Packages changed: GraphicsMagick MozillaFirefox (152.0.1 -> 152.0.3) aurorae6 (6.7.0 -> 6.7.1) bluedevil6 (6.7.0 -> 6.7.1) breeze6 (6.7.0 -> 6.7.1) breeze6-gtk (6.7.0 -> 6.7.1) btrfsprogs capstone checkmedia (7.0 -> 7.1) cifs-utils (7.4 -> 7.6) coreutils coreutils-systemd cpupower dbus-1-glib (0.112 -> 0.114) discover6 (6.7.0 -> 6.7.1) dnsmasq (2.92rel2 -> 2.93) drkonqi6 (6.7.0 -> 6.7.1) faad2 (2.11.2 -> 2.11.2.git13) flatpak-kcm6 (6.7.0 -> 6.7.1) fwupd giflib glib2 (2.88.1 -> 2.88.2) glibc gnome-control-center (50.2 -> 50.3) gnome-maps (50.1 -> 50.2) gnome-music (49.1 -> 50.0) gnome-software (50.2 -> 50.3) gnome-sudoku (50.1 -> 50.2.1) gpgme (2.1.0 -> 2.1.1) gspell (1.14.3 -> 1.14.4) gssdp (1.6.5 -> 1.6.6) gvfs (1.60.0 -> 1.60.1) jq (1.8.1 -> 1.8.2) kactivitymanagerd6 (6.7.0 -> 6.7.1) kde-cli-tools6 (6.7.0 -> 6.7.1) kde-gtk-config6 (6.7.0 -> 6.7.1) kdecoration6 (6.7.0 -> 6.7.1) kdeplasma6-addons (6.7.0 -> 6.7.1) kgamma6 (6.7.0 -> 6.7.1) kglobalacceld6 (6.7.0 -> 6.7.1) kinfocenter6 (6.7.0 -> 6.7.1) kmenuedit6 (6.7.0 -> 6.7.1) knighttime6 (6.7.0 -> 6.7.1) kompare kpipewire6 (6.7.0 -> 6.7.1) kscreen6 (6.7.0 -> 6.7.1) kscreenlocker6 (6.7.0 -> 6.7.1) ksshaskpass6 (6.7.0 -> 6.7.1) ksystemstats6 (6.7.0 -> 6.7.1) kwayland-integration6 (6.7.0 -> 6.7.1) kwayland6 (6.7.0 -> 6.7.1) kwin6 (6.7.0 -> 6.7.1) kwin6-x11 (6.7.0 -> 6.7.1) layer-shell-qt6 (6.7.0 -> 6.7.1) ldacBT (2.0.2.3 -> 2.0.2.5) libass (0.17.4 -> 0.17.5) libcamera libfprint libkscreen6 (6.7.0 -> 6.7.1) libksysguard6 (6.7.0 -> 6.7.1) libpisp (1.3.0 -> 1.6.0) libplasma6 (6.7.0 -> 6.7.1) libshumate (1.6.1 -> 1.6.2) libslirp (4.9.1+1 -> 4.9.3+4) libstorage-ng (4.5.334 -> 4.5.336) libvirt libwmf (0.2.13 -> 0.2.15) libzio (1.14 -> 1.15) milou6 (6.7.0 -> 6.7.1) mutter nano (9.0 -> 9.1) nbd ncurses (6.6.20260608 -> 6.6.20260613) nftables nghttp2 nvidia-open-driver-G06-signed nvidia-open-driver-G07-signed (595.80_k7.0.12_1 -> 595.84_k7.0.12_1) nvidia-open-driver-G07-signed-cuda ocean-sound-theme6 (6.7.0 -> 6.7.1) openSUSE-build-key openSUSE-release (20260623 -> 20260701) pam_kwallet6 (6.7.0 -> 6.7.1) pango (1.57.1 -> 1.58.0) pangomm (2.56.1 -> 2.56.2) pangomm1_4 (2.46.4 -> 2.46.5) patterns-kde perl-HTTP-Date (6.06 -> 6.70.0) plasma5support6 (6.7.0 -> 6.7.1) plasma6-activities (6.7.0 -> 6.7.1) plasma6-activities-stats (6.7.0 -> 6.7.1) plasma6-browser-integration (6.7.0 -> 6.7.1) plasma6-desktop (6.7.0 -> 6.7.1) plasma6-disks (6.7.0 -> 6.7.1) plasma6-integration (6.7.0 -> 6.7.1) plasma6-nm (6.7.0 -> 6.7.1) plasma6-openSUSE plasma6-pa (6.7.0 -> 6.7.1) plasma6-print-manager (6.7.0 -> 6.7.1) plasma6-systemmonitor (6.7.0 -> 6.7.1) plasma6-thunderbolt (6.7.0 -> 6.7.1) plasma6-workspace (6.7.0 -> 6.7.1) polkit-default-privs (1550+20260616.1f348eb -> 1550+20260623.563df94) polkit-kde-agent-6 (6.7.0 -> 6.7.1) powerdevil6 (6.7.0 -> 6.7.1) publicsuffix (20260513 -> 20260622) python-greenlet (3.5.0 -> 3.5.3) python-linux-procfs (0.7.3 -> 0.7.4) python-lxml (6.1.0 -> 6.1.1) python-zope.interface (8.4 -> 8.5) qqc2-breeze-style6 (6.7.0 -> 6.7.1) raspberrypi-firmware-dt rubygem-nokogiri (1.18.9 -> 1.19.4) salt sddm-kcm6 (6.7.0 -> 6.7.1) selinux-policy setools (4.6.0 -> 4.7.0) shim-leap socat (1.8.1.1 -> 1.8.1.3) spectacle (6.7.0 -> 6.7.1) strace (7.0 -> 7.1) systemd systemsettings6 (6.7.0 -> 6.7.1) tar tesseract-ocr thin-provisioning-tools (1.3.2 -> 1.3.3) transmission (4.1.2 -> 4.1.3) upower (1.91.1 -> 1.91.2) vim (9.2.0530 -> 9.2.0725) wacomtablet-kcm6 (6.7.0 -> 6.7.1) xclock (1.1.1 -> 1.2.0) xdg-desktop-portal-kde6 (6.7.0 -> 6.7.1) zlib === Details === ==== GraphicsMagick ==== Subpackages: libGraphicsMagick++-Q16-12 libGraphicsMagick-Q16-3 libGraphicsMagick3-config - added patches CVE-2026-46523: heap-use-after-free via a crafted MSL image [bsc#1268125] * GraphicsMagick-CVE-2026-46523.patch - modified patches * GraphicsMagick-disable-insecure-coders.patch (disable MSL to align with ImageMagick) ==== MozillaFirefox ==== Version update (152.0.1 -> 152.0.3) Subpackages: MozillaFirefox-branding-upstream - Mozilla Firefox 152.0.3 https://www.firefox.com/en-US/firefox/152.0.3/releasenotes/ * Fix an issue that could cause extreme memory usage and freezing on startup for users with language packs installed (bmo#2049845, boo#1269477) - Add mozilla-bmo2048250.patch, fix input method candidate window tracking by explicitly committing Wayland surface after setting cursor location. (boo#1268447 and bmo#2048250) - Mozilla Firefox 152.0.2 https://www.firefox.com/en-US/firefox/152.0.2/releasenotes/ * Fixed some Settings section headings showing placeholder text instead of the translated name in certain languages (bmo#2047983) * Fixed New Tab content not matching the browser's display language after it was changed. (bmo#2046945) * Fixed a regression that could break playback of some MP4 video files (bmo#2047467) * Fixed a performance regression that could slow down sites performing many encryption and decryption operations at once, such as Proton Drive (bmo#2046401) ==== aurorae6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== bluedevil6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== breeze6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: breeze6-cursors breeze6-decoration breeze6-style - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== breeze6-gtk ==== Version update (6.7.0 -> 6.7.1) Subpackages: gtk2-metatheme-breeze6 gtk3-metatheme-breeze6 gtk4-metatheme-breeze6 metatheme-breeze6-common - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== btrfsprogs ==== Subpackages: btrfsprogs-bash-completion btrfsprogs-udev-rules libbtrfs0 libbtrfsutil1 - Modernize building of Python bindings, to generate binary subpackages for each Python interpreter in the distro. ==== capstone ==== - Modernize packaging to use wheel as an intermediate project (`%python_build` is not supported anymore). Make building working with the rewritten python interpretors changes. ==== checkmedia ==== Version update (7.0 -> 7.1) Subpackages: libmediacheck7 - merge gh#openSUSE/checkmedia#25 - fine-tune build requirements - 7.1 ==== cifs-utils ==== Version update (7.4 -> 7.6) Subpackages: wb-cifs-idmap-plugin - Update cifs-utils to 7.6 * cifs.upcall: remove getpwuid() dependency * smbinfo: update notify subcommand * smbinfo: add filecompressioninfo subcommand * cifs.upcall: Adjust log level * docs: Enable debug logs * cifs.upcall: add option to enable debug logs * cifs.upcall: Retry krb5 TGS request with uppercase service name * mount.cifs: remove runtime pass_length calculation * mount.cifs: adjust get_password_from_file() buf size * build_assert: add ccan build_assert.h header * mount.cifs: fix buffer overrun in set_password * smbinfo: fix decimated subseconds in smbinfo filebasicinfo timestamp output * smbinfo: add notify subcommand * docs: update username= option to drop invalid examples * cifs.upcall: fix calloc() argument order in main() Fixes from 7.5: * docs: update echo_interval description * cifscreds: fix parsing of commands and parameters * cifs-utils: Fix documentation for character remappings. ==== coreutils ==== - Switch coreutils-single to build as hardlinks ==== coreutils-systemd ==== - Switch coreutils-single to build as hardlinks ==== cpupower ==== Subpackages: cpupower-bash-completion libcpupower1 - Fix broken EnvironmentFile path in cpupower service config file bsc#1269478 - Introduce cpupower-rpmlintrc to suppress devel dependency error A cpupower-rpmlintrc ==== dbus-1-glib ==== Version update (0.112 -> 0.114) - update to 0.114: * Fix bug reporting URL (Simon McVittie) * Move license documents to a REUSE-style LICENSES/ directory * Fix numerous deprecation warnings (Simon McVittie) * Avoid naming a variable 'bool', which is a reserved word in C23 and caused compilation to fail with gcc-15 * dbus-glib version control is now hosted on freedesktop.org's Gitlab installation, and bug reports and feature requests have switched from Bugzilla bugs (indicated by "fd.o #nnn") to ==== discover6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: discover6-backend-flatpak discover6-backend-fwupd discover6-backend-packagekit discover6-notifier - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * rpm-ostree: Wait for 60 seconds before looking at deployments * rpm-ostree: Limit filesystem watcher triggers (kde#519672) * appiumtests: fix removeButton click * Generate valid appstream:// URLs for Flatpak apps ==== dnsmasq ==== Version update (2.92rel2 -> 2.93) - Update to 2.93: * CVE-2026-12725, bsc#1268764: Heap buffer overflow in `log_query()` when logging unsupported DS/DNSKEY replies. * Fix a corner-case in DNSSEC validation with wildcards. * Fix DNSSEC failure with spurious RRSIGs. * Fix DNSSEC fail with CNAME replies to DS queries. * Fix regression in 2.92 release which broke DHCPv6 when a DHCP relay is in use. * Modify the inotify implementation so that inotify watches are only created after dnsmasq has changed permissions and userid. * CVE-2026-2291: Rework storage allocation for domain names. * Obsoletes dnsmasq-CVE-2026-6507.patch * Obsoletes dnsmasq-Fix-FTBFS-nettle-4.0.patch ==== drkonqi6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== faad2 ==== Version update (2.11.2 -> 2.11.2.git13) - Update to version 2.11.2.git13: * fix out-of-bounds X underflow in SBR low-power QMF assembly * fix out-of-bounds Xsbr write in hf_assembly sinusoid addition * update to Visual Studio 18 * prevent length_of_rvlc_sf underflow in rvlc_scale_factor_data * fix out-of-bounds iq_table read in iquant for -32768 * bound sscanf field width in option parsing * fix integer overflow in stszin/stscin allocation size checks * fix off-by-one frame index check in mp4read_seek * SBR: prevent heap overflow in channel-pair reconstruction * fix typo - Drop patches fixed upstream: * bc5de3ac7264f7a232951d06150ec1fcd4a20f6c.patch * 2653c918d788c5dc83826c97aaa4de4dd8931a8b.patch ==== flatpak-kcm6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - No code changes since 6.7.0 ==== fwupd ==== Subpackages: fwupd-bash-completion libfwupd3 typelib-1_0-Fwupd-2_0 - Migrate to manual service run ==== giflib ==== - Added patch: * 0001-Fix-CVE-2026-26740-heap-OOB-write-in-EGifGCBToSavedE.patch + fixing bsc#1259836 (CVE-2026-26740): heap out-of-bounds read when processing a specially crafted GIF file containing a GCE block with a truncated extension byte count ==== glib2 ==== Version update (2.88.1 -> 2.88.2) Subpackages: glib2-tools libgio-2_0-0 libgirepository-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 typelib-1_0-GIRepository-3_0 typelib-1_0-GLib-2_0 typelib-1_0-GLibUnix-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - Update to version 2.88.2: + gnulib: Fix unused flags variable warning + CI: set msys2-clang64 as default job for merges + Updated translations. ==== glibc ==== Subpackages: glibc-devel glibc-extra glibc-gconv-modules-extra glibc-locale glibc-locale-base - resolv-sprintrrf-unkown-types.patch: resolv: More types as unknown in ns_sprintrrf (CVE-2026-5435, bsc#1263656, BZ #34033) - resolv-sprintrrf-inet-ntop-check.patch: resolv: Check for inet_ntop failure in ns_sprintrrf - resolv-sprintrrf-buffer-overreads.patch: resolv: Fix buffer overreads in ns_sprintrrf (CVE-2026-6238, bsc#1263658, BZ #34069) - fma-shift-ub.patch: math: Fix fma alignment when exponent difference is exactly 64 (BZ #34183) - struct-reserved-members.patch: Rename __unused fields to __glibc_reserved - iconv-translit-intermediate-errors.patch: iconv: Suppress intermediate errors with //TRANSLIT (BZ #34236) - arm-vfp-plt-trampoline.patch: arm: Save/restore VFP registers in PLT trampolines (BZ #34144, BZ #15792) - filter use of -fhardened (gcc switch that selects multiple hardening options) ==== gnome-control-center ==== Version update (50.2 -> 50.3) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces gnome-control-center-users - Update to version 50.3: + Updated translations. ==== gnome-maps ==== Version update (50.1 -> 50.2) - Update to version 50.2: + Avoid focus route start entry when selecting a place (avoids show OSK on touch) + Updated translations. ==== gnome-music ==== Version update (49.1 -> 50.0) - Update to version 50.0: + Drop Grilo and use LocalSearch directly + Add volume controls accelerators + Refactor Repeat Mode Button into a separate class + Misc gstplayer refactoring + Icon is missing in «Add to Playlist» dialog + Updated translations - Add global __requires_exclude typelib\\(TSparql\\), filter out bogus typelib dependency. ==== gnome-software ==== Version update (50.2 -> 50.3) Subpackages: gnome-software-plugin-packagekit - Update to version 50.3: + Fix a memory leak + Updated translations. ==== gnome-sudoku ==== Version update (50.1 -> 50.2.1) - Update to version 50.2.1: + Fix tag being on the wrong commit - Changes from version 50.2: + Fix buttons not resetting on new game + Update translations. ==== gpgme ==== Version update (2.1.0 -> 2.1.1) Subpackages: libgpgme45 - Update to 2.1.1: * gpgme_op_export now also returns operational errors ==== gspell ==== Version update (1.14.3 -> 1.14.4) - Update to version 1.14.4: + Updated translations. ==== gssdp ==== Version update (1.6.5 -> 1.6.6) - Update to version 1.6.6: + Fix binding to unicast sockets (Regression introduced by 1.6.5) ==== gvfs ==== Version update (1.60.0 -> 1.60.1) Subpackages: gvfs-backend-afc gvfs-backend-goa gvfs-backend-gphoto gvfs-backend-samba gvfs-backends gvfs-fuse - Update to version 1.60.1: + smb: Fix authentication fallback broken with Samba 4.24 + dav: Fix redirect handling to prevent HTTPS downgrade and credential leakage + Some other fixes + Updated translations. - Drop gvfs-fix-udisks2-crash.patch: Fixed upstream. ==== jq ==== Version update (1.8.1 -> 1.8.2) Subpackages: libjq1 - Update to version 1.8.2 Security fixes * CVE-2026-32316: Fix heap buffer overflow in jvp_string_append and jvp_string_copy_replace_bad. * CVE-2026-33947: Limit path depth to prevent stack overflow in jv_setpath, jv_getpath, jv_delpaths. * CVE-2026-33948: Fix NUL truncation in the JSON parser. * CVE-2026-39956: Fix _strindices missing runtime type checks. * CVE-2026-39979: Fix out-of-bounds read in jv_parse_sized(). * CVE-2026-40164: Randomize hash seed to mitigate hash collision DoS attacks. * CVE-2026-40612: Limit containment check depth to prevent stack overflow in contains. * CVE-2026-41256: Fix NUL truncation in program files loaded with -f. * CVE-2026-41257: Fix signed-int overflow in stack_reallocate. * CVE-2026-43894: Reject numeric literals longer than DEC_MAX_DIGITS (999999999). * CVE-2026-43895: Reject embedded NUL bytes in module import paths. * CVE-2026-43896: Limit recursive object merge depth to prevent stack overflow. * CVE-2026-44777: Detect circular module imports to prevent stack overflow. * CVE-2026-47770: Guard deep structural equality and comparison recursion. * CVE-2026-49839: Fix heap-buffer-overflow in raw file loading. * CVE-2026-54679: Tighten string length bounds and propagate invalid jv in implode. * GHSA-gf4g-95wj-4q4r: Fix use-after-free in args2obj() array argument path. * GHSA-hj52-j2c9-r8r4: Fix signed-int overflow in tokenadd to prevent buffer overflow. * Limit the number of function parameters and definitions to prevent SEGV. * Pre-allocate tokenbuf for string parser to avoid undefined behavior. * Avoid stack overflow when freeing deeply nested values. * Fix memory leaks and double frees. Releasing * Update GPG signing key. CLI changes * Improve error message truncation with closing delimiters. * Remove extra space from die function output. * Fix raw input flag not to corrupt multi-byte characters. * Fix crash when importing a module with errors twice. * Increase the maximum printing depth from 256 to 10000. Changes to existing functions * Fix rtrimstr("") always outputting "". * Fix infinite loop and undefined behavior in del(.[nan]). * Refactor @uri and @urid to fix multi-byte UTF-8 corruption. * Fix tonumber and toboolean to reject strings with embedded null bytes. * Fix undefined behavior in modulo operator. * Fix reversed pointer subtraction in f_env bounds check. * Fix missing validity check in f_strflocaltime after f_localtime. * Fix year 2038 problem on 32-bit platforms. * Use // instead of //= in from_entries definition. Build and test changes * Drop strptime test using non-portable %F. * Limit oniguruma depth to 1024 in jq_fuzz_execute. * Fix localization test for time formatting functions. * Fix expected value assertion. * Fix typo in tests/jq.test. * Refactor tm2jv to handle fractional seconds. * Fix jq_fuzz_parse_stream: use iterative parser API for streaming mode. * Fix crashes and resource leaks in jq_testsuite. * Support building with --disable-maintainer-mode and source != build dir. * Respect SOURCE_DATE_EPOCH while generating man page. * Fix undefined pointer arithmetic in UTF-8 helpers. * Fix one-byte over-read in BASE64_DECODE_TABLE. - Drop not longer needed patches: * CVE-2026-32316.patch * CVE-2026-33947.patch * CVE-2026-33948.patch * CVE-2026-39956.patch * CVE-2026-39979.patch * CVE-2026-40164.patch * CVE-2026-40612.patch * CVE-2026-41256.patch * CVE-2026-41257.patch * CVE-2026-43894.patch * CVE-2026-43895.patch * CVE-2026-43896.patch * CVE-2026-44777_0.patch * CVE-2026-44777_1.patch ==== kactivitymanagerd6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kde-cli-tools6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kde-gtk-config6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: kde-gtk-config6-gtk3 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kdecoration6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libkdecorations3-6 libkdecorations3private2 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kdeplasma6-addons ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kgamma6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kglobalacceld6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libKGlobalAccelD6-0 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kinfocenter6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * kcms/samba: Port to Kirigami.StyleHints for framed backgrounds ==== kmenuedit6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== knighttime6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libKNightTime0 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kompare ==== - add AlignTop-the-text.patch to fix text clipping (kde#481778) ==== kpipewire6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: kpipewire6-imports libKPipeWire6 libKPipeWireDmaBuf6 libKPipeWireRecord6 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kscreen6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kscreenlocker6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libKScreenLocker6 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== ksshaskpass6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== ksystemstats6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kwayland-integration6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kwayland6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libKWaylandClient6 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== kwin6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libkwin6 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Too many changes to list here - Drop patches, now upstream: * 0001-core-drmdevice-correct-the-virtio-driver-name.patch ==== kwin6-x11 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libkwin-x11-6 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * plugins: Make nightlight optional ==== layer-shell-qt6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libLayerShellQtInterface6 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== ldacBT ==== Version update (2.0.2.3 -> 2.0.2.5) - Update to version 2.0.2.5: + Allow build with CMake 4.0.0 + Drop patch version in soname, built libraries will only have .so.2.0.2 suffix at most. This is to distinguish between library version and build script version. + Pin version to 2.0.2.3 in pkgconfig file for compatibility. - Modernize spec: use cmake_build and ldconfig_scriptlets macros. - Switch to source service, upstream no longer includes upstream libldac bundled tarball, so we now need to clone the git repo ourselves. ==== libass ==== Version update (0.17.4 -> 0.17.5) - Update to 0.17.5: * Fix limited OOB read and write in wrap_lines_measure * Fix OOB bit clears for negative Matroska ReadOrder fields * Fix \fay with glyph clusters * Fix small alpha changes not always splitting runs when combined with fade * Fades are now applied to BorderStyle=4 boxes too * Fonts using legacy arabic Windows charmaps are now supported * ass_render_frame no longer returns fully transparent images * Avoid SSE instructions if compiler baseline already includes AVX - Remove d013d97631bf86577e7eb44941b2b7b9cf4192d0.patch: included in upstream release ==== libcamera ==== Subpackages: libcamera-base0_7 libcamera0_7 - Be explicit about not using libunwind to address a s390x build failure. ==== libfprint ==== Subpackages: libfprint-2-2 libfprint-2-tod1 - Add upstream patch focal-tech-support.patch to add support for new focal tech fingerprint reader ==== libkscreen6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libKF6Screen8 libKF6ScreenDpms8 libkscreen6-plugin - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== libksysguard6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: ksysguardsystemstats6-data libKSysGuardSystemStats2 libksysguard6-imports libksysguard6-plugins - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== libpisp ==== Version update (1.3.0 -> 1.6.0) - Update to version 1.6.0 * backend: Allow offsets to be specified as pixels or bytes. * backend: Add output image offset parameters. - Update to version 1.5.0 * utils: test_convert: Fix GStreamer pipeline colorimetry and byte ordering. * libpisp: Switch to C++20 standard. - Update to version 1.4.0 * helpers: Fix incorrect header in media_device.cpp. * Adding gst pispconvert component. * helpers: dma_heap: Fix clang compile error. ==== libplasma6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libPlasma7 libplasma6-components libplasma6-desktoptheme - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 - Add provides for libPlasma6 to fix pulling in libPlasma6-lang (boo#1268766) ==== libshumate ==== Version update (1.6.1 -> 1.6.2) Subpackages: libshumate-1_0-1 typelib-1_0-Shumate-1_0 - Update to version 1.6.2: + Avoid spurious drag events following pinch zoom and rotate gestures on touch. ==== libslirp ==== Version update (4.9.1+1 -> 4.9.3+4) - Update to version 4.9.3+4: * Add CVE information * slirp: permit guestfwd to vhost_addr/vnameserver_addr * Test qemu migration support * Release v4.9.3 * slirp: Fix migration break on incorrect vmstate retcode * Add missing diff url * Release v4.9.2 * tcp_sockclosed: Set linger timer on remaining closing states * oob: cap urgent data count to what is actually available * bootp: allow https for UEFI HTTP boot * ncsi: Document the Get Version ID (GVI) packet handler * ncsi: Document why we fix memory alignment by adding 2-byte padding * ncsi: add documentation comments to the packet handler table for improved readability * Fix byte order * SO_ERROR: take the errno as error hint * vmstate: pass on read/write errors for state * cope with SO_ERROR possibly failing * Move the modified 3-Clause BSD text into LICENSE * fix: honor dns server port number on macos - fixes CVE-2026-9539 [bsc#1268903] ==== libstorage-ng ==== Version update (4.5.334 -> 4.5.336) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#1084 - make more use of new SystemCmd interface - 4.5.336 - merge gh#openSUSE/libstorage-ng#1083 - order command options and arguments "posixly correct" - 4.5.335 ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - spec: Strengthen dependency on numa-preplace bsc#1268783 - spec: Don't configure non-existent virt-secret-init-encryption socket units bsc#1268535 ==== libwmf ==== Version update (0.2.13 -> 0.2.15) - update to 0.2.15: * BMP image parsing fixes in embedded DIBs * record size validation for polyline, polygon, polypolygon and text records * fix RLE decoder row-stride mismatch * limit DC stack depth to prevent resource exhaustion * add basic test suite * MSVC build fixes * new release with accumulated fixes ==== libzio ==== Version update (1.14 -> 1.15) - Update to version 1.15 Refactored zio.c as well as optimized - Functional Verification: All compression formats (gzip, bzip2, lzma, xz, zstd) were validated via the test loop. - Static Analysis & Bugfixes: - Fixed a memory leak and uninitialized value in autodetect and fzopen. - Fixed Double-Free vulnerabilities in zio_open_gzip_pipe and zio_open_bzip2_pipe. - Compatibility: Verified the HAS_LZMADEC_H path with the legacy lzmadec.h. - Optimizations: Replaced heap allocation for the check buffer with a stack-based buffer in fzopen and _knowntype_fdzopen to reduce overhead. ==== milou6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * lib/ResultsView: consider all data changes results (kde#521598) ==== mutter ==== - Add ba64e055b5159a3acd5b4e4bc3d381066b26c62c.patch: Fix build with new pango ==== nano ==== Version update (9.0 -> 9.1) - Update to version 9.1: * When searching, the viewport is placed snug left where possible. * The ability to read and write files in old Mac format (a lone carriage return as line ending) was removed. * The ^T toggle between WhereIs and GotoLine was dropped. * Fix backups that were missing or had a wrong timestamp when - -backup is active. * On a crash or kill, a .save file is no longer chmodded or chowned to the base file's permissions and owner. * The history code now creates the ~/.local directory with limited access rights (boo#1263437; the referenced CVE-2026-40556 was rejected upstream). * M-Ins and M-Del have become rebindable. ==== nbd ==== - Add nbd-fix-device-parsing.patch to fix nbdtab device parsing in all netlink paths (disconnect/check/connect), which broke dracut's TEST-72-NBD with nbd 3.27.1 (boo#1268185, upstream commit a80304e10e97) ==== ncurses ==== Version update (6.6.20260608 -> 6.6.20260613) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Mark build recipe as requiring bash - Modernize specfile/drop old constructs - Add ncurses patch 20260613 + add ich/ich1 to putty -TD + reorder %i's in some capabilities for better matching of blocks -TD + add sc/rc to ti928 -TD + add rin to ncr260vt300an and ncr260vt100an, matching the AT&T ind/indn -TD + add rwidm, kdch1 to att730 -TD + change %2d and %3d to %02d and %03d to match original termcaps -TD + reduce unnecessary %2d and %3d to just %d -TD + correct conversion of termcap %2 and %3 to terminfo in _nc_captoinfo. ==== nftables ==== Subpackages: libnftables1 python313-nftables - add support-reproducible-build.patch: this is a cherry pick of four unreleased upstream commits which are needed to properly backport the reproducible build feature. ==== nghttp2 ==== - stricter validation for HTTP CONNECT and Upgrade requests across HTTP/1, HTTP/2, and HTTP/3 upstreams, specifically rejecting requests that incorrectly include Content-Length or Transfer-Encoding headers * Add 0001-nghttpx-Tighten-up-CONNECT-and-HTTP-Upgrade-handling.patch CVE-2026-58055, bsc#1269489 ==== nvidia-open-driver-G06-signed ==== - linux-7.1.patch * improved patch in order to avoid Use-After-Free (found by AI review; proposal fix by Michal Suchanek) - linux-7.1.patch: * fixes build against kernel 7.1 (currently blocking our kernel 7.1 release for TW); stolen from changes for 580.159.04 release (boo#1268331) ==== nvidia-open-driver-G07-signed ==== Version update (595.80_k7.0.12_1 -> 595.84_k7.0.12_1) Subpackages: nvidia-open-driver-G07-signed-kmp-64kb nvidia-open-driver-G07-signed-kmp-default - update non-CUDA variant to 595.84 (boo#1268792) - changes to build also against the nvidia kernel, which is planned to be available for SLE16.1-aarch64 ==== nvidia-open-driver-G07-signed-cuda ==== Subpackages: nvidia-open-driver-G07-signed-cuda-kmp-64kb nvidia-open-driver-G07-signed-cuda-kmp-default - update non-CUDA variant to 595.84 (boo#1268792) - changes to build also against the nvidia kernel, which is planned to be available for SLE16.1-aarch64 ==== ocean-sound-theme6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== openSUSE-build-key ==== - do not include the projects _pubkey if we have it already. - use the modification time for key2rpname ==== openSUSE-release ==== Version update (20260623 -> 20260701) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== pam_kwallet6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: pam_kwallet6-common - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== pango ==== Version update (1.57.1 -> 1.58.0) Subpackages: libpango-1_0-0 typelib-1_0-Pango-1_0 - Update to version 1.58.0: + PangoFontDescription has a new width attribute, which is like stretch, but allows intermediate values + PangoRenderer has gained the ability to render only certain components of a layout (such overlines, underlines, text,...) ==== pangomm ==== Version update (2.56.1 -> 2.56.2) - Update to version 2.56.2: + Documentation: - Remove obsolete FSF (Free Software Foundation) address - README.win32.md: Mention Visual Studio 2026 - Visual Studio builds: Update build information + Meson build: - Use the Python installation that Meson uses. - Meson and NMake builds: Distinguish Visual Studio 2026 builds from Visual Studio 2022 builds - NMake Makefiles: Consolidate items and improve flexibility - NMake Makefiles: Make build process more robust - NMake Makefiles: Update .m4 installation location - Don't require the 'dot' command to build the documentation ==== pangomm1_4 ==== Version update (2.46.4 -> 2.46.5) - Update to version 2.46.5: + Documentation: - Language::get_scripts(): Improve documentation. - Don't link to removed parts of gnome.org - Replace gtkmm.org by gtkmm.gnome.org - Remove obsolete FSF (Free Software Foundation) address - README.win32.md: Mention Visual Studio 2026 - Visual Studio builds: Update build information + Meson build: - Require meson >= 0.60.0 - Use the Python installation that Meson uses. - Meson and NMake builds: Distinguish Visual Studio 2026 builds from Visual Studio 2022 builds - NMake Makefiles: Consolidate items and improve flexibility - NMake Makefiles: Make build process more robust - NMake Makefiles: Update .m4 installation location - Don't require the 'dot' command to build the documentation - Drop pangomm1_4-docs-without-timestamp.patch: Fixed upstream. ==== patterns-kde ==== Subpackages: patterns-kde-kde patterns-kde-kde_edutainment patterns-kde-kde_games patterns-kde-kde_ide patterns-kde-kde_imaging patterns-kde-kde_internet patterns-kde-kde_multimedia patterns-kde-kde_office patterns-kde-kde_pim patterns-kde-kde_plasma patterns-kde-kde_utilities patterns-kde-kde_utilities_opt patterns-kde-kde_yast - Disambiguate kde_utilities and kde_utilities_opt pattern summaries (bsc#1267854) ==== perl-HTTP-Date ==== Version update (6.06 -> 6.70.0) - updated to 6.70.0 (6.07) see /usr/share/doc/packages/perl-HTTP-Date/Changes 6.07 2026-06-25 15:12:09Z - Add test with Time::Zone (GH#25) (Michal Josef Špaček) - Add test with bad Time::Zone string (GH#26) (Michal Josef Špaček) - Add tests with negative time (GH#26) (Michal Josef Špaček) - Replace all instances of \d with [0-9] in regular expressions to reject non-ASCII Unicode digits, with a regression test (GH#27) (Robert Rothenberg) - Reject malformed ISO 8601 timezones with a doubled colon (GH#31) (Olaf Alders) - Document day/month/year ordering for numeric dates (GH#32) (Olaf Alders) ==== plasma5support6 ==== Version update (6.7.0 -> 6.7.1) Subpackages: libPlasma5Support6 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== plasma6-activities ==== Version update (6.7.0 -> 6.7.1) Subpackages: libPlasmaActivities7 plasma6-activities-imports - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== plasma6-activities-stats ==== Version update (6.7.0 -> 6.7.1) Subpackages: libPlasmaActivitiesStats1 - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== plasma6-browser-integration ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== plasma6-desktop ==== Version update (6.7.0 -> 6.7.1) Subpackages: plasma6-desktop-emojier plasma6-kimpanel-ibus - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * applets/kickoff: show sidebar highlight with switch on hover (kde#521558) * applets/kickoff: explicitly set implicit sizes for fullRep StackView (kde#521383) * kcms/gamecontroller: Disable gamepad input emulation by default * applets/taskmanager: fix badge overflow at extreme margins of usage (kde#521562) * kcms/keyboard: Ensure that keyboards without variant info don't show "undefined" as variant ==== plasma6-disks ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== plasma6-integration ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== plasma6-nm ==== Version update (6.7.0 -> 6.7.1) Subpackages: plasma6-nm-openconnect plasma6-nm-openvpn plasma6-nm-pptp plasma6-nm-vpnc - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * Fix showing network details (kde#521415) * Fix tray icon for virtual wired devices (kde#516709) ==== plasma6-openSUSE ==== Subpackages: plasma6-branding-openSUSE plasma6-sddm-theme-openSUSE plasma6-theme-openSUSE - Update to 6.7.1 ==== plasma6-pa ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== plasma6-print-manager ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * set selected: property on ItemDelegates's contentItem stuff ==== plasma6-systemmonitor ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * table: Do nothing if data() functions are passed an invalid index * table: Make sure to cleanup sorted columns when using "hide column" on table * table: Explicitly remove duplicate entries from sortedColumns in ColumnSFModel (kde#518073) ==== plasma6-thunderbolt ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - No code changes since 6.7.0 ==== plasma6-workspace ==== Version update (6.7.0 -> 6.7.1) Subpackages: plasma6-session plasma6-session-x11 plasma6-workspace-libs sddm-qt6-branding-openSUSE - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * applets/kicker: return empty string for computermodel description (kde#521799) * startplasma: Tweak the time when global themes are switched * scripting: Read/write panel alignment from correct config * plasma-apply-lookandfeel: Optionally blend changes when changing color scheme * Klipper: reset search field on popup close (kde#504658) * wallpapers/image: fix heap-use-after-free in SlideFilterModel::invalidate() * libtaskmanager: Fix missing argument for QString::arg * wallpapers/image: fix flaky testCustomAccentColorFromWallpaperMetaData test * wallpapers/image: fix flaky SlideFilterModelTest from QFuture synchronous continuation * components/calendar: fix today-highlight showing wrong day for UTC+x timezones before UTC midnight (kde#521114) * applets/notifications: Explicitly set rotation in the unread state (kde#458156) * 🍒 kcms/wallpaper: Avoid storing screen as raw pointer (kde#521078) ==== polkit-default-privs ==== Version update (1550+20260616.1f348eb -> 1550+20260623.563df94) - Update to version 1550+20260623.563df94: * profiles: added kdeplasma6-addons kameleon.qmk (bsc#1267818) ==== polkit-kde-agent-6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== powerdevil6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== publicsuffix ==== Version update (20260513 -> 20260622) - Update to version 20260622: * Add mkm.fan to private domains (#2937) * util: gTLD data autopull updates for 2026-06-13T16:12:40 UTC (#2958) * Add vibehost.space for cross-tenant cookie isolation (#2932) * Add OpenAI private suffixes (#2930) * add khsj.cn and canva.link (#2898) * add ai.id (#2922) * Add book.online (#2890) ==== python-greenlet ==== Version update (3.5.0 -> 3.5.3) - Add build-Cpp-linking.patch fixing linking C++ problems with Python 3.14.6 (see https://discuss.python.org/t/c-linking-in-3-14-6-is-there-a-regression/107932) - update to 3.5.3: * Fix a crash on free-threaded builds when multiple greenlets were holding a critical section on an object and the GIL for the thread was dropped. See issue 513. Thanks to ddorian. - Update to 3.5.2 * The minimum supported version of Python 3.15 is now 3.15b2. * Fix some garbage-collection related crashes on free-threaded Python 3.15. Thanks to Kumar Aditya in PR #511. * Improve garbage collection of greenlets. This mostly applies to Python 3.15. Thanks to Kumar Aditya in PR #512. - Update to 3.5.1 * Add preliminary support for Python 3.15b1. This has not been reviewed by CPython core developers, but all tests pass. Binary wheels of this version won't work on earlier Python 3.15 builds and may not work on later 3.15 builds. * Fix the discrepancy in the way the two ``getcurrent`` APIs behave during greenlet teardown. One API (the C API used by, e.g., gevent raised a ``RuntimeError``; the other (the Python ``greenlet.getcurrent`` API) returned ``None``. This second way is incompatible with greenlet's type annotations, so ``greenlet.getcurrent`` now raises a ``RuntimeError`` as well. ==== python-linux-procfs ==== Version update (0.7.3 -> 0.7.4) - update to 0.7.4: * Fix spelling mistakes in comments * Modernize packaging and update authorship * Remove import of range from six.moves ==== python-lxml ==== Version update (6.1.0 -> 6.1.1) - update to 6.1.1 (bsc#, CVE-2026-49825): * The known link attributes in ``lxml.html.defs.link_attrs`` were missing ``xlink:href``, which can be used for URL bypass attacks in embedded SVG/MathML/etc. content. * https://github.com/fedora- python/lxml_html_clean/security/advisories/GHSA-4jhm- jv67-739f * The Linux wheels use a patched libxslt 1.1.43, fixing CVE-2025-7424 and CVE-2025-11731. * The Windows wheels use libxslt 1.1.45, fixing CVE-2025-7424 and CVE-2025-11731. ==== python-zope.interface ==== Version update (8.4 -> 8.5) - update to 8.5: * Build and upload free-threaded (cp314t, cp315t) wheels for all platforms. Expand CI testing for free-threaded Python 3.14t from Linux-only to all platforms (macOS, Windows), and add 3.15t CI. See issue 374. * Replace all remaining PyDict_GetItem() calls in the C extension with exception-safe alternatives (PyDict_Contains, PyDict_GetItemWithError). PyDict_GetItem silently swallows exceptions from __hash__/__eq__, causing isOrExtends() to return False instead of raising TypeError for unhashable objects. Also use PyType_GetDict() on Python 3.13+ for free- threading safety when accessing the type dict. See issue 357. ==== qqc2-breeze-style6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== raspberrypi-firmware-dt ==== - Drop RP1 hog gpio node 0001-arm64-dts-bcm2712-Remove-rp1-hog-gpio-node.patch- ==== rubygem-nokogiri ==== Version update (1.18.9 -> 1.19.4) - 1.19.4: see included CHANGELOG.md - 1.19.1: see included CHANGELOG.md - 1.18.10: see included CHANGELOG.md ==== salt ==== Subpackages: python311-salt salt-master salt-minion - Fix the tests failing after switching to non-vendored tornado - Fix the default group in tests for new users in SLE 15.6 - Use AsyncHTTPClient in salt.utils.http (bsc#1268325) - Fix file fetching with cp module on non-vendored tornado - Decode binary pillars for salt-ssh to avoid exceptions (bsc#1263822) - Added: * fix-the-tests-failing-after-switching-to-non-vendore.patch * fix-the-default-group-in-tests-for-new-users-in-sle-.patch * use-asynchttpclient-in-salt.utils.http-bsc-1268325.patch * fix-file-fetching-with-non-vendored-tornado.patch * decode-binary-pillars-for-salt-ssh-to-avoid-exceptio.patch ==== sddm-kcm6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== selinux-policy ==== Subpackages: selinux-policy-targeted - fixed text output during package instalation (bnc#1268009) - enhance migration marker cleanup in /etc/selinux to properly delete markers when removing selinux-policy-FLAVOUR package - Mark all bash-using sections as requiring bash - Delete old %defattr, it's the default now anyway - Reduce %if BUILD_xxx to span just %files and triggers, that's all it needs - Fix syntax in scriptlets ==== setools ==== Version update (4.6.0 -> 4.7.0) Subpackages: python313-setools setools-console - Fix setools test package - Update to version 4.7.0: - Add MCP server to provide LLMs the ability to analyze policy. - Internal changes: - The source distribution is now a Python sdist. - The policyrep C extension is cythonized, so cython is an optional build dependency now. Still keeping it in, might be good to still rebuild it ourselves. ==== shim-leap ==== - Apply nx-shim, create non-nx shim boot entry: shim-16.1-lp156.7.1.aarch64.rpm shim-16.1-lp156.7.1.x86_64.rpm RPMs are coming from openSUSE secure-boot shim 15.6: https://build.opensuse.org/projects/openSUSE:Factory:secure-boot/packages/shim/repositories/15.6/binaries - Version: 16.1, "Aug 14 2025" - Include the bug fixes for bsc#1205588 - Use nx shim as the default shim binary. Add Microsoft-signed nx-shim: Source40 shim-opensuse.nx.x86.efi Source41 shim-opensuse.nx.aarch64.efi - Use ms-signed nx shim when the version equals with the version of newly built shim - Version mismatch indicates development of a new shim. - Create non-nx shim boot entry as a fallback option Because we apply nx shim as the default shim binary in /boot/efi/EFI/opensuse/shim.efi /boot/efi/EFI/boot/bootx64.efi or bootaa64.efi In case that user got any problem when the machine boots with nx-shim, so we create a new boot entry for non-nx shim as a fallback option by efibootmgr. - Removed the override shim-install. Let's direct use the shim-install script from shim-16.1*.rpm. ==== socat ==== Version update (1.8.1.1 -> 1.8.1.3) - update to 1.8.1.3 (bsc#1269219, CVE-2026-56123): * The new SOCKS5_OVERFL test for CVE-2026-56123 failed on platforms with non-bash default shell (false positive). * There was a possible heap overflow in the socks5 client code. It could be triggered by connecting to a malicious socks5 server that expected this connection and had knowledge about details of the client binary code. ==== spectacle ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 * Set startupId to token received from notification on OpenUrlJob * InlineMessageModel: Support copyToClipboard with QUrl ==== strace ==== Version update (7.0 -> 7.1) - Update to strace 7.1 * Implemented wall-clock-aware columns (wall-total, wall-min, wall-max, wall-avg) for the -c/--summary-only report, allowing wall-clock and system CPU times to be displayed side by side in a single run. * Included out-of-range syscalls in the -c/--summary-only report. * Updated decoding of sched_getattr syscall. * Implemented decoding of FS_IOC_SHUTDOWN, PIDFD_GET_INFO, and PIDFD_GET_*_NAMESPACE ioctl commands. * Implemented decoding of IFLA_BR_FDB_N_LEARNED, IFLA_BR_FDB_MAX_LEARNED, and IFLA_BR_STP_MODE netlink attributes. * Updated lists of CLONE_*, FSMOUNT_*, KT_*, KVM_*, LANDLOCK_*, NETDEV_*, NL80211_*, and PIDFD_* constants. * Updated lists of ioctl commands from Linux 7.1. * Implement EPERM diagnostics and give a hint about yama (jsc#PED-15928). ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-boot systemd-container udev - Temporarily add 1002-nss-systemd-avoid-ELF-TLS-for-recursion-guard.patch until upstream releases it (bsc#1254924) ==== systemsettings6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== tar ==== Subpackages: tar-rmt - Fix CVE-2026-5704.patch causing errors when extracting certain archives generated by rpm2archive which contain hard links - Refresh fix-dereference.patch - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir * no-overwrite-dir-fix.patch - Fix CVE-2026-5704, crafted archives can be used to to hide file injection (bsc#1261900) * CVE-2026-5704.patch - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450) * fix-dereference.patch - Fix extraction failure for paths like "a/./b" caused by the gnulib openat2 implementation (bsc#1267189) * openat2-fix-dotlike-failure.patch ==== tesseract-ocr ==== Subpackages: libtesseract5 tesseract-ocr-common - Drop the now-unused OpenCL build dependencies opencl-headers and pkgconfig(OpenCL) (boo#1213370): * OpenCL support is experimental and disabled (the --enable-opencl configure flag was already removed); these requires were left behind and only bloated the build. * With OpenCL off, libtesseract no longer links libOpenCL.so.1, so it no longer fails to start with "libOpenCL.so.1: cannot open shared object file" (boo#1232640). ==== thin-provisioning-tools ==== Version update (1.3.2 -> 1.3.3) - Update to version 1.3.3: * thin_explore: fix a panic when navigating an empty top-level tree, and panics when navigating empty btrees * era_invalidate: fix missing era array traversal when no writesets exist * thin_metadata_pack/unpack: flush the output file before returning * update bundled dependencies to their latest patch releases ==== transmission ==== Version update (4.1.2 -> 4.1.3) Subpackages: transmission-common transmission-gtk - Update to version 4.1.3: + This is Transmission 4.1.3, a bugfix release. It fixes a potential CRSF security issue for users who enable remote access to Transmission. Users are encouraged to upgrade to this version. + All Platforms: - Fixed a CORS bug that leaked the anti-CSRF nonce. - Fixed a use-after-free bug in peer code. - Fixed build error when compiling with fmt 12.2.0. + Everything Else: Fixed a 4.1.2 build error in tests. ==== upower ==== Version update (1.91.1 -> 1.91.2) Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Revert unneeded policy kit rules (mainline git commit d75f2dbee4df2) A policy-org.freedesktop.upower.rules-grant-permission-for-skipping-the-inhibitor.patch - Update to version 1.91.2: + Feature: Skip the systemd inhibitor when performing CriticalPowerAction + Feature: Introduce "Auto" CriticalPowerAction using systemd-logind Sleep() + Fix: Test CanPowerOff() availability before calling PowerOff() + Fix: Add charge limit support for systems providing only charge_control_end_threshold - Add 25303ba52771ee514b70fb1a5318a8313889ac31.patch: up-device-battery: Prefer "Standard" over "Fast" charging ==== vim ==== Version update (9.2.0530 -> 9.2.0725) Subpackages: vim-data vim-data-common xxd - Replace pkgconfig(gtk+-3.0) with pkgconfig(gtk4) and pass - -enable-gui=gtk4 instead of --enable-gui=gtk3 to configure. Build gvim with gtk4 instead of gtk3. - Refresh patches with quilt. - Updated to version 9.2.0725, fixes the following problems: 9.2.0531: tests: Test_cd_completion() fails on MS-Windows with E344 9.2.0532: GTK: preedit font size is wrong for fractional point sizes 9.2.0533: '[ mark moved to end of inserted text after CTRL-R CTRL-P paste 9.2.0534: GTK UI does not support fullscreen mode 9.2.0535: tests: matchit plugin is not tested 9.2.0536: tests: Test_invalid_args() fails on GTK4 without xterm_clipboard 9.2.0537: GTK4: mouse popup menu does not show up at mouse pointer 9.2.0538: Cannot keep leading whitespace in %{} statusline expr 9.2.0539: filetype: too many Bitbake include files are recognized 9.2.0540: tests: Test_mswin_event_mouse is flaky 9.2.0541: Vim9: endclass/endenum/endinterface can give errors 9.2.0542: tests: test_codestyle fails 9.2.0543: Vim9: wrong error when redeclaring a typed variable 9.2.0544: GTK4: window blank after a resize or drag 9.2.0545: popup: blending uses hardcoded fallback colors 9.2.0546: configure: GTK4 build requires GTK >= 4.10 9.2.0547: "%v" in 'errorformat' is affected by 'tabstop' 9.2.0548: GTK4: terminal and pty job output is not processed 9.2.0549: Cursor wrong after autoindent strip is skipped 9.2.0550: GTK4: 'mousehide' unhides cursor when switching tabs 9.2.0551: filetype: Tolk files are not recognized 9.2.0552: GTK4: F10 does nothing when the menubar is hidden 9.2.0553: runtime(netrw): netrw rejects hostnames containing _ 9.2.0554: GTK4: memory leak in free_menu() 9.2.0555: too many strlen() in ex_substitute() 9.2.0556: GTK4: scrollbars not shown and do not respond to clicks 9.2.0557: filetype: Kawasaki Robots files are not recognized 9.2.0558: filetype: Popcap Reanimation files are not recognized 9.2.0559: filetype: Kaitai struct files are not recogonized 9.2.0560: filetype: busybox shebang lines are not recognized 9.2.0561: [security]: possible code execution with python3complete 9.2.0562: filetype: SGF files are not recognized 9.2.0563: GTK3/Wayland: crash with right mouse-button in tabline 9.2.0564: GTK4: tabline does not respond to mouse clicks 9.2.0565: [security]: out-of-bounds read in update_snapshot() 9.2.0566: f duplicates window if do_ecmd() is aborted 9.2.0567: dict function name allocation failure not handled 9.2.0568: pythoncomplete: g:pythoncomplete_allow_import had no effect 9.2.0569: out-of-bounds access in libvterm CSI 8 t resize 9.2.0570: GTK4: mouse wheel scrolling does not work correctly 9.2.0571: Vim9: memory leak in compile_nested_function() on failure 9.2.0572: lines disappear with wrapping virtual text after a double-width char 9.2.0573: Vim9: missing EX_WHOLE on some block keywords 9.2.0574: tests: missing test for v9.2.0572 9.2.0575: tests: filetype test for v9.2.0557 can be improved 9.2.0576: popup_create() not blocked in secure/sandbox 9.2.0577: GTK4: window resizing issues 9.2.0578: GTK4: :unmenu does not remove entries from the menubar 9.2.0579: :mksession, :mkview and :mkvimrc emit legacy Vim script 9.2.0580: xxd: binary output is not colored with -R 9.2.0581: After maximizing and deleting the quickfix buffer, window height is wrong 9.2.0582: GTK4: compile error when XFONTSET is defined 9.2.0583: completion: indent not ignored for fuzzy line completion 9.2.0584: GTK4: missing UI features 9.2.0585: line number wrong after undoing a deletion in quickfix buffer 9.2.0586: Crash with TextPut autocmd when pasting in terminal buffer 9.2.0587: GTK4: left scrollbar overlaps drawarea 9.2.0588: GTK4: drawing area loses focus after closing a menubar popover 9.2.0589: filetype: xinitrc files are not recognized 9.2.0590: GTK4: drawing area loses focus shape on popup menu open 9.2.0591: 'scrolljump' ignored when scrolling up 9.2.0592: Error when restoring session with terminal window 9.2.0593: :wqall ignores term_setkill() on running terminal buffers 9.2.0594: Use-after-free with ":wqall" and a running terminal job 9.2.0595: MS-Windows: Wrong buffer size calculation for gvimext 9.2.0596: cmdline completion popup cannot be scrolled with the mouse 9.2.0597: [security]: possible code execution with python complete 9.2.0598: tests: Test_statusline() is flaky 9.2.0599: popup: title set with popup_setoptions() is not shown 9.2.0600: clientserver method needs to be given as argument 9.2.0601: matchfuzzypos() returns garbage positions for long candidates 9.2.0602: popup: No opacity when background not set for Popup group 9.2.0603: possible heap-buffer-overflow when resizing the GUI 9.2.0604: tests: Test_mswin_event_mouse() is still flaky 9.2.0605: tests: Test_screenpos() is flaky in GUI 9.2.0606: GTK4: does not support all clipboard formats 9.2.0607: GTK4: inputdialog() does not work as expected 9.2.0608: popup_setoptions()/ch_setoptions() does not check secure mode 9.2.0609: completion info popup cannot be scrolled with the keyboard 9.2.0610: cindent: closing brace in a comment affects the next line's indent 9.2.0611: MS-Windows: evim.exe not working with VIMDLL 9.2.0612: Cannot render images in popup windows 9.2.0613: tests: test_xxd_color2() checks for dash but uses sh 9.2.0614: opacity popup leaves stale cells 9.2.0615: sixel encoder drops pixels on the right edge of shapes 9.2.0616: GTK4: use-after-free on clipboard read timeout 9.2.0617: GvimExt: does not support different runtime dirs 9.2.0618: use-after-free in popup_getoptions() on dict_add() failure 9.2.0619: integer overflow in popup image size validation 9.2.0620: runtime(netrw): fix 2match pattern rebuild 9.2.0621: 'autoindent' not stripped with virtualedit=onemore 9.2.0622: str2blob() does not work with wide UTF-16 encoding 9.2.0623: possible integer overflow in spellfile tree bounds check 9.2.0624: C-N/C-P cannot be mapped in complete() completion ... changelog too long, skipping 102 lines ... * vim-9.1.1732-fix-inc-detection.patch ==== wacomtablet-kcm6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * Update version for new release 6.7.1 ==== xclock ==== Version update (1.1.1 -> 1.2.0) - Update to version 1.2.0 * This release adds new command line options -proportional, -analog24, - help, --help, -version, and --version; and new X resources analog24, amColor, pmColor, fixed1Color, fixed2Color, fixed3Color, hourShape, minuteShape, secondShape, majorShape, minorShape, amShape, pmShape, fixed1Shape, fixed2Shape, fixed3Shape, rotateAmpm, zOrder, and proportional. See the updated man page for details of each. * It also adds support for building with meson as well as autoconf. - switch to meson ==== xdg-desktop-portal-kde6 ==== Version update (6.7.0 -> 6.7.1) - Update to 6.7.1: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.7.1 - Changes since 6.7.0: * clipboard: Check for inputcapture session everywhere * Update version for new release 6.7.1 * clipboard: Fix crash after session is destroyed * accessdialog: Fix body label * settings: Explicitely set delayed reply when sending errors ==== zlib ==== Subpackages: libminizip1 libz1 - drop 0001-Do-not-try-to-store-negative-values-in-unsigned-int.patch * effectively a noop now, as strstart and insert are unsigned, hence the if condition is always true (if not equal).