Packages changed: augeas gobject-introspection haproxy harfbuzz (3.2.0 -> 3.3.2) installation-images-MicroOS (17.39 -> 17.41) keylime kubernetes1.23 libzypp (17.29.3 -> 17.29.4) multipath-tools (0.8.8+45+suse.628d603e -> 0.8.8+57+suse.dfb672fe) pam-config (1.5 -> 1.6) patterns-base python-pyOpenSSL (21.0.0 -> 22.0.0) python-pyparsing (3.0.6 -> 3.0.7) python-setuptools (57.4.0 -> 58.3.0) wpa_supplicant === Details === ==== augeas ==== - testsuite requires glibc-locale, buildrequire it ==== gobject-introspection ==== Subpackages: girepository-1_0 libgirepository-1_0-1 - Add upstream patches to fix build with meson 0.61.0 and newer: + 7c1178069f1c58a05ec56a94ca6ba124215a947b.patch + effb1e09dee263cdac4ec593e8caf316e6f01fe2.patch + 827494d6415b696a98fa195cbd883b50cc893bfc.patch ==== haproxy ==== - Add now working CONFIG parameter to sysusers generator ==== harfbuzz ==== Version update (3.2.0 -> 3.3.2) - update to 3.3.2: + Revert splitting of pair positioning values introduced in 3.3.0 as it proved problematic - includes changes from 3.3.1: + Fix heap-use-after-free in harfbuzz-subset introduced in previous release - includes changes from 3.3.0: + Improved documentation, code cleanup + The low 16-bits of face index will be used by hb_face_create() to select a face inside a font collection file format, while the high 16-bits will be used by hb_font_create() to load the named instance + Glyph positions and other font metrics now apply synthetic slant set by hb_font_set_synthetic_slant(), for improved positioning for synthetically slanted fonts + Fixed unintentional locale dependency in hb_variation_to_string() for decimal point representation + When applying pair positioning (kerning) the positioning value is split between the two sides of the pair for improved cursor positioning between such pairs + Introduced new HB_GLYPH_FLAG_UNSAFE_TO_CONCAT, to be used in conjunction with HB_GLYPH_FLAG_UNSAFE_TO_BREAK for optimizing re-shaping during line breaking. Check the documentation for further details + Improved handling of macrolanguages when mapping BCP 47 codes to OpenType tags ==== installation-images-MicroOS ==== Version update (17.39 -> 17.41) - merge gh#openSUSE/installation-images#572 - debuginfodeps: blacklist usr/bin/syslinux-mtools - 17.41 - merge gh#openSUSE/installation-images#554 - Support for new oscrc location - 17.40 ==== keylime ==== Subpackages: keylime-agent keylime-config keylime-firewalld keylime-registrar keylime-tpm_cert_store keylime-verifier python38-keylime - Change back agent_uuid to hostname - Set tpm_hash_alg to sha256 by default - Update version.diff patch to point to the correct version number - Fix issue with Tornado, when multiple workers are started * Add cloud_verifier_tornado-use-fork_processes.patch (bsc#1195605) ==== kubernetes1.23 ==== Subpackages: kubernetes1.23-client kubernetes1.23-client-common kubernetes1.23-kubeadm kubernetes1.23-kubelet kubernetes1.23-kubelet-common - avoid bashism in client-common postinstall script (bsc#1195391) ==== libzypp ==== Version update (17.29.3 -> 17.29.4) - Fix handling of redirected command in-/output (bsc#1195326) This fixes delays at the end of zypper operations, where zypper unintentionally waits for appdata plugin scripts to complete. - version 17.29.4 (22) ==== multipath-tools ==== Version update (0.8.8+45+suse.628d603e -> 0.8.8+57+suse.dfb672fe) Subpackages: kpartx libmpath0 - Version 0.8.8+57+suse.dfb672fe * kpartx.rules: skip MD devices (bsc#1195644) * libmultipath: hwtable: use ALUA for all LIO targets (bsc#1195649) * multipathd.service: drop ExecStartPre for loading dm-multipath (bsc#1195397) ==== pam-config ==== Version update (1.5 -> 1.6) - Update to Version 1.6 - Create /etc/pam.d if not there - Support file option of pam_pwhistory ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-bootloader patterns-base-minimal_base - No longer recommend apparmor pattern by enhanced_base: installations using YaST have the LSM selected during installation. Other setups might just as well pick SELinux. ==== python-pyOpenSSL ==== Version update (21.0.0 -> 22.0.0) - update to 22.0.0: - Drop support for Python 2.7. - The minimum ``cryptography`` version is now 35.0. - Expose wrappers for some `DTLS `_ primitives. - drop check_inv_ALPN_lists.patch: upstream ==== python-pyparsing ==== Version update (3.0.6 -> 3.0.7) - specfile: * update copyright year - update to version 3.0.7: * Fixed bug #345, in which delimitedList changed expressions in place using expr.streamline(). Reported by Kim Gräsman, thanks! * Fixed bug #346, when a string of word characters was passed to WordStart or WordEnd instead of just taking the default value. Originally posted as a question by Parag on StackOverflow, good catch! * Fixed bug #350, in which White expressions could fail to match due to unintended whitespace-skipping. Reported by Fu Hanxi, thank you! * Fixed bug #355, when a QuotedString is defined with characters in its quoteChar string containing regex-significant characters such as ., *, ?, [, ], etc. * Fixed bug in ParserElement.run_tests where comments would be displayed using with_line_numbers. * Added optional "min" and "max" arguments to `delimited_list`. PR submitted by Marius, thanks! * Added new API change note in `whats_new_in_pyparsing_3_0_0`, regarding a bug fix in the `bool()` behavior of `ParseResults`. * Prior to pyparsing 3.0.x, the `ParseResults` class implementation of `__bool__` would return `False` if the `ParseResults` item list was empty, even if it contained named results. In 3.0.0 and later, `ParseResults` will return `True` if either the item list is not empty *or* if the named results dict is not empty. * Minor enhancement to Word generation of internal regular expression, to emit consecutive characters in range, such as "ab", as "ab", not "a-b". * Fixed character ranges for search terms using non-Western characters in booleansearchparser, PR submitted by tc-yu, nice work! * Additional type annotations on public methods. ==== python-setuptools ==== Version update (57.4.0 -> 58.3.0) - update to 58.3.0: * ``setup.py install`` and ``easy_install`` commands are now officially deprecated. Use other standards-based installers (like pip) and builders (like build). Workloads reliant on this behavior should pin to this major version of Setuptools. * #1988: Deprecated the ``bdist_rpm`` command. * #2785: Replace confirparser's readfp with read_file, deprecated since Python 3.2. * #2823: Officially deprecated support for ``setup_requires``. Users are encouraged instead to migrate to PEP 518 ``build-system.requires`` in ``pyproject.toml``. Users reliant on ``setup_requires`` should consider pinning to this major version to avoid disruption. * #2762: Changed codecov.yml to configure the threshold to be lower * #2757: Add windows arm64 launchers for scripts generated by easy_install. * #2800: Added ``--owner`` and ``--group`` options to the ``sdist`` command, for specifying file ownership within the produced tarball (similarly to the corresponding distutils ``sdist`` options). * #2792: Document how the legacy and non-legacy versions are compared, and reference to the `PEP 440 `_ scheme. * #2773: Retain case in setup.cfg during sdist. * #2777: Build does not fail fast when ``use_2to3`` is supplied but set to a false value. * #2769: Build now fails fast when ``use_2to3`` is supplied. * #2765: In Distribution.finalize_options, suppress known removed entry points to avoid issues with older Setuptools. * #2086: Removed support for 2to3 during builds. Projects should port to a unified codebase or pin to an older version of Setuptools using PEP 518 build-requires. * #2712: Added implicit globbing support for `[options.data_files]` values. * #2737: fix various syntax and style errors in code snippets in docs ==== wpa_supplicant ==== - Apply Revert-DBus-Add-sae-to-interface-key_mgmt-capabilities.patch to fix connect with AVM FB, if WPA3 transition mode is activated, e.g. Wifi -> Security: is WPA2 + WPA3, alt. switch to WPA2 (CCMP) (bsc#1195312) - drop restore-old-dbus-interface.patch, wicked has been switching to the new dbus interface in version 0.6.66. - drop wpa_supplicant-getrandom.patch : glibc has been updated so the getrandom() wrapper is now there - config: * enable QCA vendor extensions to nl80211 * enable EAP-EKE * Support HT overrides * WPA3-Enterprise * TLS v1.1 and TLS v1.2 * Fast Session Transfer (FST) * Automatic Channel Selection * Multi Band Operation * Fast Initial Link Setup * Mesh Networking (IEEE 802.11s) - config: * Reenable Fast BSS Transition (likely fixing bsc#1195312) * Enable OCV, security feature that prevents MITM multi-channel attacks * Enable OWE for better hotspot support