debugQA bug 1746790. * Fix misspelled references to macOS in suite bug 1749144. * Remove obsolete references to Java and Flash bug 1749141. * Help button not working in delete cert dialog bug 1750386. * Rearrange Message Filter Dialog to make room for new features bug 1735053. * Use Insert key as shortcut to create new message filters bug 1735055. * Rename some variables used in SeaMonkey's FilterListDialog to match Thunderbird's bug 1735056. * Implement Copy to New message filter functionality bug 1735057. * Add move to top / bottom buttons to message filters bug 1735059. * Add preference to not prompt for message filter deletion bug 1735061. * Clean up folder handling in FilterListDialog bug 1736425. * Add refresh function to Filter list dialog so that it can be updated when already open and new filters are added externally bug 1737450. * Use listbox rather than tree in FilterListDialog bug 1746081. * MsgFilterList(args) should take targetFilter and pass it to FilterListDialog bug 1753891. * Mail&News' start.xhtml: "We" link broken bug 1748178. * Add search functionality to filter dialog bug 1749207. * Move the taskbar refresh timer in SeaMonkey to idle dispatch bug 1746788. * Prevent subresource loads from showing the progress indicator on the tab in SeaMonkey bug 1746787. * SeaMonkey 2.53.11 uses the same backend as Firefox and contains the relevant Firefox 60.8 security fixes. * Additional important security fixes up to Current Firefox 91.6 ESR and a few enhancements have been backported. We will continue to enhance SeaMonkey security in subsequent 2.53.x beta and release versions as fast as we are able to. * SeaMonkey 2.53.11 shares most parts of the mail and news code with Thunderbird. Please read the Thunderbird 60.0 release notes for specific changes and security fixes in this release. seamonkey-2.53.13-bp154.2.3.1.src.rpm seamonkey-2.53.13-bp154.2.3.1.x86_64.rpm seamonkey-debuginfo-2.53.13-bp154.2.3.1.x86_64.rpm seamonkey-debugsource-2.53.13-bp154.2.3.1.x86_64.rpm seamonkey-dom-inspector-2.53.13-bp154.2.3.1.x86_64.rpm seamonkey-irc-2.53.13-bp154.2.3.1.x86_64.rpm seamonkey-2.53.13-bp154.2.3.1.i586.rpm seamonkey-debuginfo-2.53.13-bp154.2.3.1.i586.rpm seamonkey-debugsource-2.53.13-bp154.2.3.1.i586.rpm seamonkey-dom-inspector-2.53.13-bp154.2.3.1.i586.rpm seamonkey-irc-2.53.13-bp154.2.3.1.i586.rpm seamonkey-2.53.13-bp154.2.3.1.aarch64.rpm seamonkey-debuginfo-2.53.13-bp154.2.3.1.aarch64.rpm seamonkey-debugsource-2.53.13-bp154.2.3.1.aarch64.rpm seamonkey-dom-inspector-2.53.13-bp154.2.3.1.aarch64.rpm seamonkey-irc-2.53.13-bp154.2.3.1.aarch64.rpm openSUSE-2022-10165 moderate openSUSE Backports SLE-15-SP4 Update This update for tor fixes the following issues: - tor 0.4.7.10 * IPFire location database did not have proper ARIN network allocations - affected circuit path selection and relay metrics - tor 0.4.7.9 (boo#1202336) * major fixes aimed at reducing memory pressure on relays * prevent a possible side-channel * major bugfix related to congestion control * major bugfix related to Vanguard L2 layer node selection tor-0.4.7.10-bp154.2.6.1.src.rpm tor-0.4.7.10-bp154.2.6.1.x86_64.rpm tor-debuginfo-0.4.7.10-bp154.2.6.1.x86_64.rpm tor-debugsource-0.4.7.10-bp154.2.6.1.x86_64.rpm tor-0.4.7.10-bp154.2.6.1.i586.rpm tor-debuginfo-0.4.7.10-bp154.2.6.1.i586.rpm tor-debugsource-0.4.7.10-bp154.2.6.1.i586.rpm tor-0.4.7.10-bp154.2.6.1.aarch64.rpm tor-debuginfo-0.4.7.10-bp154.2.6.1.aarch64.rpm tor-debugsource-0.4.7.10-bp154.2.6.1.aarch64.rpm tor-0.4.7.10-bp154.2.6.1.ppc64le.rpm tor-debuginfo-0.4.7.10-bp154.2.6.1.ppc64le.rpm tor-debugsource-0.4.7.10-bp154.2.6.1.ppc64le.rpm tor-0.4.7.10-bp154.2.6.1.s390x.rpm tor-debuginfo-0.4.7.10-bp154.2.6.1.s390x.rpm tor-debugsource-0.4.7.10-bp154.2.6.1.s390x.rpm openSUSE-2022-10099 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 104.0.5112.101 (boo#1202509): * CVE-2022-2852: Use after free in FedCM * CVE-2022-2854: Use after free in SwiftShader * CVE-2022-2855: Use after free in ANGLE * CVE-2022-2857: Use after free in Blink * CVE-2022-2858: Use after free in Sign-In Flow * CVE-2022-2853: Heap buffer overflow in Downloads * CVE-2022-2856: Insufficient validation of untrusted input in Intents * CVE-2022-2859: Use after free in Chrome OS Shell * CVE-2022-2860: Insufficient policy enforcement in Cookies * CVE-2022-2861: Inappropriate implementation in Extensions API - Re-enable our version of chrome-wrapper - Set no sandbox if root is being used (https://crbug.com/638180) chromedriver-104.0.5112.101-bp154.2.23.1.x86_64.rpm chromedriver-debuginfo-104.0.5112.101-bp154.2.23.1.x86_64.rpm chromium-104.0.5112.101-bp154.2.23.1.src.rpm chromium-104.0.5112.101-bp154.2.23.1.x86_64.rpm chromium-debuginfo-104.0.5112.101-bp154.2.23.1.x86_64.rpm chromedriver-104.0.5112.101-bp154.2.23.1.aarch64.rpm chromedriver-debuginfo-104.0.5112.101-bp154.2.23.1.aarch64.rpm chromium-104.0.5112.101-bp154.2.23.1.aarch64.rpm chromium-debuginfo-104.0.5112.101-bp154.2.23.1.aarch64.rpm openSUSE-2022-10106 moderate openSUSE Backports SLE-15-SP4 Update This update for tryton, trytond, trytond_account fixes the following issues: Changes in trytond_account: - Version 6.0.13 - Bugfix Release Changes in trytond: - Version 6.0.21 - Bugfix Release Changes in tryton: - Version 6.0.17 - Bugfix Release - Version 6.0.16 - Bugfix Release tryton-6.0.17-bp154.2.3.1.noarch.rpm tryton-6.0.17-bp154.2.3.1.src.rpm trytond-6.0.21-bp154.2.9.1.noarch.rpm trytond-6.0.21-bp154.2.9.1.src.rpm trytond_account-6.0.13-bp154.2.9.1.noarch.rpm trytond_account-6.0.13-bp154.2.9.1.src.rpm openSUSE-2022-10102 important openSUSE Backports SLE-15-SP4 Update This update for freeciv fixes the following issues: - update to 3.0.3 (boo#1202548, CVE-2022-6083): * 3.0.3 is a bugfix release * see https://freeciv.fandom.com/wiki/NEWS-3.0.3 - update to 3.0.2: * 3.0.2 is a generic bugfix release * see https://freeciv.fandom.com/wiki/NEWS-3.0.2 - update to 3.0.1: * 3.0.1 is a generic bugfix release * see https://freeciv.fandom.com/wiki/NEWS-3.0.1 - update to 3.0.0: * This release is a major upgrade which with some changes that can support backward compatible rulesets * see https://freeciv.fandom.com/wiki/NEWS-3.0.0#WHAT.27S_CHANGED_SINCE_2.6 - update to 2.6.6: * https://freeciv.fandom.com/wiki/NEWS-2.6.5 * 2.6.6 is a bugfix release. freeciv-3.0.3-bp154.2.3.1.src.rpm freeciv-3.0.3-bp154.2.3.1.x86_64.rpm freeciv-gtk3-3.0.3-bp154.2.3.1.x86_64.rpm freeciv-lang-3.0.3-bp154.2.3.1.x86_64.rpm freeciv-qt-3.0.3-bp154.2.3.1.x86_64.rpm freeciv-3.0.3-bp154.2.3.1.i586.rpm freeciv-gtk3-3.0.3-bp154.2.3.1.i586.rpm freeciv-lang-3.0.3-bp154.2.3.1.i586.rpm freeciv-qt-3.0.3-bp154.2.3.1.i586.rpm freeciv-3.0.3-bp154.2.3.1.aarch64.rpm freeciv-gtk3-3.0.3-bp154.2.3.1.aarch64.rpm freeciv-lang-3.0.3-bp154.2.3.1.aarch64.rpm freeciv-qt-3.0.3-bp154.2.3.1.aarch64.rpm freeciv-3.0.3-bp154.2.3.1.ppc64le.rpm freeciv-gtk3-3.0.3-bp154.2.3.1.ppc64le.rpm freeciv-lang-3.0.3-bp154.2.3.1.ppc64le.rpm freeciv-qt-3.0.3-bp154.2.3.1.ppc64le.rpm freeciv-3.0.3-bp154.2.3.1.s390x.rpm freeciv-gtk3-3.0.3-bp154.2.3.1.s390x.rpm freeciv-lang-3.0.3-bp154.2.3.1.s390x.rpm freeciv-qt-3.0.3-bp154.2.3.1.s390x.rpm openSUSE-2022-10104 important openSUSE Backports SLE-15-SP4 Update This update for varnish fixes the following issues: Update to release 7.1.1: - CVE-2022-38150: Resolve a denial of service attack involving reason phrases (boo#1202350). libvarnishapi3-7.1.1-bp154.2.6.1.x86_64.rpm varnish-7.1.1-bp154.2.6.1.src.rpm varnish-7.1.1-bp154.2.6.1.x86_64.rpm varnish-devel-7.1.1-bp154.2.6.1.x86_64.rpm libvarnishapi3-7.1.1-bp154.2.6.1.i586.rpm varnish-7.1.1-bp154.2.6.1.i586.rpm varnish-devel-7.1.1-bp154.2.6.1.i586.rpm libvarnishapi3-7.1.1-bp154.2.6.1.aarch64.rpm varnish-7.1.1-bp154.2.6.1.aarch64.rpm varnish-devel-7.1.1-bp154.2.6.1.aarch64.rpm libvarnishapi3-7.1.1-bp154.2.6.1.ppc64le.rpm varnish-7.1.1-bp154.2.6.1.ppc64le.rpm varnish-devel-7.1.1-bp154.2.6.1.ppc64le.rpm libvarnishapi3-7.1.1-bp154.2.6.1.s390x.rpm varnish-7.1.1-bp154.2.6.1.s390x.rpm varnish-devel-7.1.1-bp154.2.6.1.s390x.rpm openSUSE-2022-10107 moderate openSUSE Backports SLE-15-SP4 Update This update for libqt5-qtstyleplugins fixes the following issues: - Use the older more reliable method for progress bar orientation (boo#1202611) libqt5-qtstyleplugins-5.0.0+git20170311-bp154.3.3.1.src.rpm libqt5-qtstyleplugins-5.0.0+git20170311-bp154.3.3.1.x86_64.rpm libqt5-qtstyleplugins-devel-5.0.0+git20170311-bp154.3.3.1.x86_64.rpm libqt5-qtstyleplugins-platformtheme-gtk2-5.0.0+git20170311-bp154.3.3.1.x86_64.rpm libqt5-qtstyleplugins-5.0.0+git20170311-bp154.3.3.1.i586.rpm libqt5-qtstyleplugins-devel-5.0.0+git20170311-bp154.3.3.1.i586.rpm libqt5-qtstyleplugins-platformtheme-gtk2-5.0.0+git20170311-bp154.3.3.1.i586.rpm libqt5-qtstyleplugins-5.0.0+git20170311-bp154.3.3.1.aarch64.rpm libqt5-qtstyleplugins-devel-5.0.0+git20170311-bp154.3.3.1.aarch64.rpm libqt5-qtstyleplugins-platformtheme-gtk2-5.0.0+git20170311-bp154.3.3.1.aarch64.rpm libqt5-qtstyleplugins-5.0.0+git20170311-bp154.3.3.1.ppc64le.rpm libqt5-qtstyleplugins-devel-5.0.0+git20170311-bp154.3.3.1.ppc64le.rpm libqt5-qtstyleplugins-platformtheme-gtk2-5.0.0+git20170311-bp154.3.3.1.ppc64le.rpm libqt5-qtstyleplugins-5.0.0+git20170311-bp154.3.3.1.s390x.rpm libqt5-qtstyleplugins-devel-5.0.0+git20170311-bp154.3.3.1.s390x.rpm libqt5-qtstyleplugins-platformtheme-gtk2-5.0.0+git20170311-bp154.3.3.1.s390x.rpm openSUSE-2022-10100 moderate openSUSE Backports SLE-15-SP4 Update This update for sushi fixes the following issues: - Update to version 41.2: + Enable web process sandbox (webkitgtk). - Update to version 41.1: + Enable web process (webkitgtk) sandbox. - Add typelib\\(LOKDocView\\) global requires exclude: We do not want to mandate libreoffice install just for the file preview funtion. If libreoffice is installed, the preview in will function as expected. - Following the above, add (typelib(LOKDocView) if libreoffice) Requires: Pull in the needed libreoffice glue if libreoffice is installed. - Pass explicit wayland=enabled and X11=enabled to meson, ensure we build support for both (we already have dependencies in place). - Update to version 41.0: + Drop libmusicbrainz dependency (use libsoup directly). + Account for scale-factor when estimating window size. + Build against webkit2gtk-4.1 + Disable webkit sandboxing. + Updated translations. - Drop pkgconfig(libmusicbrainz5) BuildRequires: No longer needed. - Replace pkgconfig(webkit2gtk-4.0) with pkgconfig(webkit2gtk-4.1) BuildRequires following upstream changes. - Update to version 3.38.1: + Account for scaling factor while estimating window size - Update to version 3.38.0: + Fix build when Wayland is disabled. + Make X11 and Wayland configurable at build time. + Sync font-widget with gnome-font-viewer. + Fix various meson build issues. + Sandbox webkitgtk. + Fix crash caused by the lack of getters for viewers' properties. sushi-41.2-bp154.2.3.1.src.rpm sushi-41.2-bp154.2.3.1.x86_64.rpm sushi-lang-41.2-bp154.2.3.1.noarch.rpm sushi-41.2-bp154.2.3.1.i586.rpm sushi-41.2-bp154.2.3.1.aarch64.rpm sushi-41.2-bp154.2.3.1.ppc64le.rpm sushi-41.2-bp154.2.3.1.s390x.rpm openSUSE-2023-1 important openSUSE Backports SLE-15-SP4 Update This update for minetest fixes the following issues: Update to version 5.6.0 * Fix CVE-2022-35978 ( boo#1202423 ): Mod scripts can escape sandbox in single player mode * `name` in game.conf is deprecated for the game title, use `title` instead * Add depth sorting for node faces * Various bug fixes * Full changes: https://dev.minetest.net/Changelog#5.5.0_.E2.86.92_5.6.0 - Introduced mbranch-protection=none CXX flag to resolve boo#1193141 (aarch64). Update to version 5.5.0 & 5.5.1: * Full log for version 5.5.0: https://dev.minetest.net/Changelog#5.4.0_.E2.86.92_5.5.0 * This release switches from Irrlicht to our own fork called IrrlichtMt. * Full log for version 5.5.1: https://dev.minetest.net/Changelog#5.5.0_.E2.86.92_5.5.1 * This is a maintenance release based on 5.5.0, it contains bugfixes but no new features. - Added hardening to systemd service(s) (boo#1181400). - Update to version 5.4.1: * This is a maintenance release based on 5.4.0, it contains bugfixes but no new features. - Update to version 5.4.0 * Full log: https://dev.minetest.net/Changelog#5.3.0_.E2.86.92_5.4.0 * Removed support for bumpmapping, generated normal maps and parallax occlusion * By default, the crosshair will now change to an "X" when pointing to objects * Prevent players accessing inventories of other players * Prevent interacting with items out of the hotbar * Prevent players from being able to modify ItemStack meta - Update to version 5.3.0. (see https://dev.minetest.net/Changelog#5.2.0_.E2.86.92_5.3.0) * Formspec improvements, including a scrolling GUI element * Performance improvements to the Server and API * Many bug fixes and small features - Now requires desktop-file-utils version >= 0.25. minetest-5.6.0-bp154.2.3.5.src.rpm minetest-5.6.0-bp154.2.3.5.x86_64.rpm minetest-data-5.6.0-bp154.2.3.5.noarch.rpm minetest-debuginfo-5.6.0-bp154.2.3.5.x86_64.rpm minetest-debugsource-5.6.0-bp154.2.3.5.x86_64.rpm minetest-lang-5.6.0-bp154.2.3.5.noarch.rpm minetestserver-5.6.0-bp154.2.3.5.x86_64.rpm minetestserver-debuginfo-5.6.0-bp154.2.3.5.x86_64.rpm minetest-5.6.0-bp154.2.3.5.aarch64.rpm minetest-debuginfo-5.6.0-bp154.2.3.5.aarch64.rpm minetest-debugsource-5.6.0-bp154.2.3.5.aarch64.rpm minetestserver-5.6.0-bp154.2.3.5.aarch64.rpm minetestserver-debuginfo-5.6.0-bp154.2.3.5.aarch64.rpm minetest-5.6.0-bp154.2.3.5.ppc64le.rpm minetest-debuginfo-5.6.0-bp154.2.3.5.ppc64le.rpm minetest-debugsource-5.6.0-bp154.2.3.5.ppc64le.rpm minetestserver-5.6.0-bp154.2.3.5.ppc64le.rpm minetestserver-debuginfo-5.6.0-bp154.2.3.5.ppc64le.rpm minetest-5.6.0-bp154.2.3.5.s390x.rpm minetest-debuginfo-5.6.0-bp154.2.3.5.s390x.rpm minetest-debugsource-5.6.0-bp154.2.3.5.s390x.rpm minetestserver-5.6.0-bp154.2.3.5.s390x.rpm minetestserver-debuginfo-5.6.0-bp154.2.3.5.s390x.rpm openSUSE-2022-10154 moderate openSUSE Backports SLE-15-SP4 Update This update for pngcheck fixes the following issues: pngcheck was updated to 3.0.3: Version 3.0.1: * fixed a crash bug (and probable vulnerability) in large (MNG) LOOP chunks Version 3.0.2: * fixed a divide-by-zero crash bug (and probable vulnerability) in interlaced images with extra compressed data beyond the nominal end of the image data (found by "chiba of topsec alpha lab") pngcheck-3.0.3-bp154.2.3.1.src.rpm pngcheck-3.0.3-bp154.2.3.1.x86_64.rpm pngcheck-3.0.3-bp154.2.3.1.i586.rpm pngcheck-3.0.3-bp154.2.3.1.aarch64.rpm pngcheck-3.0.3-bp154.2.3.1.ppc64le.rpm pngcheck-3.0.3-bp154.2.3.1.s390x.rpm openSUSE-2022-10113 low openSUSE Backports SLE-15-SP4 Update This update removes the following wrong links between translated manual pages: * sigreturn.2.gz.gz -> sigreturn.2.gz * sigsuspend.2.gz.gz -> sigaction.2.gz These wrong links lead to warning messages when accessing sigreturn2 and sigsuspend2 and reportedly break tools parsing the manual pages. This update also brings updated translations. man-pages-cs-4.15.0-bp154.2.3.1.noarch.rpm man-pages-da-4.15.0-bp154.2.3.1.noarch.rpm man-pages-de-4.15.0-bp154.2.3.1.noarch.rpm man-pages-el-4.15.0-bp154.2.3.1.noarch.rpm man-pages-es-4.15.0-bp154.2.3.1.noarch.rpm man-pages-fi-4.15.0-bp154.2.3.1.noarch.rpm man-pages-fr-4.15.0-bp154.2.3.1.noarch.rpm man-pages-hu-4.15.0-bp154.2.3.1.noarch.rpm man-pages-id-4.15.0-bp154.2.3.1.noarch.rpm man-pages-it-4.15.0-bp154.2.3.1.noarch.rpm man-pages-mk-4.15.0-bp154.2.3.1.noarch.rpm man-pages-nb-4.15.0-bp154.2.3.1.noarch.rpm man-pages-nl-4.15.0-bp154.2.3.1.noarch.rpm man-pages-pl-4.15.0-bp154.2.3.1.noarch.rpm man-pages-pt_BR-4.15.0-bp154.2.3.1.noarch.rpm man-pages-ro-4.15.0-bp154.2.3.1.noarch.rpm man-pages-sr-4.15.0-bp154.2.3.1.noarch.rpm man-pages-sv-4.15.0-bp154.2.3.1.noarch.rpm man-pages-uk-4.15.0-bp154.2.3.1.noarch.rpm man-pages-vi-4.15.0-bp154.2.3.1.noarch.rpm manpages-l10n-4.15.0-bp154.2.3.1.src.rpm openSUSE-2022-10162 moderate openSUSE Backports SLE-15-SP4 Update This update brings a version update of FreeCAD to 0.20. This fixes as well also the crashes when creating or loading 3D models. FreeCAD-0.20-bp154.2.3.1.src.rpm FreeCAD-0.20-bp154.2.3.1.x86_64.rpm SoQt-1.6.0-bp154.2.3.1.src.rpm SoQt-debugsource-1.6.0-bp154.2.3.1.x86_64.rpm SoQt-devel-1.6.0-bp154.2.3.1.x86_64.rpm SoQt-doc-1.6.0-bp154.2.3.1.noarch.rpm libSoQt20-1.6.0-bp154.2.3.1.x86_64.rpm libSoQt20-debuginfo-1.6.0-bp154.2.3.1.x86_64.rpm netgen-6.2.2105-bp154.2.3.1.src.rpm netgen-6.2.2105-bp154.2.3.1.x86_64.rpm netgen-debuginfo-6.2.2105-bp154.2.3.1.x86_64.rpm netgen-debugsource-6.2.2105-bp154.2.3.1.x86_64.rpm netgen-devel-6.2.2105-bp154.2.3.1.x86_64.rpm netgen-examples-6.2.2105-bp154.2.3.1.noarch.rpm netgen-libs-6.2.2105-bp154.2.3.1.x86_64.rpm netgen-libs-debuginfo-6.2.2105-bp154.2.3.1.x86_64.rpm python3-netgen-6.2.2105-bp154.2.3.1.x86_64.rpm python3-netgen-debuginfo-6.2.2105-bp154.2.3.1.x86_64.rpm python-pivy-0.6.7-bp154.2.3.1.src.rpm python-pivy-debugsource-0.6.7-bp154.2.3.1.x86_64.rpm python3-pivy-0.6.7-bp154.2.3.1.x86_64.rpm python3-pivy-debuginfo-0.6.7-bp154.2.3.1.x86_64.rpm FreeCAD-0.20-bp154.2.3.1.aarch64.rpm SoQt-debugsource-1.6.0-bp154.2.3.1.aarch64.rpm SoQt-devel-1.6.0-bp154.2.3.1.aarch64.rpm libSoQt20-1.6.0-bp154.2.3.1.aarch64.rpm libSoQt20-debuginfo-1.6.0-bp154.2.3.1.aarch64.rpm netgen-6.2.2105-bp154.2.3.1.aarch64.rpm netgen-debuginfo-6.2.2105-bp154.2.3.1.aarch64.rpm netgen-debugsource-6.2.2105-bp154.2.3.1.aarch64.rpm netgen-devel-6.2.2105-bp154.2.3.1.aarch64.rpm netgen-libs-6.2.2105-bp154.2.3.1.aarch64.rpm netgen-libs-debuginfo-6.2.2105-bp154.2.3.1.aarch64.rpm python3-netgen-6.2.2105-bp154.2.3.1.aarch64.rpm python3-netgen-debuginfo-6.2.2105-bp154.2.3.1.aarch64.rpm python-pivy-debugsource-0.6.7-bp154.2.3.1.aarch64.rpm python3-pivy-0.6.7-bp154.2.3.1.aarch64.rpm python3-pivy-debuginfo-0.6.7-bp154.2.3.1.aarch64.rpm SoQt-debugsource-1.6.0-bp154.2.3.1.ppc64le.rpm SoQt-devel-1.6.0-bp154.2.3.1.ppc64le.rpm libSoQt20-1.6.0-bp154.2.3.1.ppc64le.rpm libSoQt20-debuginfo-1.6.0-bp154.2.3.1.ppc64le.rpm netgen-6.2.2105-bp154.2.3.1.ppc64le.rpm netgen-debuginfo-6.2.2105-bp154.2.3.1.ppc64le.rpm netgen-debugsource-6.2.2105-bp154.2.3.1.ppc64le.rpm netgen-devel-6.2.2105-bp154.2.3.1.ppc64le.rpm netgen-libs-6.2.2105-bp154.2.3.1.ppc64le.rpm netgen-libs-debuginfo-6.2.2105-bp154.2.3.1.ppc64le.rpm python3-netgen-6.2.2105-bp154.2.3.1.ppc64le.rpm python3-netgen-debuginfo-6.2.2105-bp154.2.3.1.ppc64le.rpm python-pivy-debugsource-0.6.7-bp154.2.3.1.ppc64le.rpm python3-pivy-0.6.7-bp154.2.3.1.ppc64le.rpm python3-pivy-debuginfo-0.6.7-bp154.2.3.1.ppc64le.rpm SoQt-debugsource-1.6.0-bp154.2.3.1.s390x.rpm SoQt-devel-1.6.0-bp154.2.3.1.s390x.rpm libSoQt20-1.6.0-bp154.2.3.1.s390x.rpm libSoQt20-debuginfo-1.6.0-bp154.2.3.1.s390x.rpm netgen-6.2.2105-bp154.2.3.1.s390x.rpm netgen-debuginfo-6.2.2105-bp154.2.3.1.s390x.rpm netgen-debugsource-6.2.2105-bp154.2.3.1.s390x.rpm netgen-devel-6.2.2105-bp154.2.3.1.s390x.rpm netgen-libs-6.2.2105-bp154.2.3.1.s390x.rpm netgen-libs-debuginfo-6.2.2105-bp154.2.3.1.s390x.rpm python3-netgen-6.2.2105-bp154.2.3.1.s390x.rpm python3-netgen-debuginfo-6.2.2105-bp154.2.3.1.s390x.rpm python-pivy-debugsource-0.6.7-bp154.2.3.1.s390x.rpm python3-pivy-0.6.7-bp154.2.3.1.s390x.rpm python3-pivy-debuginfo-0.6.7-bp154.2.3.1.s390x.rpm openSUSE-2022-10135 low openSUSE Backports SLE-15-SP4 Update qt-creator was updated to 7.0.2. Bugfix release: * https://www.qt.io/blog/qt-creator-7.0.2-released - Fixed build with recent KSyntaxHighlighting releases. Update to 7.0.1. Bugfix release: * https://www.qt.io/blog/qt-creator-7.0.1-released - Fix the plugin-devel package (boo#1197978) To create qt-creator plugins, some files not installed by default are required. Update to 7.0.0 * https://www.qt.io/blog/qt-creator-7-released Update to 7.0.0~rc1: * https://www.qt.io/blog/qt-creator-7-rc-released - Explicitly require SQLite plugin for QtSql that is needed by the help system. qt5-creator-7.0.2-bp154.2.3.1.src.rpm qt5-creator-7.0.2-bp154.2.3.1.x86_64.rpm qt5-creator-plugin-devel-7.0.2-bp154.2.3.1.x86_64.rpm qt6-creator-7.0.2-bp154.2.3.1.src.rpm qt6-creator-7.0.2-bp154.2.3.1.x86_64.rpm qt6-creator-plugin-devel-7.0.2-bp154.2.3.1.x86_64.rpm qt5-creator-7.0.2-bp154.2.3.1.aarch64.rpm qt5-creator-plugin-devel-7.0.2-bp154.2.3.1.aarch64.rpm qt6-creator-7.0.2-bp154.2.3.1.aarch64.rpm qt6-creator-plugin-devel-7.0.2-bp154.2.3.1.aarch64.rpm qt5-creator-7.0.2-bp154.2.3.1.ppc64le.rpm qt5-creator-plugin-devel-7.0.2-bp154.2.3.1.ppc64le.rpm qt6-creator-7.0.2-bp154.2.3.1.ppc64le.rpm qt6-creator-plugin-devel-7.0.2-bp154.2.3.1.ppc64le.rpm qt5-creator-7.0.2-bp154.2.3.1.s390x.rpm qt5-creator-plugin-devel-7.0.2-bp154.2.3.1.s390x.rpm qt6-creator-7.0.2-bp154.2.3.1.s390x.rpm qt6-creator-plugin-devel-7.0.2-bp154.2.3.1.s390x.rpm openSUSE-2022-10164 moderate openSUSE Backports SLE-15-SP4 Update This update for proftpd fixes the following issues: * remove obsolete config option, LoginPasswordPrompt proftpd-1.3.7e-bp154.3.6.1.src.rpm proftpd-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-debuginfo-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-debugsource-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-devel-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-doc-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-lang-1.3.7e-bp154.3.6.1.noarch.rpm proftpd-ldap-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-mysql-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-pgsql-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-radius-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-sqlite-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.6.1.x86_64.rpm proftpd-1.3.7e-bp154.3.6.1.i586.rpm proftpd-debuginfo-1.3.7e-bp154.3.6.1.i586.rpm proftpd-debugsource-1.3.7e-bp154.3.6.1.i586.rpm proftpd-devel-1.3.7e-bp154.3.6.1.i586.rpm proftpd-doc-1.3.7e-bp154.3.6.1.i586.rpm proftpd-ldap-1.3.7e-bp154.3.6.1.i586.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.6.1.i586.rpm proftpd-mysql-1.3.7e-bp154.3.6.1.i586.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.6.1.i586.rpm proftpd-pgsql-1.3.7e-bp154.3.6.1.i586.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.6.1.i586.rpm proftpd-radius-1.3.7e-bp154.3.6.1.i586.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.6.1.i586.rpm proftpd-sqlite-1.3.7e-bp154.3.6.1.i586.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.6.1.i586.rpm proftpd-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-debuginfo-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-debugsource-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-devel-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-doc-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-ldap-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-mysql-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-pgsql-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-radius-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-sqlite-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.6.1.aarch64.rpm proftpd-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-debuginfo-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-debugsource-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-devel-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-doc-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-ldap-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-mysql-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-pgsql-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-radius-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-sqlite-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.6.1.ppc64le.rpm proftpd-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-debuginfo-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-debugsource-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-devel-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-doc-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-ldap-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-ldap-debuginfo-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-mysql-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-mysql-debuginfo-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-pgsql-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-pgsql-debuginfo-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-radius-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-radius-debuginfo-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-sqlite-1.3.7e-bp154.3.6.1.s390x.rpm proftpd-sqlite-debuginfo-1.3.7e-bp154.3.6.1.s390x.rpm openSUSE-2022-10155 moderate openSUSE Backports SLE-15-SP4 Update This update for deepin-kwin fixes the following issues: Update version 5.4.26 * update window raduis for effects * Add splitmenu translate * Add a dependency on 'kwin-wayland' * Add func about maxi button long press * Modify code based on code review results * Fix bugs Update version 5.4.19 * Frees heap memory when the program exits * Disable multitasking * disable effects by default * Support DDE Wayland * Support client activation from dde shell * Fix bugs deepin-kwin-5.4.26-bp154.2.3.1.src.rpm deepin-kwin-5.4.26-bp154.2.3.1.x86_64.rpm deepin-kwin-devel-5.4.26-bp154.2.3.1.x86_64.rpm deepin-kwin-lang-5.4.26-bp154.2.3.1.noarch.rpm libkwin-xcb0-5.4.26-bp154.2.3.1.x86_64.rpm deepin-kwin-5.4.26-bp154.2.3.1.aarch64.rpm deepin-kwin-devel-5.4.26-bp154.2.3.1.aarch64.rpm libkwin-xcb0-5.4.26-bp154.2.3.1.aarch64.rpm deepin-kwin-5.4.26-bp154.2.3.1.ppc64le.rpm deepin-kwin-devel-5.4.26-bp154.2.3.1.ppc64le.rpm libkwin-xcb0-5.4.26-bp154.2.3.1.ppc64le.rpm openSUSE-2022-10119 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 105.0.5195.102 (boo#1203102): * CVE-2022-3075: Insufficient data validation in Mojo Chromium 105.0.5195.52 (boo#1202964): * CVE-2022-3038: Use after free in Network Service * CVE-2022-3039: Use after free in WebSQL * CVE-2022-3040: Use after free in Layout * CVE-2022-3041: Use after free in WebSQL * CVE-2022-3042: Use after free in PhoneHub * CVE-2022-3043: Heap buffer overflow in Screen Capture * CVE-2022-3044: Inappropriate implementation in Site Isolation * CVE-2022-3045: Insufficient validation of untrusted input in V8 * CVE-2022-3046: Use after free in Browser Tag * CVE-2022-3071: Use after free in Tab Strip * CVE-2022-3047: Insufficient policy enforcement in Extensions API * CVE-2022-3048: Inappropriate implementation in Chrome OS lockscreen * CVE-2022-3049: Use after free in SplitScreen * CVE-2022-3050: Heap buffer overflow in WebUI * CVE-2022-3051: Heap buffer overflow in Exosphere * CVE-2022-3052: Heap buffer overflow in Window Manager * CVE-2022-3053: Inappropriate implementation in Pointer Lock * CVE-2022-3054: Insufficient policy enforcement in DevTools * CVE-2022-3055: Use after free in Passwords * CVE-2022-3056: Insufficient policy enforcement in Content Security Policy * CVE-2022-3057: Inappropriate implementation in iframe Sandbox * CVE-2022-3058: Use after free in Sign-In Flow - Update chromium-symbolic.svg: this fixes boo#1202403. - Fix quoting in chrome-wrapper, don't put cwd on LD_LIBRARY_PATH chromedriver-105.0.5195.102-bp154.2.26.1.x86_64.rpm chromium-105.0.5195.102-bp154.2.26.1.src.rpm chromium-105.0.5195.102-bp154.2.26.1.x86_64.rpm chromedriver-105.0.5195.102-bp154.2.26.1.aarch64.rpm chromium-105.0.5195.102-bp154.2.26.1.aarch64.rpm openSUSE-2022-10136 moderate openSUSE Backports SLE-15-SP4 Update This update for trytond_stock fixes the following issues: - Version 6.0.16 - Bugfix Release trytond_stock-6.0.16-bp154.2.9.1.noarch.rpm trytond_stock-6.0.16-bp154.2.9.1.src.rpm openSUSE-2022-10132 moderate openSUSE Backports SLE-15-SP4 Update This update for lighttpd fixes the following issues: lighttpd was updated to 1.4.66: * a number of bug fixes * Fix HTTP/2 downloads >= 4GiB * Fix SIGUSR1 graceful restart with TLS * futher bug fixes * CVE-2022-37797: null pointer dereference in mod_wstunnel, possibly a remotely triggerable crash (boo#1203358) * In an upcoming release the TLS modules will default to using stronger, modern chiphers and will default to allow client preference in selecting ciphers. “CipherString” => “EECDH+AESGCM:AES256+EECDH:CHACHA20:SHA256:!SHA384”, “Options” => “-ServerPreference” old defaults: “CipherString” => “HIGH”, “Options” => “ServerPreference” * A number of TLS options are how deprecated and will be removed in a future release: – ssl.honor-cipher-order – ssl.dh-file – ssl.ec-curve – ssl.disable-client-renegotiation – ssl.use-sslv2 – ssl.use-sslv3 The replacement option is ssl.openssl.ssl-conf-cmd, but lighttpd defaults should be prefered * A number of modules are now deprecated and will be removed in a future release: mod_evasive, mod_secdownload, mod_uploadprogress, mod_usertrack can be replaced by mod_magnet and a few lines of lua. update to 1.4.65: * WebSockets over HTTP/2 * RFC 8441 Bootstrapping WebSockets with HTTP/2 * HTTP/2 PRIORITY_UPDATE * RFC 9218 Extensible Prioritization Scheme for HTTP * prefix/suffix conditions in lighttpd.conf * mod_webdav safe partial-PUT * webdav.opts += (“partial-put-copy-modify” => “enable”) * mod_accesslog option: accesslog.escaping = “json” * mod_deflate libdeflate build option * speed up request body uploads via HTTP/2 * Behavior Changes * change default server.max-keep-alive-requests = 1000 to adjust * to increasing HTTP/2 usage and to web2/web3 application usage * (prior default was 100) * mod_status HTML now includes HTTP/2 control stream id 0 in the output * which contains aggregate counts for the HTTP/2 connection * (These lines can be identified with URL ‘*’, part of “PRI *” preface) * alternative: https://wiki.lighttpd.net/ModMagnetExamples#lua-mod_status * MIME type application/javascript is translated to text/javascript (RFC 9239) lighttpd-1.4.66-bp154.2.3.1.src.rpm lighttpd-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-debugsource-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_authn_gssapi-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_authn_ldap-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_authn_pam-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_authn_pam-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_authn_sasl-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_magnet-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_magnet-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_maxminddb-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_maxminddb-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_rrdtool-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_rrdtool-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_vhostdb_dbi-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_vhostdb_ldap-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_vhostdb_mysql-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_vhostdb_pgsql-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_webdav-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-mod_webdav-debuginfo-1.4.66-bp154.2.3.1.x86_64.rpm lighttpd-1.4.66-bp154.2.3.1.i586.rpm lighttpd-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-debugsource-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_authn_gssapi-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_authn_ldap-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_authn_pam-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_authn_pam-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_authn_sasl-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_magnet-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_magnet-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_maxminddb-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_maxminddb-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_rrdtool-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_rrdtool-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_vhostdb_dbi-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_vhostdb_ldap-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_vhostdb_mysql-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_vhostdb_pgsql-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_webdav-1.4.66-bp154.2.3.1.i586.rpm lighttpd-mod_webdav-debuginfo-1.4.66-bp154.2.3.1.i586.rpm lighttpd-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-debugsource-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_authn_gssapi-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_authn_ldap-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_authn_pam-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_authn_pam-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_authn_sasl-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_magnet-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_magnet-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_maxminddb-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_maxminddb-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_rrdtool-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_rrdtool-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_vhostdb_dbi-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_vhostdb_ldap-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_vhostdb_mysql-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_vhostdb_pgsql-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_webdav-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-mod_webdav-debuginfo-1.4.66-bp154.2.3.1.aarch64.rpm lighttpd-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-debugsource-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_authn_gssapi-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_authn_ldap-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_authn_pam-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_authn_pam-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_authn_sasl-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_magnet-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_magnet-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_maxminddb-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_maxminddb-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_rrdtool-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_rrdtool-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_vhostdb_dbi-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_vhostdb_ldap-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_vhostdb_mysql-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_vhostdb_pgsql-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_webdav-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-mod_webdav-debuginfo-1.4.66-bp154.2.3.1.ppc64le.rpm lighttpd-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-debugsource-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_authn_gssapi-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_authn_ldap-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_authn_pam-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_authn_pam-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_authn_sasl-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_magnet-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_magnet-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_maxminddb-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_maxminddb-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_rrdtool-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_rrdtool-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_vhostdb_dbi-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_vhostdb_ldap-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_vhostdb_mysql-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_vhostdb_pgsql-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_webdav-1.4.66-bp154.2.3.1.s390x.rpm lighttpd-mod_webdav-debuginfo-1.4.66-bp154.2.3.1.s390x.rpm openSUSE-2022-10126 moderate openSUSE Backports SLE-15-SP4 Update This update for mupdf fixes the following issues: mupdf was updated to 1.20.3: * return error, not success when unable to lock native device resource. * Bug 705620: Start journal operation instead of pushing local xref. * Ensure AndroidDrawDevice is destroyed, even upon exception. * source/pdf/pdf-clean.c: fix segv from incorrect call to fz_drop_pixmap(). * Bug 705681: Enclose code in begin/end operation. * Guard against SEGVs when calling archive functions with NULL archive. mupdf was updated to 1.20.0 (boo#1202858, CVE-2021-4216): * Experimental C# bindings * Cross compilation should no longer need a host compiler * Major additions to JNI bindings * New API to edit outline * New API to resolve and create links * New API to toggle individual layers in PDF * Layer panel in mupdf-gl * Layer option in mutool draw * New API to add a Javascript console * Console panel in mupdf-gl * Text search API extended to be able to distinguish between separate search hits * Command line tool improvements: * all: Negative page numbers to index from the last page * mutool draw: Add option to render document without text * mutool draw and convert: Support DPI option in text and HTML output * New hybrid HTML output format using "scripts/pdftohtml" script: * Graphics in a background image * Text on top * Improved WASM viewer demo * Support high DPI screens * Progressive loading * Update to zlib 1.2.12 for security fix mupdf was updated to 1.19.1: * Updated zlib to 1.2.12 due to CVE-2018-25032 mupdf-1.20.3-bp154.2.3.1.src.rpm mupdf-1.20.3-bp154.2.3.1.x86_64.rpm mupdf-devel-static-1.20.3-bp154.2.3.1.x86_64.rpm mupdf-1.20.3-bp154.2.3.1.aarch64.rpm mupdf-devel-static-1.20.3-bp154.2.3.1.aarch64.rpm mupdf-1.20.3-bp154.2.3.1.ppc64le.rpm mupdf-devel-static-1.20.3-bp154.2.3.1.ppc64le.rpm mupdf-1.20.3-bp154.2.3.1.s390x.rpm mupdf-devel-static-1.20.3-bp154.2.3.1.s390x.rpm openSUSE-2022-10123 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 105.0.5195.127 (boo#1203419): * CVE-2022-3195: Out of bounds write in Storage * CVE-2022-3196: Use after free in PDF * CVE-2022-3197: Use after free in PDF * CVE-2022-3198: Use after free in PDF * CVE-2022-3199: Use after free in Frames * CVE-2022-3200: Heap buffer overflow in Internals * CVE-2022-3201: Insufficient validation of untrusted input in DevTools * Various fixes from internal audits, fuzzing and other initiatives chromedriver-105.0.5195.127-bp154.2.29.1.x86_64.rpm chromedriver-debuginfo-105.0.5195.127-bp154.2.29.1.x86_64.rpm chromium-105.0.5195.127-bp154.2.29.1.src.rpm chromium-105.0.5195.127-bp154.2.29.1.x86_64.rpm chromium-debuginfo-105.0.5195.127-bp154.2.29.1.x86_64.rpm chromedriver-105.0.5195.127-bp154.2.29.1.aarch64.rpm chromedriver-debuginfo-105.0.5195.127-bp154.2.29.1.aarch64.rpm chromium-105.0.5195.127-bp154.2.29.1.aarch64.rpm chromium-debuginfo-105.0.5195.127-bp154.2.29.1.aarch64.rpm openSUSE-2022-10127 moderate openSUSE Backports SLE-15-SP4 Update This update for fwts fixes the following issues: - Update to version 22.07.00 fwts-22.07.00-bp154.2.6.1.src.rpm fwts-22.07.00-bp154.2.6.1.x86_64.rpm fwts-debuginfo-22.07.00-bp154.2.6.1.x86_64.rpm fwts-debugsource-22.07.00-bp154.2.6.1.x86_64.rpm fwts-22.07.00-bp154.2.6.1.i586.rpm fwts-debuginfo-22.07.00-bp154.2.6.1.i586.rpm fwts-debugsource-22.07.00-bp154.2.6.1.i586.rpm fwts-22.07.00-bp154.2.6.1.aarch64.rpm fwts-debuginfo-22.07.00-bp154.2.6.1.aarch64.rpm fwts-debugsource-22.07.00-bp154.2.6.1.aarch64.rpm openSUSE-2022-10230 moderate openSUSE Backports SLE-15-SP4 Update cherrytree was updated to version 0.99.49+3: * Legacy_canonicalize_filename: manage empty filename, (gh#giuspen/cherrytree#2118) * added command line option '--anchor AnchorName' that in addition to existing '--node NodeName' allows to open a document focusing an anchor in a node. * Changed non configurable keyboard shortcuts for codebox width and table column width to use parenthesis open instead of backslash, (gh#giuspen/cherrytree#2113). * Fixed crash on double exit from systray icon right click menu, (gh#giuspen/cherrytree#2114). * Added keyboard shortcuts to toolbar tooltips, (gh#giuspen/cherrytree#2106). * Fixed export to HTML crash, (gh#giuspen/cherrytree#2109). * Force turning off portal usage since it does not work on all distros, (gh#giuspen/cherrytree#2111). * Improved dialog confirmation before executing the code. * Additonal changes for core22, (gh#giuspen/cherrytree#2110). * Allow to disable the dialog asking for confirmation before executing the code. * Fixed bulleted list unindent (Shift+Tab) crash, (gh#giuspen/cherrytree#2103). * Add home plug, (gh#giuspen/cherrytree#2101 and gh#giuspen/cherrytree#2102). * Linux menu launcher run cherrytree in a new instance, (gh#giuspen/cherrytree#2077). * Fixed crash on print/export as pdf of a sequence of characters without spaces longer that the page width, such as a very long URL, (gh#giuspen/cherrytree#2045). * Fixed wrongly entering column mode when using keyboard shortcuts with <Ctrl><Alt> such as insert codebox, (gh#giuspen/cherrytree#2075). * Added syntax highlighting support for GDScript. * Fixed tooltip and cursor not reset after hovering link and then navigating to non rich text node. * Support for accent insensitive search - added letters with subordinate dots, (gh#giuspen/cherrytree#1981). * Translation updates. - Developer advised fixed cross-site scripting (XSS) vulnerability that allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name text field when creating a node, (boo#1202513, gh#giuspen/cherrytree#2099 and CVE-2022-35133). Update to version 0.99.48: * Added support for right to left languages in export to html and pdf (gh#giuspen/cherrytree#2044, gh#giuspen/cherrytree#1668 and gh#giuspen/cherrytree# #698). * In order to support the right to left languages in export to html, the resulting html text lines are no longer LINE<br/> but <p>LINE</p>. * Fixed in export to pdf the link to node+anchor with non ascii anchor name. * Improved detection of missing executables required for rendering LatexBoxes. These dependencies are no longer mandatory (gh#giuspen/cherrytree#2033). * Added help to the user to show again a hidden menubar (gh#giuspen/cherrytree#1927 and gh#giuspen/cherrytree#2054). * Pressing Tab on the very latest table cell now adds a new table line and moves to its first cell. * Fixed issue with relative links to files and folders and documents moved between linux and windows. * In export to html and txt multiple files, now appending the node id to the file names to support multiple nodes with the same name. * Added syntax highlight support for solidity (gh#giuspen/cherrytree#2030). * After issues with the domain giuspen.com, the domain changed to giuspen.net and giuspen.com will eventually go. Update to version 0.99.47+2: * Added support for latex math equations. * Added copy/paste of tree nodes and subnodes between multiple opened files. * Restored support for drag and drop of text selection. Now rich text content is preserved. * Added syntax highlighting for HCL. * Fixed issue at reset toolbar in preferences dialog when menubar in titlebar. * Added command line option (-S/--secondary_session) to run in isolation from a possibly already running main instance. * Updated flatpak script. Update to version 0.99.46+6: * Fixed time created/modified filter on searches for node name and tags. * Changed default keyboard shortcuts using Ctrl+Period to Ctrl+Backslash for clash with latest linux desktops. * Fixed restore window position on Windows and dual screen. * Added strip trailing spaces action to rich text right click menu. * Fixed issue restoring hpaned tree/text position with tree on the right. * Added command line option to pass the password to open an encrypted document. Update to version 0.99.45+10: * added language Arabic * fixed time created/modified filter on searches for node name and tags * just ninja build debug print * added strip trailing spaces action to rich text right click menu * minor improvement to previous commit * fixed copy fromm codebox and pasting to rich text unwanted additional characters cherrytree-0.99.49+3-bp154.2.3.2.src.rpm cherrytree-0.99.49+3-bp154.2.3.2.x86_64.rpm cherrytree-lang-0.99.49+3-bp154.2.3.2.noarch.rpm cherrytree-0.99.49+3-bp154.2.3.2.aarch64.rpm cherrytree-0.99.49+3-bp154.2.3.2.s390x.rpm openSUSE-2022-10156 moderate openSUSE Backports SLE-15-SP4 Update This update for krusader fixes the following issues: - Add patch to fix the 'Compress' menu (boo#1198725, boo#1203225, kde#441376) kio_iso-2.7.2-bp154.3.3.1.x86_64.rpm krusader-2.7.2-bp154.3.3.1.src.rpm krusader-2.7.2-bp154.3.3.1.x86_64.rpm krusader-doc-2.7.2-bp154.3.3.1.x86_64.rpm kio_iso-2.7.2-bp154.3.3.1.aarch64.rpm krusader-2.7.2-bp154.3.3.1.aarch64.rpm krusader-doc-2.7.2-bp154.3.3.1.aarch64.rpm kio_iso-2.7.2-bp154.3.3.1.ppc64le.rpm krusader-2.7.2-bp154.3.3.1.ppc64le.rpm krusader-doc-2.7.2-bp154.3.3.1.ppc64le.rpm kio_iso-2.7.2-bp154.3.3.1.s390x.rpm krusader-2.7.2-bp154.3.3.1.s390x.rpm krusader-doc-2.7.2-bp154.3.3.1.s390x.rpm openSUSE-2022-10157 moderate openSUSE Backports SLE-15-SP4 Update This update for opensuse-welcome fixes the following issues: Update to version 0.1.9+git.0.66be0d8: * fix: it's called Plasma * fix: make openSUSE welcome work again (boo#1194380) * fix: undead the URLs to Telegram groups * Translation updates Update to version 0.1.8+git.46.64e51ec: + Updated translations (Catalan, Russian, Swedish, Ukrainian). - Add back -lang recommends to the main package: the -lang package does not follow the standard method of installing translations to /usr/share/locale, but installs everything to /usr/share/opensuse-welcome. As such, the automatic supplements do not trigger as intended. A opensuse-welcome-lang.inc is being generated to make the recommends still smarter, based on selected locales in zypp. opensuse-welcome-0.1.9+git.0.66be0d8-bp154.2.3.1.src.rpm opensuse-welcome-0.1.9+git.0.66be0d8-bp154.2.3.1.x86_64.rpm opensuse-welcome-lang-0.1.9+git.0.66be0d8-bp154.2.3.1.noarch.rpm opensuse-welcome-0.1.9+git.0.66be0d8-bp154.2.3.1.aarch64.rpm openSUSE-2022-10224 moderate openSUSE Backports SLE-15-SP4 Update This update for minetest-game fixes the following issues: Update to version 5.6.0 to match up minetest version * Improved cart movement behavior * Dynamic shadow intensity increases with cloud density * Allow mods to override player animation globalstep * Log API added * New translation: Polish * Translation updates: Ukrainian, Russian, German, Lojban, and Esperanto * Various bug fixes Update to version 5.5.0 & 5.5.1: * Add “Read” and “Write” tabs to book interface when you own the book (orbea) * Allow to write books without text or title (orbea) * Make identical keys stackable (Luis Royer) * Fix creative inventory trash slot not working for player named “trash” (Montandalar) * Fix sunlight propagation for glass stair/slab (An0n3m0us) * Fix glass bottle with firefly not being placable in vessels shelf (An0n3m0us) * Other bugfixes * Translations: Esperanto (Jason Cartwright), Russian (ptah-alexs), Japanese (nogajun), German (Wuzzy), Slovak (Daretmavi), French (Olivier Dragon), Swedish (ROllerozxa), Chinese (雷哲翰), Ukrainian (baytuch) * player_api mod: Fix crash if player has no model (appgurueu) * player_api mod: Mods can now override globalstep by overriding player_api.globalstep (LoneWolfHT) * Shadow intensity (of dynamic shadows) changes with weather (lhofhansl) * Some cart movement behavior fixes (SmallJoker) * Fix some translations in uk and ru locales (baytuch) Update to version 5.4.1: * This is a maintenance release based on 5.4.0, it contains bugfixes but no new features. Update to 5.4.0: * Add crafting guide * Added 5 wood variants of Mese Post Light * Add environment sounds for lava and active furnace * Change several block sounds * Fix players sleeping in an occupied bed * Fix 'sleepwalking' in bed * Fix sleeping player flying off the bed when damaged and flying far away from the bed after death * Fix sleeping player being immobilized and bed undiggable after death * Fix furnace infotext not always updating when removing item * New translation: Slovak, Brazilian Portuguese and Lojban (admittedly not a very good translation) * Update existing translations Update to version 5.3.0 * Rename “Dry Dirt” and related blocks to “Savanna Dirt” and similar (paramat) * Added Wild Cotton: grows in savannas, drops Cotton Seeds (paramat) * Sort items into correct categories (An0n3m0us) * Tune cloud density variation (paramat) * Fix broken Creative inventory search in translation (sfan5) * Make Straw Stairs/Slabs usable as fuel (Paul Ouellette) * New textures: Dry Shrub, Brake Rail (Extex101, Hooded Ice) * Block particles when leaves decay, TNT explodes (sfan5) minetest-game-5.6.0-bp154.2.3.1.noarch.rpm minetest-game-5.6.0-bp154.2.3.1.src.rpm openSUSE-2022-10148 important openSUSE Backports SLE-15-SP4 Update This update for roundcubemail fixes the following issues: roundcubemail was updated to 1.5.3 * Enigma: Fix initial synchronization of private keys * Enigma: Fix double quoted-printable encoding of pgp-signed messages with no attachments (#8413) * Fix various PHP8 warnings (#8392) * Fix mail headers injection via the subject field on mail compose (#8404) * Fix bug where small message/rfc822 parts could not be decoded (#8408) * Fix setting HTML mode on reply/forward of a signed message (#8405) * Fix handling of RFC2231-encoded attachment names inside of a message/rfc822 part (#8418) * Fix bug where some mail parts (images) could have not be listed as attachments (#8425) * Fix bug where attachment icons were stuck at the top of the messages list in Safari (#8433) * Fix handling of message/rfc822 parts that are small and are multipart structures with a single part (#8458) * Fix bug where session could time out if DB and PHP timezone were different (#8303) * Fix bug where DSN flag state wasn't stored with a draft (#8371) * Fix broken encoding of HTML content encapsulated in a RTF attachment (#8444) * Fix problem with aria-hidden=true on toolbar menus in the Elastic skin (#8517) * Fix bug where title tag content was displayed in the body if it contained HTML tags (#8540) * Fix support for DSN specification without host e.g. pgsql:///dbname (#8558) update to 1.5.2 * OAuth: pass 'id_token' to 'oauth_login' plugin hook (#8214) * OAuth: fix expiration of short-lived oauth tokens (#8147) * OAuth: fix relative path to assets if /index.php/foo/bar url is used (#8144) * OAuth: no auto-redirect on imap login failures (#8370) * OAuth: refresh access token in 'refresh' plugin hook (#8224) * Fix so folder search parameters are honored by subscriptions_option plugin (#8312) * Fix password change with Directadmin driver (#8322, #8329) * Fix so css files in plugins/jqueryui/themes will be minified too (#8337) * Fix handling of unicode/special characters in custom From input (#8357) * Fix some PHP8 compatibility issues (#8363) * Fix chpass-wrapper.py helper compatibility with Python 3 (#8324) * Fix scrolling and missing Close button in the Select image dialog in Elastic/mobile (#8367) * Security: fix cross-site scripting (XSS) via HTML messages with malicious CSS content - added Suggests: php-sqlite - use the virtual provides from each PHP module, to allow the installation of roundcubemail with various PHP versions. The only problem, we are currently facing is the automatic enablement of the PHP apache module during post-installation: Trying to evaluate the correct PHP module now during post as well, which should eleminate the pre-definition of the required PHP-Version during build completely. See https://build.opensuse.org/request/show/940859 for the initial discussion. update to 1.5.1 * Fix importing contacts with no email address (#8227) * Fix so session's search scope is not used if search is not active (#8199) * Fix some PHP8 warnings (#8239) * Fix so dark mode state is retained after closing the browser (#8237) * Fix bug where new messages were not added to the list on refresh if skip_deleted=true (#8234) * Fix colors on "Show source" page in dark mode (#8246) * Fix handling of dark_mode_support:false setting in skins meta.json - also when devel_mode=false (#8249) * Fix database initialization if db_prefix is a schema prefix (#8221) * Fix undefined constant error in Installer on Windows (#8258) * Fix installation/upgrade on MySQL 5.5 - Index column size too large (#8231) * Fix regression in setting of contact listing name (#8260) * Fix bug in Larry skin where headers toggle state was reset on full page preview (#8203) * Fix bug where \u200b characters were added into the recipient input preventing mail delivery (#8269) * Fix charset conversion errors on PHP < 8 for charsets not supported by mbstring (#8252) * Fix bug where adding a contact to trusted senders via "Always allow from..." button didn't work (#8264, #8268) * Fix bug with show_images setting where option 1 and 3 were swapped (#8268) * Fix PHP fatal error on an undefined constant in contacts import action (#8277) * Fix fetching headers of multiple message parts at once in rcube_imap_generic::fetchMIMEHeaders() (#8282) * Fix bug where attachment download could sometimes fail with a CSRF check error (#8283) * Fix an infinite loop when parsing environment variables with float/integer values (#8293) * Fix so 'small-dark' logo has more priority than the 'small' logo (#8298) update to 1.5.0 + full PHP8 support + Dark mode for Elastic skin + OAuth2/XOauth support (with plugin hooks) + Collected recipients and trusted senders + Moving recipients between inputs with drag & drop + Full unicode support with MySQL database + Support of IMAP LITERAL- extension RFC 7888 <https://datatracker.ietf.org/doc/html/rfc7888> + Support of RFC 2231 <https://datatracker.ietf.org/doc/html/rfc2231> encoded names + Cache refactoring More at https://github.com/roundcube/roundcubemail/releases/tag/1.5.0 + added SECURITY.md to documentation + mark the whole documentation directory as documentation instead of listing some files and others not (avoid duplicate entries in RPM-DB) + adjust requirements: php-intl is now required update to 1.4.11 with security fix: - Fix cross-site scripting (XSS) via HTML messages with malicious CSS content - add PHP version to Requires: and Recommends: to make sure the same version is installed as used during packaging - drop Requires: http_daemon (fixes boo#1180132) and Suggests: apache2 (which is already required though mod_php_any) update to 1.4.10: * Stored cross-site scripting (XSS) via HTML or plain text messages with malicious content ( CVE-2020-35730 boo#1180399 ) * Fix extra angle brackets in In-Reply-To header derived from mailto: params (#7655) * Fix folder list issue when special folder is a subfolder (#7647) * Fix Elastic's folder subscription toggle in search result (#7653) * Fix state of subscription toggle on folders list after changing folder state from the search result (#7653) * Security: Fix cross-site scripting (XSS) via HTML or plain text messages with malicious content update to 1.4.9: * Fix HTML editor in latest Chrome 85.0.4183.102, update to TinyMCE 4.9.11 (#7615) * Add missing localization for some label/legend elements in userinfo plugin (#7478) * Fix importing birthday dates from Gmail vCards (BDAY:YYYYMMDD) * Fix restoring Cc/Bcc fields from local storage (#7554) * Fix jstz.min.js installation, bump version to 1.0.7 * Fix incorrect PDO::lastInsertId() use in sqlsrv driver (#7564) * Fix link to closure compiler in bin/jsshrink.sh script (#7567) * Fix bug where some parts of a message could have been missing in a reply/forward body (#7568) * Fix empty space on mail printouts in Chrome (#7604) * Fix empty output from HTML5 parser when content contains XML tag (#7624) * Fix scroll jump on key press in plain text mode of the HTML editor (#7622) * Fix so autocompletion list does not hide on scroll inside it (#7592) update to 1.4.8 with security fixes: * Fix cross-site scripting (XSS) via HTML messages with malicious svg content (CVE-2020-16145) * Fix cross-site scripting (XSS) via HTML messages with malicious math content update to 1.4.7 with security fix: * Fix bug where subfolders of special folders could have been duplicated on folder list * Increase maximum size of contact jobtitle and department fields to 128 characters * Fix missing newline after the logged line when writing to stdout (#7418) * Elastic: Fix context menu (paste) on the recipient input (#7431) * Fix problem with forwarding inline images attached to messages with no HTML part (#7414) * Fix problem with handling attached images with same name when using database_attachments/redundant_attachments (#7455) - add http.inc file * include one file for php5/php7 admin flags/values update to 1.4.5 Security fixes * Fix XSS issue in template object 'username' (#7406) * Fix cross-site scripting (XSS) via malicious XML attachment * Fix a couple of XSS issues in Installer (#7406) * Better fix for CVE-2020-12641 Other changes * Fix bug in extracting required plugins from composer.json that led to spurious error in log (#7364) * Fix so the database setup description is compatible with MySQL 8 (#7340) * Markasjunk: Fix regression in jsevent driver (#7361) * Fix missing flag indication on collapsed thread in Larry and Elastic (#7366) * Fix default keyservers (use keys.openpgp.org), add note about CORS (#7373, #7367) * Password: Fix issue with Modoboa driver (#7372) * Mailvelope: Use sender's address to find pubkeys to check signatures (#7348) * Mailvelope: Fix Encrypt button hidden in Elastic (#7353) * Fix PHP warning: count(): Parameter must be an array or an object... in ID command handler (#7392) * Fix error when user-configured skin does not exist anymore (#7271) * Elastic: Fix aspect ratio of a contact photo in mail preview (#7339) * Fix bug where PDF attachments marked as inline could have not been attached on mail forward (#7382) * Security: Fix a couple of XSS issues in Installer (#7406) * Security: Better fix for CVE-2020-12641 update to 1.4.4 * Fix bug where attachments with Content-Id were attached to the message on reply (#7122) * Fix identity selection on reply when both sender and recipient addresses are included in identities (#7211) * Elastic: Fix text selection with Shift+PageUp and Shift+PageDown in plain text editor when using Chrome (#7230) * Elastic: Fix recipient input bug when using click to select a contact from autocomplete list (#7231) * Elastic: Fix color of a folder with recent messages (#7281) * Elastic: Restrict logo size in print view (#7275) * Fix invalid Content-Type for messages with only html part and inline images * Mail_Mime-1.10.7 (#7261) * Fix missing contact display name in QR Code data (#7257) * Fix so button label in Select image/media dialogs is "Close" not "Cancel" (#7246) * Fix regression in testing database schema on MSSQL (#7227) * Fix cursor position after inserting a group to a recipient input using autocompletion (#7267) * Fix string literals handling in IMAP STATUS (and various other) responses (#7290) * Fix bug where multiple images in a message were replaced by the first one on forward/reply/edit (#7293) * Fix handling keyservers configured with protocol prefix (#7295) * Markasjunk: Fix marking as spam/ham on moving messages with Move menu (#7189) * Markasjunk: Fix bug where moving to Junk was failing on messages selected with Select > All (#7206) * Fix so imap error message is displayed to the user on folder create/update (#7245) * Fix bug where a special folder couldn't be created if a special-use flag is not supported (#7147) * Mailvelope: Fix bug where recipients with name were not handled properly in mail compose (#7312) * Fix characters encoding in group rename input after group creation/rename (#7330) * Fix bug where some message/rfc822 parts could not be attached on forward (#7323) * Make install-jsdeps.sh script working without the 'file' program installed (#7325) * Fix performance issue of parsing big HTML messages by disabling HTML5 parser for these (#7331) * Fix so Print button for PDF attachments works on Firefox >= 75 (#5125) update to 1.4.3 * Enigma: Fix so key list selection is reset when opening key creation form (#7154) * Enigma: Fix so using list checkbox selection does not load the key preview frame * Enigma: Fix generation of key pairs for identities with IDN domains (#7181) * Enigma: Display IDN domains of key users and identities in UTF8 * Enigma: Fix bug where "Send unencrypted" button didn't work in Elastic skin (#7205) * Managesieve: Fix bug where it wasn't possible to save flag actions (#7188) * Markasjunk: Fix bug where marking as spam/ham didn't work on moving messages with drag-and-drop (#7137) * Password: Make chpass-wrapper.py Python 3 compatible (#7135) * Elastic: Fix disappearing sidebar in mail compose after clicking Mail button * Elastic: Fix incorrect aria-disabled attribute on Mail taskmenu button in mail compose * Elastic: Fix bug where it was possible to switch editor mode when 'htmleditor' was in 'dont_override' (#7143) * Elastic: Fix text selection in recipient inputs (#7129) * Elastic: Fix missing Close button in "more recipients" dialog * Elastic: Fix non-working folder subscription checkbox for newly added folders (#7174) * Fix regression where "Open in new window" action didn't work (#7155) * Fix PHP Warning: array_filter() expects parameter 1 to be array, null given in subscriptions_option plugin (#7165) * Fix unexpected error message when mail refresh involves folder auto-unsubscribe (#6923) * Fix recipient duplicates in print-view when the recipient list has been expanded (#7169) * Fix bug where files in skins/ directory were listed on skins list (#7180) * Fix bug where message parts with no Content-Disposition header and no name were not listed on attachments list (#7117) * Fix display issues with mail subject that contains line-breaks (#7191) * Fix invalid Content-Transfer-Encoding on multipart messages - Mail_Mime fix (#7170) * Fix regression where using an absolute path to SQLite database file on Windows didn't work (#7196) * Fix using unix:///path/to/socket.file in memcached driver (#7210) - prefer brotli over gzip if brotli is available: + enable mod_brotli in roundcubemail-httpd.conf (after deflate) + enable brotli via a2enmod for new installations update to 1.4.2: * Plugin API: Make actionbefore, before, actionafter and after events working with plugin actions (#7106) * Managesieve: Replace "Filter disabled" with "Filter enabled" (#7028) * Managesieve: Fix so modifier type select wasn't hidden after hiding modifier select on header change * Managesieve: Fix filter selection after removing a first filter (#7079) * Markasjunk: Fix marking more than one message as spam/ham with email_learn driver (#7121) * Password: Fix kpasswd and smb drivers' double-escaping bug (#7092) * Enigma: Add script to import keys from filesystem to the db storage (for multihost) * Installer: Fix DB Write test on SQLite database ("database is locked" error) (#7064) * Installer: Fix so SQLite DSN with a relative path to the database file works in Installer * Elastic: Fix contrast of warning toasts (#7058) * Elastic: Simple search in pretty selects (#7072) * Elastic: Fix hidden list widget on mobile/tablet when selecting folder while search menu is open (#7120) * Fix so type attribute on script tags is not used on HTML5 pages (#6975) * Fix unread count after purge on a folder that is not currently selected (#7051) * Fix bug where Enter key didn't work on messages list in "List" layout (#7052) * Fix bug where deleting a saved search in addressbook caused display issue on sources/groups list (#7061) * Fix bug where a new saved search added after removing all searches wasn't added to the list (#7061) * Fix bug where a new contact group added after removing all groups from addressbook wasn't added to the list * Fix so install-jsdeps.sh removes Bootstrap's sourceMappingURL (#7035) * Fix so use of Ctrl+A does not scroll the list (#7020) * Fix/remove useless keyup event handler on username input in logon form (#6970) * Fix bug where cancelling switching from HTML to plain text didn't set the flag properly (#7077) * Fix bug where HTML reply could add an empty line with extra indentation above the original message (#7088) * Fix matching multiple X-Forwarded-For addresses with 'proxy_whitelist' (#7107) * Fix so displayed maximum attachment size depends also on 'max_message_size' (#7105) * Fix bug where 'skins_allowed' option didn't enforce user skin preference (#7080) * Fix so contact's organization field accepts up to 128 characters (it was 50) * Fix bug where listing tables in PostgreSQL database with db_prefix didn't work (#7093) * Fix bug where 'text' attribute on body tag was ignored when displaying HTML message (#7109) * Fix bug where next message wasn't displayed after delete in List mode (#7096) * Fix so number of contacts in a group is not limited to 200 when redirecting to mail composer from Contacts (#6972) * Fix malformed characters in HTML message with charset meta tag not in head (#7116) - php documentor is not needed on a productive system -> remove - also fix /usr/bin/env calls for two vendor scripts - skins now have some configurable files in their directories: move those files over to /etc/roundcubemail/skins/ - move other text files (incl. vendor ones) out of the root directory (and handle the LICENSE file a bit different) - enable mod_filter and add AddOutputFilterByType for common media types like html, javascript or xml - enable php7 on newer openSUSE versions - enable deflate, expires, filter, headers and setenvif on a new installation - do not enable any module in case of an update - recommend php-imagick for additional features - fixed most of the shell scripts to contain /usr/bin/php Upgrade to version 1.4.1: * new defaults for smtp_* config options * changed default password_charset to UTF-8 * login page returning 401 Unauthorized status Upgrade to version 1.4.0: * Update to jQuery 3.4.1 * Update to TinyMCE 4.8.2 * Update to jQuery-MiniColors 2.3.4 * Clarified 'address_book_type' option behavior (#6680) * Added cookie mismatch detection, display an error message informing the user to clear cookies * Renamed 'log_session' option to 'session_debug' * Removed 'delete_always' option (#6782) * Don't log full session identifiers in userlogins log (#6625) * Support $HasAttachment/$HasNoAttachment keywords (#6201) * Support PECL memcached extension as a session and cache storage driver (experimental) * Switch to IDNA2008 variant (#6806) * installto.sh: Add possibility to run the update even on the up-to-date installation (#6533) * Plugin API: Add 'render_folder_selector' hook * Added 'keyservers' option to define list of HKP servers for Enigma/Mailvelope (#6326) * Added flag to disable server certificate validation via Mysql DSN argument (#6848) * Select all records on the current list page with CTRL + A (#6813) * Use Left/Right Arrow keys to faster move over threaded messages list (#6399) * Changes in display_next setting (#6795): * * Move it to Preferences > User Interface > Main Options * * Make it apply to Contacts interface too * * Make it apply only if deleting/moving a previewed message/contact * Redis: Support connection to unix socket * Put charset meta specification before a title tag, add page title automatically (#6811) * Elastic: Various internal refactorings * Elastic: Add Prev/Next buttons on message page toolbar (#6648) * Elastic: Close search options on Enter key press in quick-search input (#6660) * Elastic: Changed some icons (#6852) * Elastic: Changed read/unread icons (#6636) * Elastic: Changed "Move to..." icon (#6637) * Elastic: Add hide/show for advanced preferences (#6632) * Elastic: Add default icon on Settings/Preferences lists for external plugins (#6814) * Elastic: Add indicator for popover menu items that open a submenu (#6868) * Elastic: Move compose attachments/options to the right side (#6839) * Elastic: Add border/background to attachments list widget (#6842) * Elastic: Add "Show unread messages" button to the search bar (#6587) * Elastic: Fix bug where toolbar disappears on attachment menu use in Chrome (#6677) * Elastic: Fix folders list scrolling on touch devices (#6706) * Elastic: Fix non-working pretty selects in Chrome browser (#6705) * Elastic: Fix issue with absolute positioned mail content (#6739) * Elastic: Fix bug where some menu actions could cause a browser popup warning * Elastic: Fix handling mailto: URL parameters in contact menu (#6751) * Elastic: Fix keyboard navigation in some menus, e.g. the contact menu * Elastic: Fix visual issue with long buttons in .boxwarning (#6797) * Elastic: Fix handling new-line in text pasted to a recipient input * Elastic: Fix so search is not reset when returning from the message preview page (#6847) * Larry: Fix regression where menu actions didn't work with keyboard (#6740) * ACL: Display user/group names (from ldap) instead of acl identifier * Password: Added ldap_exop driver (#4992) * Password: Added support for SSHA512 password algorithm (#6805) * Managesieve: Fix bug where global includes were requested for vacation (#6716) * Managesieve: Use RFC-compliant line endings, CRLF instead of LF (#6686) * Managesieve: Fix so "Create filter" option does not show up when Filters menu is disabled (#6723) * Enigma: For verified signatures, display the user id associated with the sender address (#5958) * Enigma: Fix bug where revoked users/keys were not greyed out in key info * Enigma: Fix error message when trying to encrypt with a revoked key (#6607) * Enigma: Fix "decryption oracle" bug [CVE-2019-10740] (#6638) * Enigma: Fix bug where signature verification could have been skipped for some message structures (#6838) * Fix language selection for spellchecker in html mode (#6915) * Fix css styles leak from replied/forwarded message to the rest of the composed text (#6831) * Fix invalid path to "add contact" icon when using assets_path setting * Fix invalid path to blocked.gif when using assets_path setting (#6752) * Fix so advanced search dialog is not automatically displayed on searchonly addressbooks (#6679) * Fix so an error is logged when more than one attachment plugin has been enabled, initialize the first one (#6735) * Fix bug where flag change could have been passed to a preview frame when not expected * Fix bug in HTML parser that could cause missing text fragments when there was no head/body tag (#6713) * Fix bug where HTML messages with a xml:namespace tag were not rendered (#6697) * Fix TinyMCE download location (#6694) * Fix so "Open in new window" consistently displays "external window" interface (#6659) * Fix bug where next row wasn't selected after deleting a collapsed thread (#6655) * Fix bug where external content (e.g. mail body) was passed to templates parsing code (#6640) * Fix bug where attachment preview didn't work with x_frame_options=deny (#6688) * Fix so bin/install-jsdeps.sh returns error code on error (#6704) * Fix bug where bmp images couldn't be displayed on some systems (#6728) * Fix bug in parsing vCard data using PHP 7.3 due to an invalid regexp (#6744) * Fix bug where bold/strong text was converted to upper-case on html-to-text conversion (6758) * Fix bug in rcube_utils::parse_hosts() where %t, %d, %z could return only tld (#6746) * Fix bug where Next/Prev button in mail view didn't work with multi-folder search result (#6793) * Fix bug where selection of columns on messages list wasn't working * Fix bug in converting multi-page Tiff images to Jpeg (#6824) * Fix bug where handling multiple messages from multi-folder search result could not work (#6845) * Fix bug where unread count wasn't updated after moving multi-folder result (#6846) * Fix wrong messages order after returning to a multi-folder search result (#6836) * Fix some PHP 7.4 compat. issues (#6884, #6866) * Fix bug where it was possible to bypass the position:fixed CSS check in received messages (#6898) * Fix bug where some strict remote URIs in url() style were unintentionally blocked (#6899) * Fix bug where it was possible to bypass the CSS jail in HTML messages using :root pseudo-class (#6897) * Fix bug where it was possible to bypass href URI check with data:application/xhtml+xml URIs (#6896) * Changed 'password_charset' default to 'UTF-8' (#6522) * Add skins_allowed option (#6483) * SMTP GSSAPI support via krb_authentication plugin (#6417) * Avoid Referer leaking by using Referrer-Policy:same-origin header (#6385) * Removed 'referer_check' option (#6440) * Use constant prefix for temp file names, don't remove temp files from other apps (#6511) * Ignore 'Sender' header on Reply-All action (#6506) * deluser.sh: Add option to delete users who have not logged in for more than X days (#6340) * HTML5 Upload Progress - as a replacement for the old server-side solution (#6177) * Prevent from using deprecated timezone names from jsTimezoneDetect * Force session.gc_probability=1 when using custom session handlers (#6560) * Support simple field labels (e.g. LetterHub examples) in csv imports (#6541) * Add cache busters also to images used by templates (#6610) * Plugin API: Added 'raise_error' hook (#6199) * Plugin API: Added 'common_headers' hook (#6385) * Plugin API: Added 'ldap_connected' hook * Enigma: Update to OpenPGPjs 4.2.1 - fixes user name encoding issues in key generation (#6524) * Enigma: Fixed multi-host synchronization of private and deleted keys and pubring.kbx file * Managesieve: Added support for 'editheader' extension - RFC5293 (#5954) * Managesieve: Fix bug where custom header or variable could be lost on form submission (#6594) * Markasjunk: Integrate markasjunk2 features into markasjunk - marking as non-junk + learning engine (#6504) * Password: Added 'modoboa' driver (#6361) * Password: Fix bug where password_dovecotpw_with_method setting could be ignored (#6436) * Password: Fix bug where new users could skip forced password change (#6434) * Password: Allow drivers to override default password comparisons (eg new is not same as current) (#6473) * Password: Allow drivers to override default strength checks (eg allow for 'not the same as last x passwords') (#246) * Passowrd: Allow drivers to define password strength rules displayed to the user * Password: Allow separate password saving and strength drivers for use of strength checking services (#5040) * Password: Add zxcvbn driver for checking password strength (#6479) * Password: Disallow control characters in passwords * Password: Add support for Plesk >= 17.8 (#6526) * Elastic: Improved datepicker displayed always in parent window * Elastic: On touch devices display attachment icons on messages list (#6296) * Elastic: Make menu button inactive if all subactions are inactive (#6444) * Elastic: On mobile/tablet jump to the list on folder selection (#6415) * Elastic: Various improvements on mail compose screen (#6413) * Elastic: Support new-line char as a separator for pasted recipients (#6460) * Elastic: Improved UX of search dialogs (#6416) * Elastic: Fix unwanted thread expanding when selecting a collapsed thread in non-mobile mode (#6445) * Elastic: Fix too small height of mailvelope mail preview frame (#6600) * Elastic: Add "status bar" for mobile in mail composer * Elastic: Add selection options on contacts list (#6595) * Elastic: Fix unintentional layout preference overwrite (#6613) * Elastic: Fix bug where Enigma options in mail compose could sometimes be ignored (#6515) * Log errors caused by low pcre.backtrack_limit when sending a mail message (#6433) * Fix regression where drafts were not deleted after sending the message (#6756) * Fix so max_message_size limit is checked also when forwarding messages as attachments (#6580) * Fix so performance stats are logged to the main console log also when per_user_logging=true * Fix malformed message saved into Sent folder when using big attachments and low memory limit (#6498) * Fix incorrect IMAP SASL GSSAPI negotiation (#6308) * Fix so unicode in local part of the email address is also supported in recipient inputs (#6490) * Fix bug where autocomplete list could be displayed out of screen (#6469) * Fix style/navigation on error page depending on authentication state (#6362) * Fix so invalid smtp_helo_host is never used, fallback to localhost (#6408) * Fix custom logo size in Elastic (#6424) * Fix listing the same attachment multiple times on forwarded messages * Fix bug where a message/rfc822 part without a filename wasn't listed on the attachments list (#6494) * Fix inconsistent offset for various time zones - always display Standard Time offset (#6531) * Fix dummy Message-Id when resuming a draft without Message-Id header (#6548) * Fix handling of empty entries in vCard import (#6564) * Fix bug in parsing some IMAP command responses that include unsolicited replies (#6577) * Fix PHP 7.2 compatibility in debug_logger plugin (#6586) * Fix so ANY record is not used for email domain validation, use A, MX, CNAME, AAAA instead (#6581) * Fix so mime_content_type check in Installer uses files that should always be available (i.e. from program/resources) (#6599) * Fix missing CSRF token on a link to download too-big message part (#6621) * Fix bug when aborting dragging with ESC key didn't stop the move action (#6623) * Improved Mailvelope integration * * Added private key listing and generating to identity settings * * Enable encrypt & sign option if Mailvelope supports it * Allow contacts without an email address (#5079) * Support SMTPUTF8 and relax email address validation to support unicode in local part (#5120) * Support for IMAP folders that cannot contain both folders and messages (#5057) * Remove sample PHP configuration from .htaccess and .user.ini files (#5850) * Extend skin_logo setting to allow per skin logos (#6272) * Use Masterminds/HTML5 parser for better HTML5 support (#5761) * Add More actions button in Contacts toolbar with Copy/Move actions (#6081) * Display an error when clicking disabled link to register protocol handler (#6079) * Add option trusted_host_patterns (#6009, #5752) * Support additional connect parameters in PostgreSQL database wrapper * Use UI dialogs instead of confirm() and alert() where possible * Display value of the SMTP message size limit in the error message (#6032) * Show message flagged status in message view (#5080) * Skip redundant INSERT query on successful logon when using PHP7 * Replace display_version with display_product_version (#5904) * Extend disabled_actions config so it accepts also button names (#5903) * Handle remote stylesheets the same as remote images, ask the user to allow them (#5994) * Add Message-ID to the sendmail log (#5871) * Add option to hide folders in share/other-user namespace or outside of the personal namespace root (#5073) * Archive: Fix archiving by sender address on cyrus-imap * Archive: Style Archive folder also on folder selector and folder manager lists * Archive: Add Thunderbird compatible Month option (#5623) * Archive: Create archive folder automatically if it's configured, but does not exist (#6076) * Enigma: Add button to send mail unencrypted if no key was found (#5913) * Enigma: Add options to set PGP cipher/digest algorithms (#5645) * Enigma: Multi-host support * Managesieve: Add ability to disable filter sets and other actions (#5496, #5898) * Managesieve: Add option managesieve_forward to enable settings dialog for simple forwarding (#6021) * Managesieve: Support filter action with custom IMAP flags (#6011) * Managesieve: Support 'mime' extension tests - RFC5703 (#5832) * Managesieve: Support GSSAPI authentication with krb_authentication plugin (#5779) * Managesieve: Support enabling the plugin for specified hosts only (#6292) * Password: Support host variables in password_db_dsn option (#5955) * Password: Automatic virtualmin domain setting, removed password_virtualmin_format option (#5759) * Password: Added password_username_format option (#5766) * subscriptions_option: show \Noselect folders greyed out (#5621) * zipdownload: Added option to define size limit for multiple messages download (#5696) * vcard_attachments: Add possibility to send contact vCard from Contacts toolbar (#6080) * Changed defaults for smtp_user (%u), smtp_pass (%p) and smtp_port (587) * Composer: Fix certificate validation errors by using packagist only (#5148) * Add --get and --extract arguments and CACHEDIR env-variable support to install-jsdeps.sh (#5882) * Support _filter and _scope as GET arguments for opening mail UI (#5825) * Various improvements for templating engine and skin behaviours * * Support conditional include * * Support for 'link' objects * * Support including files with path relative to templates directory * * Use instead of for submit button on logon screen * Support skin localization (#5853) * Reset onerror on images if placeholder does not exist to prevent from requests storm * Unified and simplified code for loading content frame for responses and identities * Display contact import and advanced search in popup dialogs * Display a dialog for mail import with supported format description and upload size hint * Make possible to set (some) config options from a skin * Added optional checkbox selection for the list widget * Make 'compose' command always enabled * Add .log suffix to all log file names, add option log_file_ext to control this (#313) * Return "401 Unauthorized" status when login fails (#5663) * Support both comma and semicolon as recipient separator, drop recipients_separator option (#5092) * Plugin API: Added 'show_bytes' hook (#5001) * Add option to not indent quoted text on top-posting reply (#5105) * Removed global $CONFIG variable * Removed debug_level setting * Support AUTHENTICATE LOGIN for IMAP connections (#5563) * Support LDAP GSSAPI authentication (#5703) * Localized timezone selector (#4983) * Use 7bit encoding for ISO-2022-* charsets in sent mail (#5640) * Handle inline images also inside multipart/mixed messages (#5905) * Allow style tags in HTML editor on composed/reply messages (#5751) * Use Github API as a fallback to fetch js dependencies to workaround throttling issues (#6248) * Show confirm dialog when moving folders using drag and drop (#6119) * Fix bug where new_user_dialog email check could have been circumvented by deleting / abandoning session (#5929) * Fix skin extending for assets (#5115) * Fix handling of forwarded messages inside of a TNEF message (#5632) * Fix bug where attachment size wasn't visible when the filename was too long (#6033) * Fix checking table columns when there's more schemas/databases in postgres/mysql (#6047) * Fix css conflicts in user interface and e-mail content (#5891) * Fix duplicated signature when using Back button in Chrome (#5809) * Fix touch event issue on messages list in IE/Edge (#5781) * Fix so links over images are not removed in plain text signatures converted from HTML (#4473) * Fix various issues when downloading files with names containing non-ascii chars, use RFC 2231 (#5772) Upgrade to version 1.3.10: * Enigma: Fix "decryption oracle" bug [CVE-2019-10740] (#6638) Upgrade to version 1.3.9: * Fix TinyMCE download location(s) (#6694) * Fix so mime_content_type check in Installer uses files that should always be available (i.e. from program/resources) (#6599) Upgrade to version 1.3.8: * Fix support for "allow-from " in x_frame_options config option (#6449) - add files with .log entry to logrotate config enhance apache configuration by: + disable mbstring function overload (http://bugs.php.net/bug.php?id=30766) + do not allow to see README*, INSTALL, LICENSE or CHANGELOG files + set additional headers: + Content-Security-Policy: ask browsers to not set the referrer + Cache-Control: ask not to cache the content + Strict-Transport-Security: set HSTS rules for SSL traffic + X-XSS-Protection: configure built in reflective XSS protection adjust README.openSUSE: + db.inc.php is not used any longer + flush privileges after creating/changing users in mysql roundcubemail-1.5.3-bp154.2.3.1.noarch.rpm roundcubemail-1.5.3-bp154.2.3.1.src.rpm openSUSE-2022-10153 important openSUSE Backports SLE-15-SP4 Update This update for enlightenment fixes the following issues: Update to 0.25.4 Bugfix release * Fix shape handling in various cases that affected apps with shaped input * Fix procstats popup and dangling icon for fullscreen windows * Fix a vianishing pointer in some cases * Workaround Qt issue where it does not remove WM_STATE on withdraw * Fix fullscreen focus toggle flicker * Fix pointer sticking case * Fix tap-to-click props * Fix gadgcon disabled items * Fix config fallback handling that means no fallback happened * Fix gtk frame prop handling * Fix first map handling that affected energyxt * Fix CVE-2022-37706 (boo#1203631) * Harden enlightenment_sys when mis-packaged without sysactions.conf enlightenment-0.25.4-bp154.4.3.1.src.rpm enlightenment-0.25.4-bp154.4.3.1.x86_64.rpm enlightenment-branding-upstream-0.25.4-bp154.4.3.1.x86_64.rpm enlightenment-devel-0.25.4-bp154.4.3.1.x86_64.rpm enlightenment-0.25.4-bp154.4.3.1.aarch64.rpm enlightenment-branding-upstream-0.25.4-bp154.4.3.1.aarch64.rpm enlightenment-devel-0.25.4-bp154.4.3.1.aarch64.rpm enlightenment-0.25.4-bp154.4.3.1.ppc64le.rpm enlightenment-branding-upstream-0.25.4-bp154.4.3.1.ppc64le.rpm enlightenment-devel-0.25.4-bp154.4.3.1.ppc64le.rpm enlightenment-0.25.4-bp154.4.3.1.s390x.rpm enlightenment-branding-upstream-0.25.4-bp154.4.3.1.s390x.rpm enlightenment-devel-0.25.4-bp154.4.3.1.s390x.rpm openSUSE-2022-10193 moderate openSUSE Backports SLE-15-SP4 Update This update for efl fixes the following issues: Update to 1.26.3 Bugfix release * Fix theme issues * Fix edje calc internal return values in some cases * Fix ecore-x netwm moveresize request handling * Fix ecore-x xkb handling to not leak * Fix new xkb event handling * Fix evas smart object to null out fields for safety * Fix elm null cnp object handling to not crash in odd cases * Fix ecore evas x11 dnd handling to not null out xdnd props * Fix data checkme file so relocation at runtime works again * Fix eina bt output to always have spaces between fields * Fix png loader on arm to not have rgb values when a is 0 * Fix textgrid to guard against null glyphs * Fix ecore-x vblank to use current time not vlbank time * Fix emile to handle invalid compress types more gracefully * Fix compile warnings * Fix evas psd loader crash * Fix osx sample compile conf script options * Fix wl vsync timer to use current time not vblank time * Work around xwayland issue where synthetic events are not sent ecore_imf-module-scim-1.26.3-bp154.4.3.20.x86_64.rpm efl-1.26.3-bp154.4.3.20.src.rpm efl-1.26.3-bp154.4.3.20.x86_64.rpm efl-devel-1.26.3-bp154.4.3.20.x86_64.rpm efl-examples-1.26.3-bp154.4.3.20.x86_64.rpm efl-lang-1.26.3-bp154.4.3.20.noarch.rpm efl-testsuite-1.26.3-bp154.4.3.20.x86_64.rpm elua-1.26.3-bp154.4.3.20.x86_64.rpm enlightenment-theme-Flat-0.21.0-bp154.4.3.20.x86_64.rpm enlightenment-theme-upstream-0.21.0-bp154.4.3.20.x86_64.rpm enlightenment-x-Flat-icon-theme-0.21.0-bp154.4.3.20.x86_64.rpm evas-generic-loaders-1.26.3-bp154.4.3.20.x86_64.rpm ecore_imf-module-scim-1.26.3-bp154.4.3.20.aarch64.rpm efl-1.26.3-bp154.4.3.20.aarch64.rpm efl-devel-1.26.3-bp154.4.3.20.aarch64.rpm efl-examples-1.26.3-bp154.4.3.20.aarch64.rpm efl-testsuite-1.26.3-bp154.4.3.20.aarch64.rpm elua-1.26.3-bp154.4.3.20.aarch64.rpm enlightenment-theme-Flat-0.21.0-bp154.4.3.20.aarch64.rpm enlightenment-theme-upstream-0.21.0-bp154.4.3.20.aarch64.rpm enlightenment-x-Flat-icon-theme-0.21.0-bp154.4.3.20.aarch64.rpm evas-generic-loaders-1.26.3-bp154.4.3.20.aarch64.rpm ecore_imf-module-scim-1.26.3-bp154.4.3.20.s390x.rpm efl-1.26.3-bp154.4.3.20.s390x.rpm efl-devel-1.26.3-bp154.4.3.20.s390x.rpm efl-examples-1.26.3-bp154.4.3.20.s390x.rpm efl-testsuite-1.26.3-bp154.4.3.20.s390x.rpm elua-1.26.3-bp154.4.3.20.s390x.rpm enlightenment-theme-Flat-0.21.0-bp154.4.3.20.s390x.rpm enlightenment-theme-upstream-0.21.0-bp154.4.3.20.s390x.rpm enlightenment-x-Flat-icon-theme-0.21.0-bp154.4.3.20.s390x.rpm evas-generic-loaders-1.26.3-bp154.4.3.20.s390x.rpm openSUSE-2022-10140 moderate openSUSE Backports SLE-15-SP4 Update This update for lighttpd fixes the following issues: lighttpd was updated to 1.4.67: * Update comment about TCP_INFO on OpenBSD * [mod_ajp13] fix crash with bad response headers (fixes #3170) * [core] handle RDHUP when collecting chunked body CVE-2022-41556 (boo#1203872) * [core] tweak streaming request body to backends * [core] handle ENOSPC with pwritev() (#3171) * [core] manually calculate off_t max (fixes #3171) * [autoconf] force large file support (#3171) * [multiple] quiet coverity warnings using casts * [meson] add license keyword to project declaration lighttpd-1.4.67-bp154.2.6.1.src.rpm lighttpd-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-debugsource-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_authn_gssapi-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_authn_ldap-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_authn_pam-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_authn_pam-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_authn_sasl-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_magnet-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_magnet-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_maxminddb-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_maxminddb-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_rrdtool-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_rrdtool-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_vhostdb_dbi-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_vhostdb_ldap-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_vhostdb_mysql-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_vhostdb_pgsql-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_webdav-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-mod_webdav-debuginfo-1.4.67-bp154.2.6.1.x86_64.rpm lighttpd-1.4.67-bp154.2.6.1.i586.rpm lighttpd-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-debugsource-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_authn_gssapi-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_authn_ldap-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_authn_pam-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_authn_pam-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_authn_sasl-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_magnet-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_magnet-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_maxminddb-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_maxminddb-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_rrdtool-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_rrdtool-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_vhostdb_dbi-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_vhostdb_ldap-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_vhostdb_mysql-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_vhostdb_pgsql-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_webdav-1.4.67-bp154.2.6.1.i586.rpm lighttpd-mod_webdav-debuginfo-1.4.67-bp154.2.6.1.i586.rpm lighttpd-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-debugsource-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_authn_gssapi-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_authn_ldap-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_authn_pam-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_authn_pam-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_authn_sasl-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_magnet-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_magnet-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_maxminddb-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_maxminddb-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_rrdtool-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_rrdtool-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_vhostdb_dbi-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_vhostdb_ldap-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_vhostdb_mysql-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_vhostdb_pgsql-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_webdav-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-mod_webdav-debuginfo-1.4.67-bp154.2.6.1.aarch64.rpm lighttpd-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-debugsource-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_authn_gssapi-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_authn_ldap-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_authn_pam-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_authn_pam-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_authn_sasl-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_magnet-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_magnet-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_maxminddb-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_maxminddb-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_rrdtool-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_rrdtool-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_vhostdb_dbi-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_vhostdb_ldap-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_vhostdb_mysql-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_vhostdb_pgsql-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_webdav-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-mod_webdav-debuginfo-1.4.67-bp154.2.6.1.ppc64le.rpm lighttpd-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-debugsource-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_authn_gssapi-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_authn_gssapi-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_authn_ldap-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_authn_ldap-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_authn_pam-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_authn_pam-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_authn_sasl-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_authn_sasl-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_magnet-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_magnet-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_maxminddb-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_maxminddb-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_rrdtool-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_rrdtool-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_vhostdb_dbi-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_vhostdb_dbi-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_vhostdb_ldap-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_vhostdb_ldap-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_vhostdb_mysql-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_vhostdb_mysql-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_vhostdb_pgsql-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_vhostdb_pgsql-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_webdav-1.4.67-bp154.2.6.1.s390x.rpm lighttpd-mod_webdav-debuginfo-1.4.67-bp154.2.6.1.s390x.rpm openSUSE-2022-10158 moderate openSUSE Backports SLE-15-SP4 Update This update for php-imagick provides php7 and php8 builds of the imagick module. (bsc#1201574) php7-imagick-3.7.0-bp154.2.4.1.src.rpm php7-imagick-3.7.0-bp154.2.4.1.x86_64.rpm php8-imagick-3.7.0-bp154.2.4.1.src.rpm php8-imagick-3.7.0-bp154.2.4.1.x86_64.rpm php7-imagick-3.7.0-bp154.2.4.1.i586.rpm php8-imagick-3.7.0-bp154.2.4.1.i586.rpm php7-imagick-3.7.0-bp154.2.4.1.aarch64.rpm php8-imagick-3.7.0-bp154.2.4.1.aarch64.rpm php7-imagick-3.7.0-bp154.2.4.1.ppc64le.rpm php8-imagick-3.7.0-bp154.2.4.1.ppc64le.rpm php7-imagick-3.7.0-bp154.2.4.1.s390x.rpm openSUSE-2022-10138 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 106.0.5249.91 (boo#1203808): * CVE-2022-3370: Use after free in Custom Elements * CVE-2022-3373: Out of bounds write in V8 includes changes from 106.0.5249.61: * CVE-2022-3304: Use after free in CSS * CVE-2022-3201: Insufficient validation of untrusted input in Developer Tools * CVE-2022-3305: Use after free in Survey * CVE-2022-3306: Use after free in Survey * CVE-2022-3307: Use after free in Media * CVE-2022-3308: Insufficient policy enforcement in Developer Tools * CVE-2022-3309: Use after free in Assistant * CVE-2022-3310: Insufficient policy enforcement in Custom Tabs * CVE-2022-3311: Use after free in Import * CVE-2022-3312: Insufficient validation of untrusted input in VPN * CVE-2022-3313: Incorrect security UI in Full Screen * CVE-2022-3314: Use after free in Logging * CVE-2022-3315: Type confusion in Blink * CVE-2022-3316: Insufficient validation of untrusted input in Safe Browsing * CVE-2022-3317: Insufficient validation of untrusted input in Intents * CVE-2022-3318: Use after free in ChromeOS Notifications chromedriver-106.0.5249.91-bp154.2.32.1.x86_64.rpm chromium-106.0.5249.91-bp154.2.32.1.src.rpm chromium-106.0.5249.91-bp154.2.32.1.x86_64.rpm chromedriver-106.0.5249.91-bp154.2.32.1.aarch64.rpm chromium-106.0.5249.91-bp154.2.32.1.aarch64.rpm openSUSE-2022-10170 moderate openSUSE Backports SLE-15-SP4 Update This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.22, delivering a number of bug fixes: * When polling time is exceed, spine does not always exit as expected * Spine logging at `-V 5` includes an extra line feed * Incorrect SNMP responses can cause spine to crash * Properly handle devices that timeout responding to the Extended Uptime * MariaDB can cause spine to abort prematurely despite error handling * Spine should log the error time when exiting via signal cacti-spine 1.2.21: * Disable DES if Net-SNMP doesn't have it cacti 1.2.22, providing one security fix, a number of bug fixes and a collection of improvements: * When creating new graphs, cross site injection is possible (boo#1203952) * When creating user from template, multiple Domain FullName and Mail are not propagated * Nectar Aggregate 95th emailed report broken * Boost may not find archive tables correctly * Users may be unable to change their password when forced during a login * Net-SNMP Memory Graph Template has Wrong GPRINT * Search in tree view unusable on larger installations * Increased bulk insert size to avoid partial inserts and potential data loss. * Call to undefined function boost_debug in Cacti log * When no guest template is set, login cookies are not properly set * Later RRDtool releases do not need to check last_update time * Regex filters are not always long enough * Domains based LDAP and AD Fullname and Email not auto-populated * Cacti polling and boost report the wrong number of Data Sources when Devices are disabled * When editing Graph Template Items there are cases where VDEF's are hidden when they should be shown * Database SSL setting lacks default value * Update default path cacti under *BSD by xmacan * Web Basic authentication not creating template user * Unable to change the Heartbeat of a Data Source Profile * Tree Search Does Not Properly Search All Trees * When structured paths are setup, RRDfiles may not always be created when possible * When parsing the logs, caching would help speed up processing * Deprecation warnings when attempting real-time Graphs with PHP8.1 * Custom Timespan is lost when clicking other tree branches * Non device based Data Sources not being polled * When Resource XML file inproperly formatted, graph creation can fail with errors * Update code style to support PHP 8 requirements * None" shows all graphs * Realtime popup window experiences issues on some browsers * Auth settings do not always properly reflect the options selected by ddb4github * MySQL can cause cacti to become stalled due to locking issues * Boost process can get hung under rare conditions until the poller times out * Exporting graphs under PHP 8 can cause errors * Host table has wrong default for disabled and deleted columns * RRD storage paths do not scale properly * When importing, make it possible to only import certain components * Update change_device script to include new features by bmfmancini * Make help pages use latest online version wherever possible * Cacti should show PHP INI locations during install * Detect PHP INI values that are different in the INI vs running config * Added Gradient Color support for AREA charts by thurban * Update CDEF functions for RRDtool * When boost is running, it's not clear which processes are running and how long they have to complete cacti 1.2.21: * Add a CLI script to install/enable/disable/uninstall plugins * Add log message when purging DS stats and poller repopulate * A collection of bug fixes cacti-spine-1.2.22-bp154.2.3.1.src.rpm cacti-spine-1.2.22-bp154.2.3.1.x86_64.rpm cacti-spine-debuginfo-1.2.22-bp154.2.3.1.x86_64.rpm cacti-spine-debugsource-1.2.22-bp154.2.3.1.x86_64.rpm cacti-1.2.22-bp154.2.3.1.noarch.rpm cacti-1.2.22-bp154.2.3.1.src.rpm cacti-spine-1.2.22-bp154.2.3.1.i586.rpm cacti-spine-debuginfo-1.2.22-bp154.2.3.1.i586.rpm cacti-spine-debugsource-1.2.22-bp154.2.3.1.i586.rpm cacti-spine-1.2.22-bp154.2.3.1.aarch64.rpm cacti-spine-debuginfo-1.2.22-bp154.2.3.1.aarch64.rpm cacti-spine-debugsource-1.2.22-bp154.2.3.1.aarch64.rpm cacti-spine-1.2.22-bp154.2.3.1.ppc64le.rpm cacti-spine-debuginfo-1.2.22-bp154.2.3.1.ppc64le.rpm cacti-spine-debugsource-1.2.22-bp154.2.3.1.ppc64le.rpm cacti-spine-1.2.22-bp154.2.3.1.s390x.rpm cacti-spine-debuginfo-1.2.22-bp154.2.3.1.s390x.rpm cacti-spine-debugsource-1.2.22-bp154.2.3.1.s390x.rpm openSUSE-2022-10145 important openSUSE Backports SLE-15-SP4 Update This update for gdcm, orthanc, orthanc-gdcm, orthanc-webviewer fixes the following issues: Changes in gdcm: - rename of gdcm-libgdcm3_0 to libgdcm3_0 (proposal S. Brüns) - version 3.0.18 no changelog - version 3.0.12 * support for poppler 22.03 added Changes in orthanc-gdcm: - changed dependency gdcm-libgdcm3_0 -> libgdcm3_0 Changes in orthanc: - version 1.11.2 * Added support for RGBA64 images in tools/create-dicom and /preview * New configuration "MaximumStorageMode" to choose between recyling of old patients (default behavior) and rejection of new incoming data when the MaximumStorageSize has been reached. * New sample plugin: "DelayedDeletion" that will delete files from disk asynchronously to speed up deletion of large studies. * Lua: new "SetHttpTimeout" function * Lua: new "OnHeartBeat" callback called at regular interval provided that you have configured "LuaHeartBeatPeriod" > 0. * "ExtraMainDicomTags" configuration now accepts Dicom Sequences. Sequences are stored in a dedicated new metadata "MainDicomSequences". This should improve DicomWeb QIDO-RS and avoid warnings like "Accessing Dicom tags from storage when accessing series : 0040,0275". Main dicom sequences can now be returned in "MainDicomTags" and in "RequestedTags". * Fix the "Never" option of the "StorageAccessOnFind" that was sill accessing files (bug introduced in 1.11.0). * Fix the Storage Cache for compressed files (bug introduced in 1.11.1). * Fix the storage cache that was not used by the Plugin SDK. This fixes the DicomWeb plugin "/rendered" route performance issues. * DelayedDeletion plugin: Fix leaking of symbols * SQLite now closes and deletes WAL and SHM files on exit. This should improve handling of SQLite DB over network drives. * Fix static compilation of boost 1.69 on Ubuntu 22.04 * Upgraded dependencies for static builds: - boost 1.80.0 - dcmtk 3.6.7 (fixes CVE-2022-2119 and CVE-2022-2120) - openssl 3.0.5 * Housekeeper plugin: Fix resume of previous processing * Added missing MOVEPatientRootQueryRetrieveInformationModel in DicomControlUserConnection::SetupPresentationContexts() * Improved HttpClient error logging (add method + url) * API version upgraded to 18 * /system is now reporting "DatabaseServerIdentifier" * Added an Asynchronous mode to /modalities/../move. * "RequestedTags" option can now include DICOM sequences. * New function in the SDK: "OrthancPluginGetDatabaseServerIdentifier" * DicomMap::ParseMainDicomTags has been deprecated -> retrieve "full" tags and use DicomMap::FromDicomAsJson instead Changes in orthanc-webviewer: - version 2.8 * Fix XSS inside DICOM in Orthanc Web Viewer (as reported by Stuart Kurutac, NCC Group) * framework190.diff removed (covered in actual version) gdcm-3.0.19-bp154.2.5.1.src.rpm gdcm-3.0.19-bp154.2.5.1.x86_64.rpm gdcm-applications-3.0.19-bp154.2.5.1.x86_64.rpm gdcm-applications-debuginfo-3.0.19-bp154.2.5.1.x86_64.rpm gdcm-debuginfo-3.0.19-bp154.2.5.1.x86_64.rpm gdcm-debugsource-3.0.19-bp154.2.5.1.x86_64.rpm gdcm-devel-3.0.19-bp154.2.5.1.x86_64.rpm gdcm-examples-3.0.19-bp154.2.5.1.x86_64.rpm libgdcm3_0-3.0.19-bp154.2.5.1.x86_64.rpm libgdcm3_0-debuginfo-3.0.19-bp154.2.5.1.x86_64.rpm libsocketxx1_2-3.0.19-bp154.2.5.1.x86_64.rpm libsocketxx1_2-debuginfo-3.0.19-bp154.2.5.1.x86_64.rpm python3-gdcm-3.0.19-bp154.2.5.1.x86_64.rpm python3-gdcm-debuginfo-3.0.19-bp154.2.5.1.x86_64.rpm orthanc-gdcm-1.5-bp154.2.3.1.src.rpm orthanc-gdcm-1.5-bp154.2.3.1.x86_64.rpm orthanc-gdcm-debuginfo-1.5-bp154.2.3.1.x86_64.rpm orthanc-gdcm-debugsource-1.5-bp154.2.3.1.x86_64.rpm orthanc-webviewer-2.8-bp154.2.3.1.src.rpm orthanc-webviewer-2.8-bp154.2.3.1.x86_64.rpm orthanc-webviewer-debuginfo-2.8-bp154.2.3.1.x86_64.rpm orthanc-webviewer-debugsource-2.8-bp154.2.3.1.x86_64.rpm orthanc-1.11.2-bp154.2.3.1.src.rpm orthanc-1.11.2-bp154.2.3.1.x86_64.rpm orthanc-debuginfo-1.11.2-bp154.2.3.1.x86_64.rpm orthanc-debugsource-1.11.2-bp154.2.3.1.x86_64.rpm orthanc-devel-1.11.2-bp154.2.3.1.x86_64.rpm orthanc-doc-1.11.2-bp154.2.3.1.noarch.rpm orthanc-source-1.11.2-bp154.2.3.1.x86_64.rpm gdcm-3.0.19-bp154.2.5.1.aarch64.rpm gdcm-applications-3.0.19-bp154.2.5.1.aarch64.rpm gdcm-applications-debuginfo-3.0.19-bp154.2.5.1.aarch64.rpm gdcm-debuginfo-3.0.19-bp154.2.5.1.aarch64.rpm gdcm-debugsource-3.0.19-bp154.2.5.1.aarch64.rpm gdcm-devel-3.0.19-bp154.2.5.1.aarch64.rpm gdcm-examples-3.0.19-bp154.2.5.1.aarch64.rpm libgdcm3_0-3.0.19-bp154.2.5.1.aarch64.rpm libgdcm3_0-debuginfo-3.0.19-bp154.2.5.1.aarch64.rpm libsocketxx1_2-3.0.19-bp154.2.5.1.aarch64.rpm libsocketxx1_2-debuginfo-3.0.19-bp154.2.5.1.aarch64.rpm python3-gdcm-3.0.19-bp154.2.5.1.aarch64.rpm python3-gdcm-debuginfo-3.0.19-bp154.2.5.1.aarch64.rpm orthanc-gdcm-1.5-bp154.2.3.1.aarch64.rpm orthanc-gdcm-debuginfo-1.5-bp154.2.3.1.aarch64.rpm orthanc-gdcm-debugsource-1.5-bp154.2.3.1.aarch64.rpm orthanc-webviewer-2.8-bp154.2.3.1.aarch64.rpm orthanc-webviewer-debuginfo-2.8-bp154.2.3.1.aarch64.rpm orthanc-webviewer-debugsource-2.8-bp154.2.3.1.aarch64.rpm orthanc-1.11.2-bp154.2.3.1.aarch64.rpm orthanc-debuginfo-1.11.2-bp154.2.3.1.aarch64.rpm orthanc-debugsource-1.11.2-bp154.2.3.1.aarch64.rpm orthanc-devel-1.11.2-bp154.2.3.1.aarch64.rpm orthanc-source-1.11.2-bp154.2.3.1.aarch64.rpm gdcm-3.0.19-bp154.2.5.1.ppc64le.rpm gdcm-applications-3.0.19-bp154.2.5.1.ppc64le.rpm gdcm-applications-debuginfo-3.0.19-bp154.2.5.1.ppc64le.rpm gdcm-debuginfo-3.0.19-bp154.2.5.1.ppc64le.rpm gdcm-debugsource-3.0.19-bp154.2.5.1.ppc64le.rpm gdcm-devel-3.0.19-bp154.2.5.1.ppc64le.rpm gdcm-examples-3.0.19-bp154.2.5.1.ppc64le.rpm libgdcm3_0-3.0.19-bp154.2.5.1.ppc64le.rpm libgdcm3_0-debuginfo-3.0.19-bp154.2.5.1.ppc64le.rpm libsocketxx1_2-3.0.19-bp154.2.5.1.ppc64le.rpm libsocketxx1_2-debuginfo-3.0.19-bp154.2.5.1.ppc64le.rpm python3-gdcm-3.0.19-bp154.2.5.1.ppc64le.rpm python3-gdcm-debuginfo-3.0.19-bp154.2.5.1.ppc64le.rpm orthanc-gdcm-1.5-bp154.2.3.1.ppc64le.rpm orthanc-gdcm-debuginfo-1.5-bp154.2.3.1.ppc64le.rpm orthanc-gdcm-debugsource-1.5-bp154.2.3.1.ppc64le.rpm orthanc-webviewer-2.8-bp154.2.3.1.ppc64le.rpm orthanc-webviewer-debuginfo-2.8-bp154.2.3.1.ppc64le.rpm orthanc-webviewer-debugsource-2.8-bp154.2.3.1.ppc64le.rpm orthanc-1.11.2-bp154.2.3.1.ppc64le.rpm orthanc-debuginfo-1.11.2-bp154.2.3.1.ppc64le.rpm orthanc-debugsource-1.11.2-bp154.2.3.1.ppc64le.rpm orthanc-devel-1.11.2-bp154.2.3.1.ppc64le.rpm orthanc-source-1.11.2-bp154.2.3.1.ppc64le.rpm gdcm-3.0.19-bp154.2.5.1.s390x.rpm gdcm-applications-3.0.19-bp154.2.5.1.s390x.rpm gdcm-applications-debuginfo-3.0.19-bp154.2.5.1.s390x.rpm gdcm-debuginfo-3.0.19-bp154.2.5.1.s390x.rpm gdcm-debugsource-3.0.19-bp154.2.5.1.s390x.rpm gdcm-devel-3.0.19-bp154.2.5.1.s390x.rpm gdcm-examples-3.0.19-bp154.2.5.1.s390x.rpm libgdcm3_0-3.0.19-bp154.2.5.1.s390x.rpm libgdcm3_0-debuginfo-3.0.19-bp154.2.5.1.s390x.rpm libsocketxx1_2-3.0.19-bp154.2.5.1.s390x.rpm libsocketxx1_2-debuginfo-3.0.19-bp154.2.5.1.s390x.rpm python3-gdcm-3.0.19-bp154.2.5.1.s390x.rpm python3-gdcm-debuginfo-3.0.19-bp154.2.5.1.s390x.rpm orthanc-gdcm-1.5-bp154.2.3.1.s390x.rpm orthanc-gdcm-debuginfo-1.5-bp154.2.3.1.s390x.rpm orthanc-gdcm-debugsource-1.5-bp154.2.3.1.s390x.rpm orthanc-webviewer-2.8-bp154.2.3.1.s390x.rpm orthanc-webviewer-debuginfo-2.8-bp154.2.3.1.s390x.rpm orthanc-webviewer-debugsource-2.8-bp154.2.3.1.s390x.rpm openSUSE-2022-10171 important openSUSE Backports SLE-15-SP4 Update This update for pdns-recursor fixes the following issues: pdns-recursor was updated to 4.6.3: * fixes incomplete exception handling related to protobuf message generation (boo#1202664, CVE-2022-37428) pdns-recursor was updated to 4.6.2: * Reject non-apex NSEC(3)s that have both the NS and SOA bits set * A CNAME answer on DS query should abort DS retrieval * Allow disabling of processing the root hints * If we get NODATA on an AAAA in followCNAMERecords, try native dns64 pdns-recursor-4.6.3-bp154.2.3.1.src.rpm pdns-recursor-4.6.3-bp154.2.3.1.x86_64.rpm pdns-recursor-debuginfo-4.6.3-bp154.2.3.1.x86_64.rpm pdns-recursor-debugsource-4.6.3-bp154.2.3.1.x86_64.rpm pdns-recursor-4.6.3-bp154.2.3.1.aarch64.rpm pdns-recursor-debuginfo-4.6.3-bp154.2.3.1.aarch64.rpm pdns-recursor-debugsource-4.6.3-bp154.2.3.1.aarch64.rpm pdns-recursor-4.6.3-bp154.2.3.1.ppc64le.rpm pdns-recursor-debuginfo-4.6.3-bp154.2.3.1.ppc64le.rpm pdns-recursor-debugsource-4.6.3-bp154.2.3.1.ppc64le.rpm openSUSE-2022-10143 moderate openSUSE Backports SLE-15-SP4 Update This update for libdnf, librepo fixes the following issues: libdnf was updated to 0.65.0: + Add support for excluding packages to be installed as weak dependencies + Add support for autodetecting packages to be excluded from being installed as weak dependencies + Turn off strict validation of modulemd documents (rh#2004853, rh#2007166, rh#2007167) + Implement logic for demodularization of modular rpms (rh#1805260) + DnfContext: fix handling of default module profiles + ModuleMetadata: gracefully handle modules with no defaults + Remove failovermethod config option (rh#1961083) Update to 0.63.1 + ModuleProfile: add isDefault() + ModulePackage: add getDefaultProfile() + Add new dnf_context_module_install() C API + Fix a crash when [media] section in .treeinfo is missing for bootable media (rh#1946024) + Add hy_query_get_advisory_pkgs to C API (rh#1960561) + Add dnf_advisorypkg_get_advisory() + DNF does not fail on non UTF-8 file names in a package (rh#1893176) + Improve error-reporting for modular functions Update to 0.62.0 + Change order of TransactionItemReason (rh#1921063) + Add two new comperators for security filters (rh#1918475) + Apply security filters for candidates with lower priority + Fix: Goal - translation of messages in global maps + Enhance description of modular solvables + Improve performance for module query + Change mechanism of modular errata applicability (rh#1804234) + dnf_transaction_commit(): Remove second call to rpmtsSetVSFlags + Fix a couple of memory leaks + Fix: Setting of librepo handle in newHandle function + Remove failsafe data when module is not enabled (rh#1847035) + Expose librepo's checksum functions via SWIG + Fix: Mising check of "hy_split_nevra()" return code + Do not allow 1 as installonly_limit value (rh#1926261) + Fix check whether the subkey can be used for signing + Hardening: add signature check with rpmcliVerifySignatures (CVE-2021-3445, CVE-2021-3421, CVE-2021-20271, rh#1932079, rh#1932089, rh#1932090, boo#1183779) + Add a config option sslverifystatus, defaults to false (rh#1814383) + [context] Add API for distro-sync - Fix dependency for repo-config-zypp subpackage to work with SLE Update to 0.60.0 + Fix repo.fresh() implementation + Fix: Fully set ssl in newHandle function + [conf] Add options for working with certificates used with proxy + Apply proxy certificate options + lock: Switch return-if-fail to assert to quiet gcc -fanalyzer + build-sys: Clean up message about Python bindings + Modify module NSVCA parsing - context definition (rh#1926771) + [context] Fix: dnf_package_is_installonly (rh#1928056) + Fix problematic language + Add getApplicablePackages to advisory and isApplicable to advisorymodule + Keep isAdvisoryApplicable to preserve API + Run ModulePackageContainerTest tests in tmpdir, merge interdependent + [context] Support config file option "proxy_auth_method", defaults "any" + Properly handle multiple collections in updateinfo.xml (rh#1804234) + Support main config file option "installonlypkgs" + Support main config file option "protected_packages" - Add repo-config-zypp subpackage to allow easily using Zypper repository configuration - Add patch to move directory for dnf state data to /usr/lib/sysimage Update to version 0.58.0 + Option: Add reset() method + Add OptionBinds::getOption() method + [context] Add dnf_repo_conf_from_gkeyfile() and dnf_repo_conf_reset() + [context] Add support for options: minrate, throttle, bandwidth, timeout + [context] Remove g_key_file_get_string() from dnf_repo_set_keyfile_data() + Allow loading ext metadata even if only cache (solv) is present + Add ASAN_OPTIONS for test_libdnf_main + [context,API] Functions for accessing main/global configuration options + [context,API] Function for adding setopt + Add getter for modular obsoletes from ModuleMetadata + Add ModulePackage.getStaticContext() and getRequires() + Add compatible layer for MdDocuments v2 + Fix modular queries with the new solver + Improve formatting of error string for modules + Change mechanism of module conflicts + Fix load/update FailSafe Update to version 0.55.2 + Improve performance of query installed() and available() + Swdb: Add a method to get the current transaction + [modules] Add special handling for src artifacts (rh#1809314) + Better msgs if "basecachedir" or "proxy_password" isn't set (rh#1888946) + Add new options module_stream_switch + Support allow_vendor_change setting in dnf context API Update to version 0.55.0 + Add vendor to dnf API (rh#1876561) + Add formatting function for solver error + Add error types in ModulePackageContainer + Implement module enable for context part + Improve string formatting for translation + Remove redundant printf and change logging info to notice (rh#1827424) + Add allow_vendor_change option (rh#1788371) (rh#1788371) Update to version 0.54.2 + history: Fix dnf history rollback when a package was removed (rh#1683134) + Add support for HY_GT, HY_LT in query nevra_strict + Fix parsing empty lines in config files + Accept '==' as an operator in reldeps (rh#1847946) + Add log file level main config option (rh#1802074) + Add protect_running_kernel configuration option (rh#1698145) + Context part of libdnf cannot assume zchunk is on (rh#1851841, rh#1779104) + Fix memory leak of resultingModuleIndex and handle g_object refs + Redirect librepo logs to libdnf logs with different source + Add hy_goal_lock + Enum/String conversions for Transaction Store/Replay + utils: Add a method to decode URLs + Unify hawkey.log line format with the rest of the logs Update to version 0.48.0 + Add prereq_ignoreinst & regular_requires properties for pkg (rh#1543449) + Reset active modules when no module enabled or default (rh#1767351) + Add comment option to transaction (rh#1773679) + Failing to get module defauls is a recoverable error + Baseurl is not exclusive with mirrorlist/metalink (rh#1775184) + Add new function to reset all modules in C API (dnf_context_reset_all_modules) + [context] Fix to preserve additionalMetadata content (rh#1808677) + Fix filtering of DepSolvables with source rpms (rh#1812596) + Add setter for running kernel protection setting + Handle situation when an unprivileged user cannot create history database (rh#1634385) + Add query filter: latest by priority + Add DNF_NO_PROTECTED flag to allow empty list of protected packages + Remove 'dim' option from terminal colors to make them more readable (rh#1807774, rh#1814563) + [context] Error when main config file can't be opened (rh#1794864) + [context] Add function function dnf_context_is_set_config_file_path + swdb: Catch only SQLite3 exceptions and simplify the messages + MergedTransaction list multiple comments (rh#1773679) + Modify CMake to pull *.po files from weblate + Optimize DependencyContainer creation from an existing queue + fix a memory leak in dnf_package_get_requires() + Fix memory leaks on g_build_filename() + Fix memory leak in dnf_context_setup() + Add `hy_goal_favor` and `hy_goal_disfavor` + Define a cleanup function for `DnfPackageSet` + dnf-repo: fix dnf_repo_get_public_keys double-free + Do not cache RPMDB + Use single-quotes around string literals used in SQL statements + SQLite3: Do not close the database if it wasn't opened (rh#1761976) + Don't create a new history DB connection for in-memory DB + transaction/Swdb: Use a single logger variable in constructor + utils: Add a safe version of pathExists() + swdb: Handle the case when pathExists() fails on e.g. permission + Repo: prepend "file://" if a local path is used as baseurl + Move urlEncode() to utils + utils: Add 'exclude' argument to urlEncode() + Encode package URL for downloading through librepo (rh#1817130) + Replace std::runtime_error with libdnf::RepoError + Fixes and error handling improvements of the File class + [context] Use ConfigRepo for gpgkey and baseurl (rh#1807864) + [context] support "priority" option in .repo config file (rh#1797265) - Add patch to support monitoring non-bdb rpmdb variants Update to version 0.45.0 + Config options: only first empty value clears existing (rh#1788154) + Make parsing of reldeps more strict (rh#1788107) + [context] Support repositories defined in main configuration file + Fix filtering packages by advisory when more versions and arches are available (rh#1770125) + Add expanding solvable provides for dependency matching (rh#1534123) + DnfRepo: fix module_hotfixes keyfile priority level + Add custom exceptions to libdnf interface + [conf] Set useful default colors when color is enabled + Port to libmodulemd-2 API (rh#1693683) Update to version 0.43.1 + Allow excluding packages with "excludepkgs" and globs + Add two new query filters: obsoletes_by_priority, upgrades_by_priority + [context] Use installonly_limit from global config (rh#1256108) + [context] Add API to get/set "install_weak_deps" + [context] Add wildcard support for repo_id in dnf_context_repo_enable/disable (rh#1781420) + [context] Adds support for includepkgs in repository configuration. + [context] Adds support for excludepkgs, exclude, includepkgs, and disable_excludes in main configuration. + [context] Added function dnf_transaction_set_dont_solve_goal + [context] Added functions dnf_context_get/set_config_file_path + [context] Respect "plugins" global conf value + [context] Add API to disable/enable plugins - Update to version 0.39.1 + Skip invalid key files in "/etc/pki/rpm-gpg" with warning (rh#1644040) + Enable timestamp preserving for downloaded data (rh#1688537) + Set default to skip_if_unavailable=false (rh#1679509) + Add configuration option skip_if_unavailable (rh#1689931) + Fix 'database is locked' error (rh#1631533) + Replace the 'Failed to synchronize cache' message (rh#1712055) + Fix 'no such table: main.trans_cmdline' error (rh#1596540) + Add support of modular FailSafe (rh#1623128) (temporarily with warnings instead of errors when installing modular RPMs without modular metadata) + Add support of DNF main config file in context; used by PackageKit and microdnf (rh#1689331) + Exit gpg-agent after repokey import (rh#1650266) + Don't disable nonexistent but required repositories (rh#1689331) + Fix toString() to not insert [] (rh#1584442) + Ignore trailing blank lines in config (rh#1722493) + Fix handling large number of filenames on input (rh#1690915) + Detect armv7 with crypto extension only on arm version >= 8 + A new standardized User-Agent field consisting of the libdnf and OS version (including the variant) (rh#1156007) + Add basic countme support (rh#1647454) + Fix crash in PackageKit (rh#1636803) + Do not create @System.solv files (rh#1707995) + Set LRO_CACHEDIR so zchunk works again (rh#1739867) + Don't reinstall modified packages with the same NEVRA (rh#1644241) + Fix bug when moving temporary repository metadata after download (rh#1700341) + Improve detection of extras packages by comparing (name, arch) pair instead of full NEVRA (RhBuh:1684517) + Improve handling multilib packages in the history command (rh#1728637) + Repo download: use full error description into the exception text (rh#1741442) + Properly close hawkey.log (rh#1594016) + Fix dnf updateinfo --update to not list advisories for packages updatable only from non-enabled modules + Apply modular filtering by package name (rh#1702729) + Fully enable the modular fail safe mechanism (rh#1616167) + Use more descriptive message when failed to retrieve GPG key (rh#1605117) + Add removeMetadataTypeFromDownload function to the API + Context part of libdnf can now read vars (urlvars) from dirs and environment + Throw exception immediately if file cannot be opened + Add test when there is no primary metadata in compatible format (rh#1744960) + Don't abort on rpmdb checksum calculation failure + Enable module dependency trees when using set_modules_enabled_by_pkgset() (rh#1762314) + New method "Query::filterSubject()", replaces Solution::getBestSolution() + The Solution class was removed + Add query argument into get_best_query and get_best_solution + Add module reset function into dnf_context + Add method to get all repository metadata locations + Catch NoModuleException in case of not existent value was used in persistor (rh#1761773) + Handle NoModuleException in dnf_context_reset_modules (rh#1767453) + Report reason how package was excluded (rh#1649754) + Fix Arm detection improvements (rh#1691430) + Set skip_if_unavailable to true for all media repos (rh#1716067) + Only the pkg knows whether it is local or remote (rh#1734350, rh#1717865) + Don't use repo's packages as path to local pkgs (rh#1734350, rh#1717865) Update to version 0.33.0 + Import subkeys when importing GPG keys (gh#projectatomic/rpm-ostree#1094) + [module] Fix swig binding for getModuleDependencies() (rh#1704871) + [module] Prevent std::string from nullptr (gh#rpm-software-management/libdnf#717) + Reintroduce hawkey.Repo as deprecated class - Add patch for SLE to temporarily drop support for Module advisories Update to version 0.31.0 + Installroot now requires absolute path + Support "_none_" value for repo option "proxy" (rh#1680272) + Add support for Module advisories + Add support for xml:base attribute from primary.xml (rh#1691315) + Fix detection of Platform ID for modules (rh#1688462) Update to version 0.28.1 + Enhance modular solver to handle enabled and default module streams differently (rh#1648839) + Add support of wild cards for modules (rh#1644588) + Exclude module pkgs that have conflict + Enhance config parser to preserve order of data, and keep comments and format + Improve ARM detection + Add support for SHA-384 + Return empty query if incorrect reldep (rh#1687135) + ConfigParser: Improve compatibility with Python ConfigParser and dnf-plugin-spacewalk (rh#1692044) + ConfigParser: Unify default set of string represenation of boolean values + Fix segfault when interrupting dnf process (rh#1610456) - Switch default reposdir to /etc/dnf/repos.d Rebase to version 0.24.1 + Add support for RH/Fedora modules + Add plugin support (unstable API) + Add zchunk support + Migrate from YUMDB to new SWDB + Rewrite into C++ - Drop Python 2 bindings - Refresh patch to fix building against static libsolvext - Switch to full author identities - Ensure SUSE kernel packages are recognized properly Update to version 0.11.1: + Make NEVRA parsing stricter + Fix segfault with queries if epoch isn't set + Improve performance of queries of solvables Update to version 0.11.0: + Improves query performance with 'name' and 'arch' filters. Also 'nevra' filter will now handle string with or without 'epoch'. + For Python bindings, it renames 'NEVRA._has_just_name()' to 'NEVRA.has_just_name()' as it's now implemented in the C API. - Fix building on openSUSE against static libsolvext librepo was updated to 1.14.2: + Recover from fsync fail on read-only filesystem (rh#1956361) + Reduce time to load metadata + Fix resource leaks + Fix memory leaks Update to 1.14.0 + Fix LRO_PRESERVETIME behavior + Support multiple checksums in xattr (rh#1931904) + Return "calculated" checksum if requested w/caching + Fix lr_yum_download_url in case lr_handle is NULL Update to 1.13.0 + Fix the key string parsing in url_substitution + Fix memory leak in 'fastestmirror' + Download whole file when server doesn't support ranges (rh#1886706) + Various fixes for mirrors without ranges support and zchunk + Add support for pkcs11 certificate and key for repository authorization (rh#1859495) + Fix lr_perform() - Avoid 100% CPU usage + Drop Python 2 support + Add support for working with certificates used with proxy (rh#1920991) Upgrade to 1.12.1 + Validate path read from repomd.xml (rh#1868639, CVE-2020-14352) Upgrade to 1.12.0 + Prefer mirrorlist/metalink over baseurl (rh#1775184) + Decode package URL when using for local filename (rh#1817130) + Fix memory leak in lr_download_metadata() and lr_yum_download_remote() + Download sources work when at least one of specified is working (rh#1775184) Upgrade to 1.11.2 + Fix calling Python API without holding GIL (rh#1788918) + Do not unref LrErr_Exception on exit (rh#1778854) + Cleanup zchunk-related error messages (rh#1790625) - Fix typo in changes entry about version update to 1.11.1 Upgrade to 1.11.1 + Create a directory for gpg sockets in /run/user/ (rh#1769831, rh#1771012) Upgrade to 1.11.0 + Define LRO_SUPPORTS_CACHEDIR only with zchunk (rh#1726141) + Allow to use mirrors multiple times for a target (rh#1678588) + Allow to try baseurl multiple times (rh#1678588) + Remove librepo xattr when no file descriptor (rh#1690894) + Fix verification of checksum from file attr (rh#1700341) + Rephrase repository GPG check error message (rh#1741442) + Add sleep when all mirrors were tried (rh#1741931) + Raise logging level of error messages (rh#1737709) + retry mirrorlist/metalink downloads + Fix lr_url_substitute() and add ${variable} support + Add support for one-time URL flags + Fix API - LrHandleOption enum - LRO_ONETIMEFLAG (rh#1761779) Upgrade to 1.10.3 + Exit gpg-agent after repokey import (rh#1650266) + Make sure to check next transfer if current zck transfer already exists (rh#1706627) Upgrade to 1.10.2 + Fix librepo isn't able to load zchunk files from next server on failure (rh#1706321) Upgrade to 1.10.1 + Clean up target->curl_handle rather than target->handle (rh#1694411) + Add an option to preserve timestamps of the downloaded files (rh#1688537) + Fix fetching repositories supplied by SUSE Customer Center + [tests] Wait for server to start instead of doing arbitrary sleep - Fixed fetching zck-compressed repos (rh#1694411) Upgrade to 1.9.6 + Fix progress reporting with zchunk files + Reduce download delays by using still_running correctly + Improve error handling, cleanup + Simplified lr_perform()'s loop to prevent busy wait + Require libcurl >= 7.28.0 Upgrade to 1.9.3 + Replace expat with libxml2 + Support using python-gpg instead of pygpgme + Fix major performance regression with libcurl-7.61.1 + Add zchunk support - Fix RPM group and description for Python 3 subpackage - Drop Python 2 subpackage - Fix RPM groups. Update descriptions so that librepo0 (which is going to be installed most of the time) has something halfway useful. Upgrade to 1.8.1 + Fix memory leaks in Python bindings (gh#rpm-software-management/librepo#83) + Fix HTTP header checking to work with proxies (gh#rpm-software-management/librepo#86) + Change connection and low-speed default timeouts to sync with DNF/Yum + Fix max download speed from repo (rh#1227921) - Update to 1.7.20 hawkey-man-0.65.0-bp154.2.1.noarch.rpm libdnf-0.65.0-bp154.2.1.src.rpm libdnf-devel-0.65.0-bp154.2.1.x86_64.rpm libdnf-repo-config-zypp-0.65.0-bp154.2.1.x86_64.rpm libdnf2-0.65.0-bp154.2.1.x86_64.rpm python3-hawkey-0.65.0-bp154.2.1.x86_64.rpm python3-libdnf-0.65.0-bp154.2.1.x86_64.rpm librepo-1.14.2-bp154.2.1.src.rpm librepo-debuginfo-1.14.2-bp154.2.1.x86_64.rpm librepo-debugsource-1.14.2-bp154.2.1.x86_64.rpm librepo-devel-1.14.2-bp154.2.1.x86_64.rpm librepo0-1.14.2-bp154.2.1.x86_64.rpm librepo0-debuginfo-1.14.2-bp154.2.1.x86_64.rpm python3-librepo-1.14.2-bp154.2.1.x86_64.rpm python3-librepo-debuginfo-1.14.2-bp154.2.1.x86_64.rpm libdnf-devel-0.65.0-bp154.2.1.i586.rpm libdnf-repo-config-zypp-0.65.0-bp154.2.1.i586.rpm libdnf2-0.65.0-bp154.2.1.i586.rpm python3-hawkey-0.65.0-bp154.2.1.i586.rpm python3-libdnf-0.65.0-bp154.2.1.i586.rpm librepo-debuginfo-1.14.2-bp154.2.1.i586.rpm librepo-debugsource-1.14.2-bp154.2.1.i586.rpm librepo-devel-1.14.2-bp154.2.1.i586.rpm librepo0-1.14.2-bp154.2.1.i586.rpm librepo0-debuginfo-1.14.2-bp154.2.1.i586.rpm python3-librepo-1.14.2-bp154.2.1.i586.rpm python3-librepo-debuginfo-1.14.2-bp154.2.1.i586.rpm libdnf-devel-0.65.0-bp154.2.1.aarch64.rpm libdnf-repo-config-zypp-0.65.0-bp154.2.1.aarch64.rpm libdnf2-0.65.0-bp154.2.1.aarch64.rpm python3-hawkey-0.65.0-bp154.2.1.aarch64.rpm python3-libdnf-0.65.0-bp154.2.1.aarch64.rpm librepo-debuginfo-1.14.2-bp154.2.1.aarch64.rpm librepo-debugsource-1.14.2-bp154.2.1.aarch64.rpm librepo-devel-1.14.2-bp154.2.1.aarch64.rpm librepo0-1.14.2-bp154.2.1.aarch64.rpm librepo0-debuginfo-1.14.2-bp154.2.1.aarch64.rpm python3-librepo-1.14.2-bp154.2.1.aarch64.rpm python3-librepo-debuginfo-1.14.2-bp154.2.1.aarch64.rpm libdnf-devel-0.65.0-bp154.2.1.ppc64le.rpm libdnf-repo-config-zypp-0.65.0-bp154.2.1.ppc64le.rpm libdnf2-0.65.0-bp154.2.1.ppc64le.rpm python3-hawkey-0.65.0-bp154.2.1.ppc64le.rpm python3-libdnf-0.65.0-bp154.2.1.ppc64le.rpm librepo-debuginfo-1.14.2-bp154.2.1.ppc64le.rpm librepo-debugsource-1.14.2-bp154.2.1.ppc64le.rpm librepo-devel-1.14.2-bp154.2.1.ppc64le.rpm librepo0-1.14.2-bp154.2.1.ppc64le.rpm librepo0-debuginfo-1.14.2-bp154.2.1.ppc64le.rpm python3-librepo-1.14.2-bp154.2.1.ppc64le.rpm python3-librepo-debuginfo-1.14.2-bp154.2.1.ppc64le.rpm libdnf-devel-0.65.0-bp154.2.1.s390x.rpm libdnf-repo-config-zypp-0.65.0-bp154.2.1.s390x.rpm libdnf2-0.65.0-bp154.2.1.s390x.rpm python3-hawkey-0.65.0-bp154.2.1.s390x.rpm python3-libdnf-0.65.0-bp154.2.1.s390x.rpm librepo-debuginfo-1.14.2-bp154.2.1.s390x.rpm librepo-debugsource-1.14.2-bp154.2.1.s390x.rpm librepo-devel-1.14.2-bp154.2.1.s390x.rpm librepo0-1.14.2-bp154.2.1.s390x.rpm librepo0-debuginfo-1.14.2-bp154.2.1.s390x.rpm python3-librepo-1.14.2-bp154.2.1.s390x.rpm python3-librepo-debuginfo-1.14.2-bp154.2.1.s390x.rpm openSUSE-2022-10173 moderate openSUSE Backports SLE-15-SP4 Update This update for orthanc-dicomweb fixes the following issues: Version 1.10 * bugfix release, see 'NEWS' for details orthanc-dicomweb-1.10-bp154.2.3.1.src.rpm orthanc-dicomweb-1.10-bp154.2.3.1.x86_64.rpm orthanc-dicomweb-1.10-bp154.2.3.1.aarch64.rpm orthanc-dicomweb-1.10-bp154.2.3.1.ppc64le.rpm openSUSE-2022-10146 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 106.0.5249.119 (boo#1204223): * CVE-2022-3445: Use after free in Skia * CVE-2022-3446: Heap buffer overflow in WebSQL * CVE-2022-3447: Inappropriate implementation in Custom Tabs * CVE-2022-3448: Use after free in Permissions API * CVE-2022-3449: Use after free in Safe Browsing * CVE-2022-3450: Use after free in Peer Connection chromedriver-106.0.5249.119-bp154.2.35.1.x86_64.rpm chromium-106.0.5249.119-bp154.2.35.1.src.rpm chromium-106.0.5249.119-bp154.2.35.1.x86_64.rpm chromedriver-106.0.5249.119-bp154.2.35.1.aarch64.rpm chromium-106.0.5249.119-bp154.2.35.1.aarch64.rpm openSUSE-2022-10147 important openSUSE Backports SLE-15-SP4 Update This update for libosip2 fixes the following issues: - CVE-2022-41550: Fixed an integer overflow in the header parser (boo#1204225) libosip2-12-5.2.1-bp154.2.3.1.x86_64.rpm libosip2-5.2.1-bp154.2.3.1.src.rpm libosip2-devel-5.2.1-bp154.2.3.1.x86_64.rpm libosip2-12-5.2.1-bp154.2.3.1.i586.rpm libosip2-devel-5.2.1-bp154.2.3.1.i586.rpm libosip2-12-5.2.1-bp154.2.3.1.aarch64.rpm libosip2-devel-5.2.1-bp154.2.3.1.aarch64.rpm libosip2-12-5.2.1-bp154.2.3.1.ppc64le.rpm libosip2-devel-5.2.1-bp154.2.3.1.ppc64le.rpm libosip2-12-5.2.1-bp154.2.3.1.s390x.rpm libosip2-devel-5.2.1-bp154.2.3.1.s390x.rpm openSUSE-2022-10217 moderate openSUSE Backports SLE-15-SP4 Update This update for fwts fixes the following issues: Update to version 22.09.00: * lib: fwts_version.h - update to V22.09.00 * debian: update changelog * acpi: iort: remove redundant code * fwts-test: add regression test for SVKL * acpi: svkl: add test for SVKL table (mantis 2162) * acpi: nhltdump: add endpoint discriptor string description * acpi: nhltdump: add dumping nhlt table for audio configurations * acpi: fadt: get _CST c2 c3 for p_lvl2 and p_lvl3 tests * uefi: securebootcert: fix the attribute set for AuditMode and DeployedMode * lib: acpi: update battery charge limiting state for _BST * acpi: dbg2: update the subtype for DBG2 table fwts-22.09.00-bp154.2.9.1.src.rpm fwts-22.09.00-bp154.2.9.1.x86_64.rpm fwts-debuginfo-22.09.00-bp154.2.9.1.x86_64.rpm fwts-debugsource-22.09.00-bp154.2.9.1.x86_64.rpm fwts-22.09.00-bp154.2.9.1.i586.rpm fwts-debuginfo-22.09.00-bp154.2.9.1.i586.rpm fwts-debugsource-22.09.00-bp154.2.9.1.i586.rpm fwts-22.09.00-bp154.2.9.1.aarch64.rpm fwts-debuginfo-22.09.00-bp154.2.9.1.aarch64.rpm fwts-debugsource-22.09.00-bp154.2.9.1.aarch64.rpm openSUSE-2022-10194 moderate openSUSE Backports SLE-15-SP4 Update This update for ghostwriter fixes the following issues: New upstream release, update to version 2.1.6. For list of fixes see: - https://github.com/KDE/ghostwriter/releases/tag/2.1.6. - https://github.com/wereturtle/ghostwriter/releases/tag/2.1.4. - https://github.com/wereturtle/ghostwriter/releases/tag/2.1.3. - https://github.com/wereturtle/ghostwriter/releases/tag/2.1.2. - https://github.com/wereturtle/ghostwriter/releases/tag/2.1.1. ghostwriter-2.1.6-bp154.2.3.1.src.rpm ghostwriter-2.1.6-bp154.2.3.1.x86_64.rpm ghostwriter-lang-2.1.6-bp154.2.3.1.noarch.rpm ghostwriter-2.1.6-bp154.2.3.1.aarch64.rpm openSUSE-2022-10161 low openSUSE Backports SLE-15-SP4 Update This update provides the certbot-systemd-timer package that was dropped by mistake. certbot-systemd-timer-0.0-bp154.2.1.noarch.rpm certbot-systemd-timer-0.0-bp154.2.1.src.rpm openSUSE-2022-10166 moderate openSUSE Backports SLE-15-SP4 Update This recommended update addresses the following issue in sendxmpp: - The package did not correctly specify the Perl IO::Socket::SSL run-time dependency (boo#1204339) sendxmpp-1.24-bp154.3.3.1.noarch.rpm sendxmpp-1.24-bp154.3.3.1.src.rpm openSUSE-2022-10184 moderate openSUSE Backports SLE-15-SP4 Update This update for coturn fixes the following issues: - Drop @privileged SystemCallFilter, can prevent service from starting (status=31/SYS) coturn-4.5.2-bp154.2.3.1.src.rpm coturn-4.5.2-bp154.2.3.1.x86_64.rpm coturn-devel-4.5.2-bp154.2.3.1.x86_64.rpm coturn-utils-4.5.2-bp154.2.3.1.x86_64.rpm coturn-4.5.2-bp154.2.3.1.aarch64.rpm coturn-devel-4.5.2-bp154.2.3.1.aarch64.rpm coturn-utils-4.5.2-bp154.2.3.1.aarch64.rpm coturn-4.5.2-bp154.2.3.1.ppc64le.rpm coturn-devel-4.5.2-bp154.2.3.1.ppc64le.rpm coturn-utils-4.5.2-bp154.2.3.1.ppc64le.rpm coturn-4.5.2-bp154.2.3.1.s390x.rpm coturn-devel-4.5.2-bp154.2.3.1.s390x.rpm coturn-utils-4.5.2-bp154.2.3.1.s390x.rpm openSUSE-2022-10168 important openSUSE Backports SLE-15-SP4 Update This update for exim fixes the following issues: - CVE-2022-3559: Fixed a use after free in processing of the component Regex Handler (boo#1204427, Bug 2915) exim-4.94.2-bp154.2.3.1.src.rpm exim-4.94.2-bp154.2.3.1.x86_64.rpm eximon-4.94.2-bp154.2.3.1.x86_64.rpm eximstats-html-4.94.2-bp154.2.3.1.x86_64.rpm exim-4.94.2-bp154.2.3.1.aarch64.rpm eximon-4.94.2-bp154.2.3.1.aarch64.rpm eximstats-html-4.94.2-bp154.2.3.1.aarch64.rpm exim-4.94.2-bp154.2.3.1.ppc64le.rpm eximon-4.94.2-bp154.2.3.1.ppc64le.rpm eximstats-html-4.94.2-bp154.2.3.1.ppc64le.rpm exim-4.94.2-bp154.2.3.1.s390x.rpm eximon-4.94.2-bp154.2.3.1.s390x.rpm eximstats-html-4.94.2-bp154.2.3.1.s390x.rpm openSUSE-2022-10174 moderate openSUSE Backports SLE-15-SP4 Update This update for akonadi-server fixes the following issues: - Fall back to sqlite backend if the mysql backend is not available. akonadi-server-21.12.3-bp154.2.3.1.src.rpm akonadi-server-21.12.3-bp154.2.3.1.x86_64.rpm akonadi-server-apparmor-21.12.3-bp154.2.3.1.x86_64.rpm akonadi-server-devel-21.12.3-bp154.2.3.1.x86_64.rpm akonadi-server-lang-21.12.3-bp154.2.3.1.noarch.rpm akonadi-server-sqlite-21.12.3-bp154.2.3.1.x86_64.rpm libKF5AkonadiAgentBase5-21.12.3-bp154.2.3.1.x86_64.rpm libKF5AkonadiCore5-21.12.3-bp154.2.3.1.x86_64.rpm libKF5AkonadiPrivate5-21.12.3-bp154.2.3.1.x86_64.rpm libKF5AkonadiWidgets5-21.12.3-bp154.2.3.1.x86_64.rpm libKF5AkonadiXml5-21.12.3-bp154.2.3.1.x86_64.rpm akonadi-server-21.12.3-bp154.2.3.1.aarch64.rpm akonadi-server-apparmor-21.12.3-bp154.2.3.1.aarch64.rpm akonadi-server-devel-21.12.3-bp154.2.3.1.aarch64.rpm akonadi-server-sqlite-21.12.3-bp154.2.3.1.aarch64.rpm libKF5AkonadiAgentBase5-21.12.3-bp154.2.3.1.aarch64.rpm libKF5AkonadiCore5-21.12.3-bp154.2.3.1.aarch64.rpm libKF5AkonadiPrivate5-21.12.3-bp154.2.3.1.aarch64.rpm libKF5AkonadiWidgets5-21.12.3-bp154.2.3.1.aarch64.rpm libKF5AkonadiXml5-21.12.3-bp154.2.3.1.aarch64.rpm akonadi-server-21.12.3-bp154.2.3.1.ppc64le.rpm akonadi-server-apparmor-21.12.3-bp154.2.3.1.ppc64le.rpm akonadi-server-devel-21.12.3-bp154.2.3.1.ppc64le.rpm akonadi-server-sqlite-21.12.3-bp154.2.3.1.ppc64le.rpm libKF5AkonadiAgentBase5-21.12.3-bp154.2.3.1.ppc64le.rpm libKF5AkonadiCore5-21.12.3-bp154.2.3.1.ppc64le.rpm libKF5AkonadiPrivate5-21.12.3-bp154.2.3.1.ppc64le.rpm libKF5AkonadiWidgets5-21.12.3-bp154.2.3.1.ppc64le.rpm libKF5AkonadiXml5-21.12.3-bp154.2.3.1.ppc64le.rpm akonadi-server-21.12.3-bp154.2.3.1.s390x.rpm akonadi-server-apparmor-21.12.3-bp154.2.3.1.s390x.rpm akonadi-server-devel-21.12.3-bp154.2.3.1.s390x.rpm akonadi-server-sqlite-21.12.3-bp154.2.3.1.s390x.rpm libKF5AkonadiAgentBase5-21.12.3-bp154.2.3.1.s390x.rpm libKF5AkonadiCore5-21.12.3-bp154.2.3.1.s390x.rpm libKF5AkonadiPrivate5-21.12.3-bp154.2.3.1.s390x.rpm libKF5AkonadiWidgets5-21.12.3-bp154.2.3.1.s390x.rpm libKF5AkonadiXml5-21.12.3-bp154.2.3.1.s390x.rpm openSUSE-2022-10172 moderate openSUSE Backports SLE-15-SP4 Update This update for tryton, trytond, trytond_country, trytond_purchase, trytond_stock fixes the following issues: - trytond_country was updated to Version 6.0.3 - Bugfix Release - fixed a gnuhealth_setup issue (boo#1196857) - trytond_stock was updated to Version 6.0.17 - Bugfix Release - trytond_purchase was updated to Version 6.0.9 - Bugfix Release - trytond was updated to Version 6.0.22 - Bugfix Release - dependency on graphviz added - tryton was updated to Version 6.0.19 - Bugfix Release tryton-6.0.19-bp154.2.6.1.noarch.rpm tryton-6.0.19-bp154.2.6.1.src.rpm trytond-6.0.22-bp154.2.12.1.noarch.rpm trytond-6.0.22-bp154.2.12.1.src.rpm trytond_country-6.0.3-bp154.2.3.1.noarch.rpm trytond_country-6.0.3-bp154.2.3.1.src.rpm trytond_purchase-6.0.9-bp154.2.9.1.noarch.rpm trytond_purchase-6.0.9-bp154.2.9.1.src.rpm trytond_stock-6.0.17-bp154.2.12.1.noarch.rpm trytond_stock-6.0.17-bp154.2.12.1.src.rpm openSUSE-2022-10175 moderate openSUSE Backports SLE-15-SP4 Update This update for keepassxc fixes the following issues: keepassxc was updated to 2.7.3: - Changes - Enhance Tags Support and Add Saved Searches [#8435, #8607] - Significant improvements to entry preview panel [#7993] - Add password strength indicator to all password fields [#7885] - Limit zxcvbn entropy estimation length to 128 characters [#7748] - Try full URL path when fetching favicon [#8565] - Hide usernames in preview panel when hidden in entry view [#8608] - Enable dark title bar on windows when accent color is not used [#8498] - Add option to display passwords in color in preview panel [#7097] - Add XML Export option to GUI [#8524] - Increase entropy required for a "good" password rating to 75 [#8523] - Add shortcut to copy password with TOTP appended [#8443] - Show entry count in status bar [#8435] - Allow KeePassXC to be built without X11 [#8147] - Enable use of VivoKey Apex and Dangerous Things FlexSecure tokens [#8332] - Add setting for number of recent files [#8239] - Add Ctrl+Tab shortcut to cycle databases in unlock dialog [#8168] - Replace offensive words in eff_large.wordlist [#7968] - Auto-Type: PICKCHARS can specify attribute and ignore BEEP [#8118] - Linux: Add isHardwareKeySupported and refreshHardwareKeys to DBus methods [#8055] - Add config variable to specify default database file name [#8042] - Support numeric aware sorting on Windows and macOS [#8363] - CLI: Add db-edit command [#8400] - CLI: Add option to display all attributes with show command [#8256] - CLI: Show UUID and tags with show and clip commands [#8241] - Browser: Move socket into separate directory on Linux [#8030] - Browser: Add group setting to omit WWW subdomain when matching URLs [#7988] - FdoSecrets: Ask to unlock the database when creating items [#8022, #8028] - FdoSecrets: Skip entries in recycle bin when searching [#8021] - Fixes - Fix potential deadlock in UI when saving [#8606] - Fix newlines when copying notes from preview panel [#8542] - Fix dark mode detection on Linux [#8477] - Fix crash when deleting items in recycle bin while searching [#8117] - Fix crash when trying to close database during unlock [#8144] - Fix tabbing around the interface [#8435, #8520] - Fix OPVault import when there are multiple OTP fields [#8436] - Fix various Windows Hello bugs [#8354] - Fix use of Apple Watch for Quick Unlock [#8311] - Better handling of "Lock on Minimize" setting [#8202] - Check for write permission before entering portable mode [#8447] - Correct regex escape logic to prevent parse errors [#7778] - Normalize slashes and file case for last used databases [#7864, #7214] - Link ykcore against pthread [#7807] - Auto-Type: Fix menu entries in selection dialog on Windows [#7987] - Auto-Type: Fix use of modifiers under macOS [#8111] - CLI: Fix output when using clip with the -t flag [#8271] - Browser: Use asynchronous access confirm dialog [#8273] - Browser: Always send database locked/unlocked status [#8114] keepassxc-2.7.3-bp154.3.6.1.src.rpm keepassxc-2.7.3-bp154.3.6.1.x86_64.rpm keepassxc-lang-2.7.3-bp154.3.6.1.noarch.rpm keepassxc-2.7.3-bp154.3.6.1.aarch64.rpm keepassxc-2.7.3-bp154.3.6.1.s390x.rpm openSUSE-2022-10167 moderate openSUSE Backports SLE-15-SP4 Update This update for vorta fixes the following issues: - Fix vorta using datetime.fromisoformat which is not available in python3.6 (boo#1199080). vorta-0.8.3-bp154.2.3.1.noarch.rpm vorta-0.8.3-bp154.2.3.1.src.rpm openSUSE-2022-10180 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 107.0.5304.87 (boo#1204819) * CVE-2022-3723: Type Confusion in V8 Chromium 107.0.5304.68 (boo#1204732) * CVE-2022-3652: Type Confusion in V8 * CVE-2022-3653: Heap buffer overflow in Vulkan * CVE-2022-3654: Use after free in Layout * CVE-2022-3655: Heap buffer overflow in Media Galleries * CVE-2022-3656: Insufficient data validation in File System * CVE-2022-3657: Use after free in Extensions * CVE-2022-3658: Use after free in Feedback service on Chrome OS * CVE-2022-3659: Use after free in Accessibility * CVE-2022-3660: Inappropriate implementation in Full screen mode * CVE-2022-3661: Insufficient data validation in Extensions chromedriver-107.0.5304.87-bp154.2.40.1.x86_64.rpm chromedriver-debuginfo-107.0.5304.87-bp154.2.40.1.x86_64.rpm chromium-107.0.5304.87-bp154.2.40.1.src.rpm chromium-107.0.5304.87-bp154.2.40.1.x86_64.rpm chromium-debuginfo-107.0.5304.87-bp154.2.40.1.x86_64.rpm chromedriver-107.0.5304.87-bp154.2.40.1.aarch64.rpm chromedriver-debuginfo-107.0.5304.87-bp154.2.40.1.aarch64.rpm chromium-107.0.5304.87-bp154.2.40.1.aarch64.rpm chromium-debuginfo-107.0.5304.87-bp154.2.40.1.aarch64.rpm openSUSE-2022-10183 moderate openSUSE Backports SLE-15-SP4 Update This update for pyenv fixes the following issues: Update to 2.3.5 - Add CPython 3.10.7 by @edgarrmondragon in #2454 - Docs: update Fish PATH update by @gregorias in #2449 - Add CPython 3.7.14, 3.8.14 and 3.9.14 by @edgarrmondragon in #2456 - Update miniconda3-3.9-4.12.0 by @Tsuki in #2460 - Add CPython 3.11.0rc2 by @ViktorHaag in #2459 - Add patches for 3.7.14 to support Apple Silicon by @samdoran in #2463 - Add ability to easily skip all use of Homebrew by @samdoran in #2464 - Drop Travis integration by @sobolevn in #2468 - Build CPython 3.12+ with --with-dsymutil in MacOS by @native-api in #2471 - Add Pyston 2.3.5 by @scop in #2476 Full Changelog: https://github.com/pyenv/pyenv/compare/v2.3.4...v2.3.5 Update to 2.3.4 - Add CPython 3.11.0rc1 by @edgarrmondragon in #2434 - Add support for multiple versions in pyenv uninstall by @hardikpnsp in #2432 - Add micropython 1.18 and 1.19.1 by @dmitriy-serdyuk in #2443 - CI: support Micropython, deleted scripts; build with -v by @native-api in #2447 - Re-allow paths in .python-version while still preventing CVE-2022-35861 by @comrumino in #2442 - CI: Bump OS versions by @native-api in #2448 - Add Cinder 3.8 by @filips123 in #2433 - Add support for multiple versions in pyenv uninstall in #2432 - Add micropython 1.18 and 1.19.1 in #2443 - Add Cinder 3.8 in #2433 Update to 2.3.3 - Use version sort in pyenv versions by @fofoni in #2405 - Add CPython 3.11.0b4 by @majorgreys in #2411 - Python-build: Replace deprecated git protocol use with https in docs by @ssbarnea in #2413 - Fix relative path traversal due to using version string in path by @comrumino in #2412 - Allow pypy2 and pypy3 patching by @brogon in #2421, #2419 - Add CPython 3.11.0b5 by @edgarrmondragon in #2420 - Add GraalPython 22.2.0 by @msimacek in #2425 - Add CPython 3.10.6 by @edgarrmondragon in #2428 - Add CPython 3.11.0b4 by @majorgreys in #2411 - Replace deprecated git protocol use with https by @ssbarnea in docs #2413 - Fix relative path traversal due to using version string in path by @comrumino in #2412 - Fix patterns for pypy2.*/pypy3.* versions by @brogon in #2419 Update to 2.3.2 - Add CPython 3.11.0b2 by @saaketp in #2380 - Honor CFLAGS_EXTRA for MicroPython #2006 by @yggdr in #2007 - Add post-install checks for curses, ctypes, lzma, and tkinter by @aphedges in #2353 - Add CPython 3.11.0b3 by @edgarrmondragon in #2382 - Add flags for Homebrew into python-config --ldflags by @native-api in #2384 - Add CPython 3.10.5 by @illia-v in #2386 - Add Anaconda 2019.10, 2021.04, 2022.05; support Anaconda in add_miniconda.py by @native-api in #2385 - Add Pyston-2.3.4 by @dand-oss in #2390 - Update Anaconda3-2022.05 MacOSX arm64 md5 by @bkbncn in #2391 - Fix boo#1201582 to fix CVE-2022-35861 (from commit 22fa683, file pyenv-CVE-2022-35861.patch) Update to 2.3.0 - Bump openssl 1.1 to 1.1.1n for CPython 3.7 3.8 3.9 by @tuzi3040 in #2276 - Doc Fix: Escape a hash character causing unwanted GitHub Issue linking by @edrogers in #2282 - Add CPython 3.9.12 by @saaketp in #2296 - Add CPython 3.10.4 by @saaketp in #2295 - Add patch for 3.6.15 to support Xcode 13.3 by @nshine in #2288 - Add patch for 3.7.12 to support Xcode 13.3 by @samdoran in #2292 - Add CONTRIBUTING.md by @native-api in #2287 - Add PyPy 7.3.9 release 2022-03-30 by @dand-oss in #2308 - Add Pyston 2.3.3 by @scop in #2316 - Add CPython 3.11.0a7 by @illia-v in #2315 - Add "nogil" Python v3.9.10 by @colesbury in #2342 - Support XCode 13.3 in all releases that officially support MacOS 11 by @native-api in #2344 - Add GraalPython 22.1.0 by @msimacek in #2346 - Make PYENV_DEBUG imply -v for pyenv install by @native-api in #2347 - Simplify init scheme by @native-api in #2310 - Don't use Homebrew outside of MacOS by @native-api in #2349 - Add :latest syntax to documentation for the install command by @hay in #2351 Update to 2.2.5 - fix issue 2236 for CPython 3.6.15 and 3.7.12 by @fofoni in #2237 - python-build: add URL for get-pip for Python 3.6 by @fofoni in #2238 - Add pyston-2.3.2 by @dmrlawson in #2240 - CPython 3.11.0a5 by @saaketp in #2241 - CPython 3.11.0a6 by @saaketp in #2266 - Add miniconda 4.11.0 by @aphedges in #2268 - docs(pyenv-prefix): note support for multiple versions by @scop in #2270 - pypy 7.3.8 02/20/2022 release by @dand-oss in #2253 pyenv-2.3.5-bp154.2.3.1.src.rpm pyenv-2.3.5-bp154.2.3.1.x86_64.rpm pyenv-bash-completion-2.3.5-bp154.2.3.1.noarch.rpm pyenv-fish-completion-2.3.5-bp154.2.3.1.noarch.rpm pyenv-zsh-completion-2.3.5-bp154.2.3.1.noarch.rpm pyenv-2.3.5-bp154.2.3.1.i586.rpm pyenv-2.3.5-bp154.2.3.1.aarch64.rpm pyenv-2.3.5-bp154.2.3.1.ppc64le.rpm pyenv-2.3.5-bp154.2.3.1.s390x.rpm openSUSE-2022-10179 important openSUSE Backports SLE-15-SP4 Update This update for jhead fixes the following issues: - CVE-2022-41751: Fixed shell injection via filenames (boo#1204409) jhead-3.06.0.1-bp154.2.3.1.src.rpm jhead-3.06.0.1-bp154.2.3.1.x86_64.rpm jhead-3.06.0.1-bp154.2.3.1.i586.rpm jhead-3.06.0.1-bp154.2.3.1.aarch64.rpm jhead-3.06.0.1-bp154.2.3.1.ppc64le.rpm jhead-3.06.0.1-bp154.2.3.1.s390x.rpm openSUSE-2022-10186 important openSUSE Backports SLE-15-SP4 Update This update for privoxy fixes the following issues: privoxy was updated to 3.0.33 (boo#1193584): * CVE-2021-44543: Encode the template name to prevent XSS (cross-side scripting) when Privoxy is configured to servce the user-manual itself * CVE-2021-44540: Free memory of compiled pattern spec before bailing * CVE-2021-44541: Free header memory when failing to get the request destination. * CVE-2021-44542: Prevent memory leaks when handling errors * Disable fast-redirects for a number of domains * Update default block lists * Many bug fixes and minor enhancements privoxy-3.0.33-bp154.3.3.1.src.rpm privoxy-3.0.33-bp154.3.3.1.x86_64.rpm privoxy-doc-3.0.33-bp154.3.3.1.noarch.rpm privoxy-3.0.33-bp154.3.3.1.i586.rpm privoxy-3.0.33-bp154.3.3.1.aarch64.rpm privoxy-3.0.33-bp154.3.3.1.ppc64le.rpm privoxy-3.0.33-bp154.3.3.1.s390x.rpm openSUSE-2022-10189 moderate openSUSE Backports SLE-15-SP4 Update This update for deluge fixes the following issues: Update to version 2.1.1: - CVE-2021-3427: Fixed a XSS in webui via crafted torrent file (boo#1203162). deluge-2.1.1-bp154.2.3.1.noarch.rpm deluge-2.1.1-bp154.2.3.1.src.rpm deluge-lang-2.1.1-bp154.2.3.1.noarch.rpm openSUSE-2022-10185 important openSUSE Backports SLE-15-SP4 Update This update for EternalTerminal fixes the following issues: Update to 6.2.1: * CVE-2022-24949: Fixed race condition allows local attacker to hijack IPC socket (boo#1202435) * CVE-2022-24950: Fixed privilege escalation to root (boo#1202434) * CVE-2022-24951: Fixed DoS triggered remotely by invalid sequence numbers (boo#1202433) * CVE-2022-24952: Fixed race condition allows authenticated attacker to hijack other users' SSH authorization socket (boo#1202432) EternalTerminal-6.2.1-bp154.2.3.1.src.rpm EternalTerminal-6.2.1-bp154.2.3.1.x86_64.rpm EternalTerminal-6.2.1-bp154.2.3.1.aarch64.rpm openSUSE-2022-10195 moderate openSUSE Backports SLE-15-SP4 Update This update for keepassxc fixes the following issues: Update to 2.7.4: - Changes - Add 2 months expiration preset [#8687] - CLI: Add Unicode support on Windows [#8618] - Fixes - Fix crash on macOS when unlocking database [#8676] - Fix display of passwords in preview panel [#8633] - Fix clicking links in entry preview panel [#8644] - Prevent expired entries search if no results returned [#8643] - Browser: Revert code causing connection problems [#8665] - Browser: Fix socket file symbolic link on Linux [#8656] - Flatpak: Fix launching browser proxy service [#8680] - SSH Agent: Fix paegent support on Windows [#8619] keepassxc-2.7.4-bp154.3.9.1.src.rpm keepassxc-2.7.4-bp154.3.9.1.x86_64.rpm keepassxc-lang-2.7.4-bp154.3.9.1.noarch.rpm keepassxc-2.7.4-bp154.3.9.1.aarch64.rpm keepassxc-2.7.4-bp154.3.9.1.s390x.rpm openSUSE-2022-10207 moderate openSUSE Backports SLE-15-SP4 Update This update for tumbler fixes the following issues: tumbler was updated to version 4.16.1 (boo#1205210) * gst-thumbnailer: Add mime type check (gxo#xfce/tumbler#65) * desktop-thumbnailer: Guard against null path * Fix typo in gthread version (gxo#xfce/tumbler!14) libtumbler-1-0-4.16.1-bp154.3.3.1.x86_64.rpm tumbler-4.16.1-bp154.3.3.1.src.rpm tumbler-4.16.1-bp154.3.3.1.x86_64.rpm tumbler-devel-4.16.1-bp154.3.3.1.x86_64.rpm tumbler-doc-4.16.1-bp154.3.3.1.noarch.rpm tumbler-folder-thumbnailer-4.16.1-bp154.3.3.1.x86_64.rpm tumbler-lang-4.16.1-bp154.3.3.1.noarch.rpm tumbler-webp-thumbnailer-4.16.1-bp154.3.3.1.x86_64.rpm libtumbler-1-0-4.16.1-bp154.3.3.1.aarch64.rpm tumbler-4.16.1-bp154.3.3.1.aarch64.rpm tumbler-devel-4.16.1-bp154.3.3.1.aarch64.rpm tumbler-folder-thumbnailer-4.16.1-bp154.3.3.1.aarch64.rpm tumbler-webp-thumbnailer-4.16.1-bp154.3.3.1.aarch64.rpm libtumbler-1-0-4.16.1-bp154.3.3.1.ppc64le.rpm tumbler-4.16.1-bp154.3.3.1.ppc64le.rpm tumbler-devel-4.16.1-bp154.3.3.1.ppc64le.rpm tumbler-folder-thumbnailer-4.16.1-bp154.3.3.1.ppc64le.rpm tumbler-webp-thumbnailer-4.16.1-bp154.3.3.1.ppc64le.rpm libtumbler-1-0-4.16.1-bp154.3.3.1.s390x.rpm tumbler-4.16.1-bp154.3.3.1.s390x.rpm tumbler-devel-4.16.1-bp154.3.3.1.s390x.rpm tumbler-folder-thumbnailer-4.16.1-bp154.3.3.1.s390x.rpm tumbler-webp-thumbnailer-4.16.1-bp154.3.3.1.s390x.rpm openSUSE-2022-10201 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - Chromium 107.0.5304.110 (boo#1205221) * CVE-2022-3885: Use after free in V8 * CVE-2022-3886: Use after free in Speech Recognition * CVE-2022-3887: Use after free in Web Workers * CVE-2022-3888: Use after free in WebCodecs * CVE-2022-3889: Type Confusion in V8 * CVE-2022-3890: Heap buffer overflow in Crashpad chromedriver-107.0.5304.110-bp154.2.43.1.x86_64.rpm chromedriver-debuginfo-107.0.5304.110-bp154.2.43.1.x86_64.rpm chromium-107.0.5304.110-bp154.2.43.1.src.rpm chromium-107.0.5304.110-bp154.2.43.1.x86_64.rpm chromium-debuginfo-107.0.5304.110-bp154.2.43.1.x86_64.rpm chromedriver-107.0.5304.110-bp154.2.43.1.aarch64.rpm chromedriver-debuginfo-107.0.5304.110-bp154.2.43.1.aarch64.rpm chromium-107.0.5304.110-bp154.2.43.1.aarch64.rpm chromium-debuginfo-107.0.5304.110-bp154.2.43.1.aarch64.rpm openSUSE-2022-10196 important openSUSE Backports SLE-15-SP4 Update This update for libmodbus fixes the following issues: - CVE-2022-0367: Fixed heap-based Buffer Overflow in modbus_reply (boo#1195124). libmodbus-3.1.6-bp154.2.3.1.src.rpm libmodbus-devel-3.1.6-bp154.2.3.1.x86_64.rpm libmodbus5-3.1.6-bp154.2.3.1.x86_64.rpm libmodbus-devel-3.1.6-bp154.2.3.1.i586.rpm libmodbus5-3.1.6-bp154.2.3.1.i586.rpm libmodbus-devel-3.1.6-bp154.2.3.1.aarch64.rpm libmodbus5-3.1.6-bp154.2.3.1.aarch64.rpm libmodbus-devel-3.1.6-bp154.2.3.1.ppc64le.rpm libmodbus5-3.1.6-bp154.2.3.1.ppc64le.rpm libmodbus-devel-3.1.6-bp154.2.3.1.s390x.rpm libmodbus5-3.1.6-bp154.2.3.1.s390x.rpm openSUSE-2022-10197 important openSUSE Backports SLE-15-SP4 Update This update for autotrace fixes the following issues: - CVE-2022-32323: Fixed Heap overflow in ReadImage() (boo#1201529). autotrace-0.31.1-bp154.3.3.1.src.rpm autotrace-0.31.1-bp154.3.3.1.x86_64.rpm autotrace-devel-0.31.1-bp154.3.3.1.x86_64.rpm libautotrace3-0.31.1-bp154.3.3.1.x86_64.rpm autotrace-0.31.1-bp154.3.3.1.i586.rpm autotrace-devel-0.31.1-bp154.3.3.1.i586.rpm libautotrace3-0.31.1-bp154.3.3.1.i586.rpm autotrace-0.31.1-bp154.3.3.1.aarch64.rpm autotrace-devel-0.31.1-bp154.3.3.1.aarch64.rpm libautotrace3-0.31.1-bp154.3.3.1.aarch64.rpm autotrace-0.31.1-bp154.3.3.1.ppc64le.rpm autotrace-devel-0.31.1-bp154.3.3.1.ppc64le.rpm libautotrace3-0.31.1-bp154.3.3.1.ppc64le.rpm autotrace-0.31.1-bp154.3.3.1.s390x.rpm autotrace-devel-0.31.1-bp154.3.3.1.s390x.rpm libautotrace3-0.31.1-bp154.3.3.1.s390x.rpm openSUSE-2022-10198 important openSUSE Backports SLE-15-SP4 Update This update for varnish fixes the following issues: Update to 7.2.1: - CVE-2022-45059: Fixed a HTTP request smuggling via hop-by-hop headers (boo#1205243). - CVE-2022-45060: Fixed a HTTP request forgery via character injection through HTTP/2 pseudo-headers (boo#1205242). libvarnishapi3-7.2.1-bp154.2.9.1.x86_64.rpm varnish-7.2.1-bp154.2.9.1.src.rpm varnish-7.2.1-bp154.2.9.1.x86_64.rpm varnish-devel-7.2.1-bp154.2.9.1.x86_64.rpm libvarnishapi3-7.2.1-bp154.2.9.1.i586.rpm varnish-7.2.1-bp154.2.9.1.i586.rpm varnish-devel-7.2.1-bp154.2.9.1.i586.rpm libvarnishapi3-7.2.1-bp154.2.9.1.aarch64.rpm varnish-7.2.1-bp154.2.9.1.aarch64.rpm varnish-devel-7.2.1-bp154.2.9.1.aarch64.rpm libvarnishapi3-7.2.1-bp154.2.9.1.ppc64le.rpm varnish-7.2.1-bp154.2.9.1.ppc64le.rpm varnish-devel-7.2.1-bp154.2.9.1.ppc64le.rpm libvarnishapi3-7.2.1-bp154.2.9.1.s390x.rpm varnish-7.2.1-bp154.2.9.1.s390x.rpm varnish-devel-7.2.1-bp154.2.9.1.s390x.rpm openSUSE-2022-10209 moderate openSUSE Backports SLE-15-SP4 Update This update for tor fixes the following issues: tor 0.4.7.11: * Improve security of DNS cache by randomly clipping the TTL value (boo#1205307, TROVE-2021-009) * Improved defenses against network-wide DoS, multiple counters and metrics added to MetricsPorts * Apply circuit creation anti-DoS defenses if the outbound circuit max cell queue size is reached too many times. This introduces two new consensus parameters to control the queue size limit and number of times allowed to go over that limit. * Directory authority updates * IPFire database and geoip updates * Bump the maximum amount of CPU that can be used from 16 to 128. The NumCPUs torrc option overrides this hardcoded maximum. * onion service: set a higher circuit build timeout for opened client rendezvous circuit to avoid timeouts and retry load * Make the service retry a rendezvous if the circuit is being repurposed for measurements tor-0.4.7.11-bp154.2.9.1.src.rpm tor-0.4.7.11-bp154.2.9.1.x86_64.rpm tor-debuginfo-0.4.7.11-bp154.2.9.1.x86_64.rpm tor-debugsource-0.4.7.11-bp154.2.9.1.x86_64.rpm tor-0.4.7.11-bp154.2.9.1.i586.rpm tor-debuginfo-0.4.7.11-bp154.2.9.1.i586.rpm tor-debugsource-0.4.7.11-bp154.2.9.1.i586.rpm tor-0.4.7.11-bp154.2.9.1.aarch64.rpm tor-debuginfo-0.4.7.11-bp154.2.9.1.aarch64.rpm tor-debugsource-0.4.7.11-bp154.2.9.1.aarch64.rpm tor-0.4.7.11-bp154.2.9.1.ppc64le.rpm tor-debuginfo-0.4.7.11-bp154.2.9.1.ppc64le.rpm tor-debugsource-0.4.7.11-bp154.2.9.1.ppc64le.rpm tor-0.4.7.11-bp154.2.9.1.s390x.rpm tor-debuginfo-0.4.7.11-bp154.2.9.1.s390x.rpm tor-debugsource-0.4.7.11-bp154.2.9.1.s390x.rpm openSUSE-2022-10205 moderate openSUSE Backports SLE-15-SP4 Update This update for vmaf fixes the following issues: - Drop recommends on vmaf-data, the package is gone since vmaf 2.x. Build model data into the library, since `make install` does not do anything by default. [boo#1189023] - Update to release 2.3.1 * CAMBI extensions: full reference, PQ eotf, up to 16 bit-depth support, max_log_contrast parameter. * CAMBI: option to output heatmaps. - Update to release 2.3.0 * Added Contrast Aware Multiscale Banding Index. * Added pixel format VMAF_PIX_FMT_YUV400P. - Update to release 2.2.1 * Fix a race condition in vmaf_thread_pool_wait(). * Avoid chroma resampling for 420mpeg2 y4m input. - Update to release 2.2.0 * Fixed a CIEDE-2000 precision issue, where cross-platform mismatches were seen. * Added function vmaf_feature_dictionary_free(). - update to 2.1.1: * Fixes a SSIM/MS-SSIM precision bug where a lossless comparison did not always result in a perfect 1.0 score. (#796). * Adds feature extractor options to clip the dB scores for both PSNR/SSIM. --aom_ctc v1.0 has been updated to use these clipping options according to the AOM CTC. (#802). - Update to 2.1.0 * New features: - Per-model feature overloading via new API vmaf_model_feature_overload(). - Multiple unique configurations of the same feature extractor may be registered run at the same time. - --aom_ctc v1.0 preset, encompassing all metrics specified by the AOM CTC. - Changes from 2.0.0 * New features: - Add PSNR-HVS and CIEDE2000 metrics. - ci/actions: upload linux/macos artifacts (#738) - libvmaf/feature: deprecate daala_ssim (#735) - libvmaf: remove support for pkl models - libvmaf/psnr: rewrite using integer types, 2x speedup - vmaf: if no model is specified, enable v0.6.1 by default (#730) - libvmaf/x86: add AVX2/AVX-512 optimizations for adm, vif and motion - ci/actions: add xxd to build dependencies for Windows - libvmaf: add support for built-in models - libvmaf/integer_vif: use symmetrical mirroring on edges - Fix log2 by replacing log2f_approx with log2f - libvmaf_rc: provide a backwards compatible compute_vmaf(), link vmafossexec with libvmaf - libvmaf: add framework support for json models - libvmaf/libsvm: update libsvm to version 324 - libvmaf/motion: add motion_force_zero to motion fex - return sha1 if Asset string is longer than 255 - Add CID/iCID Matlab source code - build: unbreak x86 builds (Fixes: #374) - Add 12bit and 16bit support for python YUV reader; add tests. - Add PypsnrFeatureExtractor - Add processes to FeatureAssembler. (#662) * Fixed bugs: - fix motion flush for single frame input - Fixing the perf_metric for a single entry list input - Remove data subpackage because models now build in. - Initial package (version 1.5.3) for build.opensuse.org libvmaf1-2.3.1-bp154.2.1.x86_64.rpm vmaf-2.3.1-bp154.2.1.src.rpm vmaf-devel-2.3.1-bp154.2.1.x86_64.rpm libvmaf1-2.3.1-bp154.2.1.i586.rpm libvmaf1-32bit-2.3.1-bp154.2.1.x86_64.rpm vmaf-devel-2.3.1-bp154.2.1.i586.rpm libvmaf1-2.3.1-bp154.2.1.aarch64.rpm libvmaf1-64bit-2.3.1-bp154.2.1.aarch64_ilp32.rpm vmaf-devel-2.3.1-bp154.2.1.aarch64.rpm libvmaf1-2.3.1-bp154.2.1.ppc64le.rpm vmaf-devel-2.3.1-bp154.2.1.ppc64le.rpm libvmaf1-2.3.1-bp154.2.1.s390x.rpm vmaf-devel-2.3.1-bp154.2.1.s390x.rpm openSUSE-2022-10202 important openSUSE Backports SLE-15-SP4 Update This update for jhead fixes the following issues: * CVE-2021-34055: Fix out of bounds write in ClearOrientation() due to unchecked error (boo#1205167) jhead-3.06.0.1-bp154.2.6.1.src.rpm jhead-3.06.0.1-bp154.2.6.1.x86_64.rpm jhead-3.06.0.1-bp154.2.6.1.i586.rpm jhead-3.06.0.1-bp154.2.6.1.aarch64.rpm jhead-3.06.0.1-bp154.2.6.1.ppc64le.rpm jhead-3.06.0.1-bp154.2.6.1.s390x.rpm openSUSE-2022-10222 important openSUSE Backports SLE-15-SP4 Update This update for rxvt-unicode fixes the following issues: Update to 9.26 - ev_iouring.c was wrongly required during compilation, and wrongly not packaged. Update to 9.25 (boo#1186174 CVE-2021-33477) - for the 17.5th anniversary, and because many distributions seem to remove rxvt in favour of urxvt, this release resurrects rclock as urclock. - add support for systemd socket-based activation - debian bug #917105, freebsd bug #234276. - do not destruct perl on exit anymore: this might fail for a variety of reasons, and takes unneccessary time. - remove any macros from urxvtperl manpage(s), should fix debian bug 858385. - the old bg image resources are now provided by the background extension, and perl is thus required for bg image support. No configuration change is needed: urxvt autoloads the background ext if any bg image resource/option is present (for OSC sequences to work you need to enable it explicity). The old bg image resources are also now deprecated; users are encouraged to switch to the new bg image interface (see man urxvt-background). - confirm-paste now checks for any ctlchars, not just newlines. - searchable scrollback will now ignore bracketed paste mode sequences (prompted by Daniel Gröber's patch). - drop ISO 2022 locale support. ISO 2022 encodings are not supported in POSIX locales and clash with vt100 charset emulation (the luit program can be used as a substitute). - perl didn't parse rgba colours specified as an array correctly, only allowing 0 and 100% intensity for each component (this affected fill and tint). - when iterating over resources, urxvt will now try to properly handle multipart resources (such as "*background.expr"), for the benefit of autoloading perl extensions. - ESC G (query rxvt graphics mode) has been disabled due to security implications. The rxvt graphics mode was removed in rxvt-unicode 1.5, and no programs relying on being able to query the mode are known. - work around API change breakage in perl 5.28, based on a patch by Roman Bogorodskiy. - improved security: rob nation's (obsolete) graphics mode queries no longer reply with linefeed in secure/default mode. - ISO 8613-3 direct colour SGR sequences (patch by Fengguang Wu). - xterm focus reporting mode (patch by Daniel Hahler). - xterm SGR mouse mode. - implement DECRQM. Patch by Přemysl Eric Janouch. - add missing color index parameter to OSC 4 response. Patch by Přemysl Eric Janouch. - in some window managers, if smart resize was enabled, urxvt erroneously moved the window on font change - awesome bug #532, arch linux bug ##34807 (patch by Uli Schlachter). - fix urxvtd crash when using a background expression. - properly restore colors when using fading and reverse video is enabled while urxvt is focused and then disabled while it is not focused, or vice versa (patch by Daniel Hahler). - fix high memory usage when an extension repeatedly hides and shows an overlay (reported by Marcel Lautenbach). - expose priv_modes member and constants to perl extensions (patch by Rastislav Barlik). - fix a whole slew of const sillyness, unfortunately forced upon us by ISO C++. - update to libecb 0x00010006. - disable all thread support in ecb.h as we presumably don't need it. - slightly improve Makefile source dependencies. - work around bugs in newer Pod::Xhtml versions (flags incorrect formatting codes in xhtml/html sections but does not interpret correct ones). - New file: /usr/bin/urclock - restore the -256color binaries rxvt-unicode-9.26-bp154.2.3.1.src.rpm rxvt-unicode-9.26-bp154.2.3.1.x86_64.rpm rxvt-unicode-debuginfo-9.26-bp154.2.3.1.x86_64.rpm rxvt-unicode-debugsource-9.26-bp154.2.3.1.x86_64.rpm rxvt-unicode-9.26-bp154.2.3.1.i586.rpm rxvt-unicode-debuginfo-9.26-bp154.2.3.1.i586.rpm rxvt-unicode-debugsource-9.26-bp154.2.3.1.i586.rpm rxvt-unicode-9.26-bp154.2.3.1.aarch64.rpm rxvt-unicode-debuginfo-9.26-bp154.2.3.1.aarch64.rpm rxvt-unicode-debugsource-9.26-bp154.2.3.1.aarch64.rpm rxvt-unicode-9.26-bp154.2.3.1.ppc64le.rpm rxvt-unicode-debuginfo-9.26-bp154.2.3.1.ppc64le.rpm rxvt-unicode-debugsource-9.26-bp154.2.3.1.ppc64le.rpm rxvt-unicode-9.26-bp154.2.3.1.s390x.rpm rxvt-unicode-debuginfo-9.26-bp154.2.3.1.s390x.rpm rxvt-unicode-debugsource-9.26-bp154.2.3.1.s390x.rpm openSUSE-2022-10212 moderate openSUSE Backports SLE-15-SP4 Update This update for xtrabackup fixes the following issues: Update xtrabackup to version 2.4.26: - CVE-2020-10997: Information exposure via cmd line output and table history (boo#1170644) - CVE-2020-29488: Changes in how absolute paths are handled (boo#1205581) xtrabackup-2.4.26-bp154.2.3.1.src.rpm xtrabackup-2.4.26-bp154.2.3.1.x86_64.rpm xtrabackup-test-2.4.26-bp154.2.3.1.x86_64.rpm xtrabackup-2.4.26-bp154.2.3.1.i586.rpm xtrabackup-test-2.4.26-bp154.2.3.1.i586.rpm xtrabackup-2.4.26-bp154.2.3.1.aarch64.rpm xtrabackup-test-2.4.26-bp154.2.3.1.aarch64.rpm xtrabackup-2.4.26-bp154.2.3.1.ppc64le.rpm xtrabackup-test-2.4.26-bp154.2.3.1.ppc64le.rpm xtrabackup-2.4.26-bp154.2.3.1.s390x.rpm xtrabackup-test-2.4.26-bp154.2.3.1.s390x.rpm openSUSE-2022-10211 moderate openSUSE Backports SLE-15-SP4 Update This update for Botan fixes the following issues: - CVE-2022-43705: Fixed validation of embedded certificates was when checking OCSP responses (boo#1205509). Botan-2.18.2-bp154.2.3.1.src.rpm Botan-2.18.2-bp154.2.3.1.x86_64.rpm Botan-doc-2.18.2-bp154.2.3.1.noarch.rpm libbotan-2-18-2.18.2-bp154.2.3.1.x86_64.rpm libbotan-devel-2.18.2-bp154.2.3.1.x86_64.rpm python3-botan-2.18.2-bp154.2.3.1.x86_64.rpm Botan-2.18.2-bp154.2.3.1.i586.rpm libbotan-2-18-2.18.2-bp154.2.3.1.i586.rpm libbotan-2-18-32bit-2.18.2-bp154.2.3.1.x86_64.rpm libbotan-devel-2.18.2-bp154.2.3.1.i586.rpm libbotan-devel-32bit-2.18.2-bp154.2.3.1.x86_64.rpm python3-botan-2.18.2-bp154.2.3.1.i586.rpm Botan-2.18.2-bp154.2.3.1.aarch64.rpm libbotan-2-18-2.18.2-bp154.2.3.1.aarch64.rpm libbotan-2-18-64bit-2.18.2-bp154.2.3.1.aarch64_ilp32.rpm libbotan-devel-2.18.2-bp154.2.3.1.aarch64.rpm libbotan-devel-64bit-2.18.2-bp154.2.3.1.aarch64_ilp32.rpm python3-botan-2.18.2-bp154.2.3.1.aarch64.rpm Botan-2.18.2-bp154.2.3.1.s390x.rpm libbotan-2-18-2.18.2-bp154.2.3.1.s390x.rpm libbotan-devel-2.18.2-bp154.2.3.1.s390x.rpm python3-botan-2.18.2-bp154.2.3.1.s390x.rpm openSUSE-2022-10231 low openSUSE Backports SLE-15-SP4 Update This update for tclx fixes the following issues: - Version 8.4.4 presents itself as being 8.6 internally. Adjust installation path, so that it can still be loaded. tclx-8.4.4-bp154.2.3.1.src.rpm tclx-8.4.4-bp154.2.3.1.x86_64.rpm tclx-8.4.4-bp154.2.3.1.i586.rpm tclx-8.4.4-bp154.2.3.1.aarch64.rpm tclx-8.4.4-bp154.2.3.1.ppc64le.rpm tclx-8.4.4-bp154.2.3.1.s390x.rpm openSUSE-2022-10221 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 107.0.5304.121 (boo#1205736) * CVE-2022-4135: Heap buffer overflow in GPU chromedriver-107.0.5304.121-bp154.2.46.1.x86_64.rpm chromedriver-debuginfo-107.0.5304.121-bp154.2.46.1.x86_64.rpm chromium-107.0.5304.121-bp154.2.46.1.src.rpm chromium-107.0.5304.121-bp154.2.46.1.x86_64.rpm chromium-debuginfo-107.0.5304.121-bp154.2.46.1.x86_64.rpm chromedriver-107.0.5304.121-bp154.2.46.1.aarch64.rpm chromedriver-debuginfo-107.0.5304.121-bp154.2.46.1.aarch64.rpm chromium-107.0.5304.121-bp154.2.46.1.aarch64.rpm chromium-debuginfo-107.0.5304.121-bp154.2.46.1.aarch64.rpm openSUSE-2022-10232 moderate openSUSE Backports SLE-15-SP4 Update This update for proteus, tryton, trytond, trytond_currency, trytond_stock fixes the following issues: Changes in trytond_stock: - Version 6.0.18 - Bugfix Release Changes in trytond_currency: - Version 6.0.3 - Bugfix Release Changes in trytond: - Version 6.0.24 - Bugfix Release Changes in tryton: - Version 6.0.21 - Bugfix Release Changes in proteus: - Version 6.0.7 - Bugfix Release proteus-6.0.7-bp154.2.3.1.noarch.rpm proteus-6.0.7-bp154.2.3.1.src.rpm tryton-6.0.21-bp154.2.9.1.noarch.rpm tryton-6.0.21-bp154.2.9.1.src.rpm trytond-6.0.24-bp154.2.15.1.noarch.rpm trytond-6.0.24-bp154.2.15.1.src.rpm trytond_currency-6.0.3-bp154.2.3.1.noarch.rpm trytond_currency-6.0.3-bp154.2.3.1.src.rpm trytond_stock-6.0.18-bp154.2.15.1.noarch.rpm trytond_stock-6.0.18-bp154.2.15.1.src.rpm openSUSE-2022-10225 moderate openSUSE Backports SLE-15-SP4 Update This update provides the apache2-mod_auth_kerb package for SLES 15 SP4 Package Hub / openSUSE Leap 15.4. apache2-mod_auth_kerb-5.4-bp154.2.1.src.rpm apache2-mod_auth_kerb-5.4-bp154.2.1.x86_64.rpm apache2-mod_auth_kerb-5.4-bp154.2.1.i586.rpm apache2-mod_auth_kerb-5.4-bp154.2.1.aarch64.rpm apache2-mod_auth_kerb-5.4-bp154.2.1.ppc64le.rpm apache2-mod_auth_kerb-5.4-bp154.2.1.s390x.rpm openSUSE-2022-10226 moderate openSUSE Backports SLE-15-SP4 Update This update for googletest fixes the following issues: googletest was shipped in version 1.12.1. gmock-1.12.1-bp154.2.1.x86_64.rpm googletest-1.12.1-bp154.2.1.src.rpm gtest-1.12.1-bp154.2.1.x86_64.rpm gmock-1.12.1-bp154.2.1.i586.rpm gtest-1.12.1-bp154.2.1.i586.rpm gmock-1.12.1-bp154.2.1.aarch64.rpm gtest-1.12.1-bp154.2.1.aarch64.rpm gmock-1.12.1-bp154.2.1.ppc64le.rpm gtest-1.12.1-bp154.2.1.ppc64le.rpm gmock-1.12.1-bp154.2.1.s390x.rpm gtest-1.12.1-bp154.2.1.s390x.rpm openSUSE-2022-10227 moderate openSUSE Backports SLE-15-SP4 Update This update for rxvt-unicode fixes the following issues: Update to version 9.30: * the background extension did not initialise properly when automatically loaded via the OSC. * new "on_attach" hook type implemented, to initialise late-loading extensions. Update to version 9.29: * libptytty (http://dist.schmorp.de/libptytty/) is now a required external dependency. * enable confirm-paste extension by default, can be disabled by e.g. URxvt.perl-ext: -confirm-paste * Key bindings specified with the -keysym option or with resources of the form URxvt*keysym work again. Such resources, as opposed to * resources of the form URxvt.keysym, were not officially allowed but accepted, so ignoring them is considered a regression. * new option/resource -rm/rewrapMode, which sets the line rewrap mode to auto, never or always. * new option/resource -dpb/disablePasteBrackets, which can be used to disable bracketed paste mode sequences, as more and more programs * abuse these sequences (typically in the name of security, but these sequences are not improving security). Also, bracketed paste mode is now under frills. * add manpage for urclock. * confirm-paste wrongly considered brackets as ctrlchars (patch by Jakub Wilk, debian bug #995244). * if urxvt cannot detect a good estimate for font width (because a font does not contain latin characters at all for example), it will now fall back to xft's max_advance_width, which works well with some fonts. It currently will warn about this. * do not render variation selectors in the default font as boxes, treat them as zero-width characters. * change combining character architecture to allow fonts to handle combining sequences on their own. This could allow future renderers to be more intelligent about these sequences. * use the previous enhancement to allow unicode characters outside of the BMP to be rendered even without --enable-unicode3, as long as an xft with the character is configured. * It's recommended to stay with disabled unicode3 even more now. * freetype/xft have been verified to return nonsensical offsets for combining characters. urxvt tries to compensate to some extent, but diacritics will be slightly off in many cases, and far off in some cases (e.g. input mono). * when checking for overlap/careful handling, take non-basefont character shifts into account. * extensions can now request autoloading on OSC and Perl OSC sequences, implement this for the background, clipboard-osc and overlay-osc extensions. * the background extension will now be autoloaded when the OSC 20 or 705 sequence is received. * added OSC 776 sequence to return character cell width, height and font ascent, which is useful when using urxvt as slave to calculate window size form or to row/column count. * matcher extension documentation now points out some requirements for regular expressions. the default url matching regex will now try to match IRLs in addition to URLs. * The view_start perl method now scrolls to the bottom also when the argument is greater than 0. * eval scroll actions now scroll to the bottom when scrolling down and there are less lines to scroll than the ones requested (reported by Stephen Talley). * allow perl-ext and perl-ext-common to override autoloaded extensions. this allows tabbed to disable itself in subtabs, avoiding recursive loading. * update precompose table to unicode 13.0. * update charset conversion tables to perl 5.32 (this only affected cs_koi8_u_from_unicode). * unicode characters > 0x100000 were not handled correctly w.r.t. font rendering. * replace bitstream vera by dejavu sans, as it has replaced the former almost everywhere. * urxvt will now try tic -x first and only fall back to tic without -x when tic -x fails. * fix urclock not erasing the old date on the clock face, causing overdraw, plus a host of other small fixes and improvements. * shave off over 1K of code size from urclock by replacing the sine table with a slightly less accurate fixed point approximation. * do not specify indentation with =over in pod, this is no longer needed with semi-modern pod tools and gives the formatter more stylistic freedom. * background extension did not set the "size-sensitive" flag when repeat mode wasn't normal. * extensions are now subjected to "use strict 'subs'". * avoid crashing when xft successfully opens a font but then somehow can't lock the face. * locale_decode/encode api methods now pass through undef unchanged. * fix undefined behaviour in the perl hook function, as diagnosed by clang. libptytty-2.0-bp154.2.1.src.rpm libptytty-debugsource-2.0-bp154.2.1.x86_64.rpm libptytty-devel-2.0-bp154.2.1.x86_64.rpm libptytty0-2.0-bp154.2.1.x86_64.rpm libptytty0-debuginfo-2.0-bp154.2.1.x86_64.rpm rxvt-unicode-9.30-bp154.2.6.1.src.rpm rxvt-unicode-9.30-bp154.2.6.1.x86_64.rpm libptytty-debugsource-2.0-bp154.2.1.i586.rpm libptytty-devel-2.0-bp154.2.1.i586.rpm libptytty0-2.0-bp154.2.1.i586.rpm libptytty0-debuginfo-2.0-bp154.2.1.i586.rpm rxvt-unicode-9.30-bp154.2.6.1.i586.rpm libptytty-debugsource-2.0-bp154.2.1.aarch64.rpm libptytty-devel-2.0-bp154.2.1.aarch64.rpm libptytty0-2.0-bp154.2.1.aarch64.rpm libptytty0-debuginfo-2.0-bp154.2.1.aarch64.rpm rxvt-unicode-9.30-bp154.2.6.1.aarch64.rpm libptytty-debugsource-2.0-bp154.2.1.ppc64le.rpm libptytty-devel-2.0-bp154.2.1.ppc64le.rpm libptytty0-2.0-bp154.2.1.ppc64le.rpm libptytty0-debuginfo-2.0-bp154.2.1.ppc64le.rpm rxvt-unicode-9.30-bp154.2.6.1.ppc64le.rpm libptytty-debugsource-2.0-bp154.2.1.s390x.rpm libptytty-devel-2.0-bp154.2.1.s390x.rpm libptytty0-2.0-bp154.2.1.s390x.rpm libptytty0-debuginfo-2.0-bp154.2.1.s390x.rpm rxvt-unicode-9.30-bp154.2.6.1.s390x.rpm openSUSE-2022-10229 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 108.0.5359.71 (boo#1205871) - CVE-2022-4174: Type Confusion in V8. - CVE-2022-4175: Use after free in Camera Capture. - CVE-2022-4176: Out of bounds write in Lacros Graphics. - CVE-2022-4177: Use after free in Extensions. - CVE-2022-4178: Use after free in Mojo. - CVE-2022-4179: Use after free in Audio. - CVE-2022-4180: Use after free in Mojo. - CVE-2022-4181: Use after free in Forms. - CVE-2022-4182: Inappropriate implementation in Fenced Frames. - CVE-2022-4183: Insufficient policy enforcement in Popup Blocker. - CVE-2022-4184: Insufficient policy enforcement in Autofill. - CVE-2022-4185: Inappropriate implementation in Navigation. - CVE-2022-4186: Insufficient validation of untrusted input in Downloads. - CVE-2022-4187: Insufficient policy enforcement in DevTools. - CVE-2022-4188: Insufficient validation of untrusted input in CORS. - CVE-2022-4189: Insufficient policy enforcement in DevTools. - CVE-2022-4190: Insufficient data validation in Directory. - CVE-2022-4191: Use after free in Sign-In. - CVE-2022-4192: Use after free in Live Caption. - CVE-2022-4193: Insufficient policy enforcement in File System API. - CVE-2022-4194: Use after free in Accessibility. - CVE-2022-4195: Insufficient policy enforcement in Safe Browsing. chromedriver-108.0.5359.71-bp154.2.49.1.x86_64.rpm chromedriver-debuginfo-108.0.5359.71-bp154.2.49.1.x86_64.rpm chromium-108.0.5359.71-bp154.2.49.1.src.rpm chromium-108.0.5359.71-bp154.2.49.1.x86_64.rpm chromium-debuginfo-108.0.5359.71-bp154.2.49.1.x86_64.rpm chromedriver-108.0.5359.71-bp154.2.49.1.aarch64.rpm chromedriver-debuginfo-108.0.5359.71-bp154.2.49.1.aarch64.rpm chromium-108.0.5359.71-bp154.2.49.1.aarch64.rpm chromium-debuginfo-108.0.5359.71-bp154.2.49.1.aarch64.rpm openSUSE-2022-10234 moderate openSUSE Backports SLE-15-SP4 Update This update for efitools fixes the following issues: efitools is shipped in version 1.9.2. efitools-1.9.2-bp154.2.1.src.rpm efitools-1.9.2-bp154.2.1.x86_64.rpm efitools-1.9.2-bp154.2.1.i586.rpm efitools-1.9.2-bp154.2.1.aarch64.rpm openSUSE-2022-10233 moderate openSUSE Backports SLE-15-SP4 Update This update for warewulf4 fixes the following issues: - fixed symlink dhcpd.conf collision Updated to 4.3.0: * fixed bug which for single node profile set Update to 4.3.0rc6 what should the final release candidate: * using compressed images again, as PXE else would fail Update to v4.3.0rc2 with following major changes: * Provision interface is not tied to 'eth0' any more. The provision interface must be named 'default' now. The file `nodes.yaml' must be changed accordingly. * Creating of '/etc/exports' can now be disabled, so that wwctl configure -a wont overwrite a existing '/etc/exports'. * All configurations files for the host (/etc/exports, /etc/dhcpd.conf, /etc/hosts) are now populated from the (OVERLAYDIR/host/etc/{exports|dhcpd|hosts}.ww . Also other configuration files like prometheus.yml.ww or slurm.conf.ww which depend on the cluster nodes can be placed. Also the new templated functions {{ abort }}, {{ IncludeBlock }} abd {{ no_backup }} are allowed now. * nodes and profiles can now have multiple system and runtime overlays, as a comma separated list. * The overlays of the profile and the nodes are combined. * Simple ipv6 support is now enabled. In warewulf.conf the option ipaddr6/Ipv6net must be set to enable ipv6. If enabled on of these options is set a node will get a derived ipv6 in the scheme ipv6net:ipaddr4. This address can also be overwritten for every node * Multiple files can now created from a single template.ww file with the {{ file FILENAME }} command in the template. The command is expanded to the magic template command {{ /* file FILENAME */}} which is picked up by wwctl and everything which comes after this magic comment will be written to the file FILENAME. This mechanism is leveraged in the configuration files for the network, see ifcfg.xml.ww and ifcgf.ww. * Networks can now have arbitrary keys value pairs in the profiles and on the node, so that things like bridges and mtu sizes can be set * The yaml format for nodes has now sub-keys for ipmi and kernel, old nodes.conf files have to to be changed accordingly * uids and gids of a container now get synced at import time, so that at least users with the same name have the same uid. This is not necessarily needed for warewulf, but services like munge. * backward compatibility for nodes.conf * added file:// uri for importing archived containers warewulf4-4.3.0-bp154.2.3.1.src.rpm warewulf4-4.3.0-bp154.2.3.1.x86_64.rpm warewulf4-ipxe-4.3.0-bp154.2.3.1.noarch.rpm warewulf4-overlay-4.3.0-bp154.2.3.1.x86_64.rpm warewulf4-slurm-4.3.0-bp154.2.3.1.x86_64.rpm warewulf4-4.3.0-bp154.2.3.1.aarch64.rpm warewulf4-overlay-4.3.0-bp154.2.3.1.aarch64.rpm warewulf4-slurm-4.3.0-bp154.2.3.1.aarch64.rpm openSUSE-2022-10236 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 108.0.5359.94 (boo#1205999) - CVE-2022-4262: Type Confusion in V8 chromedriver-108.0.5359.94-bp154.2.52.1.x86_64.rpm chromedriver-debuginfo-108.0.5359.94-bp154.2.52.1.x86_64.rpm chromium-108.0.5359.94-bp154.2.52.1.src.rpm chromium-108.0.5359.94-bp154.2.52.1.x86_64.rpm chromium-debuginfo-108.0.5359.94-bp154.2.52.1.x86_64.rpm chromedriver-108.0.5359.94-bp154.2.52.1.aarch64.rpm chromedriver-debuginfo-108.0.5359.94-bp154.2.52.1.aarch64.rpm chromium-108.0.5359.94-bp154.2.52.1.aarch64.rpm chromium-debuginfo-108.0.5359.94-bp154.2.52.1.aarch64.rpm openSUSE-2022-10235 important openSUSE Backports SLE-15-SP4 Update This update for matio fixes the following issues: Update to version 1.5.23: * Fixed testsuite regression from version 1.5.22. Changes from version 1.5.22: * Added support for reading large MAT file. * Updated cmake-conan to version 0.17.0. * Fixed CMake build with Conan (MATIO_USE_CONAN:BOOL=ON). * Fixed data type when reading 16-bit character data from HDF5 MAT file. * Fixed heap-based buffer overflows when reading (crafted) MAT file (CVE-2020-36428, CVE-2021-36977). * Confirmed compatibility with HDF5 v1.13.0 and v1.13.1. * Several other fixes, for example for memory leaks. libmatio-devel-1.5.23-bp154.2.3.1.x86_64.rpm libmatio11-1.5.23-bp154.2.3.1.x86_64.rpm matio-1.5.23-bp154.2.3.1.src.rpm matio-tools-1.5.23-bp154.2.3.1.x86_64.rpm libmatio-devel-1.5.23-bp154.2.3.1.i586.rpm libmatio11-1.5.23-bp154.2.3.1.i586.rpm matio-tools-1.5.23-bp154.2.3.1.i586.rpm libmatio-devel-1.5.23-bp154.2.3.1.aarch64.rpm libmatio11-1.5.23-bp154.2.3.1.aarch64.rpm matio-tools-1.5.23-bp154.2.3.1.aarch64.rpm libmatio-devel-1.5.23-bp154.2.3.1.ppc64le.rpm libmatio11-1.5.23-bp154.2.3.1.ppc64le.rpm matio-tools-1.5.23-bp154.2.3.1.ppc64le.rpm libmatio-devel-1.5.23-bp154.2.3.1.s390x.rpm libmatio11-1.5.23-bp154.2.3.1.s390x.rpm matio-tools-1.5.23-bp154.2.3.1.s390x.rpm openSUSE-2022-10240 moderate openSUSE Backports SLE-15-SP4 Update This update for pssh fixes the following issues: Fixed some bugs. pssh-2.3.4+git10.d4909c9-bp154.2.3.1.noarch.rpm pssh-2.3.4+git10.d4909c9-bp154.2.3.1.src.rpm python-pssh-2.3.4+git10.d4909c9-bp154.2.3.1.noarch.rpm openSUSE-2023-2 moderate openSUSE Backports SLE-15-SP4 Update This update for kcmutils fixes the following issues: - Fixed a crash due to a double delete. kcmutils-5.90.0-bp154.2.3.1.src.rpm kcmutils-devel-5.90.0-bp154.2.3.1.x86_64.rpm libKF5KCMUtils5-5.90.0-bp154.2.3.1.x86_64.rpm libKF5KCMUtils5-lang-5.90.0-bp154.2.3.1.noarch.rpm kcmutils-devel-5.90.0-bp154.2.3.1.aarch64.rpm libKF5KCMUtils5-5.90.0-bp154.2.3.1.aarch64.rpm kcmutils-devel-5.90.0-bp154.2.3.1.ppc64le.rpm libKF5KCMUtils5-5.90.0-bp154.2.3.1.ppc64le.rpm kcmutils-devel-5.90.0-bp154.2.3.1.s390x.rpm libKF5KCMUtils5-5.90.0-bp154.2.3.1.s390x.rpm openSUSE-2022-10242 moderate openSUSE Backports SLE-15-SP4 Update This update for python-slixmpp fixes the following issues: - CVE-2022-45197: Fixed certificate hostname validation (boo#1205433) python-slixmpp-1.4.2-bp154.2.3.1.src.rpm python3-slixmpp-1.4.2-bp154.2.3.1.x86_64.rpm python3-slixmpp-1.4.2-bp154.2.3.1.i586.rpm python3-slixmpp-1.4.2-bp154.2.3.1.aarch64.rpm python3-slixmpp-1.4.2-bp154.2.3.1.ppc64le.rpm python3-slixmpp-1.4.2-bp154.2.3.1.s390x.rpm openSUSE-2022-10258 moderate openSUSE Backports SLE-15-SP4 Update This update for lxd fixes the following issues: Update to LXD 5.9. The full upstream changelog is available from: (boo#1206296) https://discuss.linuxcontainers.org/t/lxd-5-9-has-been-released/15907 + Network zones project feature Update to LXD 5.8. The full upstream changelog is available from: (boo#1205623) https://discuss.linuxcontainers.org/t/lxd-5-8-has-been-released/15686 + CPU hotplug in VMs + Device override on init and launch * Record volume creation date Update to LXD 5.7. The full upstream changelog is available from: (boo#1204852) https://discuss.linuxcontainers.org/t/lxd-5-7-has-been-released/15432 + ACME / Let’s Encrypt support + Cloud-init validation + Internal metrics + Cluster join tokens expiry + Proxy device hotplugging to VM Update to LXD 5.6. The full upstream changelog is available from: (boo#1203731) https://discuss.linuxcontainers.org/t/lxd-5-6-has-been-released/15191 LXD 5.6: + Grafana Loki support + Object storage on local storage pools + Infiniband support for virtual machines + Restricted network access in projects + instance-ready lifecycle event + Metric for total effective CPUs LXD 5.5: + Storage buckets (on Ceph) + Instance Ready state + Configurable BGP hold time + All projects queries for storage volumes + OOM kill counter in metrics * Database optimization LXD 5.4: + Load-balancers (OVN) + Bi-directional vsock interface (VM) * Changes to vsock API (LXD VMs) - Change to using systemd-sysusers - Update to LXD 5.3. The full upstream changelog is available from: (boo#1200974) https://discuss.linuxcontainers.org/t/lxd-5-3-has-been-released/14439 + Extended raw.qemu support + fscache support for cephfs storage pools - Update to LXD 5.2. The full upstream changelog is available from: (boo#1200002) https://discuss.linuxcontainers.org/t/lxd-5-2-has-been-released/14200 + VPD information in resources API * Cross-project profile copy * HTTP streaming support in /dev/lxd API * Use of server-side filtering in CLI * Ceph librbd for virtual machines lxd-5.9-bp154.2.3.1.src.rpm lxd-5.9-bp154.2.3.1.x86_64.rpm lxd-bash-completion-5.9-bp154.2.3.1.noarch.rpm lxd-5.9-bp154.2.3.1.aarch64.rpm lxd-5.9-bp154.2.3.1.ppc64le.rpm lxd-5.9-bp154.2.3.1.s390x.rpm openSUSE-2023-11 moderate openSUSE Backports SLE-15-SP4 Update This update for susepaste fixes the following issues: - Replace susepaste.org submission address with paste.opensuse.org susepaste-0.6-bp154.3.3.1.noarch.rpm susepaste-0.6-bp154.3.3.1.src.rpm susepaste-screenshot-0.6-bp154.3.3.1.noarch.rpm openSUSE-2022-10244 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Update to version 108.0.5359.124 (boo#1206403): - CVE-2022-4436: Use after free in Blink Media - CVE-2022-4437: Use after free in Mojo IPC - CVE-2022-4438: Use after free in Blink Frames - CVE-2022-4439: Use after free in Aura - CVE-2022-4440: Use after free in Profiles chromedriver-108.0.5359.124-bp154.2.55.1.x86_64.rpm chromium-108.0.5359.124-bp154.2.55.1.src.rpm chromium-108.0.5359.124-bp154.2.55.1.x86_64.rpm chromedriver-108.0.5359.124-bp154.2.55.1.aarch64.rpm chromium-108.0.5359.124-bp154.2.55.1.aarch64.rpm openSUSE-2022-10251 moderate openSUSE Backports SLE-15-SP4 Update This update for telegraf fixes the following issues: Update to version 1.24.3. telegraf-1.24.3-bp154.2.3.1.src.rpm telegraf-1.24.3-bp154.2.3.1.x86_64.rpm telegraf-1.24.3-bp154.2.3.1.i586.rpm telegraf-1.24.3-bp154.2.3.1.aarch64.rpm telegraf-1.24.3-bp154.2.3.1.ppc64le.rpm telegraf-1.24.3-bp154.2.3.1.s390x.rpm openSUSE-2023-14 moderate openSUSE Backports SLE-15-SP4 Update This update for xlockmore fixes the following issues: - Install resource files in /usr/lib/X11/app-defeaults/XLock instead of /usr/share (boo#1204597). xlockmore-5.68-bp154.2.3.1.src.rpm xlockmore-5.68-bp154.2.3.1.x86_64.rpm xlockmore-5.68-bp154.2.3.1.i586.rpm xlockmore-5.68-bp154.2.3.1.aarch64.rpm xlockmore-5.68-bp154.2.3.1.ppc64le.rpm xlockmore-5.68-bp154.2.3.1.s390x.rpm openSUSE-2022-10257 important openSUSE Backports SLE-15-SP4 Update This update for mbedtls fixes the following issues: - CVE-2022-46393: Fixed potential heap buffer overread and overwrite in DTLS (boo#1206576). libmbedcrypto7-2.28.0-bp154.2.3.1.x86_64.rpm libmbedtls14-2.28.0-bp154.2.3.1.x86_64.rpm libmbedx509-1-2.28.0-bp154.2.3.1.x86_64.rpm mbedtls-2.28.0-bp154.2.3.1.src.rpm mbedtls-devel-2.28.0-bp154.2.3.1.x86_64.rpm libmbedcrypto7-2.28.0-bp154.2.3.1.i586.rpm libmbedcrypto7-32bit-2.28.0-bp154.2.3.1.x86_64.rpm libmbedtls14-2.28.0-bp154.2.3.1.i586.rpm libmbedtls14-32bit-2.28.0-bp154.2.3.1.x86_64.rpm libmbedx509-1-2.28.0-bp154.2.3.1.i586.rpm libmbedx509-1-32bit-2.28.0-bp154.2.3.1.x86_64.rpm mbedtls-devel-2.28.0-bp154.2.3.1.i586.rpm libmbedcrypto7-2.28.0-bp154.2.3.1.aarch64.rpm libmbedcrypto7-64bit-2.28.0-bp154.2.3.1.aarch64_ilp32.rpm libmbedtls14-2.28.0-bp154.2.3.1.aarch64.rpm libmbedtls14-64bit-2.28.0-bp154.2.3.1.aarch64_ilp32.rpm libmbedx509-1-2.28.0-bp154.2.3.1.aarch64.rpm libmbedx509-1-64bit-2.28.0-bp154.2.3.1.aarch64_ilp32.rpm mbedtls-devel-2.28.0-bp154.2.3.1.aarch64.rpm libmbedcrypto7-2.28.0-bp154.2.3.1.ppc64le.rpm libmbedtls14-2.28.0-bp154.2.3.1.ppc64le.rpm libmbedx509-1-2.28.0-bp154.2.3.1.ppc64le.rpm mbedtls-devel-2.28.0-bp154.2.3.1.ppc64le.rpm libmbedcrypto7-2.28.0-bp154.2.3.1.s390x.rpm libmbedtls14-2.28.0-bp154.2.3.1.s390x.rpm libmbedx509-1-2.28.0-bp154.2.3.1.s390x.rpm mbedtls-devel-2.28.0-bp154.2.3.1.s390x.rpm openSUSE-2022-10255 important openSUSE Backports SLE-15-SP4 Update This update for vlc fixes the following issues: - Update to version 3.0.18 (CVE-2022-41325, boo#1206142): + macOS: Fix audio device listing with non-latin names. + Misc: Fix rendering and performance issue with older GPUs. + Updated translations. - Changes from version 3.0.18-rc2: + Codec/Demux: - Add support for Y16 chroma. - Fix build of gme plugin. + Lua: - Fix script for vocaroo. - Fix script for youtube to allow throttled playback. + Service Discovery: Fix UPnP regression on Windows. + Video Output: Fix video placement with caopengllayer. + Misc: Fix password search in kwallet module. - Changes from version 3.0.18-rc: + Demux: - Major adaptive streaming update, notably for multiple timelies and webvtt. - Fix seeking with some fragmented MP4 files. - Add support for DVBSub inside MKV. - Fix some Flac files that could not be played. - Improve seeking in Ogg files. + Decoders: - Fix DxVA/D3D11 crashes on HEVC files with bogus references. - Fix libass storage size and crash. - Fix decoding errors on macOS hw decoding on some HEVC files. + Video Output: - Fix color regression with VAAPI/iOS and OpenGL output. - Fix some resizing issues with OpenGL on GLX/EGL/X11/XV. - Fix Direct3d9 texture stretching. - Fix 10-bit accelerated video filters on macOS. + Playlist: Avoid playlist liveloop on failed/tiny items (temporize EOS bursts). + Misc: - Misc fixes for the extension UI on macOS. - Improve SMBv1 and SMBv2 behaviours. - Improve FTP compatibility. - Support RISC-V. - Fix AVI muxing for Windows Media Player compatibility. - Fix seeking speed on macOS. libvlc5-3.0.18-bp154.2.3.1.x86_64.rpm libvlccore9-3.0.18-bp154.2.3.1.x86_64.rpm vlc-3.0.18-bp154.2.3.1.src.rpm vlc-3.0.18-bp154.2.3.1.x86_64.rpm vlc-codec-gstreamer-3.0.18-bp154.2.3.1.x86_64.rpm vlc-devel-3.0.18-bp154.2.3.1.x86_64.rpm vlc-jack-3.0.18-bp154.2.3.1.x86_64.rpm vlc-lang-3.0.18-bp154.2.3.1.noarch.rpm vlc-noX-3.0.18-bp154.2.3.1.x86_64.rpm vlc-opencv-3.0.18-bp154.2.3.1.x86_64.rpm vlc-qt-3.0.18-bp154.2.3.1.x86_64.rpm vlc-vdpau-3.0.18-bp154.2.3.1.x86_64.rpm libvlc5-3.0.18-bp154.2.3.1.aarch64.rpm libvlccore9-3.0.18-bp154.2.3.1.aarch64.rpm vlc-3.0.18-bp154.2.3.1.aarch64.rpm vlc-codec-gstreamer-3.0.18-bp154.2.3.1.aarch64.rpm vlc-devel-3.0.18-bp154.2.3.1.aarch64.rpm vlc-jack-3.0.18-bp154.2.3.1.aarch64.rpm vlc-noX-3.0.18-bp154.2.3.1.aarch64.rpm vlc-opencv-3.0.18-bp154.2.3.1.aarch64.rpm vlc-qt-3.0.18-bp154.2.3.1.aarch64.rpm vlc-vdpau-3.0.18-bp154.2.3.1.aarch64.rpm libvlc5-3.0.18-bp154.2.3.1.ppc64le.rpm libvlccore9-3.0.18-bp154.2.3.1.ppc64le.rpm vlc-3.0.18-bp154.2.3.1.ppc64le.rpm vlc-codec-gstreamer-3.0.18-bp154.2.3.1.ppc64le.rpm vlc-devel-3.0.18-bp154.2.3.1.ppc64le.rpm vlc-jack-3.0.18-bp154.2.3.1.ppc64le.rpm vlc-noX-3.0.18-bp154.2.3.1.ppc64le.rpm vlc-opencv-3.0.18-bp154.2.3.1.ppc64le.rpm vlc-qt-3.0.18-bp154.2.3.1.ppc64le.rpm vlc-vdpau-3.0.18-bp154.2.3.1.ppc64le.rpm openSUSE-2022-10253 moderate openSUSE Backports SLE-15-SP4 Update This update for multimon-ng fixes the following issues: - Update to new upstream release 1.2.0 * Separated FLEX and FLEX_NEXT. The former is identical to 1.1.9, while FLEX_NEXT gained new features, as well as known regressions. (See #168) * Fix CVE-2020-36619 (boo#1206542) * Several smaller POCSAG fixes. * Fix for opening large wav files with improper header. multimon-ng-1.2.0-bp154.2.3.1.src.rpm multimon-ng-1.2.0-bp154.2.3.1.x86_64.rpm multimon-ng-1.2.0-bp154.2.3.1.i586.rpm multimon-ng-1.2.0-bp154.2.3.1.aarch64.rpm multimon-ng-1.2.0-bp154.2.3.1.ppc64le.rpm multimon-ng-1.2.0-bp154.2.3.1.s390x.rpm openSUSE-2023-6 moderate openSUSE Backports SLE-15-SP4 Update This update for torbrowser-launcher fixes the following issues: - Update to version 0.3.6: * Tor Browser 12.0 no longer uses locales, so the download URL and local path have changed - update to 0.3.5: * fix refreshing Tor Browser signing key in Flatpak package - Update to version 0.3.4: * Ship with latest version of the Tor Browser Developers OpenPGP public key. * Add several translations. * Various small bug fixes. torbrowser-apparmor-profile-0.3.6-bp154.2.3.1.noarch.rpm torbrowser-launcher-0.3.6-bp154.2.3.1.noarch.rpm torbrowser-launcher-0.3.6-bp154.2.3.1.src.rpm torbrowser-launcher-lang-0.3.6-bp154.2.3.1.noarch.rpm openSUSE-2023-19 important openSUSE Backports SLE-15-SP4 Update This update for libheimdal fixes the following issues: Update to version 7.8.0 - CVE-2022-42898 PAC parse integer overflows - CVE-2022-3437 Overflows and non-constant time leaks in DES{,3} and arcfour - CVE-2022-41916 Fix Unicode normalization read of 1 bytes past end of array - CVE-2021-44758 A null pointer de-reference DoS in SPNEGO acceptors - CVE-2021-3671 A null pointer de-reference when handling missing sname in TGS-REQ - CVE-2022-44640 Heimdal KDC: invalid free in ASN.1 codec - CVE-2019-14870: Validate client attributes in protocol-transition libasn1-8-7.8.0-bp154.2.4.1.x86_64.rpm libgssapi3-7.8.0-bp154.2.4.1.x86_64.rpm libhcrypto4-7.8.0-bp154.2.4.1.x86_64.rpm libhdb9-7.8.0-bp154.2.4.1.x86_64.rpm libheimbase1-7.8.0-bp154.2.4.1.x86_64.rpm libheimdal-7.8.0-bp154.2.4.1.src.rpm libheimdal-devel-7.8.0-bp154.2.4.1.x86_64.rpm libheimedit0-7.8.0-bp154.2.4.1.x86_64.rpm libheimntlm0-7.8.0-bp154.2.4.1.x86_64.rpm libhx509-5-7.8.0-bp154.2.4.1.x86_64.rpm libkadm5clnt7-7.8.0-bp154.2.4.1.x86_64.rpm libkadm5srv8-7.8.0-bp154.2.4.1.x86_64.rpm libkafs0-7.8.0-bp154.2.4.1.x86_64.rpm libkdc2-7.8.0-bp154.2.4.1.x86_64.rpm libkrb5-26-7.8.0-bp154.2.4.1.x86_64.rpm libotp0-7.8.0-bp154.2.4.1.x86_64.rpm libroken18-7.8.0-bp154.2.4.1.x86_64.rpm libsl0-7.8.0-bp154.2.4.1.x86_64.rpm libwind0-7.8.0-bp154.2.4.1.x86_64.rpm libasn1-8-7.8.0-bp154.2.4.1.i586.rpm libgssapi3-7.8.0-bp154.2.4.1.i586.rpm libhcrypto4-7.8.0-bp154.2.4.1.i586.rpm libhdb9-7.8.0-bp154.2.4.1.i586.rpm libheimbase1-7.8.0-bp154.2.4.1.i586.rpm libheimdal-devel-7.8.0-bp154.2.4.1.i586.rpm libheimedit0-7.8.0-bp154.2.4.1.i586.rpm libheimntlm0-7.8.0-bp154.2.4.1.i586.rpm libhx509-5-7.8.0-bp154.2.4.1.i586.rpm libkadm5clnt7-7.8.0-bp154.2.4.1.i586.rpm libkadm5srv8-7.8.0-bp154.2.4.1.i586.rpm libkafs0-7.8.0-bp154.2.4.1.i586.rpm libkdc2-7.8.0-bp154.2.4.1.i586.rpm libkrb5-26-7.8.0-bp154.2.4.1.i586.rpm libotp0-7.8.0-bp154.2.4.1.i586.rpm libroken18-7.8.0-bp154.2.4.1.i586.rpm libsl0-7.8.0-bp154.2.4.1.i586.rpm libwind0-7.8.0-bp154.2.4.1.i586.rpm libasn1-8-7.8.0-bp154.2.4.1.aarch64.rpm libgssapi3-7.8.0-bp154.2.4.1.aarch64.rpm libhcrypto4-7.8.0-bp154.2.4.1.aarch64.rpm libhdb9-7.8.0-bp154.2.4.1.aarch64.rpm libheimbase1-7.8.0-bp154.2.4.1.aarch64.rpm libheimdal-devel-7.8.0-bp154.2.4.1.aarch64.rpm libheimedit0-7.8.0-bp154.2.4.1.aarch64.rpm libheimntlm0-7.8.0-bp154.2.4.1.aarch64.rpm libhx509-5-7.8.0-bp154.2.4.1.aarch64.rpm libkadm5clnt7-7.8.0-bp154.2.4.1.aarch64.rpm libkadm5srv8-7.8.0-bp154.2.4.1.aarch64.rpm libkafs0-7.8.0-bp154.2.4.1.aarch64.rpm libkdc2-7.8.0-bp154.2.4.1.aarch64.rpm libkrb5-26-7.8.0-bp154.2.4.1.aarch64.rpm libotp0-7.8.0-bp154.2.4.1.aarch64.rpm libroken18-7.8.0-bp154.2.4.1.aarch64.rpm libsl0-7.8.0-bp154.2.4.1.aarch64.rpm libwind0-7.8.0-bp154.2.4.1.aarch64.rpm libasn1-8-7.8.0-bp154.2.4.1.ppc64le.rpm libgssapi3-7.8.0-bp154.2.4.1.ppc64le.rpm libhcrypto4-7.8.0-bp154.2.4.1.ppc64le.rpm libhdb9-7.8.0-bp154.2.4.1.ppc64le.rpm libheimbase1-7.8.0-bp154.2.4.1.ppc64le.rpm libheimdal-devel-7.8.0-bp154.2.4.1.ppc64le.rpm libheimedit0-7.8.0-bp154.2.4.1.ppc64le.rpm libheimntlm0-7.8.0-bp154.2.4.1.ppc64le.rpm libhx509-5-7.8.0-bp154.2.4.1.ppc64le.rpm libkadm5clnt7-7.8.0-bp154.2.4.1.ppc64le.rpm libkadm5srv8-7.8.0-bp154.2.4.1.ppc64le.rpm libkafs0-7.8.0-bp154.2.4.1.ppc64le.rpm libkdc2-7.8.0-bp154.2.4.1.ppc64le.rpm libkrb5-26-7.8.0-bp154.2.4.1.ppc64le.rpm libotp0-7.8.0-bp154.2.4.1.ppc64le.rpm libroken18-7.8.0-bp154.2.4.1.ppc64le.rpm libsl0-7.8.0-bp154.2.4.1.ppc64le.rpm libwind0-7.8.0-bp154.2.4.1.ppc64le.rpm libasn1-8-7.8.0-bp154.2.4.1.s390x.rpm libgssapi3-7.8.0-bp154.2.4.1.s390x.rpm libhcrypto4-7.8.0-bp154.2.4.1.s390x.rpm libhdb9-7.8.0-bp154.2.4.1.s390x.rpm libheimbase1-7.8.0-bp154.2.4.1.s390x.rpm libheimdal-devel-7.8.0-bp154.2.4.1.s390x.rpm libheimedit0-7.8.0-bp154.2.4.1.s390x.rpm libheimntlm0-7.8.0-bp154.2.4.1.s390x.rpm libhx509-5-7.8.0-bp154.2.4.1.s390x.rpm libkadm5clnt7-7.8.0-bp154.2.4.1.s390x.rpm libkadm5srv8-7.8.0-bp154.2.4.1.s390x.rpm libkafs0-7.8.0-bp154.2.4.1.s390x.rpm libkdc2-7.8.0-bp154.2.4.1.s390x.rpm libkrb5-26-7.8.0-bp154.2.4.1.s390x.rpm libotp0-7.8.0-bp154.2.4.1.s390x.rpm libroken18-7.8.0-bp154.2.4.1.s390x.rpm libsl0-7.8.0-bp154.2.4.1.s390x.rpm libwind0-7.8.0-bp154.2.4.1.s390x.rpm openSUSE-2023-7 moderate openSUSE Backports SLE-15-SP4 Update This update for hylafax+ fixes the following issues: Update to version 7.0.6 * cope with SSL Fax senders who skip Phase C * add ability to trace SSL Fax data reception * handle timeout OK response to +FRH=3 and +FRM=n * don't leave the modem waiting for a response when in SSL Fax * improve recovery from unexpected SSL Fax terminations during ECM * try to cope with false "no dialtone" results * add initial support for SSL Fax Proxy servers hylafax+-7.0.6-bp154.2.3.1.src.rpm hylafax+-7.0.6-bp154.2.3.1.x86_64.rpm hylafax+-client-7.0.6-bp154.2.3.1.x86_64.rpm libfaxutil7_0_6-7.0.6-bp154.2.3.1.x86_64.rpm hylafax+-7.0.6-bp154.2.3.1.i586.rpm hylafax+-client-7.0.6-bp154.2.3.1.i586.rpm libfaxutil7_0_6-7.0.6-bp154.2.3.1.i586.rpm hylafax+-7.0.6-bp154.2.3.1.aarch64.rpm hylafax+-client-7.0.6-bp154.2.3.1.aarch64.rpm libfaxutil7_0_6-7.0.6-bp154.2.3.1.aarch64.rpm hylafax+-7.0.6-bp154.2.3.1.ppc64le.rpm hylafax+-client-7.0.6-bp154.2.3.1.ppc64le.rpm libfaxutil7_0_6-7.0.6-bp154.2.3.1.ppc64le.rpm hylafax+-7.0.6-bp154.2.3.1.s390x.rpm hylafax+-client-7.0.6-bp154.2.3.1.s390x.rpm libfaxutil7_0_6-7.0.6-bp154.2.3.1.s390x.rpm openSUSE-2023-8 moderate openSUSE Backports SLE-15-SP4 Update This update for gdal rebuilds it with current libhdf5. gdal-3.4.1-bp154.2.2.1.src.rpm gdal-3.4.1-bp154.2.2.1.x86_64.rpm gdal-devel-3.4.1-bp154.2.2.1.x86_64.rpm libgdal30-3.4.1-bp154.2.2.1.x86_64.rpm perl-gdal-3.4.1-bp154.2.2.1.x86_64.rpm python3-GDAL-3.4.1-bp154.2.2.1.x86_64.rpm gdal-3.4.1-bp154.2.2.1.aarch64.rpm gdal-devel-3.4.1-bp154.2.2.1.aarch64.rpm libgdal30-3.4.1-bp154.2.2.1.aarch64.rpm perl-gdal-3.4.1-bp154.2.2.1.aarch64.rpm python3-GDAL-3.4.1-bp154.2.2.1.aarch64.rpm gdal-3.4.1-bp154.2.2.1.ppc64le.rpm gdal-devel-3.4.1-bp154.2.2.1.ppc64le.rpm libgdal30-3.4.1-bp154.2.2.1.ppc64le.rpm perl-gdal-3.4.1-bp154.2.2.1.ppc64le.rpm python3-GDAL-3.4.1-bp154.2.2.1.ppc64le.rpm gdal-3.4.1-bp154.2.2.1.s390x.rpm gdal-devel-3.4.1-bp154.2.2.1.s390x.rpm libgdal30-3.4.1-bp154.2.2.1.s390x.rpm perl-gdal-3.4.1-bp154.2.2.1.s390x.rpm python3-GDAL-3.4.1-bp154.2.2.1.s390x.rpm openSUSE-2023-15 moderate openSUSE Backports SLE-15-SP4 Update This update for gnuhealth fixes the following issues: Update to version 4.0.5 - health_crypto: Fix bug #63558: Fault: 'NoneType' object has no attribute 'name' - Fix bug #63557: Missing view architecture for ('calendar.category', None, 'tree') - Fix bug #63533: Model 'gnuhealth.pol' is missing a default access - Fix bug #63532: health_caldav misses requiremnt vobject in setup.py - Fix bug #63517: Fault: 'webdav' is not in list - Fix bug #62777: The term health prof used for both initiating and signing professional in patient evaluation - Fix bug #62634: Missing Spanish Translations gnuhealth-4.0.5-bp154.2.6.1.noarch.rpm gnuhealth-4.0.5-bp154.2.6.1.src.rpm gnuhealth-orthanc-4.0.5-bp154.2.6.1.noarch.rpm openSUSE-2023-16 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Update to version 109.0.5414.74 (boo#1207018): - CVE-2023-0128: Use after free in Overview Mode - CVE-2023-0129: Heap buffer overflow in Network Service - CVE-2023-0130: Inappropriate implementation in Fullscreen API - CVE-2023-0131: Inappropriate implementation in iframe Sandbox - CVE-2023-0132: Inappropriate implementation in Permission prompts - CVE-2023-0133: Inappropriate implementation in Permission prompts - CVE-2023-0134: Use after free in Cart - CVE-2023-0135: Use after free in Cart - CVE-2023-0136: Inappropriate implementation in Fullscreen API - CVE-2023-0137: Heap buffer overflow in Platform Apps - CVE-2023-0138: Heap buffer overflow in libphonenumber - CVE-2023-0139: Insufficient validation of untrusted input in Downloads - CVE-2023-0140: Inappropriate implementation in File System API - CVE-2023-0141: Insufficient policy enforcement in CORS - Various fixes from internal audits, fuzzing and other initiatives chromedriver-109.0.5414.74-bp154.2.58.1.x86_64.rpm chromium-109.0.5414.74-bp154.2.58.1.src.rpm chromium-109.0.5414.74-bp154.2.58.1.x86_64.rpm chromedriver-109.0.5414.74-bp154.2.58.1.aarch64.rpm chromium-109.0.5414.74-bp154.2.58.1.aarch64.rpm openSUSE-2023-9 important openSUSE Backports SLE-15-SP4 Update This update for rubygem-activerecord-5.2 fixes the following issues: - CVE-2022-32224: Fixed possible remote code execution when using YAML serialized columns in Active Record (boo#1201465). ruby2.5-rubygem-activerecord-5.2-5.2.3-bp154.2.3.1.x86_64.rpm ruby2.5-rubygem-activerecord-doc-5.2-5.2.3-bp154.2.3.1.x86_64.rpm rubygem-activerecord-5.2-5.2.3-bp154.2.3.1.src.rpm ruby2.5-rubygem-activerecord-5.2-5.2.3-bp154.2.3.1.i586.rpm ruby2.5-rubygem-activerecord-doc-5.2-5.2.3-bp154.2.3.1.i586.rpm ruby2.5-rubygem-activerecord-5.2-5.2.3-bp154.2.3.1.aarch64.rpm ruby2.5-rubygem-activerecord-doc-5.2-5.2.3-bp154.2.3.1.aarch64.rpm ruby2.5-rubygem-activerecord-5.2-5.2.3-bp154.2.3.1.ppc64le.rpm ruby2.5-rubygem-activerecord-doc-5.2-5.2.3-bp154.2.3.1.ppc64le.rpm ruby2.5-rubygem-activerecord-5.2-5.2.3-bp154.2.3.1.s390x.rpm ruby2.5-rubygem-activerecord-doc-5.2-5.2.3-bp154.2.3.1.s390x.rpm openSUSE-2023-25 important openSUSE Backports SLE-15-SP4 Update This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.23: * Fix unexpected reindexing when using uptime as the reindex method * Spine should prevent the script server from connecting to remote when offline * Improve Script Server Timeout Logging * Add SQL_NO_CACHE to Spine Queries cacti 1.2.23, providing security fixes, feature improvements and bug fixes: * CVE-2022-46169: Unauthenticated Command Injection in Remote Agent (boo#1206185) * Security: Add .htaccess file to scripts folder * When using Single Sign-on Frameworks, revocation was not always detected in callbacks * Fixes to the installer, and compatibility with PHP and MySQL * Performance improvements for certain conditions * Various UI fixes * Bug fixes related to SNMP, RRDtools, and agents cacti-spine-1.2.23-bp154.2.6.1.src.rpm cacti-spine-1.2.23-bp154.2.6.1.x86_64.rpm cacti-1.2.23-bp154.2.6.1.noarch.rpm cacti-1.2.23-bp154.2.6.1.src.rpm cacti-spine-1.2.23-bp154.2.6.1.i586.rpm cacti-spine-1.2.23-bp154.2.6.1.aarch64.rpm cacti-spine-1.2.23-bp154.2.6.1.ppc64le.rpm cacti-spine-1.2.23-bp154.2.6.1.s390x.rpm openSUSE-2023-27 moderate openSUSE Backports SLE-15-SP4 Update This update for tor fixes the following issues: tor 0.4.7.13: * fix SafeSocks option to avoid DNS leaks (boo#1207110, TROVE-2022-002) * improve congestion control * fix relay channel handling tor 0.4.7.12: * new key for moria1 * new metrics are exported on the MetricsPort for the congestion control subsystem tor-0.4.7.13-bp154.2.12.1.src.rpm tor-0.4.7.13-bp154.2.12.1.x86_64.rpm tor-0.4.7.13-bp154.2.12.1.i586.rpm tor-0.4.7.13-bp154.2.12.1.aarch64.rpm tor-0.4.7.13-bp154.2.12.1.ppc64le.rpm tor-0.4.7.13-bp154.2.12.1.s390x.rpm openSUSE-2023-24 moderate openSUSE Backports SLE-15-SP4 Update This update for php-redis fixes the following issues: Updated to 5.3.7 * https://pecl.php.net/package-changelog.php?package=redis&release=5.3.7 * Fixed RedisArray::[hsz]scan and tests. * Fixed RedisArray::scan. * Fixed LZF decompression logic. - Updated to 5.3.6 * Fix a segfault in RedisArray::del - Updated to 5.3.5 * https://pecl.php.net/package-changelog.php?package=redis&release=5.3.5 * Added experimental support for detecting a dirty connection. * Fixed RedisArray constructor bug. * Fixed segfault in redis_setoption_handler. * Fixed masters array in the event of a cluster failover. * Fixed 32 bit type error. * Fixed radix character in certain locales. * Fixed ZSTD Validation. - Update to 5.3.4 * Fix multi/pipeline segfault on Apple silicon * Pass compression flag on HMGET in RedisCluster * Abide by ZSTD error return constants * Fix timing related CI session tests - Update to 5.3.3 * Fix PHP8 Windows includes * Fix hash ops for php 8.0.1 * Disable cloning Redis and RedisCluster objects - Update to 5.3.2 * Use "%.17g" sprintf format for doubles as done in Redis server. * Allow to pass NULL as RedisCluster stream context options. * Verify SET options are strings before testing them as strings * Fix cluster segfault when dealing with NULL multi bulk replies in RedisCluster * Fix xReadGroup() must return message id * Fix memory leak in rediscluster session handler * Fix XInfo() returns false if the stream is empty * Relax requirements on set's expire argument * Refactor redis_sock_check_liveness * PHP8 compatibility * Update documentation * Add Redis::OPT_NULL_MULTIBULK_AS_NULL setting to treat NULL multi bulk replies as NULL instead of []. * Allow to specify stream context for rediscluster session handler * Add new parameter to RedisCluster to specify stream ssl/tls context. * Add new parameter to RedisSentinel to specify auth information - Update to 5.3.1 * https://pecl.php.net/package-changelog.php?package=redis&release=5.3.1 * Properly clean up on session start failure. * Treat NULL as a failure for redis_extract_auth_info. * Don't dereference a NULL zend_string or efree one. * Fix config.m4 messages and test for and include php_hash.h. - Update to 5.3.0 * https://pecl.php.net/package-changelog.php?package=redis&release=5.3.0 * Support for Redis 6 ACLs. * LZ4 Compression. * Support for new Redis 6 arguments. * Support for TLS connections. * New option Redis::SCAN_PREFIX, Redis::SCAN_NOPREFIX. * Configurable unit test authentication arguments. * Improved cluster slot caching mechanism to fix a couple of bugs and make it more efficient. * Stop calling Redis constructor when creating a RedisArray. * Use ZEND_LONG_FMT instead of system `long`. * Use long for SCAN iteration to fix potential overflow. * Avoid use-after-free of RediSock. * Use the portable `ZEND_LONG_FORMAT` family instead of C format specifiers. * PHP 8 compatibility. - Update to 5.2.2 * https://pecl.php.net/package-changelog.php?package=redis&release=5.2.2 This is a bugfix release that contains a fix for authentication when using persistent connections, and an option to make the ECHO challenge response logic optional. * Inexpensive liveness check, and making ECHO optional [56898f81] (Pavlo Yatsukhnenko) * Move `AUTH` to `redis_sock_server_open` [80f2529b](Pavlo Yatsukhnenko) - Update to 5.2.1 * https://pecl.php.net/package-changelog.php?package=redis&release=5.2.1 * Fix arginfo for Redis::zadd. * Fix segfault on closing persistent stream. - Update to 5.2.0 * https://pecl.php.net/package-changelog.php?package=redis&release=5.2.0 * Include RedisSentinelTest.php in package.xml! * Fix -Wmaybe-uninitialized warning. * Fix improper destructor when zipping values and scores. * Use php_rand instead of php_mt_rand for liveness challenge string. * Initial support for RedisSentinel. * Fix for ASK redirections. * Create specific 'test skipped' exception. * Fixed memory leaks in RedisCluster. * Fixes for session lifetime values that underflow or overflow. * Enables slot caching for Redis Cluster. * Support TYPE argument for SCAN. * Added challenge/response mechanism for persistent connections. - Update to 5.1.1 * https://pecl.php.net/package-changelog.php?package=redis&release=5.1.1 * Fix fail to connect to redis through unix socket. * Documentation improvements. - Update to 5.1.0 * https://pecl.php.net/package-changelog.php?package=redis&release=5.1.0 * Fix regression for multihost_distribute_call added in 112c77e3. * Fix regression for conntecting to unix sockets with relative path added in 1f41da64. * Fix unix-socket detection logic broken in 418428fa. * Fix memory leak and bug with getLastError for redis_mbulk_reply_assoc and redis_mbulk_reply_zipped. * Fix bug with password contain "#" for redis_session. * Add optional support for Zstd compression, using --enable-redis-ztsd. This requires libzstd version >= 1.3.0. * Fix overallocation in RedisCluster directed node commands. * Also attach slaves when caching cluster slots. * Use zend_register_persistent_resource_ex for connection pooling. * Refactor redis_session. * Documentation improvements. * Fix missing null byte in PHP_MINFO_FUNCTION. * Remove dead code generic_unsubscribe_cmd. * Add documentation for zpopmin and zpopmax. * Allow to specify scheme for session handler. - Refresh spec-file with manual optmizations * Remove version limit from BuildRequires:php7-devel (no actual). * Remove BuildRequires:php7-soap (no needed). * Add BuildRequires:php7-json (need for tests, but still does not load). * Add %make_build and %make_install macros. - Update to 5.0.2 * https://pecl.php.net/package-changelog.php?package=redis&release=5.0.2 * RedisCluster segfaults after second connection with cache_slots enabled. * Cleanup TSRMLS_* usage. * Replace ulong with zend_ulong. * Replace uint with uint32_t. * Fix regression for conntecting to ports > 32767. * RedisCluster segfaults after second connection with cache_slots enabled. * Documentation improvements. - Update to 5.0.0 This release contains important improvements and breaking changes. The most interesting are: drop PHP5 support, RedisCluster slots caching, JSON and msgpack serializers, soft deprecation of non-Redis commands. * Remove HAVE_SPL * Allow compilation without JSON serialization enabled and fixes for deprecated helper methods. * Enable connection pooling by default * Soft deprecate methods that aren't actually Redis commands * Enable pooling for cluster slave nodes * xInfo response format * Make the XREADGROUP optional COUNT and BLOCK arguments nullable * Allow PING to take an optional argument * Allow ZRANGE to be called either with `true` or `['withscores' => true]` * Allow to specify server address as schema://host * Allow persistent_id to be passed as NULL with strict_types enabled * Add server address to exception message * Adds OPT_REPLY_LITERAL for rawCommand and EVAL * JSON serializer * Add support for STREAM to the type command * Fix TypeError when using built-in constants in `setOption` * Handle references in MGET * msgpack serializer * Add Cluster slots caching * Drop PHP5 support * Documentation improvements - Update to 4.3.0 * Proper persistent connections pooling implementation * RedisArray auth * Use zend_string for storing key * Add ZPOPMAX and ZPOPMIN support * Implement GEORADIUS_RO and GEORADIUSBYMEMBER_RO * Add callback parameter to subscribe/psubscribe arginfo * Don't check the number affected keys in PS_UPDATE_TIMESTAMP_FUNC * Xgroup updates * RedisCluster auth * Cancel pipeline mode without executing commands * Use zend_string for pipeline_cmd * Different key hashing algorithms from hash extension * Breaking the lock acquire loop in case of network problems * Implement consistent hashing algorithm for RedisArray * Use zend_string for storing RedisArray hosts * Update lzf_compress to be compatible with PECL lzf extension * Fix RedisCluster keys memory leak * Directly use return_value in RedisCluster::keys method * Fix segfault in Redis Cluster with inconsistent configuration * Masters info leakfix * Refactor redis_sock_read_bulk_reply * Remove unused parameter lazy_connect from redis_sock_create * Remove useless ZEND_ACC_[C|D]TOR. * Documentation improvements - Added additional settings to redis.ini - Update to 4.2.0 * https://pecl.php.net/package-changelog.php?package=redis&release=4.2.0 * Optimize close method. * Prevent potential infinite loop for sessions. * Fix coverty warnings. * Fix session memory leaks. * Fix XCLAIM on 32-bit installs. * Build warning fixes. * Fix incorrect arginfo for `Redis::sRem` and `Redis::multi`. * Update STREAM API to handle STATUS -> BULK reply change. * Treat a -1 response from cluster_check_response as a timeout. * Use a ZSET insted of SET for EVAL tests. * Missing space between command and args. * Streams API. * Reset the socket after a timeout to make sure no wrong data is received. * Modify session testing logic. * Allow '-' and '+' arguments and add tests for zLexCount and zRemRangeByLex. * Fix printf format warnings. * Session module is required. * Set default values for ini entries. * Display ini entries in output of phpinfo. * Persistant connections can be closed via close method + change reconnection logic. * Documentation improvements. - Update to 4.1.1 * https://pecl.php.net/package-changelog.php?package=redis&release=4.1.1 * Fix arginfo for Redis::set method. * Fix compression in RedisCluster. * Fix TravisCI builds. * Highlight php codes in documentation. - Update to 4.1.0 * https://pecl.php.net/package-changelog.php?package=redis&release=4.1.0 * Add callbacks validate_sid and update_timestamp to session handler. * Call cluster_disconnect before destroying cluster object. * Bulk strings can be zero length. * Handle async parameter for flushDb and flushAll. * Split INSTALL and add more instructions. * Only the first arg of connect and pconnect is required. * Add session locking functionality. * Fix compression in RedisCluster. * Refactor geo* commands + documentation improvements. - Update to 4.0.2 * https://pecl.php.net/package-changelog.php?package=redis&release=4.0.2 * Fix of exists method to take multiple keys and return integer value. - Update to 4.0.1 * Fix arginfo for connect/pconnect issue * Don't leak a ZVAL * Fix config.m4 for lzf * Updates EXISTS documentation and notes change in 4.0.0 * Fix typo in notes - Update to 4.0.0 * https://pecl.php.net/package-changelog.php?package=redis&release=4.0.0 * Add proper ARGINFO for all methods. * Let EXISTS take multiple keys. * Use zend_string as returning value for ra_extract_key and ra_call_extractor. * Implement SWAPDB and UNLINK commands. * Return real connection error as exception. * Disallow using empty string as session name. * Use zend_string for storing auth and prefix members. * The element of z_seeds may be a reference on php7. * Avoid connection in helper methods. * Add tcp_keepalive option to redis sock. * More robust GEORADIUS COUNT validation. * Add LZF compression (experimental). * Allow to use empty string as persistant_id. * Don't use convert_to_string in redis_hmget_cmd. * Allow mixing MULTI and PIPELINE modes (experimental). * PHP >=7.3.0 uses zend_string to store `php_url` elements. * Documentation improvements. - Remove %configure/make duplicates. - Add %licence macros. - Build with hidden visibility, only a few symbols must be exported, those are marked with default visibility in PHP core headers. - Update to 3.1.6 * ChangeLog https://pecl.php.net/package-changelog.php?package=redis&release=3.1.6 * Fix of RedisArray distributor hashing function which was broken in 3.1.4. * Fix RedisCluster constructor with PHP 7 strict scalar type. * Allow to use empty string as persistant_id. * Fix cluster_init_seeds. * Fix z_seeds may be a reference. * PHP >=7.3 uses zend_string for php_url elements. - Update to 3.1.4 * ChangeLog https://pecl.php.net/package-changelog.php?package=redis&release=3.1.4 * Allow mixing MULTI and PIPELINE modes (experimental). * Added integration for coverty static analysis and fixed several warnings. * Fixed link to redis cluster documentation. * Remove unused PHP_RINIT and PHP_RSHUTDOWN functions. * Removed duplicate HGET in redis array hash table, formatting. * Treat NULL bulk as success for session read. * Refactor redis_send_discard. * Updated runtime exception handling. * Added a github issue template. * Initialize gc member of zend_string. * Fix valgrind warnings. * Fix php5/php7 compatibility layer. * Fix typo in README.markdown. * Improve redis array rehash. * Change redis array pure_cmds from zval to hashtable. * Don't try to set TCP_NODELAY on a unix socket and don't warn on multiple calls to pipeline. * Use zend_string rather than char* for various context fields. * Various other library fixes. - Remove the php5 packages as the php5 language is being removed - Update to 3.1.3 * ChangeLog https://pecl.php.net/package-changelog.php?package=redis&release=3.1.3 - Add config file redis.ini - Format spec-file to macro style - Upgraded to version 3.1.2 * RedisArray segfault fix [564ce3] (Pavlo Yatsukhnenko) * Small memory leak fix [645888b] (Mike Grunder) * Segfault fix when recreating RedisCluster objects [abf7d4] (Michael Grunder) * Fix for RedisCluster bulk response parsing [4121c4] (Alberto Fern?ndez) * Re allow single array for sInterStore [6ef0c2, d01966] (Michael Grunder) * Better TravisCI integration [4fd2f6] (Pavlo Yatsukhnenko) - Upgraded to version 3.1.1 This release contains mostly fixes for issues introduced when merging the php 5 and 7 codebase into a single branch. * Fixed a segfault in igbinary serialization (@yatsukhnenko) * Restore 2.2.8/3.0.0 functionality to distinguish between an error and simply empty session data. (@remicollet) * Fix double to string conversion function (@yatsukhnenko) * Use PHP_FE_END definition when available (@remicollet) * Fixed various 'static function declared but not used' warnings * Fixes to various calls which were typecasting pointers to the wrong size. (@remicollet) * Additional test updates for 32 bit systems (@remicollet) * ARM rounding issue in tests (@remicollet) * Use new zend_list_close instead of zend_list_delete when reconnecting. * Refactoring of redis_boolean_response_impl and redis_sock_write (@yatsukhnenko) * Added php session unit test (@yatsukhnenko) * Added explicit module dependancy for igbinary (@remicollet) * Added phpinfo serialization information (@remicollet) - Version 3.1.0 In this version of phpredis codebase was unified to work with all versions of php. Also many bug fixes and some improvements has been made. - Improvements * Support the client to Redis Cluster just having one master (andyli) [892e5646] * Allow both long and strings that are longs for zrangebyscore offset/limit (Michael Grunder) [bdcdd2aa] * Process NX|XX, CH and INCR options in zAdd command (Pavlo Yatsukhnenko) [71c9f7c8] - Fixes * Fix incrby/decrby for large integers (Michael Grunder) [3a12758a] * Use static declarations for spl_ce_RuntimeException decl (Jeremy Mikola) [a9857d69] * Fixed method call problem causes session handler to display two times (ZiHang Gao) [24f86c49] * psetex method returns '+OK' on success, not true (sitri@ndxbn) [afcd8445] * Fix integer overflow for long (>32bit) increments in hIncrBy (iyesin) [58e1d799] * Move zend_object handler to the end (Michael Grunder) [34107966] * Using setOption on redis array causes immediate connection (Pavlo Yatsukhnenko) [f1a85b38] - Provide php-redis as php5 and php7 can't be installed together php7-redis-5.3.7-bp154.2.1.src.rpm php7-redis-5.3.7-bp154.2.1.x86_64.rpm php8-redis-5.3.7-bp154.2.1.src.rpm php8-redis-5.3.7-bp154.2.1.x86_64.rpm php7-redis-5.3.7-bp154.2.1.i586.rpm php8-redis-5.3.7-bp154.2.1.i586.rpm php7-redis-5.3.7-bp154.2.1.aarch64.rpm php8-redis-5.3.7-bp154.2.1.aarch64.rpm php7-redis-5.3.7-bp154.2.1.ppc64le.rpm php8-redis-5.3.7-bp154.2.1.ppc64le.rpm php7-redis-5.3.7-bp154.2.1.s390x.rpm php8-redis-5.3.7-bp154.2.1.s390x.rpm openSUSE-2023-21 moderate openSUSE Backports SLE-15-SP4 Update This update for PlayOnLinux fixes the following issues: - Remove required python2 package dbus-1-python from spec. PlayOnLinux-4.4.0-bp154.2.3.1.noarch.rpm PlayOnLinux-4.4.0-bp154.2.3.1.src.rpm openSUSE-2023-23 moderate openSUSE Backports SLE-15-SP4 Update This update for python-bugzilla fixes the following issues: - Update to 3.2.0: * Use soon-to-be-required Authorization header for RH bugzilla * Remove cookie auth support * Detect bugzilla.stage.redhat.com as RHBugzilla * Add limit as option to build_query - Disable python2 building, as the support was dropped with 3.0.0 - Update to 3.0.2: - Fix API key leaking into requests exceptions - Skip man page generation to fix build on Windows (Alexander Todorov) - Drop python2 support - New option bugzilla modify --minor-update option - requests: use PYTHONBUGZILLA_REQUESTS_TIMEOUT env variable - xmlrpc: Don't add api key to passed in user dictionary - cli: Add query --extrafield, --includefield, --excludefield - Revive bugzilla.rhbugzilla.RHBugzilla import path - Bugzilla REST API support - Add --json command line output option - Add APIs for Bugzilla Groups (Pierre-Yves Chibon) - Add Bugzilla.get_requests_session() API to access raw requests Session - Add Bugzilla.get_xmlrpc_proxy() API to access raw ServerProxy - Add Bugzilla requests_session= init parameter to pass in auth, etc. - Add bugzilla attach --ignore-obsolete (Čestmír Kalina) - Add bugzilla login --api-key for API key prompting (Danilo C. L. de Paula) - Add bugzilla new --private python-bugzilla-3.2.0-bp154.3.3.1.src.rpm python3-bugzilla-3.2.0-bp154.3.3.1.noarch.rpm openSUSE-2023-31 moderate openSUSE Backports SLE-15-SP4 Update upx was updated to fix the following issues: - CVE-2023-23457: Fixed a segmentation fault when processing malicious elf files (boo#1207122) Update to release 4.0.1 * Fix crash when a linux/armeb LZMA-packed binary unpacks itself. * Resolve "CantPackException: bad ElfXX_Shdrs" with staticly-linked programs. * Resolve "CantPackException: need DT_INIT;..." when attempting to re-compress an already packed binary. Update to release 4.0 * Add support for EFI files upx-4.0.1-bp154.4.3.1.src.rpm upx-4.0.1-bp154.4.3.1.x86_64.rpm upx-4.0.1-bp154.4.3.1.aarch64.rpm upx-4.0.1-bp154.4.3.1.ppc64le.rpm upx-4.0.1-bp154.4.3.1.s390x.rpm openSUSE-2023-28 moderate openSUSE Backports SLE-15-SP4 Update This update for php-ssh2 fixes the following issues: - Added to Package Hub 15-SP4 and openSUSE Leap 15.4 with version 1.3.1 php7-ssh2-1.3.1-bp154.2.1.src.rpm php7-ssh2-1.3.1-bp154.2.1.x86_64.rpm php8-ssh2-1.3.1-bp154.2.1.src.rpm php8-ssh2-1.3.1-bp154.2.1.x86_64.rpm php7-ssh2-1.3.1-bp154.2.1.i586.rpm php8-ssh2-1.3.1-bp154.2.1.i586.rpm php7-ssh2-1.3.1-bp154.2.1.aarch64.rpm php8-ssh2-1.3.1-bp154.2.1.aarch64.rpm php7-ssh2-1.3.1-bp154.2.1.ppc64le.rpm php8-ssh2-1.3.1-bp154.2.1.ppc64le.rpm php7-ssh2-1.3.1-bp154.2.1.s390x.rpm php8-ssh2-1.3.1-bp154.2.1.s390x.rpm openSUSE-2023-36 moderate openSUSE Backports SLE-15-SP4 Update This update for lyx fixes the following issues: Update to 2.3.7: * Small improvements and bug fixes all over the place. For details see included ANNOUNCE or https://www.lyx.org/announce/2_3_7.txt lyx-2.3.7-bp154.3.3.1.src.rpm lyx-2.3.7-bp154.3.3.1.x86_64.rpm lyx-fonts-2.3.7-bp154.3.3.1.noarch.rpm lyx-2.3.7-bp154.3.3.1.i586.rpm lyx-2.3.7-bp154.3.3.1.aarch64.rpm lyx-2.3.7-bp154.3.3.1.ppc64le.rpm lyx-2.3.7-bp154.3.3.1.s390x.rpm openSUSE-2023-29 moderate openSUSE Backports SLE-15-SP4 Update This update for fwts fixes the following issues: Update to version 23.01.00: * lib: fwts_version.h - update to V23.01.00 * debian: update changelog * fwts-test: sync up with the fix of passed reserved value * Update copyright year to 2023 * lib: fwts_acpi_tables: fix the passed reserved value * fwts-test: add regression tests for AEST * acpi: aest: add tests for ACPI AEST table Update to version 22.11.00: * tpmevlog: add tests for checking the UEFI_IMAGE_LOAD_EVENT Structure * acpi: s3: fix the issue for determining time to resume Update to version 22.11.00: * lib: fwts_version.h - update to V22.11.00 * debian: update changelog * auto-package: mkpackage.sh: add lunar * fwts-test: sync test logs with latest ACPICA * ACPICA: Update to version 20221020 * Add Support for EV_COMPACT_HASH event type * fwts-test: add regression tests for CEDT * acpi: cedt: add tests for ACPI CEDT table (mantis 2076) * fwts-test: add regression test for RGRT * acpi: rgrt: add test for ACPI RGRT table( mantis 2056) * fwts-test: sync up with the default s3 sleep type description change * s3: modify the default sleep type description fwts-23.01.00-bp154.2.12.1.src.rpm fwts-23.01.00-bp154.2.12.1.x86_64.rpm fwts-23.01.00-bp154.2.12.1.i586.rpm fwts-23.01.00-bp154.2.12.1.aarch64.rpm openSUSE-2023-26 moderate openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: * ensure TextCodecCJK doesn't conflict with system icu (boo#1207147) * align default characters for old icu with that of ICU 72 * make V8 aware of space in ICU 72 time format chromedriver-109.0.5414.74-bp154.2.61.1.x86_64.rpm chromium-109.0.5414.74-bp154.2.61.1.src.rpm chromium-109.0.5414.74-bp154.2.61.1.x86_64.rpm chromedriver-109.0.5414.74-bp154.2.61.1.aarch64.rpm chromium-109.0.5414.74-bp154.2.61.1.aarch64.rpm openSUSE-2023-30 moderate openSUSE Backports SLE-15-SP4 Update This update for python-mechanize fixes the following issues: Update to version 0.4.8: - CVE-2021-32837: Fixed a denial of service via regular expression (boo#1207242). - Fixed mechanize not found during build (boo#1202003). python-mechanize-0.4.8-bp154.2.3.1.src.rpm python3-mechanize-0.4.8-bp154.2.3.1.noarch.rpm openSUSE-2023-41 important openSUSE Backports SLE-15-SP4 Update This update for EternalTerminal fixes the following issues: EternalTerminal was updated to 6.2.4: * CVE-2022-48257, CVE-2022-48258 remedied * fix readme regarding port forwarding #522 * Fix test failures that started appearing in CI #526 * Add documentation for the EternalTerminal protocol #523 * ssh-et: apply upstream updates #527 * docs: write gpg key to trusted.gpg.d for APT #530 * Support for ipv6 addresses (with or without port specified) #536 * ipv6 abbreviated address support #539 * Fix launchd plist config to remove daemonization. #540 * Explicitly set verbosity from cxxopts value. #542 * Remove daemon flag in systemd config #549 * Format all source with clang-format. #552 * Fix tunnel parsing exception handling. #550 * Fix SIGTERM behavior that causes systemd control of etserver to timeout. #554 * Parse telemetry ini config as boolean and make telemetry opt-in. #553 * Logfile open mode and permission plus location configurability. #556 - boo#1207123 (CVE-2022-48257) Fix predictable logfile names in /tmp - boo#1207124 (CVE-2022-48258) Fix etserver and etclient have world-readable logfiles - Note: Upstream released 6.2.2 with fixes then 6.2.4 and later removed 6.2.2 and redid 6.2.4 EternalTerminal-6.2.4-bp154.2.6.1.src.rpm EternalTerminal-6.2.4-bp154.2.6.1.x86_64.rpm EternalTerminal-6.2.4-bp154.2.6.1.aarch64.rpm openSUSE-2023-32 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 109.0.5414.119 (boo#1207512): * CVE-2023-0471: Use after free in WebTransport * CVE-2023-0472: Use after free in WebRTC * CVE-2023-0473: Type Confusion in ServiceWorker API * CVE-2023-0474: Use after free in GuestView * Various fixes from internal audits, fuzzing and other initiatives chromedriver-109.0.5414.119-bp154.2.64.1.x86_64.rpm chromium-109.0.5414.119-bp154.2.64.1.src.rpm chromium-109.0.5414.119-bp154.2.64.1.x86_64.rpm chromedriver-109.0.5414.119-bp154.2.64.1.aarch64.rpm chromium-109.0.5414.119-bp154.2.64.1.aarch64.rpm openSUSE-2023-34 moderate openSUSE Backports SLE-15-SP4 Update This update for proftpd fixes the following issues: proftpd was updated to 1.3.7f - Released 04-Dec-2022 * Issue 1533 - mod_tls module unexpectedly allows TLS handshake after authentication in some configurations. * Bug 4491 - unable to verify signed data: signature type 'rsa-sha2-512' does not match publickey algorithm 'ssh-rsa'. proftpd-1.3.7f-bp154.3.9.1.src.rpm proftpd-1.3.7f-bp154.3.9.1.x86_64.rpm proftpd-devel-1.3.7f-bp154.3.9.1.x86_64.rpm proftpd-doc-1.3.7f-bp154.3.9.1.x86_64.rpm proftpd-lang-1.3.7f-bp154.3.9.1.noarch.rpm proftpd-ldap-1.3.7f-bp154.3.9.1.x86_64.rpm proftpd-mysql-1.3.7f-bp154.3.9.1.x86_64.rpm proftpd-pgsql-1.3.7f-bp154.3.9.1.x86_64.rpm proftpd-radius-1.3.7f-bp154.3.9.1.x86_64.rpm proftpd-sqlite-1.3.7f-bp154.3.9.1.x86_64.rpm proftpd-1.3.7f-bp154.3.9.1.i586.rpm proftpd-devel-1.3.7f-bp154.3.9.1.i586.rpm proftpd-doc-1.3.7f-bp154.3.9.1.i586.rpm proftpd-ldap-1.3.7f-bp154.3.9.1.i586.rpm proftpd-mysql-1.3.7f-bp154.3.9.1.i586.rpm proftpd-pgsql-1.3.7f-bp154.3.9.1.i586.rpm proftpd-radius-1.3.7f-bp154.3.9.1.i586.rpm proftpd-sqlite-1.3.7f-bp154.3.9.1.i586.rpm proftpd-1.3.7f-bp154.3.9.1.aarch64.rpm proftpd-devel-1.3.7f-bp154.3.9.1.aarch64.rpm proftpd-doc-1.3.7f-bp154.3.9.1.aarch64.rpm proftpd-ldap-1.3.7f-bp154.3.9.1.aarch64.rpm proftpd-mysql-1.3.7f-bp154.3.9.1.aarch64.rpm proftpd-pgsql-1.3.7f-bp154.3.9.1.aarch64.rpm proftpd-radius-1.3.7f-bp154.3.9.1.aarch64.rpm proftpd-sqlite-1.3.7f-bp154.3.9.1.aarch64.rpm proftpd-1.3.7f-bp154.3.9.1.ppc64le.rpm proftpd-devel-1.3.7f-bp154.3.9.1.ppc64le.rpm proftpd-doc-1.3.7f-bp154.3.9.1.ppc64le.rpm proftpd-ldap-1.3.7f-bp154.3.9.1.ppc64le.rpm proftpd-mysql-1.3.7f-bp154.3.9.1.ppc64le.rpm proftpd-pgsql-1.3.7f-bp154.3.9.1.ppc64le.rpm proftpd-radius-1.3.7f-bp154.3.9.1.ppc64le.rpm proftpd-sqlite-1.3.7f-bp154.3.9.1.ppc64le.rpm proftpd-1.3.7f-bp154.3.9.1.s390x.rpm proftpd-devel-1.3.7f-bp154.3.9.1.s390x.rpm proftpd-doc-1.3.7f-bp154.3.9.1.s390x.rpm proftpd-ldap-1.3.7f-bp154.3.9.1.s390x.rpm proftpd-mysql-1.3.7f-bp154.3.9.1.s390x.rpm proftpd-pgsql-1.3.7f-bp154.3.9.1.s390x.rpm proftpd-radius-1.3.7f-bp154.3.9.1.s390x.rpm proftpd-sqlite-1.3.7f-bp154.3.9.1.s390x.rpm openSUSE-2023-42 moderate openSUSE Backports SLE-15-SP4 Update This update for tryton, trytond, trytond_purchase_request fixes the following issues: Changes in trytond: - Version 6.0.26 - Bugfix Release Changes in trytond_purchase_request: - Version 6.0.2 - Bugfix Release Changes in tryton: - Version 6.0.23 - Bugfix Release tryton-6.0.23-bp154.2.12.1.noarch.rpm tryton-6.0.23-bp154.2.12.1.src.rpm trytond-6.0.26-bp154.2.18.1.noarch.rpm trytond-6.0.26-bp154.2.18.1.src.rpm trytond_purchase_request-6.0.2-bp154.2.3.1.noarch.rpm trytond_purchase_request-6.0.2-bp154.2.3.1.src.rpm openSUSE-2023-35 moderate openSUSE Backports SLE-15-SP4 Update This update for opi fixes the following issues: Version 2.10.0 - Ask for submit in release.sh - Fix packman plugin for 15.4 - Introduce repo key handling (boo#1207334) Version 2.9.0 - Install selected package explicitly from the selected repo - Switch to resilio-sync for testsuite - add resilio-sync Version 2.8.0 - add anydesk - add yandex browser - Use list for plugin queries and check for conflicts - Don't show projects with non-matching repo Version 2.10.0 - Ask for submit in release.sh - Fix packman plugin for 15.4 - Introduce repo key handling (boo#1207334) Version 2.9.0 - Install selected package explicitly from the selected repo - Switch to resilio-sync for testsuite - add resilio-sync Version 2.8.0 - add anydesk - add yandex browser - Use list for plugin queries and check for conflicts - Don't show projects with non-matching repo opi-2.10.0-bp154.2.9.1.noarch.rpm opi-2.10.0-bp154.2.9.1.src.rpm openSUSE-2023-40 moderate openSUSE Backports SLE-15-SP4 Update This update for syslog-ng fixes the following issues: - CVE-2022-38725: Fixed integer overflow in parsers that allowed a remote denial of service (boo#1207460) libevtlog-3_35-0-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-3.35.1-bp154.3.3.1.src.rpm syslog-ng-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-curl-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-devel-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-geoip-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-java-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-mqtt-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-python-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-redis-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-smtp-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-snmp-3.35.1-bp154.3.3.1.x86_64.rpm syslog-ng-sql-3.35.1-bp154.3.3.1.x86_64.rpm libevtlog-3_35-0-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-curl-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-devel-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-geoip-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-java-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-mqtt-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-python-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-redis-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-smtp-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-snmp-3.35.1-bp154.3.3.1.aarch64.rpm syslog-ng-sql-3.35.1-bp154.3.3.1.aarch64.rpm libevtlog-3_35-0-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-curl-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-devel-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-geoip-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-java-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-mqtt-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-python-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-redis-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-smtp-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-snmp-3.35.1-bp154.3.3.1.ppc64le.rpm syslog-ng-sql-3.35.1-bp154.3.3.1.ppc64le.rpm libevtlog-3_35-0-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-curl-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-devel-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-geoip-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-java-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-mqtt-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-python-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-redis-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-smtp-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-snmp-3.35.1-bp154.3.3.1.s390x.rpm syslog-ng-sql-3.35.1-bp154.3.3.1.s390x.rpm openSUSE-2023-37 moderate openSUSE Backports SLE-15-SP4 Update This update for hylafax+ fixes the following issues: hylafax+ was updated to version 7.0.7: * constrain job priority to 0-255 (20 Jan 2023) * add support for libtiff v4.5.0 (4-5 Jan 2023) * add some Si2435 configuration considerations (27 Dec 2022, 20 Jan 2023) * if Class1RecvAbortOK is 0 then don't bother with the CAN byte at all (31 Oct 2022) * check that the modem isn't trying to deliver a message when we're trying to send binary data to it (16-17 Oct 2022) * prevent inherited values from creeping into subsequent xferfaxlog data (26 Aug 2022) * add external reference feature in dialrules (18 Aug 2022) hylafax+-7.0.7-bp154.2.6.1.src.rpm hylafax+-7.0.7-bp154.2.6.1.x86_64.rpm hylafax+-client-7.0.7-bp154.2.6.1.x86_64.rpm libfaxutil7_0_7-7.0.7-bp154.2.6.1.x86_64.rpm hylafax+-7.0.7-bp154.2.6.1.i586.rpm hylafax+-client-7.0.7-bp154.2.6.1.i586.rpm libfaxutil7_0_7-7.0.7-bp154.2.6.1.i586.rpm hylafax+-7.0.7-bp154.2.6.1.aarch64.rpm hylafax+-client-7.0.7-bp154.2.6.1.aarch64.rpm libfaxutil7_0_7-7.0.7-bp154.2.6.1.aarch64.rpm hylafax+-7.0.7-bp154.2.6.1.ppc64le.rpm hylafax+-client-7.0.7-bp154.2.6.1.ppc64le.rpm libfaxutil7_0_7-7.0.7-bp154.2.6.1.ppc64le.rpm hylafax+-7.0.7-bp154.2.6.1.s390x.rpm hylafax+-client-7.0.7-bp154.2.6.1.s390x.rpm libfaxutil7_0_7-7.0.7-bp154.2.6.1.s390x.rpm openSUSE-2023-38 moderate openSUSE Backports SLE-15-SP4 Update This update for pcm fixes the following issues: pcm was updated to version 202212: * pcm-memory: add SPR HBM support * support multiple hosts for Grafana dashboard with prometheus * fixes for pcm-iio/pcm-accel updated to the new upstream repository location and the name - Update to version 202211: * added Sapphire Rapids processor support * added new pcm-accel utility to monitor Sapphire Rapids accelerator performance * added --version option to all pcm tools * pcm: new "enforce flush output" option * pcm-raw: support ocr_msr_val and tid modifiers * fixed default value for CHA filter1 on CLX and SKX * pcm-sensor-server: allow build on FreeBSD * pcm-raw: adopt new JSON event file format, new URLs for perfmon event lists - Synchronize pcm package from openSUSE to SLES15-SP* supported produces (jsc#PED-395, jsc#PED-1004) - Update to version 202210: * Add simdjson submodule and move simdjson lib to version 2.0.4 * Add SNR register definitions * Fix some build related issues * Improvement on printing error messages * Fix sporadic crashes * Fix top-down events on some Linux kernels * Remove 32 bit code from DriverInterface * Remove public header file and remove header files from installation * Add IOUserClient class to CMake builds, and add fields in kernel topology structure to match userland structure * Remove of use of volatile and make memory allocation only for the lifetime of a function that needs it * Move DriverInterface code into MSRAccessor * Expand custom counter memory for PCM-Service * Removing of potentially existed files (symlinks) before writing * pcm-memory: option to enforce output flush * Implement RPL support * Introduce Raptor Lake IDs - Update to version 202207: * pcm-raw: add json output to pcm-raw * pcm-memory: fix csv output inconsistency for channels without traffic * fix automatic version generation on checkout * use GNUInstallDirs for install paths * pcm-iio: optionally display root port pci device id * automatically increase limit on open files on Linux * pcm-daemon: add 'memory mode hit approximation' metric + client sample app fixes * pcm-daemon: document all pcm-daemon metrics in the common.h header * add CPU model number in processor information list * correct hardcoded QPI strings and change to UPI when applicable * pcm-iio: add missing header item * pcm-raw: fix "EDP" format prints for offlined cores * PCM_KEEP_NMI_WATCHDOG=1 env variable to keep NMI watchdog running * support pcm-iio on ICX-D * support additional Alderlake cpu model * document -pid option in pcm-numa and pcm-tsx - Update to version 202203: * Add experimental pcm csv data plot and background collection scripts * Print 4 digits for MPI metrics * Uncore linux perf event robustness enhancements * pcm-raw: additional overhead reduction for multi-group collection * general overhead reduction (skip restoring thread affinity when not required) * pcm-numa, pcm-tsx: add -pid option * Fix compilation of examples on old gcc * Fix: restore affinity for caller process * Fixed race condition in resctrl (when not available) pcm-202212-bp154.2.3.1.src.rpm pcm-202212-bp154.2.3.1.x86_64.rpm pcm-202212-bp154.2.3.1.i586.rpm openSUSE-2023-39 moderate openSUSE Backports SLE-15-SP4 Update This update for opi fixes the following issues: Version 2.11.0 - Handle repos with multiple keys in key file (fixes #118) opi-2.11.0-bp154.2.12.1.noarch.rpm opi-2.11.0-bp154.2.12.1.src.rpm openSUSE-2023-125 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-App-perlbrew fixes the following issues: perl-App-perlbrew was updated to 0.96. see /usr/share/doc/packages/perl-App-perlbrew/Changes perl-App-perlbrew-0.96-bp154.2.3.1.noarch.rpm perl-App-perlbrew-0.96-bp154.2.3.1.src.rpm perl-CPAN-Perl-Releases-5.20221220-bp154.2.3.1.noarch.rpm perl-CPAN-Perl-Releases-5.20221220-bp154.2.3.1.src.rpm openSUSE-2023-57 moderate openSUSE Backports SLE-15-SP4 Update This update for python-Django fixes the following issues: - CVE-2023-23969: Fixed potential denial-of-service via Accept-Language headers (boo#1207565) - CVE-2022-41323: Fixed potential denial-of-service vulnerability in internationalized URLs (boo#1203793) python-Django-2.2.28-bp154.2.6.1.src.rpm python3-Django-2.2.28-bp154.2.6.1.noarch.rpm openSUSE-2023-45 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 110.0.5481.77 (boo#1208029): * CVE-2023-0696: Type Confusion in V8 * CVE-2023-0697: Inappropriate implementation in Full screen mode * CVE-2023-0698: Out of bounds read in WebRTC * CVE-2023-0699: Use after free in GPU * CVE-2023-0700: Inappropriate implementation in Download * CVE-2023-0701: Heap buffer overflow in WebUI * CVE-2023-0702: Type Confusion in Data Transfer * CVE-2023-0703: Type Confusion in DevTools * CVE-2023-0704: Insufficient policy enforcement in DevTools * CVE-2023-0705: Integer overflow in Core * Various fixes from internal audits, fuzzing and other initiatives - build with bundled libavif chromedriver-110.0.5481.77-bp154.2.67.1.x86_64.rpm chromium-110.0.5481.77-bp154.2.67.1.src.rpm chromium-110.0.5481.77-bp154.2.67.1.x86_64.rpm chromedriver-110.0.5481.77-bp154.2.67.1.aarch64.rpm chromium-110.0.5481.77-bp154.2.67.1.aarch64.rpm openSUSE-2023-54 moderate openSUSE Backports SLE-15-SP4 Update This update for jhead fixes the following issues: - Fixed autorotation problem caused by CVE-2022-41751 patch. [boo#1207150] jhead-3.06.0.1-bp154.2.9.1.src.rpm jhead-3.06.0.1-bp154.2.9.1.x86_64.rpm jhead-3.06.0.1-bp154.2.9.1.i586.rpm jhead-3.06.0.1-bp154.2.9.1.aarch64.rpm jhead-3.06.0.1-bp154.2.9.1.ppc64le.rpm jhead-3.06.0.1-bp154.2.9.1.s390x.rpm openSUSE-2023-46 important openSUSE Backports SLE-15-SP4 Update This update for timescaledb fixes the following issues: Update to version 2.9.3 - https://github.com/timescale/timescaledb/releases/tag/2.9.3 - https://github.com/timescale/timescaledb/releases/tag/2.9.2 - https://github.com/timescale/timescaledb/releases/tag/2.9.1 - https://github.com/timescale/timescaledb/releases/tag/2.9.0 - https://github.com/timescale/timescaledb/releases/tag/2.8.1 - https://github.com/timescale/timescaledb/releases/tag/2.8.0 - https://github.com/timescale/timescaledb/releases/tag/2.7.1 - https://github.com/timescale/timescaledb/releases/tag/2.7.2 - https://github.com/timescale/timescaledb/releases/tag/2.7.0 - https://github.com/timescale/timescaledb/releases/tag/2.6.1 - CVE-2022-24128: Fixed privilege escalation during extension installation (boo#1197063) - https://github.com/timescale/timescaledb/releases/tag/2.6.0 - https://github.com/timescale/timescaledb/releases/tag/2.5.2 - https://github.com/timescale/timescaledb/releases/tag/2.5.1 - https://github.com/timescale/timescaledb/releases/tag/1.7.5 - https://github.com/timescale/timescaledb/releases/tag/2.0.0 - https://github.com/timescale/timescaledb/releases/tag/2.0.1 - https://github.com/timescale/timescaledb/releases/tag/2.0.2 - https://github.com/timescale/timescaledb/releases/tag/2.1.0 - https://github.com/timescale/timescaledb/releases/tag/2.1.1 - https://github.com/timescale/timescaledb/releases/tag/2.2.0 - https://github.com/timescale/timescaledb/releases/tag/2.2.1 - https://github.com/timescale/timescaledb/releases/tag/2.3.0 - https://github.com/timescale/timescaledb/releases/tag/2.3.1 - https://github.com/timescale/timescaledb/releases/tag/2.4.0 - https://github.com/timescale/timescaledb/releases/tag/2.4.1 - https://github.com/timescale/timescaledb/releases/tag/2.4.2 - https://github.com/timescale/timescaledb/releases/tag/2.5.0 - enable postgresql14 - https://github.com/timescale/timescaledb/releases/tag/1.7.2 - https://github.com/timescale/timescaledb/releases/tag/1.7.3 - https://github.com/timescale/timescaledb/releases/tag/1.7.4 postgresql12-timescaledb-2.9.3-bp154.2.3.1.src.rpm postgresql12-timescaledb-2.9.3-bp154.2.3.1.x86_64.rpm postgresql13-timescaledb-2.9.3-bp154.2.3.1.src.rpm postgresql13-timescaledb-2.9.3-bp154.2.3.1.x86_64.rpm postgresql14-timescaledb-2.9.3-bp154.2.3.1.src.rpm postgresql14-timescaledb-2.9.3-bp154.2.3.1.x86_64.rpm postgresql15-timescaledb-2.9.3-bp154.2.3.1.src.rpm postgresql15-timescaledb-2.9.3-bp154.2.3.1.x86_64.rpm postgresql12-timescaledb-2.9.3-bp154.2.3.1.i586.rpm postgresql13-timescaledb-2.9.3-bp154.2.3.1.i586.rpm postgresql14-timescaledb-2.9.3-bp154.2.3.1.i586.rpm postgresql15-timescaledb-2.9.3-bp154.2.3.1.i586.rpm postgresql12-timescaledb-2.9.3-bp154.2.3.1.aarch64.rpm postgresql13-timescaledb-2.9.3-bp154.2.3.1.aarch64.rpm postgresql14-timescaledb-2.9.3-bp154.2.3.1.aarch64.rpm postgresql15-timescaledb-2.9.3-bp154.2.3.1.aarch64.rpm postgresql12-timescaledb-2.9.3-bp154.2.3.1.ppc64le.rpm postgresql13-timescaledb-2.9.3-bp154.2.3.1.ppc64le.rpm postgresql14-timescaledb-2.9.3-bp154.2.3.1.ppc64le.rpm postgresql15-timescaledb-2.9.3-bp154.2.3.1.ppc64le.rpm postgresql12-timescaledb-2.9.3-bp154.2.3.1.s390x.rpm postgresql13-timescaledb-2.9.3-bp154.2.3.1.s390x.rpm postgresql14-timescaledb-2.9.3-bp154.2.3.1.s390x.rpm postgresql15-timescaledb-2.9.3-bp154.2.3.1.s390x.rpm openSUSE-2023-49 moderate openSUSE Backports SLE-15-SP4 Update This update for orafce fixes the following issues: This update provides orafce in version 4.1.1+git0.519b5b5. postgresql12-orafce-4.1.1+git0.519b5b5-bp154.3.1.src.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.3.1.x86_64.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.3.1.src.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.3.1.x86_64.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.3.1.src.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.3.1.x86_64.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.3.1.src.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.3.1.x86_64.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.3.1.i586.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.3.1.i586.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.3.1.i586.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.3.1.i586.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.3.1.aarch64.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.3.1.aarch64.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.3.1.aarch64.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.3.1.aarch64.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.3.1.ppc64le.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.3.1.ppc64le.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.3.1.ppc64le.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.3.1.ppc64le.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.3.1.s390x.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.3.1.s390x.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.3.1.s390x.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.3.1.s390x.rpm openSUSE-2023-51 moderate openSUSE Backports SLE-15-SP4 Update This update for pgloader fixes the following issues: pgloader is shipped in version 3.6.9. pgloader-3.6.9-bp154.2.1.src.rpm pgloader-3.6.9-bp154.2.1.x86_64.rpm pgloader-3.6.9-bp154.2.1.aarch64.rpm pgloader-3.6.9-bp154.2.1.ppc64le.rpm openSUSE-2023-47 important openSUSE Backports SLE-15-SP4 Update This update for phpMyAdmin fixes the following issues: phpMyAdmin was updated to 5.2.1 This is a security and bufix release. * Security: - Fix (PMASA-2023-01, CWE-661, boo#1208186, CVE-2023-25727) Fix an XSS attack through the drag-and-drop upload feature. * Bugfixes: - issue #17522 Fix case where the routes cache file is invalid - issue #17506 Fix error when configuring 2FA without XMLWriter or Imagick - issue Fix blank page when some error occurs - issue #17519 Fix Export pages not working in certain conditions - issue #17496 Fix error in table operation page when partitions are broken - issue #17386 Fix system memory and system swap values on Windows - issue #17517 Fix Database Server panel not getting hidden by ShowServerInfo configuration directive - issue #17271 Fix database names not showing on Processes tab - issue #17424 Fix export limit size calculation - issue #17366 Fix refresh rate popup on Monitor page - issue #17577 Fix monitor charts size on RTL languages - issue #17121 Fix password_hash function incorrectly adding single quotes to password before hashing - issue #17586 Fix statistics not showing for empty databases - issue #17592 Clicking on the New index link on the sidebar does not throw an error anymore - issue #17584 It's now possible to browse a database that includes two % in its name - issue Fix PHP 8.2 deprecated string interpolation syntax - issue Some languages are now correctly detected from the HTTP header - issue #17617 Sorting is correctly remembered when $cfg['RememberSorting'] is true - issue #17593 Table filtering now works when action buttons are on the right side of the row - issue #17388 Find and Replace using regex now makes a valid query if no matching result set found - issue #17551 Enum/Set editor will not fail to open when creating a new column - issue #17659 Fix error when a database group is named tables, views, functions, procedures or events - issue #17673 Allow empty values to be inserted into columns - issue #17620 Fix error handling at phpMyAdmin startup for the JS SQL console - issue Fixed debug queries console broken UI for query time and group count - issue Fixed escaping of SQL query and errors for the debug console - issue Fix console toolbar UI when the bookmark feature is disabled and sql debug is enabled - issue #17543 Fix JS error on saving a new designer page - issue #17546 Fix JS error after using save as and open page operation on the designer - issue Fix PHP warning on GIS visualization when there is only one GIS column - issue #17728 Some select HTML tags will now have the correct UI style - issue #17734 PHP deprecations will only be shown when in a development environment - issue #17369 Fix server error when blowfish_secret is not exactly 32 bytes long - issue #17736 Add utf8mb3 as an alias of utf8 on the charset description page - issue #16418 Fix FAQ 1.44 about manually removing vendor folders - issue #12359 Setup page now sends the Content-Security-Policy headers - issue #17747 The Column Visibility Toggle will not be hidden by other elements - issue #17756 Edit/Copy/Delete row now works when using GROUP BY - issue #17248 Support the UUID data type for MariaDB >= 10.7 - issue #17656 Fix replace/change/set table prefix is not working - issue Fix monitor page filter queries only filtering the first row - issue Fix "Link not found!" on foreign columns for tables having no char column to show - issue #17390 Fix "Create view" modal doesn't show on results and empty results - issue #17772 Fix wrong styles for add button from central columns - issue #17389 Fix HTML disappears when exporting settings to browser's storage - issue #17166 Fix "Warning: #1287 'X' is deprecated [...] Please use ST_X instead." on search page - issue Use jquery-migrate.min.js (14KB) instead of jquery-migrate.min.js (31KB) - issue #17842 Use jquery.validate.min.js (24 KB) instead of jquery.validate.js (50 KB) - issue #17281 Fix links to databases for information_schema.SCHEMATA - issue #17553 Fix Metro theme unreadable links above navigation tree - issue #17553 Metro theme UI fixes and improvements - issue #17553 Fix Metro theme login form with - issue #16042 Exported gzip file of database has first ~73 kB uncompressed and rest is gzip compressed in Firefox - issue #17705 Fix inline SQL query edit FK checkbox preventing submit buttons from working - issue #17777 Fix Uncaught TypeError: Cannot read properties of null (reading 'inline') on datepickers when re-opened - issue Fix Original theme buttons style and login form width - issue #17892 Fix closing index edit modal and reopening causes it to fire twice - issue #17606 Fix preview SQL modal not working inside "Add Index" modal - issue Fix PHP error on adding new column on create table form - issue #17482 Default to "Full texts" when running explain statements - issue Fixed Chrome scrolling performance issue on a textarea of an "export as text" page - issue #17703 Fix datepicker appears on all fields, not just date - issue Fix space in the tree line when a DB is expanded - issue #17340 Fix "New Table" page -> "VIRTUAL" attribute is lost when adding a new column - issue #17446 Fix missing option for STORED virtual column on MySQL and PERSISTENT is not supported on MySQL - issue #17446 Lower the check for virtual columns to MySQL>=5.7.6 nothing is supported on 5.7.5 - issue Fix column names option for CSV Export - issue #17177 Fix preview SQL when reordering columns doesn't work on move columns - issue #15887 Fixed DROP TABLE errors ignored on multi table select for DROP - issue #17944 Fix unable to create a view from tree view button - issue #17927 Fix key navigation between select inputs (drop an old Firefox workaround) - issue #17967 Fix missing icon for collapse all button - issue #18006 Fixed UUID columns can't be moved - issue Add `spellcheck="false"` to all password fields and some text fields to avoid spell-jacking data leaks - issue Remove non working "Analyze Explain at MariaDB.org" button (MariaDB stopped this service) - issue #17229 Add support for Web Authentication API because Chrome removed support for the U2F API - issue #18019 Fix "Call to a member function fetchAssoc() on bool" with SQL mode ONLY_FULL_GROUP_BY on monitor search logs - issue Add back UUID and UUID_SHORT to functions on MySQL and all MariaDB versions - issue #17398 Fix clicking on JSON columns triggers update query - issue Fix silent JSON parse error on upload progress - issue #17833 Fix "Add Parameter" button not working for Add Routine Screen - issue #17365 Fixed "Uncaught Error: regexp too big" on server status variables page Update to 5.2.0 * Bugfix - issue #16521 Upgrade Bootstrap to version 5 - issue #16521 Drop support for Internet Explorer and others - issue Upgrade to shapefile 3 - issue #16555 Bump minimum PHP version to 7.2 - issue Remove the phpseclib dependency - issue Upgrade Symfony components to version 5.2 - issue Upgrade to Motranslator 4 - issue #16005 Improve the performance of the Export logic - issue #16829 Add NOT LIKE %...% operator to Table search - issue #16845 Fixed some links not passing through url.php - issue #16382 Remove apc upload progress method (all upload progress code was removed from the PHP extension) - issue #16974 Replace zxcvbn by zxcvbn-ts - issue #15691 Disable the last column checkbox in the column list dropdown instead of not allowing un-check - issue #16138 Ignore the length of integer types and show a warning on MySQL >= 8.0.18 - issue Add support for the Mroonga engine - issue Double click column name to directly copy to clipboard - issue #16425 Add DELETE FROM table on table operations page - issue #16482 Add a select all link for table-specific privileges - issue #14276 Add support for account locking - issue #17143 Use composer/ca-bundle to manage the CA cert file - issue #17143 Require the openssl PHP extension - issue #17171 Remove the printview.css file from themes - issue #17203 Redesign the export and the import pages - issue #16197 Replace the master/slave terminology - issue #17257 Replace libraries/vendor_config.php constants with an array - issue Add the Bootstrap theme - issue #17499 Remove stickyfilljs JavaScript dependency Update to 5.1.3 This is a security and bufix release. * Security - Fix for boo#1197036 (CVE-2022-0813) - Fix for path disclosure under certain server configurations (if display_errors is on, for instance) * Bugfix - issue #17308 Fix broken pagination links in the navigation sidebar - issue #17331 Fix MariaDB has no support for system variable "disabled_storage_engines" - issue #17315 Fix unsupported operand types in Results.php when running "SHOW PROCESSLIST" SQL query - issue #17288 Fixed importing browser settings question box after login when having no pmadb - issue #17288 Fix "First day of calendar" user override has no effect - issue #17239 Fixed repeating headers are not working - issue #17298 Fixed import of email-adresses or links from ODS results in empty contents - issue #17344 Fixed a type error on ODS import with non string values - issue #17239 Fixed header row show/hide columns buttons on each line after hover are shown on each row Update to 5.1.2 This is a security and bufix release. * Security - Fix boo#1195017 (CVE-2022-23807, PMASA-2022-1, CWE-661) Two factor authentication bypass - Fix boo#1195018 (CVE-2022-23808, PMASA-2022-2, CWE-661) Multiple XSS and HTML injection attacks in setup script * Bugfixes - Revert a changed to $cfg['CharTextareaRows'] allow values less than 7 - Fix encoding of enum and set values on edit value - Fixed possible "Undefined index: clause_is_unique" error - Fixed some situations where a user is logged out when working with more than one server - Fixed a problem with assigning privileges to a user using the multiselect list when the database name has an underscore - Enable cookie parameter "SameSite" when the PHP version is 7.3 or newer - Correctly handle the removal of "innodb_file_format" in MariaDB and MySQL phpMyAdmin-5.2.1-bp154.2.3.1.noarch.rpm phpMyAdmin-5.2.1-bp154.2.3.1.src.rpm phpMyAdmin-apache-5.2.1-bp154.2.3.1.noarch.rpm phpMyAdmin-lang-5.2.1-bp154.2.3.1.noarch.rpm openSUSE-2023-48 moderate openSUSE Backports SLE-15-SP4 Update This update for gssntlmssp fixes the following issues: Update to version 1.2.0 * Implement gss_set_cred_option. * Allow to gss_wrap even if NEGOTIATE_SEAL is not negotiated. * Move HMAC code to OpenSSL EVP API. * Fix crash bug when acceptor credentials are NULL. * Translations update from Fedora Weblate. Fix security issues: * CVE-2023-25563 (boo#1208278): multiple out-of-bounds read when decoding NTLM fields. * CVE-2023-25564 (boo#1208279): memory corruption when decoding UTF16 strings. * CVE-2023-25565 (boo#1208280): incorrect free when decoding target information. * CVE-2023-25566 (boo#1208281): memory leak when parsing usernames. * CVE-2023-25567 (boo#1208282): out-of-bounds read when decoding target information. Update to version 1.1 * various build fixes and better compatibility when a MIC is requested. Update to version 1.0 * Fix test_gssapi_rfc5587. * Actually run tests with make check. * Add two tests around NTLMSSP_NEGOTIATE_LMKEY. * Refine LM compatibility level logic. * Refactor the gssntlm_required_security function. * Implement reading LM/NT hashes. * Add test for smpasswd-like user files. * Return confidentiality status. * Fix segfault in sign/seal functions. * Fix dummy signature generation. * Use UCS16LE instead of UCS-2LE. * Provide a zero lm key if the password is too long. * Completely omit CBs AV pairs when no CB provided. * Change license to the more permissive ISC. * Do not require cached users with winbind. * Add ability to pass keyfile via cred store. * Remove unused parts of Makefile.am. * Move attribute names to allocated strings. * Adjust serialization for name attributes. * Fix crash in acquiring credentials. * Fix fallback to external_creds interface. * Introduce parse_user_name() function. * Add test for parse_user_name. * Change how we assemble user names in ASC. * Use thread local storage for winbind context. * Make per thread winbind context optional. * Fixed memleak of usr_cred. * Support get_sids request via name attributes. * Fixed memory leaks found by valgrind. - Update to version 0.9 * add support for getting session key. * Add gss_inquire_attrs_for_mech(). * Return actual data for RFC5587 API. * Add new Windows version flags. * Add Key exchange also when wanting integrity only. * Drop support for GSS_C_MA_NOT_DFLT_MECH. gssntlmssp-1.2.0-bp154.2.3.1.src.rpm gssntlmssp-1.2.0-bp154.2.3.1.x86_64.rpm gssntlmssp-devel-1.2.0-bp154.2.3.1.x86_64.rpm gssntlmssp-1.2.0-bp154.2.3.1.i586.rpm gssntlmssp-devel-1.2.0-bp154.2.3.1.i586.rpm gssntlmssp-1.2.0-bp154.2.3.1.aarch64.rpm gssntlmssp-devel-1.2.0-bp154.2.3.1.aarch64.rpm gssntlmssp-1.2.0-bp154.2.3.1.ppc64le.rpm gssntlmssp-devel-1.2.0-bp154.2.3.1.ppc64le.rpm gssntlmssp-1.2.0-bp154.2.3.1.s390x.rpm gssntlmssp-devel-1.2.0-bp154.2.3.1.s390x.rpm openSUSE-2023-55 moderate openSUSE Backports SLE-15-SP4 Update This update for phpunit fixes the following issues: phpunit was added in version 9.5.28. php7-phpunit-9.5.28-bp154.2.1.noarch.rpm php7-phpunit-9.5.28-bp154.2.1.src.rpm php8-phpunit-9.5.28-bp154.2.1.noarch.rpm php8-phpunit-9.5.28-bp154.2.1.src.rpm openSUSE-2023-56 moderate openSUSE Backports SLE-15-SP4 Update This update for AusweisApp2 fixes the following issues: + Version 1.26.2 - Fixed notification when another application is running on the port in use. - Fixed crashes on Android. - Optimization of forwarding to "CommunicationErrorAddress" on iOS. - Improved installation of the proxy service for terminal server environments. - Fixed the setting for the setup wizard when installing in corporate networks. + Version 1.26.1 - Fixed the loss of settings on Android. - Fixed the use of non-public or deprecated APIs on macOS to comply with App Store Guidelines. + from version 1.26.0 - Support for macOS 13. - Support for Windows Server 2016 (version 1607). - Support for Windows Server 2019. - Support for Windows Server 2022. - A proxy service is now available for multi-user operation in terminal server environments. Details can be found in the document "Guide To Installation In Corporate Networks". - Fixed crashes on Android. - The iOS SDK now supports the arm64 simulator. - Updated OpenSSL to version 3.0.7. - Updated Qt to version 6.4.1. - Add BuildRequires, so it can also build for Leap >= 15.4. + Version 1.24.4 * Fixed potential crashes due to OpenSSL (denial of service). * Updated OpenSSL to version 3.0.7. + Version 1.24.3 * Fixed crashes on Android. * Disabled (cloud) backup on Android and iOS. * Fixed the A11y display of the SaK pairing code on Android and iOS. * Blocked installation on unsupported versions of Windows 10. * Fixed compatibility with Qt 6.4. * Enabled the simulator in the Android and iOS SDK. - Upgrade Qt build and runtime dependencies for Qt6 + Add Qt6 packages to BuildRequires * qt6-concurrent-devel * qt6-core-devel * qt6-linguist-devel * qt6-network-devel * qt6-qml-devel * qt6-qmlworkerscript-devel * qt6-quick-devel * qt6-quickcontrols2-devel * qt6-shadertools-devel * qt6-statemachine-devel * qt6-svg-devel * qt6-websockets-devel + Drop all Qt5 packages from BuildRequires and Requires + Version 1.24.2 * Fixed crashes on Android. * Fixed a bug with changing the transport PIN on desktop systems. + Version 1.24.1 * Support for the Russian and Ukrainian languages has been added. * Fixed some issues with regards to PersoSim. + Version 1.24.0 * Technical overhaul of the "Smartphone as card reader" function. The use of an ID card app2 older than 1.22.1 is no longer possible in combination with 1.24.0. * Various optimizations with regards to accessibility. * Support for "IPv6 only" home networks. * AusweisApp2 is now provided as a 64-bit application on Windows. * Official support for Windows 11. * Support for Windows 7 and Windows 8.1 has been discontinued. * Support for macOS 10.13 and 10.14 has been discontinued. * Support for Android 5 and 6 and has been discontinued. * Added an integrated ID card simulator for testing. * An automatic mode for authentication for tests is now possible. * AusweisApp2 is now available as a container SDK or Docker image. This can be controlled using WebSocket or the new automatic authentication. * Command line parameters can now be passed in the iOS SDK. * Support for SHA224 and SECP224 has been discontinued. * The partially-embedded SDK on Android has been discontinued. * The SDK now uses API level v2. * Updated OpenSSL to version 3.0.5. * Updated Qt to version 6.3.1. + Version 1.22.7 * Fixed a crash with the new system notifications on macOS 10.14+. + Version 1.22.6 * Problems with card communication when using the "Smartphone as card reader" function in Comfort mode have been fixed. * Starting with macOS 10.14, system notifications are now being used. * On macOS, the tray icon is now disabled by default. This can be re-enabled in the preferences. * On iOS, a new NFC scan was not possible under certain circumstances. This has been fixed. * When canceling an authentication, the app sometimes crashed on iOS. This has been fixed. * Minor bug fixes and optimizations. * Updated OpenSSL to version 1.1.1o. AusweisApp2-1.26.2-bp154.2.3.1.src.rpm AusweisApp2-1.26.2-bp154.2.3.1.x86_64.rpm AusweisApp2-1.26.2-bp154.2.3.1.aarch64.rpm AusweisApp2-1.26.2-bp154.2.3.1.ppc64le.rpm AusweisApp2-1.26.2-bp154.2.3.1.s390x.rpm openSUSE-2023-65 moderate openSUSE Backports SLE-15-SP4 Update This update for librecad fixes the following issues: librecad was updated to release 2.2.0 [boo#1208447] * many causes of crashes have been eliminated * eliminated DWG issues in libdxfrw, which caused several crashes * the performance of panning and zooming in large files has been significantly improved * the undo/redo engine has been completely revised due to several problems * adjustments for new compiler and Qt versions were required * extension of the command line, multi-line commands, paste and open command files * improvement of the print preview, with tiled printing and line widths adjustment * multiple selection and bulk actions in block and layer lists update to 2.2.0 rc4: * symbols to unicode.lff * new error code from libdxfrw update * build Windows, MacOS and Linux packages in one action * added tool tips to Categories tool widget (#1519) * added @ symbol to relative coordinates in status bar (#1452) * changed misleading unit label in curent drawing preferences (#1453) * changed tab order in text dialog (#1432) * maximum size of status bar for hidpi displays * sync libdxfrw (072aecd) * copy/rename media files in desktop folder to remove whitespaces * fixed renaming of nested blocks (#1527) * preserve list position in block and layer list (#1515) * fixed polyline issue when line type was changed (#1496) * add minutes label to auto save time in application preferences (#1412) * add files saved as with new name to recent files (#1364) * snap on middle point failed for spline through points (#1395) * spline issue with tolerance on ascii to double conversion * DXF viewport reading issue by updating libdxfrw * status bar height toggling on auto save * solid fill hatch issues * Ukrainian and symbol characters in unicode.lff * possible out of bounds read with MText entities * AppImage was broken by fix for (#1488) * wrong translations folder for additionals paths from settings * getDirectoryList() failed on Linux when librecad is in $PATH (#1488) * bounds check in LWPolyline * NULL check for hatch code 93 * vulnerabilities in JWW parser librecad-2.2.0-bp154.3.6.1.src.rpm librecad-2.2.0-bp154.3.6.1.x86_64.rpm librecad-parts-2.2.0-bp154.3.6.1.noarch.rpm librecad-2.2.0-bp154.3.6.1.aarch64.rpm librecad-2.2.0-bp154.3.6.1.ppc64le.rpm librecad-2.2.0-bp154.3.6.1.s390x.rpm openSUSE-2023-60 moderate openSUSE Backports SLE-15-SP4 Update This update for tryton, trytond, trytond_account, trytond_purchase_request fixes the following issues: Changes in trytond_purchase_request: - Version 6.0.4 - Bugfix Release - Version 6.0.3 - Bugfix Release Changes in trytond_account: - Version 6.0.15 - Bugfix Release - Version 6.0.14 - Bugfix Release Changes in trytond: - Version 6.0.28 - Bugfix Release - Version 6.0.27 - Bugfix Release Changes in tryton: - Version 6.0.25 - Bugfix Release - Version 6.0.24 - Bugfix Release tryton-6.0.25-bp154.2.15.1.noarch.rpm tryton-6.0.25-bp154.2.15.1.src.rpm trytond-6.0.28-bp154.2.21.1.noarch.rpm trytond-6.0.28-bp154.2.21.1.src.rpm trytond_account-6.0.15-bp154.2.12.1.noarch.rpm trytond_account-6.0.15-bp154.2.12.1.src.rpm trytond_purchase_request-6.0.4-bp154.2.6.1.noarch.rpm trytond_purchase_request-6.0.4-bp154.2.6.1.src.rpm openSUSE-2023-61 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 110.0.5481.177 (boo#1208589) * CVE-2023-0927: Use after free in Web Payments API * CVE-2023-0928: Use after free in SwiftShader * CVE-2023-0929: Use after free in Vulkan * CVE-2023-0930: Heap buffer overflow in Video * CVE-2023-0931: Use after free in Video * CVE-2023-0932: Use after free in WebRTC * CVE-2023-0933: Integer overflow in PDF * CVE-2023-0941: Use after free in Prompts * Various fixes from internal audits, fuzzing and other initiatives Chromium 110.0.5481.100 * fix regression on SAP Business Objects web UI * fix date formatting behavior change from ICU 72 chromedriver-110.0.5481.177-bp154.2.70.1.x86_64.rpm chromium-110.0.5481.177-bp154.2.70.1.src.rpm chromium-110.0.5481.177-bp154.2.70.1.x86_64.rpm chromedriver-110.0.5481.177-bp154.2.70.1.aarch64.rpm chromium-110.0.5481.177-bp154.2.70.1.aarch64.rpm openSUSE-2023-62 moderate openSUSE Backports SLE-15-SP4 Update python-Django was updated to fix a security issues: - CVE-2023-24580: prevent DOS in file uploads (bsc#1208082) python-Django-2.2.28-bp154.2.9.1.src.rpm python3-Django-2.2.28-bp154.2.9.1.noarch.rpm openSUSE-2023-71 moderate openSUSE Backports SLE-15-SP4 Update This update for peazip fixes the following issues: peazip was updated to 9.1.0: * Major restyle in application's look & feel and themes, and many usability improvements for the file manager, and archiving / extraction screens. * The scripting engine was refined, with the ability to adapt the syntax for a specific 7z version at runtime, and to export archive conversion tasks as scripts. * Support for TAR, Brotli, and Zstandard formats was improved. * Pea was updated to 1.12, fixing for CVE-2023-24785 (this fixes boo#1208468) Update to 9.0.0: BACKEND: * Pea 1.11. CODE: * Fixes, clean up of legacy code. * Improved speed and memory usage. FILE MANAGER: * GUI better adapts to size and preference changes. * Selecting one of the available tool bars (archive manager, file manager, image manager) restores its visibility if the Tool bar is hidden. EXTRACTION and ARCHIVING: * Added new options for 7z/p7zip backend. * Improved support for TAR format, and for formats used in combination with TAR. * Improved support for ZPAQ and *PAQ formats. * Updated compression preset scripts. * Updated plugin for PeaZip. - Update to 8.9.0: BACKEND * Pea 1.10 CODE * Password Manager is now re-set only from Options > Settings > Privacy, Reset Password Manager link * Various fixes and improvements * Correctly displays folder size inside ZIP archives if applicable * Cleanup of legacy code * Improved performances and memory management for browsing archives * Improved opening folders after task completition * Improved detecting root extraction directory * Archive conversion procedure now opens target directory only once, after final compression step * Task window can now show temporary extraction work path from context menu right-clicking on input and output links FILE MANAGER * Added progress bar while opening archive files supported through 7z backend; progress indicator is not visible when archive pre-browsing is disabled in Options > Settings > General, Performance group * Improved Clipboard panel, can display tems size and modification date * Improved quick navigation menu (on the left of the Address bar) * Can now set password/keyfile, and display if a password is set * Can now display info on current archive / selection / clipboard content duplicating function of staus bar; the new Info entry is also featured in main menu, Navigation group * Can now toggle bookmarks, history, and clipboard views in the Status bar * Improved Style button * Right-clicking Style shows main menu as context menu * Settings is now reachable from Style button in Tool / Address bar * Updated theming engine * Address bar color can now be changed separately from Address field color * Tab bar color has now more options * Improved existing Themes to take advantage of the new options * Updated Tuxedo theme * New Droid theme EXTRACTION and ARCHIVING * Changed default working directory to output path, as more consistent with behavior of similar applications on non-Windows systems * Added context menu entry for "Add to separate archives" action, shown when applicable in file browser screen * Improved archiving and extraction context menu, to make easier to add files and folders (or open search) from bookmarks abd history items * Improved test after archiving * Empty archives are reported as warnings * It is now possible to set the sequence of tasks to stop for auto-test results (otherwise it will stop only in case of error) from Options > Settings > Advanced * More information is available clicking status bar string in archive creation and extraction screens: task type details, temp work path (if applicable), input zise, output path with total size and free space - Update to 8.8.0 (boo#1202690): BACKEND * 7z 22.01 * Pea 1.09 CODE * Various fixes and improvements FILE MANAGER * Improved GUI for more flexibility to better adapt to multiple environments with different visual styles EXTRACTION and ARCHIVING * Added option to test archive after creation, for formats supporting test routine, in Options > Settings, Archive manager tab * Added timestamp precision option in Archiving screen, Advanced tab, applies to ZIP and TAR/pax formats * Added timestamp precision option in Archiving screen, Advanced tab, applies to ZIP and TAR/pax formats * Added options to save owner/group ids and names, available in Archiving screen, Advanced tab - Set correct category in the desktop file (boo#1202690) - Update to 8.7.0: BACKEND * 7z 22.00 * Pea 1.08 CODE * Can now optionally check hash of backend binaries called by PeaZip in order to detect modified ones * Can now optionally hardcode paths of backend binaries, configuration, and non-binary resources directories as absoulte paths at compile time FILE MANAGER * Added "Open in a new tab" to breadcrumb navigation menu * Can now export content of navigation/search filter as CSV, from column's header menu, and Main menu > Navigation submenu * CSV separator can now be customised from Options > Settings, General Tab, on the right of Localization selector * File manager now displays file size and compressed file size of directories inside archives, CRC column displays files and sub-directores count for directories * Many visual enhancements EXTRACTION and ARCHIVING * Can now remember default archive creation action (force new archive, add, update, sync...) * Improved displaying directory size in archive creation screen: items are now recursively enumerated asynchronously (non blocking) by default, so it is possible to proceed with archiving operations (confirm, cancel, modify parameters...) without needing the input count to be completed * Re-organized Archive manager settings page in Options > Settings * For Zpaq format now "Absolute paths" extraction option is enabled by default (in Advanced tab of extraction screen) peazip-9.1.0-bp154.2.3.1.src.rpm peazip-9.1.0-bp154.2.3.1.x86_64.rpm peazip-kf5-9.1.0-bp154.2.3.1.noarch.rpm peazip-9.1.0-bp154.2.3.1.aarch64.rpm openSUSE-2023-64 moderate openSUSE Backports SLE-15-SP4 Update This update for trivy fixes the following issues: Update to version 0.37.3 (boo#1208091, CVE-2023-25165): * chore(helm): update Trivy from v0.36.1 to v0.37.2 (#3574) * ci: quote pros in c++ for semantic pr (#3605) * fix(image): check proxy settings from env for remote images (#3604) Update to version 0.37.2: * BREAKING: use normalized trivy-java-db (#3583) * fix(image): add timeout for remote images (#3582) * fix(misconf): handle dot files better (#3550) Update to version 0.37.1: * fix(sbom): download the Java DB when generating SBOM (#3539) * fix: use cgo free sqlite driver (#3521) * ci: fix path to dist folder (#3527) Update to version 0.37.0: * fix(image): close layers (#3517) * refactor: db client changed (#3515) * feat(java): use trivy-java-db to get GAV (#3484) * docs: add note about the limitation in Rekor (#3494) * docs: aggregate targets (#3503) * deps: updates wazero to 1.0.0-pre.8 (#3510) * docs: add alma 9 and rocky 9 to supported os (#3513) * chore: add missing target labels (#3504) * docs: add java vulnerability page (#3429) * feat(image): add support for Docker CIS Benchmark (#3496) * feat(image): secret scanning on container image config (#3495) * chore(deps): Upgrade defsec to v0.82.8 (#3488) * feat(image): scan misconfigurations in image config (#3437) * chore(helm): update Trivy from v0.30.4 to v0.36.1 (#3489) * feat(k8s): add node info resource (#3482) * perf(secret): optimize secret scanning memory usage (#3453) * feat: support aliases in CLI flag, env and config (#3481) * fix(k8s): migrate rbac k8s (#3459) * feat(java): add implementationVendor and specificationVendor fields to detect GroupID from MANIFEST.MF (#3480) * refactor: rename security-checks to scanners (#3467) * chore: display the troubleshooting URL for the DB denial error (#3474) * docs: yaml tabs to spaces, auto create namespace (#3469) * docs: adding show-and-tell template to GH discussions (#3391) * fix: Fix a temporary file leak in case of error (#3465) * fix(test): sort cyclonedx components (#3468) * docs: fixing spelling mistakes (#3462) * ci: set paths triggering VM tests in PR (#3438) * docs: typo in --skip-files (#3454) * feat(custom-forward): Extended advisory data (#3444) * docs: fix spelling error (#3436) * refactor(image): extend image config analyzer (#3434) * fix(nodejs): add ignore protocols to yarn parser (#3433) * fix(db): check proxy settings when using insecure flag (#3435) * feat(misconf): Fetch policies from OCI registry (#3015) * ci: downgrade Go to 1.18 and use stable and oldstable go versions for unit tests (#3413) * ci: store URLs to Github Releases in RPM repository (#3414) * feat(server): add support of `skip-db-update` flag for hot db update (#3416) * fix(image): handle wrong empty layer detection (#3375) * test: fix integration tests for spdx and cycloneDX (#3412) * feat(python): Include Conda packages in SBOMs (#3379) * feat: add support pubspec.lock files for dart (#3344) * fix(image): parsePlatform is failing with UNAUTHORIZED error (#3326) * fix(license): change normalize for GPL-3+-WITH-BISON-EXCEPTION (#3405) * feat(server): log errors on server side (#3397) * docs: rewrite installation docs and general improvements (#3368) * chore: update code owners (#3393) * chore: test docs separately from code (#3392) * docs: use the formula maintained by Homebrew (#3389) * docs: add `Security Management` section with SonarQube plugin Update to version 0.36.1: * fix(deps): fix errors on yarn.lock files that contain local file reference (#3384) * feat(flag): early fail when the format is invalid (#3370) * docs(aws): fix broken links (#3374) Update to version 0.36.0: * docs: improve compliance docs (#3340) * feat(deps): add yarn lock dependency tree (#3348) * fix: compliance change id and title naming (#3349) * feat: add support for mix.lock files for elixir language (#3328) * feat: add k8s cis bench (#3315) * test: disable SearchLocalStoreByNameOrDigest test for non-amd64 arch (#3322) * revert: cache merged layers (#3334) * feat(cyclonedx): add recommendation (#3336) * feat(ubuntu): added support ubuntu ESM versions (#1893) * fix: change logic to build relative paths for skip-dirs and skip-files (#3331) * feat: Adding support for Windows testing (#3037) * feat: add support for Alpine 3.17 (#3319) * docs: change PodFile.lock to Podfile.lock (#3318) * fix(sbom): support for the detection of old CycloneDX predicate type (#3316) * feat(secret): Use .trivyignore for filtering secret scanning result (#3312) * chore(go): remove experimental FS API usage in Wasm (#3299) * ci: add workflow to add issues to roadmap project (#3292) * fix(vuln): include duplicate vulnerabilities with different package paths in the final report (#3275) * feat(sbom): better support for third-party SBOMs (#3262) * docs: add information about languages with support for dependency locations (#3306) * feat(vm): add `region` option to vm scan to be able to scan any region's ami and ebs snapshots (#3284) * fix(vuln): change severity vendor priority for ghsa-ids and vulns from govuln (#3255) * docs: remove comparisons (#3289) * feat: add support for Wolfi Linux (#3215) * ci: add go.mod to canary workflow (#3288) * feat(python): skip dev dependencies (#3282) * chore: update ubuntu version for Github action runnners (#3257) * fix(go): skip dep without Path for go-binaries (#3254) * feat(rust): add ID for cargo pgks (#3256) * feat: add support for swift cocoapods lock files (#2956) * fix(sbom): use proper constants (#3286) * test(vm): import relevant analyzers (#3285) * feat: support scan remote repository (#3131) * docs: fix typo in fluxcd (#3268) * docs: fix broken "ecosystem" link in readme (#3280) * feat(misconf): Add compliance check support (#3130) * docs: Adding Concourse resource for trivy (#3224) * chore(deps): change golang from 1.19.2 to 1.19 (#3249) * fix(sbom): duplicate dependson (#3261) * chore(go): updates wazero to 1.0.0-pre.4 (#3242) * feat(report): add dependency locations to sarif format (#3210) * fix(rpm): add rocky to osVendors (#3241) * docs: fix a typo (#3236) * feat(dotnet): add dependency parsing for nuget lock files (#3222) * docs: add pre-commit hook to community tools (#3203) * feat(helm): pass arbitrary env vars to trivy (#3208) Update to version 0.35.0: * chore(vm): update xfs filesystem parser for change log (#3230) * feat: add virtual machine scan command (#2910) * docs: reorganize index and readme (#3026) * fix: `slowSizeThreshold` should be less than `defaultSizeThreshold` (#3225) * feat: Export functions for trivy plugin (#3204) * feat(image): add support wildcard for platform os (#3196) * fix: load compliance report from file system (#3161) * fix(suse): use package name to get advisories (#3199) * docs(image): space issues during image scan (#3190) * feat(containerd): scan image by digest (#3075) * fix(vuln): add package name to title (#3183) * fix: present control status instead of compliance percentage in compliance report (#3181) * perf(license): remove go-enry/go-license-detector. (#3187) * fix: workdir command as empty layer (#3087) * docs: reorganize ecosystem section (#3025) * feat(dotnet): add support dependency location for dotnet-core files (#3095) * feat(dotnet): add support dependency location for nuget lock files (#3032) * chore: update code owners for misconfigurations (#3176) * feat: add slow mode (#3084) * docs: fix typo in enable-builin-rules mentions (#3118) * feat: Add maintainer field to OS packages (#3149) * docs: fix some typo (#3171) * docs: fix links on Built-in Policies page (#3124) * fix: Perform filepath.Clean first and then filepath.ToSlash for skipFile/skipDirs settings (#3144) * chore: use newline for semantic pr (#3172) * fix(spdx): rename describes field in spdx (#3102) * chore: handle GOPATH with several paths in make file (#3092) * docs(flag): add "rego" configuration file options (#3165) * chore(go): updates wazero to 1.0.0-pre.3 (#3090) * docs(license): fix typo inside quick start (#3134) * chore: update codeowners for docs (#3135) * fix(cli): exclude --compliance flag from non supported sub-commands (#3158) * fix: remove --security-checks none from image help (#3156) * fix: compliance flag description (#3160) * docs(k8s): fix a typo (#3163) Update to version 0.34.0: * feat(vuln): support dependency graph for RHEL/CentOS (#3094) * feat(vuln): support dependency graph for dpkg and apk (#3093) * perf(license): enable license classifier only with "--license-full" (#3086) * feat(report): add secret scanning to ASFF template (#2860) * feat: Allow override of containerd namespace (#3060) * fix(vuln): In alpine use Name as SrcName (#3079) * fix(secret): Alibaba AccessKey ID (#3083) Update to version 0.33.0: * refactor(k8s): custom reports (#3076) * fix(misconf): Bump in-toto-golang with correct CycloneDX predicate (#3068) * feat(image): add support for passing architecture and OS (#3012) * test: disable containerd integration tests for non-amd64 arch (#3073) * feat(server): Add support for client/server mode to rootfs command (#3021) * feat(vuln): support non-packaged binaries (#3019) * feat: compliance reports (#2951) * fix(flag): disable flag parsing for each plugin command (#3074) * feat(nodejs): add support dependency location for yarn.lock files (#3016) * chore: Switch github.com/liamg dependencies to github.com/aquasecurity (#3069) * feat: add k8s components (#2589) * fix(secret): update the regex for secrets scanning (#2964) * fix: bump trivy-kubernetes (#3064) * docs: fix missing 'image' subcommand (#3051) * chore: Patch golang x/text vulnerability (#3046) * chore: add licensed project logo (#3058) * feat(ubuntu): set Ubuntu 22.10 EOL (#3054) * refactor(analyzer): use strings.TrimSuffix instead of strings.HasSuffix (#3028) * feat(report): Use understandable value for shortDescription in SARIF reports (#3009) * docs(misconf): fix typo (#3043) * feat: add support for scanning azure ARM (#3011) * feat(report): add location.message to SARIF output (#3002) (#3003) * feat(nodejs): add dependency line numbers for npm lock files (#2932) * test(fs): add `--skip-files`, `--skip-dirs` (#2984) * docs: add Woodpecker CI integrations example (#2823) * fix(sbom): ref generation if serialNumber is empty when input is cyclonedx file (#3000) * fix(java): don't stop parsing jar file when wrong inner jar is found (#2989) * fix(sbom): use nuget purl type for dotnet-core (#2990) * perf: retrieve rekor entries in bulk (#2987) * feat(aws): Custom rego policies for AWS scanning (#2994) * docs: jq cli formatting (#2881) * docs(repo): troubleshooting $TMPDIR customization (#2985) * chore: run `go fmt` (#2897) * chore(go): updates wazero to 1.0.0-pre.2 (#2955) * fix(aws): Less function for slice sorting always returns false #2967 * fix(java): fix unmarshal pom exclusions (#2936) Update to version 0.32.1: * fix(java): use fields of dependency from dependencyManagement from upper pom.xml to parse deps (#2943) * chore: expat lib and go binary deps vulns (#2940) * wasm: Removes accidentally exported memory (#2950) * fix(sbom): fix package name separation for gradle (#2906) * docs(readme.md): fix broken integrations link (#2931) * fix(image): handle images with single layer in rescan mergedLayers cache (#2927) * fix(cli): split env values with ',' for slice flags (#2926) * fix(cli): config/helm: also take into account files with `.yml` (#2928) * fix(flag): add file-patterns flag for config subcommand (#2925) Update to version 0.32.0: * docs: add Rekor SBOM attestation scanning (#2893) * chore: narrow the owner scope (#2894) * fix: remove a patch number from the recommendation link (#2891) * fix: enable parsing of UUID-only rekor entry ID (#2887) * docs(sbom): add SPDX scanning (#2885) * docs: restructure docs and add tutorials (#2883) * feat(sbom): scan sbom attestation in the rekor record (#2699) * feat(k8s): support outdated-api (#2877) * fix(c): support revisions in Conan parser (#2878) * feat: dynamic links support for scan results (#2838) * docs: update archlinux commands (#2876) * feat(secret): add line from dockerfile where secret was added to secret result (#2780) * feat(sbom): Add unmarshal for spdx (#2868) * fix: revert asff arn and add documentation (#2852) * docs: batch-import-findings limit (#2851) * feat(sbom): Add marshal for spdx (#2867) * build: checkout before setting up Go (#2873) * docs: azure doc and trivy (#2869) * fix: Scan tarr'd dependencies (#2857) * chore(helm): helm test with ingress (#2630) * feat(report): add secrets to sarif format (#2820) * refactor: add a new interface for initializing analyzers (#2835) * fix: update ProductArn with account id (#2782) * feat(helm): make cache TTL configurable (#2798) * build(): Sign releaser artifacts, not only container manifests (#2789) * chore: improve doc about azure devops (#2795) * docs: don't push patch versions (#2824) * feat: add support for conan.lock file (#2779) * feat: cache merged layers * feat: add support for gradle.lockfile (#2759) * feat: move file patterns to a global level to be able to use it on any analyzer (#2539) * Fix url validaton failures (#2783) * fix(image): add logic to detect empty layers (#2790) * feat(rust): add dependency graph from Rust binaries (#2771) Update to version 0.31.3: * fix: handle empty OS family (#2768) * fix: fix k8s summary report (#2777) * fix: don't skip packages that don't contain vulns, when using --list-all-pkgs flag (#2767) * chore: bump trivy-kubernetes (#2770) * fix(secret): Consider secrets in rpc calls (#2753) * fix(java): check depManagement from upper pom's (#2747) * fix(php): skip `composer.lock` inside `vendor` folder (#2718) * fix: fix k8s rbac filter (#2765) * feat(misconf): skipping misconfigurations by AVD ID (#2743) * chore(deps): Upgrade Alpine to 3.16.2 to fix zlib issue (#2741) * docs: add MacPorts install instructions (#2727) * docs: typo (#2730) Update to version 0.31.2: * fix: Correctly handle recoverable AWS scanning errors (#2726) * docs: Remove reference to SecurityAudit policy for AWS scanning (#2721) Update to version 0.31.1: * fix: upgrade defsec to v0.71.7 for elb scan panic (#2720) Update to version 0.31.0: * fix(flag): add error when there are no supported security checks (#2713) * fix(vuln): continue scanning when no vuln found in the first application (#2712) * revert: add new classes for vulnerabilities (#2701) * feat(secret): detect secrets removed or overwritten in upper layer (#2611) * fix(cli): secret scanning perf link fix (#2607) * chore(deps): bump github.com/spf13/viper from 1.8.1 to 1.12.0 (#2650) * feat: Add AWS Cloud scanning (#2493) * docs: specify the type when verifying an attestation (#2697) * docs(sbom): improve SBOM docs by adding a description for scanning SBOM attestation (#2690) * fix(rpc): scanResponse rpc conversion for custom resources (#2692) * feat(rust): Add support for cargo-auditable (#2675) * feat: Support passing value overrides for configuration checks (#2679) * feat(sbom): add support for scanning a sbom attestation (#2652) * chore(image): skip symlinks and hardlinks from tar scan (#2634) * fix(report): Update junit.tpl (#2677) * fix(cyclonedx): add nil check to metadata.component (#2673) * docs(secret): fix missing and broken links (#2674) * refactor(cyclonedx): implement json.Unmarshaler (#2662) * feat(kubernetes): add option to specify kubeconfig file path (#2576) * docs: follow Debian's "instructions to connect to a third-party repository" (#2511) * feat(alma): set AlmaLinux 9 EOL (#2653) * fix(misconf): Allow quotes in Dockerfile WORKDIR when detecting relative dirs (#2636) * test(misconf): add tests for misconf handler for dockerfiles (#2621) * feat(oracle): set Oracle Linux 9 EOL (#2635) * BREAKING: add new classes for vulnerabilities (#2541) * fix(secret): add newline escaping for asymmetric private key (#2532) * docs: improve formatting (#2572) * feat(helm): allows users to define an existing secret for tokens (#2587) * docs(mariner): use tdnf in fs usage example (#2616) * docs: remove unnecessary double quotation marks (#2609) * fix: Fix --file-patterns flag (#2625) * feat(report): add support for Cosign vulnerability attestation (#2567) * docs(mariner): use v2.0 in examples (#2602) * feat(report): add secrets template for codequality report (#2461) trivy-0.37.3-bp154.2.9.1.src.rpm trivy-0.37.3-bp154.2.9.1.x86_64.rpm trivy-0.37.3-bp154.2.9.1.i586.rpm trivy-0.37.3-bp154.2.9.1.aarch64.rpm trivy-0.37.3-bp154.2.9.1.ppc64le.rpm trivy-0.37.3-bp154.2.9.1.s390x.rpm openSUSE-2023-69 important openSUSE Backports SLE-15-SP4 Update This update for amanda fixes the following issues: - CVE-2022-37704: fix privilege escalation via rundump (boo#1208033, gh#zmanda/amanda#195) - CVE-2022-37705: fix privilege escalation via runtar suid binary (boo#1208032, gh#zmanda/amanda#194) amanda-3.5.1-bp154.3.3.1.src.rpm amanda-3.5.1-bp154.3.3.1.x86_64.rpm amanda-3.5.1-bp154.3.3.1.aarch64.rpm amanda-3.5.1-bp154.3.3.1.ppc64le.rpm amanda-3.5.1-bp154.3.3.1.s390x.rpm openSUSE-2023-72 moderate openSUSE Backports SLE-15-SP4 Update This update for php-xdebug fixes the following issues: php-xdebug was shipped in version Xdebug 3.2.0. php7-xdebug-3.1.6-bp154.2.1.src.rpm php7-xdebug-3.1.6-bp154.2.1.x86_64.rpm php8-xdebug-3.2.0-bp154.2.1.src.rpm php8-xdebug-3.2.0-bp154.2.1.x86_64.rpm php7-xdebug-3.1.6-bp154.2.1.i586.rpm php8-xdebug-3.2.0-bp154.2.1.i586.rpm php7-xdebug-3.1.6-bp154.2.1.aarch64.rpm php8-xdebug-3.2.0-bp154.2.1.aarch64.rpm php7-xdebug-3.1.6-bp154.2.1.ppc64le.rpm php8-xdebug-3.2.0-bp154.2.1.ppc64le.rpm php7-xdebug-3.1.6-bp154.2.1.s390x.rpm php8-xdebug-3.2.0-bp154.2.1.s390x.rpm openSUSE-2023-73 moderate openSUSE Backports SLE-15-SP4 Update This update for php-APCu fixes the following issues: php-APCu is shipped in version 5.1.22. php7-APCu-5.1.22-bp154.2.1.src.rpm php7-APCu-5.1.22-bp154.2.1.x86_64.rpm php8-APCu-5.1.22-bp154.2.1.src.rpm php8-APCu-5.1.22-bp154.2.1.x86_64.rpm php7-APCu-5.1.22-bp154.2.1.i586.rpm php8-APCu-5.1.22-bp154.2.1.i586.rpm php7-APCu-5.1.22-bp154.2.1.aarch64.rpm php8-APCu-5.1.22-bp154.2.1.aarch64.rpm php7-APCu-5.1.22-bp154.2.1.ppc64le.rpm php8-APCu-5.1.22-bp154.2.1.ppc64le.rpm php7-APCu-5.1.22-bp154.2.1.s390x.rpm php8-APCu-5.1.22-bp154.2.1.s390x.rpm openSUSE-2023-74 moderate openSUSE Backports SLE-15-SP4 Update This update for tryton, trytond, trytond_purchase, trytond_stock_supply fixes the following issues: Changes in trytond_stock_supply: - Version 6.0.5 - Bugfix Release - Version 6.0.4 - Bugfix Release Changes in trytond_account_invoice: - Version 6.0.9 - Bugfix Release Changes in trytond_purchase: - Version 6.0.10 - Bugfix Release Changes in trytond: - Version 6.0.29 - Bugfix Release Changes in tryton: - Version 6.0.26 - Bugfix Release tryton-6.0.26-bp154.2.18.1.noarch.rpm tryton-6.0.26-bp154.2.18.1.src.rpm trytond-6.0.29-bp154.2.24.1.noarch.rpm trytond-6.0.29-bp154.2.24.1.src.rpm trytond_account_invoice-6.0.9-bp154.2.6.1.noarch.rpm trytond_account_invoice-6.0.9-bp154.2.6.1.src.rpm trytond_purchase-6.0.10-bp154.2.12.1.noarch.rpm trytond_purchase-6.0.10-bp154.2.12.1.src.rpm trytond_stock_supply-6.0.5-bp154.2.6.1.noarch.rpm trytond_stock_supply-6.0.5-bp154.2.6.1.src.rpm openSUSE-2023-75 moderate openSUSE Backports SLE-15-SP4 Update python-Django was update to fix: - CVE-2023-24580: Prevent DOS in file uploads. (bsc#1208082) python-Django1-1.11.29-bp154.2.3.1.src.rpm python3-Django1-1.11.29-bp154.2.3.1.noarch.rpm openSUSE-2023-68 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 111.0.5563.64 * New View Transitions API * CSS Color Level 4 * New developer tools in style panel for color functionality * CSS added trigonometric functions, additional root font units and extended the n-th child pseudo selector. * previousslide and nextslide actions are now part of the Media Session API * A number of security fixes (boo#1209040) * CVE-2023-1213: Use after free in Swiftshader * CVE-2023-1214: Type Confusion in V8 * CVE-2023-1215: Type Confusion in CSS * CVE-2023-1216: Use after free in DevTools * CVE-2023-1217: Stack buffer overflow in Crash reporting * CVE-2023-1218: Use after free in WebRTC * CVE-2023-1219: Heap buffer overflow in Metrics * CVE-2023-1220: Heap buffer overflow in UMA * CVE-2023-1221: Insufficient policy enforcement in Extensions API * CVE-2023-1222: Heap buffer overflow in Web Audio API * CVE-2023-1223: Insufficient policy enforcement in Autofill * CVE-2023-1224: Insufficient policy enforcement in Web Payments API * CVE-2023-1225: Insufficient policy enforcement in Navigation * CVE-2023-1226: Insufficient policy enforcement in Web Payments API * CVE-2023-1227: Use after free in Core * CVE-2023-1228: Insufficient policy enforcement in Intents * CVE-2023-1229: Inappropriate implementation in Permission prompts * CVE-2023-1230: Inappropriate implementation in WebApp Installs * CVE-2023-1231: Inappropriate implementation in Autofill * CVE-2023-1232: Insufficient policy enforcement in Resource Timing * CVE-2023-1233: Insufficient policy enforcement in Resource Timing * CVE-2023-1234: Inappropriate implementation in Intents * CVE-2023-1235: Type Confusion in DevTools * CVE-2023-1236: Inappropriate implementation in Internals chromedriver-111.0.5563.64-bp154.2.73.1.x86_64.rpm chromium-111.0.5563.64-bp154.2.73.1.src.rpm chromium-111.0.5563.64-bp154.2.73.1.x86_64.rpm chromedriver-111.0.5563.64-bp154.2.73.1.aarch64.rpm chromium-111.0.5563.64-bp154.2.73.1.aarch64.rpm openSUSE-2023-76 moderate openSUSE Backports SLE-15-SP4 Update This update for strawberry fixes the following issues: Update to version 1.0.15 + Bugfixes: + Fixed playlist column showing invalid last played date for streams. + Fixed crash when the audio bin failed to initialize (#1123, #1133). + Fixed duplicated filename when organizing files using dot in the filename (#1136). + Fixed tag inline editing for streams (#1130). + Fixed resetting play statistics using tag edit dialog (#1124). + Fixed compilation songs not showing if group by was set to other than (Album) Artist / Album (#1140). + Enhancements: + Added lyrics from stands4 (lyrics.com). + Added Sonogram analyzer. + Use GStreamer playbin3 with GStreamer 1.22.0 and higher. + Code improvements: + Made use of C++11 enum class where possible. + Use new QNativeIpcKey based QSharedMemory constructor with Qt 6.6 and higher. - Update to version 1.0.14 + Fix initial volume not set when using Auto as output (#1104). + Fix saving moodbar if the URL contains host, ie.: UNC paths for SMB (#1101). + Fix CollectionBackendTest compile error (#1100). + Remove explicitly enabling debug messages (#1106). - Update to version 1.0.13 + Fixed volume synchronization leading to infinite loop resulting in crash when adjusting volume while playing (#1089). + Fixed incorrect volume. + Fixed collection organizing incorrectly handling slashes inside {} brackets for variables (#1091). + Fixed saving relative playlists to non-existing playlist files (#1092). + Fixed intermittent crash on collection model query (#1095). + Require system icons for fancy tabbar and settings sidebar to be larger than 22x22 (#1084). - Update to version 1.0.12 + Fixed crash when adjusting volume with mouse wheel (#1089). + Fixed playback stopping in certain cases where the next track was unavailable (#958). + Removed appearance settings for changing palette colors, it was never properly implemented. - Update to version 1.0.11 + Bugfixes: + Capitalize GLib application name so it appears nicely in GNOME and PulseAudio Volume Control (#1066). + Fixed missing application icon for PulseAudio Volume Control (#1066). + Ignore errors for missing albums when updating Tidal collection if there are results (#1061). + Only run periodic collection scan when moitoring collection setting is on. + Fixed an edge case where the context headline text was being cut short (#1067). + Made "Show in file browser" support SpaceFM filemanager (#1073). + Fixed incorrect tab order in edit tag dialog (#1075). + Changed "FMPS_PlayCount" to "FMPS_Playcount" when saving tag (#1074). + Fixed compilation tag read and write for MP4 (#1076). + Removed incorrect use of "TPE1" for performer when reading ID3 tags (#1076). + Disable tag fields for unsupported tags in tag editor. + Don't allow organizing files without unique tags (track or title) for filename (#1077). + Don't remove disc from album title when creating cover hash to allow different covers for each disc on an album (#1069). + Fixed incorrect relative paths for song filenames when saving playlists if the saved playlist location is a symablic link to the song filename (#1071). + Scrobble "Various Artists" as album artist (#1082). + Enhancements: + Use system volume instead of own software volume when available (#1037). + Improved Tidal and Qobuz support with timed requests. + Support MPRIS2 xesam:userRating. - Update to version 1.0.10 + Bugfixes: + Fixed "Could not open settings file for writing: No such file or directory" error before settings file is created. + Fixed visual glitch on currently playing track (#1051). + Fixed "Unknown error" on Tidal search (#1047). + Fixed incomplete lyrics from Genius. + Fixed icons not showing in the file view on some systems (#1024). + Fixed issues with context and playing widget stopping when using VLC (#1054). + Enhancements: + Fixed narrowing conversions in connects. + Fixed casts from QByteArray. + Removed subdir for generated dbus files + Removed use of fixed font in context (#1040). + Improve Musixmatch lyrics search. - Update to version 1.0.9 + Fixed parsing album title from radio stream metadata (#1023). - Update to version 1.0.8 + Bugfixes: + Fixed backslash being appended to filter text when switching playlist (#1005). + Fixed OSD notifications service registering taking too long to timeout when not available. + Fixed radio stream added twice when double-clicked (#1015). + Fixed translating undo and redo buttons (#1017). + Enhancements: + Use ICU instead of iconv to transliterate characters for filenames. + Make separating albums by grouping tag optional in collection group by album. + Added support for video game music formats VGM and SPC. + Added setting for explicitly turning on HTTP/2 for streaming. Strawberry will set the libsoup SOUP_FORCE_HTTP1 environment variable when the HTTP/2 is not checked (#1016). strawberry-1.0.15-bp154.2.9.1.src.rpm strawberry-1.0.15-bp154.2.9.1.x86_64.rpm strawberry-1.0.15-bp154.2.9.1.aarch64.rpm strawberry-1.0.15-bp154.2.9.1.ppc64le.rpm openSUSE-2023-78 moderate openSUSE Backports SLE-15-SP4 Update This update for libscrypt fixes the following issues: - Build AVX2 enabled hwcaps library for x86_64-v3 Ship libscrypt in version 1.22. libscrypt-1.22-bp154.2.1.src.rpm libscrypt-devel-1.22-bp154.2.1.x86_64.rpm libscrypt0-1.22-bp154.2.1.x86_64.rpm libscrypt-devel-1.22-bp154.2.1.i586.rpm libscrypt0-1.22-bp154.2.1.i586.rpm libscrypt0-32bit-1.22-bp154.2.1.x86_64.rpm libscrypt-devel-1.22-bp154.2.1.aarch64.rpm libscrypt0-1.22-bp154.2.1.aarch64.rpm libscrypt0-64bit-1.22-bp154.2.1.aarch64_ilp32.rpm libscrypt-devel-1.22-bp154.2.1.ppc64le.rpm libscrypt0-1.22-bp154.2.1.ppc64le.rpm libscrypt-devel-1.22-bp154.2.1.s390x.rpm libscrypt0-1.22-bp154.2.1.s390x.rpm openSUSE-2023-79 moderate openSUSE Backports SLE-15-SP4 Update This update for vmaf fixes the following issues: - Fix "no such built-in model" due to missing build dependency libvmaf1-2.3.1-bp154.5.1.x86_64.rpm vmaf-2.3.1-bp154.5.1.src.rpm vmaf-devel-2.3.1-bp154.5.1.x86_64.rpm libvmaf1-2.3.1-bp154.5.1.i586.rpm libvmaf1-32bit-2.3.1-bp154.5.1.x86_64.rpm vmaf-devel-2.3.1-bp154.5.1.i586.rpm libvmaf1-2.3.1-bp154.5.1.aarch64.rpm libvmaf1-64bit-2.3.1-bp154.5.1.aarch64_ilp32.rpm vmaf-devel-2.3.1-bp154.5.1.aarch64.rpm libvmaf1-2.3.1-bp154.5.1.ppc64le.rpm vmaf-devel-2.3.1-bp154.5.1.ppc64le.rpm libvmaf1-2.3.1-bp154.5.1.s390x.rpm vmaf-devel-2.3.1-bp154.5.1.s390x.rpm openSUSE-2023-80 moderate openSUSE Backports SLE-15-SP4 Update This update for squirrel fixes the following issues: - CVE-2021-41556: fix out-of-bounds read issue (boo#1201974) squirrel-3.0.7-bp154.3.3.1.src.rpm squirrel-3.0.7-bp154.3.3.1.x86_64.rpm squirrel-devel-3.0.7-bp154.3.3.1.x86_64.rpm squirrel-devel-static-3.0.7-bp154.3.3.1.x86_64.rpm squirrel-doc-3.0.7-bp154.3.3.1.noarch.rpm squirrel-examples-3.0.7-bp154.3.3.1.noarch.rpm squirrel-3.0.7-bp154.3.3.1.i586.rpm squirrel-devel-3.0.7-bp154.3.3.1.i586.rpm squirrel-devel-static-3.0.7-bp154.3.3.1.i586.rpm squirrel-3.0.7-bp154.3.3.1.aarch64.rpm squirrel-devel-3.0.7-bp154.3.3.1.aarch64.rpm squirrel-devel-static-3.0.7-bp154.3.3.1.aarch64.rpm squirrel-3.0.7-bp154.3.3.1.ppc64le.rpm squirrel-devel-3.0.7-bp154.3.3.1.ppc64le.rpm squirrel-devel-static-3.0.7-bp154.3.3.1.ppc64le.rpm squirrel-3.0.7-bp154.3.3.1.s390x.rpm squirrel-devel-3.0.7-bp154.3.3.1.s390x.rpm squirrel-devel-static-3.0.7-bp154.3.3.1.s390x.rpm openSUSE-2023-98 moderate openSUSE Backports SLE-15-SP4 Update This update for gn, re2 fixes the following issues: Changes in gn: - Bump Leap's GCC version to 12 to align with the other Chromium tools - Exclude ppc - it doesn't build Changes in re2: - Require GCC 12 on Leap due to code containing speed ups which require newer standards - Allow tests to fail - they fail too often - update to 2023-03-01: * changes for other platforms - update to 2023-02-01: * improved support for ICU - build with ICU - update to 2022-12-01: * Update to Unicode 15.0.0 data * cmake install now installs the pkg-config file - update to 2022-06-01: * switch to cxx_std_11 and other developer visible fixes gn-0.20210811-bp154.3.3.1.src.rpm gn-0.20210811-bp154.3.3.1.x86_64.rpm libre2-10-20230301-bp154.9.3.1.x86_64.rpm libre2-10-debuginfo-20230301-bp154.9.3.1.x86_64.rpm re2-20230301-bp154.9.3.1.src.rpm re2-debugsource-20230301-bp154.9.3.1.x86_64.rpm re2-devel-20230301-bp154.9.3.1.x86_64.rpm gn-0.20210811-bp154.3.3.1.i586.rpm libre2-10-20230301-bp154.9.3.1.i586.rpm libre2-10-32bit-20230301-bp154.9.3.1.x86_64.rpm libre2-10-32bit-debuginfo-20230301-bp154.9.3.1.x86_64.rpm libre2-10-debuginfo-20230301-bp154.9.3.1.i586.rpm re2-debugsource-20230301-bp154.9.3.1.i586.rpm re2-devel-20230301-bp154.9.3.1.i586.rpm gn-0.20210811-bp154.3.3.1.aarch64.rpm libre2-10-20230301-bp154.9.3.1.aarch64.rpm libre2-10-64bit-20230301-bp154.9.3.1.aarch64_ilp32.rpm libre2-10-64bit-debuginfo-20230301-bp154.9.3.1.aarch64_ilp32.rpm libre2-10-debuginfo-20230301-bp154.9.3.1.aarch64.rpm re2-debugsource-20230301-bp154.9.3.1.aarch64.rpm re2-devel-20230301-bp154.9.3.1.aarch64.rpm gn-0.20210811-bp154.3.3.1.ppc64le.rpm libre2-10-20230301-bp154.9.3.1.ppc64le.rpm libre2-10-debuginfo-20230301-bp154.9.3.1.ppc64le.rpm re2-debugsource-20230301-bp154.9.3.1.ppc64le.rpm re2-devel-20230301-bp154.9.3.1.ppc64le.rpm gn-0.20210811-bp154.3.3.1.s390x.rpm libre2-10-20230301-bp154.9.3.1.s390x.rpm libre2-10-debuginfo-20230301-bp154.9.3.1.s390x.rpm re2-debugsource-20230301-bp154.9.3.1.s390x.rpm re2-devel-20230301-bp154.9.3.1.s390x.rpm openSUSE-2023-82 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 111.0.5563.110 (boo#1209598) * CVE-2023-1528: Use after free in Passwords * CVE-2023-1529: Out of bounds memory access in WebHID * CVE-2023-1530: Use after free in PDF * CVE-2023-1531: Use after free in ANGLE * CVE-2023-1532: Out of bounds read in GPU Video * CVE-2023-1533: Use after free in WebProtect * CVE-2023-1534: Out of bounds read in ANGLE chromedriver-111.0.5563.110-bp154.2.76.1.x86_64.rpm chromium-111.0.5563.110-bp154.2.76.1.src.rpm chromium-111.0.5563.110-bp154.2.76.1.x86_64.rpm chromedriver-111.0.5563.110-bp154.2.76.1.aarch64.rpm chromium-111.0.5563.110-bp154.2.76.1.aarch64.rpm openSUSE-2023-91 moderate openSUSE Backports SLE-15-SP4 Update This update for fwts fixes the following issues: fwts was updated to version 23.03.00: * auto-packager: mkpackage: add build depend dh-dkms for lunar * dmicheck: fix the print format * dmicheck: update for supporting DMI version to 3.6 * dmicheck: update the device type field for type 41 * dmicheck: update the interface field for type 21 * dmicheck: add some bit 0 reserved checks for type 17 * dmicheck: modify the memory type range check for type 17 * dmicheck: add bit 0 reserved check of the processor characteristics for type 4 * dmicheck: add status check for type 4 * dmicheck: add processor family check for type 4 * dmicheck: fix the extended bios ROM size bit check of type 0 * dmicheck: fix the wrong slot height value range * dmicheck: fix the length check error for type 9 * debian: update copyright * acpi: method: NIH method output buffer should be 4 bytes * ebbr: add some tests to ebbr option * sbbr: add esrt and uefibootpath tests to sbbr option * Add support for 64 bit LoongArch compilation * libfwtsiasl: fix undefined symbols in shared library fwts-23.03.00-bp154.2.15.1.src.rpm fwts-23.03.00-bp154.2.15.1.x86_64.rpm fwts-23.03.00-bp154.2.15.1.i586.rpm fwts-23.03.00-bp154.2.15.1.aarch64.rpm openSUSE-2023-90 important openSUSE Backports SLE-15-SP4 Update This update for nextcloud-desktop fixes the following issues: nextcloud-desktop was updated to 3.8.0: - Resize WebView widget once the loginpage rendered - Feature/secure file drop - Check German translation for wrong wording - L10n: Correct word - Fix displaying of file details button for local syncfileitem activities - Improve config upgrade warning dialog - Only accept folder setup page if overrideLocalDir is set - Update CHANGELOG. - Prevent ShareModel crash from accessing bad pointers - Bugfix/init value for pointers - Log to stdout when built in Debug config - Clean up account creation and deletion code - L10n: Added dot to end of sentence - L10n: Fixed grammar - Fix "Create new folder" menu entries in settings not working correctly on macOS - Ci/clang tidy checks init variables - Fix share dialog infinite loading - Fix edit locally job not finding the user account: wrong user id - Skip e2e encrypted files with empty filename in metadata - Use new connect syntax - Fix avatars not showing up in settings dialog account actions until clicked on - Always discover blacklisted folders to avoid data loss when modifying selectivesync list. - Fix infinite loading in the share dialog when public link shares are disabled on the server - With cfapi when dehydrating files add missing flag - Fix text labels in Sync Status component - Display 'Search globally' as the last sharees list element - Fix display of 2FA notification. - Bugfix/do not restore virtual files - Show server name in tray main window - Add Ubuntu Lunar - Debian build classification 'beta' cannot override 'release'. - Update changelog - Follow shouldNotify flag to hide notifications when needed - Bugfix/stop after creating config file - E2EE cut extra zeroes from derypted byte array. - When local sync folder is overriden, respect this choice - Feature/e2ee fixes - This also fix security issues: - (boo#1205798, CVE-2022-39331) - Arbitrary HyperText Markup Language injection in notifications - (boo#1205799, CVE-2022-39332) - Arbitrary HyperText Markup Language injection in user status and information - (boo#1205800, CVE-2022-39333) - Arbitrary HyperText Markup Language injection in desktop client application - (boo#1205801, CVE-2022-39334) - Client incorrectly trusts invalid TLS certificates - (boo#1207976, CVE-2023-23942) - missing sanitisation on qml labels leading to javascript injection - Update to 3.7.4 - check German translation for wrong wording - Fix "Create new folder" menu entries in settings not working correctly on macOS - Clean up account creation and deletion code - Fix share dialog infinite loading - fix edit locally job not finding the user account: wrong user id - skip e2e encrypted files with empty filename in metadata - Always discover blacklisted folders to avoid data loss when modifying selectivesync list. - use new connect syntax - with cfapi when dehydrating files add missing flag - Fix avatars not showing up in settings dialog account actions until clicked on - Fix text labels in Sync Status component - Fix infinite loading in the share dialog when public link shares are disabled on the server - Ci/clang tidy checks init variables - Display 'Search globally' as the last sharees list element - Resize WebView widget once the loginpage rendered - Bugfix/do not restore virtual files - Fix display of 2FA notification. - Update to 3.7.3 - Revert "Fix(l10n): capital_abcd Update translations from Transifex" - Revert "Fix(l10n): capital_abcd Update translations from Transifex" - Revert "Fix(l10n): capital_abcd Update translations from Transifex" - Update to 3.7.2 - No regular changelog from upstream. See instead: https://github.com/nextcloud/desktop/compare/v3.7.1...v3.7.2 - Update to 3.7.1 - Backport/5393/stable 3.7 by @mgallien in #5403 - Fix wrong estimated time when doing sync. in #4902 - Bugfix/selective sync abort error in #4903 - Set UnifiedSearchResultNothingFound visibility less messily in #4751 - Clean up QML type and singleton registration in #4817 - Simplify activity list delegates by making them ItemDelegates, clean up in #4786 - Improve activity list highlighting/keyboard item selection in #4781 - Replace private API QZipWriter with KArchive in #4768 - makes Qt WebEngine optional only on macOS in #4875 - Bugfix/conflict resolution when selecting folder in #4914 - Fix fileactivitylistmodel QML registration in #4920 - Updated link to documentation in #4792 - Fix menu bar height calculation on macOS in #4917 - Fix ActivityItem activityHover error in #4921 - Fix add account window text clipping, enlarge text in #4910 - Accept valid lsColJob reply XML content types in #4919 - Fix low-resolution file changed overlay icons in activities in #4930 - Refactor ActivityListModel population mechanisms in #4736 - Make account setup wizard's adjustWizardSize resize to current page size instead of largest wizard page in #4911 - Deallocate call notification dialog objects when closed by @claucambra in #4939 - Ensure that the file being processed has had its etag properly sanitised, log etag more in #4940 - Feature/syncjournaldb handle errors in #4819 - Do not format text in QML components as HTML in #4944 - Fix two factor auth notification: activity item was disabled. in #4961 - Add a placeholder item for empty activity list in #4959 - Ensure strings in main window QML are presented as plain text and not HTML by @claucambra in #4972 - Improve handling of file name clashes by @claucambra in #4970 - Add a QSortFilterProxyModel-based SortedActivityListModel by @claucambra in #4933 - Bring back .lnk files on Windows and always treat them as non-virtual files. by @allexzander in #4968 - Fix two factor authentication notification by @camilasan in #4967 - Ensure placeholder message in emoji picker wraps correctly in #4960 - Make activity action button an actual button, clean up contents in #4784 - Improve the error box QML component in #4976 - Fix 'Reply' primary property. in #4985 - Fix sync progress bar colours in dark mode in #4986 - Fix predefined status text formatting in #4987 - Don't set up tray context menu on macOS, even if not building app bundle in #4988 - Ci/check clang tidy in ci in #4995 - check our code with clang-tidy in #4999 - alway use constexpr for all text constants in #4996 - avoid possibly crashing static_cast in #4994 - switch AppImage CI to latest tag: client-appimage-6 in #5003 - configure a list of checks for clang-tidy in #5004 - Fix link shares default expire date being enforced as maximum expire date even when maximum date enforcement is disabled on the server in #4982 - apply modernize-use-using via clang-tidy in #4993 - Ci/use no discard in #4992 - Fix files not unlocking after lock time expired in #4962 - Update client image in #5002 - let's check the format via some github action in #4991 - Feature/vfs windows sharing and lock state in #4942 - Update after tx migrate in #5019 - Improve 'Handle local file editing' feature. Add loading popup. Add force sync before opening a file. in #4990 - Command-line client. Do not trust SSL certificates by default, unless '--trust' option is set. in #5022 - Bugfix/files lock fail metadata in #5024 - do not ignore return value in #4998 - improve logs when adding sync errors in activity list of main dialog in #5032 - Fix invisible user status selector button not being checked when user is in Offline mode in #5012 - use correct version copmparison on NSIS updater: fix update from rc in #4979 - Bugfix/check token for edit locally requests in #5039 - Fix the dismiss button: display it whenever possible. in #4989 - Fix account not found when doing local file editing. in #5040 - Improve "pretty user name"-related strings, display in webflow credentials in #5013 - Update CHANGELOG with 3.6.1 changes. in #5066 - Fix call notification dialog buttons in #5074 - validate certificate for E2EE against private key in #4949 - emit missing signal to update folder sync status icon in #5087 - Update CMake usage in README build instructions in #5086 - Clean up methods in sync engine in #5071 - Make Systray's void methods slots in #5042 - Remove unneeded parameter from CleanupPollsJob constructor in #5070 - Add a 'Sync now' button to the sync status header in the tray window in #5018 - Modernise and improve code in AccountManager in #5026 - Fix macOS autoupdater settings in #5102 - Validate and sanitise edit locally token and relpath before sending to server in #5093 - Refactor FolderMan's "Edit Locally" capabilities as separate class in #5107 - Modernise and improve code in AccountSettings in #5027 - Fix compatibility with newer python3-nautilus in #5105 - Only show Sync Now button if account is connected in #5097 - use new public API to open an edit locally URL in #5116 - Add a new file details window, unify file activity and sharing in #4929 - E2EE. Do not generate keypair without user request. in #5067 - Fix incorrect current user index when adding or removing a user account. Also fix incorrect user avatar lookup by id. in #5092 - Remove unused internal link widget from old share dialog in #5123 - Use separate variable for cfg file name in CMAKE. in #5136 - Bugfix/delete folders during propagation even when propagation has errors in #5104 - Remove unused app pointer in CocoaInitializer in #5127 - Ensure 'Sync now' button doesn't have its text elided in #5129 - Fix share delegate button icon colors in dark mode in #5132 - Do not use copy-assignment of QDialog. in #5148 - Remove unused remotePath in User::processCompletedSyncItem in #5118 - Make user status selector modal, show user header in #5145 - properly escape a path when creating a test file during tests in #5151 - Add support cmake unity build in #5109 - Fix typo of connector in #5157 - fully qualify types in signals and slots in #5088 - Remove reference to inexistent property in NCCustomButton in #5173 - Fix ActivityList delegate warnings in #5172 - Ensure forcing a folder to be synced unpauses syncing on said folder in #5152 - switch back to upstream craft in #5178 - fix renaming of folders with a deep hierarchy inside them in #5182 - fix instances of: c++11 range-loop might detach Qt container warnings in #5089 - Implement context menu entry "Leave this share" in #5081 - check that we update local file mtime on changes from server in #5188 - Add end-to-end tests to our CI in #5124 - Modernize the Dolphin action plugin in #5192 - Ci/do not modify configuration file duringtests in #5200 - cmake: Use FindPkgConfig's pkg_get_variable instead of custom macro in #5199 - Fix tray window margins, stop cutting into window border in #5202 - fix regressions on pinState management when doing renames in #520 - Fix bad custom button alignments, sizings, etc. in #5189 - Ci/do not override configuration file in #5206 - Clearly tell user that E2EE has been enabled for an account in #5164 - Fix CfApiShellExtensionsIPCTest in #5209 - l10n: Fixed grammar in #5220 - Prevent bad encrypting of folder if E2EE has not been correctly set up in #5223 - Remove close/dismiss button from encryption message in #5163 - Update macOS shell integration deployment targets in #5227 - Bugfix/case cash conflicts should not terminate sync in #5224 - Differentiate between E2EE not being enabled at all vs. E2EE being enabled already through another device in account settings message in #5179 - Ensure more QML text components are rendering things as plain text in #5231 - l10n: Correct spelling in #5221 - Make use of plain text-enforcing qml labels in #5233 - Feature/edit file locally restart sync in #5175 - Fix CI errors for Edit Locally. in #5241 - Lock file when editing locally in #5226 - Format some QLabels as plain text in #5247 - do not create GUI from a random thread and show error on real error in #5253 - Fix BasicComboBox internal layout in #5216 - Explicitly size and align user status selector text input to avoid bugs with alternate QtQuick styles in #5214 - do not use bulk upload for e2ee files in #5256 - Only show mnemonic request dialog when user explicitly wants to enable E2EE in #5181 - Replace share settings popup with a page on a StackView in #5194 - Add interactive NC Talk notifications on macOS in #5143 - Show file details within the tray dialog, rather than in a separate dialog in #5139 - Silence sync termination errors when running EditLocallyJob. in #5261 - Fix typo in #5257 - Add an "Encrypt" menu entry in file browser context menu for folders in #5263 - Add a nix flake for easy building and dev environments in #5007 - Add an internal link share to the share dialog in #5131 - Avoid the Get-Task-Allow Entitlement (macOS Notarization) in #5274 - sets a fixed version for pixman when buildign desktop client via Craft in #5269 - Fix SyncEngineTest failure when localstate is destroyed. in #5273 - Feature/remove obsolete names in #5271 - Remove unused HeaderBanner component in #5245 - Feature/do not sync enc folders if e2ee is not setup in #5258 - fix migration from old settings configuration files in #5141 - Use QFileInfo::exists where we are only creating a QFileInfo to check if file exists in #5291 - Make correct use of Qt signal 'emit' keyword in #5287 - Remove unused variables in #5290 - Declare all QRegularExpressions statically in #5289 - l10n: Remove space in #5297 - Feature/move shellextensions to root installdir in #5295 - Improve backup dark mode palette for Windows in #5298 - Allow setting up an account with apppasword and folder via command-line arguments. For deployment. in #5296 - Update file's metadata in the local database when the etag changes while file remains unchanged. Fix subsequent conflict when locking and unlocking. in #5293 - Fix warnings on QPROPERTY-s in #5286 - Replace now deprecated FSEventStreamScheduleWithRunLoop with FSEventStreamSetDispatchQueue in #5272 - Fix macOS shell integration class inits in #5299 - Drop dependency on Qt Quick Controls 1 in #5309 - Fix full-text search results not being opened in browser in #5279 - Feature/allow forceoverrideurl via command line in #5329 - Bugfix/e2ee vulnerability empty metadatakeys in #5323 - Always generate random initialization vector when uploading encrypted file in #5324 - Fix bad string for translation. in #5358 - Update legal notice to 2023 in #5361 - Fix migration from legacy client when override server url is set in #5322 - Don't try to lock folders when editing locally in #5317 - Fix fetch more unified search result item not being clickable in #5266 - Add ability to disable E2EE in #5167 - Remove unused monochrome icons setting in #5366 - Feature/sync with case clash names in #5232 - Edit locally. Do not lock if locking is disabled on the server. in #5371 - Revert "Merge pull request #5366 from nextcloud/bugfix/remove-mono-icons-setting" in #5372 - Open calendar notifications in the browser. in #4684 - Migrate old configs in #5362 - Always unlock E2EE folders, even when network failure or crash. in #5370 - Fix displaying of file details button for local syncfileitem activities in #5380 - Improve config upgrade warning dialog in #5386 - Backport/5385/stable 3.7 in #5388 - Update to 3.6.6 - Revert "Fix(l10n): capital_abcd Update translations from Transifex" 33f3975 - Update to 3.6.5 - do not assert when sharing to a circle in #5310 - Fix macOS shell integration class inits in #5311 - Drop dependency on Qt Quick Controls 1 in #5312 - Feature/allow forceoverrideurl via command line in #5332 - Fix typo in #5270 - check that we update local file mtime on changes from server in #5321 - fix regressions on pinState management when doing renames in #5333 - Always generate random initialization vector when uploading encrypted file in #5334 - Fix SyncEngineTest failure when localstate is destroyed. in #5336 - Bugfix/e2ee vulnerability empty metadatakeys in #5335 - Update to 3.6.4 - do not create GUI from a random thread and show error on real error - Update to 3.6.3 - Fix typo of connector - fix renaming of folders with a deep hierarchy inside them - Make user status selector modal, show user header - Prevent bad encrypting of folder if E2EE has not been correctly set up - Feature/edit file locally restart sync - Add forcefoldersync method to folder manager - Make use of plain text-enforcing qml labels - Lock file when editing locally - Format some QLabels as plain text - Update to 3.6.2 - Fix call notification dialog buttons by @backportbot-nextcloud in #5075 - emit missing signal to update folder sync status icon by @backportbot-nextcloud in #5090 - Fix macOS autoupdater settings by @backportbot-nextcloud in #5103 - Validate and sanitise edit locally token and relpath before sending to server by @backportbot-nextcloud in #5106 - Fix compatibility with newer python3-nautilus by @backportbot-nextcloud in #5112 - Refactor FolderMan's "Edit Locally" capabilities as separate class by @backportbot-nextcloud in #5111 - use new public API to open an edit locally URL by @backportbot-nextcloud in #5117 - Use separate variable for cfg file name in CMAKE. by @backportbot-nextcloud in #5140 - Fix stable-3.6 compile on macOS by @claucambra in #5154 - Fix bad backport of CustomButton changes in Stable-3.6 by @claucambra in #5155 - Backport/5067/stable 3.6 by @allexzander in #5153 - Backport/5092/stable 3.6 by @allexzander in #5156 - properly escape a path when creating a test file during tests by @backportbot-nextcloud in #5158 - Split out the dbus service related files that provides libcloudproviders integration for nextcloud desktop client into a separate package; when this is installed, launching any app supporting libowncloudproviders (e.g. nautilus on GNOME) will automatically launch the desktop client -- which is rather annoying to happen by default, esp. in cases where a user does not even have a nextcloud account (gh#nextcloud/desktop#1982, gh#nextcloud/desktop#2622). - Make the extension working again on Nautilus 43. This patch also support previous Nautilus versions. - Update to 3.6.1 - Fix wrong estimated time when doing sync. - Bugfix/selective sync abort error - Bugfix/conflict resolution when selecting folder - Fix menu bar height calculation on macOS - Fix add account window text clipping, enlarge text - Accept valid lsColJob reply XML content types - Fix low-resolution file changed overlay icons in activities - Deallocate call notification dialog objects when closed - Ensure that the file being processed has had its etag properly sanitised, log etag more - Ensure strings in main window QML are presented as plain text and not HTML - Do not format text in QML components as HTML - Fix two factor authentication notification - Bring back .lnk files on Windows and always treat them as non-virtual files. - Fix 'Reply' primary property. - Update after tx migrate - Command-line client. Do not trust SSL certificates by default, unless '--trust' option is set. - Fix invisible user status selector button not being checked when user is in Offline mode - Fix link shares default expire date being enforced as maximum expire date even when maximum date enforcement is disabled on the server - Backport/4989/stable 3.6 - use correct version copmparison on NSIS updater: fix update from rc - Improve 'Handle local file editing' feature. Add loading popup. Add f… - Backport/5039/bugfix/check token for edit locally requests - Fix account not found when doing local file editing. - Fix two factor auth notification: activity item was disabled. - Fix predefined status text formatting - Fix sync progress bar colours in dark mode - Improve handling of file name clashes - Ensure placeholder message in emoji picker wraps correctly - Update to 3.6.0 - Fix crash in cldapi.dll - Updating command-rebase.yml workflow from template - Reply button size should be same as the input field, smaller + text color - Fix crashing when selecting user status and predefined statuses not appearing - Make user status dialog look in line with the rest of the desktop client tray and Nextcloud - Add a placeholder message for the recents tab of the emoji picker - Add SVG icon styled for macOS Big Sur - Ensure the dispatch source only gets deallocated after the dispatch_source_cancel is done, avoiding crashing of the Finder Sync Extension on macOS - Properly adapt the UserStatusSelectorModel to QML, eliminate hacks, make code more declarative - Fix the system tray menu not being correctly replaced in setupContextMenu on GNOME - Make the share dialog resizeable - Make client language gender-neutral and more clear - Use an en-dash for the userstatus panel - Close call notifications when the call has been joined by the user, or the call has ended - Correct spelling - Print sync direction in SyncFileStatusTracker::slotAboutToPropagate - Windows CI. Use specific Craft revision. - Add 'db/local/remote' reference to log string. - Work around issues with window positioning on Linux DEs, hardcode tray window to screen center when new account added - Add a custom back button to the account wizard's advanced setup page - Clean up systray methods, make more QML-friendly - Refactor tray window opening code for clarity and efficiency - Increase the call state checking interval to not overload the server - Fix bad quote in CMakeLists PNG generation message - Only set _FORTIFY_SOURCE when a higher level of this flag has not been set - Switch to using the main client CI image based on ubuntu 22.04 - Limit concurrent notifications - Use macOS-specific application icon - QML-ify the UserModel, use properties rather than setter methods - Take ints by value rather than reference in UserModel methods - Feature/vfs windows thumbnails - Respect skipAutoUpdateCheck in nextcloud.cfg with Sparkle on macOS - Restyle unified search skeleton items animation and simplify their code - Stop styling QML unified search items hierarchically, use global Style constants - Use preprocessor directive rather than normal 'if' for UNNotification types - Make apps menu scrollable when content taller than available vertical space, preventing borking of layout - Ensure that throttled notifications still appear in tray activity model - Stop clearing notifications when new notifications are received - Fix ActivityItemContent QML paintedWidth errors - Clicking on an activity list item for a file opens the local file if available - Replace unified search text field busy indicator with custom indicator - Update macOS Info.plist - Ensure debug archive contents are readable by any user - Remove Ubuntu Impish, add Kinetic - Make UserStatusSelector a dismissible page pushed onto the tray window - Feature/handle edit locally - Add Debian Bullseye build - Double-clicking tray icon opens currently-selected user's local folder (if available) - Clean up TalkReplyTextField, remove unnecessary parent Item - Refactor user line - Do not reboot PC when running an MSI via autoupdate. - Always run MSI with full UI. - Eliminate padding around the menu separator in the account menu - Feature/enable more warnings also for gcc - Move CFAPI shell extensions variables to root CMakeLists. - Move URI scheme variable from Nextcloud.cmake to root CMakeListsts. - Ensure SyncEngine use an initialized instance of SyncOptions - Fix QML warnings - I18n: Spelling unification - Fix crash: 'Failed to create OpenGL context'. - Fix bugs with setting 'Away' user status - Fix greek translation for application name in menu - Align, resize, and layout everything uniformly in the unified search view - Remove libglib-2.0.so.0 and libgobject-2.0.so.0 from Appimage. - Fix unified search item placeholder image source - Use same tooltip component everywhere, fix tooltip clipping bugs - Fix account switching and hover issues with UserLine component - Remove Ubuntu Focal - Add a ScrollView to the predefined statuses area of the UserStatusSelector - Prevent the 'Cancel' button of the user status selector getting squashed - Ensure that clear status message combo box is at least implicit width - Fix alignment of predefined status contents regardless of emoji fonts - Prevent crashing when trying to create error-ing QML component in systray.cpp, output error to log - Add CHANGELOG.md. - Ensure file activity dialog is centered on screen and appears at top of window stack - Build script for AppImage should not assume Nextcloud is the name - Fix File Activities dialog not showing up. - Reads and store fileId and remote permissions during bulk upload - Do not build qt keychain already included in the CI images - Bugfix/web engine on win11 - Update CHANGELOG for the 3.6.0 release. - Fix script that upload AppImage to go in correct path - Update to 3.5.4 - Add and use DO_NOT_REBOOT_IN_SILENT=1 parameter for MSI to not reboot during the auto-update. - Update to 3.5.3 - Fix the system tray menu not being correctly replaced in setupContextMenu on GNOME - Ensure call notification stays on top of other windows - Work around issues with window positioning on Linux DEs, hardcode tray window to screen center when new account added - Clean up systray methods, make more QML-friendly - Refactor tray window opening code for clarity and efficiency - Only set _FORTIFY_SOURCE when a higher level of this flag has not been set - Limit concurrent notifications - Take ints by value rather than reference in UserModel methods - Respect skipAutoUpdateCheck in nextcloud.cfg with Sparkle on macOS - Use preprocessor directive rather than normal 'if' for UNNotification types - QML-ify the UserModel, use properties rather than setter methods - Fix ActivityItemContent QML paintedWidth errors - Stop clearing notifications when new notifications are received - Ensure debug archive contents are readable by any user - Stop styling QML unified search items hierarchically, use global Style constants - Update macOS Info.plist - print sync direction in SyncFileStatusTracker::slotAboutToPropagate - Remove Ubuntu Impish, add Kinetic - Ensure that throttled notifications still appear in tray activity model - Make apps menu scrollable when content taller than available vertical space, preventing borking of layout - Update to 3.5.2 - Explicitly ask user for notification authorisation on launch (macOS) - Fix crash caused by overflow in FinderSyncExtension - add new fixup workflow from nextcloud org - Display chat message inside the OS notification. - Fix 'TypeError: Cannot readproperty 'messageSent' of undefined'. - Add a transparent background to the send reply button. - Fix build on macOS versions pre-11 (down to 10.14) - Ignore Office temp folders on Mac ('.sb-' in folder name). - Remove assert, it is no longer useful. - Add contrast to the text/icon of buttons if the server defined color is light. - fix general section - Remove tooltip because it is only repeating the label of the link. - bugfix/share-dialog - Updating command-rebase.yml workflow from template - Reply button size should be same as the input field, smaller + text color - Close call notifications when the call has been joined by the user, or the call has ended - Increase the call state checking interval to not overload the server - Ensure the dispatch source only gets deallocated after the dispatch_source_cancel is done, avoiding crashing of the Finder Sync Extension on macOS * A more future-proof and distribution friendly fix for boo#1201070 - Fix Tumbleweed build and install error boo#1201070. Use own CFLAGS for Tumblweed with -D_FORTIFY_SOURCE=2 instead of -D_FORTIFY_SOURCE=3. - Update to 3.5.1 - Add new and correct sparkle update signature - l10n: Remove string from translation - l10n: Changed triple dot to ellipsis - Ensure cache is stored in default cache location - Updating command-rebase.yml workflow from template - Remove "…" from "Create Debug Archive" button - docs: Replace "preceded" with "followed" - only add OCS-APIREQUEST header for 1st request of webflow v1 - Make the make_universal.py script more verbose for easier debugging - Revamp notifications for macOS and add support for actionable update notifications - Use proper online status for user ('dnd', 'online', 'invisible', etc.) to enable or disable desktop notifications. - Bugfix. Take root folder's files size into account when displaying the total size in selective sync dialog. - Fix activity list item issues with colours/layout/etc. - Bugfix/allow manual rename files with spaces - Fixed share link expiration box being ineditable and always attempting to set invalid date - Fix crashing of finder sync extension caused by dispatch_source_cancel of nullptr - Simplify and remove the notification "cache" - Fix tray icon not displaying "Open main dialog" - if an exclude file is deleted, skip it and remove it from internal list - Bugfix/two factor notification - Fix visual borking in the share dialog - add explicit capture for lambda - Update to 3.5.0 - Require cmake 3.16 - Add testing for ActivityListModel - Check for dbus-1 when building with cloudproviders - Add ability to copy internal link from share dialog - Feature/improve activity buttons - Add thumbnails for files in the activity view - Use proper API to dehydrate a placeholder file - Feature/Talk Reply v1 - Ensure we emit a rename command for renamed files - Remove Hirsute, add Jammy - Allow account menu to scroll when content height is larger than menu height - Always build with updater. Use 'beta/stable' channel selector in 'General Settins' dialog with default 'stable'. - Cmake option to disable proxy - Add support for server color theming - No longer assume status bar height, calculate, fixing notch borking on new MacBook Pro - Add a dark mode - Generates pot files automatically. - Add headers in cmake files to get them properly detected - Ensure that bulk upload network job errors are handled - Do not remove a folder that has files that were not uploaded yet during propagation - L10n: Change to lowercase - Simplify currentScreen in systray.cpp - Fix warn colour in dark mode - Do not remove files from a Group folder and its nested folders when it is renamed or removed while not allowed. - Rollback local move on server move failure - Implement local socket to communicate with finder extension - Bugfix/prevent overflow with mtime - L10n: Changed spelling - Add 'Help' action back. - Ensure file activity dialog appears in centre of screen - Increase maximum text line count in tray activity items to two lines - Fix file activity dialog - Properly ask Qt to create qml opengl surface with proper options - Old submodule url does not work anylonger - Old submodule url does not work anylonger - Prepare for 3.5.0-rc1 - Fix icon color and highlight color issues - Fix for VFS crashes due to mimetype checking for thumbnails - Fix various dark mode bugs - Add a new yml github issue template for bug reports. - Ensure we only store update channel not localized in settings - Improve talk reply - Prepare for 3.5.0-rc2 - Bugfix/talk reply part 2 - Darkmode. Fix crash on exit. - Avoid deleting renamed file with spaces in name - More dark mode fixes - Ensure we do properly failed hydration jobs - Fix build of appimage for branded clients - Prepare for 3.5.0-rc3 - Feature/files lock - Add call notification dialog. - Fix thumbnails for new files made while client open - Increase time between connection tries - Improve contrast on server color themed elements - Fix positioning of activities in the activities list - Bugfix/activities fetch server overload - Realigned and resized thumbnails - Add user avatars in talk notifications in activity list - Fix sparkle implementation in the desktop client - Prepare 3.5.0-rc4 - Prepare final 3.5.0 release - Update to 3.4.4 - Do not remove files from a Group folder and its nested folders when it is renamed or removed while not allowed. - Bugfix/prevent overflow with mtime - Old submodule url does not work anylonger - Update to 3.4.3 - Remove Hirsute, add Jammy - Cmake option to disable proxy - ensure we emit a rename command for renamed files - Makes sure that sync engine terminates when an error happen - ensure that bulk upload network job errors are handled - Rollback local move on server move failure - Do not remove a folder that has files that were not uploaded yet during propagation - Update to 3.4.2 - Bugfix/force re-login on SSL Handshake error - Do not display 'Conflict when uploading some files to a folder - Windows. MSI. Unregister Nextcloud folders in SyncRootManager on uninstall. - Unbreak loading translations - Hide share button for deleted files and ignored files in tray activity - Display error message when creating a link share with compromised password. - Bugfix. Re-init sharing manager to enable link sharing UI when receivng sharing permissions. - Show only filenames in tray activity items, with full path in tooltip - use proper API to dehydrate a placeholder file - Add macOS *.textClipping files to ignore list - Updatete to 3.4.1 - fix random error when updating CfApi metadata - do not forget the path when renaming files with invalid names - Bugfix/assert invalid modtime - Feature/folder logo variations - Always prefill username from Windows login name based on server version - Bugfix/3.4.1 rc1 - Bugfix/sync stuck on error - Bugfix/force download local invalid files - Enforce VFS. Disable 'Make always available locally'. - Bugfix/avoid sync getting stuck - Fix CMake error in ECMAddAppIcon for mac - Do not crash on findAndCancelDeletedJob - ensure any errors after calling FileSystem::getModTime are handled - Skiped version 3.4.0 because of modtime bug: See: https://github.com/nextcloud/desktop/pull/4049 Please read the following wiki page How to fix files invalid modification date: https://github.com/nextcloud/desktop/wiki/Fix-bug-invalid-modification-date caja-extension-nextcloud-3.8.0-bp154.2.3.1.noarch.rpm cloudproviders-extension-nextcloud-3.8.0-bp154.2.3.1.noarch.rpm libnextcloudsync-devel-3.8.0-bp154.2.3.1.x86_64.rpm libnextcloudsync0-3.8.0-bp154.2.3.1.x86_64.rpm nautilus-extension-nextcloud-3.8.0-bp154.2.3.1.noarch.rpm nemo-extension-nextcloud-3.8.0-bp154.2.3.1.noarch.rpm nextcloud-desktop-3.8.0-bp154.2.3.1.src.rpm nextcloud-desktop-3.8.0-bp154.2.3.1.x86_64.rpm nextcloud-desktop-doc-3.8.0-bp154.2.3.1.noarch.rpm nextcloud-desktop-dolphin-3.8.0-bp154.2.3.1.x86_64.rpm nextcloud-desktop-lang-3.8.0-bp154.2.3.1.noarch.rpm libnextcloudsync-devel-3.8.0-bp154.2.3.1.aarch64.rpm libnextcloudsync0-3.8.0-bp154.2.3.1.aarch64.rpm nextcloud-desktop-3.8.0-bp154.2.3.1.aarch64.rpm nextcloud-desktop-dolphin-3.8.0-bp154.2.3.1.aarch64.rpm openSUSE-2023-83 important openSUSE Backports SLE-15-SP4 Update This update for nextcloud fixes the following issues: - Update to 23.0.12 See: https://nextcloud.com/changelog/#latest23 - This also fix security issues: - CVE-2022-35931: Password Policy app could generate passwords that would be block (boo#1203190) - CVE-2022-39346: Missing length validation of user displayname allows to generate an SQL error (boo#1205802) - CVE-2023-25579: Potential directory traversal in OC\Files\Node\Folder::getFullPath (boo#1208591) nextcloud-23.0.12-bp154.2.3.1.noarch.rpm nextcloud-23.0.12-bp154.2.3.1.src.rpm nextcloud-apache-23.0.12-bp154.2.3.1.noarch.rpm openSUSE-2023-87 important openSUSE Backports SLE-15-SP4 Update SeaMonkey was updated to 2.53.16: * No throbber in plaintext editor bug 85498. * Remove unused gridlines class from EdAdvancedEdit bug 1806632. * Remove ESR 91 links from debugQA bug 1804534. * Rename devtools/shim to devtools/startup bug 1812367. * Remove unused seltype=text|cell css bug 1806653. * Implement new shared tree styling bug 1807802. * Use `win.focus()` in macWindowMenu.js bug 1807817. * Remove WCAP provider bug 1579020. * Remove ftp/file tree view support bug 1239239. * Change calendar list tree to a list bug 1561530. * Various other updates to the calendar code. * Continue the switch from Python 2 to Python 3 in the build system. * Verified compatibility with Rust 1.66.1. * SeaMonkey 2.53.16 uses the same backend as Firefox and contains the relevant Firefox 60.8 security fixes. * SeaMonkey 2.53.16 shares most parts of the mail and news code with Thunderbird. Please read the Thunderbird 60.8.0 release notes for specific security fixes in this release. * Additional important security fixes up to Current Firefox 102.9 and Thunderbird 102.9 ESR plus many enhancements have been backported. We will continue to enhance SeaMonkey security in subsequent 2.53.x beta and release versions as fast as we are able to. seamonkey-2.53.16-bp154.2.6.2.src.rpm seamonkey-2.53.16-bp154.2.6.2.x86_64.rpm seamonkey-debuginfo-2.53.16-bp154.2.6.2.x86_64.rpm seamonkey-debugsource-2.53.16-bp154.2.6.2.x86_64.rpm seamonkey-dom-inspector-2.53.16-bp154.2.6.2.x86_64.rpm seamonkey-irc-2.53.16-bp154.2.6.2.x86_64.rpm seamonkey-2.53.16-bp154.2.6.2.i586.rpm seamonkey-debuginfo-2.53.16-bp154.2.6.2.i586.rpm seamonkey-debugsource-2.53.16-bp154.2.6.2.i586.rpm seamonkey-dom-inspector-2.53.16-bp154.2.6.2.i586.rpm seamonkey-irc-2.53.16-bp154.2.6.2.i586.rpm seamonkey-2.53.16-bp154.2.6.2.aarch64.rpm seamonkey-debuginfo-2.53.16-bp154.2.6.2.aarch64.rpm seamonkey-debugsource-2.53.16-bp154.2.6.2.aarch64.rpm seamonkey-dom-inspector-2.53.16-bp154.2.6.2.aarch64.rpm seamonkey-irc-2.53.16-bp154.2.6.2.aarch64.rpm openSUSE-2023-86 moderate openSUSE Backports SLE-15-SP4 Update clustershell was updated to upstream release 1.9: * clush: add --mode support with sudo and sshpass examples * clush: add options '--outdir=OUTDIR' and '--errdir=ERRDIR' * clush: always close stdin stream of worker when it is not used * clush: use daemon attribute instead of deprecated setDaemon() * slurm.conf.example: filter out more Slurm node state flags * NodeSet: add special notation @@source to expand group names * RangeSet: nD folding optimization * RangeSet: support ranges with zero padding of mixed lengths * RangeSet: add explicit intiter() method to iterate over integers * EngineClient: EnginePort improvements, add event ev_port_start() * Tree: fix start and bufferize early writes * Tree: fix error with intermediate gateways * Defaults: Introduce CLUSTERSHELL_CFGDIR * Worker: deprecate old EventHandler method signatures * Worker: remove old last_*() methods clustershell-1.9-bp154.3.3.1.noarch.rpm clustershell-1.9-bp154.3.3.1.src.rpm python3-clustershell-1.9-bp154.3.3.1.noarch.rpm openSUSE-2023-85 low openSUSE Backports SLE-15-SP4 Update Updates to man page with important security-related info. csvprintf-1.3.2-bp154.2.3.1.src.rpm csvprintf-1.3.2-bp154.2.3.1.x86_64.rpm csvprintf-debuginfo-1.3.2-bp154.2.3.1.x86_64.rpm csvprintf-debugsource-1.3.2-bp154.2.3.1.x86_64.rpm csvprintf-1.3.2-bp154.2.3.1.i586.rpm csvprintf-debuginfo-1.3.2-bp154.2.3.1.i586.rpm csvprintf-debugsource-1.3.2-bp154.2.3.1.i586.rpm csvprintf-1.3.2-bp154.2.3.1.aarch64.rpm csvprintf-debuginfo-1.3.2-bp154.2.3.1.aarch64.rpm csvprintf-debugsource-1.3.2-bp154.2.3.1.aarch64.rpm csvprintf-1.3.2-bp154.2.3.1.ppc64le.rpm csvprintf-debuginfo-1.3.2-bp154.2.3.1.ppc64le.rpm csvprintf-debugsource-1.3.2-bp154.2.3.1.ppc64le.rpm csvprintf-1.3.2-bp154.2.3.1.s390x.rpm csvprintf-debuginfo-1.3.2-bp154.2.3.1.s390x.rpm csvprintf-debugsource-1.3.2-bp154.2.3.1.s390x.rpm openSUSE-2023-101 important openSUSE Backports SLE-15-SP4 Update This update for pdns-recursor fixes the following issues: pdns-recursor was updated to 4.6.6: * fixes deterred spoofing attempts can lead to authoritative servers being marked unavailable (boo#1209897, CVE-2023-26437) Fixes in 4.6.5: * When an expired NSEC3 entry is seen, move it to the front of the expiry queue * Log invalid RPZ content when obtained via IXFR * Detect invalid bytes in makeBytesFromHex() * Timeout handling for IXFRs as a client Fixes in 4.6.4: * Check qperq limit if throttling happened, as it increases counters * Failure to retrieve DNSKEYs of an Insecure zone should not be fatal * Resize answer length to actual received length in udpQueryResponse pdns-recursor-4.6.6-bp154.2.6.1.src.rpm pdns-recursor-4.6.6-bp154.2.6.1.x86_64.rpm pdns-recursor-debuginfo-4.6.6-bp154.2.6.1.x86_64.rpm pdns-recursor-debugsource-4.6.6-bp154.2.6.1.x86_64.rpm pdns-recursor-4.6.6-bp154.2.6.1.aarch64.rpm pdns-recursor-debuginfo-4.6.6-bp154.2.6.1.aarch64.rpm pdns-recursor-debugsource-4.6.6-bp154.2.6.1.aarch64.rpm pdns-recursor-4.6.6-bp154.2.6.1.ppc64le.rpm pdns-recursor-debuginfo-4.6.6-bp154.2.6.1.ppc64le.rpm pdns-recursor-debugsource-4.6.6-bp154.2.6.1.ppc64le.rpm openSUSE-2023-88 important openSUSE Backports SLE-15-SP4 Update upx was updated to fix the following issues: Update to release 4.0.2 * Fix unpack of ELF x86-64 that failed with "CantUnpackException: corrupt b_info" * Resolve SEGV on PackLinuxElf64::invert_pt_dynamic - CVE-2021-30500: Fixed Null pointer dereference in PackLinuxElf:canUnpack() in p_lx_elf.cpp - CVE-2021-30501: Fixed Assertion abort in function MemBuffer:alloc() - CVE-2021-43311: Fixed Heap-based buffer overflow in PackLinuxElf32:elf_lookup() at p_lx_elf.cpp - CVE-2021-43312: Fixed Heap-based buffer overflow in PackLinuxElf64:invert_pt_dynamic at p_lx_elf.cpp:5239 - CVE-2021-43313: Fixed Heap-based buffer overflow in PackLinuxElf32:invert_pt_dynamic at p_lx_elf.cpp:1688 - CVE-2021-43314: Fixed Heap-based buffer overflows in PackLinuxElf32:elf_lookup() at p_lx_elf.cp - CVE-2021-43315: Fixed Heap-based buffer overflows in PackLinuxElf32:elf_lookup() at p_lx_elf.cp - CVE-2021-43316: Fixed Heap-based buffer overflow in func get_le64() - CVE-2021-43317: Fixed Heap-based buffer overflows in PackLinuxElf64:elf_lookup() at p_lx_elf.cp - CVE-2023-23456: Fixed heap-buffer-overflow in PackTmt:pack() - CVE-2023-23457: Fixed SEGV on PackLinuxElf64:invert_pt_dynamic() in p_lx_elf.cpp upx-4.0.2-bp154.4.6.1.src.rpm upx-4.0.2-bp154.4.6.1.x86_64.rpm upx-debuginfo-4.0.2-bp154.4.6.1.x86_64.rpm upx-debugsource-4.0.2-bp154.4.6.1.x86_64.rpm upx-4.0.2-bp154.4.6.1.aarch64.rpm upx-debuginfo-4.0.2-bp154.4.6.1.aarch64.rpm upx-debugsource-4.0.2-bp154.4.6.1.aarch64.rpm upx-4.0.2-bp154.4.6.1.ppc64le.rpm upx-debuginfo-4.0.2-bp154.4.6.1.ppc64le.rpm upx-debugsource-4.0.2-bp154.4.6.1.ppc64le.rpm upx-4.0.2-bp154.4.6.1.s390x.rpm upx-debuginfo-4.0.2-bp154.4.6.1.s390x.rpm upx-debugsource-4.0.2-bp154.4.6.1.s390x.rpm openSUSE-2023-89 important openSUSE Backports SLE-15-SP4 Update This update for guake fixes the following issues: - Add Requires: python3-importlib-metadata [boo#1206349]. - CVE-2021-23556: Fix arbitrary execution via dbus security flaw (boo#1197256). guake-3.8.1-bp154.2.3.1.noarch.rpm guake-3.8.1-bp154.2.3.1.src.rpm guake-lang-3.8.1-bp154.2.3.1.noarch.rpm openSUSE-2023-97 important openSUSE Backports SLE-15-SP4 Update This update for stellarium fixes the following issues: - CVE-2023-28371: Fixed arbitrary file write issue. (boo#1209285) stellarium-0.21.2-bp154.2.3.1.src.rpm stellarium-0.21.2-bp154.2.3.1.x86_64.rpm stellarium-0.21.2-bp154.2.3.1.aarch64.rpm stellarium-0.21.2-bp154.2.3.1.ppc64le.rpm stellarium-0.21.2-bp154.2.3.1.s390x.rpm openSUSE-2023-92 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - Chromium 112.0.5615.121: * CVE-2023-2033: Type Confusion in V8 (boo#1210478) - Chromium 112.0.5615.49 * CSS now supports nesting rules. * The algorithm to set the initial focus on <dialog> elements was updated. * No-op fetch() handlers on service workers are skipped from now on to make navigations faster * The setter for document.domain is now deprecated. * The recorder in devtools can now record with pierce selectors. * Security fixes (boo#1210126): * CVE-2023-1810: Heap buffer overflow in Visuals * CVE-2023-1811: Use after free in Frames * CVE-2023-1812: Out of bounds memory access in DOM Bindings * CVE-2023-1813: Inappropriate implementation in Extensions * CVE-2023-1814: Insufficient validation of untrusted input in Safe Browsing * CVE-2023-1815: Use after free in Networking APIs * CVE-2023-1816: Incorrect security UI in Picture In Picture * CVE-2023-1817: Insufficient policy enforcement in Intents * CVE-2023-1818: Use after free in Vulkan * CVE-2023-1819: Out of bounds read in Accessibility * CVE-2023-1820: Heap buffer overflow in Browser History * CVE-2023-1821: Inappropriate implementation in WebShare * CVE-2023-1822: Incorrect security UI in Navigation * CVE-2023-1823: Inappropriate implementation in FedCM - Chromium 111.0.5563.147: * nth-child() validation performance regression for SAP apps chromedriver-112.0.5615.121-bp154.2.79.1.x86_64.rpm chromium-112.0.5615.121-bp154.2.79.1.src.rpm chromium-112.0.5615.121-bp154.2.79.1.x86_64.rpm chromedriver-112.0.5615.121-bp154.2.79.1.aarch64.rpm chromium-112.0.5615.121-bp154.2.79.1.aarch64.rpm openSUSE-2023-99 moderate openSUSE Backports SLE-15-SP4 Update This update for spotify-easyrpm fixes the following issues: - Snap package no longer includes share/doc directory. spotify-easyrpm-3.0.4-bp154.2.3.1.noarch.rpm spotify-easyrpm-3.0.4-bp154.2.3.1.src.rpm openSUSE-2023-93 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 112.0.5615.165 (boo#1210618): * CVE-2023-2133: Out of bounds memory access in Service Worker API * CVE-2023-2134: Out of bounds memory access in Service Worker API * CVE-2023-2135: Use after free in DevTools * CVE-2023-2136: Integer overflow in Skia * CVE-2023-2137: Heap buffer overflow in sqlite chromedriver-112.0.5615.165-bp154.2.84.1.x86_64.rpm chromedriver-debuginfo-112.0.5615.165-bp154.2.84.1.x86_64.rpm chromium-112.0.5615.165-bp154.2.84.1.src.rpm chromium-112.0.5615.165-bp154.2.84.1.x86_64.rpm chromium-debuginfo-112.0.5615.165-bp154.2.84.1.x86_64.rpm chromedriver-112.0.5615.165-bp154.2.84.1.aarch64.rpm chromedriver-debuginfo-112.0.5615.165-bp154.2.84.1.aarch64.rpm chromium-112.0.5615.165-bp154.2.84.1.aarch64.rpm chromium-debuginfo-112.0.5615.165-bp154.2.84.1.aarch64.rpm openSUSE-2023-96 important openSUSE Backports SLE-15-SP4 Update liferea was updated to version 1.14.1: + Fix CVE-2023-1350 - Remote code execution on feed enrichment (boo#1209190). Update to version 1.14.0: + New 'Reader mode' preference that allows stripping all web content + Implement support for Webkits Intelligent Tracking Protection + New progress bar when loading websites + Youtube videos from media:video can be embedded now with a click on the video preview picture. + Changes to UserAgent handling: same UA is now used for both feed fetching and internal browsing. + New view mode 'Automatic' which switches between 'Normal' and 'Wide' mode based on the window proportions. + Liferea now supports the new GTK dark theme logic, where in the GTK/GNOME preferences you define wether you "prefer" dark mode or light mode + Favicon discovery improvements: now detects all types of Apple Touch Icons, MS Tile Images and Safari Mask Icons + Increase size of stored favicons to 128x128px to improve icon quality in 3-pane wide view. + Make several plugins support gettext + Allow mutiple feed in same libnotify notification + Redesign of the update message in the status bar. It now shows a update counter of the feeds being in update. + You can now export a feed to XML file + Added an option to show news bins in reduced feed list + Added menu option to send item per mail + Default to https:// instead of http:// when user doesn't provide protocol on subscribing feed + Implement support for subscribing to LD+Json metadata listings e.g. concert or theater event listings + Implement support for subscribing to HTML5 websites + Support for media:description field of Youtube feeds + Improve HTML5 extraction: extract main tag if it exists and no article was found. + Execute feed pipe/filter commands asynchronously + Better explanation of feed update errors. + Added generic Google Reader API support (allows using FeedHQ, FreshRSS, Miniflux...) + Now allow converting TinyTinyRSS subscriptions to local subscriptions + New search folder rule to match podcasts + New search folder rule to match headline authors + New search folder rule to match subscription source + New search folder rule to match parent folder name + New search folder property that allows hiding read items + Now search folders are automatically rebuild when rules are changed + Added new plugin 'add-bookmark-site' that allows to configure a custom bookmarking site. + Added new plugin 'getfocus' that adds transparency on the feed list when it is not focussed. + Trayicon plugin has now a configuration option to change the behaviour when closing Liferea. + Trayicon plugin has now an option to disable minimizing to tray + New hot key Ctrl-D for 'Open in External Browser' + New hot key F10 for headerbar plugin to allow triggering the hamburger menu + New hot key Ctrl-0 to reset zoom + New hot key Ctrl-O to open enclosures + Fix hidden panes, Liferea will never allow the panes to be smaller than 5% in height or width + Wait for network to be fully available before updating + 2-pane mode was removed + Dropped CDF channel support + Dropped Atom 0.2/0.3 (aka Pie) support + Dropped blogChannel namespace support + Dropped photo namespace support - Require python3-cairo; needed for tray icon (boo#1193579). liferea-1.14.1-bp154.2.3.1.src.rpm liferea-1.14.1-bp154.2.3.1.x86_64.rpm liferea-debuginfo-1.14.1-bp154.2.3.1.x86_64.rpm liferea-debugsource-1.14.1-bp154.2.3.1.x86_64.rpm liferea-lang-1.14.1-bp154.2.3.1.noarch.rpm liferea-1.14.1-bp154.2.3.1.i586.rpm liferea-debuginfo-1.14.1-bp154.2.3.1.i586.rpm liferea-debugsource-1.14.1-bp154.2.3.1.i586.rpm liferea-1.14.1-bp154.2.3.1.aarch64.rpm liferea-debuginfo-1.14.1-bp154.2.3.1.aarch64.rpm liferea-debugsource-1.14.1-bp154.2.3.1.aarch64.rpm liferea-1.14.1-bp154.2.3.1.ppc64le.rpm liferea-debuginfo-1.14.1-bp154.2.3.1.ppc64le.rpm liferea-debugsource-1.14.1-bp154.2.3.1.ppc64le.rpm liferea-1.14.1-bp154.2.3.1.s390x.rpm liferea-debuginfo-1.14.1-bp154.2.3.1.s390x.rpm liferea-debugsource-1.14.1-bp154.2.3.1.s390x.rpm openSUSE-2023-94 moderate openSUSE Backports SLE-15-SP4 Update webcamoid was rebuilt against current ffmpeg. webcamoid-9.0.0-bp154.2.2.1.src.rpm webcamoid-9.0.0-bp154.2.2.1.x86_64.rpm webcamoid-9.0.0-bp154.2.2.1.aarch64.rpm webcamoid-9.0.0-bp154.2.2.1.ppc64le.rpm openSUSE-2023-100 moderate openSUSE Backports SLE-15-SP4 Update libcpuid was updated to fix the following issues: Update to version 0.6.3: * Support for Intel Pentium and Celeron for Alder Lake-S * Support for Intel Alder Lake-HX * Support for Intel Alder Lake-X * Fix detection of Intel Alder Lake-P * Fix infinite loop in set_cpu_affinity() on macOS * Fix a misprint of extended CPUID in cpuid_basic_identify() * Restore previous thread CPU affinity before returning from cpuid_get_all_raw_data() (#184) * Query CPU info at least once even if set_cpu_affinity() fails * Support for AMD 19h family MSRs * Fix detection of Intel Core i5 Lynnfield * Rename set_error() to cpuid_set_error() and get_error() to cpuid_get_error() (#188) * Support for Intel Alder Lake-N * Support for AMD Rembrandt with Radeon Graphics * Support for Intel Raptor Lake-S with "Golden Cove" cores * Support for Intel Raptor Lake-P * Support for Intel Raptor Lake-U * Support for Intel Rocket Lake-E update to 0.6.2: * Support for AMD Raphael * Support for AMD Dali * Support for AMD Van Gogh * Fix stuck cpuid_tool due to set_cpu_affinity() on Windows (#172) * Remove AMD Warhol from DB (Zen3+ cancelled) * Fix physical core count computed by cpu_identify_all() when HT is disabled (#175) * Fix shared library symlinks with CMake (#174) * Support for Intel Raptor Lake-S * Fix segmentation fault in cpu_identify_all() for single-core CPUs * Support for Intel Penryn L * Support for Intel Tremont * Support for AMD Mendocino * Support for Intel Ice Lake (Xeon-D) * Support for AMD Zen 2 Desktop Kit CPUs (4700S + 4800S) * Support for AMD Athlon 64 Sherman update to 0.6.0: * Support for AMD Rembrandt * Support for AMD Warhol * Remove Debian package from source tree (#165) * Fix build under Clang 15 (#167) * Support for AMD Athlon Godavari * Support for hybrid CPU like Intel Alder Lake (#166) * Detect presence of hypervisor (#169) * Decode deterministic cache info for AMD CPUs (#168) * Add cache instances field in cpu_id_t and system_id_t (#168) * Support AMD Bald Eagle * Support for more AMD Godavari (Athlon) * Rename AMD Bulldozer to Zambezi * Support for AMD Interlagos * Support for AMD Abu Dhabi * Support for AMD Beema * Support for AMD Steppe Eagle * Support for more AMD Kabini (Sempron + Athlon) * Improve msr_serialize_raw_data() * Support for AMD Zen 2 custom APU for Steam Deck Update to version 0.5.1+git.1644144775: * Tests: add more Zen2 tests from InstLatx64 * DB: add Lucienne * Report memory allocation failures without segfaulting. (#160) * Don't link with msrdriver.c on non-Windows platform. (#159) libcpuid-0.6.3-bp154.2.3.1.src.rpm libcpuid-devel-0.6.3-bp154.2.3.1.x86_64.rpm libcpuid-tools-0.6.3-bp154.2.3.1.x86_64.rpm libcpuid16-0.6.3-bp154.2.3.1.x86_64.rpm libcpuid-devel-0.6.3-bp154.2.3.1.i586.rpm libcpuid-tools-0.6.3-bp154.2.3.1.i586.rpm libcpuid16-0.6.3-bp154.2.3.1.i586.rpm libcpuid-devel-0.6.3-bp154.2.3.1.aarch64.rpm libcpuid-tools-0.6.3-bp154.2.3.1.aarch64.rpm libcpuid16-0.6.3-bp154.2.3.1.aarch64.rpm libcpuid-devel-0.6.3-bp154.2.3.1.ppc64le.rpm libcpuid-tools-0.6.3-bp154.2.3.1.ppc64le.rpm libcpuid16-0.6.3-bp154.2.3.1.ppc64le.rpm openSUSE-2023-103 moderate openSUSE Backports SLE-15-SP4 Update This update for strawberry fixes the following issues: Update to version 1.0.17 + Fixed over-sized context album cover with device pixel ratio higher than 1.0 (#1166). + Fixed playing widget fading from a blurry previous cover with device pixel ratio higher than 1.0. + Made playlist source icon, album cover manager and OSD pretty cover respect device pixel ratio. Update to version 1.0.16 + Bugfixes: + Fixed lyrics from Musixmatch. + Fixed possible file corruption when saving both tags and embedded cover using the tag editor (#1158). + Fixed compile without GStreamer. + Fixed context and playing now album art rendering on High DPI displays (#1161). + Fixed setting source properties (device, user-agent, ssl-strict) with GStreamer 1.22 (playbin3) and higher (#1148). + Fixed rescan songs feature not ignoring mtime. + Search lyrics by artist instead of album artist by default. + Code improvements: + Replace use of deprecated QSqlDatabase::exec(). + Added features: + Added backend setting for strict SSL mode. + Read AcoustID and MusicBrainz tags. + Submit MusicBrainz tags with ListenBrainz. - Remove Qt 5 dependencies - Remove VLC support - Update list of lyric providers in features strawberry-1.0.17-bp154.2.12.1.src.rpm strawberry-1.0.17-bp154.2.12.1.x86_64.rpm strawberry-1.0.17-bp154.2.12.1.aarch64.rpm strawberry-1.0.17-bp154.2.12.1.ppc64le.rpm strawberry-1.0.17-bp154.2.12.1.s390x.rpm openSUSE-2023-102 important openSUSE Backports SLE-15-SP4 Update This update for editorconfig-core-c fixes the following issues: Update to version 0.12.6: - CVE-2023-0341: Fixed a buffer overflow in ec_blob (boo#1211032) - Update property key, value length limits per spec change editorconfig-0.12.6-bp154.2.3.1.x86_64.rpm editorconfig-core-c-0.12.6-bp154.2.3.1.src.rpm libeditorconfig-devel-0.12.6-bp154.2.3.1.x86_64.rpm libeditorconfig0-0.12.6-bp154.2.3.1.x86_64.rpm editorconfig-0.12.6-bp154.2.3.1.i586.rpm libeditorconfig-devel-0.12.6-bp154.2.3.1.i586.rpm libeditorconfig-devel-32bit-0.12.6-bp154.2.3.1.x86_64.rpm libeditorconfig0-0.12.6-bp154.2.3.1.i586.rpm libeditorconfig0-32bit-0.12.6-bp154.2.3.1.x86_64.rpm editorconfig-0.12.6-bp154.2.3.1.aarch64.rpm libeditorconfig-devel-0.12.6-bp154.2.3.1.aarch64.rpm libeditorconfig-devel-64bit-0.12.6-bp154.2.3.1.aarch64_ilp32.rpm libeditorconfig0-0.12.6-bp154.2.3.1.aarch64.rpm libeditorconfig0-64bit-0.12.6-bp154.2.3.1.aarch64_ilp32.rpm editorconfig-0.12.6-bp154.2.3.1.ppc64le.rpm libeditorconfig-devel-0.12.6-bp154.2.3.1.ppc64le.rpm libeditorconfig0-0.12.6-bp154.2.3.1.ppc64le.rpm editorconfig-0.12.6-bp154.2.3.1.s390x.rpm libeditorconfig-devel-0.12.6-bp154.2.3.1.s390x.rpm libeditorconfig0-0.12.6-bp154.2.3.1.s390x.rpm openSUSE-2023-105 moderate openSUSE Backports SLE-15-SP4 Update This update for bzip3 fixes the following issues: Ship initial version 1.3.0. bzip3-1.3.0-bp154.2.1.src.rpm bzip3-1.3.0-bp154.2.1.x86_64.rpm bzip3-devel-1.3.0-bp154.2.1.x86_64.rpm libbzip3-0-1.3.0-bp154.2.1.x86_64.rpm bzip3-1.3.0-bp154.2.1.i586.rpm bzip3-devel-1.3.0-bp154.2.1.i586.rpm libbzip3-0-1.3.0-bp154.2.1.i586.rpm libbzip3-0-32bit-1.3.0-bp154.2.1.x86_64.rpm bzip3-1.3.0-bp154.2.1.aarch64.rpm bzip3-devel-1.3.0-bp154.2.1.aarch64.rpm libbzip3-0-1.3.0-bp154.2.1.aarch64.rpm libbzip3-0-64bit-1.3.0-bp154.2.1.aarch64_ilp32.rpm bzip3-1.3.0-bp154.2.1.ppc64le.rpm bzip3-devel-1.3.0-bp154.2.1.ppc64le.rpm libbzip3-0-1.3.0-bp154.2.1.ppc64le.rpm bzip3-1.3.0-bp154.2.1.s390x.rpm bzip3-devel-1.3.0-bp154.2.1.s390x.rpm libbzip3-0-1.3.0-bp154.2.1.s390x.rpm openSUSE-2023-107 important openSUSE Backports SLE-15-SP4 Update orafce was updated to relax the strict postgresql version requirement. postgresql12-orafce-4.1.1+git0.519b5b5-bp154.6.1.src.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.6.1.x86_64.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.6.1.src.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.6.1.x86_64.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.6.1.src.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.6.1.x86_64.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.6.1.src.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.6.1.x86_64.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.6.1.i586.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.6.1.i586.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.6.1.i586.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.6.1.i586.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.6.1.aarch64.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.6.1.aarch64.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.6.1.aarch64.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.6.1.aarch64.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.6.1.ppc64le.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.6.1.ppc64le.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.6.1.ppc64le.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.6.1.ppc64le.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.6.1.s390x.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.6.1.s390x.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.6.1.s390x.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.6.1.s390x.rpm openSUSE-2023-111 moderate openSUSE Backports SLE-15-SP4 Update This update for qt6-svg fixes the following issues: - CVE-2023-32573: Fixed missing initialization of QtSvg QSvgFont m_unitsPerEm (boo#1211298) libQt6Svg6-6.2.2-bp154.2.3.1.x86_64.rpm libQt6SvgWidgets6-6.2.2-bp154.2.3.1.x86_64.rpm qt6-svg-6.2.2-bp154.2.3.1.src.rpm qt6-svg-devel-6.2.2-bp154.2.3.1.x86_64.rpm qt6-svg-examples-6.2.2-bp154.2.3.1.x86_64.rpm qt6-svg-private-devel-6.2.2-bp154.2.3.1.x86_64.rpm qt6-svg-docs-6.2.2-bp154.2.3.1.src.rpm qt6-svg-docs-html-6.2.2-bp154.2.3.1.x86_64.rpm qt6-svg-docs-qch-6.2.2-bp154.2.3.1.x86_64.rpm libQt6Svg6-6.2.2-bp154.2.3.1.i586.rpm libQt6SvgWidgets6-6.2.2-bp154.2.3.1.i586.rpm qt6-svg-devel-6.2.2-bp154.2.3.1.i586.rpm qt6-svg-examples-6.2.2-bp154.2.3.1.i586.rpm qt6-svg-private-devel-6.2.2-bp154.2.3.1.i586.rpm qt6-svg-docs-html-6.2.2-bp154.2.3.1.i586.rpm qt6-svg-docs-qch-6.2.2-bp154.2.3.1.i586.rpm libQt6Svg6-6.2.2-bp154.2.3.1.aarch64.rpm libQt6SvgWidgets6-6.2.2-bp154.2.3.1.aarch64.rpm qt6-svg-devel-6.2.2-bp154.2.3.1.aarch64.rpm qt6-svg-examples-6.2.2-bp154.2.3.1.aarch64.rpm qt6-svg-private-devel-6.2.2-bp154.2.3.1.aarch64.rpm qt6-svg-docs-html-6.2.2-bp154.2.3.1.aarch64.rpm qt6-svg-docs-qch-6.2.2-bp154.2.3.1.aarch64.rpm libQt6Svg6-6.2.2-bp154.2.3.1.ppc64le.rpm libQt6SvgWidgets6-6.2.2-bp154.2.3.1.ppc64le.rpm qt6-svg-devel-6.2.2-bp154.2.3.1.ppc64le.rpm qt6-svg-examples-6.2.2-bp154.2.3.1.ppc64le.rpm qt6-svg-private-devel-6.2.2-bp154.2.3.1.ppc64le.rpm qt6-svg-docs-html-6.2.2-bp154.2.3.1.ppc64le.rpm qt6-svg-docs-qch-6.2.2-bp154.2.3.1.ppc64le.rpm libQt6Svg6-6.2.2-bp154.2.3.1.s390x.rpm libQt6SvgWidgets6-6.2.2-bp154.2.3.1.s390x.rpm qt6-svg-devel-6.2.2-bp154.2.3.1.s390x.rpm qt6-svg-examples-6.2.2-bp154.2.3.1.s390x.rpm qt6-svg-private-devel-6.2.2-bp154.2.3.1.s390x.rpm qt6-svg-docs-html-6.2.2-bp154.2.3.1.s390x.rpm qt6-svg-docs-qch-6.2.2-bp154.2.3.1.s390x.rpm openSUSE-2023-141 moderate openSUSE Backports SLE-15-SP4 Update This update for glslang, gzdoom, shaderc fixes the following issues: Changes in glslang: - Update to release 12.1.0: * Reject non-float inputs/outputs for version less than 120 * Fix invalid BufferBlock decoration for SPIR-V 1.3 and above * Add HLSL relaxed-precision float/int matrix expansions * Block decorate Vulkan structs with RuntimeArrays * Support InterlockedAdd on float types - Split part of glslang-devel to glslang-nonstd-devel. - Update to release 12 * Add support for GL_NV_shader_invocation_reorder. * Support extension ARB_bindless_texture. - Update to release 11.13 * Fix incorrect parse message of mesh shader * Test for spv1.6 + memory model HelperInvocation * Add EliminateDeadOutputStores to API. * GL_ARM_shader_core_builtins support - Update to release 11.12 * Add support for GL_EXT_mesh_shader * Add support for NonSemantic.Shader.DebugInfo.100 * Make OpEmitMeshTasksEXT a terminal instruction * Make gl_SubGroupARB a flat in int in Vulkan * Add support for GL_EXT_opacity_micromap * Add preamble support to C interface - Adjust the cmake support files to use the shared libraries added from the latest changes - Rework static library removal & building procedure to identify new static libs. (libGenericCodeGen.so and libMachineIndependent.so are now added) - Update to release 11.11.0 * CInterface: Add OpSource support. * Add SPV_AMD_shader_early_and_late_fragment_tests * Avoid double-free in functions cloned for vulkan relaxed mode - Update to release 11.10.0 * Generate OpLine before OpFunction * Add support for VK_EXT_fragment_shader_barycentric * Add whitelist filtering for debug comments in SPIRV-Remap * Add support for GL_EXT_ray_cull_mask - Update to release 11.9.0 * Add GLSL version override functionality * Add eliminate-dead-input-components to -Os * Add enhanced-msgs option - Update to release 11.8.0 * Add support for SPIR-V 1.6 * Add support for Vulkan 1.3 * Add --hlsl-dx-position-w option - Update to release 11.7.1 * Accept gl_ViewportMask in version 430 and later * Remove support for double trig, pow, exp and log * Add the GL_EXT_shader_integer_mix Preamble for glsl * Add support for targeting Vulkan 1.2 in the C API - Update to release 11.6.0 * Atomic memory function only for shader storage block member or shared variable * Add support for gl_MaxVaryingVectors for ogl * Fix loading bool arrays from interface blocks * Generate separate stores for partially swizzled memory stores * Allow layout(std430) uniform with GL_EXT_scalar_block_layout * Support for pragma STDGL invariant(all) * Support for GL_NV_ray_tracing_motion_blur - Update to release 11.5.0 * Implement GLSL_EXT_shader_atomic_float2 * Implement GL_EXT_spirv_intrinsics * Fixed SPIR-V remapper not remapping OpExtInst instruction set IDs * Only declare compatibility gl_ variables in compatibility mode * Add support for float spec const vector initialization * Implement GL_EXT_subgroup_uniform_control_flow. * Fix arrays dimensioned with spec constant-sized gl_WorkGroupSize * Add support for 64bit integer scalar and vector types to bitCount() builtin - Update to release 11.4.0 * Added --depfile and --auto-sampled-textures options * Now supports InterpolateAt-based functions * Supports cross-stage automatic IO mapping * Supports GL_EXT_vulkan_glsl_relaxed (-R option) - Update to release 11.2.0 * Add support for GL_EXT_shared_memory_block * Implement GL_EXT_null_initializer - Update to release 11.1.0 * Add new SpirvToolsDisassemble API interface. * SPV: Add NonUniform decorations for stores, for constructors and for OpImages created during lowering. * SPIRV: Add disassembly support for multiple literal strings. * Add support for GL_EXT_fragment_shading_rate, GL_EXT_shader_image_int64. * Updates for final Vulkan ray tracing extensions. * Add ray query capability if acceleration structure or ray query types declared. - Update to release 10.15.3847 (6c7beeafa) * Add support for EXT_ray_flags_primitive_culling, GL_ARB_shader_bit_encoding, GL_ARB_shader_image_size, GL_ARB_shader_storage_buffer_object, GL_ARB_shading_language_packing, GL_ARB_texture_query_lod, GL_ARB_vertex_attrib_64bit, GL_EXT_shader_implicit_conversions, GL_EXT_shader_integer_mix, GL_EXT_blend_func_extended * Add support for primitive culling layout qualifier * GlslangToSpv: offer a -g0 command line argument similar to gcc * libglslang is now built with -fvisibility and exports - Update to snapshot 8.13.3727+git4 (9c3204a1) * Add constant expression with mod. * Add Tess machine dependent built-in variables initialization for GLES 3.2. * Added original glslang_c_interface implementation. * SPV_AMD_shader_image_load_store_lod is now validated by spirv-tools. * GL_EXT_debug_printf implementation. * SPV headers: Bump up to the latest header. * Add support for GLSL_EXT_ray_tracing. - Update to snapshot 8.13.3559+git20 (b0ada803) * SPIR-V: Aggressively prune unreachable merge, continue target. * INTEL_shader_integer_functions2: Add basic extension tracking, add compiler front-end support, add SPIR-V generation. * Add support for ARB_sample_shading, ARB_texture_multisample, ARB_uniform_buffer_object, ARB_gpu_shader_fp64. * SPV/Vulkan: Add support for Vulkan 1.2, which defaults to SPIR-V 1.5. - Update to release 7.13.3496 * GL_NV_integer_cooperative_matrix support * Add support for GL_ARB_explicit_uniform_location * SPV 1.5: Switch to the 1.5 header, for SPIR-V 1.5. * Add GL_EXT_shader_subgroup_extended_types support * SPV_KHR_physical_storage_buffer/SPV: Add GL_EXT_buffer_reference_uvec2 * Emit SPV_EXT_physical_storage_buffer, not the KHR form. * Promote SPV_EXT_physical_storage_buffer to KHR when required. - Drop unused static libraries, functions of libOGLCompilerDLL and libOSDependent are actually present in libglslang already. [boo#1153950] - Bump SOVER as needed. - Update to new upstream release 7.12.3352 * Add interface symbol and uniform symbol location auto mapping for OpenGL shader. * Handle SPIR-V type mismatch when constructing a composite. * Implement GL_EXT_demote_to_helper_invocation. * Avoid generating 8/16-bit constants when 8/16-bit arithmetic extensions are not enabled. * Add support for SPV_KHR_shader_clock. - Update to new snapshot 7.11.3276.git10 (4162de4) * Add Float16/Int8/Int16 capabilities for private variables and function parameters. * Use spvValidatorOptionsSetBeforeHlslLegalization for pre-legalized HLSL. * Add support for GL_NV_shader_sm_builtins. * Add gl_SemanticsVolatile to GL_KHR_memory_scope_semantics, and make volatile-qualified atomics generate MemorySemanticsVolatile when using the Vulkan memory model. * Add missing GL_ARB_shader_ballot builtins to Geometry and Tessellation shaders. * SPV: Add a switch for favoring non-NaN operands in min, max, and clamp. - Update to new snapshot 7.11.3214.git16 (2f4a8dfd) * GLSL: Fix tessellation control shader bounding box support. * GLSL: Add error check for an argument dropping the "restrict" qualifier. * Add support for GL_EXT_buffer_reference2. * SPV: Move to the SPIR-V 1.4 header. * Support GL_ARB_fragment_shader_interlock. - Update to new upstream snapshot 7.11.3113.git55 (f925eefb) to be in line with spirv-headers. * Implement GL_NV_cooperative_matrix * Fixup leak of TString * Add option to reflect all block members, inactive or active. * Add option to reflect buffer blocks & variables separately to uniforms. * Reflect array stride, top-level array stride, and block member count. * Reflect pipeline outputs as well as inputs, optionally from other stages. * Add an option to report array variables with trailing [0] suffix. * Include array index in reflected uniform names more consistently. * Add options to control how reflection information is built * Move TObjectReflection into public interface to clean up reflection. - Update to new upstream release 7.11.3113 * Implement GL_EXT_scalar_block_layout * GLSL: Increase supported sizes of XBF strides and offsets * Update to newer SPIRV-Tools, including VK_EXT_scalar_block_layout * Implement GL_EXT_fragment_invocation_density * SPV: Generate OpArrayLength with no signedness * SPV: For GLSL only, bitcast OpArrayLength result back to int * Rename GL_KHX_shader_explicit_arithmetic_types to GL_EXT_shader_explicit_arithmetic_types * Add support for GL_EXT_YUV_target - Update to new upstream release 7.10.2984 * Updated type conversion rules for HLSL frontend * HLSL: implemented c register handling * HLSL: fix invalid spir-v vector * scalar for float1 - Update to new upstream release 7.9.2933 * Add a SPIRV-Tools validator * GLSL: Remove use of "__" in the implementation of keywords having "__". * Add GL_EXT_shader_atomic_int64 * Add ES 320 support and additional error checks for SPV_NV_mesh_shader. - Update to new upstream release 7.8.2853 * Link/SPV: Correct symbol IDs on merging ASTs to a single coherent space. * Add missing OpExtension SPV_EXT_descriptor_indexing for dynamic indexing capabilities. * GLSL/Vulkan: Warn about arrays of arrays of resources that need bindings. * GLSL/SPV: Implement SPV_EXT_descriptor_indexing and GL_EXT_nonuniform_qualifier. * Implement GL_NV_shader_subgroup_partitioned. * Add support for GL_NV_shader_noperspective_interpolation. - Update to 6.2.2604 * SPV: Implement Vulkan 1.1 features and extensions. - Update to new snapshot 3.0.g1817 * HLSL: Include built-in processing for vertex input and fragment output flattening. * HLSL: Flatten structs for all non-arrayed I/O interfaces. * SPV: Implement extension SPV_EXT_shader_stencil_export * HLSL: handle clip and cull distance input builtin type conversion * SPV: 1st pass implementation of SPV_EXT_shader_viewport_index_layer. * HLSL: add geometry stage support for clip/cull distance * Add support for GL_OES_EGL_image_external_essl3 * Implement the extension GL_AMD_shader_fragment_mask * Add implementation of SPV_EXT_fragment_fully_covered * GLSL: Implement GL_EXT_control_flow_attributes. - Update to new snapshot 3.0.g1516 * SPV: Handle nested opaque types as function parameters. * SPV: Implement new extensions GL_KHX_device_group and GL_KHX_multiview. * HLSL: Fix #747: accept 'struct' in front of previously user-defined type name. * Rename KHX to EXT to match the released specs. * PP: Recognize the '::' token, and translate appropriately to GLSL/HLSL token. * Added 'GL_core_profile' and 'GL_compatibility_profile' macro definition to preamble. * HLSL: Add scoping operator, accept static member functions, and support calling them. * HLSL: require tessellation factors to be fixed size arrays * HLSL: Add namespace grammar and some basic semantics. * Implement the SPV_KHR_16bit_storage, GL_AMD_texture_gather_bias_lod, GL_AMD_gpu_shader_int16, GL_EXT_shadow_samplers, GL_ARB_shader_stencil_export, GL_OVR_multiview, GL_OVR_multiview2 SPV_KHR_post_depth_coverage extensions. * Fix NULL pointer dereference in TParseContext::builtInOpCheck. * GLSL 4.6: Implement atomic counter ops and SPV_KHR_shader_atomic_counter_ops. * GLSL 4.6: Implement draw parameters. * GLSL 4.6: Implement shader group vote. - Update to 3.0.g1115 * Added --vn option to generate a C header file containing a variable assigned to the hex representation of the shader. * HLSL: Type sanitization: create non-IO types for var decl and fn param/ret. - Update to 3.0.g1077 * Support SPV_NV_viewport_array2 and SPV_NV_stereo_view_rendering * Implement SPV_KHR_subgroup_vote * Add EOpD3DCOLORtoUBYTE4 decomposition * Add support for SPV_NV_geometry_shader_passthrough and SPV_NV_sample_mask_override_coverage * Add UAV (image) binding offset and HLSL register support Update to 3.0g900 * Added -x option to save SPIR-V as 32-bit hexadecimal numbers to a text file. * Add decompositions for some HLSL intrinsics. * HLSL: Support semantics in function parameter declarations. * HLSL: Map parameter qualifiers from generic to function-specific and entry-point specific. * HLSL: Add texture Load method & decomposition * HLSL: Add SampleLevel method * HLSL: Add gather, improve proto generator machine for upcoming 2DMS/Shadow * HLSL: add 2DMS texture formats, and matching Load / GetDimensions support * HLSL: Add shape conversions for scalar -> vector assigments. * HLSL: Add string basic type and recognize string declaration grammar. * HLSL: allow multi-dimensional arrays Update to 2.3g537 * HLSL: Implement proper nesting of symbol-table scopes and identifier searching. * HLSL: Add all int/float/bool/uint matrix types, void for functions, and a few others. * Types: Add an isOpaque() helper * remapper: do not eliminate interface variables in dce by default * Initial implementation of direct-mapped subset of HLSL intrinsics with type subset. * SPV: Don't shadow sampler parameters when performing function calls * Check for linking multiple ES shaders to the same stage * Vulkan: Finish semantics for what creates spec-const-semantics. * HLSL: Add more matrix types to the grammar. * Full stack: distinguish between a scalar and a vector of size 1. * SPV: Don't emit memory barrier for ESSL barrier(), but still do for GLSL barrier(). * Add support for querying vertex attributes in reflection API * SPV: Don't add clip/cull distance capabilities unless used. * Tests: Add a set of gtest-file-based HLSL tests. * SPV: Handle matrix's OpFConvert vector by vector. * HLSL: Add function call syntax and AST building. * SPV: Add capability ImageGatherExtended if necessary. * SPIR-V do not decorate: members of plain structs with location; non-top level members with interp. Update to 2.3.g401 * Fix compile error involving std::isinf Changes in shaderc: - Update to release 2023.2 * Fix C++20 compatibility: explicitly construct string_piece when comparing to `char *` - update to 2022.4: * Add Cmake BUNDLE DESTINATION option for target install - Update to release 2022.3 * Implement default builtin constants needed for GL_EXT_mesh_shader. - Update to release 2022.2 * Add support for 16b-bit types in HLSL - Remove old python(2)-xml build dependency - build requires python3 - Update to release 2022.1 * Validator handles Nontemporal image operand * Optimizer handles RayQueryKHR type - Add baselibs.conf, containing libshaderc_shared1 (the shared lib). - Update to release 2022.0 * Update to Glslang 11.8.0 * Support Vulkan 1.3 * Support targeting SPIR-V 1.6, which is the default for Vulkan 1.3 - Update to release 2021.3 * No user-visible changes - Update to release 2021.1 * Add -fauto-combined-image-sampler option to glslc * Disable deprecated --target-env=opengl_compat with an explicit error message - Upddate to release 2021.0 * No user-visible changes - Update to release 2020.5 * Support newer glslang - update to 2020.4: - Removed svpc - Fixed issues with embedders getting duplicate symbols - Converted C-style casts to static_cast - Rolled ahead to fix/pickup Vulkan Raytracing support - Update to release 2020.3: * spvc: added support for Dawn using deprecated Options constructor * spvc: added support for the additional fixed sample mask in MSL - Updated to release 2020.2: * Support both posix and non-posix MinGW toolchains. * Support optionally building Tint tooling for WGSL. * Add -h option to glslc, spvc; same as --help. * Update to Glslang generator 9. * Add interface to support 16-bit types in HLSL * Add glslc hidden experimental option -mfmt=wgsl; requires Tint. * Add minimum buffer size for Dawn reflection. - Changes from release 2020.1: * Added warning signs about unsupported downloads. * Removed Singleton pattern around access to glslang. * Added concept of comparison sampler to API. * Added support for options.hlsl.nonwritable_uav_texture_as_srv. * Support forcing storage buffers to be always declared as UAV. - Update to release 2020.0 * Added support for new Glslang profile enum, EProfileCount. * Add documentation for Vulkan 1.2 and SPIR-V 1.5. * Added support for generating WebGPU SPIR-V to libshaderc. - Update to release 2019.1 * Vulkan 1.2 support * Add spvc parser support for a number of ops - Update to new upstream release 2019.0 * Add optional spvc, libshaderc_spvc as wrapper around SPIRV-Cross. * Support NV extensions for shader stages. * spvc: Added option to specify source environment. Spvc will transform from source to target environment if they are different. This only works for WebGPU0 and Vulkan 1.1. - Update to new upstream release 2018.0 * Support -fhlsl_functionality1 (also -fhlsl-functionality1) * Support NVIDIA Turing extensions. Requires updated Glslang and SPIRV-Tools. * Use SPIR-V optimization and HLSL legalization recipes from SPIRV-Tools. * Pass target environment into SPIRV-Tools code, e.g. from --target-env vulkan1.1 . - Update to version 20180329.g2a0f3a3: * Use standard SPIRV-Tools transformation recipes * Locate clang for Linux buildbots. (#446) * Support setting target environment version, e.g. Vulkan 1.1 * Re-enable the Windows continuous Debug builds. (#444) * Add build result badges to README. (#439) * Glslang generator version 6 * Glslang generator version 5 * Update glslc README for -fauto-map-locations * Add glslc tests for -fauto-map-locations * Fix setting of debug DLL name for AppVeyor * Adding kokoro build configurations. (#429) * AppVeyor packaging: debug DLL name no longer has extra "d" * Start v2018.0-dev * Finalize v2017.2 * copyright check: Skip auto-generated CMakeFiles * Update CHANGES for -fauto-map-locations * Glslang now requires bindings on resources * Add -fauto-map-locations option - Update to version 20180207.g563bc6e: * Add a virtual destructor, otherwise Clang 6.0complains about delete being called on an abstract class. * Skip Debug builds for VS 2013 and VS 2015 * Glslang updated its generator version number to 4 * Android.mk: add glslang/MachineIndependent/attribute.cpp * Make tests resilient to better SPIR-V optimizations * Travis CI: install pip and set clone depth to 1 * Adapt to Glslang codegen version update - Update to version 20171030.g98ab88b: * glslc tests: Relax version word check * Avoid -fPIC for MinGW builds * Allow override of SPVTOOLS_LOCAL_PATH * Move spirv-tools build from third_party/Android.mk * Update CHANGES * Adapt to Glslang generator version number change * Travis CI: use make to build * Add HLSL legalization passes to compiler.cc * Add SPIRV-Tools optimizer files for linker * Added more opt passes to PassId enum - Re-add explicit version dependencies Changes in gzdoom: - Update gzdoom-vulkan.patch for glslang 12 - Update to release 4.10.0 * Map<K,V> and MapIterator<K,V> for ZScript * Quaternion support for model rotations * Improved IQM support - Update description for the removal of SoftPoly - Update to release 4.9.0 * IQM bone model support * Textured particles * The SoftPoly renderer was removed - Update to release 4.8.2 * add a few maps to the rebuildnodes compatibility block - Update to release 4.8.1 * Bugfix for software mode mirrors not working * Feature: Add +ONLYVISIBLEINMIRRORS and +INVISIBLEINMIRRORS actor flags. The former makes the actor only visible in reflections, while the latter makes the actor not cast reflections in mirrors. - Update to release 4.8.0 * Added Raze-style HUD scaling. Not exposed in the menu yet, Set hud_oldscale to 0 and use shift with the screen resize keys to scale the status bar. * Handle the start/endoom screens with the ingame renderer. They are now present on all platforms and use the full screen size of the game. * Many MBF21 fixes. * Added the cutscene system from Raze. glslang-12.1.0-bp154.2.1.src.rpm glslang-devel-12.1.0-bp154.2.1.x86_64.rpm glslang-nonstd-devel-12.1.0-bp154.2.1.noarch.rpm libglslang12-12.1.0-bp154.2.1.x86_64.rpm gzdoom-4.10.0-bp154.2.3.1.src.rpm gzdoom-4.10.0-bp154.2.3.1.x86_64.rpm gzdoom-debuginfo-4.10.0-bp154.2.3.1.x86_64.rpm gzdoom-debugsource-4.10.0-bp154.2.3.1.x86_64.rpm glslang-devel-12.1.0-bp154.2.1.i586.rpm libglslang12-12.1.0-bp154.2.1.i586.rpm libglslang12-32bit-12.1.0-bp154.2.1.x86_64.rpm glslang-devel-12.1.0-bp154.2.1.aarch64.rpm libglslang12-12.1.0-bp154.2.1.aarch64.rpm libglslang12-64bit-12.1.0-bp154.2.1.aarch64_ilp32.rpm gzdoom-4.10.0-bp154.2.3.1.aarch64.rpm gzdoom-debuginfo-4.10.0-bp154.2.3.1.aarch64.rpm gzdoom-debugsource-4.10.0-bp154.2.3.1.aarch64.rpm glslang-devel-12.1.0-bp154.2.1.ppc64le.rpm libglslang12-12.1.0-bp154.2.1.ppc64le.rpm glslang-devel-12.1.0-bp154.2.1.s390x.rpm libglslang12-12.1.0-bp154.2.1.s390x.rpm gzdoom-4.10.0-bp154.2.3.1.s390x.rpm gzdoom-debuginfo-4.10.0-bp154.2.3.1.s390x.rpm gzdoom-debugsource-4.10.0-bp154.2.3.1.s390x.rpm openSUSE-2023-108 moderate openSUSE Backports SLE-15-SP4 Update This update for dcmtk fixes the following issues: - CVE-2022-43272: Fixed memory leak via the T_ASC_Association object (boo#1206070) - Update to 3.6.7 (boo#1208639, boo#1208638, boo#1208637, CVE-2022-2121, CVE-2022-2120, CVE-2022-2119) - CVE-2022-2121: Fixed possible DoS via NULL pointer dereference - CVE-2022-2120: Fixed relative path traversal vulnerability - CVE-2022-2119: Fixed path traversal vulnerability See DOCS/CHANGES.367 for the full list of changes * Updated code definitions for DICOM 2022b * Fixed possible NULL pointer dereference dcmtk-3.6.7-bp154.2.3.1.src.rpm dcmtk-3.6.7-bp154.2.3.1.x86_64.rpm dcmtk-devel-3.6.7-bp154.2.3.1.x86_64.rpm libdcmtk17-3.6.7-bp154.2.3.1.x86_64.rpm dcmtk-3.6.7-bp154.2.3.1.i586.rpm dcmtk-devel-3.6.7-bp154.2.3.1.i586.rpm libdcmtk17-3.6.7-bp154.2.3.1.i586.rpm dcmtk-3.6.7-bp154.2.3.1.aarch64.rpm dcmtk-devel-3.6.7-bp154.2.3.1.aarch64.rpm libdcmtk17-3.6.7-bp154.2.3.1.aarch64.rpm dcmtk-3.6.7-bp154.2.3.1.ppc64le.rpm dcmtk-devel-3.6.7-bp154.2.3.1.ppc64le.rpm libdcmtk17-3.6.7-bp154.2.3.1.ppc64le.rpm dcmtk-3.6.7-bp154.2.3.1.s390x.rpm dcmtk-devel-3.6.7-bp154.2.3.1.s390x.rpm libdcmtk17-3.6.7-bp154.2.3.1.s390x.rpm openSUSE-2023-136 moderate openSUSE Backports SLE-15-SP4 Update This update for git-subrepo fixes the following issues: update to 0.4.5: * Add --file option * Fix git subrepo status command for subrepos that share a common prefix. * Don't allow -b and --all * Fix documentation links * fix tests to support use of a default branch git config that is not "master" * pass --force to git add so a user's global .gitignore does not affect tests * Fix .rc and enable-completion.sh for zsh before 5.1 * Better format for options * The fpath variable is an array; expand correctly Update to 0.4.3 * Remove fix-zsh-completion.patch (not needed anymore) * Update fix-shebangs.patch * Covert to GitHub Actions for testing * Add docker support to test multiple git/bash versions together * Require Bash 4.0+ * Use shellcheck as linter and address issues discovered * Discovered bug in git where @ is not a valid workspace name * Add --force command to subrepo pull * Now works with paths that contain spaces * Numerous documentation fixes * When two branches pointed to the same commit, we would sometimes pick the wrong branch. * ZSH completion fixes * Allow tests to run outside a git repo * Would not work if a different date format was set in git config * Address delay in filter-branch on newer versions of git * Display the git merge message on merge failure * Allow FISH integration on MacOS. * Add manpage support for FISH shell - Remove Recommends bashompletion and fix Supplements * Initial package 0.4.1 version: 0.4.1 - Fix Bash version error messages and add to .rc - Nicer YAML formatting in .travis.yml - Wrap a long line - Update the docs - Force `make update` to always update docs - Don't use XXX in perl stuff - Add testing on MacOS - Remove conflicting -C from install -d commands. - Update version requirement documentation - Correct error message in branch - Use topo-order in subrepo branch - Make “git subrepo clean -f ...” delete refs correctly - Fix #410 Push empty repositories with recent git versions - Make subrepo work when run in a worktree - Simplify finding subrepos - Ask git to find the .gitrepo files - Doc: fix sentence repetition - Fix typos - Fixed typo - Travis CI not checking out a branch. version: 0.4.0 - Fix #325 Do not squash main repo commits - Improve error message for worktree handling - Make version checking portable. #307 - #307, improve version check - #307, update version requirement - Fix part #308, Add stderr output if commands fail - Fix #306: Add check to prevent following commits with no .gitrepo - Remove dry-run flag as it's not implemented. Make sure branch --force delete worktree - Fix #296, Replace --first-parent with --ancestry-path - Fix #291, specify Trusty host to get new 2.x git - Fix #258, add --no-tags to git fetch - Test that no remotes are created during clone - #257 Remove remote creation to avoid problems with fetch --all - (origin/issue/150_to_0.4.0) Fix remove-worktree, remove unused parameters - Regenerate completion files - filter-branch operation should not be done on HEAD - Cleanup push and add hint to push directly after pull - Simplify cleanup and add worktree to status - Add --method option to init/clone, add a 'config' command - Updated unit tests to support the new logic - Use 'git worktree' for merge/rebase - Update docs to reflect how things should work - Make it possible to specify commit messages - Redesign, trash the tree hash approach and use merges instead - Add release branches to travis-ci - Add --method option to init/clone, add a 'config' command - Detect multiple pulls, use -u flag to decide - Don't reuse previous commit message when using --all - Update the docs for pull and push - Update error messages when failing merge/rebase - Fix env var bug in test/push.t - Do not overwrite author information version: 0.3.1 changes: - Updated release for homebrew - Fix #192 version: 0.3.0 changes: - Fix issue #98 and host of others (89, 91, 95, 96) - Adds support for the merge-base command - Adds stability to many commands - Command completion updates - Rename `init` to `.rc` - @grimmySwe++ @dzzh++ @jrosdahl++ @perlpunk++ version: 0.2.3 changes: - Fix issues #75 and #76 version: 0.2.2 changes: - Added the `init` subcommand - Applied doc fixes version: 0.2.1 changes: - Allows subrepo clone to clone to an empty branch; fixes #26. - Refs in status - Empty parent set to 'none' in .gitrepo file. - Bug fixes version: 0.2.0 changes: - Massive overhaul - .gitrepo files remain the same so backwards compatible - Introduce the branch and commit subcommands - The checkout subcommand goes away - Operations work much smoother like normal Git flow - Much more testing - Better doc version: 0.1.0 changes: - First version git-subrepo-0.4.5-bp154.2.1.noarch.rpm git-subrepo-0.4.5-bp154.2.1.src.rpm git-subrepo-bash-completion-0.4.5-bp154.2.1.noarch.rpm git-subrepo-zsh-completion-0.4.5-bp154.2.1.noarch.rpm openSUSE-2023-138 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Code-TidyAll fixes the following issues: perl-Code-TidyAll was updated to 0.83: see /usr/share/doc/packages/perl-Code-TidyAll/Changes - Fixed test failures on msys. Implemented by Paulo Custodio. GH #116. - When running under GitHub Actions in --check-only mode, linting failures will now emit GitHub annotations (https://docs.github.com/en/actions/using-workflows/workflow-commands-for-github-actions#example-creating-an-annotation-for-an-error). Implemented by Pavel Dostál. GH #120. - updated to 0.82 - Fixed git tests to ignore local Git configuration files, which may cause the tests to fail. Implemented by Andreas Vögele. GH #109. - The git tests nor run with LC_ALL set to C. Implemented by Andreas Vögele. GH #109. - updated to 0.81 - The PerlTidy plugin will now always append the `--encode-output-strings` flag when using `Perl::Tidy` 20220101 or newer. This eliminates issues with character encoded content reported in GH #84, reported by Greg Oschwald. Thanks to Steven Hancock for letting me know that this was possible. perl-Code-TidyAll-0.83-bp154.2.3.1.noarch.rpm perl-Code-TidyAll-0.83-bp154.2.3.1.src.rpm openSUSE-2023-110 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Compress-Raw-Lzma fixes the following issues: perl-Compress-Raw-Lzma was updated to 2.204: see /usr/share/doc/packages/perl-Compress-Raw-Lzma/Changes * Use GIMME_V instead of GIMME perl-Compress-Raw-Lzma-2.204-bp154.2.3.1.src.rpm perl-Compress-Raw-Lzma-2.204-bp154.2.3.1.x86_64.rpm perl-Compress-Raw-Lzma-2.204-bp154.2.3.1.i586.rpm perl-Compress-Raw-Lzma-2.204-bp154.2.3.1.aarch64.rpm perl-Compress-Raw-Lzma-2.204-bp154.2.3.1.ppc64le.rpm perl-Compress-Raw-Lzma-2.204-bp154.2.3.1.s390x.rpm openSUSE-2023-139 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Cpanel-JSON-XS fixes the following issues: perl-Cpanel-JSON-XS was updated to 4.36: - 4.36 2023-03-02 (rurban) - remove the SAVESTACK_POS noop. Merged from JSON-XS-3.02, removed there with 4.0. requested to remove with L<https://github.com/Perl/perl5/pull/20858> - 4.35 2023-02-22 (rurban) - fix utf8 object stringification (jixam PR #212) - 4.34 2023-02-21 (rurban) - fix c89 compilation regression, for loop init on centos. GH #211 - 4.33 2023-02-21 (rurban) - fix a security issue, decoding hash keys without ending : (GH #208) - check all bare hash keys for utf8 (GH #209) - improve overload warnings (Graham Knop PR #205) - fix a croak leak (GH #206) - 4.32 2022-08-13 (rurban) - fix new JSON::PP::Boolean overload redefinition warnings. GH #200 - 4.31 2022-08-10 (rurban) - adjust t/20_unknown.t pp bool tests for native bool when supported. GH #198 PR by Graham Knop. - 4.30 2022-06-14 (rurban) - Fix perl 5.37 utf8n_to_uvuni deprecation. GH #196 - 4.29 2022-05-27 (rurban) - Hack: Revert native bool (unblessed) overloads via JSON::PP 4.08. JSON::PP ignores unblessed bools for now. GH #194 - 4.28 2022-05-05 (rurban) - Validate the JSON struct which might get corrupted by wrong FREEZE/THAW methods, or other serializers, or corrupting our magic object. (GH #192) - Improve our DESTROY and END methods to avoid NULL dereferences. Fixes perl-compiler/#438 - 4.27 2021-10-13 (rurban) - Only add -Werror=declaration-after-statement for 5.035004 and earlier (PR #186 nwc) perl-Cpanel-JSON-XS-4.36-bp154.2.3.1.src.rpm perl-Cpanel-JSON-XS-4.36-bp154.2.3.1.x86_64.rpm perl-Cpanel-JSON-XS-4.36-bp154.2.3.1.i586.rpm perl-Cpanel-JSON-XS-4.36-bp154.2.3.1.aarch64.rpm perl-Cpanel-JSON-XS-4.36-bp154.2.3.1.ppc64le.rpm perl-Cpanel-JSON-XS-4.36-bp154.2.3.1.s390x.rpm openSUSE-2023-140 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Inline-Python fixes the following issues: perl-Inline-Python was updated to 0.57: - Try to detect more object types. - Further tighten the "is it a dict or object" check - Also skip List and Tuple when checking for python object - Unify "is this an object" checks into a macro to fix method calls on strange objects - Define PY_MAJOR_VERSION automatically - Search for and prefer python3 when building - Pass ASCII strings as <class 'str'> in Python 3 - Fix segfault on Python 3.10 by calling Py_Initialize() before calling PyBytes_FromString() - Process rss information not supported by Proc::ProcessTable on Windows perl-Inline-Python-0.57-bp154.3.3.1.src.rpm perl-Inline-Python-0.57-bp154.3.3.1.x86_64.rpm perl-Inline-Python-0.57-bp154.3.3.1.aarch64.rpm perl-Inline-Python-0.57-bp154.3.3.1.ppc64le.rpm perl-Inline-Python-0.57-bp154.3.3.1.s390x.rpm openSUSE-2023-142 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-MCE fixes the following issues: perl-MCE was updated to 1.884. - 1.884 Thu Jan 05 10:00:00 EST 2023 * Disabled non-blocking dequeue_nb and recv_nb tests on the Windows platform. Reason: Author cannot reproduce failing tests reported by CPAN Tester aero. Copied nb tests to xt folder: nonblocking_channel.t and nonblocking_queue.t - 1.883 Tue Jan 03 20:00:00 EST 2023 * Fix typo in MCE::Channel::SimpleFast documentation. * Improve 05_mce_child.t test. - 1.882 Fri Dec 02 21:00:00 EST 2022 * Added ABRT to the list of signals to trap in MCE::Signal. * Added a guard to MCE::Core::Worker for checking if exited prematurely. * Added init_relay and use_threads import options to MCE and MCE Models. * Separated input mutexes from the rest of IPC for lesser latency. * Auto-detect if init_relay is defined and set chunk_size to 1 in MCE::Grep, MCE::Map, and MCE::Stream. * Update the import function in MCE models, detecting if the caller is another MCE module, to not export model functions. * Update the error status if MCE::Child died due to receiving a signal. * Improved reaping in MCE::Child, before creating a new child. * Improved the timeout handler in MCE::Child and MCE::Mutex::Channel. * Fixed private functions _quit and _trap not setting the return value. - 1.881 Thu Oct 13 23:45:00 EST 2022 * Improved the private _parse_chunk_size function. For better utilization of CPU cores in MCE::Grep, MCE::Map, and MCE::Stream, processing small input sizes. Previously, chunk_size => 'auto' equals 2 minimally. Starting with MCE v1.881, 'auto' equals 1 minimally. - 1.880 Mon Oct 10 04:00:00 EST 2022 * Improved reliability on the Windows platform. * Improved MCE::Mutex::Channel::timedwait on the Windows platform. * Improved MCE::Mutex::Channel performance on UNIX platforms. * Resolved edge case in MCE::Child reaching deadlock. - 1.879 Tue May 24 05:00:00 EST 2022 * Replace http with https in documentation and meta files. * Call PDL::set_autopthread_targ(1); disables PDL auto-threading. - 1.878 Sun Feb 20 06:45:00 EST 2022 * Fix for the fast channel implementations. Thank you, twata for the test report. - 1.877 Sun Feb 20 02:30:00 EST 2022 * Improved suppressing the PDL CLONE warning. Piddles should not be naively copied into new threads. * Added fast channel implementations optimized for non-Unicode strings. The main difference is that these lack freeze-thaw serialization. MCE::Channel::MutexFast, MCE::Channel::SimpleFast, and MCE::Channel::ThreadsFast. perl-MCE-1.884-bp154.2.3.1.noarch.rpm perl-MCE-1.884-bp154.2.3.1.src.rpm openSUSE-2023-143 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Minion fixes the following issues: perl-Minion was updated to 10.25: - 10.25 2022-06-24 - Added workers field to stats methods in Minion and Minion::Backend::Pg. - 10.24 2022-04-28 - Improved Mojolicious::Plugin::Minion::Admin to log whenever a job gets removed. - 10.23 2022-01-20 - Improved repair performance in Minion::Backend::Pg. (andrii-suse, ilmari, kraih) perl-Minion-10.25-bp154.2.3.1.noarch.rpm perl-Minion-10.25-bp154.2.3.1.src.rpm openSUSE-2023-144 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Minion-Backend-SQLite fixes the following issues: perl-Minion-Backend-SQLite was updated to 5.0.7: - Add workers field to stats method (#21, Oliver Kurz) perl-Minion-Backend-SQLite-5.0.7-bp154.2.3.1.noarch.rpm perl-Minion-Backend-SQLite-5.0.7-bp154.2.3.1.src.rpm openSUSE-2023-145 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojo-IOLoop-ReadWriteProcess fixes the following issues: perl-Mojo-IOLoop-ReadWriteProcess was updated to 0.33: - Apply perltidy v20221112 - remove hard-coding of OABI syscall entry point - Fix typos detected by lintian (Debian) (#47) - tests: Check executable, before using it in tests - Fix sporadic 01_run.t failure -- "process is still running" - Fix all .perltidyrc violations - Run perltidy for pull requests - Add test for SIG_CHLD handler in spawned process - Update project URL references perl-Mojo-IOLoop-ReadWriteProcess-0.33-bp154.2.3.1.noarch.rpm perl-Mojo-IOLoop-ReadWriteProcess-0.33-bp154.2.3.1.src.rpm openSUSE-2023-151 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojo-Pg fixes the following issues: perl-Mojo-Pg was updated to 4.27: - Fixed a race condition in Mojo::Pg::Migrations that could result in two processes trying to create the same migration. perl-Mojo-Pg-4.27-bp154.2.3.1.noarch.rpm perl-Mojo-Pg-4.27-bp154.2.3.1.src.rpm openSUSE-2023-146 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojolicious fixes the following issues: perl-Mojolicious was updated to 9.31: see /usr/share/doc/packages/perl-Mojolicious/Changes - 9.31 2022-12-21 - This release contains fixes for security issues, everybody should upgrade! - Removed experimental status from links method in Mojo::Headers. - Added tls_options attribute to Mojo::UserAgent. (heikojansen) - Fixed multiple "<script>" parsing issues in Mojo::DOM. - Fixed a sporadic warning in Mojo::UserAgent. (s1037989) - Fixed UNIX domain socket support in Mojo::UserAgent debug feature. (s1037989) - Fixed a bug in Mojo::DOM where strings like "<.>" were considered valid tags. - 9.30 2022-11-22 - Added EXPERIMENTAL support for parsing and generating Link headers. - Added EXPERIMENTAL links method to Mojo::Headers. - Added EXPERIMENTAL header_params function to Mojo::Util. - 9.29 2022-11-11 - Fixed a bug where promises returning promises were not handled correctly. (batman) - 9.28 2022-09-12 - Fixed a bug where async/await use could result in unhandled promise warnings. (batman) - 9.27 2022-09-10 - Added support for static assets. - Added support for JSON and plain text exceptions. - Removed experimental status from capture method in Mojo::Log. - Added asset_dir attribute to Mojolicious::Static. - Added asset_path method to Mojolicious::Static. - Added url_for_asset method to Mojolicious::Controller. - Added reply->html_exception, reply->html_not_found, reply->json_exception, reply->json_not_found, reply->http_exception, reply->http_not_found, reply->txt_exception and reply->txt_not_found helpers to Mojolicious::Plugin::DefaultHelpers. - Added asset_tag helper to Mojolicious::Plugin::TagHelpers. - Fixed a bug where async rendering did not work properly in the before_dispatch hook. (andrii-suse) - 9.26 2022-05-20 - Added EXPERIMENTAL capture method to Mojo::Log. - 9.25 2022-04-25 - Improved Mojolicious::Renderer to throw an exception if rendering is attempted more than once. - 9.23 2021-03-25 - Enable gzip compression by default in Mojolicious::Renderer. perl-Mojolicious-9.31-bp154.2.3.1.noarch.rpm perl-Mojolicious-9.31-bp154.2.3.1.src.rpm openSUSE-2023-147 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Perl-Tidy fixes the following issues: perl-Perl-Tidy was updated to 20230309: see /usr/share/doc/packages/perl-Perl-Tidy/CHANGES.md - 2023 03 09 - No significant bugs have been found since the last release to CPAN. Several minor issues have been fixed, and some new parameters have been added, as follows: - Added parameter --one-line-block-exclusion-list=s, or -olbxl=s, where s is a list of block types which should not automatically be turned into one-line blocks. This implements the issue raised in PR #111. The list s may include any of the words 'sort map grep eval', or it may be '*' to indicate all of these. So for example to prevent multi-line 'eval' blocks from becoming one-line blocks, the command would be -olbxl='eval'. - For the -b (--backup-and-modify-in-place) option, the file timestamps are changing (git #113, rt#145999). First, if there are no formatting changes to an input file, it will keep its original modification time. Second, any backup file will keep its original modification time. This was previously true for --backup-method=move but not for the default --backup-method=copy. The purpose of these changes is to avoid triggering Makefile operations when there are no actual file changes. If this causes a problem please open an issue for discussion on github. - A change was made to the way line breaks are made at the '.' operator when the user sets -wba='.' to requests breaks after a '.' ( this setting is not recommended because it can be hard to read ). The goal of the change is to make switching from breaks before '.'s to breaks after '.'s just move the dots from the end of lines to the beginning of lines. For example: # default and recommended (--want-break-before='.'): $output_rules .= ( 'class' . $dir . '.stamp: $(' . $dir . '_JAVA)' . "\n" . "\t" . '$(CLASSPATH_ENV) $(JAVAC) -d $(JAVAROOT) ' . '$(JAVACFLAGS) $?' . "\n" . "\t" . 'echo timestamp > class' . $dir . '.stamp' . "\n" ); # perltidy --want-break-after='.' $output_rules .= ( 'class' . $dir . '.stamp: $(' . $dir . '_JAVA)' . "\n" . "\t" . '$(CLASSPATH_ENV) $(JAVAC) -d $(JAVAROOT) ' . '$(JAVACFLAGS) $?' . "\n" . "\t" . 'echo timestamp > class' . $dir . '.stamp' . "\n" ); For existing code formatted with -wba='.', this may cause some changes in the formatting of code with long concatenation chains. - Added option --use-feature=class, or -uf=class, for issue rt #145706. This adds keywords 'class', 'method', 'field', and 'ADJUST' in support of this feature which is being tested for future inclusion in Perl. An effort has been made to avoid conflicts with past uses of these words, especially 'method' and 'class'. The default setting is --use-feature=class. If this causes a conflict, this option can be turned off by entering -uf=' '. In other words, perltidy should work for both old and new uses of these keywords with the default settings, but this flag is available if a conflict arises. - Added option -bfvt=n, or --brace-follower-vertical-tightness=n, for part of issue git #110. For n=2, this option looks for lines which would otherwise be, by default, } or .. and joins them into a single line } or .. where the or can be one of a number of logical operators or if unless. The default is not to do this and can be indicated with n=1. - Added option -cpb, or --cuddled-paren-brace, for issue git #110. This option will cause perltidy to join two lines which otherwise would be, by default, ) { into a single line ) { - Some minor changes to existing formatted output may occur as a result of fixing minor formatting issues with edge cases. This is especially true for code which uses the -lp or -xlp styles. - Added option -dbs, or --dump-block-summary, to dump summary information about code blocks in a file to standard output. The basic command is: perltidy -dbs somefile.pl >blocks.csv Instead of formatting ``somefile.pl``, this dumps the following comma-separated items describing its blocks to the standard output: filename - the name of the file line - the line number of the opening brace of this block line_count - the number of lines between opening and closing braces code_lines - the number of lines excluding blanks, comments, and pod type - the block type (sub, for, foreach, ...) name - the block name if applicable (sub name, label, asub name) depth - the nesting depth of the opening block brace max_change - the change in depth to the most deeply nested code block block_count - the total number of code blocks nested in this block mccabe_count - the McCabe complexity measure of this code block This can be useful for code restructuring. The man page for perltidy has more information and describes controls for selecting block types. - This version was stress-tested for over 100 cpu hours with random input parameters. No failures to converge, internal fault checks, undefined variable references or other irregularities were seen. - This version runs a few percent faster than the previous release on large files due to optimizations made with the help of Devel::NYTProf. - 2022 11 12 - Fix rt #145095, undef warning in Perl before 5.12. Version 20221112 is identical to 2022111 except for this fix for older versions of Perl. - No significant bugs have been found since the last release to CPAN. Several minor issues have been fixed, and some new parameters have been added, as follows: - Fixed rare problem with irregular indentation involving --cuddled-else, usually also with the combination -xci and -lp. Reported in rt #144979. - Add option --weld-fat-comma (-wfc) for issue git #108. When -wfc is set, along with -wn, perltidy is allowed to weld an opening paren to an inner opening container when they are separated by a hash key and fat comma (=>). For example: # perltidy -wn elf->call_method( method_name_foo => { some_arg1 => $foo, some_other_arg3 => $bar->{'baz'}, } ); # perltidy -wn -wfc elf->call_method( method_name_foo => { some_arg1 => $foo, some_other_arg3 => $bar->{'baz'}, } ); This flag is off by default. - Fix issue git #106. This fixes some edge cases of formatting with the combination -xlp -pt=2, mainly for two-line lists with short function names. One indentation space is removed to improve alignment: # OLD: perltidy -xlp -pt=2 is($module->VERSION, $expected, "$main_module->VERSION matches $module->VERSION ($expected)"); # NEW: perltidy -xlp -pt=2 is($module->VERSION, $expected, "$main_module->VERSION matches $module->VERSION ($expected)"); - Fix for issue git #105, incorrect formatting with 5.36 experimental for_list feature. - Fix for issue git #103. For parameter -b, or --backup-and-modify-in-place, the default backup method has been changed to preserve the inode value of the file being formatted. If this causes a problem, the previous method is available and can be used by setting -backup-mode='move', or -bm='move'. The new default corresponds to -bm='copy'. The difference between the two methods is as follows. For the older method, -bm='move', the input file was moved to the backup, and a new file was created for the formatted output. This caused the inode to change. For the new default method, -bm='copy', the input is copied to the backup and then the input file is reopened and rewritten. This preserves the file inode. Tests have not produced any problems with this change, but before using the --backup-and-modify-in-place parameter please verify that it works correctly in your environment and operating system. The initial update for this had an error which was caught and fixed in git #109. - Fix undefined value message when perltidy -D is used (git #104) - Fixed an inconsistency in html colors near pointers when -html is used. Previously, a '->' at the end of a line got the 'punctuation color', black by default but a '->' before an identifier got the color of the following identifier. Now all pointers get the same color, which is black by default. Also, previously a word following a '->' was given the color of a bareword, black by default, but now it is given the color of an identifier. - Fixed incorrect indentation of any function named 'err'. This was due to some old code from when "use feature 'err'" was valid. # OLD: my ($curr) = current(); err (@_); # NEW: my ($curr) = current(); err(@_); - Added parameter --delete-repeated-commas (-drc) to delete repeated commas. This is off by default. For example, given: ignoreSpec( $file, "file",, \%spec, \%Rspec ); # perltidy -drc: ignoreSpec( $file, "file", \%spec, \%Rspec ); - Add continuation indentation to long C-style 'for' terms; i.e. # OLD for ( $j = $i - $shell ; $j >= 0 && ++$ncomp && $array->[$j] gt $array->[ $j + $shell ] ; $j -= $shell ) # NEW for ( $j = $i - $shell ; $j >= 0 && ++$ncomp && $array->[$j] gt $array->[ $j + $shell ] ; $j -= $shell ) This will change some existing formatting with very long 'for' terms. - The following new parameters are available for manipulating trailing commas of lists. They are described in the manual. --want-trailing-commas=s, -wtc=s --add-trailing-commas, -atc --delete-trailing-commas, -dtc --delete-weld-interfering-commas, -dwic - Files with errors due to missing, extra or misplaced parens, braces, or square brackets are now written back out verbatim, without any attempt at formatting. - This version runs 10 to 15 percent faster than the previous release on large files due to optimizations made with the help of Devel::NYTProf. - This version was stress-tested for over 200 cpu hours with random input parameters. No failures to converge, internal fault checks, undefined variable references or other irregularities were seen. - 2022 06 13 - No significant bugs have been found since the last release but users of programs which call the Perl::Tidy module should note the first item below, which changes a default setting. The main change to existing formatting is the second item below, which adds vertical alignment to 'use' statements. - The flag --encode-output-strings, or -eos, is now set 'on' by default. This has no effect on the use of the 'perltidy' binary script, but could change the behavior of some programs which use the Perl::Tidy module on files encoded in UTF-8. If any problems are noticed, an emergency fix can be made by reverting to the old default by setting -neos. For an explanation of why this change needs to be made see: https://github.com/perltidy/perltidy/issues/92 https://github.com/perltidy/perltidy/blob/master/docs/eos_flag.md - Added vertical alignment for qw quotes and empty parens in 'use' statements (see issue #git 93). This new alignment is 'on' by default and will change formatting as shown below. If this is not wanted it can be turned off with the parameter -vxl='q' (--valign-exclude-list='q'). # old default, or -vxl='q' use Getopt::Long qw(GetOptions); use Fcntl qw(O_RDONLY O_WRONLY O_EXCL O_CREAT); use Symbol qw(gensym); use Exporter (); # new default use Getopt::Long qw(GetOptions); use Fcntl qw(O_RDONLY O_WRONLY O_EXCL O_CREAT); use Symbol qw(gensym); use Exporter (); - The parameter -kbb (--keep-break-before) now ignores a request to break before an opening token, such as '('. Likewise, -kba (--keep-break-after) now ignores a request to break after a closing token, such as ')'. This change was made to avoid a rare instability discovered in random testing. - Previously, if a -dsc command was used to delete all side comments, then any special side comments for controlling non-indenting braces got deleted too. Now, these control side comments are retained when -dsc is set unless a -nnib (--nonon-indenting-braces) flag is also set to deactivate them. - This version runs about 10 percent faster on large files than the previous release due to optimizations made with the help of Devel::NYTProf. Much of the gain came from faster processing of blank tokens and comments. - This version of perltidy was stress-tested for many cpu hours with random input parameters. No failures to converge, internal fault checks, undefined variable references or other irregularities were seen. - 2022 02 17 - A new flag, --encode-output-strings, or -eos, has been added to resolve issue git #83. This issue involves the interface between Perl::Tidy and calling programs, and Code::TidyAll (tidyall) in particular. The problem is that perltidy by default returns decoded character strings, but tidyall expects encoded strings. This flag provides a fix for that. So, tidyall users who process encoded (utf8) files should update to this version of Perl::Tidy and use -eos for tidyall. For further info see: https://github.com/houseabsolute/perl-code-tidyall/issues/84, and https://github.com/perltidy/perltidy/issues/83 If there are other applications having utf8 problems at the interface with Perl::Tidy, this flag probably may need to be set. - The default value of the new flag, --encode-output-strings, -eos, is currently -neos BUT THIS MAY CHANGE in a future release because the current default is inconvenient. So authors of programs which receive character strings back from Perl::Tidy should set this flag, if necessary, to avoid any problems when the default changes. For more information see the above links and the Perl::Tidy man pages for example coding. - The possible values of the string 's' for the flag '--character-encoding=s' have been limited to 'utf8' (or UTF-8), 'none', or 'guess'. Previously an arbitrary encoding could also be specified, but as a result of discussions regarding git #83 it became clear that this could cause trouble since the output encoding was still restricted to UTF-8. Users who need to work in other encodings can write a short program calling Perl::Tidy with pre- and post-processing to handle encoding/decoding. - A new flag --break-after-labels=i, or -bal=i, was added for git #86. This controls line breaks after labels, to provide a uniform style, as follows: -bal=0 follows the input line breaks [DEFAULT] -bal=1 always break after a label -bal=2 never break after a label For example: # perltidy -bal=1 INIT: { $xx = 1.234; } # perltidy -bal=2 INIT: { $xx = 1.234; } - Fix issue git #82, an error handling something like ${bareword} in a possible indirect object location. Perl allows this, now perltidy does too. - The flags -kbb=s or --keep-old-breakpoints-before=s, and its counterpart -kba=s or --keep-old-breakpoints-after=s have expanded functionality for the container tokens: { [ ( } ] ). The updated man pages have details. - Two new flags have been added to provide finer vertical alignment control, --valign-exclusion-list=s (-vxl=s) and --valign-inclusion-list=s (-vil=s). This has been requested several times, most recently in git #79, and it finally got done. For example, -vil='=>' means just align on '=>'. - A new flag -gal=s, --grep-alias-list=s, has been added as suggested in git #77. This allows code blocks passed to list operator functions to be formatted in the same way as a code block passed to grep, map, or sort. By default, the following list operators in List::Util are included: all any first none notall reduce reductions They can be changed with the flag -gaxl=s, -grep-alias-exclusion-list=s - A new flag -xlp has been added which can be set to avoid most of the limitations of the -lp flag regarding side comments, blank lines, and code blocks. See the man pages for more info. This fixes git #64 and git #74. The older -lp flag still works. - A new flag -lpil=s, --line-up-parentheses-inclusion-list=s, has been added as an alternative to -lpxl=s, --line-up-parentheses-exclusion-list=s. It supplies equivalent information but is much easier to describe and use. It works for both the older -lp version and the newer -xlp. - The coding for the older -lp flag has been updated to avoid some problems and limitations. The new coding allows the -lp indentation style to mix smoothly with the standard indentation in a single file. Some problems where -lp and -xci flags were not working well together have been fixed, such as happened in issue rt140025. As a result of these updates some minor changes in existing code using the -lp style may occur. - This version of perltidy was stress-tested for many cpu hours with random input parameters. No failures to converge, internal fault checks, undefined variable references or other irregularities were seen. - Numerous minor fixes have been made, mostly very rare formatting instabilities found in random testing. perl-Perl-Tidy-20230309-bp154.2.3.1.noarch.rpm perl-Perl-Tidy-20230309-bp154.2.3.1.src.rpm openSUSE-2023-109 moderate openSUSE Backports SLE-15-SP4 Update This update for keepassxc fixes the following issues: keepassxc was updated to 2.7.5: - Changes - Add menu option to allow screenshots [#8841] - Add support for Botan 3 [#9388] - Increase max TOTP step to 24 hours [#9149] - Improve HTML export layout [#8987] - Turn search reset off by default [#9153] - Use QClipboard::clear() instead of setting blank text [#9148] - Hide group column header choice when not in search [#9171] - Improve look of KeePassXC logo and icons [#9355] - Add keyboard shortcuts for app and database settings [#9007] - Hide rename button from attachments preview panel [#8842] - Linux: Set SingleMainWindow in .desktop file [#7430] - Fixes - Fix crash when search clears while creating new entry [#9230] - Fix crash when using Windows Hello in a Remote Desktop session [#9006] - Fix crash in Group Edit after enabling Browser Integration [#8778] - Fix canceling quick unlock when it is unavailable [#9034] - Set password input field font correctly [#8732] - Greatly improve performance when rendering entry view [#9398] - Fix various accessibility issues [#9138] - Fix arrows size when expand/collapse a group [#9096] - Select the clone instead of the original after cloning an entry [#9070] - Fix bugs with preview widget [#9170] - Fix status bar update when switching to other DB [#9073] - Fix database settings spin box bug [#9101] - Fix Ctrl+Tab shortcut to cycle databases in unlock dialog [#8839] - Fix TOTP QR code maintaining square ratio [#9027] - Fix Auto-Type configuration page on custom sequence selection [#8752] - Fix unexpected behavior of --lock when KeePassXC is not running [#8889] - Make open folder icon exempt from "Apply group icon to entry" [#9205] - Allow setting default file open directory with env var [#9192] - SSH Agent: Fix support for AES-256/GCM openssh keys [#8968] - Browser: Fix Native Messaging script path with BSD OS's [#8835] - MacOS: Fix text selection for Auto-Type clear field [#9066] - MacOS: Don't rely on AppleInterfaceStyle for theme switching [#8615] - Windows: Remove registry detection of desktop shortcut [#9380] keepassxc-2.7.5-bp154.3.12.1.src.rpm keepassxc-2.7.5-bp154.3.12.1.x86_64.rpm keepassxc-lang-2.7.5-bp154.3.12.1.noarch.rpm keepassxc-2.7.5-bp154.3.12.1.i586.rpm keepassxc-2.7.5-bp154.3.12.1.aarch64.rpm keepassxc-2.7.5-bp154.3.12.1.s390x.rpm openSUSE-2023-148 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-YAML-PP fixes the following issues: perl-YAML-PP was updated to 0.035: - 0.035 2022-09-30 21:16:16+02:00 - Fix parsing alias as mapping key - Support emitting folded block scalars. Now any input should be able to output as a folded block scalar correctly. Preserving scalar styles will now also preserve those - 0.034 2022-06-30 10:31:56+02:00 - Fix parsing empty folded block scalars with trailing linebreaks - Fix error handling (remaining tokens on invalid input) - Support experimental v5.36 booleans - Allow to specify multiple boolean classes (issue #37) - 0.033 2022-06-27 16:31:32+02:00 - Fix add_mapping_resolver + on_create (tie existing data) - 0.032 2022-03-08 19:02:00+01:00 - Add missing '~' to allowed chars in tags - Restructure directive parsing a bit - Support YAML::PP::Ref in yamlpp-* utility scripts - Add -P to yaml-load-dump --preserve - Add --dump option to yamlpp-parse-emit - yamlpp-load-dump -D JSON::PP: don't output space before colon - Add export tags to YAML::PP::Common - Update yaml-test-suite to 2022-01-17 - 0.031 2021-12-25 23:43:19+01:00 - Fix several rare test cases: - Support literal escaped tabs - Allow only one digit for block scalar indent indicator - Allow comments at the end of directives - Match word boundary after '%YAML' - Allow tabs and multiple spaces between directive elements - Forbid lines starting with tabs in block mode - After tabs no further indentation elements allowed perl-YAML-PP-0.035-bp154.2.3.1.noarch.rpm perl-YAML-PP-0.035-bp154.2.3.1.src.rpm openSUSE-2023-135 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-YAML-LibYAML-API fixes the following issues: perl-YAML-LibYAML-API is shipped in version 0.013: see /usr/share/doc/packages/perl-YAML-LibYAML-API/Changes - 0.013 2022-04-11 23:58:42+02:00 - Change License to MIT because of included libyaml - Add tag_directives entry to events (needed by yamltidy) - 0.012 2020-09-08 12:55:03+02:00 - Remove local/ directory from tarball - 0.011 2020-09-07 19:41:56+02:00 - Pass new option 'width' to libyaml - 0.010 2020-08-19 22:39:12+02:00 - Update to libyaml 0.2.5 - Fix constants for flow style/block style - Emitter: Support flow style collections - 0.009 2020-05-16 15:28:05+02:00 - Support emitting version directives - Update libyaml sources to 0.2.4. Changes affecting this module: - Output '...' at the stream end after a block scalar with trailing empty lines - Accept '%YAML 1.2' directives - 0.008 2020-02-19 13:55:40+01:00 - Support numeric anchors (before strings were required) perl-YAML-LibYAML-API-0.013-bp154.2.1.src.rpm perl-YAML-LibYAML-API-0.013-bp154.2.1.x86_64.rpm perl-YAML-LibYAML-API-0.013-bp154.2.1.aarch64.rpm perl-YAML-LibYAML-API-0.013-bp154.2.1.ppc64le.rpm perl-YAML-LibYAML-API-0.013-bp154.2.1.s390x.rpm openSUSE-2023-134 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-SemVer fixes the following issues: - Initial shipment. perl-SemVer-0.10.0-bp154.2.1.noarch.rpm perl-SemVer-0.10.0-bp154.2.1.src.rpm openSUSE-2023-149 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojolicious-Plugin-AssetPack fixes the following issues: Updated to 2.14 * added support for retry during download assets perl-Mojolicious-Plugin-AssetPack-2.14-bp154.2.3.1.noarch.rpm perl-Mojolicious-Plugin-AssetPack-2.14-bp154.2.3.1.src.rpm openSUSE-2023-112 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojolicious-Plugin-OAuth2 fixes the following issues: perl-Mojolicious-Plugin-OAuth2 was updated to 2.02: - Add support for passing in custom "ua" - Add support for "providers" key in plugin config - Add support for "proxy" in plugin config perl-Mojolicious-Plugin-OAuth2-2.02-bp154.2.3.1.noarch.rpm perl-Mojolicious-Plugin-OAuth2-2.02-bp154.2.3.1.src.rpm openSUSE-2023-150 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Selenium-Remote-Driver fixes the following issues: perl-Selenium-Remote-Driver was updated to 1.49: - 1.49 2023-04-06 TEODESIAN - Fix the action type for button_up(), courtesy of Bernard Schmalhofer - 1.48 2023-01-01 TEODESIAN - Remove usage of undocumented firefox features for passing profiles - 1.47 2022-05-02 TEODESIAN - Add DWIM to inputs accepted by ActionChains send_keys, key_up & key_down, and add some docu perl-Selenium-Remote-Driver-1.49-bp154.2.3.1.src.rpm perl-Selenium-Remote-Driver-1.49-bp154.2.3.1.x86_64.rpm perl-Selenium-Remote-Driver-1.49-bp154.2.3.1.aarch64.rpm perl-Selenium-Remote-Driver-1.49-bp154.2.3.1.ppc64le.rpm perl-Selenium-Remote-Driver-1.49-bp154.2.3.1.s390x.rpm openSUSE-2023-137 important openSUSE Backports SLE-15-SP4 Update This update for guile1, lilypond fixes the following issues: guile1: - Add service file to download release from git excluding the directory with commercial non free files. - Update to version 2.2.6 to enable lilypond to be updated to 2.24.1 to fix boo#1210502 and CVE-2020-17354. lilypond: - Update to version lilypond-2.24.1 to fix boo#1210502 - CVE-2020-17354: lilypond: Lilypond allows attackers to bypass the -dsafe protection mechanism. guile1-2.2.6-bp154.3.3.1.src.rpm guile1-2.2.6-bp154.3.3.1.x86_64.rpm guile1-modules-2_2-2.2.6-bp154.3.3.1.x86_64.rpm libguile-2_2-1-2.2.6-bp154.3.3.1.x86_64.rpm libguile1-devel-2.2.6-bp154.3.3.1.x86_64.rpm lilypond-2.24.1-bp154.2.3.2.src.rpm lilypond-2.24.1-bp154.2.3.2.x86_64.rpm lilypond-debuginfo-2.24.1-bp154.2.3.2.x86_64.rpm lilypond-debugsource-2.24.1-bp154.2.3.2.x86_64.rpm lilypond-doc-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-cs-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-de-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-es-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-fr-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-hu-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-it-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-ja-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-nl-2.24.1-bp154.2.3.2.noarch.rpm lilypond-doc-zh-2.24.1-bp154.2.3.2.noarch.rpm lilypond-emmentaler-fonts-2.24.1-bp154.2.3.2.noarch.rpm lilypond-fonts-common-2.24.1-bp154.2.3.2.noarch.rpm guile1-2.2.6-bp154.3.3.1.i586.rpm guile1-modules-2_2-2.2.6-bp154.3.3.1.i586.rpm libguile-2_2-1-2.2.6-bp154.3.3.1.i586.rpm libguile1-devel-2.2.6-bp154.3.3.1.i586.rpm guile1-2.2.6-bp154.3.3.1.aarch64.rpm guile1-modules-2_2-2.2.6-bp154.3.3.1.aarch64.rpm libguile-2_2-1-2.2.6-bp154.3.3.1.aarch64.rpm libguile1-devel-2.2.6-bp154.3.3.1.aarch64.rpm lilypond-2.24.1-bp154.2.3.2.aarch64.rpm lilypond-debuginfo-2.24.1-bp154.2.3.2.aarch64.rpm lilypond-debugsource-2.24.1-bp154.2.3.2.aarch64.rpm guile1-2.2.6-bp154.3.3.1.ppc64le.rpm guile1-modules-2_2-2.2.6-bp154.3.3.1.ppc64le.rpm libguile-2_2-1-2.2.6-bp154.3.3.1.ppc64le.rpm libguile1-devel-2.2.6-bp154.3.3.1.ppc64le.rpm lilypond-2.24.1-bp154.2.3.2.ppc64le.rpm lilypond-debuginfo-2.24.1-bp154.2.3.2.ppc64le.rpm lilypond-debugsource-2.24.1-bp154.2.3.2.ppc64le.rpm guile1-2.2.6-bp154.3.3.1.s390x.rpm guile1-modules-2_2-2.2.6-bp154.3.3.1.s390x.rpm libguile-2_2-1-2.2.6-bp154.3.3.1.s390x.rpm libguile1-devel-2.2.6-bp154.3.3.1.s390x.rpm lilypond-2.24.1-bp154.2.3.2.s390x.rpm lilypond-debuginfo-2.24.1-bp154.2.3.2.s390x.rpm lilypond-debugsource-2.24.1-bp154.2.3.2.s390x.rpm openSUSE-2023-152 moderate openSUSE Backports SLE-15-SP4 Update This update for tryton, trytond, trytond_account, trytond_account_invoice, trytond_purchase, trytond_stock_supply fixes the following issues: Changes in trytond: - Version 6.0.32 - Bugfix Release - Version 6.0.30 - Bugfix Release Changes in tryton: - Version 6.0.27 - Bugfix Release Changes in trytond_account_invoice: - Version 6.0.12 - Bugfix Release - Version 6.0.10 - Bugfix Release Changes in trytond_account: - Version 6.0.17 - Bugfix Release Changes in trytond_purchase: - Version 6.0.11 - Bugfix Release Changes in trytond_stock_supply: - Version 6.0.6 - Bugfix Release tryton-6.0.27-bp154.2.21.1.noarch.rpm tryton-6.0.27-bp154.2.21.1.src.rpm trytond-6.0.32-bp154.2.27.1.noarch.rpm trytond-6.0.32-bp154.2.27.1.src.rpm trytond_account-6.0.17-bp154.2.15.1.noarch.rpm trytond_account-6.0.17-bp154.2.15.1.src.rpm trytond_account_invoice-6.0.12-bp154.2.9.1.noarch.rpm trytond_account_invoice-6.0.12-bp154.2.9.1.src.rpm trytond_purchase-6.0.11-bp154.2.15.1.noarch.rpm trytond_purchase-6.0.11-bp154.2.15.1.src.rpm trytond_stock_supply-6.0.6-bp154.2.9.1.noarch.rpm trytond_stock_supply-6.0.6-bp154.2.9.1.src.rpm openSUSE-2023-116 moderate openSUSE Backports SLE-15-SP4 Update This update for llvm15 fixes the following issues: Provide llvm15 toolsuite in the 15-SP4 PackageHub / Leap 15.4 to allow building Chromium. clang-tools-15.0.7-bp154.2.1.x86_64.rpm clang15-15.0.7-bp154.2.1.x86_64.rpm clang15-devel-15.0.7-bp154.2.1.x86_64.rpm clang15-doc-15.0.7-bp154.2.1.noarch.rpm libLLVM15-15.0.7-bp154.2.1.x86_64.rpm libLTO15-15.0.7-bp154.2.1.x86_64.rpm libc++-devel-15.0.7-bp154.2.1.x86_64.rpm libc++1-15.0.7-bp154.2.1.x86_64.rpm libc++abi-devel-15.0.7-bp154.2.1.x86_64.rpm libc++abi1-15.0.7-bp154.2.1.x86_64.rpm libclang-cpp15-15.0.7-bp154.2.1.x86_64.rpm libclang13-15.0.7-bp154.2.1.x86_64.rpm liblldb15-15.0.7-bp154.2.1.x86_64.rpm libomp15-devel-15.0.7-bp154.2.1.x86_64.rpm lld15-15.0.7-bp154.2.1.x86_64.rpm lldb15-15.0.7-bp154.2.1.x86_64.rpm lldb15-devel-15.0.7-bp154.2.1.x86_64.rpm llvm15-15.0.7-bp154.2.1.src.rpm llvm15-15.0.7-bp154.2.1.x86_64.rpm llvm15-devel-15.0.7-bp154.2.1.x86_64.rpm llvm15-doc-15.0.7-bp154.2.1.noarch.rpm llvm15-gold-15.0.7-bp154.2.1.x86_64.rpm llvm15-opt-viewer-15.0.7-bp154.2.1.noarch.rpm llvm15-polly-15.0.7-bp154.2.1.x86_64.rpm llvm15-polly-devel-15.0.7-bp154.2.1.x86_64.rpm llvm15-vim-plugins-15.0.7-bp154.2.1.noarch.rpm python3-clang15-15.0.7-bp154.2.1.x86_64.rpm python3-lldb15-15.0.7-bp154.2.1.x86_64.rpm clang-tools-15.0.7-bp154.2.1.i586.rpm clang15-15.0.7-bp154.2.1.i586.rpm clang15-devel-15.0.7-bp154.2.1.i586.rpm libLLVM15-15.0.7-bp154.2.1.i586.rpm libLLVM15-32bit-15.0.7-bp154.2.1.x86_64.rpm libLTO15-15.0.7-bp154.2.1.i586.rpm libclang-cpp15-15.0.7-bp154.2.1.i586.rpm libclang-cpp15-32bit-15.0.7-bp154.2.1.x86_64.rpm libclang13-15.0.7-bp154.2.1.i586.rpm libomp15-devel-15.0.7-bp154.2.1.i586.rpm lld15-15.0.7-bp154.2.1.i586.rpm llvm15-15.0.7-bp154.2.1.i586.rpm llvm15-devel-15.0.7-bp154.2.1.i586.rpm llvm15-gold-15.0.7-bp154.2.1.i586.rpm llvm15-polly-15.0.7-bp154.2.1.i586.rpm llvm15-polly-devel-15.0.7-bp154.2.1.i586.rpm python3-clang15-15.0.7-bp154.2.1.i586.rpm clang-tools-15.0.7-bp154.2.1.aarch64.rpm clang15-15.0.7-bp154.2.1.aarch64.rpm clang15-devel-15.0.7-bp154.2.1.aarch64.rpm libLLVM15-15.0.7-bp154.2.1.aarch64.rpm libLLVM15-64bit-15.0.7-bp154.2.1.aarch64_ilp32.rpm libLTO15-15.0.7-bp154.2.1.aarch64.rpm libc++-devel-15.0.7-bp154.2.1.aarch64.rpm libc++1-15.0.7-bp154.2.1.aarch64.rpm libc++abi-devel-15.0.7-bp154.2.1.aarch64.rpm libc++abi1-15.0.7-bp154.2.1.aarch64.rpm libclang-cpp15-15.0.7-bp154.2.1.aarch64.rpm libclang-cpp15-64bit-15.0.7-bp154.2.1.aarch64_ilp32.rpm libclang13-15.0.7-bp154.2.1.aarch64.rpm libomp15-devel-15.0.7-bp154.2.1.aarch64.rpm lld15-15.0.7-bp154.2.1.aarch64.rpm llvm15-15.0.7-bp154.2.1.aarch64.rpm llvm15-devel-15.0.7-bp154.2.1.aarch64.rpm llvm15-gold-15.0.7-bp154.2.1.aarch64.rpm llvm15-polly-15.0.7-bp154.2.1.aarch64.rpm llvm15-polly-devel-15.0.7-bp154.2.1.aarch64.rpm python3-clang15-15.0.7-bp154.2.1.aarch64.rpm clang-tools-15.0.7-bp154.2.1.ppc64le.rpm clang15-15.0.7-bp154.2.1.ppc64le.rpm clang15-devel-15.0.7-bp154.2.1.ppc64le.rpm libLLVM15-15.0.7-bp154.2.1.ppc64le.rpm libLTO15-15.0.7-bp154.2.1.ppc64le.rpm libclang-cpp15-15.0.7-bp154.2.1.ppc64le.rpm libclang13-15.0.7-bp154.2.1.ppc64le.rpm libomp15-devel-15.0.7-bp154.2.1.ppc64le.rpm lld15-15.0.7-bp154.2.1.ppc64le.rpm llvm15-15.0.7-bp154.2.1.ppc64le.rpm llvm15-devel-15.0.7-bp154.2.1.ppc64le.rpm llvm15-gold-15.0.7-bp154.2.1.ppc64le.rpm llvm15-polly-15.0.7-bp154.2.1.ppc64le.rpm llvm15-polly-devel-15.0.7-bp154.2.1.ppc64le.rpm python3-clang15-15.0.7-bp154.2.1.ppc64le.rpm clang-tools-15.0.7-bp154.2.1.s390x.rpm clang15-15.0.7-bp154.2.1.s390x.rpm clang15-devel-15.0.7-bp154.2.1.s390x.rpm libLLVM15-15.0.7-bp154.2.1.s390x.rpm libLTO15-15.0.7-bp154.2.1.s390x.rpm libclang-cpp15-15.0.7-bp154.2.1.s390x.rpm libclang13-15.0.7-bp154.2.1.s390x.rpm lld15-15.0.7-bp154.2.1.s390x.rpm llvm15-15.0.7-bp154.2.1.s390x.rpm llvm15-devel-15.0.7-bp154.2.1.s390x.rpm llvm15-gold-15.0.7-bp154.2.1.s390x.rpm llvm15-polly-15.0.7-bp154.2.1.s390x.rpm llvm15-polly-devel-15.0.7-bp154.2.1.s390x.rpm python3-clang15-15.0.7-bp154.2.1.s390x.rpm openSUSE-2023-153 moderate openSUSE Backports SLE-15-SP4 Update This update for telegraf fixes the following issues: telegraf was updated to version 1.26.3: * fix(inputs.socket_listener): Fix race in tests (#13300) * chore: Enable deferInLoop, exitAfterDefer and unnecessaryDefer checkers for gocritic (#13280) * fix(inputs.vsphere): specify the correct option for disconnected_servers_behavior (#13286) * docs: Clarify watch config behavior (#13285) * fix(inputs.socket_listener): Fix loss of connection tracking (#13056) * fix(outputs.stackdriver): Allow for custom metric type prefix (#13168) * fix(outputs.graphite): Fix logic to reconnect with servers that were not up on agent startup (#13228) (#13239) * docs(common.kafka): Remove experimental notes (#13232) * fix(outputs.stackdriver): Group batches by timestamp (#12994) * deps(outputs.wavefront): Bump wavefront sdk from 0.12.0 to 0.13.0 (#13213) * fix(outputs.prometheus_client): Fix export_timestamp for v1 metric type (#13169) * docs(inputs.vsphere): Resolve copy/paste typo with resource pools (#13162) * fix(processors.starlark): Ddo not reject tracking metrics twice (#13156) * fix(inputs.gnmi): Create selfstat to track connection state (#13149) * fix(inputs.intel_pmu): Fix handling of the json perfmon format (#13139) * fix: update release workflow (#13141) * docs(inputs.knx_listener): Add link to config generation project (#13128) * fix(outputs.warp10): Support Infinity/-Infinity/NaN values (#13126) Update to version 1.26.2: * docs(inputs.mysql): remove duplicate settings from config (#13131) * docs: use single quotes for multi-line literal TOML (#13124) * fix(processors.lookup): Fix tracking metrics (#13092) * test: Check correct build tags for each plugin registered (#13019) * fix(parsers.grok): Fix nil metric for multiline inputs (#13078) * fix(inputs.prometheus): Add namespace option in k8s informer factory (#13063) * fix: Correct spelling of "fingerprints" in circleci config (#13074) * fix(inputs.socket_listener): Fix tracking of unix sockets (#13059) * feat: implement remote artifact signing (#13066) * fix(agent): pass quiet flag earlier (#13020) Update to version 1.26.1: * fix(inputs.procstat): Return tags of pids if lookup_error (#13015) * fix(inputs.netflow): Use correct name in the build tag (#13006) * fix(secrets): Minimize secret holding time (#13002) * fix(secretstores): Handle array of secrets correctly (#12919) * fix(secret): Add function to set a secret (#13012) * fix(secrets): Warn if OS limit for locked memory is too low (#12993) * docs(outputs.http): add service to aws creds (#13003) * fix(systemd): Increase lock memory for service to 8192kb (#12990) * fix(inputs.upsd): Include ups.real_power (#12961) * fix(inputs.execd): Read from stdout using ReadLine instead of scanner.Scan to overcome 64kb buffer limit (#12935) * fix(govulncheck): Downgrade govulncheck to fix github action (#12973) * docs(inputs.upsd): Add comment about ipv6 addresses (#12962) * docs: Explain and note service inputs (#12870) * docs: Remove broken link to default config (#12925) * feat(inputs.kubernetes): Apply timeout for the whole HTTP request (#12918) * fix(outputs.graphite): Add custom regex to outputs (#12908) * fix(inputs.ethtool): Check for nil (#12867) * fix(inputs.prometheus): Use set over add for custom headers (#12907) * fix(config): Return error on order set as string (#12880) * docs: Fix various typos in comments (#12888) * docs: Add homekit plugin as external plugin (#12874) * docs(agent): resolve typo (#12884) * docs(typo): update wording (#12885) * fix(inputs.prometheus): Correctly set timeout param (#12864) * docs: Update minimum documented go version (#12869) * fix(inputs.internet_speed): Rename host tag to source (#12877) * docs(typo): output.go (#12873) * docs: update change log format (#12872) * fix(serializers.graphite): Allow for specifying regex to sanitize (#12835) Update to version 1.26.0: * fix(makefile): Re-add build tags flag to go build (#12847) * feat(inputs.vsphere): Flag for more lenient behavior when connect fails on startup (#12828) * feat(inputs.modbus): Allow to convert coil and discrete registers to boolean (#12825) * feat(common.oauth): Add audience parameter (#12821) * feat(parsers.xpath): Add timezone handling (#12820) * feat(agent): Print loaded configs (#12827) * docs(outputs.postgresql): Improve TimescaleDB config examples (#12829) * feat(processors.converter): Convert tag or field as metric timestamp (#12767) * feat(inputs.radius): Add plugin for simple radius auth response time monitoring (#12736) * docs(inputs.vsphere): Update inventory docs & removed unnecessary if-statement (#12819) * fix(inputs.amqp_consumer): Avoid deprecations when handling defaults (#12818) * fix(inputs.amqp_consumer): Fix panic on Stop() if not connected successfully (#12817) * fix(inputs.ethtool): Close namespace (#12815) * feat(inputs.ethtool): Add support for link speed, duplex, autoneg and… (#12814) * feat(agent): Add command-line option to specify password (#12812) * feat(processors): Add lookup processor (#12809) * feat(inputs.win_eventlog): Add state-persistence capabilities (#12790) * feat(inputs.modbus): Add RS485 specific config options (#12786) * docs: Use already existing link to fix markdownlint issue. (#12810) * feat(inputs.cgroup): Added support for cpu.stat (#12798) * docs: Clean up make docs on windows (#12796) * feat(inputs.prometheus): Use namespace annotations to filter pods to be scraped (#12777) * feat(inputs.docker_log): Add state-persistence capabilities (#12775) * docs: Add optional tls parameters to the documentation (#12788) * docs: Update the FAQ (#12793) * fix(inputs.statsd): On close, verify listener is not nil (#12778) * feat(parsers.avro): Add Apache Avro parser (#11816) * fix(agent): Allow gracefull shutdown on interrupt (e.g. Ctrl-C) (#12781) * feat: Plugin state-persistence (#12166) * fix(agent): Only rotate log on SIGHUP if needed (#12740) * docs(aggregators.derivative): Add explanation of calculations (#12758) * feat(outputs.mqtt): Add option to specify topic layouts (#12697) * docs: rename playfabtotelegraf external plugin (#12759) * feat(common.tls): add enable flag (#12727) * feat(inputs.jti_openconfig_telemetry): Set timestamp from data (#12730) * fix(serializers.json): allow stateful transformations (#12735) * fix(inputs.lvm): add options to specify path to binaries (#12725) * feat(inputs.wireguard): Add allowed_peer_cidr field (#12729) * fix(parsers.xpath): Fix panic for JSON name expansion (#12724) * feat(inputs.internet_speed): Add the best server selection via latency and jitter field (#12707) * feat(inputs.win_wmi): add Windows Management Instrumentation (WMI) input plugin (#11250) * fix(agent): Reload config on config update (#12721) * feat(inputs.disk): Add label as tag (#12696) * test(inputs.x509_cert): fix missing tag (#12720) * feat(inputs.x509_cert): Add tag for certificate type-classification (#12656) * docs(readme): add PlayFab Insights external plugin (#12708) * docs(parsers.json_v2): fix spelling typo (#12711) * feat(inputs.statsd): add pending messages stat and allow to configure number of threads (#12318) * feat(inputs.haproxy): Add support for tcp endpoints in haproxy plugin (#12680) * feat(inputs.x509_cert): Add OCSP stapling information for leaf certificates (#10550) (#12444) * docs(outputs.postgresql): Update URL for sql template (#12691) * feat(config): Accept durations given in days (e.g. "7d") (#12579) * feat(outputs.mqtt): add support for MQTT 5 publish properties (#12678) * fix(inputs.bond): Reset slave stats for each interface (#12462) * fix(inputs.cloudwatch): Verify endpoint is not nil (#12677) * feat(processors.unpivot): Add mode to create new metrics (#12659) * Update changelog for v1.25.2 * docs: Tracking metrics (#12663) * fix(inputs.x509_cert): Fix Windows path handling (#12629) * fix(inputs.cloudwatch): enable custom endpoint support (#12657) * test: Use `t.Setenv` to set env vars (#12621) * fix: Rename the Prometheus Input Plugin Timeout variable (#12626) * docs: remove trailing whitespace (#12660) * docs: fix remaining markdownlinter issues (#12658) * docs: remove whitespace (#12655) * docs: Update all readme to pass linter (#12615) * feat(inputs.http_listener_v2): Add custom server http headers (#12645) * fix(inputs.gnmi): Handle both new-style `tag_subscription` and old-style `tag_only` (#12512) * fix(inputs.cisco_telemetry_mdt): check subfield sizes to avoid panics (#12637) * fix(inputs.tail): fix typo in the README (#12648) * docs(inputs.syslog): add BSD syslog to readme intro (#12647) * fix(secretstores): check store id format and presence (#12644) * feat(inputs.internet_speed): server ID include and exclude filter (#12617) * docs(inputs.procstat): add ppid field (#12641) * docs(inputs.snmp): Explain different snmp backends (#12627) * feat(agent): Add /etc/telegraf/telegraf.d to default config locations (#12608) * fix(inputs.conntrack): Resolve segfault when setting collect field (#12603) * feat(inputs.p4runtime): Implementation of P4Runtime input plugin (#12473) * docs: Show TOML inline table syntax for tags/tagpass/tagdrop (#12636) * feat(inputs.processes): Add `use_sudo` option for BSD (#12628) * docs(inputs.prometheus): fix incorrect headers option (#12625) * fix(agent): Only read the config once (#12607) * fix(inputs.mongodb): SIGSEGV when restarting MongoDB node (#12604) * feat: Always disable cgo support (static builds) (#12600) * fix(inputs.mongodb): Improve error logging (#12599) * docs: indicate secret-store support in plugin READMEs (#12592) * feat(inputs.opensearch_query): add opensearch_query input plugin (#12393) * docs(inputs.postgresql): Provide socket connection details (#12584) * feat(inputs.example): Add secret-store sample code (#12550) * feat(inputs.mysql): add secret-store support (#12591) * fix(docs): fix link to license for Google flatbuffers (#12586) * fix(inputs.mysql): avoid side-effects for TLS between plugin instances (#12576) * fix(inputs.upsd): Add additional fields (#12543) * fix(outputs.prometheus_client): Expire with ticker, not add/collect (#12560) * fix(inputs.opcua): fix opcua and opcua-listener for servers using password-based auth (#12529) * fix(inputs.prometheus): Set the timeout for slow running API endpoints correctly (#12559) * feat(inputs.win_perf_counters): add remote system support (#12556) * feat(inputs.gnmi): Set max gRPC message size (#12495) * fix(inputs.exec): restore pre-v1.21 behavior for CSV data_format (#12533) * fix(inputs.sqlserver): Suppress error on secondary replicas (#12528) * feat(inputs.icinga2): Support collecting hosts,services and endpoint metrics (#12506) * fix(inputs.upsd): Always convert to float (#12516) * docs(outputs.elasticsearch): detail overriding timezone (#12551) * docs(outputs.mqtt): update readme to match sample config (#12552) * feat(secretstores): convert many output plugins (#12497) * feat(inputs.cisco_telemetry_mdt): include delete field (#12345) * docs(outputs.mqtt): fix incorrect use of brackets (#12539) * fix(agent): catch non-existing commands and error out (#12549) * fix(inputs.logstash): Collect opensearch specific stats (#12536) * fix(inputs.prometheus): correctly track deleted pods (#12522) * feat(inputs.dns_query): Add IP field(s) (#12519) * feat(intel_powerstat): Add CPU base frequency metric and add support for new platforms (#12452) * fix(common.cookie): Allow any 2xx status code (#12515) * feat(inputs.redfish): Add power control metric (#12496) * feat(inputs.openweathermap): Add snow parameter (#12466) * feat(outputs.mqtt): enhance routing capabilities (#12224) * test(inputs.snmp): Use random port (#12464) * feat(tools/readme_linter): Check for global configuration section (#12426) * fix(inputs.upsd): Ensure firmware is always a string (#12486) * docs(inputs.influxdb): Collect v2 with prometheus plugin (#12492) * feat(inputs.influxdb): Collect uptime statistics (#12493) * fix(inputs.cisco_telemetry_mdt): add operation-metric and class-policy prefix (#12240) * fix(json_v2): In case of invalid json, log messsage to debug log (#12440) * docs(secretstores): document systemd-nspawn requirement (#12494) * fix(secretstores): fix handling of TOML strings (#12490) * fix(agent): handle float time with fractions of seconds correctly (#12491) * fix(agent): Only set default snmp after reading all configs (#12457) * docs(inputs.example): correctly set syntax highlighting and section name (#12471) * docs(inputs.socketstat): fix wrong TOML option name. (#12482) * fix(inputs.win_eventlog): Handle remote events more robustly. (#12375) * fix(inputs.sqlserver): add more precise version check (#12384) * feat(inputs.modbus): add workaround to enforce reads from zero for coil registers (#12408) * fix(inputs.gnmi): update configuration documentation (#12415) * feat(secretstores): add support for additional input plugins (#12067) * feat(inputs.sqlserver): get database pages performance counter (#12400) * fix(secretstores): Fix handling of 'id' and print failing secret-store (#12468) * feat(kafka): Add keep-alive period setting for input and output. (#12459) * fix(agent): Correctly reload configuration files (#12453) * docs: add tado input (#12411) * docs(inputs.postgresql): update readme and samples to note timeout behavior (#12446) * fix(inputs.mysql): Revert slice declarations with non-zero initial length (#12409) * fix: Added own SPID filter to sqlserverqueries.go (#12387) * fix(inputs.sqlserver): SqlRequests include sleeping sessions with open transactions (#12386) * fix(outputs.loki): return response body on error (#12399) * fix(inputs.x509_cert): fix off-by-one when adding intermediate certificates (#12404) * test: Always create test config for package testing (#12390) * fix(secretstores): cleanup duplicate printing (#12401) * docs: add bacnet to external plugins list (#12394) * test(parsers.json): add fuzz test (#12368) * feat(inputs.stackdriver): Allow filtering by resource metadata labels (#12377) Update to version 1.25.3: * fix(serializers.json): allow stateful transformations (#12735) * fix(inputs.lvm): add options to specify path to binaries (#12725) * fix(parsers.xpath): Fix panic for JSON name expansion (#12724) * fix(agent): Reload config on config update (#12721) * docs(readme): add PlayFab Insights external plugin (#12708) * docs(parsers.json_v2): fix spelling typo (#12711) * docs(outputs.postgresql): Update URL for sql template (#12691) * fix(inputs.bond): Reset slave stats for each interface (#12462) * fix(inputs.cloudwatch): Verify endpoint is not nil (#12677) Update to version 1.25.2: * docs: Tracking metrics (#12663) * fix(inputs.x509_cert): Fix Windows path handling (#12629) * fix(inputs.cloudwatch): enable custom endpoint support (#12657) * test: Use `t.Setenv` to set env vars (#12621) * fix: Rename the Prometheus Input Plugin Timeout variable (#12626) * docs(inputs.cisco_telemetry_mdt): remove new feature * docs: remove trailing whitespace (#12660) * docs: fix remaining markdownlinter issues (#12658) * docs: remove whitespace (#12655) * docs: Update all readme to pass linter (#12615) * fix(inputs.gnmi): Handle both new-style `tag_subscription` and old-style `tag_only` (#12512) * fix(inputs.cisco_telemetry_mdt): check subfield sizes to avoid panics (#12637) * fix(inputs.tail): fix typo in the README (#12648) * docs(inputs.syslog): add BSD syslog to readme intro (#12647) * fix(secretstores): check store id format and presence (#12644) * docs(inputs.procstat): add ppid field (#12641) * docs(inputs.snmp): Explain different snmp backends (#12627) * fix(inputs.conntrack): Resolve segfault when setting collect field (#12603) * docs: Show TOML inline table syntax for tags/tagpass/tagdrop (#12636) * docs(inputs.prometheus): fix incorrect headers option (#12625) * fix(agent): Only read the config once (#12607) * fix(inputs.mongodb): SIGSEGV when restarting MongoDB node (#12604) * fix(inputs.mongodb): Improve error logging (#12599) * docs(inputs.postgresql): Provide socket connection details (#12584) * fix(docs): fix link to license for Google flatbuffers (#12586) * fix(inputs.mysql): avoid side-effects for TLS between plugin instances (#12576) * fix(inputs.upsd): Add additional fields (#12543) * fix(outputs.prometheus_client): Expire with ticker, not add/collect (#12560) Update to version 1.25.1: * fix(inputs.opcua): fix opcua and opcua-listener for servers using password-based auth (#12529) * fix(inputs.prometheus): Set the timeout for slow running API endpoints correctly (#12559) * fix(inputs.exec): restore pre-v1.21 behavior for CSV data_format (#12533) * fix(inputs.sqlserver): Suppress error on secondary replicas (#12528) * fix(inputs.upsd): Always convert to float (#12516) * docs(outputs.elasticsearch): detail overriding timezone (#12551) * docs(outputs.mqtt): update readme to match sample config (#12552) * docs(outputs.mqtt): fix incorrect use of brackets (#12539) * fix(agent): catch non-existing commands and error out (#12549) * fix(inputs.logstash): Collect opensearch specific stats (#12536) * fix(inputs.prometheus): correctly track deleted pods (#12522) * fix(common.cookie): Allow any 2xx status code (#12515) * test(inputs.snmp): Use random port (#12464) * fix(inputs.upsd): Ensure firmware is always a string (#12486) * docs(inputs.influxdb): Collect v2 with prometheus plugin (#12492) * fix(inputs.cisco_telemetry_mdt): add operation-metric and class-policy prefix (#12240) * fix(json_v2): In case of invalid json, log messsage to debug log (#12440) * docs(secretstores): document systemd-nspawn requirement (#12494) * fix(secretstores): fix handling of TOML strings (#12490) * fix(agent): handle float time with fractions of seconds correctly (#12491) * fix(agent): Only set default snmp after reading all configs (#12457) * docs(inputs.example): correctly set syntax highlighting and section name (#12471) * docs(inputs.socketstat): fix wrong TOML option name. (#12482) * fix(inputs.win_eventlog): Handle remote events more robustly. (#12375) * fix(inputs.sqlserver): add more precise version check (#12384) * fix(inputs.gnmi): update configuration documentation (#12415) * fix(secretstores): Fix handling of 'id' and print failing secret-store (#12468) * feat(kafka): Add keep-alive period setting for input and output. (#12459) * fix(agent): Correctly reload configuration files (#12453) * docs(inputs.postgresql): update readme and samples to note timeout behavior (#12446) * fix(inputs.mysql): Revert slice declarations with non-zero initial length (#12409) * fix: Added own SPID filter to sqlserverqueries.go (#12387) * fix(inputs.sqlserver): SqlRequests include sleeping sessions with open transactions (#12386) * fix(outputs.loki): return response body on error (#12399) * fix(inputs.x509_cert): fix off-by-one when adding intermediate certificates (#12404) * test: Always create test config for package testing (#12390) * fix(secretstores): cleanup duplicate printing (#12401) Update to version 1.25.0: * feat(inputs.powerdns_recursor): Support for new PowerDNS recursor control protocol (#9633) * feat(parsers.csv): suport null delimiters (#12247) * fix(common.opcua): parse full range of status codes with uint32 (#12376) * test(inputs.statsd): increase sleep + expiration on test (#12354) * feat(inputs.netflow): add netflow plugin (#12108) * feat(inputs.sqlserver): add @@SERVICENAME and SERVERPROPERTY(''IsClustered'') in measurement sqlserver_server_properties (#12351) * fix(inputs.modbus): fix default value of transmission mode (#12367) * fix(inputs.kube_inventory): Change default token path, use in-cluster config by default (#12284) * feat(inputs.kubernetes): Allow fetching kublet metrics remotely (#12301) * feat(inputs.smart): Add additional SMART metrics that indicate/predict device failure (#12329) * fix(inputs.mongodb): Fix connection leak triggered by config reload (#12330) * fix(inputs.filecount): Revert library version (#12295) * feat: secret-store implementation (#11232) * fix(inputs.sql): cast measurement_column to string (#12323) * fix(processors.parser): handle empty metric names correctly (#12357) * feat(agent): Deprecate active usage of netsnmp translator (#12358) * feat(parsers.grok): add option to allow multiline messages (#12320) * docs: add document on debugging with delve (#12346) * fix(inputs.vsphere): Eliminated duplicate samples (#12259) * feat(inputs.cgroups): do not abort on first error, print message once (#12342) * feat(inputs.modbus): add support for half-precision float (float16) (#12340) * feat(tls): allow setting renegotiation method (#12302) * fix(inputs.modbus): Fix Windows COM-port path (#12339) * feat(inputs.sqlserver): introduce timeout for query execution (#12319) * fix(inputs.zfs): Unbreak datasets stats gathering in case listsnaps is enabled on a zfs pool (#12307) * feat(inputs.kafka_consumer): Add sarama debug logs (#12304) * feat(inputs.http_response): Add User-Agent header (#12324) * feat(inputs.sqlserver): add metric available_physical_memory_kb in sqlserver_server_properties (#12292) * docs: specify the time for nightly builds (#12312) * feat(inputs.modbus): optimize grouped requests (#11106) * fix(readme): update bigbluebutton-telegraf-plugin url (#12310) * feat(parsers.csv): add option for overwrite tags (#12008) * fix(inputs.directory_monitor): Close input file before removal (#12294) * fix(inputs.gnmi): Do not provide empty prefix for subscription request. (#12275) * fix(outputs.azure_data_explorer): update test call to NewSerializer (#12291) * fix(inputs.prometheus): correctly default to 9102 port (#12282) * feat(inputs.tail): add option to preserve newlines for multiline data (#12281) * docs(inputs.kube_inventory): update k3s integration guide (#12285) * feat: add method to inform of deprecated plugin option values (#11987) * refactor(outputs.azure_data_explorer): removed deprecated code (#11951) * fix(inputs.promethes): respect selectors when scraping pods (#12278) * fix(inputs.socket_listener): ensure closed connection (#12280) * feat(inputs.snmp): convert enum values (#11872) * feat(inputs.prometheus): Allow explicit scrape configuration without annotations (#11962) * feat(inputs.prometheus): Add support for custom header (#12050) * fix(output.datadog): log response in case of non 2XX response from API (#12201) * fix(inputs.gnmi): Fix empty name for Sonic device (#12258) * feat(parsers.xpath): Allow to specify byte-array fields to encode in HEX (#11999) * test(outputs.sql): print out what we get, bump time required (#12262) * feat(inputs.modbus): Add 8-bit integer types (#12255) * test(outputs.sql): do not write to file during testing (#12203) * fix(input.modbus): Add workaround to read field in separate requests (#12235) * feat(serializers.json): Support serializing JSON nested in string fields (#12260) * feat(outputs.graylog): implement optional connection retries (#11950) * feat(inputs.socket_ listener): Allow to specify message separator for streams (#12187) * feat: Add Azure Monitor input plugin (#10103) * fix(input.redis_sentinel): fix sentinel and replica stats gathering (#12229) * feat(parsers.binary): handle hex-encoded inputs (#12232) * feat(inputs.sqlserver): add data and log used space metrics for Azure SQL DB (#12126) * docs(inputs.x509_cert): Add documentation for 'exclude_root_certs' option. (#12249) * feat(inputs.tail): Allow handling of quoted strings spanning multiple lines (#11762) * fix: Cleanup and add sample.conf embedding (#12244) * feat(inputs.ethtool): Gather statistics from namespaces (#11895) * test(inputs.mongodb): update integration test logic (#12241) * feat(inputs.modbus): Optimize requests (#11273) * docs: add telegraf Homebrew formula link (#12233) * docs(inputs.modbus): delete sample.conf (#12223) * docs: add Contributor Covenant Code of Conduct (#12215) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#12205) * docs(outputs.postgresql): fix example template queries that manage a view (#12190) * docs(outputs.kafka): specify broker behavior (#12161) * fix: Run processors in config order (#12113) * feat: add arm64 Windows builds (#12130) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#12194) * fix(inputs.ping): Avoid -x/-X on FreeBSD 13 and newer with ping6 (#12171) * test(inputs.opcua_listener): harden tests (#12193) * fix(agent): watch for changes in configuration files in config directories (#12127) * fix: Add support for opcua datetime values (#12101) * fix(outputs.prometheus): expire during add (#12160) * feat!: Disable [[outputs.influxdb]] in sample config (#12158) * test(outputs.sql): simplify clickhouse test (#12189) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#12188) * fix(inputs.cloudwatch): Fix multiple namespaces issue (#12177) * fix(outputs.yandex_cloud_monitoring): catch int64 values (#12156) * feat(inputs.tomcat): add source tag (#12170) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#12157) * docs(inputs.syslog): mention usage of tcp4/6 (#12168) * docs: update commands and flags page (#12162) * feat: Add exponential backoff when connecting or reconnecting and allow plugin to start without making initial connection (#12111) * fix: inputs.gnmi add support for decimal_val as per gnmi v0.8.0 (#12140) * test(outputs.sql): wait for db dump file to exist (#12149) * feat(inputs.system): collect unique user count logged in (#12147) * Update changelog for v1.24.3 * fix(inputs.directory_monitor): allow cross filesystem directories (#12124) * fix(serializers.splunkmetric): provide option to remove event metric tag (#12024) * feat(parsers): Add binary parser (#11552) * docs: ran make docs (#12120) * docs(aggregators.derivative): Remove incorrect comment (#12026) * docs(serializers.json): specify version of jsonata used (#12117) * fix(processors.parser): Keep name of original metric if parser doesn't return one (#12116) * docs: add global configuration header (#12107) * fix(inputs.modbus): Handle field-measurement definitions correctly on duplicate field check (#12109) * test(outputs.graylog): skip tcp/udp tests on windows & darwin (#12110) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#12059) * feat(inputs.opcua_listener): OPC UA Event subscriptions (#11786) * feat(ethtool): Possibility to skip gathering metrics for downed interfaces (#12087) * feat(tools): Allow to markdown includes for sections (#12075) * fix(config): set default parser (#12076) * fix(processors): Correctly setup processors (#12081) * fix: update systemd unit description (#12093) * feat(inputs.apcupsd): Added new fields to apcupsd (#12014) * test(outputs.sql): further wait for clickhouse writes (#12086) * test: update integration test occurrences (#12085) * fix(agent): panic as tickers slice was off-by-one in size (#12077) * test(inputs.mcrouter): add eventually to pause for metrics (#12074) * fix: Restore warning on unused config option(s) (#12063) * fix(inputs.kafka): switch to sarama's new consumer group rebalance strategy setting (#12064) * docs(inputs.http): add use system proxy config option (#12069) * fix(inputs.modbus): add slave id to failing connection (#12038) * docs(aggregators.starlark): corrected typo mentioning wrong func name (#12066) * fix(inputs.conntrack): Skip gather tests if conntrack kernel module is not loaded. (#12062) * fix(inputs.zookeeper): add the ability to parse floats as floats (#12023) * test: add additional checks, waits in integration tests (#12056) * Revert "feat: run govulncheck nightly on master branch (#11977)" (#12054) * docs(inputs.mongodb): update supported versions (#12048) * fix(inputs.mongodb): ServerStatus int64 to float(#12049) * feat(inputs.modbus): add config option to pause after connect (#11983) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#12032) * feat: run govulncheck nightly on master branch (#11977) * feat: New Intel DLB input plugin (#11824) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#12005) * docs(inputs.tomcat): clean up fields (#12018) * fix(regression): Fixes problem with metrics not exposed by plugins. (#12016) * refactor: Prevent import from going the wrong way (#12004) * feat: New input plugin for libvirt (#11814) * test: add dovecot integration test (#11996) * test: add integration test for recovering after invalid data (#11994) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11998) * fix(inputs.syslog): print error when no error or message given (#11997) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11992) * feat(inputs.conntrack): Parse conntrack stats (#8958) * fix(parsers.json_v2): Remove BOM before parsing (#11926) * fix(inputs.opcua): Add metric tags to node (#11993) * feat(outputs.event_hubs): Expose max message size batch option (#11991) * feat(parsers.xpath): Add option to skip (header) bytes (#11933) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11965) * fix: Setting `enable_tls` has incorrect default value (#11941) * fix(inputs.modbus): Improve duplicate field checks (#11912) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11915) * docs: add libvirt plugin to external input plugins list (#11828) * build(rpm): Allow building RPMs cross-OS (#11904) * Update changelog for 1.24.2 release * feat(outputs.azure_data_explorer): Added support for streaming ingestion for ADX output plugin (#11874) * fix(parser.xpath): Handle floating-point times correctly (#11875) * fix(cli): Support old style of filtering sample configs (#11896) * fix(inputs.influxdb_listener): error on invalid precision (#11866) * docs: Ran `make docs` (#11914) * docs(inputs.opcua): fix typo (#11897) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11900) * feat(inputs.diskio): Allow selecting devices by ID (#11703) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11885) * feat(inputs.amqp_consumer): Determine content encoding automatically (#11860) * fix(common.kafka): Enable TLS in Kafka plugins without custom config (#11519) * docs(inputs.cpu): explain macos cpu support requires cgo (#11883) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11884) * feat(inputs.opcua): add use regular reads workaround (#11630) * fix(inputs.mqtt_consumer): rework connection and message tracking (#10696) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11881) * fix(inputs.internet_speed): rename enable_file_download to match upstream intent (#11877) * build: github Workflows security hardening (#11843) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11859) * fix: Update dependencies for OpenBSD support (#11861) * fix(inputs.mongodb): actually start plugin correctly (#11849) * fix: re-allow specifying the influx parser type (#11806) * fix(internal.ethtool): avoid internal name conflict with aws (#11696) * docs(inputs.nvidia_smi): Example of how to enable nvidia-smi via docker compose (#11833) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11842) * feat(outputs.timestream): Support ingesting multi-measures (#11385) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11838) * feat(inputs.gcs): Google Cloud Storage Input Plugin (#8413) * Update changelog for v1.24.1 * fix(parsers.csv): Remove direct checks for the parser type (#11825) * fix(inputs.ntpq): Handle pools with "-" when (#11827) * docs: update customization docs (#11822) * fix(parsers): Unwrap parser and remove some special handling (#11826) * fix: Enable global confirmation for installing mingw (#11835) * fix(parsers): Memory leak for plugins using ParserFunc. (#11815) * fix(inputs.modbus): Do not fail if a single slave reports errors (#11785) * fix(parsers.xpath): Add array index when expanding names. (#11781) * fix(inputs.ceph): Modernize Ceph input plugin metrics (#10797) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11800) * feat(inputs.knx_listener): support TCP as transport protocol (#11783) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11798) * feat(inputs.prometheus): use system wide proxy settings (#11729) * docs: Remove warning not to remove go:embed (#11797) * fix: Clear error message when provided config is not a text file (#11787) * docs: Update etc/telegraf.conf and etc/telegraf_windows.conf (#11792) * feat(processors.parser): Add option to parse tags (#11228) telegraf-1.26.3-bp154.2.6.1.src.rpm telegraf-1.26.3-bp154.2.6.1.x86_64.rpm telegraf-1.26.3-bp154.2.6.1.i586.rpm telegraf-1.26.3-bp154.2.6.1.aarch64.rpm telegraf-1.26.3-bp154.2.6.1.s390x.rpm openSUSE-2023-117 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - build with llvm15 on Leap - Chromium 113.0.5672.126 (boo#1211442): * CVE-2023-2721: Use after free in Navigation * CVE-2023-2722: Use after free in Autofill UI * CVE-2023-2723: Use after free in DevTools * CVE-2023-2724: Type Confusion in V8 * CVE-2023-2725: Use after free in Guest View * CVE-2023-2726: Inappropriate implementation in WebApp Installs * Various fixes from internal audits, fuzzing and other initiatives - Chromium 113.0.5672.92 (boo#1211211) - Multiple security fixes (boo#1211036): * CVE-2023-2459: Inappropriate implementation in Prompts * CVE-2023-2460: Insufficient validation of untrusted input in Extensions * CVE-2023-2461: Use after free in OS Inputs * CVE-2023-2462: Inappropriate implementation in Prompts * CVE-2023-2463: Inappropriate implementation in Full Screen Mode * CVE-2023-2464: Inappropriate implementation in PictureInPicture * CVE-2023-2465: Inappropriate implementation in CORS * CVE-2023-2466: Inappropriate implementation in Prompts * CVE-2023-2467: Inappropriate implementation in Prompts * CVE-2023-2468: Inappropriate implementation in PictureInPicture chromedriver-113.0.5672.126-bp154.2.87.1.x86_64.rpm chromium-113.0.5672.126-bp154.2.87.1.src.rpm chromium-113.0.5672.126-bp154.2.87.1.x86_64.rpm openSUSE-2023-118 moderate openSUSE Backports SLE-15-SP4 Update This update for erofs-utils fixes the following issues: Update to release 1.6 * support fragments by using `-Efragments` * support compressed data deduplication by using `-Ededupe` * (erofsfuse) support extended attributes * (mkfs.erofs) support multiple algorithms in a single image * (mkfs.erofs) support chunk-based sparse files * (mkfs.erofs) add volume-label setting support * (mkfs.erofs) add uid/gid offsetting support * (mkfs.erofs) pack files entirely by using `-Eall-fragments` * various bugfixes and cleanups; Update to release 1.5 * fsck.erofs: support filesystem extraction * support ztailpacking inline feature for compressed files * dump.erofs: support listing directories * more liberofs APIs (including iterate APIs) * use mtime to allow more control over the timestamps Update to release 1.4 * mkfs.erofs: support pre-defined UUIDs and SELinux file contexts * Support new big pcluster feature together with Linux 5.13+ * Added support to override UID/GID * Introduced preliminary dump.erofs and fsck.erofs * Introduced MicroLZMA compression support erofs-utils-1.6-bp154.2.3.1.src.rpm erofs-utils-1.6-bp154.2.3.1.x86_64.rpm erofs-utils-1.6-bp154.2.3.1.i586.rpm erofs-utils-1.6-bp154.2.3.1.aarch64.rpm erofs-utils-1.6-bp154.2.3.1.ppc64le.rpm erofs-utils-1.6-bp154.2.3.1.s390x.rpm openSUSE-2023-155 important openSUSE Backports SLE-15-SP4 Update This update for qt-creator fixes the following issue: - rebuild against current llvm15 update to fix dependency issues (boo#1211973). qt5-creator-7.0.2-bp154.2.5.1.src.rpm qt5-creator-7.0.2-bp154.2.5.1.x86_64.rpm qt5-creator-plugin-devel-7.0.2-bp154.2.5.1.x86_64.rpm qt6-creator-7.0.2-bp154.2.5.1.src.rpm qt6-creator-7.0.2-bp154.2.5.1.x86_64.rpm qt6-creator-plugin-devel-7.0.2-bp154.2.5.1.x86_64.rpm qt5-creator-7.0.2-bp154.2.5.1.aarch64.rpm qt5-creator-plugin-devel-7.0.2-bp154.2.5.1.aarch64.rpm qt6-creator-7.0.2-bp154.2.5.1.aarch64.rpm qt6-creator-plugin-devel-7.0.2-bp154.2.5.1.aarch64.rpm qt5-creator-7.0.2-bp154.2.5.1.ppc64le.rpm qt5-creator-plugin-devel-7.0.2-bp154.2.5.1.ppc64le.rpm qt6-creator-7.0.2-bp154.2.5.1.ppc64le.rpm qt6-creator-plugin-devel-7.0.2-bp154.2.5.1.ppc64le.rpm qt5-creator-7.0.2-bp154.2.5.1.s390x.rpm qt5-creator-plugin-devel-7.0.2-bp154.2.5.1.s390x.rpm qt6-creator-7.0.2-bp154.2.5.1.s390x.rpm qt6-creator-plugin-devel-7.0.2-bp154.2.5.1.s390x.rpm openSUSE-2023-157 important openSUSE Backports SLE-15-SP4 Update This update for keepass fixes the following issues: Update to 2.54 * Security: + Improved process memory protection of secure edit controls (CVE-2023-32784, boo#1211397). * New Features: + Triggers, global URL overrides, password generator profiles and a few more settings are now stored in the enforced configuration file. + Added dialog 'Enforce Options (All Users)' (menu 'Tools' → 'Advanced Tools' → 'Enforce Options'), which facilitates storing certain options in the enforced configuration file. + In report dialogs, passwords (and other sensitive data) are now hidden using asterisks by default (if hiding is activated in the main window); the hiding can be toggled using the new '***' button in the toolbar. + The 'Print' command in most report dialogs now requires the 'Print' application policy flag, and the master key must be entered if the 'Print - No Key Repeat' application policy flag is deactivated. + The 'Export' command in most report dialogs now requires the 'Export' application policy flag, and the master key must be entered. + Single line edit dialogs now support hiding the value using asterisks. + Commands that require elevation now have a shield icon like on Windows. + TrlUtil: added 'Move Selected Unused Text to Dialog Control' command. * Improvements: * The content mode of the configuration elements '/Configuration/Application/TriggerSystem', '/Configuration/Integration/UrlSchemeOverrides' and '/Configuration/PasswordGenerator/UserProfiles' is now 'Replace' by default. * The built-in override for the 'ssh' URI scheme is now deactivated by default (it can be activated in the 'URL Overrides' dialog). * When opening the password generator dialog without a derived profile, the '(Automatically generated passwords for new entries)' profile is now selected by default, if profiles are enabled (otherwise the default profile is used). * The clipboard workarounds are now disabled by default (they are not needed anymore on most systems). * Improved clipboard clearing. * Improved starting of an elevated process. * Bugfixes: + In report dialogs, the 'Print' and 'Export' commands now always use the actual data (in previous versions, asterisks were printed/exported when the application policy flag 'Unhide Passwords' was turned off). - Update to 2.53.1 * When testing a KDF ('Test' button in the database settings dialog), KeePass now spawns a child process that performs the KDF computation (which allows to cancel the test more cleanly in the case of excessive parameters; security is unaffected, because dummy data is used for the test). * Removed the 'Export - No Key Repeat' application policy flag; KeePass now always asks for the current master key when trying to export data. * Minor other improvements. - Update to 2.53 * New Features: + For each entry listed on the 'History' tab page of the entry dialog, the fields modified with respect to the previous entry are displayed. + Added 'Compare' button on the 'History' tab page of the entry dialog; when two (not necessarily consecutive) history entries are selected, clicking the button shows a detailed comparison (with values, etc.). + When editing an entry, the history entry list of the entry dialog now contains an entry called 'Dialog (unsaved)', which represents all data entered in the current dialog (other tab pages). + When editing an entry, the history entry list of the entry dialog now contains an entry called 'Current (TIME)', which is the entry that is currently stored in the database (without any changes made in the current dialog). + Added 'History' command in the 'Find' main menu; it lists all entry modifications (sorted by time). + Added filter box in most report dialogs (last modified entries, history, large entries, similar password clusters, password quality, history entry comparison, database file search, ...). + Added 'Print' button in most report dialogs. + Added 'Export' button in most report dialogs; supported formats are CSV and HTML. + Added {EDGE} placeholder, which is replaced by the executable path of the new (Chromium-based) Microsoft Edge, if installed. + Added URL override suggestion for Microsoft Edge in private mode in the URL override suggestions drop-down list of the entry dialog. + Added optional built-in global URL overrides for opening HTTP/HTTPS URLs with Microsoft Edge in private mode. + When trying to rearrange entries while automatic sorting is activated, KeePass now asks whether to deactivate automatic sorting. + Added access keys in the tags button drop-down menu of the entry/group dialogs. + Added access keys in the 'View' → 'Sort By' menu. + Added access keys in the entry templates menu. + Added access keys in the 'Perform Auto-Type' menu (which is displayed if the 'Show additional auto-type menu commands' option is turned on). + Added {HMACOTP} and {TIMEOTP} in the 'Perform Auto-Type' menu. + Added keyboard shortcut Ctrl+T for the 'Copy Time-Based OTP' entry data command. + Added keyboard shortcut Ctrl+Shift+T for the 'Show Time-Based OTP' entry data command. + Enhanced Password Depot XML import module to support the new format (added support for the new node names, group icons, recycle bin, tags, favorites, auto-type delay conversion, history, enhanced icon mapping, enhanced date/time parsing, ...). + Added border for headings in HTML exports/printouts. + Added support for running KeePass in FIPS mode. * Improvements: + History entries listed on the 'History' tab page of the entry dialog are now sorted from newest to oldest. + The icons in the list on the 'History' tab page of the entry dialog now indicate the type of the entry. + History entry controls of the entry dialog are now disabled when creating a new entry. + The history entry 'Restore' button is now disabled when any change has been made in the current dialog. + The 'Password modified' time is now updated immediately when deleting a history entry. + Improved URL override suggestion for Microsoft Edge in the URL override suggestions drop-down list of the entry dialog (changed from 'microsoft-edge:{URL}' to 'cmd://{EDGE} "{URL}"'). + Improved optional built-in global URL overrides for opening HTTP/HTTPS URLs with Microsoft Edge (changed from 'microsoft-edge:{BASE}' to 'cmd://{EDGE} "{BASE}"'). + Reordered web browser URL overrides alphabetically. + Improved dynamic menu item access key assignment. + Improved item separation in the entry details view. + In most places, groups in a group path are now separated by right arrows instead of hyphens. + Improved last modification time comparison for plugin data dictionaries. + Unified generation of common HTML parts. + The 'Copy Initial Password' command in the 'Tools' menu of the entry dialog now requires the 'Copy' application policy flag. + Various UI text improvements. + Various code optimizations. + Minor other improvements. * Bugfixes: + The history entry 'Restore' button now always works as expected. - Update to 2.52 * New Features: + Added 'Copy Initial Password' command in the tools menu of the entry dialog; it copies (to the clipboard) the password that was current when the dialog was opened. + When multiple entries are selected (containing at least one attachment), the number of attachments is now displayed in the 'Attachments' submenu of the entry menu. + Added option 'Alt. item background color' (supporting the states 'Off', 'On, default color' and 'On, custom color'); this combines the previous two options 'Use alternating item background colors' and 'Custom alt. item color'. + Comment placeholders ({C:...}) may now contain balanced braces. + In the auto-type entry selection dialog, values in the 'Sequence - Comments' column are dereferenced now. + The time when the password of an entry was last changed is now displayed in the entry dialog on the 'History' tab page. + Added support for importing 1Password 8.7 1PUX files. + Added support for importing Key Folder 1.22 XML files. + Sticky Password XML import: added support for importing groups and expiry dates. + Steganos Password Manager CSV import: added support for the new encoding of double quotes. + Bitwarden JSON import: time-based one-time password generator settings are converted automatically now. + KeePass now checks the 'KeePass.exe.config' file and shows a warning message when finding a problem. + For development builds: added command for showing GC information. + Plugins can now load the header of a database file more easily. + Plugins can now subscribe to a master key change event. + TrlUtil: added workaround for .NET tab control focus bug. * Improvements: + Moved the command 'Save Attached File(s) To' into the 'Attachments' submenu of the entry menu and renamed it to 'Save File(s) To'. + The command for saving attached files is now available only if at least one of the selected entries has at least one attachment. + The {APPACTIVATE ...} auto-type command now ignores the options 'Cancel auto-type when the target window changes' and 'Cancel auto-type when the target window title changes'. + {APPACTIVATE ...} auto-type command: if the specified window does not exist or cannot be focused, auto-type is aborted now. + Unified creation of fields with indices. + Improved database modification state and UI updating after imports/synchronizations. + In the master key creation/prompt dialogs, the [OK] button is now disabled when checking the 'Key file/provider' check box and selecting '(None)' in the combo box. + Improved drop-down menu width adjustment for certain combo boxes in the options dialog. + Improved hashing performance of protected binaries, UUIDs, ... + Performance improvements related to empty arrays. + Improved Mono framework version detection. + TrlUtil: improved preview dialog update performance. + Various UI text improvements. + Various code optimizations. + Minor other improvements. * Bugfixes: * Fixed a bug that caused a minimized main window to be restored to a normal window instead of a maximized window in certain situations. * The 'Help' menu item in the entry dialog and the 'Help' button in the entry string field dialog now open the correct help sections. - Update to 2.51.1 * New Features: + Most dialogs with fixed size now detect whether they fit onto the current screen, and when a dialog does not fit (e.g. due to a very high DPI factor), its size is reduced and scroll bars are displayed. + Added plural entry command names in the main window (e.g. the command for editing the currently selected entry/entries is now called either 'Edit Entry' or 'Edit Entries', depending on the number of selected entries). + Added tooltip for the main part of the status bar of the main window. + Enhanced color buttons (tooltips, accessible names, ...) in the entry dialog, in the database settings dialog and in the options dialog. + Added 'Interface (2)' tab page in the options dialog, renamed the existing 'Interface' tab page to 'Interface (1)', moved some controls from 'Interface (1)' to 'Interface (2)'. + Enhanced font selection controls (with a checkbox that allows to return to the default, the button shows the currently selected font, tooltip, improved accessibility, ...) in the options dialog. + Added help links 'Dark theme' and 'Main font (size)' in the options dialog. + The options 'Custom alt. item color' and 'Esc keypress in main window' are now disabled if they are enforced (by an enforced configuration file). + Added support for opening URLs with Waterfox in private mode. + Added dialog for editing (HMAC-based and time-based) one-time password generator settings (can be opened using the 'OTP Generator Settings' commands in the entry dialog or in the 'Edit Entry (Quick)' menu of the main window). + Added entry commands 'Copy HMAC-Based OTP', 'Show HMAC-Based OTP', 'Copy Time-Based OTP' and 'Show Time-Based OTP' (in the 'Other Data' menu). + Added entry commands 'Copy Title' and 'Copy Notes' (in the 'Other Data' menu). + When switching to the 'Generate' tab page of the password generator dialog (no database open), the entropy collection dialog is displayed now, if the option 'Show dialog for collecting user input as additional entropy' is turned on. + Added option 'Colorize password characters' in the HTML export/print dialog; the colors are customizable. + Added options 'Custom main font' and 'Custom password font' in the HTML export/print dialog. + Added horizontal entry separator lines in tabular HTML exports/printouts. + In the plugins dialog, the 'Delete old files from cache automatically' option and the 'Clear' button are now disabled if they are enforced (by an enforced configuration file). + Plugins can now change the expiry date of an entry more easily. * Improvements: + Improved main window initialization performance. + Improved initial emergence of a minimized or maximized main window (less flickering, improved performance, ...). + Improved names/tooltips of the database toolbar buttons in the main window. + Improved handling of bold/italic list fonts. + Improved entry list update performance in certain situations. + Improved dynamic menu deconstruction performance. + Fields starting with 'HmacOtp-' or 'TimeOtp-' are not shown in the entry string copy menu anymore. + Improved tooltips and accessibility of password repetition text boxes. + When a dark theme is active, the error background color of text boxes is darker now. + Improved accessibility of expiry control groups. + The title of the master key creation/change dialog is now adjusted to the context. + Improved 'Compression' tab page of the database settings dialog (extended 'None' option description, improved accessibility, ...). + If no color has been specified, the 'Custom alt. item color' button in the options dialog now shows the default color. + Improved HTML generation for HTML exports/printouts. + Improved default fonts used when printing or exporting to HTML. + In block HTML exports/printouts, field names are not italic anymore (unless the user has selected an italic main font). + In HTML exports/printouts, all field values except passwords are trimmed now. + HTML exports/printouts: improved encoding of white-space characters in passwords. + Improved horizontal entry separator lines in block HTML exports/printouts. + TrlUtil: improved control classification. + Increased Authenticode certificate key length. + Improved entry list update performance when duplicating entries. + Various CHM/help improvements. + Various UI text improvements. + Various code optimizations. + Minor other improvements. * Bugfixes: + The option 'Use alternating item background colors' is now compatible with automatic sorting again. + The command line parameter '-preselect:' now works as expected when the option 'Clear master key command line parameters after using them once' is turned on. + Font selections in the options dialog are now applied only when closing the dialog with [OK]. + Fixed an entry list scrolling bug. - Update to 2.50 * New Features: + On most Linux systems, AES-KDF is now about 4 times as fast as before, if the 'libgcrypt' library is installed. + On most Linux systems, Argon2d and Argon2id are now about 3 times as fast as before (for default parameters), if the 'libargon2' library is installed. + The option 'Enter master key on secure desktop' is now also supported by master key prompt dialogs shown during imports, confirmations (before exporting, printing, changing the master key, ...) and trigger actions. + The option 'Enter master key on secure desktop' is now also supported by master key creation/change dialogs. + The key file/provider combo boxes in the master key dialogs now have a tooltip that shows the current value, if the value is very long. + Added password generation button in the entry string field dialog. + When double-clicking the title cell of an entry in the main entry list while holding down the Shift key, the title is now copied to the clipboard. + Added support for detecting the latest versions of Chromium on Unix-like systems (for 'Open with ...' commands in the 'URL(s)' menu, for the {GOOGLECHROME} placeholder, ...). + In the 'URL(s)' menu, there now are separate commands for Google Chrome and Chromium, if both are installed. + Enhanced support for detecting Vivaldi, Brave, Pale Moon and Epiphany. + Added support for importing Kaspersky Password Manager 9.0.2 TXT files. + Bitwarden import module: added support for importing subfolders, and collection names are now imported as tags. + In the 'About KeePass' dialog, each item in the components list now has a tooltip that shows the file/folder path of the component, if it is installed. + In the 'About KeePass' dialog, a double-click onto a component now shows the component file/folder with the file manager. + In the 'About KeePass' dialog, the components list now has a context menu that provides the following new commands: 'Show with File Manager', 'Copy Version/Status' and 'Copy Path'. * Improvements: + If the option 'An entry matches if one of its tags is contained in the target window title' is turned on, auto-type now additionally considers tags inherited from groups. + The built-in password generation patterns 'Hex Key - *-Bit' now use upper-case hexadecimal symbols. + Improved Spr variance check of the password generator (custom string references, ...). + All commands in the password generator menu (shown by the password generator buttons in entry/string dialogs) support the option 'Show dialog for collecting user input as additional entropy' now. * Bugfixes: + Column header context menus are not shown for non-report list views anymore. + When copying a URL to the clipboard fails, the main entry list is updated now. + Toggling the password generator option 'Show dialog for collecting user input as additional entropy' now causes a switch to the '(Custom)' profile. + In the TAN wizard dialog, group names containing ampersands are displayed correctly now. - Add recommends to libargon2-1 and libgrypt20 as Keepass can use those for faster operations. keepass-2.54-bp154.2.3.1.noarch.rpm keepass-2.54-bp154.2.3.1.src.rpm openSUSE-2023-124 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - Chromium 114.0.5735.106 (boo#1212044): * CVE-2023-3079: Type Confusion in V8 - Chromium 114.0.5735.90 (boo#1211843): * CSS text-wrap: balance is available * Cookies partitioned by top level site (CHIPS) * New Popover API - Security fixes: * CVE-2023-2929: Out of bounds write in Swiftshader * CVE-2023-2930: Use after free in Extensions * CVE-2023-2931: Use after free in PDF * CVE-2023-2932: Use after free in PDF * CVE-2023-2933: Use after free in PDF * CVE-2023-2934: Out of bounds memory access in Mojo * CVE-2023-2935: Type Confusion in V8 * CVE-2023-2936: Type Confusion in V8 * CVE-2023-2937: Inappropriate implementation in Picture In Picture * CVE-2023-2938: Inappropriate implementation in Picture In Picture * CVE-2023-2939: Insufficient data validation in Installer * CVE-2023-2940: Inappropriate implementation in Downloads * CVE-2023-2941: Inappropriate implementation in Extensions API chromedriver-114.0.5735.106-bp154.2.90.1.x86_64.rpm chromium-114.0.5735.106-bp154.2.90.1.src.rpm chromium-114.0.5735.106-bp154.2.90.1.x86_64.rpm chromedriver-114.0.5735.106-bp154.2.90.1.aarch64.rpm chromium-114.0.5735.106-bp154.2.90.1.aarch64.rpm openSUSE-2023-128 moderate openSUSE Backports SLE-15-SP4 Update This update for mirrorsorcerer fixes the following issues: - Update to version 0.1.1~3: * Add -u to allow upstream mirror restoring. * Add br-1 br-2 for replaceable * Phase out - Update to version 0.1.1~0: * Improve mirrorsorcerer unit file * Add the CF front to replaceable to undo some user issues - Update to version 0.1.0~23: * fix pool - mirrorcache-br.opensuse.org - Update to version 0.1.0~22: * Undo mirror change, fix file rewrite - Update to version 0.1.0~20: * Add new mirrorcache instances * Update README mirrorsorcerer-0.1.1~3-bp154.2.3.1.src.rpm mirrorsorcerer-0.1.1~3-bp154.2.3.1.x86_64.rpm mirrorsorcerer-0.1.1~3-bp154.2.3.1.aarch64.rpm openSUSE-2023-132 critical openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 114.0.5735.133 (boo#1212302): - CVE-2023-3214: Use after free in Autofill payments - CVE-2023-3215: Use after free in WebRTC - CVE-2023-3216: Type Confusion in V8 - CVE-2023-3217: Use after free in WebXR - Various fixes from internal audits, fuzzing and other initiatives chromedriver-114.0.5735.133-bp154.2.93.1.x86_64.rpm chromium-114.0.5735.133-bp154.2.93.1.src.rpm chromium-114.0.5735.133-bp154.2.93.1.x86_64.rpm chromedriver-114.0.5735.133-bp154.2.93.1.aarch64.rpm chromium-114.0.5735.133-bp154.2.93.1.aarch64.rpm openSUSE-2023-165 moderate openSUSE Backports SLE-15-SP4 Update This update for fwts fixes the following issues: Update to version 23.05.00: * lib: fwts_version.h - update to V23.05.00 * debian: update changelog * auto-packager: mkpackage.sh remove the dh-dkms dependency * debian: control: add build depend dh-dkms * auto-packager: mkpackage.sh: add mantic * fwts_framwork: add ebbr test for RISC-V * s3: fix the display time of resume for Timekeeping suspended string missing * lib: fwts_framework: add EBBR to category * acpi: button: remove check fixed hardware & control method power buttons * fwts-test: add regression tests for IVRS * acpi: ivrs: add tests for ACPI IVRS table * acpi: cedt: remove unused code * dmicheck: add more checks for invalid serial number string * ACPICA: Update to version 20230331 * dmicheck: extent the dmi_patterns for the default serial number string fwts-23.05.00-bp154.2.18.1.src.rpm fwts-23.05.00-bp154.2.18.1.x86_64.rpm fwts-23.05.00-bp154.2.18.1.i586.rpm fwts-23.05.00-bp154.2.18.1.aarch64.rpm openSUSE-2023-162 moderate openSUSE Backports SLE-15-SP4 Update This update for xonotic fixes the following issues: Update to version 0.8.6 SECURITY ALERT: A bug was discovered in versions older than 0.8.6 that is believed to be exploitable by malicious server admins to crash clients or, if they defeat mitigations, execute arbitrary code. (boo#1212632) update to 0.8.5: * https://xonotic.org/posts/2022/xonotic-0-8-5-release/ xonotic-0.8.6-bp154.3.3.1.src.rpm xonotic-0.8.6-bp154.3.3.1.x86_64.rpm xonotic-data-0.8.6-bp154.3.3.1.noarch.rpm xonotic-server-0.8.6-bp154.3.3.1.x86_64.rpm xonotic-0.8.6-bp154.3.3.1.aarch64.rpm xonotic-server-0.8.6-bp154.3.3.1.aarch64.rpm xonotic-0.8.6-bp154.3.3.1.ppc64le.rpm xonotic-server-0.8.6-bp154.3.3.1.ppc64le.rpm xonotic-0.8.6-bp154.3.3.1.s390x.rpm xonotic-server-0.8.6-bp154.3.3.1.s390x.rpm openSUSE-2023-160 important openSUSE Backports SLE-15-SP4 Update This update for gifsicle fixes the following issues: - Update to version 1.94: * Fix some bugs, including fix for CVE-2023-36193: heap buffer overflow (read) via the ambiguity_error component at /src/clp.c (boo#1212645). gifsicle-1.94-bp154.2.3.1.src.rpm gifsicle-1.94-bp154.2.3.1.x86_64.rpm gifsicle-1.94-bp154.2.3.1.i586.rpm gifsicle-1.94-bp154.2.3.1.aarch64.rpm gifsicle-1.94-bp154.2.3.1.ppc64le.rpm gifsicle-1.94-bp154.2.3.1.s390x.rpm openSUSE-2023-159 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - Chromium 114.0.5735.198 (boo#1212755): * CVE-2023-3420: Type Confusion in V8 * CVE-2023-3421: Use after free in Media * CVE-2023-3422: Use after free in Guest View - Install Qt5 library & prepare for Qt6 in 115 chromedriver-114.0.5735.198-bp154.2.96.1.x86_64.rpm chromium-114.0.5735.198-bp154.2.96.1.src.rpm chromium-114.0.5735.198-bp154.2.96.1.x86_64.rpm chromedriver-114.0.5735.198-bp154.2.96.1.aarch64.rpm chromium-114.0.5735.198-bp154.2.96.1.aarch64.rpm openSUSE-2023-167 moderate openSUSE Backports SLE-15-SP4 Update This update for orthanc fixes the following issues: orthanc was updated to version 1.12.0 * Support for labels associated with patients, studies, series, and instances * Added a sample plugin bringing multitenant DICOM support through labels * Many other fixes and improvements, see NEWS orthan was updated to version 1.11.3 * Many improvements, for detailed log see NEWS orthanc-1.12.0-bp154.2.6.1.src.rpm orthanc-1.12.0-bp154.2.6.1.x86_64.rpm orthanc-devel-1.12.0-bp154.2.6.1.x86_64.rpm orthanc-doc-1.12.0-bp154.2.6.1.noarch.rpm orthanc-source-1.12.0-bp154.2.6.1.x86_64.rpm orthanc-1.12.0-bp154.2.6.1.aarch64.rpm orthanc-devel-1.12.0-bp154.2.6.1.aarch64.rpm orthanc-source-1.12.0-bp154.2.6.1.aarch64.rpm orthanc-1.12.0-bp154.2.6.1.ppc64le.rpm orthanc-devel-1.12.0-bp154.2.6.1.ppc64le.rpm orthanc-source-1.12.0-bp154.2.6.1.ppc64le.rpm openSUSE-2023-169 moderate openSUSE Backports SLE-15-SP4 Update This update for python-zope.schema fixes the following issues: - Fixed outsized integer test values that break tests on newer Python versions (boo#1210186) python-zope.schema-5.0.1-bp154.2.3.1.src.rpm python3-zope.schema-5.0.1-bp154.2.3.1.noarch.rpm python-zope.schema-test-5.0.1-bp154.2.3.1.src.rpm openSUSE-2023-168 moderate openSUSE Backports SLE-15-SP4 Update This update for sshuttle fixes the following issues: - Remove the systemd protection settings: * PrivateDevices=true * ProtectHostname=true * ProtectClock=true * ProtectKernelTunables=true * ProtectKernelModules=true * ProtectKernelLogs=true * RestrictRealtime=true from service file as they imply NNP, which doesn't work with the sudo setup sshuttle uses (boo#1212949) sshuttle-1.1.0-bp154.2.3.1.noarch.rpm sshuttle-1.1.0-bp154.2.3.1.src.rpm openSUSE-2023-174 important openSUSE Backports SLE-15-SP4 Update This update for python-Django fixes the following issues: - CVE-2023-36053: Fixed potential regular expression denial of service vulnerability in EmailValidator/URLValidator (boo#1212742) python-Django-2.2.28-bp154.2.12.1.src.rpm python3-Django-2.2.28-bp154.2.12.1.noarch.rpm openSUSE-2023-182 moderate openSUSE Backports SLE-15-SP4 Update This update provides apache2-mod_auth_gssapi to packagehub. apache2-mod_auth_gssapi-1.6.3-bp154.2.1.src.rpm apache2-mod_auth_gssapi-1.6.3-bp154.2.1.x86_64.rpm apache2-mod_auth_gssapi-1.6.3-bp154.2.1.aarch64.rpm apache2-mod_auth_gssapi-1.6.3-bp154.2.1.ppc64le.rpm apache2-mod_auth_gssapi-1.6.3-bp154.2.1.s390x.rpm openSUSE-2023-177 important openSUSE Backports SLE-15-SP4 Update This update of python-Django1 fixes the following issue: - CVE-2023-36053: Fixed potential regular expression denial of service vulnerability in EmailValidator/URLValidator (boo#1212742) python-Django1-1.11.29-bp154.2.6.1.src.rpm python3-Django1-1.11.29-bp154.2.6.1.noarch.rpm openSUSE-2023-183 moderate openSUSE Backports SLE-15-SP4 Update This update for iniparser fixes the following issues: - CVE-2023-33461: Fixed a NULL pointer dereference in iniparser_getboolean() (boo#1211889) iniparser-4.1-bp154.2.3.1.src.rpm libiniparser-devel-4.1-bp154.2.3.1.x86_64.rpm libiniparser1-4.1-bp154.2.3.1.x86_64.rpm libiniparser-devel-4.1-bp154.2.3.1.i586.rpm libiniparser1-32bit-4.1-bp154.2.3.1.x86_64.rpm libiniparser1-4.1-bp154.2.3.1.i586.rpm libiniparser-devel-4.1-bp154.2.3.1.aarch64.rpm libiniparser1-4.1-bp154.2.3.1.aarch64.rpm libiniparser1-64bit-4.1-bp154.2.3.1.aarch64_ilp32.rpm libiniparser-devel-4.1-bp154.2.3.1.ppc64le.rpm libiniparser1-4.1-bp154.2.3.1.ppc64le.rpm libiniparser-devel-4.1-bp154.2.3.1.s390x.rpm libiniparser1-4.1-bp154.2.3.1.s390x.rpm openSUSE-2023-248 moderate openSUSE Backports SLE-15-SP4 Update This update for qimgv fixes the following issues: - Added a patch for KDE blur. qimgv-1.0.2-bp154.2.3.1.src.rpm qimgv-1.0.2-bp154.2.3.1.x86_64.rpm qimgv-1.0.2-bp154.2.3.1.aarch64.rpm qimgv-1.0.2-bp154.2.3.1.ppc64le.rpm openSUSE-2023-191 moderate openSUSE Backports SLE-15-SP4 Update This update for zabbix fixes the following issues: Updated to latest release 4.0.47, this version fixes CVE-2023-29454 (boo#1213338): - New Features and Improvements + ZBXNEXT-7694 Added "utf8mb3" character set support for MySQL database + ZBX-20946 Enabled Bulgarian, Chinese (zh_TW), German, Greek, Indonesian, Romanian, Spanish and Vietnamese languages in frontend - Bug Fixes + ZBX-22987 Fixed inefficient URL schema validation + ZBX-22688 Fixed AlertScriptPath not allowing links + ZBX-22386 Fixed encoding of HTML entities in the user interface + ZBX-22858 Fixed xss vulnerability in graph item properties + ZBX-22859 Fixed validation of input parameters in action configuration form + ZBX-22622 Fixed alert script path validation + ZBX-22520 Fixed versions of integrations + ZBX-22026 Fixed SNMP agent item going to unsupported state on NULL result + ZBX-22050 Fixed spoofing X-Forwarded-For request header allowing to access Zabbix frontend in maintenance mode + ZBX-21416 Fixed check now not working on calculated items, aggregate checks and some internal items + ZBX-21449 Fixed accessibility attributes + ZBX-21306 Fixed xss in discovery rules + ZBX-21305 Fixed xss in graph + ZBX-20600 Fixed vmware hv.datastore.latency item when multiple datastores with duplicate name + ZBX-20844 Fixed external check becoming unsupported when Zabbix server or Zabbix proxy is stopped + ZBX-19789 Added SourceIP support to ldap simple checks + ZBX-20680 Fixed reflected XSS issues + ZBX-20387 Fixed default language of the setup routine for logged in superadmin users + ZBX-19652 Fixed JavaScript syntax for Internet Explorer 11 compatibility zabbix-4.0.47-bp154.2.3.1.src.rpm zabbix-agent-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-java-gateway-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-phpfrontend-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-proxy-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-proxy-mysql-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-proxy-postgresql-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-proxy-sqlite-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-server-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-server-mysql-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-server-postgresql-4.0.47-bp154.2.3.1.x86_64.rpm zabbix-agent-4.0.47-bp154.2.3.1.i586.rpm zabbix-java-gateway-4.0.47-bp154.2.3.1.i586.rpm zabbix-phpfrontend-4.0.47-bp154.2.3.1.i586.rpm zabbix-proxy-4.0.47-bp154.2.3.1.i586.rpm zabbix-proxy-mysql-4.0.47-bp154.2.3.1.i586.rpm zabbix-proxy-postgresql-4.0.47-bp154.2.3.1.i586.rpm zabbix-proxy-sqlite-4.0.47-bp154.2.3.1.i586.rpm zabbix-server-4.0.47-bp154.2.3.1.i586.rpm zabbix-server-mysql-4.0.47-bp154.2.3.1.i586.rpm zabbix-server-postgresql-4.0.47-bp154.2.3.1.i586.rpm zabbix-agent-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-java-gateway-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-phpfrontend-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-proxy-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-proxy-mysql-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-proxy-postgresql-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-proxy-sqlite-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-server-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-server-mysql-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-server-postgresql-4.0.47-bp154.2.3.1.aarch64.rpm zabbix-agent-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-java-gateway-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-phpfrontend-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-proxy-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-proxy-mysql-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-proxy-postgresql-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-proxy-sqlite-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-server-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-server-mysql-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-server-postgresql-4.0.47-bp154.2.3.1.ppc64le.rpm zabbix-agent-4.0.47-bp154.2.3.1.s390x.rpm zabbix-java-gateway-4.0.47-bp154.2.3.1.s390x.rpm zabbix-phpfrontend-4.0.47-bp154.2.3.1.s390x.rpm zabbix-proxy-4.0.47-bp154.2.3.1.s390x.rpm zabbix-proxy-mysql-4.0.47-bp154.2.3.1.s390x.rpm zabbix-proxy-postgresql-4.0.47-bp154.2.3.1.s390x.rpm zabbix-proxy-sqlite-4.0.47-bp154.2.3.1.s390x.rpm zabbix-server-4.0.47-bp154.2.3.1.s390x.rpm zabbix-server-mysql-4.0.47-bp154.2.3.1.s390x.rpm zabbix-server-postgresql-4.0.47-bp154.2.3.1.s390x.rpm openSUSE-2023-195 moderate openSUSE Backports SLE-15-SP4 Update This update for orthanc-wsi fixes the following issues: Version 2.0 * Support of IIIF * Automated extraction of the imaged volume if using OpenSlide * URI "/wsi/tiles/{id}/{z}/{x}/{y}" supports the "Accept" HTTP header to force JPEG, JPEG2k, or PNG in the decoded tiles Version 1.1 * OrthancWSIDicomizer: Support importing of images from Cytomine orthanc-wsi-2.0-bp154.2.3.1.src.rpm orthanc-wsi-2.0-bp154.2.3.1.x86_64.rpm orthanc-wsi-2.0-bp154.2.3.1.aarch64.rpm orthanc-wsi-2.0-bp154.2.3.1.ppc64le.rpm orthanc-wsi-2.0-bp154.2.3.1.s390x.rpm openSUSE-2023-189 moderate openSUSE Backports SLE-15-SP4 Update This update for python-PyWebDAV3-GNUHealth fixes the following issues: version 0.12.0 * Include version and README.rst in MANIFEST.in * Fix encoding issues in Thunderbird * Enforce str - utf8, not Bytes python-PyWebDAV3-GNUHealth-0.12.0-bp154.2.3.1.src.rpm python3-PyWebDAV3-GNUHealth-0.12.0-bp154.2.3.1.noarch.rpm openSUSE-2023-193 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 115.0.5790.102: * stability fix Chromium 115.0.5790.98: * Security: The Storage, Service Worker, and Communication APIs are now partitioned in third-party contexts to prevent certain types of side-channel cross-site tracking * HTTPS: Automatically and optimistically upgrade all main-frame navigations to HTTPS, with fast fallback to HTTP. * CSS: accept multiple values of the display property * CSS: support boolean context style container queries * CSS: support scroll-driven animations * Increase the maximum size of a WebAssembly.Module() on the main thread to 8 MB * FedCM: Support credential management mediation requirements for auto re-authentication * Deprecate the document.domain setter * Deprecate mutation events * Security fixes (boo#1213462): - CVE-2023-3727: Use after free in WebRTC - CVE-2023-3728: Use after free in WebRTC - CVE-2023-3730: Use after free in Tab Groups - CVE-2023-3732: Out of bounds memory access in Mojo - CVE-2023-3733: Inappropriate implementation in WebApp Installs - CVE-2023-3734: Inappropriate implementation in Picture In Picture - CVE-2023-3735: Inappropriate implementation in Web API Permission Prompts - CVE-2023-3736: Inappropriate implementation in Custom Tabs - CVE-2023-3737: Inappropriate implementation in Notifications - CVE-2023-3738: Inappropriate implementation in Autofill - CVE-2023-3740: Insufficient validation of untrusted input in Themes - Various fixes from internal audits, fuzzing and other initiatives chromedriver-115.0.5790.102-bp154.2.99.1.x86_64.rpm chromium-115.0.5790.102-bp154.2.99.1.src.rpm chromium-115.0.5790.102-bp154.2.99.1.x86_64.rpm chromedriver-115.0.5790.102-bp154.2.99.1.aarch64.rpm chromium-115.0.5790.102-bp154.2.99.1.aarch64.rpm openSUSE-2023-199 moderate openSUSE Backports SLE-15-SP4 Update This update for pgaudit fixes the following issues: - support postress 15 (add 1.7.0) postgresql10-pgaudit-1.2.4-bp154.4.3.1.src.rpm postgresql10-pgaudit-1.2.4-bp154.4.3.1.x86_64.rpm postgresql12-pgaudit-1.4.3-bp154.4.3.1.src.rpm postgresql12-pgaudit-1.4.3-bp154.4.3.1.x86_64.rpm postgresql13-pgaudit-1.5.2-bp154.4.3.1.src.rpm postgresql13-pgaudit-1.5.2-bp154.4.3.1.x86_64.rpm postgresql14-pgaudit-1.6.2-bp154.4.3.1.src.rpm postgresql14-pgaudit-1.6.2-bp154.4.3.1.x86_64.rpm postgresql15-pgaudit-1.7.0-bp154.4.3.1.src.rpm postgresql15-pgaudit-1.7.0-bp154.4.3.1.x86_64.rpm postgresql10-pgaudit-1.2.4-bp154.4.3.1.i586.rpm postgresql12-pgaudit-1.4.3-bp154.4.3.1.i586.rpm postgresql13-pgaudit-1.5.2-bp154.4.3.1.i586.rpm postgresql14-pgaudit-1.6.2-bp154.4.3.1.i586.rpm postgresql15-pgaudit-1.7.0-bp154.4.3.1.i586.rpm postgresql10-pgaudit-1.2.4-bp154.4.3.1.aarch64.rpm postgresql12-pgaudit-1.4.3-bp154.4.3.1.aarch64.rpm postgresql13-pgaudit-1.5.2-bp154.4.3.1.aarch64.rpm postgresql14-pgaudit-1.6.2-bp154.4.3.1.aarch64.rpm postgresql15-pgaudit-1.7.0-bp154.4.3.1.aarch64.rpm postgresql10-pgaudit-1.2.4-bp154.4.3.1.ppc64le.rpm postgresql12-pgaudit-1.4.3-bp154.4.3.1.ppc64le.rpm postgresql13-pgaudit-1.5.2-bp154.4.3.1.ppc64le.rpm postgresql14-pgaudit-1.6.2-bp154.4.3.1.ppc64le.rpm postgresql15-pgaudit-1.7.0-bp154.4.3.1.ppc64le.rpm postgresql10-pgaudit-1.2.4-bp154.4.3.1.s390x.rpm postgresql12-pgaudit-1.4.3-bp154.4.3.1.s390x.rpm postgresql13-pgaudit-1.5.2-bp154.4.3.1.s390x.rpm postgresql14-pgaudit-1.6.2-bp154.4.3.1.s390x.rpm postgresql15-pgaudit-1.7.0-bp154.4.3.1.s390x.rpm openSUSE-2023-242 moderate openSUSE Backports SLE-15-SP4 Update This update for kubo fixes the following issues: - Rename from go-ipfs to kubo to follow upsteam git repo rename - Update to 0.21.0 - for details see * https://github.com/ipfs/kubo/releases/tag/v0.21.0 * Saving previously seen nodes for later bootstrapping * Gateway: DeserializedResponses config flag * Gateway: DAG-CBOR/-JSON previews and improved error pages * Gateway: subdomain redirects are now text/html * Gateway: support for partial CAR export parameters * ipfs dag stat deduping statistics * Accelerated DHT Client is no longer experimental * client/rpc migration of go-ipfs-http-client - Update to 0.18.1 - for details see: * https://github.com/ipfs/kubo/releases/tag/v0.18.1 * https://github.com/ipfs/kubo/releases/tag/v0.18.0 * Support InterPlanetary Network Indexers * Support DAG-JSON and DAG-CBOR in gateways * Enable WebTransport by default * Improve libp2p resource management integration - Update to 0.17.0 - for details see: * https://github.com/ipfs/kubo/releases/tag/v0.17.0 * https://github.com/ipfs/kubo/releases/tag/v0.16.0 * https://github.com/ipfs/kubo/releases/tag/v0.15.0 * https://github.com/ipfs/kubo/releases/tag/v0.14.0 * libp2p resource management enabled by default * Implicit connection manager limits * TAR Response Format on Gateways * Dialling /wss peer behind a reverse proxy * More configurable delegated routing system * WebTransport new experimental Transport * Hardened IPNS record verification * Web Gateways now support _redirects files * Add files to MFS with ipfs add --to-files * Blake 3 support * Fx Options plugin * $IPFS_PATH/gateway file * Removed mdns_legacy implementation * Delegated Routing * ipfs repo migrate * Emoji support in Multibase - Update to 0.13.0 * Can now limit how much resource usage libp2p consumes * Improve connecting with nodes behind NATs and Firewalls * Improve HTTP gateway to allow making faster CDNs * Add Gateway.FastDirIndexThreshold configuration, for fast listings of big directories, without the linear slowdown caused by reading size metadata from child nodes. * Improve Etag and If-None-Match * Add X-Ipfs-Roots for smarter HTTP caches * Added metrics per response type * OpenTelemetry tracing * Expand diag profile command * Support for PEM/PKCS8 for key import/export * Use standard IPLD codec names across the CLI/HTTP API * Prioritize Yamux over Mplex stream multiplexer * https://github.com/ipfs/go-ipfs/releases/tag/v0.13.0 for details - Update to 0.12.0 * change how data blocks are stored -> needs migration - Update to 0.11.0 * UnixFS sharding is now automatic and enabled by default * can no longer act as a Circuit Relay v1 * HTTP RPC wire format for experimental commands at /api/v0/pubsub changed * Circuit Relay v2 * New configuration flags: + Addresses.AppendAnnounce + Pubsub.Enabled * changed ipfs dag get * changed ipfs dag put * UnixFS refactor * Add ipfs multibase command * Bitswap now supports greater configurability * Programmatic shell completions command * Profile collection command * Add Peering command - Update to 0.9.0 * Exporting of DAGs via Gateways * Custom DNS Resolvers * Support for non-ICANN DNSLink names * Updated to the latest WebUI * IPNS keys can now be exported via the CLI without stopping the daemon * Experimental DHT Client and Provider System * Deprecations + The ipfs object commands are now deprecated + X-Ipfs-Gateway-Prefix is now deprecated + Proquints support removed + SECIO support removed - Update to 0.8.0 * Add Remote pinning services: ipfs pin remote * Faster local pinning and unpinning * update quic-go to support QUIC draft-32 - Update to 0.7.0 * Drop upstream 7331.patch * Default to Ed25519 keys * Secio is now disabled by default * IPNS paths now encode the key name as a base36 CIDv1 by default * Multiaddresses now accept PeerIDs encoded as CIDv1 * dag stat command shows size and number of blocks - Update to 0.5.0 * Improved DHT * Improved Content Transfer * Refactored Bitswap * Stable Badger Datastore * Improved Backoff Logic * AutoNAT - determining if the node is reachable from the public internet * PeerIDs under /p2p/QmSomePeerID instead of /ipfs/QmSomePeerID * enforce RSA keys with 2048+ bits * TLS By Default * Subdomain Gateway now uses http://CID.ipfs.localhost:8080/ * PubSub is now using more efficient "gossipsub" implementation * Files can now be ignored on add by passing the --ignore and/or --ignore-rules-path flags. * It's now possible to add data directly from a named pipe * Systemd Support * socket activation and startup/shutdown notifications * IPFS API Over Unix Domain Sockets * After install run ipfs daemon --migrate - Update to 0.4.23 * Fixed Panics and Crashes * Fixed Spontaneous TLS Disconnects * Better Bitswap * Reduced Relay Related DHT Spam * Retuned Connection Manager * Fixed Resursive Resolving of dnsaddr Multiaddrs - Update to 0.4.22 * progress on #6506 * Key bug fixes: - Too many open file descriptors/too many peers (#6237). - Adding multiple files at the same time doesn't work (#6254). - CPU utilization spikes and then holds at 100% (#5613). * Key features: - Experimental TLS1.3 support (to eventually replace secio). - OpenSSL support for SECIO handshakes (performance improvement). - Update to 0.4.20 * fixed a frequent panic in the DHT * workaround stuck transfers * See https://github.com/ipfs/go-ipfs/releases/tag/v0.4.20 for full changes kubo-0.21.0-bp154.2.1.src.rpm kubo-0.21.0-bp154.2.1.x86_64.rpm kubo-0.21.0-bp154.2.1.i586.rpm kubo-0.21.0-bp154.2.1.aarch64.rpm kubo-0.21.0-bp154.2.1.ppc64le.rpm kubo-0.21.0-bp154.2.1.s390x.rpm openSUSE-2023-206 moderate openSUSE Backports SLE-15-SP4 Update This update for amanda fixes the following issues: - CVE-2023-30577: Fixed improper argument checking for runtar.c [boo#1213701], amanda-3.5.1-bp154.3.6.1.src.rpm amanda-3.5.1-bp154.3.6.1.x86_64.rpm amanda-3.5.1-bp154.3.6.1.aarch64.rpm amanda-3.5.1-bp154.3.6.1.ppc64le.rpm amanda-3.5.1-bp154.3.6.1.s390x.rpm openSUSE-2023-208 moderate openSUSE Backports SLE-15-SP4 Update This update for trytond fixes the following issues: - Version 6.0.34 - Security Bugfix Release see https://discuss.tryton.org/t/security-release-for-issue-12428/6397 - Version 6.0.33 - Bugfix Release trytond-6.0.34-bp154.2.30.1.noarch.rpm trytond-6.0.34-bp154.2.30.1.src.rpm openSUSE-2023-216 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 115.0.5790.170 (boo#1213920) * CVE-2023-4068: Type Confusion in V8 * CVE-2023-4069: Type Confusion in V8 * CVE-2023-4070: Type Confusion in V8 * CVE-2023-4071: Heap buffer overflow in Visuals * CVE-2023-4072: Out of bounds read and write in WebGL * CVE-2023-4073: Out of bounds memory access in ANGLE * CVE-2023-4074: Use after free in Blink Task Scheduling * CVE-2023-4075: Use after free in Cast * CVE-2023-4076: Use after free in WebRTC * CVE-2023-4077: Insufficient data validation in Extensions * CVE-2023-4078: Inappropriate implementation in Extensions - Specify re2 build dependency in a way that makes Leap packages build in devel project and in Maintenance chromedriver-115.0.5790.170-bp154.2.102.1.x86_64.rpm chromium-115.0.5790.170-bp154.2.102.1.src.rpm chromium-115.0.5790.170-bp154.2.102.1.x86_64.rpm chromedriver-115.0.5790.170-bp154.2.102.1.aarch64.rpm chromium-115.0.5790.170-bp154.2.102.1.aarch64.rpm openSUSE-2023-210 moderate openSUSE Backports SLE-15-SP4 Update This update for trytond_account_invoice_stock, trytond_party fixes the following issues: Changes in trytond_account_invoice_stock: - Version 6.0.2 - Bugfix Release Changes in trytond_account_invoice_stock: - Version 6.0.2 - Bugfix Release Changes in trytond_party: - Version 6.0.4 - Bugfix Release Changes in trytond_party: - Version 6.0.4 - Bugfix Release trytond_account_invoice_stock-6.0.2-bp154.2.6.1.noarch.rpm trytond_account_invoice_stock-6.0.2-bp154.2.6.1.src.rpm trytond_party-6.0.4-bp154.2.6.1.noarch.rpm trytond_party-6.0.4-bp154.2.6.1.src.rpm openSUSE-2023-211 moderate openSUSE Backports SLE-15-SP4 Update This update for lutris fixes the following issues: - Fix steam sync (boo#1213366) lutris-0.5.9.1-bp154.2.3.1.noarch.rpm lutris-0.5.9.1-bp154.2.3.1.src.rpm openSUSE-2023-215 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Net-Netmask fixes the following issues: * CVE-2021-29424: Leading zeros are no longer allowed for IPv4 octets. This (in some situations) allows attackers to bypass access control that is based on IP addresses.(boo#1184425) perl-Net-Netmask-1.9022-bp154.2.3.1.noarch.rpm perl-Net-Netmask-1.9022-bp154.2.3.1.src.rpm openSUSE-2023-222 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-HTTP-Tiny fixes the following issues: perl-HTTP-Tiny was updated to 0.086: see /usr/share/doc/packages/perl-HTTP-Tiny/Changes 0.086 2023-06-22 10:06:37-04:00 America/New_York - Fix code to use `$ENV{PERL_HTTP_TINY_SSL_INSECURE_BY_DEFAULT}` as documented. 0.084 2023-06-14 06:35:01-04:00 America/New_York - No changes from 0.083-TRIAL. 0.083 2023-06-11 07:05:45-04:00 America/New_York (TRIAL RELEASE) [!!! SECURITY !!!] - Changes the `verify_SSL` default parameter from `0` to `1`. Fixes CVE-2023-31486 (boo#1211002) - `$ENV{PERL_HTTP_TINY_SSL_INSECURE_BY_DEFAULT}` can be used to restore the old default if required. 0.081 2022-07-17 09:01:51-04:00 America/New_York (TRIAL RELEASE) [FIXED] - No longer deletes the 'headers' key from post_form arguments hashref. [DOCS] - Noted that request/response content are handled as raw bytes. 0.079 2021-11-04 12:33:43-04:00 America/New_York (TRIAL RELEASE) [FIXED] - Fixed uninitialized value warnings on older Perls when the REQUEST_METHOD environment variable is set and CGI_HTTP_PROXY is not. 0.077 2021-07-22 13:07:14-04:00 America/New_York (TRIAL RELEASE) [ADDED] - Added a `patch` helper method for the HTTP `PATCH` verb. - If the REQUEST_METHOD environment variable is set, then CGI_HTTP_PROXY replaces HTTP_PROXY. [FIXED] - Unsupported scheme errors early without giving an uninitialized value warning first. - Sends Content-Length: 0 on empty body PUT/POST. This is not in the spec, but some servers require this. - Allows optional status line reason, as clarified in RFC 7230. - Ignore SIGPIPE on reads as well as writes, as IO::Socket::SSL says that SSL reads can also send writes as a side effect. - Check if a server has closed a connection before preserving it for reuse. [DOCS] - Clarified that exceptions/errors result in 599 status codes. [PREREQS] - Optional IO::Socket::IP prereq must be at least version 0.32 to be used. This ensures correct timeout support. 0.076 2018-08-05 21:07:38-04:00 America/New_York - No changes from 0.075-TRIAL. 0.075 2018-08-01 07:03:36-04:00 America/New_York (TRIAL RELEASE) [CHANGED] - The 'peer' option now also can take a code reference 0.073 2018-07-24 11:33:53-04:00 America/New_York (TRIAL RELEASE) [DOCS] - Documented 'protocol' field in response hash. 0.071 2018-04-22 14:45:43+02:00 Europe/Oslo (TRIAL RELEASE) [DOCS] - Documented that method argument to request() is case-sensitive. perl-HTTP-Tiny-0.086-bp154.2.3.1.noarch.rpm perl-HTTP-Tiny-0.086-bp154.2.3.1.src.rpm openSUSE-2023-230 moderate openSUSE Backports SLE-15-SP4 Update This update for opensuse-welcome fixes the following issues: - CVE-2023-32184: Fixed possible security issues when using the feature to change the Xfce desktop layout, caused by a fixed temporary file path used in /tmp/layout (boo#1213708) opensuse-welcome-0.1.9+git.0.66be0d8-bp154.2.6.1.src.rpm opensuse-welcome-0.1.9+git.0.66be0d8-bp154.2.6.1.x86_64.rpm opensuse-welcome-lang-0.1.9+git.0.66be0d8-bp154.2.6.1.noarch.rpm opensuse-welcome-0.1.9+git.0.66be0d8-bp154.2.6.1.aarch64.rpm openSUSE-2023-234 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 116.0.5845.96 * New CSS features: Motion Path, and "display" and "content-visibility" animations * Web APIs: AbortSignal.any(), BYOB support for Fetch, Back/ forward cache NotRestoredReason API, Document Picture-in- Picture, Expanded Wildcards in Permissions Policy Origins, FedCM bundle: Login Hint API, User Info API, and RP Context API, Non-composed Mouse and Pointer enter/leave events, Remove document.open sandbox inheritance, Report Critical-CH caused restart in NavigationTiming This update fixes a number of security issues (boo#1214301): * CVE-2023-2312: Use after free in Offline * CVE-2023-4349: Use after free in Device Trust Connectors * CVE-2023-4350: Inappropriate implementation in Fullscreen * CVE-2023-4351: Use after free in Network * CVE-2023-4352: Type Confusion in V8 * CVE-2023-4353: Heap buffer overflow in ANGLE * CVE-2023-4354: Heap buffer overflow in Skia * CVE-2023-4355: Out of bounds memory access in V8 * CVE-2023-4356: Use after free in Audio * CVE-2023-4357: Insufficient validation of untrusted input in XML * CVE-2023-4358: Use after free in DNS * CVE-2023-4359: Inappropriate implementation in App Launcher * CVE-2023-4360: Inappropriate implementation in Color * CVE-2023-4361: Inappropriate implementation in Autofill * CVE-2023-4362: Heap buffer overflow in Mojom IDL * CVE-2023-4363: Inappropriate implementation in WebShare * CVE-2023-4364: Inappropriate implementation in Permission Prompts * CVE-2023-4365: Inappropriate implementation in Fullscreen * CVE-2023-4366: Use after free in Extensions * CVE-2023-4367: Insufficient policy enforcement in Extensions API * CVE-2023-4368: Insufficient policy enforcement in Extensions API - Fix crash with extensions (boo#1214003) chromedriver-116.0.5845.96-bp154.2.105.1.x86_64.rpm chromium-116.0.5845.96-bp154.2.105.1.src.rpm chromium-116.0.5845.96-bp154.2.105.1.x86_64.rpm chromedriver-116.0.5845.96-bp154.2.105.1.aarch64.rpm chromium-116.0.5845.96-bp154.2.105.1.aarch64.rpm openSUSE-2023-232 moderate openSUSE Backports SLE-15-SP4 Update This update for python-mitmproxy fixes the following issues: - CVE-2021-39214: Fixed HTTP smuggling attacks (boo#1190603) python-mitmproxy-3.0.4-bp154.2.3.1.src.rpm python3-mitmproxy-3.0.4-bp154.2.3.1.noarch.rpm openSUSE-2023-235 moderate openSUSE Backports SLE-15-SP4 Update This update for keepassxc fixes the following issues: Update to 2.7.6: * Changes - Significant improvement to visual when drag/drop entries - Automatically prompt for Quick Unlock when showing unlock dialog - Improve colorful lock icon and fix file MIME icon on KDE - Ability to search by entry UUID - Add challenge-response support for NitroKey 3 - Auto-Type: Disable entry level Auto-Type when disabled at group/entry - Browser: Show warning when adding duplicate URL's to entry - Browser: Improve error message when proxy cannot be found * Fixes - Fix crash on search if entry doesn't have a group - Fix several issues with Quick Unlock - Enable save button when not auto-saving non-data changes - Several UI/UX fixes - Move toolbar back to top of window when disabling movement - Browser: Fix handling of expired credentials - Windows: Prevent white flicker when launching application - Linux: Fix warning message about allow screencapture - FdoSecrets: Fix access confirmation dialog showing even when disabled keepassxc-2.7.6-bp154.3.15.1.src.rpm keepassxc-2.7.6-bp154.3.15.1.x86_64.rpm keepassxc-lang-2.7.6-bp154.3.15.1.noarch.rpm keepassxc-2.7.6-bp154.3.15.1.i586.rpm keepassxc-2.7.6-bp154.3.15.1.aarch64.rpm keepassxc-2.7.6-bp154.3.15.1.s390x.rpm openSUSE-2023-237 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 116.0.5845.110 (boo#1214487): * CVE-2023-4427: Out of bounds memory access in V8 * CVE-2023-4428: Out of bounds memory access in CSS * CVE-2023-4429: Use after free in Loader * CVE-2023-4430: Use after free in Vulkan * CVE-2023-4431: Out of bounds memory access in Fonts chromedriver-116.0.5845.110-bp154.2.108.1.x86_64.rpm chromium-116.0.5845.110-bp154.2.108.1.src.rpm chromium-116.0.5845.110-bp154.2.108.1.x86_64.rpm openSUSE-2023-244 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Update to version 116.0.5845.140 (boo#1214758): * CVE-2023-4572: Use after free in MediaStream chromedriver-116.0.5845.140-bp154.2.111.1.x86_64.rpm chromium-116.0.5845.140-bp154.2.111.1.src.rpm chromium-116.0.5845.140-bp154.2.111.1.x86_64.rpm chromedriver-116.0.5845.140-bp154.2.111.1.aarch64.rpm chromium-116.0.5845.140-bp154.2.111.1.aarch64.rpm openSUSE-2023-267 moderate openSUSE Backports SLE-15-SP4 Update This update for tcpreplay fixes the following issues: Update to 4.4.4: * overflow check fix for parse_mpls. * tcpreplay-edit: prevent L2 flooding of ipv6 unicast packets. * CVE-2023-27786: bugs caused by strtok_r. (boo#1209416) * CVE-2023-27783 reachable assert in tcpedit_dlt_cleanup (boo#1209413) * reachable assert in fast_edit_packet. tcpreplay-4.4.4-bp154.2.3.1.src.rpm tcpreplay-4.4.4-bp154.2.3.1.x86_64.rpm tcpreplay-4.4.4-bp154.2.3.1.i586.rpm tcpreplay-4.4.4-bp154.2.3.1.aarch64.rpm tcpreplay-4.4.4-bp154.2.3.1.ppc64le.rpm tcpreplay-4.4.4-bp154.2.3.1.s390x.rpm openSUSE-2023-250 moderate openSUSE Backports SLE-15-SP4 Update This update for orafce and timescaledb rebuilds them against the current postgresql minor releases. postgresql12-orafce-4.1.1+git0.519b5b5-bp154.8.1.src.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql12-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql12-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.8.1.src.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql13-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql13-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.8.1.src.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql14-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql14-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.8.1.src.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql15-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql15-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.x86_64.rpm postgresql12-timescaledb-2.9.3-bp154.2.5.1.src.rpm postgresql12-timescaledb-2.9.3-bp154.2.5.1.x86_64.rpm postgresql13-timescaledb-2.9.3-bp154.2.5.1.src.rpm postgresql13-timescaledb-2.9.3-bp154.2.5.1.x86_64.rpm postgresql14-timescaledb-2.9.3-bp154.2.5.1.src.rpm postgresql14-timescaledb-2.9.3-bp154.2.5.1.x86_64.rpm postgresql15-timescaledb-2.9.3-bp154.2.5.1.src.rpm postgresql15-timescaledb-2.9.3-bp154.2.5.1.x86_64.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql12-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql12-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql13-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql13-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql14-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql14-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql15-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql15-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.i586.rpm postgresql12-timescaledb-2.9.3-bp154.2.5.1.i586.rpm postgresql13-timescaledb-2.9.3-bp154.2.5.1.i586.rpm postgresql14-timescaledb-2.9.3-bp154.2.5.1.i586.rpm postgresql15-timescaledb-2.9.3-bp154.2.5.1.i586.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql12-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql12-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql13-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql13-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql14-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql14-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql15-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql15-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.aarch64.rpm postgresql12-timescaledb-2.9.3-bp154.2.5.1.aarch64.rpm postgresql13-timescaledb-2.9.3-bp154.2.5.1.aarch64.rpm postgresql14-timescaledb-2.9.3-bp154.2.5.1.aarch64.rpm postgresql15-timescaledb-2.9.3-bp154.2.5.1.aarch64.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql12-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql12-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql13-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql13-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql14-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql14-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql15-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql15-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.ppc64le.rpm postgresql12-timescaledb-2.9.3-bp154.2.5.1.ppc64le.rpm postgresql13-timescaledb-2.9.3-bp154.2.5.1.ppc64le.rpm postgresql14-timescaledb-2.9.3-bp154.2.5.1.ppc64le.rpm postgresql15-timescaledb-2.9.3-bp154.2.5.1.ppc64le.rpm postgresql12-orafce-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql12-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql12-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql13-orafce-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql13-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql13-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql14-orafce-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql14-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql14-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql15-orafce-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql15-orafce-debuginfo-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql15-orafce-debugsource-4.1.1+git0.519b5b5-bp154.8.1.s390x.rpm postgresql12-timescaledb-2.9.3-bp154.2.5.1.s390x.rpm postgresql13-timescaledb-2.9.3-bp154.2.5.1.s390x.rpm postgresql14-timescaledb-2.9.3-bp154.2.5.1.s390x.rpm postgresql15-timescaledb-2.9.3-bp154.2.5.1.s390x.rpm openSUSE-2023-268 low openSUSE Backports SLE-15-SP4 Update This update for python-pymediainfo fixes the following issues: - (Build)Require python-importlib-metadata on Leap (boo#1214468) python-pymediainfo-5.1.0-bp154.2.3.1.src.rpm python3-pymediainfo-5.1.0-bp154.2.3.1.noarch.rpm openSUSE-2023-245 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 116.0.5845.179 (boo#1215023): * CVE-2023-4761: Out of bounds memory access in FedCM * CVE-2023-4762: Type Confusion in V8 * CVE-2023-4763: Use after free in Networks * CVE-2023-4764: Incorrect security UI in BFCache chromedriver-116.0.5845.179-bp154.2.114.1.x86_64.rpm chromium-116.0.5845.179-bp154.2.114.1.src.rpm chromium-116.0.5845.179-bp154.2.114.1.x86_64.rpm chromedriver-116.0.5845.179-bp154.2.114.1.aarch64.rpm chromium-116.0.5845.179-bp154.2.114.1.aarch64.rpm openSUSE-2023-269 moderate openSUSE Backports SLE-15-SP4 Update This update for modsecurity fixes the following issues: Update to version 3.0.10: * Security impacting issue (fix boo#1213702, CVE-2023-38285) - Fix: worst-case time in implementation of four transformations - Additional information on this issue is available at https://www.trustwave.com/resources/blogs/spiderlabs-blog/modsecurity-v3-dos-vulnerability-in-four-transformations-cve-2023-38285/ * Enhancements and bug fixes - Add TX synonym for MSC_PCRE_LIMITS_EXCEEDED - Make MULTIPART_PART_HEADERS accessible to lua - Fix: Lua scripts cannot read whole collection at once - Fix: quoted Include config with wildcard - Support isolated PCRE match limits - Fix: meta actions not applied if multiMatch in first rule of chain - Fix: audit log may omit tags when multiMatch - Exclude CRLF from MULTIPART_PART_HEADER value - Configure: use AS_ECHO_N instead echo -n - Adjust position of memset from 2890 Update to version 3.0.9: * Add some member variable inits in Transaction class (possible segfault) * Fix: possible segfault on reload if duplicate ip+CIDR in ip match list * Resolve memory leak on reload (bison-generated variable) * Support equals sign in XPath expressions * Encode two special chars in error.log output * Add JIT support for PCRE2 * Support comments in ipMatchFromFile file via '#' token * Use name package name libmaxminddb with pkg-config * Fix: FILES_TMP_CONTENT collection key should use part name * Use AS_HELP_STRING instead of obsolete AC_HELP_STRING macro * During configure, do not check for pcre if pcre2 specified * Use pkg-config to find libxml2 first * Fix two rule-reload memory leak issues * Correct whitespace handling for Include directive - Fix CVE-2023-28882, a segfault and a resultant crash of a worker process in some configurations with certain inputs, boo#1210993 Update to version 3.0.8 * Adjust parser activation rules in modsecurity.conf-recommended [#2796] * Multipart parsing fixes and new MULTIPART_PART_HEADERS collection [#2795] * Prevent LMDB related segfault [#2755, #2761] * Fix msc_transaction_cleanup function comment typo [#2788] * Fix: MULTIPART_INVALID_PART connected to wrong internal variable [#2785] * Restore Unique_id to include random portion after timestamp [#2752, #2758] Update to version 3.0.7 * Support PCRE2 * Support SecRequestBodyNoFilesLimit * Add ctl:auditEngine action support * Move PCRE2 match block from member variable * Add SecArgumentsLimit, 200007 to modsecurity.conf-recommended * Fix memory leak when concurrent log includes REMOTE_USER * Fix LMDB initialization issues * Fix initcol error message wording * Tolerate other parameters after boundary in multipart C-T * Add DebugLog message for bad pattern in rx operator * Fix misuses of LMDB API * Fix duplication typo in code comment * Fix multiMatch msg, etc, population in audit log * Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc. * Adjust confusing variable name in setRequestBody method * Multipart names/filenames may include single quote if double-quote enclosed * Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended Update to version 3.0.6 * Security issue: Support configurable limit on depth of JSON parsing, possible DoS issue. CVE-2021-42717 Update to version 3.0.5 * New: Having ARGS_NAMES, variables proxied * Fix: FILES variable does not use multipart part name for key * GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE * Support configurable limit on number of arguments processed * Adds support to lua 5.4 * Add support for new operator rxGlobal * Fix: Replaces put with setenv in SetEnv action * Fix: Regex key selection should not be case-sensitive * Fix: Only delete Multipart tmp files after rules have run * Fixed MatchedVar on chained rules * Fix IP address logging in Section A * Fix: rx: exit after full match (remove /g emulation); ensure capture groups occuring after unused groups still populate TX vars * Fix rule-update-target for non-regex * Fix Security Impacting Issues: * Handle URI received with uri-fragment, CVE-2020-15598 Update to version 3.0.4: * Fix: audit log data omitted when nolog,auditlog * Fix: ModSecurity 3.x inspectFile operator does not pass * XML: Remove error messages from stderr * Filter comment or blank line for pmFromFile operator * Additional adjustment to Cookie header parsing * Restore chained rule part H logging to be more like 2.9 behaviour * Small fixes in log messages to help debugging the file upload * Fix Cookie header parsing issues * Fix rules with nolog are logging to part H * Fix argument key-value pair parsing cases * Fix: audit log part for response body for JSON format to be E * Make sure m_rulesMessages is filled after successfull match * Fix @pm lookup for possible matches on offset zero. * Regex lookup on the key name instead of COLLECTION:key * Missing throw in Operator::instantiate * Making block action execution dependent of the SecEngine status * Making block action execution dependent of the SecEngine status * Having body limits to respect the rule engine state * Fix SecRuleUpdateTargetById does not match regular expressions * Adds missing check for runtime ctl:ruleRemoveByTag * Adds a new operator verifySVNR that checks for Austrian social security numbers. * Fix variables output in debug logs * Correct typo validade in log output * fix/minor: Error encoding hexa decimal. * Limit more log variables to 200 characters. * parser: fix parsed file names * Allow empty anchored variable * Fixed FILES_NAMES collection after the end of multipart parsing * Fixed validateByteRange parsing method * Removes a memory leak on the JSON parser * Enables LMDB on the regression tests. * Fix: Extra whitespace in some configuration directives causing error * Refactoring on Regex and SMatch classes. * Fixed buffer overflow in Utils::Md5::hexdigest() * Implemented merge() method for ConfigInt, ConfigDouble, ConfigString * Adds initially support to the drop action. * Complete merging of particular rule properties * Replaces AC_CHECK_FILE with 'test -f' * Fix inet addr handling on 64 bit big endian systems * Fix tests on FreeBSD * Changes ENV test case to read the default MODSECURTIY env var * Regression: Sets MODSECURITY env var during the tests execution * Fix setenv action to strdup key=variable * Allow 0 length JSON requests. * Fix "make dist" target to include default configuration * Replaced log locking using mutex with fcntl lock * Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES * Adds support to multiple ranges in ctl:ruleRemoveById * Rule variable interpolation broken * Make the boundary check less strict as per RFC2046 * Fix buffer size for utf8toUnicode transformation * Fix double macros bug * Override the default status code if not suitable to redirect action * parser: Fix the support for CRLF configuration files * Organizes the server logs * m_lineNumber in Rule not mapping with the correct line number in file * Using shared_ptr instead of unique_ptr on rules exceptions * Changes debuglogs schema to avoid unecessary str allocation * Fix the SecUnicodeMapFile and SecUnicodeCodePage * Changes the timing to save the rule message * Fix crash in msc_rules_add_file() when using disruptive action in chain * Fix memory leak in AuditLog::init() * Fix RulesProperties::appendRules() * Fix RULE lookup in chained rules * @ipMatch "Could not add entry" on slash/32 notation in 2.9.0 * Using values after transformation at MATCHED_VARS * Adds support to UpdateActionById. * Add correct C function prototypes for msc_init and msc_create_rule_set * Allow LuaJIT 2.1 to be used * Match m_id JSON log with RuleMessage and v2 format * Adds support to setenv action. * Adds new transaction constructor that accepts the transaction id as parameter. * Adds request IDs and URIs to the debug log * Treating variables exception on load-time instead of run time. * Fix: function m.setvar in Lua scripts and add testcases * Fix SecResponseBodyAccess and ctl:requestBodyAccess directives * Fix parser to support GeoLookup with MaxMind * parser: Fix simple quote setvar in the end of the line * modsec_rules_check: uses the gnu `.la' instead of `.a' file * good practices: Initialize variables before use it * Fix utf-8 character encoding conversion * Adds support for ctl:requestBodyProcessor=URLENCODED * Add LUA compatibility for CentOS and try to use LuaJIT first if available * Allow LuaJIT to be used * Implement support for Lua 5.1 * Variable names must match fully, not partially. Match should be case insensitive. * Improves the performance while loading the rules * Allow empty strings to be evaluated by regex::searchAll * Adds basic pkg-config info * Fixed LMDB collection errors * Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors * Fix ip tree lookup on netmask content * Changes the behavior of the default sec actions * Refactoring on {global,ip,resources,session,tx,user} collections * Fix race condition in UniqueId::uniqueId() * Fix memory leak in error message for msc_rules_merge C APIs * Return false in SharedFiles::open() when an error happens * Use rvalue reference in ModSecurity::serverLog * Build System: Fix when multiple lines for curl version. * Checks if response body inspection is enabled before process it * Fix setvar parsing of quoted data * Adds time stamp back to the audit logs * Disables skip counter if debug log is disabled * Cosmetics: Represents amount of skipped rules without decimal * Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser * Fix STATUS var parsing and accept STATUS_LINE var for v2 backward comp. * Fix memory leak in modsecurity::utils::expandEnv() * Initialize m_dtd member in ValidateDTD class as NULL * Fix broken @detectxss operator regression test case * Fix utils::string::ssplit() to handle delimiter in the end of string * Fix variable FILES_TMPNAMES * Fix memory leak in Collections * Fix lib version information while generating the .so file * Adds support for ctl:ruleRemoveByTag * Fix SecUploadDir configuration merge * Include all prerequisites for "make check" into dist archive * Fix: Reverse logic of checking output in @inspectFile * Adds support to libMaxMind * Adds capture action to detectXSS * Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator * Adds capture action to detectSQLi * Adds capture action to rbl * Adds capture action to verifyCC * Adds capture action to verifySSN * Adds capture action to verifyCPF * Prettier error messages for unsupported configurations (UX) * Add missing verify*** transformation statements to parser * Fix a set of compilation warnings * Check for disruptive action on SecDefaultAction. * Fix block-block infinite loop. * Correction remove_by_tag and remove_by_msg logic. * Fix LMDB compile error * Fix msc_who_am_i() to return pointer to a valid C string * Added some cosmetics to autoconf related code * Fix "make dist" target to include necessary headers for Lua * Fix "include /foo/*.conf" for single matched object in directory * Add missing Base64 transformation statements to parser * Fixed resource load on ip match from file * Fixed examples compilation while using disable-shared * Fixed compilation issue while xml is disabled * Having LDADD and LDFLAGS organized on Makefile.am * Checking std::deque size before use it * perf improvement: Added the concept of RunTimeString and removed all run time parser. * perf improvement: Checks debuglog level before format debug msg * perf. improvement/rx: Only compute dynamic regex in case of macro * Fix uri on the benchmark utility * disable Lua on systems with liblua5.1 libmodsecurity3-3.0.10-bp154.2.3.1.x86_64.rpm modsecurity-3.0.10-bp154.2.3.1.src.rpm modsecurity-3.0.10-bp154.2.3.1.x86_64.rpm modsecurity-devel-3.0.10-bp154.2.3.1.x86_64.rpm libmodsecurity3-3.0.10-bp154.2.3.1.i586.rpm libmodsecurity3-32bit-3.0.10-bp154.2.3.1.x86_64.rpm modsecurity-3.0.10-bp154.2.3.1.i586.rpm modsecurity-devel-3.0.10-bp154.2.3.1.i586.rpm libmodsecurity3-3.0.10-bp154.2.3.1.aarch64.rpm libmodsecurity3-64bit-3.0.10-bp154.2.3.1.aarch64_ilp32.rpm modsecurity-3.0.10-bp154.2.3.1.aarch64.rpm modsecurity-devel-3.0.10-bp154.2.3.1.aarch64.rpm libmodsecurity3-3.0.10-bp154.2.3.1.ppc64le.rpm modsecurity-3.0.10-bp154.2.3.1.ppc64le.rpm modsecurity-devel-3.0.10-bp154.2.3.1.ppc64le.rpm libmodsecurity3-3.0.10-bp154.2.3.1.s390x.rpm modsecurity-3.0.10-bp154.2.3.1.s390x.rpm modsecurity-devel-3.0.10-bp154.2.3.1.s390x.rpm openSUSE-2023-275 important openSUSE Backports SLE-15-SP4 Update This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.25: * Spine should see if script to be executed is executable * Enhance number recognition * When polling devices, sort by larger number of items first * Log format may be corrupted when timeout occurs * Compile warning appears due to GCC flag on RHEL7/RHEL8 * Downed device detection only checks one of the two uptime OIDs * Compile error appears due to execinfo.h on FreeBSD * Bootstrap shell script contains some PHP cruft * Padding is not always removed from the start of non-numeric strings * Improve SNMP result handling for non-numeric results * Further improve SNMP result handling for non-numeric results * Remove check for the max_oids column which has been present since Cacti v1.0 * Minimize Sorting when fetching poller records for maximum performance * Spine should see if script to be executed is executable cacti-spine 1.2.24: * Fix segfault when ignoring older OIDs cacti 1.2.25: * CVE-2023-30534: Protect against Insecure deserialization of filter data (boo#1215082) * CVE-2023-39360: Cross-Site Scripting vulnerability when creating new graphs (boo#1215044) * CVE-2023-39361: Unauthenticated SQL Injection when viewing graphs (boo#1215045) * CVE-2023-39357: SQL Injection when saving data with sql_save() (boo#1215040) * CVE-2023-39362: Authenticated command injection when using SNMP options (boo#1215047) * CVE-2023-39359: Authenticated SQL injection vulnerability when managing graphs (boo#1215043) * CVE-2023-39358: Authenticated SQL injection vulnerability when managing reports (boo#1215042) * CVE-2023-39365: SQL Injection when using regular expressions (boo#1215051) * CVE-2023-39364: redirect in change password functionality (boo#1215050) * CVE-2023-39366: Cross-Site Scripting vulnerability with Device Name when managing Data Sources (boo#1215052) * CVE-2023-39510: Cross-Site Scripting vulnerability with Device Name when administrating Reports (boo#1215053) * CVE-2023-39511: Cross-Site Scripting vulnerability with Device Name when editing Graphs whilst managing Reports (boo#1215081) * CVE-2023-39512: Cross-Site Scripting vulnerability with Device Name when managing Data Sources (boo#1215054) * CVE-2023-39513: Cross-Site Scripting vulnerability with Device Name when debugging data queries (boo#1215055) * CVE-2023-39514: Cross-Site Scripting vulnerability with Data Source Name when managing Graphs (boo#1215056) * CVE-2023-39515: Cross-Site Scripting vulnerability with Data Source Name when debugging Data Queries (boo#1215058) * CVE-2023-39516: Cross-Site Scripting vulnerability with Data Source Information when managing Data Sources (boo#1215059) * When rebuilding the Poller Cache from command line, allow it to be multi-threaded * When searching tree or list views, the URL does not update after changes * When creating a Data Source Template with a specific snmp port, the port is not always applied * When a Data Query references a file, the filename should be trimmed to remove spurious spaces * THold plugin may not always install or upgrade properly * RRD file structures are not always updated properly, if there are more Data Sources in the Data Template than the Graph Template * When reindexing devices, errors may sometimes be shown * Boost may loose data when the database server is overloaded * Boost can sometimes output unexpected or invalid values * Boost should not attempt to start if there are no items to process * Rebuilding the poller cache does not always work as expected * Host CPU items may not work poll as expected when on a remote data collector where hmib is also enabled * When creating new graphs, invalid offset errors may be generated * When importing packages, SQL errors may be generated * When managing plugins from command line, the --plugin option is not properly handled * When automating an install of Cacti, error messages can be appear * When performing automated install of a plugin, warnings can be thrown * Automation references the wrong table name causing errors * Data Source Info Mode produces invalid recommendations * Data Source Debug 'Run All' generates too many log messages * The description of rebuild poller cache in utilities does not display properly * When reindexing a device, debug information may not always display properly * Upon displaying a form with errors, the session error fields variable isn't cleared * MariaDB clusters will no longer support exclusive locks * RRDtool can fail to update when sources in Data Template and Graph Template data sources do not match * Compatibility improvements for Boost under PHP 8.x * When searching the tree, increase the time before querying for items * Device Location drop down does not always populate correctly * When viewing Realtime graphs, undefined variable errors may be reported * SNMP Uptime is not always ignored for spikekills * Improve detection of downed Devices * When reporting missing functions from Plugins, ensure messages do not occur too often * When starting the Cacti daemon, database errors may be reported when there is no problem * When reporting from RRDcheck, ensure prefix is in the correct casing * Improve Orphaned Data Source options and display * Parsing the PHP Configuration may sometimes produce errors * Security processes attempt to check for a user lockout even if there is no user logged in * When attempting to edit a tree, the search filter for Graphs remains disabled * When reindexing, a Data Source that could be un-orphaned may not always be unorphaned * When parsing a date value, there could be more than 30 chars * Untemplated Data Sources can fail to update due to lack of an assigned Graph * When processing items to check, do not include disabled hosts * When saving a Data Source Template, SQL errors may be reported * When importing a Template, errors may be recorded * Some display strings have invalid formatting that cannot be parsed * When filtering with regular expressions, the 'does not match' option does not always function as expected * When enabling a plugin, sometimes it can appear as if nothing happens * Ensure the Rows Per Page option shows limitations set by configuration * Plugins are unable to modify fields in the setting 'Change Device Settings' * When reporting emails being sent, ensure BCC addresses are also included * Improve compatibility of SNMP class trim handling under PHP 8.x * When importing legacy Data Query Templates, the Template can become unusable * Provide ability to raise an event when extending the settings form * Prevent unsupported SQL Mode flags from being set * The DSStats summary does not always display expected values * When performing a fresh install, device classification may be missing. * Duplication functions for Graph/Template and Data Source/Template do not return and id * Duplication of Device Templates should be an API call * Unable to convert database to latin1 instead of utf8 if desired * When creating Graphs, the process may become slower over time as more items exist * When a bulk walk size is set to automatic, this is not always set to the optimal value * Update copyright notice on import packages * When viewing Orphan Graphs, SQL errors may be reported * When reindexing hosts from command line, ensure only one process runs at once * When a Data Query has no Graphs, it may not be deletable * When duplicating a Graph Template, provide an option to not duplicate Data Query association * When duplicating a Data Template errors can appear in the Cacti log * When importing a Package, previewing makes unexpected changes to Cacti Templates * When enabling boost on a fresh install, an error may be reported * Improve compatibility for backtrace logging under PHP 8.x * Improve compatibility for Advanced Ping under PHP 8.x * Provide new templates for Fortigate and Aruba Cluster to be available during install * Provide new template for SNMP Printer to be available during install * When importing devices, allow a device classification to be known * Extend length of maximum name in settings table * Extend length of maximum name in user settings table * Data Queries do not have a Duplication function * Upgrade d3.js v7.8.2 and billboard.js v3.7.4 * Upgrade ua-parser.js to version 1.0.35 * Update Cisco Device Template to include HSRP graph template * New hook for device template change 'device_template_change' cacti 1.2.24 * Fix: Unable to import Local Linux Machine template * Fix multiple charting and display issues * Compatibility changes for SNMP under PHP 8.2, and other PHP compatibility updates * Fix multiple issues editing settings * timeout fixes for Basic Auth * multiple data poller bug fixes cacti-spine-1.2.25-bp154.2.9.1.src.rpm cacti-spine-1.2.25-bp154.2.9.1.x86_64.rpm cacti-1.2.25-bp154.2.9.1.noarch.rpm cacti-1.2.25-bp154.2.9.1.src.rpm cacti-spine-1.2.25-bp154.2.9.1.i586.rpm cacti-spine-1.2.25-bp154.2.9.1.aarch64.rpm cacti-spine-1.2.25-bp154.2.9.1.ppc64le.rpm cacti-spine-1.2.25-bp154.2.9.1.s390x.rpm openSUSE-2023-270 moderate openSUSE Backports SLE-15-SP4 Update This update for Cadence fixes the following issues: - Fix security bugs related to use of Fixed Temporary Files. (boo#1213330, boo#1213983, boo#1213985) Cadence-0.9.1-bp154.2.3.1.src.rpm Cadence-0.9.1-bp154.2.3.1.x86_64.rpm Cadence-0.9.1-bp154.2.3.1.i586.rpm Cadence-0.9.1-bp154.2.3.1.aarch64.rpm Cadence-0.9.1-bp154.2.3.1.ppc64le.rpm Cadence-0.9.1-bp154.2.3.1.s390x.rpm openSUSE-2023-271 moderate openSUSE Backports SLE-15-SP4 Update This update for python-GitPython fixes the following issues: - CVE-2023-41040: Fixed directory traversal attack vulnerability (boo#1214810) python-GitPython-3.1.12.1610074031.f653af66-bp154.2.3.1.src.rpm python3-GitPython-3.1.12.1610074031.f653af66-bp154.2.3.1.noarch.rpm openSUSE-2023-272 moderate openSUSE Backports SLE-15-SP4 Update This update for python-CairoSVG fixes the following issues: - CVE-2023-27586: Don't allow fetching external files unless explicitly asked for. (boo#1209538) - Update to version 2.5.2 * Fix marker path scale - Update to version 2.5.1 (boo#1180648, CVE-2021-21236): * Security fix: When processing SVG files, CairoSVG was using two regular expressions which are vulnerable to Regular Expression Denial of Service (REDoS). If an attacker provided a malicious SVG, it could make CairoSVG get stuck processing the file for a very long time. * Fix marker positions for unclosed paths * Follow hint when only output_width or output_height is set * Handle opacity on raster images * Don’t crash when use tags reference unknown tags * Take care of the next letter when A/a is replaced by l * Fix misalignment in node.vertices - Updates for version 2.5.0. * Drop support of Python 3.5, add support of Python 3.9. * Add EPS export * Add background-color, negate-colors, and invert-images options * Improve support for font weights * Fix opacity of patterns and gradients * Support auto-start-reverse value for orient * Draw images contained in defs * Add Exif transposition support * Handle dominant-baseline * Support transform-origin python-CairoSVG-2.5.2-bp154.2.3.1.src.rpm python3-CairoSVG-2.5.2-bp154.2.3.1.noarch.rpm openSUSE-2023-273 moderate openSUSE Backports SLE-15-SP4 Update This update for tryton, trytond, trytond_account, trytond_account_invoice, trytond_stock, trytond_stock_lot fixes the following issues: Changes in trytond_account_invoice: - Version 6.0.13 - Bugfix Release Changes in trytond_account: - Version 6.0.18 - Bugfix Release Changes in trytond_stock: - Version 6.0.21 - Bugfix Release - Version 6.0.20 - Bugfix Release - Version 6.0.19 - Bugfix Release Changes in trytond_stock_lot: - Version 6.0.1 - Bugfix Release Changes in trytond: - Version 6.0.35 - Bugfix Release Changes in tryton: - Version 6.0.28 - Bugfix Release tryton-6.0.28-bp154.2.24.1.noarch.rpm tryton-6.0.28-bp154.2.24.1.src.rpm trytond-6.0.35-bp154.2.33.1.noarch.rpm trytond-6.0.35-bp154.2.33.1.src.rpm trytond_account-6.0.18-bp154.2.18.1.noarch.rpm trytond_account-6.0.18-bp154.2.18.1.src.rpm trytond_account_invoice-6.0.13-bp154.2.12.1.noarch.rpm trytond_account_invoice-6.0.13-bp154.2.12.1.src.rpm trytond_stock-6.0.21-bp154.2.18.1.noarch.rpm trytond_stock-6.0.21-bp154.2.18.1.src.rpm trytond_stock_lot-6.0.1-bp154.2.3.1.noarch.rpm trytond_stock_lot-6.0.1-bp154.2.3.1.src.rpm openSUSE-2023-246 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Update to version 116.0.5845.187 (boo#1215231): * CVE-2023-4863: Heap buffer overflow in WebP chromedriver-116.0.5845.187-bp154.2.117.1.x86_64.rpm chromium-116.0.5845.187-bp154.2.117.1.src.rpm chromium-116.0.5845.187-bp154.2.117.1.x86_64.rpm chromedriver-116.0.5845.187-bp154.2.117.1.aarch64.rpm chromium-116.0.5845.187-bp154.2.117.1.aarch64.rpm openSUSE-2023-280 moderate openSUSE Backports SLE-15-SP4 Update This update for seamonkey fixes the following issues: Update to SeaMonkey 2.53.17.1 * Upstream libwebp security fix bug 1852749. * CVE-2023-4863: Heap buffer overflow in libwebp bug 1852649. * Fix bad string encoded in ansi. l10n fr problem only bug 1847887. * SeaMonkey 2.53.17 uses the same backend as Firefox and contains the relevant Firefox 60.8 security fixes. * SeaMonkey 2.53.17 shares most parts of the mail and news code with Thunderbird. Please read the Thunderbird 60.8.0 release notes for specific security fixes in this release. * Additional important security fixes up to Current Firefox 115.3 and Thunderbird 115.3 ESR plus many enhancements have been backported. We will continue to enhance SeaMonkey security in subsequent 2.53.x beta and release versions as fast as we are able to. Update to SeaMonkey 2.53.17 * Fix macOS Contacts permission request bug 1826719. * Remove SeaMonkey 2.57 links from debugQA bug 1829683. * Treat opening urls from the library as external bug 1619108. * Disable spam warning for autogenerated links in plaintext messages bug 619031. * Switch SeaMonkey build files to Python 3 bug 1635849. * Remove empty overlays from Composer bug 1828533. * Move xpfe autocomplete to comm-central suite bug 1418512. * Remove nsIPrefBranch2 and nsIPrefBranchInternal bug 1374847. * SeaMonkey 2.53.17 uses the same backend as Firefox and contains the relevant Firefox 60.8 security fixes. * SeaMonkey 2.53.17 shares most parts of the mail and news code with Thunderbird. Please read the Thunderbird 60.8.0 release notes for specific security fixes in this release. * Additional important security fixes up to Current Firefox 102.11 and Thunderbird 102.11 ESR plus many enhancements have been backported. We will continue to enhance SeaMonkey security in subsequent 2.53.x beta and release versions as fast as we are able to. seamonkey-2.53.17.1-bp154.2.11.1.src.rpm seamonkey-2.53.17.1-bp154.2.11.1.x86_64.rpm seamonkey-debuginfo-2.53.17.1-bp154.2.11.1.x86_64.rpm seamonkey-debugsource-2.53.17.1-bp154.2.11.1.x86_64.rpm seamonkey-dom-inspector-2.53.17.1-bp154.2.11.1.x86_64.rpm seamonkey-irc-2.53.17.1-bp154.2.11.1.x86_64.rpm seamonkey-2.53.17.1-bp154.2.11.1.aarch64.rpm seamonkey-debuginfo-2.53.17.1-bp154.2.11.1.aarch64.rpm seamonkey-debugsource-2.53.17.1-bp154.2.11.1.aarch64.rpm seamonkey-dom-inspector-2.53.17.1-bp154.2.11.1.aarch64.rpm seamonkey-irc-2.53.17.1-bp154.2.11.1.aarch64.rpm openSUSE-2023-247 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - CVE-2023-4863: temporary build with the bundled library on Leap (boo#1215231) chromedriver-116.0.5845.187-bp154.2.120.1.x86_64.rpm chromium-116.0.5845.187-bp154.2.120.1.src.rpm chromium-116.0.5845.187-bp154.2.120.1.x86_64.rpm chromedriver-116.0.5845.187-bp154.2.120.1.aarch64.rpm chromium-116.0.5845.187-bp154.2.120.1.aarch64.rpm openSUSE-2023-249 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Update to verion 117.0.5938.88 (boo#1215279): - CVE-2023-4900: Inappropriate implementation in Custom Tabs - CVE-2023-4901: Inappropriate implementation in Prompts - CVE-2023-4902: Inappropriate implementation in Input - CVE-2023-4903: Inappropriate implementation in Custom Mobile Tabs - CVE-2023-4904: Insufficient policy enforcement in Downloads - CVE-2023-4905: Inappropriate implementation in Prompts - CVE-2023-4906: Insufficient policy enforcement in Autofill - CVE-2023-4907: Inappropriate implementation in Intents - CVE-2023-4908: Inappropriate implementation in Picture in Picture - CVE-2023-4909: Inappropriate implementation in Interstitials chromedriver-117.0.5938.88-bp154.2.123.1.x86_64.rpm chromium-117.0.5938.88-bp154.2.123.1.src.rpm chromium-117.0.5938.88-bp154.2.123.1.x86_64.rpm chromedriver-117.0.5938.88-bp154.2.123.1.aarch64.rpm chromium-117.0.5938.88-bp154.2.123.1.aarch64.rpm openSUSE-2023-282 moderate openSUSE Backports SLE-15-SP4 Update This update for upx fixes the following issues: Update to release 4.1 * ELF: handle shared libraries with more than 2 PT_LOAD segments upx-4.1.0-bp154.4.9.1.src.rpm upx-4.1.0-bp154.4.9.1.x86_64.rpm upx-4.1.0-bp154.4.9.1.aarch64.rpm upx-4.1.0-bp154.4.9.1.ppc64le.rpm upx-4.1.0-bp154.4.9.1.s390x.rpm openSUSE-2023-283 moderate openSUSE Backports SLE-15-SP4 Update This update for roundcubemail fixes the following issues: Update to 1.5.4 (boo#1215433) * Fix cross-site scripting (XSS) vulnerability in handling of linkrefs in plain text messages * Fix so output of log_date_format with microseconds contains time in server time zone, not UTC * Fix so N property always exists in a vCard export (#8771) * Fix so rcmail::format_date() works with DateTimeImmutable input (#8867) * Fix bug where a non-ASCII character in app.js could cause error in javascript engine (#8894) roundcubemail-1.5.4-bp154.2.6.1.noarch.rpm roundcubemail-1.5.4-bp154.2.6.1.src.rpm openSUSE-2023-287 moderate openSUSE Backports SLE-15-SP4 Update This update for rclone fixes the following issues: - Update to 1.61.1: * Bug fixes: - lib/http: Shutdown all servers on exit to remove unix socket - rc: Fix --rc-addr flag (which is an alternate for --url) - serve restic: + Don't serve via http if serving via --stdio + Fix immediate exit when not using stdio - serve webdav: + Fix --baseurl handling after lib/http refactor + Fix running duplicate Serve call * Azure: Fix "409 Public access is not permitted on this storage account" * S3: storj: Update endpoints - Update to 1.61.0: * Add vulnerability testing using govulncheck * dedupe: Count Checks in the stats while scanning for duplicates * dedupe: Make dedupe obey the filters * filter: Add metadata filters --metadata-include/exclude/filter and friends * fs: Make all duration flags take y, M, w, d etc suffixes * fs: Add global flag --color to control terminal colors * fspath: Allow unicode numbers and letters in remote names * ncdu: Add support for modification time * ncdu: Fallback to sort by name also for sort by average size * ncdu: Rework to use tcell directly instead of the termbox wrapper * rc: Add commands to set GC Percent & Memory Limit * rcat: Preserve metadata when Copy falls back to Rcat * rcd: Refactor rclone rc server to use lib/http * rcserver: Avoid generating default credentials with htpasswd * vfs: Fix IO Error opening a file with O_CREATE|O_RDONLY in --vfs-cache-mode not full * crypt: Fix compress wrapping crypt giving upload errors * Azure: - Port to new SDK - Add --azureblob-no-check-container to assume container exists - Add --use-server-modtime support - Add support for custom upload headers - Allow emulator account/key override - Support simple "environment credentials" - Ignore AuthorizationFailure when trying to create a create a container * Drive: Handle shared drives with leading/trailing space in name * Onedrive: Document workaround for shared with me files * S3: - Add Liara LOS to provider list - Add DigitalOcean Spaces regions sfo3, fra1, syd1 - Avoid privileged GetBucketLocation to resolve s3 region - Stop setting object and bucket ACL to private if it is an empty string - If bucket or object ACL is empty string then don't add X-Amz-Acl: header - Reduce memory consumption for s3 objects - Fix listing loop when using v2 listing on v1 server - Fix nil pointer exception when using Versions - Fix excess memory usage when using versions - Ignore versionIDs from uploads unless using --s3-versions or --s3-versions-at * SFTP: - Add configuration options to set ssh Ciphers / MACs / KeyExchange - Auto-detect shell type for fish - Fix NewObject with leading / - Update to version 1.60.1: * Version v1.60.1 * docs: faq: how to use a proxy server that requires a username and password - fixes #6565 * webdav: fix Move/Copy/DirMove when using -server-side-across-configs * smb: fix Failed to sync: context canceled at the end of syncs * vfs: fix deadlock caused by cache cleaner and upload finishing * s3: Add additional Wasabi locations * s3: fix for unchecked err value in s3 listv2 * local: fix -L/--copy-links with filters missing directories * mailru: allow timestamps to be before the epoch 1970-01-01 * lib/cache: fix alias backend shutting down too soon - Update to 1.58.1: * webdav: Don't override Referer if user sets it * sftp: Fix OpenSSH 8.8+ RSA keys incompatibility * s3: Add ChinaMobile EOS to provider list * s3: Sync providers in config description with providers * onedrive: Note that sharepoint also changes web files (.html, .aspx) * jottacloud: Fix scope in token request * GCS: Use the s3 pacer to speed up transactions * GCS: pacer: Default the Google pacer to a burst of 100 to fix gcs pacing * dropbox: Fix retries of multipart uploads with incorrect_offset error * VFS: Remove wording which suggests VFS is only for mounting * mount: Fix --devname and fusermount: unknown option 'fsname' when mounting via rc * Fix timezone of --min-age/-max-age from UTC to local as documented * rc/js: Correct RC method names - Update to 1.58.0 * See https://rclone.org/changelog/#v1-58-0-2022-03-18 for their complete changelog. * New backends: Akamai Netstorage, Seagate Lyve, SeaweedFS, Storj, RackCorp, Storj (renamed from Tardigrade) * New commands: bisync - experimental bidirectional cloud sync * tree: Remove obsolete --human replaced by global --human-readable rclone-1.61.1-bp154.2.3.1.src.rpm rclone-1.61.1-bp154.2.3.1.x86_64.rpm rclone-bash-completion-1.61.1-bp154.2.3.1.noarch.rpm rclone-zsh-completion-1.61.1-bp154.2.3.1.noarch.rpm rclone-1.61.1-bp154.2.3.1.i586.rpm rclone-1.61.1-bp154.2.3.1.aarch64.rpm rclone-1.61.1-bp154.2.3.1.ppc64le.rpm rclone-1.61.1-bp154.2.3.1.s390x.rpm openSUSE-2023-279 important openSUSE Backports SLE-15-SP4 Update This update for python-bugzilla fixes the following issues: - Fixed potential API Key leak (boo#1215718). python-bugzilla-3.2.0-bp154.3.8.1.src.rpm python3-bugzilla-3.2.0-bp154.3.8.1.noarch.rpm openSUSE-2023-323 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojo-IOLoop-ReadWriteProcess fixes the following issues: - Adapt to deprecation of spurt in Mojolicious perl-Mojo-IOLoop-ReadWriteProcess-0.33-bp154.2.6.1.noarch.rpm perl-Mojo-IOLoop-ReadWriteProcess-0.33-bp154.2.6.1.src.rpm openSUSE-2023-277 critical openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - Chromium 117.0.5938.132 (boo#1215776): * CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx (boo#1215778) * CVE-2023-5186: Use after free in Passwords * CVE-2023-5187: Use after free in Extensions - Chromium 117.0.5938.92: * stability improvements chromedriver-117.0.5938.132-bp154.2.126.1.x86_64.rpm chromium-117.0.5938.132-bp154.2.126.1.src.rpm chromium-117.0.5938.132-bp154.2.126.1.x86_64.rpm chromedriver-117.0.5938.132-bp154.2.126.1.aarch64.rpm chromium-117.0.5938.132-bp154.2.126.1.aarch64.rpm openSUSE-2023-290 moderate openSUSE Backports SLE-15-SP4 Update This update for gthumb fixes the following issues: Update to version 3.12.2 (boo#1209655 boo#1209656): - Fixed possible crash when changing directory during thumbnails creation. - Added support for larger thumbnail sizes: 512, 768 and 1024 pixels. Update to version 3.12.1: - PNG loader ignores gAMA. - Transparent webp images are rendered incorrectly. - Crash when dropping files on an empty folder/catalog. - Fixed location loading after mounting volume. - JPEG image dimensions not displayed for files inside the trash. - Infinite Loop when viewing more than 50 thumbnails. - X11 window title is not set. - Copy release notes on build from NEWS to metainfo file. - Fixed build if appstream >= 0.14.6 is not available. - Fix incorrect usage of shared_module in extensions. - cli: mention that user can open files and/or directories. - Updated translations. gthumb-3.12.2-bp154.2.3.1.src.rpm gthumb-3.12.2-bp154.2.3.1.x86_64.rpm gthumb-devel-3.12.2-bp154.2.3.1.x86_64.rpm gthumb-lang-3.12.2-bp154.2.3.1.noarch.rpm gthumb-3.12.2-bp154.2.3.1.i586.rpm gthumb-devel-3.12.2-bp154.2.3.1.i586.rpm gthumb-3.12.2-bp154.2.3.1.aarch64.rpm gthumb-devel-3.12.2-bp154.2.3.1.aarch64.rpm gthumb-3.12.2-bp154.2.3.1.ppc64le.rpm gthumb-devel-3.12.2-bp154.2.3.1.ppc64le.rpm gthumb-3.12.2-bp154.2.3.1.s390x.rpm gthumb-devel-3.12.2-bp154.2.3.1.s390x.rpm openSUSE-2023-293 critical openSUSE Backports SLE-15-SP4 Update This update for exim fixes the following issues: * CVE-2023-42114: NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability (boo#1215784) * CVE-2023-42115: AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability (boo#1215785) * CVE-2023-42116: SMTP Challenge Stack-based Buffer Overflow Remote Code Execution Vulnerability (boo#1215786) exim-4.94.2-bp154.2.6.1.src.rpm exim-4.94.2-bp154.2.6.1.x86_64.rpm exim-debuginfo-4.94.2-bp154.2.6.1.x86_64.rpm exim-debugsource-4.94.2-bp154.2.6.1.x86_64.rpm eximon-4.94.2-bp154.2.6.1.x86_64.rpm eximon-debuginfo-4.94.2-bp154.2.6.1.x86_64.rpm eximstats-html-4.94.2-bp154.2.6.1.x86_64.rpm exim-4.94.2-bp154.2.6.1.aarch64.rpm exim-debuginfo-4.94.2-bp154.2.6.1.aarch64.rpm exim-debugsource-4.94.2-bp154.2.6.1.aarch64.rpm eximon-4.94.2-bp154.2.6.1.aarch64.rpm eximon-debuginfo-4.94.2-bp154.2.6.1.aarch64.rpm eximstats-html-4.94.2-bp154.2.6.1.aarch64.rpm exim-4.94.2-bp154.2.6.1.ppc64le.rpm exim-debuginfo-4.94.2-bp154.2.6.1.ppc64le.rpm exim-debugsource-4.94.2-bp154.2.6.1.ppc64le.rpm eximon-4.94.2-bp154.2.6.1.ppc64le.rpm eximon-debuginfo-4.94.2-bp154.2.6.1.ppc64le.rpm eximstats-html-4.94.2-bp154.2.6.1.ppc64le.rpm exim-4.94.2-bp154.2.6.1.s390x.rpm exim-debuginfo-4.94.2-bp154.2.6.1.s390x.rpm exim-debugsource-4.94.2-bp154.2.6.1.s390x.rpm eximon-4.94.2-bp154.2.6.1.s390x.rpm eximon-debuginfo-4.94.2-bp154.2.6.1.s390x.rpm eximstats-html-4.94.2-bp154.2.6.1.s390x.rpm openSUSE-2023-294 moderate openSUSE Backports SLE-15-SP4 Update This update for seamonkey fixes the following issues: - allow building with binutils >= 2.41: - override build date for reproducible builds (boo#1047218) seamonkey-2.53.17.1-bp154.2.14.1.src.rpm seamonkey-2.53.17.1-bp154.2.14.1.x86_64.rpm seamonkey-dom-inspector-2.53.17.1-bp154.2.14.1.x86_64.rpm seamonkey-irc-2.53.17.1-bp154.2.14.1.x86_64.rpm seamonkey-2.53.17.1-bp154.2.14.1.i586.rpm seamonkey-dom-inspector-2.53.17.1-bp154.2.14.1.i586.rpm seamonkey-irc-2.53.17.1-bp154.2.14.1.i586.rpm seamonkey-2.53.17.1-bp154.2.14.1.aarch64.rpm seamonkey-dom-inspector-2.53.17.1-bp154.2.14.1.aarch64.rpm seamonkey-irc-2.53.17.1-bp154.2.14.1.aarch64.rpm openSUSE-2023-301 moderate openSUSE Backports SLE-15-SP4 Update This update for kubo fixes the following issues: Update to 0.23.0 - for details see * https://github.com/ipfs/kubo/releases/tag/v0.23.0 * Mplex deprecation * Gateway: meaningful CAR responses on Not Found errors * Gateway: added Gateway.DisableHTMLErrors configuration option * Binary characters in file names: no longer works with old clients and new Kubo servers * Self-hosting /routing/v1 endpoint for delegated routing needs * Trustless Gateway Over Libp2p Experiment * Removal of /quic (Draft 29) support * Better Caching of multiaddresses for providers in DHT servers * Fixed FUSE multiblock structures Update to 0.22.0 - for details see * https://github.com/ipfs/kubo/releases/tag/v0.22.0 * Gateway: support for order= and dups= parameters (IPIP-412) * ipfs name publish now supports V2 only IPNS records * IPNS name resolution has been fixed * go-libp2p v0.29.0 update with smart dialing kubo-0.23.0-bp154.5.3.src.rpm kubo-0.23.0-bp154.5.3.x86_64.rpm kubo-0.23.0-bp154.5.3.i586.rpm kubo-0.23.0-bp154.5.3.aarch64.rpm kubo-0.23.0-bp154.5.3.ppc64le.rpm kubo-0.23.0-bp154.5.3.s390x.rpm openSUSE-2023-300 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 118.0.5993.70 (boo#1216111) - CVE-2023-5218: Use after free in Site Isolation - CVE-2023-5487: Inappropriate implementation in Fullscreen - CVE-2023-5484: Inappropriate implementation in Navigation - CVE-2023-5475: Inappropriate implementation in DevTools - CVE-2023-5483: Inappropriate implementation in Intents - CVE-2023-5481: Inappropriate implementation in Downloads - CVE-2023-5476: Use after free in Blink History - CVE-2023-5474: Heap buffer overflow in PDF - CVE-2023-5479: Inappropriate implementation in Extensions API - CVE-2023-5485: Inappropriate implementation in Autofill - CVE-2023-5478: Inappropriate implementation in Autofill - CVE-2023-5477: Inappropriate implementation in Installer - CVE-2023-5486: Inappropriate implementation in Input - CVE-2023-5473: Use after free in Cast chromedriver-118.0.5993.70-bp154.2.132.1.x86_64.rpm chromium-118.0.5993.70-bp154.2.132.1.src.rpm chromium-118.0.5993.70-bp154.2.132.1.x86_64.rpm chromedriver-118.0.5993.70-bp154.2.132.1.aarch64.rpm chromium-118.0.5993.70-bp154.2.132.1.aarch64.rpm openSUSE-2023-305 moderate openSUSE Backports SLE-15-SP4 Update This update for opendkim fixes the following issues: * Fix call of RSA sign on big endian systems. (boo#1216117) autobuild-2.11.0-bp154.3.3.1.x86_64.rpm libopendkim11-2.11.0-bp154.3.3.1.x86_64.rpm librbl1-2.11.0-bp154.3.3.1.x86_64.rpm librepute1-2.11.0-bp154.3.3.1.x86_64.rpm libut1-2.11.0-bp154.3.3.1.x86_64.rpm libvbr2-2.11.0-bp154.3.3.1.x86_64.rpm miltertest-1.6.0-bp154.3.3.1.x86_64.rpm opendkim-2.11.0-bp154.3.3.1.src.rpm opendkim-2.11.0-bp154.3.3.1.x86_64.rpm opendkim-devel-2.11.0-bp154.3.3.1.x86_64.rpm autobuild-2.11.0-bp154.3.3.1.aarch64.rpm libopendkim11-2.11.0-bp154.3.3.1.aarch64.rpm librbl1-2.11.0-bp154.3.3.1.aarch64.rpm librepute1-2.11.0-bp154.3.3.1.aarch64.rpm libut1-2.11.0-bp154.3.3.1.aarch64.rpm libvbr2-2.11.0-bp154.3.3.1.aarch64.rpm miltertest-1.6.0-bp154.3.3.1.aarch64.rpm opendkim-2.11.0-bp154.3.3.1.aarch64.rpm opendkim-devel-2.11.0-bp154.3.3.1.aarch64.rpm autobuild-2.11.0-bp154.3.3.1.ppc64le.rpm libopendkim11-2.11.0-bp154.3.3.1.ppc64le.rpm librbl1-2.11.0-bp154.3.3.1.ppc64le.rpm librepute1-2.11.0-bp154.3.3.1.ppc64le.rpm libut1-2.11.0-bp154.3.3.1.ppc64le.rpm libvbr2-2.11.0-bp154.3.3.1.ppc64le.rpm miltertest-1.6.0-bp154.3.3.1.ppc64le.rpm opendkim-2.11.0-bp154.3.3.1.ppc64le.rpm opendkim-devel-2.11.0-bp154.3.3.1.ppc64le.rpm autobuild-2.11.0-bp154.3.3.1.s390x.rpm libopendkim11-2.11.0-bp154.3.3.1.s390x.rpm librbl1-2.11.0-bp154.3.3.1.s390x.rpm librepute1-2.11.0-bp154.3.3.1.s390x.rpm libut1-2.11.0-bp154.3.3.1.s390x.rpm libvbr2-2.11.0-bp154.3.3.1.s390x.rpm miltertest-1.6.0-bp154.3.3.1.s390x.rpm opendkim-2.11.0-bp154.3.3.1.s390x.rpm opendkim-devel-2.11.0-bp154.3.3.1.s390x.rpm openSUSE-2023-306 moderate openSUSE Backports SLE-15-SP4 Update This update for rxvt-unicode fixes the following issues: - Update to version 9.31: (CVE-2022-4170 boo#1206069) - implement a fix for CVE-2022-4170 (reported and analyzed by David Leadbeater). While present in version 9.30, it should not be exploitable. It is exploitable in versions 9.25 and 9.26, at least, and allows anybody controlling output to the terminal to execute arbitrary code in the urxvt process. - the background extension no longer requires off focus fading support to be compiled in. - the confirm-paste extension now offers a choice betwene pasting the original or a sanitized version, and also frees up memory used to store the paste text immediately. - fix compiling without frills. - fix rewrapMode: never. - fix regression that caused urxvt to no longer emit responses to OSC color queries other than OSC 4 ones. - fix regression that caused urxvt to no longer process OSC 705. - restore CENTURY to be 1900 to "improve" year parsing in urclock (or at least go back to the old interpretation) (based on an analysis by Tommy Pettersson). - exec_async (used e.g. by the matcher extension to spawn processes) now sets the URXVT_EXT_WINDOWID variable to the window id of the terminal. - implement -fps option/refreshRate resource to change the default 60 Hz maximum refresh limiter. I always wanted an fps option, but had to wait for a user requesting it. - new clickthrough extension. - perl now also requires Xext. - X region and shape extension functionality has been exposed to perl extensions. - RENDER extension no longer depends on ENABLE_XIM_ONTHESPOT. rxvt-unicode-9.31-bp154.2.9.1.src.rpm rxvt-unicode-9.31-bp154.2.9.1.x86_64.rpm rxvt-unicode-9.31-bp154.2.9.1.i586.rpm rxvt-unicode-9.31-bp154.2.9.1.aarch64.rpm rxvt-unicode-9.31-bp154.2.9.1.ppc64le.rpm rxvt-unicode-9.31-bp154.2.9.1.s390x.rpm openSUSE-2023-310 moderate openSUSE Backports SLE-15-SP4 Update This update for python-Django fixes the following issues: - CVE-2023-43665: Denial-of-service in django.utils.text.Truncator (boo#1215978). python-Django-2.2.28-bp154.2.15.1.src.rpm python3-Django-2.2.28-bp154.2.15.1.noarch.rpm openSUSE-2023-312 moderate openSUSE Backports SLE-15-SP4 Update This update for zabbix fixes the following issues: Updated to latest release 4.0.49 + ZBX-22695 Fixed eventlog duplicate timestamps zabbix-4.0.49-bp154.2.6.1.src.rpm zabbix-agent-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-java-gateway-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-phpfrontend-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-proxy-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-proxy-mysql-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-proxy-postgresql-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-proxy-sqlite-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-server-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-server-mysql-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-server-postgresql-4.0.49-bp154.2.6.1.x86_64.rpm zabbix-agent-4.0.49-bp154.2.6.1.i586.rpm zabbix-java-gateway-4.0.49-bp154.2.6.1.i586.rpm zabbix-phpfrontend-4.0.49-bp154.2.6.1.i586.rpm zabbix-proxy-4.0.49-bp154.2.6.1.i586.rpm zabbix-proxy-mysql-4.0.49-bp154.2.6.1.i586.rpm zabbix-proxy-postgresql-4.0.49-bp154.2.6.1.i586.rpm zabbix-proxy-sqlite-4.0.49-bp154.2.6.1.i586.rpm zabbix-server-4.0.49-bp154.2.6.1.i586.rpm zabbix-server-mysql-4.0.49-bp154.2.6.1.i586.rpm zabbix-server-postgresql-4.0.49-bp154.2.6.1.i586.rpm zabbix-agent-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-java-gateway-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-phpfrontend-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-proxy-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-proxy-mysql-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-proxy-postgresql-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-proxy-sqlite-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-server-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-server-mysql-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-server-postgresql-4.0.49-bp154.2.6.1.aarch64.rpm zabbix-agent-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-java-gateway-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-phpfrontend-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-proxy-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-proxy-mysql-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-proxy-postgresql-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-proxy-sqlite-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-server-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-server-mysql-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-server-postgresql-4.0.49-bp154.2.6.1.ppc64le.rpm zabbix-agent-4.0.49-bp154.2.6.1.s390x.rpm zabbix-java-gateway-4.0.49-bp154.2.6.1.s390x.rpm zabbix-phpfrontend-4.0.49-bp154.2.6.1.s390x.rpm zabbix-proxy-4.0.49-bp154.2.6.1.s390x.rpm zabbix-proxy-mysql-4.0.49-bp154.2.6.1.s390x.rpm zabbix-proxy-postgresql-4.0.49-bp154.2.6.1.s390x.rpm zabbix-proxy-sqlite-4.0.49-bp154.2.6.1.s390x.rpm zabbix-server-4.0.49-bp154.2.6.1.s390x.rpm zabbix-server-mysql-4.0.49-bp154.2.6.1.s390x.rpm zabbix-server-postgresql-4.0.49-bp154.2.6.1.s390x.rpm openSUSE-2023-313 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojolicious fixes the following issues: perl-Mojolicious was updated to 9.34 - Added support for serving static files with a prefix. - Deprecated Mojo::File::spurt in favor of Mojo::File::spew. - Added prefix attribute to Mojolicious::Static. - Added url_for_file method to Mojolicious::Controller. - Added file_path method to Mojolicious::Static. - Added spew method to Mojo::File. (genio) - Added encoding option to slurp method in Mojo::File. (genio) - Added url_for_asset and url_for_file helpers to Mojolicious::Plugins::DefaultHelpers. - Added favicon helper to Mojolicious::Plugin::TagHelpers. - Fixed support for module_true Perl feature in Mojolicious apps. (haarg) - Fixed a bug in Mojo::Promise where map could hang on false values after concurrency limit. (ilmari) - Fixed built-in templates to not require an internet connection. (hernan604) Update to 9.33 see /usr/share/doc/packages/perl-Mojolicious/Changes Update to 9.32 - Improved file and line number details in async/await exceptions. (batman) - Fixed various CSS selector equation bugs in Mojo::DOM::CSS. (mauke) - Fixed exceptions being added to the stash for formats other than HTML. (rawleyfowler) - Fixed context sensitivity issue. (Grinnz) perl-Mojolicious-9.340.0-bp154.2.6.1.noarch.rpm perl-Mojolicious-9.340.0-bp154.2.6.1.src.rpm openSUSE-2023-324 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojolicious-Plugin-AssetPack fixes the following issues: updated to 2.14, see /usr/share/doc/packages/perl-Mojolicious-Plugin-AssetPack/Changes - Added support for multiple download attempts for assets that need to be fetched. perl-Mojolicious-Plugin-AssetPack-2.14-bp154.2.6.1.noarch.rpm perl-Mojolicious-Plugin-AssetPack-2.14-bp154.2.6.1.src.rpm openSUSE-2023-304 critical openSUSE Backports SLE-15-SP4 Update This update for exim fixes the following issues: - CVE-2023-42117: Fixes Improper Neutralization of Special Elements Remote Code Execution Vulnerability (boo#1215787) - CVE-2023-42119: Fixes dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability (boo#1215789) exim-4.94.2-bp154.2.9.1.src.rpm exim-4.94.2-bp154.2.9.1.x86_64.rpm eximon-4.94.2-bp154.2.9.1.x86_64.rpm eximstats-html-4.94.2-bp154.2.9.1.x86_64.rpm exim-4.94.2-bp154.2.9.1.aarch64.rpm eximon-4.94.2-bp154.2.9.1.aarch64.rpm eximstats-html-4.94.2-bp154.2.9.1.aarch64.rpm exim-4.94.2-bp154.2.9.1.ppc64le.rpm eximon-4.94.2-bp154.2.9.1.ppc64le.rpm eximstats-html-4.94.2-bp154.2.9.1.ppc64le.rpm exim-4.94.2-bp154.2.9.1.s390x.rpm eximon-4.94.2-bp154.2.9.1.s390x.rpm eximstats-html-4.94.2-bp154.2.9.1.s390x.rpm openSUSE-2023-315 moderate openSUSE Backports SLE-15-SP4 Update This update for msr-tools fixes the following issues: - Expand upper limit of processor number for cpuid (boo#1215573) msr-tools-1.3-bp154.2.3.1.src.rpm msr-tools-1.3-bp154.2.3.1.x86_64.rpm msr-tools-1.3-bp154.2.3.1.i586.rpm openSUSE-2023-317 moderate openSUSE Backports SLE-15-SP4 Update This update for gpp fixes the following issues: Update to version 2.28: * Fixed typos in documentation (Issues #57 and #61) * Added #sinclude meta-macro for silent includes (Issue #63) gpp-2.28-bp154.2.3.1.src.rpm gpp-2.28-bp154.2.3.1.x86_64.rpm gpp-2.28-bp154.2.3.1.i586.rpm gpp-2.28-bp154.2.3.1.aarch64.rpm gpp-2.28-bp154.2.3.1.ppc64le.rpm gpp-2.28-bp154.2.3.1.s390x.rpm openSUSE-2023-308 critical openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - Chromium 118.0.5993.88: * unspecified security fix (boo#1216392) chromedriver-118.0.5993.88-bp154.2.135.1.x86_64.rpm chromium-118.0.5993.88-bp154.2.135.1.src.rpm chromium-118.0.5993.88-bp154.2.135.1.x86_64.rpm chromedriver-118.0.5993.88-bp154.2.135.1.aarch64.rpm chromium-118.0.5993.88-bp154.2.135.1.aarch64.rpm openSUSE-2023-325 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: - Chromium 118.0.5993.117 (boo#1216549) * CVE-2023-5472: Use after free in Profiles * Various fixes from internal audits, fuzzing and other initiatives chromedriver-118.0.5993.117-bp154.2.138.1.x86_64.rpm chromium-118.0.5993.117-bp154.2.138.1.src.rpm chromium-118.0.5993.117-bp154.2.138.1.x86_64.rpm chromedriver-118.0.5993.117-bp154.2.138.1.aarch64.rpm chromium-118.0.5993.117-bp154.2.138.1.aarch64.rpm openSUSE-2023-328 important openSUSE Backports SLE-15-SP4 Update This update for sox fixes the following issues: - Apply various fix patches taken from Debian package; it fixes also other entries (CVE-2022-31650 boo#1212060 CVE-2023-34318 boo#1212062 CVE-2023-34432 boo#1212063) - Fix floating point exception in src/voc.c (CVE-2023-32627 boo#1212061) libsox3-14.4.2-bp154.2.3.1.x86_64.rpm sox-14.4.2-bp154.2.3.1.src.rpm sox-14.4.2-bp154.2.3.1.x86_64.rpm sox-devel-14.4.2-bp154.2.3.1.x86_64.rpm libsox3-14.4.2-bp154.2.3.1.i586.rpm sox-14.4.2-bp154.2.3.1.i586.rpm sox-devel-14.4.2-bp154.2.3.1.i586.rpm libsox3-14.4.2-bp154.2.3.1.aarch64.rpm sox-14.4.2-bp154.2.3.1.aarch64.rpm sox-devel-14.4.2-bp154.2.3.1.aarch64.rpm libsox3-14.4.2-bp154.2.3.1.ppc64le.rpm sox-14.4.2-bp154.2.3.1.ppc64le.rpm sox-devel-14.4.2-bp154.2.3.1.ppc64le.rpm libsox3-14.4.2-bp154.2.3.1.s390x.rpm sox-14.4.2-bp154.2.3.1.s390x.rpm sox-devel-14.4.2-bp154.2.3.1.s390x.rpm openSUSE-2023-340 moderate openSUSE Backports SLE-15-SP4 Update This update for mkdud fixes the following issues: Update to 1.55: - work with both mkisofs and genisoimage Update to 1.54: - do not preprocess dist names when the --no-fix-dist option is used (boo#1199514) Update to 1.53: - adapt to support zstd compressed kernel modules Update to 1.52: - add SLE Micro to the list of known products (boo#1185844) Update to 1.51: - adapt to support xz compressed kernel modules (boo#1184550) mkdud-1.55-bp154.2.3.1.noarch.rpm mkdud-1.55-bp154.2.3.1.src.rpm openSUSE-2023-343 moderate openSUSE Backports SLE-15-SP4 Update This update for yubioath-desktop fixes the following issues: Version 5.1.0 - Support and manage FIDO-enabled YubiKeys. - Toggle applications over USB and NFC. - Major UI improvements. Version 5.0.5 - Compatibility update for yubikey-manager 4.0 - Add additional product names. Version 5.0.4 - New app icons on all platforms - Adjust the behaviour of the search bar, do not search accounts without having focus - Bugfix: Fix keyboard shortcut to copy account code - Bugfix: Show firmware version for YubiKey NEO correctly - Windows: Show correct version number in .msi installers - macOS: Fix issue with window positioning - macOS: Fix occacional crashes on startup - Linux: Fix the app icon and desktop entry for the Snap package. Version 5.0.3 - macOS: Make the app available in the macOS App Store - Windows: Make the app available in the Microsoft Store (for Windows 10 20.04 and higher) - Linux: Make the app available in the Snap Store - Add support for YubiKey 5C NFC - Bugfix: Make sure the application is always visible on Windows Version 5.0.2 - Allow spaces in secret key when adding accounts - UI: Move favorite button to the credential card - UI: Improved scrolling behaviour Version 5.0.1 - New colors for the account icons. - Use Roboto font on all platforms. - Increase some text sizes for better readability. - Change icon for the Settings button and move it to the left. - SysTray: Open application on double-click. - Terminology: Use "Accounts" instead of "Credentials". - Bugfix: Clear old accounts correctly when switching between devices. - Add keyboard shortcut (Ctrl/Cmd + i) for info popup. Version 5.0.0 - New UI based on Material Design and Qt Quick Controls 2 - Add Dark Mode and Light Mode - Feature: Allow switching between connected YubiKeys - Feature: Select favorite credentials, available from the System Tray/Menu Bar - Show some information about the connected YubiKey, such as firmware version and serial number - Add experimental support for external smart card readers, enabling the use of a YubiKey over NFC - Add initial accessability support Version 4.3.6b - Fixes problem where YubiKey was not being detected on macOS. yubioath-desktop-5.1.0-bp154.2.3.1.src.rpm yubioath-desktop-5.1.0-bp154.2.3.1.x86_64.rpm yubioath-desktop-5.1.0-bp154.2.3.1.i586.rpm yubioath-desktop-5.1.0-bp154.2.3.1.aarch64.rpm yubioath-desktop-5.1.0-bp154.2.3.1.ppc64le.rpm yubioath-desktop-5.1.0-bp154.2.3.1.s390x.rpm openSUSE-2023-346 moderate openSUSE Backports SLE-15-SP4 Update This update for python-yamllint fixes the following issues: - Add python-setuptools requirement needed for entrypoints (boo#1151703, boo#1216677) python-yamllint-1.22.1-bp154.2.3.1.src.rpm python3-yamllint-1.22.1-bp154.2.3.1.noarch.rpm openSUSE-2023-355 moderate openSUSE Backports SLE-15-SP4 Update This update for seamonkey fixes the following issues: - Fixed building with rust >= 1.48 seamonkey-2.53.17.1-bp154.2.17.1.src.rpm seamonkey-2.53.17.1-bp154.2.17.1.x86_64.rpm seamonkey-dom-inspector-2.53.17.1-bp154.2.17.1.x86_64.rpm seamonkey-irc-2.53.17.1-bp154.2.17.1.x86_64.rpm seamonkey-2.53.17.1-bp154.2.17.1.i586.rpm seamonkey-dom-inspector-2.53.17.1-bp154.2.17.1.i586.rpm seamonkey-irc-2.53.17.1-bp154.2.17.1.i586.rpm seamonkey-2.53.17.1-bp154.2.17.1.aarch64.rpm seamonkey-dom-inspector-2.53.17.1-bp154.2.17.1.aarch64.rpm seamonkey-irc-2.53.17.1-bp154.2.17.1.aarch64.rpm openSUSE-2023-362 moderate openSUSE Backports SLE-15-SP4 Update This update for perl-Mojo-IOLoop-ReadWriteProcess fixes the following issues: Updated to 0.34: see /usr/share/doc/packages/perl-Mojo-IOLoop-ReadWriteProcess/Changes + 0.34 2023-09-18T15:47:18Z - Adapt to deprecation of spurt in upstream Mojolicious - Make git work in github workflow - Turn warnings "Sleeping inside locked section" into notes - Avoid warnings about using undefined value as file handle perl-Mojo-IOLoop-ReadWriteProcess-0.340.0-bp154.2.9.1.noarch.rpm perl-Mojo-IOLoop-ReadWriteProcess-0.340.0-bp154.2.9.1.src.rpm openSUSE-2023-361 moderate openSUSE Backports SLE-15-SP4 Update This update for tor fixes the following issues: - tor 0.4.8.8: * Mitigate an issue when Tor compiled with OpenSSL can crash during handshake with a remote relay. (TROVE-2023-004, boo#1216873) * Regenerate fallback directories generated on November 03, 2023. * Update the geoip files to match the IPFire Location Database, as retrieved on 2023/11/03 * directory authority: Look at the network parameter "maxunmeasuredbw" with the correct spelling * vanguards addon support: Count the conflux linked cell as valid when it is successfully processed. This will quiet a spurious warn in the vanguards addon - tor 0.4.8.7: * Fix an issue that prevented us from pre-building more conflux sets after existing sets had been used - tor 0.4.8.6: * onion service: Fix a reliability issue where services were expiring their introduction points every consensus update. This caused connectivity issues for clients caching the old descriptor and intro points * Log the input and output buffer sizes when we detect a potential compression bomb * Disable multiple BUG warnings of a missing relay identity key when starting an instance of Tor compiled without relay support * When reporting a pseudo-networkstatus as a bridge authority, or answering "ns/purpose/*" controller requests, include accurate published-on dates from our list of router descriptors * Use less frightening language and lower the log-level of our run-time ABI compatibility check message in our Zstd compression subsystem - tor 0.4.8.5: * bugfixes creating log BUG stacktrace - tor 0.4.8.4: * Extend DoS protection to partially opened channels and known relays * Dynamic Proof-Of-Work protocol to thwart flooding DoS attacks against hidden services. Disabled by default, enable via "HiddenServicePoW" in torrc * Implement conflux traffic splitting * Directory authorities and relays now interact properly with directory authorities if they change addresses - tor 0.4.7.14: * bugfix affecting vanguards (onion service), and minor fixes - Enable support for scrypt() tor-0.4.8.8-bp154.2.15.1.src.rpm tor-0.4.8.8-bp154.2.15.1.x86_64.rpm tor-0.4.8.8-bp154.2.15.1.i586.rpm tor-0.4.8.8-bp154.2.15.1.aarch64.rpm tor-0.4.8.8-bp154.2.15.1.ppc64le.rpm tor-0.4.8.8-bp154.2.15.1.s390x.rpm openSUSE-2023-365 moderate openSUSE Backports SLE-15-SP4 Update This update for vlc fixes the following issues: Update to version 3.0.20: + Video Output: - Fix green line in fullscreen in D3D11 video output - Fix crash with some AMD drivers old versions - Fix events propagation issue when double-clicking with mouse wheel + Decoders: - Fix crash when AV1 hardware decoder fails + Interface: - Fix annoying disappearance of the Windows fullscreen controller + Demuxers: - Fix potential security issue (OOB Write) on MMS:// by checking user size bounds Update to version 3.0.19: + Core: - Fix next-frame freezing in most scenarios + Demux: - Support RIFF INFO tags for Wav files - Fix AVI files with flipped RAW video planes - Fix duration on short and small Ogg/Opus files - Fix some HLS/TS streams with ID3 prefix - Fix some HLS playlist refresh drift - Fix for GoPro MAX spatial metadata - Improve FFmpeg-muxed MP4 chapters handling - Improve playback for QNap-produced AVI files - Improve playback of some old RealVideo files - Fix duration probing on some MP4 with missing information + Decoders: - Multiple fixes on AAC handling - Activate hardware decoding of AV1 on Windows (DxVA) - Improve AV1 HDR support with software decoding - Fix some AV1 GBRP streams, AV1 super-resolution streams and monochrome ones - Fix black screen on poorly edited MP4 files on Android Mediacodec - Fix rawvid video in NV12 - Fix several issues on Windows hardware decoding (including "too large resolution in DxVA") - Improve crunchyroll-produced SSA rendering + Video Output: - Super Resolution scaling with nVidia and Intel GPUs - Fix for an issue when cropping on Direct3D9 - Multiple fixes for hardware decoding on D3D11 and OpenGL interop - Fix an issue when playing -90°rotated video - Fix subtitles rendering blur on recent macOS + Input: - Improve SMB compatibility with Windows 11 hosts + Contribs: - Update of fluidlite, fixing some MIDI rendering on Windows - Update of zlib to 1.2.13 (CVE-2022-37434) - Update of FFmpeg, vpx (CVE-2023-5217), ebml, dav1d, libass + Misc: - Improve muxing timestamps in a few formats (reset to 0) - Fix some rendering issues on Linux with the fullscreen controller - Fix GOOM visualization - Fixes for Youtube playback - Fix some MPRIS inconsistencies that broke some OS widgets on Linux - Implement MPRIS TrackList signals - Fix opening files in read-only mode - Fix password search using the Kwallet backend - Fix some crashes on macOS when switching application - Fix 5.1/7.1 output on macOS and tvOS - Fix several crashes and bugs in the macOS preferences panel - Improvements on the threading of the MMDevice audio output on Windows - Fix a potential security issue on the uninstaller DLLs - Fix memory leaks when using the media_list_player libVLC APIs + Translations: - Update of most translations - New translations to Esperanto, Interlingue, Lao, Macedonian, Burmese, Odia, Samoan and Swahili libvlc5-3.0.20-bp154.2.6.1.x86_64.rpm libvlccore9-3.0.20-bp154.2.6.1.x86_64.rpm vlc-3.0.20-bp154.2.6.1.src.rpm vlc-3.0.20-bp154.2.6.1.x86_64.rpm vlc-codec-gstreamer-3.0.20-bp154.2.6.1.x86_64.rpm vlc-devel-3.0.20-bp154.2.6.1.x86_64.rpm vlc-jack-3.0.20-bp154.2.6.1.x86_64.rpm vlc-lang-3.0.20-bp154.2.6.1.noarch.rpm vlc-noX-3.0.20-bp154.2.6.1.x86_64.rpm vlc-opencv-3.0.20-bp154.2.6.1.x86_64.rpm vlc-qt-3.0.20-bp154.2.6.1.x86_64.rpm vlc-vdpau-3.0.20-bp154.2.6.1.x86_64.rpm libvlc5-3.0.20-bp154.2.6.1.aarch64.rpm libvlccore9-3.0.20-bp154.2.6.1.aarch64.rpm vlc-3.0.20-bp154.2.6.1.aarch64.rpm vlc-codec-gstreamer-3.0.20-bp154.2.6.1.aarch64.rpm vlc-devel-3.0.20-bp154.2.6.1.aarch64.rpm vlc-jack-3.0.20-bp154.2.6.1.aarch64.rpm vlc-noX-3.0.20-bp154.2.6.1.aarch64.rpm vlc-opencv-3.0.20-bp154.2.6.1.aarch64.rpm vlc-qt-3.0.20-bp154.2.6.1.aarch64.rpm vlc-vdpau-3.0.20-bp154.2.6.1.aarch64.rpm libvlc5-3.0.20-bp154.2.6.1.ppc64le.rpm libvlccore9-3.0.20-bp154.2.6.1.ppc64le.rpm vlc-3.0.20-bp154.2.6.1.ppc64le.rpm vlc-codec-gstreamer-3.0.20-bp154.2.6.1.ppc64le.rpm vlc-devel-3.0.20-bp154.2.6.1.ppc64le.rpm vlc-jack-3.0.20-bp154.2.6.1.ppc64le.rpm vlc-noX-3.0.20-bp154.2.6.1.ppc64le.rpm vlc-opencv-3.0.20-bp154.2.6.1.ppc64le.rpm vlc-qt-3.0.20-bp154.2.6.1.ppc64le.rpm vlc-vdpau-3.0.20-bp154.2.6.1.ppc64le.rpm openSUSE-2023-378 moderate openSUSE Backports SLE-15-SP4 Update This update for tor fixes the following issues: tor 0.3.5.18 - see /usr/share/doc/packages/tor/ChangeLog for details tor 0.4.8.9: * (onion service, TROVE-2023-006): - Fix a possible hard assert on a NULL pointer * (guard usage): - When Tor excluded a guard due to temporary circuit restrictions, it considered *additional* primary guards for potential usage by that circuit. tor-0.4.8.9-bp154.2.18.1.src.rpm tor-0.4.8.9-bp154.2.18.1.x86_64.rpm tor-0.4.8.9-bp154.2.18.1.i586.rpm tor-0.4.8.9-bp154.2.18.1.aarch64.rpm tor-0.4.8.9-bp154.2.18.1.ppc64le.rpm tor-0.4.8.9-bp154.2.18.1.s390x.rpm openSUSE-2023-368 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 119.0.6045.123 (boo#1216978) * CVE-2023-5996: Use after free in WebAudio Chromium 119.0.6045.105 (boo#1216783) * CVE-2023-5480: Inappropriate implementation in Payments * CVE-2023-5482: Insufficient data validation in USB * CVE-2023-5849: Integer overflow in USB * CVE-2023-5850: Incorrect security UI in Downloads * CVE-2023-5851: Inappropriate implementation in Downloads * CVE-2023-5852: Use after free in Printing * CVE-2023-5853: Incorrect security UI in Downloads * CVE-2023-5854: Use after free in Profiles * CVE-2023-5855: Use after free in Reading Mode * CVE-2023-5856: Use after free in Side Panel * CVE-2023-5857: Inappropriate implementation in Downloads * CVE-2023-5858: Inappropriate implementation in WebApp Provider * CVE-2023-5859: Incorrect security UI in Picture In Picture gn was updated to version 0.20231023: * many updates to support Chromium 119 build chromedriver-119.0.6045.123-bp154.2.141.1.x86_64.rpm chromium-119.0.6045.123-bp154.2.141.1.src.rpm chromium-119.0.6045.123-bp154.2.141.1.x86_64.rpm gn-0.20231023-bp154.3.6.1.src.rpm gn-0.20231023-bp154.3.6.1.x86_64.rpm gn-debuginfo-0.20231023-bp154.3.6.1.x86_64.rpm gn-debugsource-0.20231023-bp154.3.6.1.x86_64.rpm gn-0.20231023-bp154.3.6.1.i586.rpm gn-debuginfo-0.20231023-bp154.3.6.1.i586.rpm gn-debugsource-0.20231023-bp154.3.6.1.i586.rpm chromedriver-119.0.6045.123-bp154.2.141.1.aarch64.rpm chromium-119.0.6045.123-bp154.2.141.1.aarch64.rpm gn-0.20231023-bp154.3.6.1.aarch64.rpm gn-debuginfo-0.20231023-bp154.3.6.1.aarch64.rpm gn-debugsource-0.20231023-bp154.3.6.1.aarch64.rpm gn-0.20231023-bp154.3.6.1.ppc64le.rpm gn-debuginfo-0.20231023-bp154.3.6.1.ppc64le.rpm gn-debugsource-0.20231023-bp154.3.6.1.ppc64le.rpm gn-0.20231023-bp154.3.6.1.s390x.rpm gn-debuginfo-0.20231023-bp154.3.6.1.s390x.rpm gn-debugsource-0.20231023-bp154.3.6.1.s390x.rpm openSUSE-2023-370 important openSUSE Backports SLE-15-SP4 Update This update for connman fixes the following issues: - Update to 1.42 * Fix issue with iwd and signal strength calculation. * Fix issue with iwd and handling service removal. * Fix issue with iwd and handling new connections. * Fix issue with handling default online check URL. * Fix issue with handling nameservers refresh. * Fix issue with handling proxy from DHCP lease. (boo#1210395 CVE-2023-28488) * Fix issue with handling multiple proxies from PAC. * Fix issue with handling manual time update changes. * Fix issue with handling invalid gateway routes. * Fix issue with handling hidden WiFi agent requests. * Fix issue with handling WiFi SAE authentication failure. * Fix issue with handling DNS Proxy and TCP server replies. * Add support for regulatory domain following timezone. * Add support for localtime configuration option. connman-1.42-bp154.2.6.1.src.rpm connman-1.42-bp154.2.6.1.x86_64.rpm connman-client-1.42-bp154.2.6.1.x86_64.rpm connman-devel-1.42-bp154.2.6.1.x86_64.rpm connman-doc-1.42-bp154.2.6.1.x86_64.rpm connman-nmcompat-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-hh2serial-gps-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-iospm-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-l2tp-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-openvpn-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-polkit-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-pptp-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-tist-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-vpnc-1.42-bp154.2.6.1.x86_64.rpm connman-plugin-wireguard-1.42-bp154.2.6.1.x86_64.rpm connman-test-1.42-bp154.2.6.1.x86_64.rpm connman-1.42-bp154.2.6.1.i586.rpm connman-client-1.42-bp154.2.6.1.i586.rpm connman-devel-1.42-bp154.2.6.1.i586.rpm connman-doc-1.42-bp154.2.6.1.i586.rpm connman-nmcompat-1.42-bp154.2.6.1.i586.rpm connman-plugin-hh2serial-gps-1.42-bp154.2.6.1.i586.rpm connman-plugin-iospm-1.42-bp154.2.6.1.i586.rpm connman-plugin-l2tp-1.42-bp154.2.6.1.i586.rpm connman-plugin-openvpn-1.42-bp154.2.6.1.i586.rpm connman-plugin-polkit-1.42-bp154.2.6.1.i586.rpm connman-plugin-pptp-1.42-bp154.2.6.1.i586.rpm connman-plugin-tist-1.42-bp154.2.6.1.i586.rpm connman-plugin-wireguard-1.42-bp154.2.6.1.i586.rpm connman-test-1.42-bp154.2.6.1.i586.rpm connman-1.42-bp154.2.6.1.aarch64.rpm connman-client-1.42-bp154.2.6.1.aarch64.rpm connman-devel-1.42-bp154.2.6.1.aarch64.rpm connman-doc-1.42-bp154.2.6.1.aarch64.rpm connman-nmcompat-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-hh2serial-gps-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-iospm-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-l2tp-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-openvpn-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-polkit-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-pptp-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-tist-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-vpnc-1.42-bp154.2.6.1.aarch64.rpm connman-plugin-wireguard-1.42-bp154.2.6.1.aarch64.rpm connman-test-1.42-bp154.2.6.1.aarch64.rpm connman-1.42-bp154.2.6.1.ppc64le.rpm connman-client-1.42-bp154.2.6.1.ppc64le.rpm connman-devel-1.42-bp154.2.6.1.ppc64le.rpm connman-doc-1.42-bp154.2.6.1.ppc64le.rpm connman-nmcompat-1.42-bp154.2.6.1.ppc64le.rpm connman-plugin-iospm-1.42-bp154.2.6.1.ppc64le.rpm connman-plugin-l2tp-1.42-bp154.2.6.1.ppc64le.rpm connman-plugin-openvpn-1.42-bp154.2.6.1.ppc64le.rpm connman-plugin-polkit-1.42-bp154.2.6.1.ppc64le.rpm connman-plugin-pptp-1.42-bp154.2.6.1.ppc64le.rpm connman-plugin-vpnc-1.42-bp154.2.6.1.ppc64le.rpm connman-plugin-wireguard-1.42-bp154.2.6.1.ppc64le.rpm connman-test-1.42-bp154.2.6.1.ppc64le.rpm connman-1.42-bp154.2.6.1.s390x.rpm connman-client-1.42-bp154.2.6.1.s390x.rpm connman-devel-1.42-bp154.2.6.1.s390x.rpm connman-doc-1.42-bp154.2.6.1.s390x.rpm connman-nmcompat-1.42-bp154.2.6.1.s390x.rpm connman-plugin-hh2serial-gps-1.42-bp154.2.6.1.s390x.rpm connman-plugin-iospm-1.42-bp154.2.6.1.s390x.rpm connman-plugin-l2tp-1.42-bp154.2.6.1.s390x.rpm connman-plugin-openvpn-1.42-bp154.2.6.1.s390x.rpm connman-plugin-polkit-1.42-bp154.2.6.1.s390x.rpm connman-plugin-pptp-1.42-bp154.2.6.1.s390x.rpm connman-plugin-tist-1.42-bp154.2.6.1.s390x.rpm connman-plugin-vpnc-1.42-bp154.2.6.1.s390x.rpm connman-plugin-wireguard-1.42-bp154.2.6.1.s390x.rpm connman-test-1.42-bp154.2.6.1.s390x.rpm openSUSE-2023-372 important openSUSE Backports SLE-15-SP4 Update This update for chromium fixes the following issues: Chromium 119.0.6045.159 (boo#1217142) * CVE-2023-5997: Use after free in Garbage Collection * CVE-2023-6112: Use after free in Navigation * Various fixes from internal audits, fuzzing and other initiatives chromedriver-119.0.6045.159-bp154.2.144.1.x86_64.rpm chromium-119.0.6045.159-bp154.2.144.1.src.rpm chromium-119.0.6045.159-bp154.2.144.1.x86_64.rpm chromedriver-119.0.6045.159-bp154.2.144.1.aarch64.rpm chromium-119.0.6045.159-bp154.2.144.1.aarch64.rpm openSUSE-2023-377 moderate openSUSE Backports SLE-15-SP4 Update This update for tryton, trytond, trytond_currency, trytond_purchase, trytond_stock fixes the following issues: Changes in tryton: - Version 6.0.31 - Bugfix Release - Version 6.0.30 - Bugfix Release - Version 6.0.29 - Bugfix Release Changes in trytond: - Version 6.0.38 - Bugfix Release - Version 6.0.37 - Bugfix Release - Version 6.0.36 - Bugfix Release Changes in trytond_currency: - Version 6.0.5 - Bugfix Release - Version 6.0.5 - Bugfix Release - Version 6.0.5 - Bugfix Release - Version 6.0.4 - Bugfix Release Changes in trytond_purchase: - Version 6.0.14 - Bugfix Release - Version 6.0.13 - Bugfix Release - Version 6.0.12 - Bugfix Release Changes in trytond_stock: - Version 6.0.23 - Bugfix Release - Version 6.0.22 - Bugfix Release tryton-6.0.31-bp154.2.27.1.noarch.rpm tryton-6.0.31-bp154.2.27.1.src.rpm trytond-6.0.38-bp154.2.36.1.noarch.rpm trytond-6.0.38-bp154.2.36.1.src.rpm trytond_currency-6.0.5-bp154.2.6.1.noarch.rpm trytond_currency-6.0.5-bp154.2.6.1.src.rpm trytond_purchase-6.0.14-bp154.2.18.1.noarch.rpm trytond_purchase-6.0.14-bp154.2.18.1.src.rpm trytond_stock-6.0.23-bp154.2.21.1.noarch.rpm trytond_stock-6.0.23-bp154.2.21.1.src.rpm openSUSE-2023-382 moderate openSUSE Backports SLE-15-SP4 Update This update for swaks fixes the following issues: - man page added (boo#1193140). - also require perl-IO-Socket-INET6 to ipv6 works out of the box - some feature require perl-Net-DNS swaks-20201014.0-bp154.2.3.1.noarch.rpm swaks-20201014.0-bp154.2.3.1.src.rpm