Packages changed: glib2 (2.82.4 -> 2.82.5) gpgme gpgmeqt6 grub2 guestfs-tools (1.53.5 -> 1.53.7) kernel-firmware-amdgpu (20250206 -> 20250219) kernel-firmware-bluetooth (20250208 -> 20250219) kernel-firmware-mediatek (20250206 -> 20250220) kernel-firmware-network (20250206 -> 20250219) kernel-firmware-platform (20250206 -> 20250220) kernel-firmware-qcom (20250206 -> 20250219) kernel-firmware-sound (20250217 -> 20250219) libassuan (3.0.1 -> 3.0.2) libxml2 (2.13.5 -> 2.13.6) libxml2-python (2.13.5 -> 2.13.6) lvm2 lvm2-device-mapper ncurses (6.5.20250201 -> 6.5.20250216) openSUSE-release (20250220 -> 20250221) pcr-oracle postgresql17 (17.3 -> 17.4) procmail sdbootutil (1+git20250219.a796c24 -> 1+git20250221.19f7d1a) unar virt-v2v (2.7.4 -> 2.7.6) xen yast2 (5.0.11 -> 5.0.12) === Details === ==== glib2 ==== Version update (2.82.4 -> 2.82.5) Subpackages: glib2-lang glib2-tools libgio-2_0-0 libglib-2_0-0 libglib-2_0-0-32bit libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - Update to version 2.82.5: + Bugs fixed: - gosxappinfo: Correctly launch list of files - Don't mark test setups as default in subprojects - gdatetime: Fix integer overflow when parsing very long ISO8601 inputs ==== gpgme ==== Subpackages: libgpgme11 libgpgmepp6 - Don't own content of all common-lisp directories, just own the directories themselves (adding %dir in front of them). Prevents duplicate ownership of the Common Lisp files. ==== gpgmeqt6 ==== - Don't own content of all common-lisp directories, just own the directories themselves (adding %dir in front of them). Prevents duplicate ownership of the Common Lisp files. ==== grub2 ==== Subpackages: grub2-common grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-efi-bls grub2-x86_64-xen - Fix grub-bls does not rollback via setting new default (bsc#1237198) * 0001-bls-Accept-.conf-suffix-in-setting-default-entry.patch ==== guestfs-tools ==== Version update (1.53.5 -> 1.53.7) - Update to version 1.53.7 (jsc#PED-8910) * mlcustomize, mltools: Replace $TEST_FUNCTIONS * mldrivers/linux_bootloaders.ml: Don't overwrite EFI grub2 wrapper * resize: Use stderr consistently for debug messages * resize/test-virt-resize.pl: Various fixes and adjustments - Update to version 1.53.6 (jsc#PED-8910) * build: Move baseline OCaml to 4.08 * builder: add various templates for rhel and fedora * po-docs: A couple adjustments and updates ==== kernel-firmware-amdgpu ==== Version update (20250206 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * amdgpu: Update ISP FW for isp v4.1.1 ==== kernel-firmware-bluetooth ==== Version update (20250208 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * qca: update WCN3988 firmware ==== kernel-firmware-mediatek ==== Version update (20250206 -> 20250220) - Update to version 20250220 (git commit 6cf959daab2a): * linux-firmware: update firmware for MT7920 WiFi device ==== kernel-firmware-network ==== Version update (20250206 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * linux-firmware: update firmware for en8811h 2.5G ethernet phy ==== kernel-firmware-platform ==== Version update (20250206 -> 20250220) - Update to version 20250220 (git commit 6cf959daab2a): * linux-firmware: Update AMD SEV firmware ==== kernel-firmware-qcom ==== Version update (20250206 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * qcom: add firmware for Adreno A225 ==== kernel-firmware-sound ==== Version update (20250217 -> 20250219) - Update to version 20250219 (git commit 5faab136de1a): * cirrus: cs35l56: Add and update firmware for Cirrus CS35L56 for two HP laptops * cirrus: cs35l56: Add firmware for Cirrus Amps for some ASUS laptops * cirrus: cs35l56: Add and update firmware for Cirrus CS35L56 for various Lenovo laptops * cirrus: cs35l56: Update firmware for Cirrus Amps for some Dell laptops ==== libassuan ==== Version update (3.0.1 -> 3.0.2) - Update to 3.0.2: * Fix for FreeBSD to set the pid of assuan_peercred_t. [rAdfa5e6532d] * Use socklen_t for the length of socket address. [T5924] * Fix errno setting on Windows for assuan_sock_bind failure. [T7456] * New assuan_sock_get_flag "w32_error" to get the actual Windows error after a system call and not just the mapped errno. [T7456] ==== libxml2 ==== Version update (2.13.5 -> 2.13.6) Subpackages: libxml2-2 libxml2-tools - Update to version 2.13.6 ([bsc#1237363], [bsc#1237370], [bsc#1237418]): + Security: - [CVE-2025-24928] Fix stack-buffer-overflow in xmlSnprintfElements - [CVE-2024-56171] Fix use-after-free after xmlSchemaItemListAdd - pattern: Fix compilation of explicit child axis + Regressions: - xmllint: Support compressed input from stdin - uri: Fix handling of Windows drive letters - reader: Fix return value of xmlTextReaderReadString again - SAX2: Fix xmlSAX2ResolveEntity if systemId is NULL + Portability: - dict: Handle ENOSYS from getentropy gracefully - Fix compilation with uclibc (Dario Binacchi) - python: Declare init func with PyMODINIT_FUNC - tests: Fix sanitizer version check on old Apple clang - cmake: Work around broken sys/random.h in old macOS SDKs + Build: - autotools: Set AC_CONFIG_AUX_DIR - cmake: Always build Python module as shared library - cmake: add missing `Bcrypt` link on Windows - cmake: Fix compatibility in package version file - xmlIO: Fix reading from non-regular files like pipes - xmlreader: Fix return value of xmlTextReaderReadString - parser: Fix loading of parameter entities in external DTDs - parser: Fix downstream code that swaps DTDs - parser: Fix detection of duplicate attributes - string: Fix va_copy fallback - xpath: Fix parsing of non-ASCII names - Drop libxml2-support-compressed-input-from-stdin.patch: Fixed upstream. - Also CVE-2025-27113 was assigned to this release. ==== libxml2-python ==== Version update (2.13.5 -> 2.13.6) - Update to version 2.13.6 ([bsc#1237363], [bsc#1237370], [bsc#1237418]): + Security: - [CVE-2025-24928] Fix stack-buffer-overflow in xmlSnprintfElements - [CVE-2024-56171] Fix use-after-free after xmlSchemaItemListAdd - pattern: Fix compilation of explicit child axis + Regressions: - xmllint: Support compressed input from stdin - uri: Fix handling of Windows drive letters - reader: Fix return value of xmlTextReaderReadString again - SAX2: Fix xmlSAX2ResolveEntity if systemId is NULL + Portability: - dict: Handle ENOSYS from getentropy gracefully - Fix compilation with uclibc (Dario Binacchi) - python: Declare init func with PyMODINIT_FUNC - tests: Fix sanitizer version check on old Apple clang - cmake: Work around broken sys/random.h in old macOS SDKs + Build: - autotools: Set AC_CONFIG_AUX_DIR - cmake: Always build Python module as shared library - cmake: add missing `Bcrypt` link on Windows - cmake: Fix compatibility in package version file - xmlIO: Fix reading from non-regular files like pipes - xmlreader: Fix return value of xmlTextReaderReadString - parser: Fix loading of parameter entities in external DTDs - parser: Fix downstream code that swaps DTDs - parser: Fix detection of duplicate attributes - string: Fix va_copy fallback - xpath: Fix parsing of non-ASCII names - Drop libxml2-support-compressed-input-from-stdin.patch: Fixed upstream. - Also CVE-2025-27113 was assigned to this release. ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - system with LVM on iSCSI hangs on shutdown because blk-availability.service is not enabled (bsc#1236788) * update lvm2.spec - remove blk-availability.service from %postun - add new Provides 'dont_stop_blk_availability_service' ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - system with LVM on iSCSI hangs on shutdown because blk-availability.service is not enabled (bsc#1236788) * update lvm2.spec - remove blk-availability.service from %postun - add new Provides 'dont_stop_blk_availability_service' ==== ncurses ==== Version update (6.5.20250201 -> 6.5.20250216) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20250216 + add limit-checks in alloc_entry.c and alloc_ttype.c to avoid indexing errors when using infocmp to compare all capabilities when processing a malformed terminfo binary which has a valid header (testcase by "Ekkosun"). - Add ncurses patch 20250215 + add gzip option for suppressing filename/timestamp information to an overlooked case (cf: 20240330). + correct spelling errors found with codespell. + fix some typos in manpages (report by Sven Joachim) + amend change to lib_set_term.c to work with thread configuration (report by Rajeev Pillai, cf: 20250208). - Add ncurses patch 20250208 + change etip.h.in to include either/both of and , needed for another old BSD. + update st (report by Alexander Kashpir) -TD + add note for ghostty 1.1.0 -TD + fix a few issues found with coverity. - Correct offset of patches * ncurses-5.9-ibm327x.dif * ncurses-6.4.dif * ncurses-6.5-ghostty.dif ==== openSUSE-release ==== Version update (20250220 -> 20250221) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== pcr-oracle ==== - Update the License tag to GPL-2.0-or-later to match the license declaration in the source files ==== postgresql17 ==== Version update (17.3 -> 17.4) Subpackages: libpq5 postgresql17-contrib postgresql17-llvmjit postgresql17-server - Upgrade to 17.4: * Improve behavior of libpq's quoting functions: The changes made for CVE-2025-1094 had one serious oversight: PQescapeLiteral() and PQescapeIdentifier() failed to honor their string length parameter, instead always reading to the input string's trailing null. This resulted in including unwanted text in the output, if the caller intended to truncate the string via the length parameter. With very bad luck it could cause a crash due to reading off the end of memory. In addition, modify all these quoting functions so that when invalid encoding is detected, an invalid sequence is substituted for just the first byte of the presumed character, not all of it. This reduces the risk of problems if a calling application performs additional processing on the quoted string. * Fix small memory leak in pg_createsubscriber. * https://www.postgresql.org/docs/release/17.4/ * https://www.postgresql.org/about/news/p-3018/ ==== procmail ==== - Add patch procmail-o_nofollow.patch * Avoid to follow symblic link below /var/spool/mail/ ==== sdbootutil ==== Version update (1+git20250219.a796c24 -> 1+git20250221.19f7d1a) Subpackages: sdbootutil-dracut-measure-pcr sdbootutil-snapper - Update to version 1+git20250221.19f7d1a: * Reformat the spec file * Rework keyctl calls to keep the session keyring ==== unar ==== - Use %autosetup - Add patch to fix checksum calculation on big endian archs (boo#1236917, gh#MacPaw/XADMaster#168) * Revert-Switch-to-faster-CRC-implementations.patch ==== virt-v2v ==== Version update (2.7.4 -> 2.7.6) Subpackages: virt-v2v-bash-completion - Update to virt-v2v 2.7.6 (jsc#PED-8910) * mldrivers/linux_bootloaders.ml: Don't overwrite EFI grub2 wrapper * convert: Use yum/apt/... for package removals, not rpm/dpkg * convert: Reload augeas after package remove - Update to virt-v2v 2.7.5 (jsc#PED-8910) * Various language translation updates * po-docs: fixes and adjustments * valgrind: Add suppressions for two new memory leaks in glib ==== xen ==== Subpackages: xen-libs xen-tools xen-tools-domU - Update to Xen 4.20.0 RC5 release * x86/shutdown: offline APs with interrupts disabled on all CPUs * x86/smp: perform disabling on interrupts ahead of AP shutdown * x86/pci: disable MSI(-X) on all devices at shutdown * x86/iommu: disable interrupts at shutdown * x86/HVM: use XVFREE() in hvmemul_cache_destroy() * xen/console: Fix truncation of panic() messages * xen/memory: Make resource_max_frames() to return 0 on unknown type * x86/svm: Separate STI and VMRUN instructions in svm_asm_do_resume() * x86/MCE-telem: adjust cookie definition - Drop patch contained in new tarball x86-shutdown-offline-APs-with-interrupts-disabled-on-all-CPUs.patch ==== yast2 ==== Version update (5.0.11 -> 5.0.12) Subpackages: yast2-logs - respect kernel parameter filtering from agama if found (bsc#1237390,bsc#1234678) - 5.0.12