Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&version=Tumbleweed&build=20251118 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa (25.2.7 -> 25.3.0) Mesa-drivers (25.2.7 -> 25.3.0) certmonger fwupd-efi (1.7 -> 1.8) gnome-session gpgme kernel-firmware-bluetooth (20251106 -> 20251111) kernel-firmware-mediatek (20251029 -> 20251110) kernel-firmware-platform kernel-firmware-qcom kernel-firmware-realtek (20251106 -> 20251110) kernel-firmware-sound (20251106 -> 20251110) libostree (2025.6 -> 2025.7) loupe mariadb nano (8.6 -> 8.7) ncurses (6.5.20251101 -> 6.5.20251115) openSUSE-release (20251117 -> 20251118) openexr (3.4.1 -> 3.4.3) python-attrs (25.3.0 -> 25.4.0) python-click (8.3.0 -> 8.3.1) sdbootutil (1+git20251111.611edd1 -> 1+git20251114.1783016) suitesparse syslogd yast2-storage-ng (5.0.37 -> 5.0.38) yast2-trans (84.87.20251101.f7811d5752 -> 84.87.20251109.16a31a6851) === Details === ==== Mesa ==== Version update (25.2.7 -> 25.3.0) Subpackages: Mesa-libEGL1 Mesa-libGL1 libgbm1 - adjusted baselibs.conf - Update to release 25.3.0 - -> https://docs.mesa3d.org/relnotes/25.3.0 - adjusted massively python36-buildfix1.patch; upstream now requires python 3.9 - supersedes n_stop-iris-flicker.patch - refreshed patches * U_fix-mpeg1_2-decode-mesa-20.2.patch * n_add-Mesa-headers-again.patch * n_drirc-disable-rgb10-for-chromium-on-amd.patch * tlsdesc_test.patch * u_0002-intel-genxml-Add-a-untyped-OrderedDict-fallback-for-.patch * u_meson-lower-python-version-requirement.patch - u_d3d12.patch * fixes d3d12 gallium (video-) driver - "-Dspirv-tools=enabled" now needed for building the drivers - VDPAU drivers no longer available, so drop all the packages * libvdpau_nouveau * libvdpau_r600 * libvdpau_radeonsi * libvdpau_virtio_gpu * libvdpau_d3d12 - enable panfrost vulkan driver also on SLE16 ==== Mesa-drivers ==== Version update (25.2.7 -> 25.3.0) Subpackages: Mesa-dri Mesa-libva Mesa-vulkan-device-select libvulkan_lvp - adjusted baselibs.conf - Update to release 25.3.0 - -> https://docs.mesa3d.org/relnotes/25.3.0 - adjusted massively python36-buildfix1.patch; upstream now requires python 3.9 - supersedes n_stop-iris-flicker.patch - refreshed patches * U_fix-mpeg1_2-decode-mesa-20.2.patch * n_add-Mesa-headers-again.patch * n_drirc-disable-rgb10-for-chromium-on-amd.patch * tlsdesc_test.patch * u_0002-intel-genxml-Add-a-untyped-OrderedDict-fallback-for-.patch * u_meson-lower-python-version-requirement.patch - u_d3d12.patch * fixes d3d12 gallium (video-) driver - "-Dspirv-tools=enabled" now needed for building the drivers - VDPAU drivers no longer available, so drop all the packages * libvdpau_nouveau * libvdpau_r600 * libvdpau_radeonsi * libvdpau_virtio_gpu * libvdpau_d3d12 - enable panfrost vulkan driver also on SLE16 ==== certmonger ==== - Cleanup dbus dependencies: dbus-send is part of dbus-1-tools and the %preun does not use any dbus tool nor sed. ==== fwupd-efi ==== Version update (1.7 -> 1.8) - Update to version 1.8: * Fix build problems with LoongArch and riscv64 * Use CC_LD configured through meson * Use --output-target to define the object output format - Update 106.patch ==== gnome-session ==== - Replace dbus-launch with dbus-service Requires (boo#1253498). ==== gpgme ==== Subpackages: libgpgme45 - Treat empty DISPLAY variable as unset. [bsc#1252425, bsc#1231055] * To avoid gpgme constructing an invalid gpg command line when the DISPLAY variable is empty it can be treated as unset. * Add gpgme-Treat-empty-DISPLAY-variable-as-unset.patch * Reported upstream: dev.gnupg.org/T7919 ==== kernel-firmware-bluetooth ==== Version update (20251106 -> 20251111) - Update to version 20251111 (git commit 6fc940781a01): * rtl_bt: Update RTL8922A BT USB firmware to 0x41C0_C905 ==== kernel-firmware-mediatek ==== Version update (20251029 -> 20251110) - Update to version 20251110 (git commit 15b5dddd9b2a): * linux-firmware: add firmware for mt7987 internal 2.5G ethernet phy - Update aliases ==== kernel-firmware-platform ==== - Update aliases ==== kernel-firmware-qcom ==== - Update aliases ==== kernel-firmware-realtek ==== Version update (20251106 -> 20251110) - Update to version 20251110 (git commit 15b5dddd9b2a): * rtw88: 8822b: Update firmware to v30.20.0 * rtl_nic: add firmware rtl8125k-1 ==== kernel-firmware-sound ==== Version update (20251106 -> 20251110) - Update to version 20251110 (git commit 15b5dddd9b2a): * ASoC: tas2781: Update dsp firmware for HP and ASUS projects * Revert "Merge branch 'robot/patch-0-1762671757' into 'main'" * ASoC: tas2781: Update dsp firmware for HP and ASUS projects - Update aliases ==== libostree ==== Version update (2025.6 -> 2025.7) Subpackages: libostree-1-1 - Update to 2025.7: + Support using composefs signatures also with bootc commits + status: Include deployment index in JSON output + Fix various things around signatures and their use in rust + deploy: Use delete_if_present in can_soft_reboot + prepare-root: Fix crash if no valid signatures + documentation updates ==== loupe ==== - Update vendor tarball (boo#1253488). ==== mariadb ==== Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - Add fix-MDEV-32585.patch (boo#1237555) * Fixes non-null-terminated array which caused a buffer overflow in get_defaults_options() ==== nano ==== Version update (8.6 -> 8.7) - GNU nano 8.7: * At the Execute prompt, preceding the command with two pipe symbols allows implementing a copy-to-clipboard feature in nanorc on terminals that support OSC 52. See doc/sample.nanorc ==== ncurses ==== Version update (6.5.20251101 -> 6.5.20251115) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20251115 + check for special case of wcrtomb() converting a single byte code to a different single byte code, which glibc does for code 160 in the KOI8-R encoding (report by Yury V Zaytsev). + improve formatting/style of manpages (patches by Branden Robinson). + amend recent changes to mouse handling to avoid a case which caused a loop in wgetch until additional input is provided (htop #1769, cf: 20250913). ==== openSUSE-release ==== Version update (20251117 -> 20251118) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== openexr ==== Version update (3.4.1 -> 3.4.3) Subpackages: libIex-3_4-33 libIlmThread-3_4-33 libOpenEXR-3_4-33 libOpenEXRCore-3_4-33 - version update to 3.4.3 * Buffer overflow in PyOpenEXR_old's channels() and channel() in legacy python * Use after free in PyObject_StealAttrString in legacy python * Use of Uninitialized Memory in openexr * Heap-based Buffer Overflow Remote Code Execution Vulnerability * OSS-fuzz 456158449 Heap-buffer-overflow in generic_unpack * OSS-fuzz 447429458 Heap-buffer-overflow in DwaCompressor_uncompress * OSS-fuzz 439237843 Heap-buffer-overflow in internal_exr_undo_ht * OSS-fuzz 436037111 Heap-buffer-overflow in generic_unpack * OSS-fuzz 435779241 Heap-buffer-overflow in generic_unpack * OSS-fuzz 420744464 Abrt in __cxxabiv1::failed_throw * Fix a bug with re-reading a scanline file with a different set of channels. * Only populate CMAKE_DEBUG_POSTFIX with _d if it is undefined, which makes it possible to set CMAKE_DEBUG_POSTFIX="". - fixes bsc#1253233 (CVE-2025-64181) bsc#1253234 (CVE-2025-64182) bsc#1253235 (CVE-2025-64183) ==== python-attrs ==== Version update (25.3.0 -> 25.4.0) - Update to 25.4.0: * Class-level kw_only=True behavior is now consistent with dataclasses. * Values passed to the __init__() method of attrs classes are now correctly passed to __attrs_pre_init__() instead of their default values (in cases where kw_only was not specified). * Added support for Python 3.14 and PEP 749. * attrs.validators.deep_mapping() now allows to leave out either key_validator xor value_validator. * attrs.validators.deep_iterator() and attrs.validators.deep_mapping() now accept lists and tuples for all validators and wrap them into a attrs.validators.and_(). * Added a new experimental way to inspect classes. * Fixed annotations for attrs.field(converter=...). Previously, a tuple of converters was only accepted if it had exactly one element. * The performance of attrs.asdict() has been improved by 45â260%. * The performance of attrs.astuple() has been improved by 49â270%. * The type annotation for attrs.validators.or_() now allows for different types of validators. ==== python-click ==== Version update (8.3.0 -> 8.3.1) - Update to 8.3.1 * Donât discard pager arguments by correctly using subprocess.Popen. * Replace Sentinel.UNSET default values by None as theyâre passed through the Context.invoke() method. * Fix conversion of Sentinel.UNSET happening too early, which caused incorrect behavior for multiple parameters using the same name. * Hide Sentinel.UNSET values as None when looking up for other parameters through the context inside parameter callbacks. * Fix rendering when prompt and confirm parameter prompt_suffix is empty. * When Sentinel.UNSET is found during parsing, it will skip calls to type_cast_value. ==== sdbootutil ==== Version update (1+git20251111.611edd1 -> 1+git20251114.1783016) Subpackages: sdbootutil-dracut-measure-pcr sdbootutil-snapper - Update to version 1+git20251114.1783016: * Find also entries with boot counter * Avoid adding tries for existing entries ==== suitesparse ==== Subpackages: libamd3 libcamd3 libccolamd3 libcholmod5 libcolamd3 libsuitesparseconfig7 libumfpack6 - Replace ungrammatical command with lua script to generate commands for unpacking test sources ==== syslogd ==== Subpackages: klogd syslog-service - Drop last sysvinit Requirement/Provide (PED-13698) ==== yast2-storage-ng ==== Version update (5.0.37 -> 5.0.38) - Suggesting PbkdFunction::PBKDF2 for none efi systems in the expert partitioner (bsc#1249670). - 5.0.38 ==== yast2-trans ==== Version update (84.87.20251101.f7811d5752 -> 84.87.20251109.16a31a6851) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20251109.16a31a6851: * Translated using Weblate (Dutch) * Update translation files * New POT for text domain 'control'. * Translated using Weblate (Japanese) * Translated using Weblate (Slovak) * Translated using Weblate (Catalan) * Update translation files * New POT for text domain 'bootloader'.
