Removed rpms ============ - libpcre1 - libprotobuf-lite3_21_5 Added rpms ========== - libprotobuf-lite3_21_6 Package Source Changes ====================== aaa_base +- Update to version 84.87+git20220822.6b9f7a3: + * Simplify XDG_CONFIG_DIRS (boo#1201802) + +- Update to version 84.87+git20220727.43b9e53: + * Use HOSTTYPE in MACHTYPE + * Move suse to VENDOR + * Use /var/mail for MAIL + bash +- Enable parallel builds by slpitting clean and all at make time + (Thanks to Christopher Yeleighton) +- Do not copy more than 1 byte for \(aq becoming a "'" in + quotes-man2html.patch + +- Small change in quotes-man2html.patch + * Use a simple "'" aka quote instead of "′" for "\(aq" + +- Add patch quotes-man2html.patch + * Fix boo#1203091 -- BASH(1) Manual Page: Unprocessed macro aq + btrfsprogs +- update to 5.19.1: + * fix memory leaks (extent buffer, path) + * check: verify block device size vs item + * rescue fix-device-size: allow to shrink device item + * receive: fix crash on wrong pinter free() + * other: + * experimental: support for block-group-tree + * documentation updates + * new tests + chrony +- Update to 4.3: + * Add local option to refclock directive to stabilise system + clock with more stable free-running clock (e.g. TCXO, OCXO). + * Add maxdelayquant option to server/pool/peer directive to + replace maxdelaydevratio filter with long-term quantile-based + filtering. + * Add selection option to log directive. + * Allow external PPS in PHC refclock without configurable pin. + * Don't accept first interleaved response to minimise error in + delay. + * Don't use arc4random on Linux to avoid server performance loss. + * Improve filter option to better handle missing NTP samples. + * Improve stability with hardware timestamping and PHC refclock. + * Update seccomp filter +- Update clknetsim to snapshot f00531b. +- Use a more specific conditional for the /usr/etc stuff. + +- Moved logrotate files from user specific directory /etc/logrotate.d + to vendor specific directory /usr/etc/logrotate.d. + cni - * This is a security release that fixes a single bug: + * This is a security release that fixes a single bug: bsc#1181961 cryptsetup +- Add virtual provides for 'integritysetup' and 'veritysetup' to match + package names provided by Fedora/RHEL, to allow the same set of + dependencies to be used across all RPM distributions. + diffutils +- Skip gnulib test test-free under qemu emulation (bsc#1202260) + -- Update to a pre-release version (3.5.15): - * remove big-file-performance.patch and gnulib-diffseq.patch - * comment signature source as the release is not officially signed yet - dracut +- Update to version 057+suse.315.gd210fc38: + * chore(suse): update spec + Fix "directories not owned by a package" caused by bash-completion directories not owned by dracut. + Do not install modules incompatible with the system architecture. + * chore(suse): change default persistent policy + * ci(suse.conf.example): update SUSE-specific config + * chore(suse): fix 99-debug.conf + e2fsprogs +- Refresh e2fsprogs.keyring based on currently provided keys. + +- Spec file cleanup: + + Drop remainders regarding -mini packages, which was not a thing + since Jan 2014. + + Split build of fuse2fs out into a sep build (_multibuild + enabled). + +- enabled fuse2fs build which enable to mount ext2/3/4 via FUSE + expat +- update to 2.4.9: (bsc#1203438) + * Security fixes: + - CVE-2022-40674 -- Heap use-after-free vulnerability in + function doContent. Expected impact is denial of service + or potentially arbitrary code execution. + * Bug fixes: + - MinGW: Fix mis-compilation for -D__USE_MINGW_ANSI_STDIO=0 + - docs: Fix documentation on effect of switch XML_DTD on + symbol visibility in doc/reference.html + * Other changes: + - MinGW: Make fix-xmltest-log.sh drop more Wine bug output + - Autotools: Sync CMake templates with CMake 3.22 + - CMake: Migrate from use of CMAKE_*_POSTFIX to + dedicated variables EXPAT_*_POSTFIX to stop affecting + other projects + - Windows|CMake: Add missing -DXML_STATIC to test runners + and fuzzers + - Windows|CMake: Render .def file from a template to fix + linking with -DEXPAT_DTD=OFF and/or -DEXPAT_ATTR_INFO=ON + - MinGW|CMake: Apply MSVC .def file when linking + - MinGW|CMake: Sync library name with GNU Autotools, + i.e. produce libexpat-1.dll rather than libexpat.dll + by default. Filename libexpat.dll.a is unaffected. + - MinGW|CMake: Set missing variable CMAKE_RC_COMPILER in + toolchain file "cmake/mingw-toolchain.cmake" to avoid + error "windres: Command not found" on e.g. Ubuntu 20.04 + - CMake: Unify inconsistent use of set() and option() in + context of public build time options to take need for + set(.. FORCE) in projects using Expat by means of + add_subdirectory(..) off Expat's users' shoulders + - Stop exporting API symbols when building a static library + - Resolve use of deprecated "fgrep" by "grep -F" + - CMake: Make documentation on variables a bit more consistent + - CMake: Drop leading whitespace from a #cmakedefine line in + file expat_config.h.cmake + - xmlwf: Fix harmless variable mix-up in function nsattcmp + - Address Cppcheck warnings + - Address Clang 15 compiler warnings + - Version info bumped from 9:8:8 to 9:9:8; + see https://verbump.de/ for what these numbers do + * Infrastructure: + - CI: Windows: Start covering MSVC 2022 + - CI: macOS: Migrate off deprecated macOS 10.15 + - CI: Linux: Make migration off deprecated Ubuntu 18.04 work + - CI: Upgrade Clang from 14 to 15 + - apply-clang-format.sh: Add support for BSD find + - coverage.sh: Exclude MinGW headers + - coverage.sh: Fix name collision for -funsigned-char + file +- Add patch file-zstd.patch from upstream mailing list + * Add zstd decompression support +- Run also upstream standard checks + +- update to 5.43: + * Add octal indirect magic + * avoid infinite loop in non-wide code + * Obey MAGIC_CONTINUE with multiple magic files + * Fix bug with large flist + * PR/364: Detect non-nul-terminated core filenames from QEMU + * PR/359: Add support for http://ndjson.org/ + * PR/362: Fix wide printing + * PR/358: Fix width for -f - +- drop file-boo1201350.patch (upstream) + filesystem +- Add /usr/lib/environment.d: new base directory for + XDG_CONFIG_DIRS (boo#1201802). + fuse3 +- Update to release 3.12.0 + * The max_idle_threads parameter has been deprecated in favor + of the new max_threads* parameter + * struct fuse_loop_config is now private and has to be + constructed using fuse_loop_cfg_create() + * fuse_session_loop_mt() now accepts struct fuse_loop_config * + as NULL pointer. + * fuse_parse_cmdline() now accepts a max_threads option. + gawk +- double-free.patch: Yet another fix for Node_elem_new + +- double-free.patch: Fix Node_elem_new op, replacing upref.patch +- pma.patch: Replace with upstream solution +- nan-sign.patch: Fix negative NaN issue on RiscV, replacing + nan-tests.patch + +- upref.patch: Add missing UPREF + +- Update to gawk 5.2.0 + * Numeric scalars now compare in the same way as C for the relational + operators. Comparison order for sorting has not changed + * If the AWK_HASH environment variable is set to "fnv1a" gawk will + use the FNV1-A hash function for associative arrays + * There is now a new function, mkbool(), that creates Boolean-typed + values + * As BWK awk has supported interval expressions since 2019, they are + now enabled even if --traditional is supplied + * The rwarray extension has two new functions, writeall() and readall() + * The new `gawkbug' script should be used for reporting bugs + * The manual page (doc/gawk.1) has been considerably reduced in size + * Gawk now supports Terence Kelly's "persistent malloc" (pma), + allowing gawk to preserve its variables, arrays and user-defined + functions between runs + * Some subtle issues with untyped array elements being passed to + functions have been fixed + * Syntax errors are now immediately fatal +- gawk-5.1.1-Disable-racy-test-in-test-iolint.awk.patch: removed +- pma.patch: Handle hole bigger than half the address space +- nan-tests.patch: fix non-portable NaN tests + glib-networking +- Update to version 2.74.0: + + Updated translations. + +- Update to version 2.74.rc: + + Support PKCS #12 encrypted certificates. + + Various improvements to Meson build system. + + Multiple fixes for proxy tests. + +- Update to version 2.74.beta: + + Drop environment proxy resolver to lowest priority. + +- Update to version 2.74.alpha: + + Add build option for toggling debug logging. + + Move gettext() usage out of hot paths. + + Fix tests build when using openssl. + + Properly free libproxy lookup results and require libproxy + 0.4.16. + + Add additional validation for proxy lookup results. + + Allow using static libraries via meson subprojects. + + Updated translations. + glib2 +- Update to version 2.74.0: + + Use EPOLL_CLOEXEC by default + + Fixed various regression on GRegex as per the PCRE2 porting + + Fixed various memory leaks + + Bugs fixed: glgo#GNOME/gtksourceview#278, + glgo#GNOME/gtksourceview#283, glgo#GNOME/GLib#2688, + glgo#GNOME/GLib#2713, glgo#GNOME/GLib#2719, + glgo#GNOME/GLib#2729, glgo#GNOME/GLib#2733, + glgo#GNOME/GLib#2737, glgo#GNOME/GLib#2741, + glgo#GNOME/gtk#4400, glgo#GNOME/GLib!2820, + glgo#GNOME/GLib!2855, glgo#GNOME/GLib!2861, + glgo#GNOME/GLib!2868, glgo#GNOME/GLib!2873, + glgo#GNOME/GLib!2874, glgo#GNOME/GLib!2875, + glgo#GNOME/GLib!2876, glgo#GNOME/GLib!2879, + glgo#GNOME/GLib!2881, glgo#GNOME/GLib!2882, + glgo#GNOME/GLib!2883, glgo#GNOME/GLib!2900. + + Updated translations. + +- Replace pkgconfig(libpcre) with pkgconfig(libpcre2-8) + BuildRequires. No longer used by glib (replaced by pcre2 + in 2.73.2). + +- Drop 99783e0408f8ae9628d2c7a30eb99806087da711.patch for 2.73.x + branch, fixed upstream already. + +- Update to version 2.73.3: + + Revitalize G_REGEX_OPTIMIZE flag and use it to enable PCRE JIT + compiler. + + Fix some regressions due to the PCRE2 port. + + Fix a pidfd leak that was introduced in the previous release. + + Support compilation without a C++ toolchain. + + GDBus: Use namespace-friendly protocol for Linux message buses, + and optionally other connections. + + Fix potential races in multi-threaded signal connections + handling. + + Add back gio-launch-desktop to redirect stdout/stderr of + launched GDesktopAppInfo's to the journal with proper parent + + Executables that are invoked when installing other software, + typically from packaging system triggers, can now be installed + into architecture-dependent locations. Unix OS distributors who + install GLib for more than one architecture in parallel + (multiarch or multilib installations) should consider building + with -Dmultiarch=true, installing the bin/glib-compile-schemas + and bin/gio-querymodules symbolic links in packages for the + primary architecture, and omitting those symlinks from packages + for secondary architectures. + + Some enumerators introduced in previous releases have been + changed, for better introspection results: + - G_MARKUP_PARSE_FLAGS_NONE renamed to G_MARKUP_DEFAULT_FLAGS + - G_TLS_CERTIFICATE_FLAGS_NONE renamed to + G_TLS_CERTIFICATE_NO_FLAGS + - G_APPLICATION_FLAGS_NONE was deprecated, use + G_APPLICATION_DEFAULT_FLAGS now. + + gfileinfo: Implement xattr attribute removal. + + Add support to --delete option to gio set, to unset a file + attribute. + + Improve default value of glib_debug option: G_ENABLE_DEBUG will + be defined only if using `--buildtype=debug` or enabled via + `-Dglib_debug`, but it won't ever be set if an optimized build + is requested (specifically if the optimization level is not `0` + or `g`) as it may be the case when using + `--buildtype=debugoptimized`. + + Probably the first revision of any GNOME module ever released + from Cuba :) + + Bugs fixed: glgo#GNOME/Glib#566, glgo#GNOME/Glib#1187, + glgo#GNOME/Glib#2509, glgo#GNOME/Glib#2542, + glgo#GNOME/Glib#2588, glgo#GNOME/Glib#2682, + glgo#GNOME/Glib#2692, glgo#GNOME/Glib#2694, + glgo#GNOME/Glib#2699, glgo#GNOME/Glib#2700, + glgo#GNOME/Glib#2703, glgo#GNOME/Glib#2705, + glgo#GNOME/Glib#2708, glgo#GNOME/Glib!2299, + glgo#GNOME/Glib!2759, glgo#GNOME/Glib!2812, + glgo#GNOME/Glib!2813, glgo#GNOME/Glib!2814, + glgo#GNOME/Glib!2815, glgo#GNOME/Glib!2818, + glgo#GNOME/Glib!2822, glgo#GNOME/Glib!2823, + glgo#GNOME/Glib!2825, glgo#GNOME/Glib!2826, + glgo#GNOME/Glib!2827, glgo#GNOME/Glib!2829, + glgo#GNOME/Glib!2830, glgo#GNOME/Glib!2832, + glgo#GNOME/Glib!2833, glgo#GNOME/Glib!2835, + glgo#GNOME/Glib!2836, glgo#GNOME/Glib!2851, + glgo#GNOME/Glib!2853, glgo#GNOME/Glib!2854. + + Updated translations. + +- Update to version 2.73.2: + + Replace PCRE1 with PCRE2. + + Preserve destruction order in gdataset, fixing various crashes + during objects disposal. + + Require C99 __VA_ARGS__. + + Add NONE or DEFAULT members to most flags types. + + GFile: Add some missing async APIs. + + Improve internal and process documentation. + + Add atomic compare-and-exchange APIs returning previous value. + + Add G_DEFINE_ENUM_TYPE and G_DEFINE_ENUM_VALUE macros. + + Add platform-independent G_ALWAYS_INLINE and G_NO_INLINE. + + Use waitid() on pidfds rather than a global SIGCHLD handler. + +- Update to version 2.73.1: + + Remove the `-Diconv` configure option, as GLib now uses Meson’s + built-in logic for finding which iconv implementation to use. + + Move gvdb to a Meson subproject and git submodule to avoid + duplicating its source. + + Add `add_test_setup()` in Meson to allow GLib tests to be run + under valgrind with correct settings easily, using + `meson test --setup=valgrind`. + + Fix deadlocks when disposing non-cancelled inotify + `GFileMonitor`s. + + Fix `file://` requests in webkit2gtk due to incorrect xdgmime + update. + + Fix build errors on macOS ≤10.7 for `LOCAL_PEERPID`. + + Add new `g_atomic_int_exchange()` and + `g_atomic_pointer_exchange()` APIs. + + Add new `GListStore:n-items` property to allow easy binding in + UIs. + + Performance improvements for GObject construction and + destruction. + + Use a numeric space (U+2007) for padding with some + `g_date_time_format()` placeholders. + + Fix a slow memory leak in `GSocketClient` when using long-lived + `GCancellable`s. + glibc +- makeflags.patch: Makerules: fix MAKEFLAGS assignment for upcoming + make-4.4 (BZ# 29564) + +- errlist-edeadlock.patch: errlist: add missing entry for EDEADLOCK (BZ + [#29545]) + +- syslog-large-messages.patch: syslog: Fix large messages (CVE-2022-39046, + bsc#1203011, BZ #29536) +- dlmopen-libc-early-init.patch: elf: Call __libc_early_init for reused + namespaces (BZ #29528) +- ldd-vdso-dependency.patch: elf: Restore how vDSO dependency is printed + with LD_TRACE_LOADED_OBJECTS (BZ #29539) +- syslog-extra-whitespace.patch: syslog: Remove extra whitespace between + timestamp and message (BZ #29544) + gobject-introspection +- Switch to pcre2grep (pcre is dead upstream) + +- Update to version 1.74.0: + + Update the GIR data for GLib, GObject, GModule, and GIO. + +- Update to version 1.73.1: + + Update the GIR data for GLib, GObject, GModule, and GIO + + Disable rpath on Windows + + Add llvm/mingw support on Windows + + Fix annotations in libgirepository + + Support C99 designated initializers when parsing C declarations + + Add some more types to win32 GIR + + Let doctool prepend emitting objects in GJS signals + + Require a C99 toolchain like GLib + +- gi-find-deps.sh: extend js script parser to detect imports in the + form import 'gi://GeocodeGlib?version=2.0'. + +- Update to version 1.73.0: + + Update the GIR data for GLib, GObject, GModule, and GIO. + + scanner: + - Support pre-processor macros with zero arguments. + - Support ISO C varargs in macros. + + Fix subproject build. + grep +- efgrep-warning.patch: remove warning from [ef]grep + +- GNU grep 3.8: + * The -P option is now based on PCRE2 instead of the older PCRE + (boo#1201803) + * egrep and fgrep commands, deprecated since release 2.5.3 (2007), now + warn that they are obsolescent and should be replaced by grep -E and + grep -F + * The confusing GREP_COLOR environment variable is now obsolescent + * Regular expressions with stray backslashes now cause warnings + * Regular expressions like [:space:] are now errors even if + POSIXLY_CORRECT is set, since POSIX now allows the GNU behavior + * In locales using UTF-8 encoding, the regular expression '.' no + longer sometimes fails to match Unicode characters + * The -s option no longer suppresses "binary file matches" + messages. +- doc: fix man page syntax errors (bsc#1201001) + grub2 +- Fix firmware oops after disk decrypting failure (bsc#1204037) + * 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch + gsettings-desktop-schemas +- Update to version 43.0: + + Updated translations. + +- Update to version 43.rc.1: + + Update default background file extension to webp + + Updated translations. + +- Update to version 43.rc: + + Add setting for touchpad acceleration profiles + + Add specific schema for trackpoint pointer devices + + Updated translations. + +- Update to version 43.alpha: + + Fix description of use-same-proxy setting. + + Updated translations. + health-checker +- Update to version 1.7 + * Before rollback make sure /.snapshots is mounted rw + * Fix typos and spelling errors. Note: in case an application is + parsing the output it will need to adopt to the new strings. + k3s-selinux +- Update to version 1.2.stable.2: + * Bump pip/setuptools version; switch to https for git clone + * Use SHA256 to sign packages instead of default SHA1 + less +- Update to 608: + * Add the --header option (github #43). + * Add the --no-number-headers option (github #178). + * Add the --status-line option. + * Add the --redraw-on-quit option (github #36). + * Add the --search-options option (github #213). + * Add the --exit-follow-on-close option (github #244). + * Add 'H' color type to set color of header lines. + * Add #version conditional to lesskey. + * Add += syntax to variable section in lesskey files. + * Allow option name in -- command to end with '=' in addition to '\n'. + * Add $HOME/.config to possible locations of lesskey file (github #153). + * Add $XDG_STATE_HOME and $HOME/.local/state to possible locations + of history file (github #223). + * Don't read or write history file in secure mode (github #201). + * Fix display of multibyte and double-width chars in prompt. + * Fix ESC-BACKSPACE command when BACKSPACE key does not send 0x08 + (github #188). + * Add more \k codes to lesskey format. + * Fix bug when empty file is modified while viewing it. + * Fix bug when parsing a malformed lesskey file (githb #234). + * Fix bug scrolling history when --incsearch is set (github #214). + * Fix buffer overflow when invoking lessecho with more than 63 -m/-n + options (github #198). + * Fix buffer overflow in bin_file (github #271). + * Fix bug restoring color at end of highlighted text. + * Fix bug in parsing lesskey file. + * Defer moving cursor to lower left in some more cases. + * Suppress TAB filename expansion in some cases where it doesn't make sense. + * Fix termlib detection when compiler doesn't accept + calls to undeclared functions. + * Escape filenames when invoking LESSCLOSE. + * Fix bug using multibyte UTF-8 char in search string + with --incsearch (github #273). + libffi +- add riscv-rvalue-ext.patch to fix libffi for RISCV64 + -- aarch64-struct-by-value.patch: fix passing struct by value on aarch64 - libgcrypt +- FIPS: Get most of the entropy from rndjent_poll [bsc#1202117] + * Add libgcrypt-FIPS-rndjent_poll.patch + * Rebase libgcrypt-jitterentropy-3.4.0.patch + +- FIPS: Check keylength in gcry_fips_indicator_kdf() [bsc#1190700] + * Consider approved keylength greater or equal to 112 bits. + * Add libgcrypt-FIPS-kdf-leylength.patch + +- FIPS: Zeroize buffer and digest in check_binary_integrity() + * Add libgcrypt-FIPS-Zeroize-hmac.patch [bsc#1191020] + libksba +- libksba 1.6.1: + * Allow an OCSP server not to return the sent nonce +- fix rpmlint warnings + -- libksba 1.3.2 [boo#907074] [CVE-2014-9087] - This version contains a security update which fixes a buffer - overflow in OID to string conversion code that can be triggered - by a specially crafted S/MIME message or ECC based OpenPGP data. - Users of GnuPG 2.x should install this version and restart the - dirmgr process. - * Fixed a buffer overflow in ksba_oid_to_str. -- verify source signature - libssh +- Update to version 0.10.4 + * https://git.libssh.org/projects/libssh.git/tag/?h=libssh-0.10.4 + liburing +- skip checks on qemu_linux_user builds + libxml2 +- Build for now with --with-legacy to enable APIs that have been + deprecated recently. (bsc#1202965) + +- Update to version 2.10.2: + * Improvements: + + Remove set-but-unused variable in xmlXPathScanName + + Silence -Warray-bounds warning + * Build system + + build: require automake-1.16.3 or later + + Remove generated files from distribution + * Test suite: Don't create missing.xml when running testapi +- Add configure --with-python=%{__python3} inbefore python build, + as upstream no longer ships pre-grenerated files. +- Use sed to fix env-script-interpreter in documentation example. +- Pass with-ftp to configure, build ftp support. + live-langset-data +- Parse lang=/keytable= options more explicitly (boo#1202925) + -- Add new method of invocation for jeos-firstboot -- Try to overwrite existing values in vconsole.conf -- Don't write _NOT countries into zypp/RequestedLocales -- Add sysconfig handling back -- Ignore suffix on passed locale -- Call set-keymap after set-x11-keymap -- Restart of systemd-vconsole-setup is not necessary - logrotate +- Ignoring vendor logs settings in /usr/etc/logrotate.d if they + have already been defined by the the admin in the /etc/logrotate.d + directory (bsc#1173319). +- Removed logrotate-3.20.0-man_logrotate.patch. +- Added logrotate-vendor-dir.patch + lvm2:devicemapper +- lvmlockd is not supporting sanlock (bsc#1203482) + - set 1 for _supportsanlock in lvm2.spec for enabling sanlock. + mozilla-nss +- update to NSS 3.82 + * bmo#1330271 - check for null template in sec_asn1{d,e}_push_state + * bmo#1735925 - QuickDER: Forbid NULL tags with non-zero length + * bmo#1784724 - Initialize local variables in + TlsConnectTestBase::ConnectAndCheckCipherSuite + * bmo#1784191 - Cast the result of GetProcAddress + * bmo#1681099 - pk11wrap: Tighten certificate lookup based on + PKCS #11 URI. + ncurses -- Add ncurses patch +20220820 +- Add ncurses patch 20220910 + + amend verbose-option change to make this affect level 3, e.g., using + "tic -cv3 terminfo". + + work around musl's nonstandard use of feature test macros by adding + a definition for NCURSES_WIDECHAR to the generated ".pc" and *-config + files (report by Sam James). +- Add ncurses patch 20220903 + + modify verbose-option of infocmp, tic, toe to enable debug-tracing + if that is configured. +- Add ncurses patch 20220827 + + modify configure scripts to use overlooked cases for LD and + PKG_CONFIG variables (report by Alan Webb, Gentoo #866398). + + modify nsterm to use xterm+alt1049 (report by Paul Handly) -TD + + modify putty to use xterm+alt1049 -TD +- Correct offsets of patches + * ncurses-5.9-ibm327x.dif + * ncurses-6.3.dif + +- Add ncurses patch 20220820 nghttp2 +- update to 1.50.0: + * https://nghttp2.org/blog/2022/09/21/nghttp2-v1-50-0/ + This release adds + nghttp2_option_set_no_rfc9113_leading_and_trailing_ws_validation which disables + checking leading and trailing white spaces against HTTP field value. + +- disable asio by default as it is deprecated by upstream and + will be removed in the next release + +- update to 1.49.0: + * https://nghttp2.org/blog/2022/08/22/nghttp2-v1-49-0/ + openssl-1_1 +- Added openssl-1_1-paramgen-default_to_rfc7919.patch + * bsc#1180995 + * Default to RFC7919 groups when generating ECDH parameters + using 'genpkey' or 'dhparam' in FIPS mode. + p11-kit +- skip testsuite on qemu arches, it fails + patterns-alp +- enable patterns building for riscv64 + patterns-base +- drop recommends for ucode-intel and ucode-amd, these packages + have supplements to be pulled in on the respective cpus and + there is no point having both installed (doubling the number + of reboot-needed updates) + permissions +- skip tests on qemu user builds + +- Update to version 20220912: + * chkstat: also consider group controlled paths (bsc#1203018, + CVE-2022-31252) + podman +- Update to version 4.2.1: + * Bump to v4.2.1 + * Add release notes for v4.2.1 + * remove SkipIfNotFedora() from events test + * fix podman events with custom format + * Drop stale config value resulting in asymmetric config + * Fix list of default capabilities + * Add container GID to additional groups + * libpod: Ensure that generated container names are random + * Fix bind-mount-option annotation in gen/play kube + * Improved Windows compatibility for machine command + * updated apiv2 tests to reflect hash compat fix + * api: return imageID instead of imageName, for "Image" when Podman API is queried + * Inhibit SIGTERM during Conmon startup + * Fix example sections to follow the same format + * Fix template name inconsistency + * service: make move to sub-cgroup non fatal + * Remove duplicate annotations in generated service yaml + * Compat API image remove events now have 'delete' status + * [CI:DOCS] Automatically set podman version in pkginstaller + * Allow colons in windows file paths + * Fixes isRootfull check using qemu machine on Windows + * vendor containers/psgo@v1.7.3 + * Allow podman to run in an environment with keys containing spaces + * Document restrictions on transport in FROM + * Improved Windows compatibility + * pass environment variables to container clone + * podman save: update --compress validation + * sort hc.Binds returned from compat api + * Cirrus: Update podman-machine comment + * podman images and friends can take one image as argument + * [CI:DOCS] Add .DS_Store to gitignore + * podman-kube@.service.in: Remove Restart=never option with typo + * Fix #15499 already connected network + * [CI:DOCS] Cirrus: Update meta-task for EC2 image + * fix CI: remove hardcodeded alpine version + * fix CI: remove hardcodeded alpine version + * Preserve all unknown PolicyRequirement fields on (podman image trust set) + * Reorganize the types in policy.go a bit + * Add support for showing keyPaths in (podman image trust show) + * Support (image trust show) for sigstoreSigned entries + * BREAKING CHANGE: Change how (podman image trust show) represents multiple requirements + * Reorganize descriptionsOfPolicyRequirements a bit + * Use the full descriptionsOfPolicyRequirements for the default scope + * Rename haveMatchRegistry to registriesDConfigurationForScope + * Rename tempTrustShowOutput to entry + * Split descriptionsOfPolicyRequirements out of getPolicyShowOutput + * Recognize the new lookaside names for simple signing sigstore + * Add a unit test for trust.PolicyDescription + * Make the output of (podman image trust show) deterministic + * Make most of pkg/trust package-private + * Move most of ImageEngine.ShowTrust into pkg/trust.PolicyDescription + * Add support for sigstoreSigned in (podman image trust set) + * Create new policy entries together with validating input + * Improve validation of data in ImageEngine.SetTrust + * Move most of imageEngine.SetTrust to pkg/trust.AddPolicyEntries + * Add a variable for scope + * Make trust.CreateTempFile private + * Reorganize pkg/trust + * Remove an unused trust.ShowOutput type + * Remove commented out code + * libpod: UpdateContainerStatus: do not wait for container + * Skip / update some tests under runc + * Bump to v4.2.1-dev + * test: update apply-podman-deltas for new tests + * build: implement --cache-to,--cache-from and --cache-ttl + * vendor: bump buildah to v1.27.0 + -- Update to version 3.1.0: +- Update to version 3.1.0: (bsc#1181961, CVE-2021-20206) polkit +- obsolete libpolkit0 also from baselibs. + protobuf +- update to 21.6: + C++: + * Reduce memory consumption of MessageSet parsing + python310:base +- test-int-timing.patch: gh-96710: Make the test timing more lenient for + the int/str DoS regression test. (#96717) + +- Update to 3.10.7: + - Fix for CVE-2020-10735 (bsc#1203125) Converting between int + and str in bases other than 2 (binary), 4, 8 (octal), 16 + (hexadecimal), or 32 such as base 10 (decimal) now raises + a ValueError if the number of digits in string form is above + a limit to avoid potential denial of service attacks due to + the algorithmic complexity. + - Other bug fixes: + - Fixed a bug that caused _PyCode_GetExtra to return garbage + for negative indexes. + - Fix format string in _PyPegen_raise_error_known_location + that can lead to memory corruption on some 64bit systems. + The function was building a tuple with i (int) instead of + n (Py_ssize_t) for Py_ssize_t arguments. + - Fix misleading contents of error message when converting an + all-whitespace string to float. + - coroutine.throw() now properly initializes the frame.f_back + when resuming a stack of coroutines. This allows e.g. + traceback.print_stack() to work correctly when an exception + (such as CancelledError) is thrown into a coroutine. + - ast.parse() will no longer parse function definitions with + positional-only params when passed feature_version less + than (3, 8). + - Correct conversion of numbers.Rational’s to float. + - Fix a performance regression in logging + TimedRotatingFileHandler. Only check for special files when + the rollover time has passed. + - Fix unused localName parameter in the Attr class in + xml.dom.minidom. + - Update bundled pip to 22.2.2. + - Fail gracefully if EPERM or ENOSYS is raised when loading + crypt methods. This may happen when trying to load MD5 on + a Linux kernel with FIPS enabled. + - Improve discoverability of the higher level + concurrent.futures module by providing clearer links from + the lower level threading and multiprocessing modules. + - Update the default RFC base URL from deprecated + tools.ietf.org to datatracker.ietf.org + - Fix stylesheet not working in Windows CHM htmlhelp docs. + - The documentation now lists which members of C structs are + part of the Limited API/Stable ABI. + - Mitigate the inherent race condition from using + find_unused_port() in testSockName() by trying to find an + unused port a few times before failing. + - Build and test with OpenSSL 1.1.1q + - Document handling of extensions in Save As dialogs. + - Include prompts when saving Shell (interactive input and + output). + +- Extend distutils-reproducible-compile.patch with a workaround + for non reproducible pyc files issue 93317 + rpm +- update to rpm-4.17.1.1 + * Fix upstream branch setting in "%autosetup -S git" + * Revert "Strip the target triplet GNU suffix more precisely." + +- remove-translations.diff: convert deprecated egrep to grep -E + (boo#1203092) + rpm-config-SUSE +- Update to version 20220926: + * Revert macros.debuginfo and prefer a direct rpm patch + * Fix kernel builds after #59 + * Redefine %__debug_install_post to simplify debuginfo setup + * Fix bug not using custom name for summary and description in language packages (boo#1137381) + rsync +- Use bundled SLP patch now that upstream fixed it: + * Remove rsync-3.2.5-slp.patch + +- update to 3.2.6: + * More path-cleaning improvements in the file-list validation code to avoid + rejecting of valid args. + * A file-list validation fix for a --files-from file that ends without a + line-terminating character. + * Added a safety check that prevents the sender from removing destination + files when a local copy using --remove-source-files has some files that are + shared between the sending & receiving hierarchies, including the case + where the source dir & destination dir are identical. + * Fixed a bug in the internal MD4 checksum code that could cause the digest + to be sporadically incorrect (the openssl version was/is fine). + * A minor tweak to rrsync added "copy-devices" to the list of known args, but + left it disabled by default. + +- Build SLE version with g++-11 + to work around nondeterministic g++-7 (boo#1193895) + +- Migration to /usr/etc: Saving user changed configuration files + in /etc and restoring them while an RPM update. + runc +- Update to runc v1.1.4. Upstream changelog is available from + https://github.com/opencontainers/runc/releases/tag/v1.1.4. + bsc#1202021 + * Fix mounting via wrong proc fd. When the user and mount namespaces are + used, and the bind mount is followed by the cgroup mount in the spec, + the cgroup was mounted using the bind mount's mount fd. + * Switch kill() in libcontainer/nsenter to sane_kill(). + * Fix "permission denied" error from runc run on noexec fs. + * Fix failed exec after systemctl daemon-reload. Due to a regression + in v1.1.3, the DeviceAllow=char-pts rwm rule was no longer added and + was causing an error open /dev/pts/0: operation not permitted: unknown when systemd was reloaded. + (boo#1202821) + selinux-policy +- Update fix_networkmanager.patch to ensure NetworkManager chrony + dispatcher is properly labled and update fix_chronyd.patch to ensure + chrony helper script has proper label to be used by NetworkManager. + Also allow NetworkManager_dispatcher_custom_t to query systemd status + (bsc#1203824) + +- Update fix_xserver.patch to add greetd support (bsc#1198559) + +- Revamped rtorrent module + snapper +- Moved logrotate files from user specific directory /etc/logrotate.d + to vendor specific directory /usr/etc/logrotate.d. +- version 0.10.3 + sqlite3 + * bsc#1189802, CVE-2021-36690: Fix an issue with the SQLite Expert + extension when a column has no collating sequence. sudo +- Modified sudo-sudoers.patch + * bsc#1177578 + * Removed redundant and confusing 'secure_path' settings in + sudo-sudoers file. + suse-module-tools +- Update to version 16.0.23: + * cert-script: skip cert handling if efivarfs is not writable + (bsc#1201066) + * driver-check.sh, unblacklist: convert egrep to grep -E (bsc#1203092) + systemd +- Drop the old band aid used during the breakage introduced by the switch of + /tmp to tmpfs + This was done to address the regression reported in boo#1175779 but shouldn't + be necessary anymore since the (few) affected users should have updated + systemd during the last 2 years. + +- Move nss-systemd and nss-myhostname NSS modules into the main package + +- Give the instructions to create a home directory with systemd-homed in the + description of the systemd-experimental sub-package + +- rc-local.service.8 belongs to the systemd-sysvcompat sub-package (bsc#1203053) + +- Enable building and include libcryptsetup-plugins provided by systemd + Now that dracut 057 has been released we can enable building libcryptsetup + plugins. These can be used by cryptsetup to extend functionality including + fido2, pkcs11 and tpm2 support. + +- Let systemd trust the RTC for 30 years after the last update instead of 15 (bsc#1202356) + To allow for our systems to be used in edge locations without systemd updates + for a long time. + sysuser-tools +- Use append so if a pre file already exists it isn't overridden + tcpd +- use _libdir (boo#1191098) + -- tcpd-ocloexec.patch: Use O_CLOEXEC whenever neccesary, - otherwise fd leaks will follow. - timezone +- timezone update 2022d: + * Palestine transitions are now Saturdays at 02:00 + * Simplify three Ukraine zones into one + vim +- Updated to version 9.0.0626, fixes the following problems +- fix boo#1203924 - CVE-2022-3352 + * Error for modifying a const is not detected at compile time. + * Leaking argument type array. + * Too many delete() calls in tests. + * When quitting the cmdline window with CTRL-C it remains visible. + * Warning for using uninitialized value in mouse test. + * A closure in a nested loop in a :def function does not work. + * Build failure. + * Various problems with 'nosplitscroll'. + * Line number argument for :badd does not work. + * Command line cleared when using :redrawstatus in CmdlineChanged + autocommand event. + * When the channel test fails there is no clue why. + * Confusing error for "saveas" command with "nofile" buffer. + * Chatito files are not recognized. + * Unnecessary scrolling for message of only one line. + * Cannot redraw the status lines when editing a command. + * May not be able to use a pattern ad the debug prompt. + * Terminal test sometimes hangs. + * Virtual text highlight starts too early when 'number' is set. + * Virtual text "above" highlights gap after it. + * When at the command line :redrawstatus does not work well. + * Virtual text highlight starts too early with 'nowrap' and 'number' set. + * The win_line() function is much too long. + * Declaring a loop variable at the start of a block is clumsy. + * Compiler warns for unused argument in small version. + * Build fails on Appveyor. + * more compiler warnings for arguments in small version + * Manually deleting temp test files. + * Long sign text may overflow buffer. + * Appveyor setup contains outdated lines. + * Using freed memory when autocmd changes mark. + * The win_line() function is much too long. + * Edit test is flaky when run under valgrind. + * The win_line() function is much too long. + * Line number is displayed at virtual text "above". + * Closure gets wrong value in for loop with two loop variables. + * The do_set() function is much too long. + * Manually deleting test temp files. + * Long message test can be flaky. + * Assigning stack variable to argument confuses Coverity. + * Terminal pwd test fails with a very long path name. + * Insufficient testing for assert and test functions. + * Minor issues with setting a string option. + * When a test is slow and CI times out there is no time info. + * Supporting Ruby 1.8 makes code complicated. + * Looping over empty out_loop[] entries. + * reduce() with a compiled lambda could be faster. + * Duplicated code in calling a :def function. + * Crash when closing a tabpage and buffer is NULL. + * Mode message is delayed when :echowin was used. (Maxim Kim) + * Crash when using NUL in buffer that uses :source. + * No error for "|" after "{" in lamda. + * Using freed memory when command follows lambda. + * Scrolling with 'nosplitscroll' in callback changing curwin. + * Leaking memory with nested functions. + * Valgrind reports possibly leaked memory. + * Coverity warns for possibly using NULL pointer. + * Timer test may get stuck at hit-enter prompt. + * Elapsed time since testing started is not visible. + * When a test gets stuck it just hangs forever. + * HSL playlist files are not recognized. + * Timer_info() test fails. + * Cscope test causes problems when code for test timeout timer is included + (even when commented out). + * Nim files are not recognized. + * 'completeopt' "longest" is not used for complete(). + * Autocmd code is indented more than needed. + * Cannot easily get out when using "vim file | grep word". + * Insert complete tests leave a mapping behind. + * Outdated dependencies go unnoticed. + * Timer garbage collect test hangs on Mac M1. + * The getchar() function behaves strangely with bracketed paste. + * Unused loop variables. + * Buffer underflow with unexpected :finally. + * Using freed memory when 'tagfunc' wipes out buffer that holds 'complete'. + * Adding a character for incsearch fails at end of line. + * Only recognizing .m3u8 files is inconsistent. + * Cscope test with wrong executable name fails. + * When long message test fails the error message is not visible. + * Missing change in test. + * Unicode tables are outdated. + * After exiting Insert mode spelling is not checked in the next line. + * Message window popup shows on only one tab page. (Naruhiko Nishino) + * Display not cleared when scrolling back in messages, a background color + is set and t_ut is empty. + * Makefile error message causes a shell error. + * Extra newline in messages after a verbose shell message. + * Cannot close a tab page with the middle mouse button. + * Using negative array index with negative width window. + * Latexmkrc files are not recognized. + * GYP files are not recognized. + * Too much indent. + * New TypeScript extensions are not recognized. + * With 'nosplitscroll' folds are not handled correctly. + * Luacheckrc file is not recognized. + * Dump file missing. + * system() opens a terminal window when using the GUI and "!" is in + 'guioptions'. + * With spell checking, deleting a full stop at the end of a line does not + update SpellCap at the start of the next line. + * Blockedit test fails because of wrong indent. + * Global interrupt test fails when run under valgrind. + * Tests delete files with a separate delete() call. + * Blockedit test passes with wrong result. + * Running source tests leaves file behind. + * SpellFileMissing autocmd may delete buffer. + * Using reduce() on a list from range() is a bit slow. + * Spell test fails because error message changed. + * Calling function for reduce() has too much overhead. + * Too many delete() calls in tests. + * matchaddpos() can get slow when adding many matches. + * Filetype test leaves file behind. + * matchaddpos() can only add up to 8 matches. + +- Updated to version 9.0.0500, fixes the following problems +- boo#1203508 - CVE-2022-3234 +- boo#1203509 - CVE-2022-3235 + * On an AZERTY keyboard digit keys get the shift modifier. + * Incorrect color for modeless selection with GTK. + * A few problems with 'splitscroll'. + * Function called at debug prompt is also debugged. + * Substitute prompt does not highlight an empty match. + * Splitting a line with a text prop "above" moves it to a new line below. + * Vim9: block in for loop doesn't behave like a code block. + * Loop variable can't be found. + * 'scroll' is not always updated. + * ASAN warning for integer overflow. + * Command line test leaves directory behind. + * With virtual text "above" indenting doesn't work well. + * Cursor moves when cmdwin is closed when 'splitscroll' is off. + * Virtual text wrong after adding line break after line. + * Build failure. + * Exectution stack underflow without the +eval feature. (Dominique Pellé) + * Cursor moves if cmdwin is closed when 'splitscroll' is off. + * In a :def function all closures in a loop get the same variables. + * No test for what patch 9.0.0469 fixes. + * Virtual text "below" doesn't show in list mode. + * fullcommand() only works for the current script version. + * fullcommand() test failure. + * Not using deferred delete in tests. + * Varargs does not work for replacement function of substitute(). + * Missing dependency may cause crashes on incomplete build. + * Test for 'splitscroll' takes too much time. + * Valva Date Format files are not recognized. + * Cannot use a :def varargs function with substitute(). + * In a :def function all closures in a loop get the same variables. + * "g0" moves to wrong location with virtual text "above". + * Illegal memory access when replacing in virtualedit mode. + * In a :def function all closures in a loop get the same variables. + * Text scrolled with 'nosplitscroll', autocmd win opened and help window + closed. + * Using freed memory with combination of closures. + * Cursor in wrong position with virtual text "above" and 'showbreak'. + * Using "end_lnum" with virtual text causes problems. + * Using freed memory with cmdwin and BufEnter autocmd. + * No good reason to build without the float feature. + * Cmdwin test fails on MS-Windows. + * Perl test fails. + * Small build misses float function declaraitons. + * Closure doesn't work properly in nested loop. + * No good reason to keep supporting Windows-XP. + * LyRiCs files are not recognized. + * Various small issues. + * In :def function list created after const is locked. + * When quitting the cmdline window with CTRL-C it remains visible. + +- Updated to version 9.0.0453, fixes the following problems +- boo#1203272 - CVE-2022-3153 +- boo#1203194 - CVE-2022-3134 +- boo#1203110 - CVE-2022-3099 + * Writefile test leaves files behind. + * Freeing the wrong string on failure. + * Coverity complains about unused value. + * Covertity still complains about using return value of getc(). + * GUI: when CTRL-D is mapped in Insert mode it gets inserted. (Yasuhiro + Matsumoto) + * Some code blocks are nested too deep. + * repeating a mapping does not use the right script context. + * The do_arg_all() function is too long. + * Crash when 'tagfunc' closes the window. + * Cannot use a partial with :defer. + * Using separate delete() call instead of writefile() 'D' flag. + * Inverted condition is a bit confusing. + * Signals test often fails on FreeBSD. + * Cygwin: multibyte characters may be broken in terminal window. + * Clang warnings for function prototypes. + * :findrepl does not escape '&' and '~' properly. + * :defer not tested with exceptions and ":qa!". + * Members of funccall_T are inconsistently named. + * Using :defer in expression funcref not tested. + * GUI test sometimes hangs on CI. + * CI uses older clang version. + * Javascript module files are not recoginzed. + * 'equalalways' may be off when 'laststatus' is zero. + * Crash when passing invalid arguments to assert_fails(). + * Arguments in a partial not used by a :def function. + * Deferred functions not invoked when partial func exits. + * matchstr() does match column offset. (Yasuhiro Matsumoto) + * GUI test sometimes fails on MS-Windows. + * #{g:x} was seen as a curly-braces expression. + * Struct member cts_lnum is unused. + * Only created files can be cleaned up with one call. + * Compiler warning for unused argument. + * ASAN reports a memory leak. + * matchstr() still does not match column offset when done after a text + search. + * ml_get error when appending lines in popup window. + * Jsonnet files are not recognized. + * Manually deleting temp test files. + * The :defer command does not check the function argument count and types. + * Function went missing. + * Not enough testing of the :all command. + * "for" and "while" not recognized after :vim9cmd and :legacy. (Emanuele + Torre) + * gitattributes files are not recognized. + * Autocmd test is a bit flaky on MS-Windows. + * Failed flaky tests report only start time. + * Drupal theme files are not recognized. + * Autocmd test uses common file name. + * Not all keys are tested for the MS-Windows GUI. + * Cannot use repeat() with a blob. + * Current mode shows in message window. + * Crash when using for loop variable in closure. + * Coverity warns for not checking allocation failure. + * gitignore files are not recognized. + * Compiler warning for uninitialized variable. + * CI: running tests in parallel causes flakiness. + * No error when a custom completion function returns something else than + the expected list. + * Cannot put virtual text above a line. + * Cursor wrong if inserting before line with virtual text above. + * Crash when using mkdir() with "R" flag in compiled function. + * Closure in for loop test fails on some systems. + * Virtual text "above" doesn't handel line numbers. + * Blueprint files are not recognized. + * Trying to declare g:variable gives confusing error. + * When opening/closing window text moves up/down. + * Message window may be positioned too low. + * Using :echowin while at the hit-enter prompt causes problems. + * SubRip files are not recognized. + * There is no easy way to translate a string with a key code into a + readable string. + * Return value of argument check functions is inconsistent. + * Virtual text "above" does not work with 'nowrap'. + * Visual highlighting extends into virtual text prop. + * On an AZERTY keyboard digit keys get the shift modifier. + +- boo#1202962 - CVE-2022-3037 +- boo#1202862 - CVE-2022-3016 +- boo#1203155 - CVE-2022-2980 +- boo#1203152 - CVE-2022-2982 +- boo#1202689 - CVE-2022-2946 +- boo#1202687 - CVE-2022-2923 +- boo#1202599 - CVE-2022-2889 -- fix boo#1202515 - CVE-2022-2845 +- boo#1202552 - CVE-2022-2874 +- boo#1202512 - CVE-2022-2849 +- boo#1202511 - CVE-2022-2862 +- boo#1202515 - CVE-2022-2845 +- boo#1202421 - CVE-2022-2816 +- boo#1202420 - CVE-2022-2817 +- boo#1202414 - CVE-2022-2819 +- boo#1202046 - CVE-2022-2571 +- boo#1202049 - CVE-2022-2580 +- boo#1202050 - CVE-2022-2581 +- boo#1202051 - CVE-2022-2598 -- fix CVE-2022-2522 - boo#1201863 +- CVE-2022-2522 - boo#1201863 +- CVE-2022-2345 - boo#1201363 +- CVE-2022-2343 - boo#1201356 +- CVE-2022-2344 - boo#1201359 +- CVE-2022-2304 - boo#1201249 +- CVE-2022-2289 - boo#1201139 +- CVE-2022-2288 - boo#1201137 +- CVE-2022-2287 - boo#1201136 +- CVE-2022-2286 - boo#1201135 +- CVE-2022-2284 - boo#1201133 +- CVE-2022-2264 - boo#1201132 +- CVE-2022-2231 - boo#1201150 +- CVE-2022-2210 - boo#1201151 +- CVE-2022-2207 - boo#1201153 +- CVE-2022-2208 - boo#1201152 +- CVE-2022-2206 - boo#1201155 +- CVE-2022-2175 - boo#1200904 +- CVE-2022-2182 - boo#1200903 +- CVE-2022-2183 - boo#1200902 +- CVE-2022-2129 - boo#1200701 +- CVE-2022-2124 - boo#1200697 +- CVE-2022-2125 - boo#1200698 +- CVE-2022-2126 - boo#1200700 +- CVE-2022-2042 - boo#1200471 +- CVE-2022-2000 - boo#1200405 +- CVE-2022-1968 - boo#1200270 +- CVE-2022-1942 - boo#1200125 +- CVE-2022-1927 - boo#1200012 +- CVE-2022-1897 - boo#1200010 +- CVE-2022-1898 - boo#1200011 +- CVE-2022-1886 - boo#1199969 +- CVE-2022-1851 - boo#1199936 +- CVE-2022-1796 - boo#1199747 +- CVE-2022-1785 - boo#1199745 +- CVE-2022-1771 - boo#1199693 +- CVE-2022-1733 - boo#1199655 +- CVE-2022-1769 - boo#1199658 +- CVE-2022-1735 - boo#1199651 +- CVE-2022-1720 - boo#1200732 +- CVE-2022-1674 - boo#1199502 +- CVE-2022-1621 - boo#1199435 +- CVE-2022-1629 - boo#1199436 +- CVE-2022-1619 - boo#1199333 +- CVE-2022-1620 - boo#1199334 +- CVE-2022-1616 - boo#1199331 -- fixes CVE-2022-1381 ( boo#1198596 ) +- CVE-2022-1420 - boo#1198748 +- CVE-2022-1381 - boo#1198596 +- CVE-2022-1160 - boo#1197814 +- CVE-2022-1154 - boo#1197813 +- CVE-2022-0943 - boo#1197225 +- boo#1196226 - CVE-2022-0629 +- boo#1196227 - CVE-2022-0685 +- boo#1196437 - CVE-2022-0729 -- Updated to version 8.2.4375, fixes the following problems +- Updated to version 8.2.4375, fixes the following problems +- CVE-2022-0572 - boo#1196023 +- CVE-2022-0554 - boo#1195846 -- fixes boo#1195499 CVE-2022-0417 -- fixes boo#1195336 CVE-2022-0393 +- CVE-2022-0417 - boo#1195499 +- CVE-2022-0413 - boo#1195356 +- CVE-2022-0408 - boo#1195359 +- CVE-2022-0407 - boo#1195354 +- CVE-2022-0393 - boo#1195336 +- CVE-2022-0392 - boo#1195332 +- CVE-2022-0368 - boo#1195205 +- CVE-2022-0361 - boo#1195202 +- CVE-2022-0359 - boo#1195203 +- CVE-2022-0351 - boo#1195126 +- CVE-2022-0319 - boo#1195066 +- CVE-2022-0318 - boo#1195004 +- CVE-2022-0261 - boo#1194872 +- CVE-2022-0213 - boo#1194885 +- CVE-2021-46059 - boo#1194556 References ========== - CVE-2020-10735 - CVE-2021-20206 - CVE-2021-36690 - CVE-2021-46059 - CVE-2022-0213 - CVE-2022-0261 - CVE-2022-0318 - CVE-2022-0319 - CVE-2022-0351 - CVE-2022-0359 - CVE-2022-0361 - CVE-2022-0368 - CVE-2022-0392 - CVE-2022-0393 - CVE-2022-0407 - CVE-2022-0408 - CVE-2022-0413 - CVE-2022-0417 - CVE-2022-0554 - CVE-2022-0572 - CVE-2022-0629 - CVE-2022-0685 - CVE-2022-0729 - CVE-2022-0943 - CVE-2022-1154 - CVE-2022-1160 - CVE-2022-1381 - CVE-2022-1420 - CVE-2022-1616 - CVE-2022-1619 - CVE-2022-1620 - CVE-2022-1621 - CVE-2022-1629 - CVE-2022-1674 - CVE-2022-1720 - CVE-2022-1733 - CVE-2022-1735 - CVE-2022-1769 - CVE-2022-1771 - CVE-2022-1785 - CVE-2022-1796 - CVE-2022-1851 - CVE-2022-1886 - CVE-2022-1897 - CVE-2022-1898 - CVE-2022-1927 - CVE-2022-1942 - CVE-2022-1968 - CVE-2022-2000 - CVE-2022-2042 - CVE-2022-2124 - CVE-2022-2125 - CVE-2022-2126 - CVE-2022-2129 - CVE-2022-2175 - CVE-2022-2182 - CVE-2022-2183 - CVE-2022-2206 - CVE-2022-2207 - CVE-2022-2208 - CVE-2022-2210 - CVE-2022-2231 - CVE-2022-2264 - CVE-2022-2284 - CVE-2022-2286 - CVE-2022-2287 - CVE-2022-2288 - CVE-2022-2289 - CVE-2022-2304 - CVE-2022-2343 - CVE-2022-2344 - CVE-2022-2345 - CVE-2022-2522 - CVE-2022-2571 - CVE-2022-2580 - CVE-2022-2581 - CVE-2022-2598 - CVE-2022-2816 - CVE-2022-2817 - CVE-2022-2819 - CVE-2022-2845 - CVE-2022-2849 - CVE-2022-2862 - CVE-2022-2874 - CVE-2022-2889 - CVE-2022-2923 - CVE-2022-2946 - CVE-2022-2980 - CVE-2022-2982 - CVE-2022-3016 - CVE-2022-3037 - CVE-2022-3099 - CVE-2022-31252 - CVE-2022-3134 - CVE-2022-3153 - CVE-2022-3234 - CVE-2022-3235 - CVE-2022-3352 - CVE-2022-39046 - CVE-2022-40674