Packages changed: container-selinux (2.244.0 -> 2.245.0) gegl (0.4.64 -> 0.4.66) gtk-vnc kdepim-addons (25.08.2 -> 25.12.0) libarchive (3.8.3 -> 3.8.4) libeconf (0.8.2 -> 0.8.3) libgsf (1.14.53 -> 1.14.54) libvirt llvm21 (21.1.6 -> 21.1.7) localsearch (3.10.1 -> 3.10.2) mariadb nghttp3 (1.12.0 -> 1.13.1) openSUSE-release (20251216 -> 20251217) qt6-base quadrapassel (49.2.1 -> 49.2.3) quota samba (4.22.6+git.435.014e5eceb5d -> 4.23.4+git.428.6b48e7eba5b) tdb (1.4.13 -> 1.4.14) tevent (0.16.2 -> 0.17.1) timezone (2025b -> 2025c) wayland-utils (1.2.0 -> 1.3.0) === Details === ==== container-selinux ==== Version update (2.244.0 -> 2.245.0) - Update to version 2.245.0: * bump to v2.245.0 * Fix typo in container_selinux(8) man page * Add new booleans to container_selinux(8) man page * Allow containers to access shared public content * Add support for Incus * Add ~/.local/share/containers/storage/overlay-containers to .fc (bsc#1253682) ==== gegl ==== Version update (0.4.64 -> 0.4.66) Subpackages: gegl-0_4 gegl-0_4-lang libgegl-0_4-0 typelib-1_0-Gegl-0_4 - Update to 0.4.66: - Core: - Improved relocability now also on linux. - Ops: - gif-load: don’t embed libnsgif directly - Dependencies: - libnsgif: support using distro provided lib. - ctx: synchronize with ctx-0.1.14 ==== gtk-vnc ==== Subpackages: gtk-vnc-lang libgtk-vnc-2_0-0 libgvnc-1_0-0 libgvncpulse-1_0-0 - bsc#1251850 - removal of spice leads to regression in functionality, specifically for graphical console copy paste 001-src-introduce-a-vncclipboard.h-header-file.patch 002-Add-the-extended-clipboard-pseudo-encoding.patch 003-Implement-extended-clipboard-capability-negotiation.patch 004-Implement-client-to-server-clipboard-update-notification.patch 005-Flush-pending-clipboard-on-focus-in-event.patch 006-Implement-response-to-server-clipboard-REQUEST-action.patch 007-Implement-handling-of-server-clipboard-NOTIFY-action.patch 008-Complete-server-to-client-data-sync-PROVIDE.patch ==== kdepim-addons ==== Version update (25.08.2 -> 25.12.0) Subpackages: kdepim-addons-lang - Update to 25.12.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/25.12.0/ - Changes since 25.11.80: * Add missing include * Fix build with corrosion 0.6 * Fix typo * We need to use check here too * Fix compile with 1.8.0 * Fix build for kaichat plugins * Adapt to new api * Use enum for propertyname - Update to 25.11.80 * New feature release - Too many changes to list here. - Update to 25.08.3 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/25.08.3/ - Changes since 25.08.2: * Make it compile with last ktextaddons ==== libarchive ==== Version update (3.8.3 -> 3.8.4) - Update to 3.8.4: * bsdtar: Fix zero-length pattern issue * lib: Fix regression introduced in libarchive 3.8.2 when walking enterable but unreadable directories - add libarchive-3.8.4-tar-fix-tests.patch to fix tests ==== libeconf ==== Version update (0.8.2 -> 0.8.3) Subpackages: libeconf0 libeconf0-32bit - Update to version 0.8.3: * improved Documentation (#246) ==== libgsf ==== Version update (1.14.53 -> 1.14.54) Subpackages: gsf-office-thumbnailer libgsf-1-114 libgsf-lang - Update to version 1.14.54: + Fix ABR is msole properties code. + Up thumbnailer's memory limit to 512MB. + Various build fixes. ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Deactive gluster backend, package is going away for being unmaintained. ==== llvm21 ==== Version update (21.1.6 -> 21.1.7) - Update to version 21.1.7. * This release contains bug-fixes for the LLVM 21.1.0 release. This release is API and ABI compatible with 21.1.0. - Rebase llvm-do-not-install-static-libraries.patch. - Link with -z pack-relative-relocs to reduce size of relocations and speed up their application. - Run testsuite also in qemu emulation. (From Andreas Schwab.) ==== localsearch ==== Version update (3.10.1 -> 3.10.2) Subpackages: localsearch-lang - Update to version 3.10.2: + Fix possible errors if a directory is deleted while crawled + Improve handling of indexed folder configuration changes while the indexer is not running + Fix inconsistencies in "localsearch index" CLI utility that could lead to duplicates in the indexed folder settings + Fix pager not being closed after some CLI utilities exited with errors + Updated translations. ==== mariadb ==== Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - Add missing pam configuration file for the shipped auth_pam.so plugin (bsc#1254485) * mysql.pamd ==== nghttp3 ==== Version update (1.12.0 -> 1.13.1) - Update to 1.13.1: * Fix header name validation on a platform where char is unsigned - Update to 1.13.0: * Revert #395 partially * Replace POPCNT-based ispow2 with portable bitwise implementation to prevent illegal instruction crashes * doc: Recommend specifying rand callback * qpack: Optimize huffman decoding a bit * Remove unused enum values from nghttp3_stream_http_state * Qpack indexing strategy ==== openSUSE-release ==== Version update (20251216 -> 20251217) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== qt6-base ==== Subpackages: libQt6Concurrent6 libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6OpenGLWidgets6 libQt6PrintSupport6 libQt6Sql6 libQt6Test6 libQt6WaylandClient6 libQt6Widgets6 libQt6WlShellIntegration6 libQt6Xml6 qt6-network-tls qt6-networkinformation-glib qt6-networkinformation-nm qt6-platformtheme-gtk3 qt6-printsupport-cups qt6-sql-mysql qt6-sql-sqlite qt6-wayland - Add patch to fix crash due to 0001-fix-slow-scrolling-on-wayland.patch (boo#1253651): * 0001-wayland-Fix-crash-in-QWaylandShmBackingStore-scroll.patch ==== quadrapassel ==== Version update (49.2.1 -> 49.2.3) Subpackages: quadrapassel-lang - Update to version 49.2.3: + Fixed a bug where the pause button would not work by clicking + Updated translations. - Update to version 49.2.2: + Fixed incorrect margins for the statistics when the next block preview was disabled + Fixed focus for the main menu, enabling screen readers and keyboard navigation + The game now pauses when it loses focus (pauses when the main menu is shown) + Updated libgnome-games-support + Fixed a bug where on a new score, the player name entry wouldn't be focused if its rank was less than 10 + Updated translations. ==== quota ==== Subpackages: quota-nfs - Remove `PrivateDevices` systemd hardening from quotad.service because it needs access to block devices in /dev (bsc#1254310). ==== samba ==== Version update (4.22.6+git.435.014e5eceb5d -> 4.23.4+git.428.6b48e7eba5b) Subpackages: libldb2 libldb2-32bit python3-ldb samba-ad-dc-libs samba-client samba-client-32bit samba-client-libs samba-client-libs-32bit samba-dcerpc samba-gpupdate samba-ldb-ldap samba-libs samba-libs-python3 samba-python3 samba-winbind samba-winbind-libs samba-winbind-libs-32bit - samba-ad-dc-libs packages are missing a DLZ plugin for bind 9.20; (bso#15790); (bsc#1249058). - Update to 4.23.4 * Samba 4.22 breaks Time Machine; (bso#15926). * mdssvc doesn't support $time.iso dates before 1970; (bso#15947). * Fix winbind cache consistency; (bso#15963). * Assert failed: (dirfd != -1) || (smb_fname->base_name[0] == '/') in vfswrap_openat; (bso#15897). * ctdb can crash with inconsistent cluster lock configuration; (bso#15950). * samba-bgqd: rework man page; (bso#15809). * samba-bgqd can't find [printers] share; (bso#15936). * Winbind can hang forever in gssapi if there are network issues; (bso#15955). * libldb requires linking libreplace on Linux; (bso#15961). - Update to 4.23.3 * Spotlight search restriction for shares incomplete and default search searches in too many attributes; (bso#15927). * Searching for numbers doesn't work with Spotlight; (bso#15930). * rpcd_mdssvc may crash because name mangling is not initialized; (bso#15931). * Only increment lease epoch if a lease was granted; (bso#15933). * vfs_recycle does not update mtime; (bso#15940). * samba-log-parser fails with UnicodeDecodeError: 'utf-8' codec can't decode byte; (bso#15943). * Crash in ctdbd on failed updateip; (bso#15935). - Update to 4.23.2 * CVE-2025-10230: Command injection via WINS server hook script (bso#15903); (bsc#1251280). * CVE-2025-9640: uninitialized memory disclosure via vfs_streams_xattr; (bso#15885); (bsc#1251279). - Update to 4.23.1 * Incomplete bind configuration causes DLZ plugin to crash; (bso#15920). * winbind can crash at startup; (bso#15914). * vfs_ceph_new should not use ceph_ll_nonblocking_readv_writev for fsync_send; (bso#15919). * CTDB does not support PCP 7.0.0; (bso#15904). * CTDB_SOCKET can be used even when CTDB_TEST_MODE is not set; (bso#15921). - Update to 4.23.0 * samba.tests.safe_tarfile fails on Python 3.13 with additional security fixes for tarfile support; (bso#15911). * samba-4.21 fails to join AD when multiple DCs are returned; (bso#15905). * Uninitialized read leads to hanging rpcd_spoolss; (bso#15908). * Stack buffer overflow in samba3.smb2.dirlease.fileserver; (bso#15907). * Regression in gssproxy support in 4.23.rc1+; (bso#15902). * 'net ads group' failed to list domain groups; (bso#15900). * macOS Finder client DFS broken on 4.22.0; (bso#15843). * Self-signed certificates don't have X509v3 Subject Alternative Name for DNS; (bso#15899). * Improve handling of principals and realms in client tools; (bso#15893). * libquic build fixes; (bso#15896). * getpwuid does not shift to new DC when current DC is down; (bso#15844). * Windows security hardening locks out schannel'ed netlogon dc calls like netr_DsRGetDCName; (bso#15876). ==== tdb ==== Version update (1.4.13 -> 1.4.14) Subpackages: libtdb1 libtdb1-32bit python3-tdb - Add config-sitearch.patch - Update to 1.4.14 * let tdbtool return error on failure; (bso#15890). ==== tevent ==== Version update (0.16.2 -> 0.17.1) Subpackages: libtevent0 libtevent0-32bit python3-tevent - Add config-sitearch.patch - Update to 0.17.1 * Fix 1649525 Use of 32-bit time_t * Fix Coverity ID 1649524 Dereference before null check * Fix Coverity ID 1649526 Dereference before null check - Update to 0.17.0 * add tevent_context_set_wait_timeout() * add tevent_reset_immediate() ==== timezone ==== Version update (2025b -> 2025c) Subpackages: tzselect - Update to 2025c: * update Baja California DST rules in 1953, 1961-1975 * An unset TZ is no longer invalid when /etc/localtime is missing, and is abbreviated "UTC" not "-00". This reverts to 2024b behavior * tzset etc. are now more cautious about questionable TZ settings. * tzset etc. now treat ' ' like '_' in time zone abbreviations * tzfree now preserves errno, consistently with POSIX.1-2024 ‘free’. * zic has new options inspired by FreeBSD. ‘-D’ skips creation of output ancestor directories, ‘-m MODE’ sets output files’ mode, and ‘-u OWNER[:GROUP]’ sets output files’ owner and group. * multiple changes visible to developers ==== wayland-utils ==== Version update (1.2.0 -> 1.3.0) - Update to 1.3.0 * add color-management-v1 support * switch to the stable tablet protocol * support tablet bustype and relative dials * add color-representation-v1 support