Packages changed: ImageMagick (7.1.2.21 -> 7.1.2.22) apparmor (4.1.7 -> 5.0.0) aurorae6 (6.6.4 -> 6.6.5) bluedevil6 (6.6.4 -> 6.6.5) breeze6 (6.6.4 -> 6.6.5) breeze6-gtk (6.6.4 -> 6.6.5) discover6 (6.6.4 -> 6.6.5) dracut (110+suse.29.g16072cee -> 110+suse.31.ga81148a) drkonqi6 (6.6.4 -> 6.6.5) flatpak-kcm6 (6.6.4 -> 6.6.5) fwupd (2.1.1 -> 2.1.3) gdm glib2-branding-openSUSE glibc gnome-shell gstreamer (1.28.2 -> 1.28.3) gstreamer-devtools (1.28.2 -> 1.28.3) gstreamer-plugins-bad (1.28.2 -> 1.28.3) gstreamer-plugins-base (1.28.2 -> 1.28.3) gstreamer-plugins-good (1.28.2 -> 1.28.3) gstreamer-plugins-rs (1.28.2 -> 1.28.3) javapackages-tools (6.4.1 -> 6.5.1) kactivitymanagerd6 (6.6.4 -> 6.6.5) kde-cli-tools6 (6.6.4 -> 6.6.5) kde-gtk-config6 (6.6.4 -> 6.6.5) kdecoration6 (6.6.4 -> 6.6.5) kdeplasma6-addons (6.6.4 -> 6.6.5) kernel-source (7.0.5 -> 7.0.6) kgamma6 (6.6.4 -> 6.6.5) kglobalacceld6 (6.6.4 -> 6.6.5) kinfocenter6 (6.6.4 -> 6.6.5) kmenuedit6 (6.6.4 -> 6.6.5) knighttime6 (6.6.4 -> 6.6.5) kpipewire6 (6.6.4 -> 6.6.5) kscreen6 (6.6.4 -> 6.6.5) kscreenlocker6 (6.6.4 -> 6.6.5) ksshaskpass6 (6.6.4 -> 6.6.5) ksystemstats6 (6.6.4 -> 6.6.5) kwayland-integration6 (6.6.4 -> 6.6.5) kwayland6 (6.6.4 -> 6.6.5) kwin6 (6.6.4 -> 6.6.5) kwin6-x11 (6.6.4 -> 6.6.5) layer-shell-qt6 (6.6.4 -> 6.6.5) libapparmor (4.1.7 -> 5.0.0) libkscreen6 (6.6.4 -> 6.6.5) libksysguard6 (6.6.4 -> 6.6.5) libplasma6 (6.6.4 -> 6.6.5) libsolv (0.7.36 -> 0.7.37) libstorage-ng (4.5.314 -> 4.5.316) libvpl libzypp (17.38.7 -> 17.38.8) milou6 (6.6.4 -> 6.6.5) net-snmp ntfs-3g_ntfsprogs ocean-sound-theme6 (6.6.4 -> 6.6.5) openSUSE-release (20260512 -> 20260514) openexr (3.4.9 -> 3.4.11) openssh pam_kwallet6 (6.6.4 -> 6.6.5) patterns-base perl-CGI (4.710.0 -> 4.720.0) perl-CryptX (0.87.0 -> 0.89.0) perl-Net-CIDR-Lite (0.220.0 -> 0.240.0) perl-libwww-perl (6.820.0 -> 6.830.0) permissions (1699_20260217 -> 1699_20260512) plasma5support6 (6.6.4 -> 6.6.5) plasma6-activities (6.6.4 -> 6.6.5) plasma6-activities-stats (6.6.4 -> 6.6.5) plasma6-browser-integration (6.6.4 -> 6.6.5) plasma6-desktop (6.6.4 -> 6.6.5) plasma6-disks (6.6.4 -> 6.6.5) plasma6-integration (6.6.4 -> 6.6.5) plasma6-nm (6.6.4 -> 6.6.5) plasma6-openSUSE plasma6-pa (6.6.4 -> 6.6.5) plasma6-print-manager (6.6.4 -> 6.6.5) plasma6-systemmonitor (6.6.4 -> 6.6.5) plasma6-thunderbolt (6.6.4 -> 6.6.5) plasma6-workspace (6.6.4 -> 6.6.5) polkit-default-privs (1550+20260428.f2a5d2e -> 1550+20260513.3b99372) polkit-kde-agent-6 (6.6.4 -> 6.6.5) postfix powerdevil6 (6.6.4 -> 6.6.5) python-gobject (3.56.2 -> 3.56.3) python-numpy (2.4.3 -> 2.4.4) qqc2-breeze-style6 (6.6.4 -> 6.6.5) rsync ruby4.0 (4.0.3 -> 4.0.4) rubygem-gem2rpm sddm-kcm6 (6.6.4 -> 6.6.5) shaderc (2026.1 -> 2026.2) spectacle (6.6.4 -> 6.6.5) systemsettings6 (6.6.4 -> 6.6.5) vulkan-loader (1.4.341 -> 1.4.350) vulkan-tools (1.4.341 -> 1.4.350) wacomtablet-kcm6 (6.6.4 -> 6.6.5) xdg-desktop-portal-kde6 (6.6.4 -> 6.6.5) yast2 (5.0.20 -> 5.0.21) yast2-storage-ng (5.0.43 -> 5.0.45) zypper (1.14.96 -> 1.14.97) === Details === ==== ImageMagick ==== Version update (7.1.2.21 -> 7.1.2.22) Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.2.22 * no upstream changelog - seem to fix following GH security advisories: * GHSA-7wff-wpr6-vmhm * GHSA-85r7-8qr6-54gh * GHSA-cr6r-hmj8-pr7r * GHSA-cwpj-h54c-xjpx * GHSA-g5mf-wqq5-vwg6 * GHSA-gj92-pwm7-jcmp * GHSA-hg5x-pmmv-4q7g * GHSA-j3pv-77gf-fw2g * GHSA-jqq5-8px3-9m6m * GHSA-pfvh-m9xv-8966 * GHSA-rw3g-wvj6-3p7w * GHSA-v6qj-8rm4-fpgj * GHSA-vf33-6r7x-66xx * GHSA-vhrh-72hq-w8m7 - deleted patches * ImageMagick-fix-overflow-check.patch (upstreamed) ==== apparmor ==== Version update (4.1.7 -> 5.0.0) Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang python3-apparmor - add syslog-ng-slashes.diff: avoid double slashes (and therefore a path mismatch) in syslog-ng profile - Use %{_tmpfilesdir} macro and package apparmor.conf tmpfiles configuration. - add allow-read-slash.diff and postfix-profiles-slash.diff to allow reading / in samba, dovecot and postfix profiles (boo#1263051) - update to AppArmor 5.0 - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_5.0.0 for the full upstream changelog - update lessopen.sh profile to abi/5.0 - enable all tests in profiles/ - Add and use tmpfiles.d/apparmor.conf for log and cache path creation (jsc#PED-14916) (jsc#PED-14917) + drop removal of pre-2.12 cache location + retain "apparmor_parser --purge-cache" calls for non-transactional systems - update to AppArmor 5.0rc5 - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_5.0.0-rc5 - drop upstreamed parser-lib-path.diff - update to AppArmor 5.0rc4 - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_5.0.0-rc4 for the full upstream changelog - add BR libzstd-devel - add parser-lib-path.diff to ensure parser finds libapparmor in make check - refresh apache-extra-profile-include-if-exists.diff - add 'make -C init' (apparmor.service and aa-teardown now live in a separate directory) ==== aurorae6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: aurorae6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== bluedevil6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: bluedevil6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== breeze6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: breeze6-cursors breeze6-decoration breeze6-style breeze6-style-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * kdecoration: Use correct scale when computing border outline thickness ==== breeze6-gtk ==== Version update (6.6.4 -> 6.6.5) Subpackages: gtk2-metatheme-breeze6 gtk3-metatheme-breeze6 gtk4-metatheme-breeze6 metatheme-breeze6-common - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== discover6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: discover6-backend-flatpak discover6-backend-fwupd discover6-backend-packagekit discover6-lang discover6-notifier - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * ProgressView: Don't conditionally invert text color * rpmostree: Connect to this when connecting to a lambda that captures this ==== dracut ==== Version update (110+suse.29.g16072cee -> 110+suse.31.ga81148a) - Update to version 110+suse.31.ga81148a: Support NTP configuration for airgapped scenarios (jsc#PED-16110): * feat(chrony): introducing the chrony module * feat(network-manager): write info about NTP servers in dhcpopts file ==== drkonqi6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: drkonqi6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== flatpak-kcm6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: flatpak-kcm6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - No code changes since 6.6.4 ==== fwupd ==== Version update (2.1.1 -> 2.1.3) Subpackages: fwupd-bash-completion fwupd-lang libfwupd3 typelib-1_0-Fwupd-2_0 - Update to version 2.1.3: + This release adds the following features: - Add support for Redfish bearer token authentication - Add support for several XMC SPI chips - Parse JCat files in libfwupd without using libjcat + This release fixes the following bugs: - Allow configuring a Redfish URI with a path prefix - Avoid firmware matching errors for Cat-6 and Cat-12 modems - Calculate and export a floating point percentage progress value - Do not print clean remote success message if aborted - Do not probe all Nordic devices with USB VID 0x1915 - Fix force table support in Elan IC types 0x13 and 0x14 - Fix Raydium information check flow to avoid incorrect validation - Fix the Thunderbolt version number by ignoring the reserved bits - Load well-known paths in dbxtool to prevent a regression - Match a specific Raydium device to prevent resetting older hardware - Only copy the HIDRAW USB properties if a DS-20 has been provided - Use CA1 for a SK Hynix NVMe drive + This release adds support for the following hardware: - SHIFT6mq and SHIFTphone 8 - Update to version 2.1.2: + This release adds the following features: - Add an HSI check for AMD SB-7033 aka EntrySign - Add native CBOR parsing and drop libcbor2 as a dep - Add server platform detection to suspend HSI checks - Allow setting a maximum version number for a device - Allow setting context flags from HWID matches - Increment the progressbar when waiting for replug - Require Windows 8+ for the MSI build artifact - Support loading EFI authenticated variables with ContentInfo headers + This release fixes the following bugs: - Add daemon support for modems that export ttyUSB devices - Add decompression ratio limit to prevent parsing emulation ZIP bombs - Add device activation flag for Dell servers after firmware upgrade - Allow using a custom Telink HidToolVer quirk - Check the UEFI capsule payload is less than 4GiB in size - Cleanup all the user inhibits when required - Do not allow using non-regular files like devnull as metadata - Do not use capsule-on-disk on Lenovo ThinkCentre M60e Tiny - Fix a buffer overread when parsing a malicious PE file - Fix a CRC validation mistake in ZIP firmware parser - Fix a maybe-impossible NULL pointer dereference when parsing netlink data - Fix a small memory leak when writing Redfish firmware - Fix accessing Nordic devices connected through a dongle - Fix handling snapd payloads with only a default image - Fix potential NULL pointer dereference in QMI firmware write - Fix the auto-generated Redfish HBA device name - Fix the displayed Thunderbolt version number by ignoring reserved bits - Fix UF2 race with UDisks2 volume discovery during replug - Fix warning when probing removable USB devices with no medium - Guard HSI feature with platforms requirements - Hardcode the modification timestamp in generated zip archive - Increase the resolution of the progress bar updates - Limit the maximum number of files that can be parsed from ZIP archives - Prevent users from asking for unlimited system inhibits - Properly handle Dell iDRAC when using Redfish - Reject DFU sectors with zero size to prevent a possible infinite loop - Restore the VID check in Algoltek USBCR probe function - Set sensible parsing limits in each FuFirmware subclass - Show a suitable version when the Novatek update is interrupted - Support CAB image filenames longer than 255 chars - Update the Focal touch firmware format to the latest release - Use overflow-checked arithmetic for all offset calculations - Use prepared queries when querying silos - Validate CCGX record data size before flash write - Validate Nordic HID peer index before accessing peers cache array - Validate Synaptics cxaudio EEPROM size before trusting it - Wait for mock snapd API socket to appear when running tests - Wait for the new version when updating the Nordic TK059 Keyboard + This release adds support for the following hardware: - Elan TP IC type 0x19 - Google Moonstone - HP 400 and 405 Mouse - Lenovo USB-4 dock - LX Semicon SW42101 touch controller - Parade USB hubs with GPIO control - Pixart PLP239 devices - Raydium TP devices - Sunplus cameras - Drop pkgconfig(libcbor) BuildRequires: no longer needed. ==== gdm ==== Subpackages: gdm-lang gdm-schema gdm-systemd gdm-xdm-integration libgdm1 typelib-1_0-Gdm-1_0 - Drop pam_gdm from gdm-fingerprint.pamd (boo#1258070, glgo#GNOME/gdm#1074) ==== glib2-branding-openSUSE ==== - Update .gschema.override.in: fix key name typo of monospace-font-name (bsc#1263043). ==== glibc ==== Subpackages: glibc-32bit glibc-devel glibc-extra glibc-gconv-modules-extra glibc-gconv-modules-extra-32bit glibc-lang glibc-locale glibc-locale-base - ungetwc-byte-stream.patch: libio: Fix ungetwc operating on byte stream (CVE-2026-5928, bsc#1262464, BZ #33998) - scanf-mc-buffer-overflow.patch: stdio-common: Fix buffer overflow in scanf %mc (CVE-2026-5450, bsc#1262465, BZ #34008) ==== gnome-shell ==== Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang - Add fix-ibus-engine-race-condition-on-unlock.patch, Fix IBus input failure after screen unlock ==== gstreamer ==== Version update (1.28.2 -> 1.28.3) Subpackages: gstreamer-lang gstreamer-utils libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Update to version 1.28.3: + Highlighted bugfixes: - Various security fixes and playback fixes - applemedia: vtdec stability, MoltenVK integration and planar video format handling fixes - audioresample: Fix regression on armv7hf - bpmdetect: Fixes for stereo and multi-channel modes - devicemonitor: wait for start thread to finish when listing devices so all the info is there for e.g. v4l2 provider - fallbacksrc: Add fallback-source and enable-dummy properties - nvidia: fix cudaconvert performance regression and nvdec device creation regression - opengl: add GBRA swizzle support, and fix glcolorconvert vertical flip issue on crop - rtspsrc: include user-agent property in HTTP tunnel requests and fix mikey regression - threadshare: add leaky mode to dataqueue-based elements - v4l2: fix negotiation error when trying to force stateful decoders to output dmabufs - webrtcsink: Add support imx8mp vpuenc_hevc hardware H.265 encoder - cerbero: Extend gst-plugins-rs melding to Darwin platforms for smaller binary sizes and static linking improvements - inno Windows installer fixes, including silent install mode via the command line - macOS: provide script to allow uninstalling the package; relocate absolute paths to Python.framework in wheels - Various bug fixes, build fixes, memory leak fixes, and other stability and reliability improvements + gstreamer: - pad: fix potential buffer leak in get_range_failed error handler - aggregator: Fix documentation - allocator: Use g_try_malloc() instead of g_malloc() for sysmem - baseparse: Fix memory leak when subclass returns error - bitwriter: Allow unsetting set bits when overwriting them - devicemonitor: Wait for start thread to finish when listing devices - streams: Add METADATA to the valid stream flags for serialization - value: On buffer deserialization errors first unmap the buffer and then unref it - gst-inspect-1.0: type for string caps fields should be 'string' not 'gchararray' ==== gstreamer-devtools ==== Version update (1.28.2 -> 1.28.3) - Update to version 1.28.3: + Plug memory leaks reported running valgrind on our testsuite ==== gstreamer-plugins-bad ==== Version update (1.28.2 -> 1.28.3) Subpackages: gstreamer-plugins-bad-lang libgstadaptivedemux-1_0-0 libgstanalytics-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgsthip-1_0-0 libgstinsertbin-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstmse-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Update to version 1.28.3: + ajasink: Correctly set reference source + analytics: fix meta transform function for copy cases + av1parse: Fix null pointer deference + bpmdetect: Fix calculation of number of samples for >1 channels + codecparsers: Stack Buffer Overflow in H.265 Buffering Period SEI Parser + cudaconvert: fix performance regression caused by double precision floating point constants + decklink: Fix various refcount issues and related leaks + h263parse: - Fix wrong ratio masking - Missing handling of reserved invalid EPAR_D value + h265parser: - Use sub-layer 0 CPB count in buffering_period SEI loops - Add missing clearing function for H266 SEI message - Avoid out-of-bounds write when parsing PPS tile slices + mpegdemux: Add various bounds checks related to PES header parsing + interlace: Revert "Drop framerate from query caps of sinkpad" + mpegtsdemux: Various fixes + mpegtspacketizer: Avoid potential overflow + mse: Also disable the library if the meson option is disabled + mxf: - Fix multiple writing / parsing issues when handling VANC packets - Theoretical heap Buffer Overflow in MXF AES3 Audio Descriptor write_tags + mxfdemux: Fix reverse temporal offsets array upper bounds check + mxfmux: aes-bwf: Use correct size when serializing user data / channel status mode + nvcodec: Fix missing adapter-luid when loading decoders + nvdec regression in 1.28.2: "Couldn't create new device with adapter luid 0" + pngparse: Fix Use-after-free bug + qml6d3d11sink: Clear texture on Paused-to-Ready transition + qt6d3d11: fix null check in SetForceAspectRatio() + tsdemux: - Fix parsing of PES ESCR and following PES header fields - Fix segfault when trying to handle SCTE-35 with incorrect program specified + va: do not post error message when push fails + vkupload/vkdownload: Fix possible corrupted image due to mismatched stride/padding + vtdec: - Avoid blocking decoder output callback - Avoid locking up during a decoder reset - Deadlock when restarting pipeline - Fix deadlock when restarting pipeline + webrtc: take ownership of src_bin and sink_bin and don't leak error message + Require C std gnu11 or c11, remove custom 'restrict' definition, fixing build with Qt 6.11 ==== gstreamer-plugins-base ==== Version update (1.28.2 -> 1.28.3) Subpackages: gstreamer-plugins-base-lang libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0 - Update to version 1.28.3: + appsink, appsrc: Allow passing NULL callbacks + appsrc: Fix dropped counting with bufferlist + audioaggregator: - Don't drop pending input buffers on sinkpads on srcpad caps changes - Don't reset samples_per_buffer unless sample rate / output-buffer-duration has changed - Don't try converting buffers on caps changes if impossible + audioresample: Fix extra samples produced at speech-to-silence transitions + audio-resampler-neon: fix Thumb encoding and use Clang O2 calculation for strides + audio sounds strange on release 1.28.2 for armv7hf + decodebin2: fix leak of endpads list on shutdown while exposing + discoverer: Take the DISCO_LOCK while parsing stream topology + exiftag: Use a hashtable instead of a linked list for storing the pending tags + gl: add GBRA swizzle support + id3v2: - Add input validation and refactor id3v2_ununsync_data - Check valid frame sizes more + opengl: Fix glcolorconvert vertical flip issue on crop + glcolorconvert: GBRA input hits unreachable swizzle path + subparse / samiparse: Various robustness fixes and minor other fixes + subparse: - Fix memory leakage for text colour and background colour - O(N^2) complexity in SAMI parser causes timeout with crafted large input + tag: - Prevent ubsan and wrong fraction usage - Off-by-one checking for id3v2 unnsync tag parsing + video: add precondition check on dma helpers + videodmabufpool: Break ref cycle between the pool and its thread ==== gstreamer-plugins-good ==== Version update (1.28.2 -> 1.28.3) Subpackages: gstreamer-plugins-good-gtk gstreamer-plugins-good-lang - Update to version 1.28.3: + adaptivedemux/hlsdemux assertions / fixes + avidemux: - Fix divide by zero if VPRP contains fields==0 - Divide-by-Zero in vprp parser + isomp4: - Fix memory leak when file is corrupted - qtdemux: Add bounds checks for ESDS descriptors + matroska: Fix wrong object type bug + qml6glsink: Fix redraw issues on buffer change + qtdemux: Check for minimum stride requirements and width/height constraints with uncompressed video + rtspsrc: - mki is optional upon crypto update - mikey without mki failure - include user-agent property in HTTP tunnel requests + v4l2: object: Fix caps filtering in caps negotiation + v4l2transform: release input buffers earlier + wavparse: - Remove assertion about upstream file size - Recover from invalid av_bps instead of failing - Assert and execute an integer overflow on invalid duration + Require C std gnu11 or c11, remove custom 'restrict' definition, fixing build with Qt 6.11 ==== gstreamer-plugins-rs ==== Version update (1.28.2 -> 1.28.3) - Update to version 1.28.3: + fallbacksrc: Add fallback-source and enable-dummy properties + isobmff: Change caps updates in test to not be delayed + quinn: Disable tests which were flaky + quinnwtsrc/sink: Fix session close + rtpbin2: examples: fix audio resyncs, stream offsets and frame drops + rtprecv: extend jitter accounted for + threadshare: add leaky mode to dataqueue-based elements + tracers: feature gate remaining PluginAPIFlags makers behind doc + webrtcsink: - Actually allow custom signaller to be set - Adding imx8mp vpuenc_hevc support for 265 + Switch from std::os::raw to std::ffi for C types + Update dependencies + all: address clippy 1.95.0 suggestions + Fix new 1.95 clippy warnings ==== javapackages-tools ==== Version update (6.4.1 -> 6.5.1) Subpackages: javapackages-filesystem - Upgrade to upstream version 6.5.1 * Changes Bump actions/setup-python from 5 to 6 Bump actions/checkout from 4 to 6 Bump codecov/codecov-action from 4.6.0 to 5.5.2 Remove Codecov call from GitHub CI workflow Remove unused and outdated Vagrantfile Java launcher script improvements Add jpackage_script manpage Implement feature contitionals Fix installation of jpackage_script.7 manpage - Modified patch: * python-optional.patch * suse-use-libdir.patch + rediff - Make the gradle and ivy support configurable ==== kactivitymanagerd6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kactivitymanagerd6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kde-cli-tools6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kde-cli-tools6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kde-gtk-config6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kde-gtk-config6-gtk3 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kdecoration6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: libkdecorations3-6 libkdecorations3-6-lang libkdecorations3private2 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kdeplasma6-addons ==== Version update (6.6.4 -> 6.6.5) Subpackages: kdeplasma6-addons-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * applets/weather: Fix typo on fallback icon name ==== kernel-source ==== Version update (7.0.5 -> 7.0.6) - Linux 7.0.6 (bsc#1012628). - rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (bsc#1012628). - commit 437be88 - ALSA: core: Serialize deferred fasync state checks (git-fixes). - commit 6661b4c ==== kgamma6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kgamma6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kglobalacceld6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: libKGlobalAccelD6-0 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Load shortcuts from desktop file and config in the same order * Remove duplicate key sanitization logic ==== kinfocenter6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kinfocenter6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kmenuedit6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kmenuedit6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== knighttime6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: libKNightTime0 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Resubscribe to the daemon if it is restarted ==== kpipewire6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kpipewire6-imports libKPipeWire6 libKPipeWire6-lang libKPipeWireDmaBuf6 libKPipeWireRecord6 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kscreen6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kscreen6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * kcm: hide ddc/ci option when HDR is enabled (kde#518532) * kcm: do not allow gaps when creating replicas (kde#515754,kde#519397) * output_model: remove off-by-one causing if statement (kde#515754) ==== kscreenlocker6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kscreenlocker6-lang libKScreenLocker6 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * PamAuthenticator: Emit failed on authentication attempts that happen too soon (kde#515299) ==== ksshaskpass6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: ksshaskpass6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== ksystemstats6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: ksystemstats6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kwayland-integration6 ==== Version update (6.6.4 -> 6.6.5) - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kwayland6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: libKWaylandClient6 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== kwin6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kwin6-lang libkwin6 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * backends/x11: Fix interactive output resizing * Temporarily reference Windows during compositing * backends/drm: only update outputs on GPUs that actually changed (kde#519461) * rules: make checkGeometrySafe actually safe (kde#466119) * backends/drm: drop dmabuf import modes * backends/drm: don't attempt multi GPU copies with unsupported formats (kde#517987) * input: Map devices to device outputs, not logical (kde#514688) * Fix passing fullscreen to the X11 backend * input: Process key repeat before A11yKeyboardMonitor (kde#519143) * backends/drm: Check flags when comparing modes * virtualdesktops: add missing connection to save desktop names (kde#512212) * opengl/eglcontext: add asserts for eglMakeCurrent * backends/drm: Fix restoring custom modes after reboot * backends/drm: Match output modes differently * Make removed flag separate state in OutputMode * Track preferred output mode flags * Fix saving custom output modes * Cleanup keyboard grabs * activation: restore code updating layers of fullscreen windows (kde#484155) * backends/libinput: Fix dangling InputDevices on shutdown * plugins/highlightwindow: Better handling of windows during highlight/ghost operations * plugins/highlightwindow: Don't animate deleted or invisible windows * backends/drm: set COLOR_RANGE to full for RGB planes on NVIDIA * plugins/colorpicker: use GL_RGBA instead of GL_RGB, to support OpenGL ES (kde#518770) ==== kwin6-x11 ==== Version update (6.6.4 -> 6.6.5) Subpackages: kwin6-x11-lang libkwin-x11-6 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== layer-shell-qt6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: libLayerShellQtInterface6 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== libapparmor ==== Version update (4.1.7 -> 5.0.0) - add syslog-ng-slashes.diff: avoid double slashes (and therefore a path mismatch) in syslog-ng profile - Use %{_tmpfilesdir} macro and package apparmor.conf tmpfiles configuration. - add allow-read-slash.diff and postfix-profiles-slash.diff to allow reading / in samba, dovecot and postfix profiles (boo#1263051) - update to AppArmor 5.0 - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_5.0.0 for the full upstream changelog - update lessopen.sh profile to abi/5.0 - enable all tests in profiles/ - Add and use tmpfiles.d/apparmor.conf for log and cache path creation (jsc#PED-14916) (jsc#PED-14917) + drop removal of pre-2.12 cache location + retain "apparmor_parser --purge-cache" calls for non-transactional systems - update to AppArmor 5.0rc5 - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_5.0.0-rc5 - drop upstreamed parser-lib-path.diff - update to AppArmor 5.0rc4 - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_5.0.0-rc4 for the full upstream changelog - add BR libzstd-devel - add parser-lib-path.diff to ensure parser finds libapparmor in make check - refresh apache-extra-profile-include-if-exists.diff - add 'make -C init' (apparmor.service and aa-teardown now live in a separate directory) ==== libkscreen6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: libKF6Screen8 libKF6Screen8-lang libKF6ScreenDpms8 libkscreen6-plugin - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== libksysguard6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: ksysguardsystemstats6-data libKSysGuardSystemStats2 libksysguard6-imports libksysguard6-lang libksysguard6-plugins - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Choices.qml: Add Kirigami.OverlayZStacking ==== libplasma6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: libPlasma7 libplasma6-components libplasma6-desktoptheme - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Update height instead of width when implicitHeightChanged ==== libsolv ==== Version update (0.7.36 -> 0.7.37) Subpackages: libsolv-tools-base libsolv1 ruby-solv - fix parsing of sha512 checksums in debian repositories - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommands in the old Mandriva synthesis format - bump version to 0.7.37 ==== libstorage-ng ==== Version update (4.5.314 -> 4.5.316) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#1071 - improved xml parser - coding style - 4.5.316 - merge gh#openSUSE/libstorage-ng#1070 - fixed test - added tests - use modern C++ - minor improvements - 4.5.315 ==== libvpl ==== - Enable build on riscv64 ==== libzypp ==== Version update (17.38.7 -> 17.38.8) - Mandatory signature verification plugin support (PED#11922) - version 17.38.8 (35) ==== milou6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: milou6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== net-snmp ==== Subpackages: libsnmp45 perl-SNMP snmp-mibs - net-snmp Immutable Mode adaptation * implementation task jsc#PED-14728 from epic jsc#PED-14688 * modify net-snmp.spec * modify net-snmp-tmpfs.conf ==== ntfs-3g_ntfsprogs ==== Subpackages: libntfs-3g89 ntfs-3g ntfsprogs - Remove last remnants of update-alternatives. ==== ocean-sound-theme6 ==== Version update (6.6.4 -> 6.6.5) - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== openSUSE-release ==== Version update (20260512 -> 20260514) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== openexr ==== Version update (3.4.9 -> 3.4.11) Subpackages: libIex-3_4-33 libIex-3_4-33-x86-64-v3 libIlmThread-3_4-33 libIlmThread-3_4-33-x86-64-v3 libOpenEXR-3_4-33 libOpenEXR-3_4-33-x86-64-v3 libOpenEXRCore-3_4-33 libOpenEXRCore-3_4-33-x86-64-v3 - version update to 3.4.11 * [CVE-2026-42217](https://www.cve.org/CVERecord?id=CVE-2026-42217) Shift exponent overflow in `readVariableLengthInteger()` (`ImfIDManifest.cpp`) * [CVE-2026-42216](https://www.cve.org/CVERecord?id=CVE-2026-42216) Out-of-bounds read in `IDManifest::init()` during prefix expansion * [CVE-2026-41142](https://www.cve.org/CVERecord?id=CVE-2026-41142) Integer overflow in `ImageChannel::resize` leads to heap OOB write via OpenEXRUtil public API * OSS-fuzz [504280155](https://issues.oss-fuzz.com/issues/504280155) Heap-buffer-overflow in `DwaCompressor_uncompress` * OSS-fuzz [505062709](https://issues.oss-fuzz.com/issues/505062709) Null-dereference READ in `Imf_3_3::prefixFromLayerName` - version update to 3.4.10 * [CVE-2026-39886](https://www.cve.org/CVERecord?id=CVE-2026-39886) HTJ2K Signed Integer Overflow in `ht_undo_impl()` * [CVE-2026-40244](https://www.cve.org/CVERecord?id=CVE-2026-40244) Integer overflow in DWA `setupChannelData` `planarUncRle` pointer arithmetic (missed variant of CVE-2026-34589) * [CVE-2026-40250](https://www.cve.org/CVERecord?id=CVE-2026-40250) Integer overflow in DWA decoder `outBufferEnd` pointer arithmetic (missed variant of CVE-2026-34589) - fixes [bsc#1264354], [bsc#1264356], [bsc#1264353] ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Update openssh-7.7p1-fips.patch (bsc#1264787): Add the rijndael alias to the list of all ciphers, making the FIPS list a strict subset. ==== pam_kwallet6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: pam_kwallet6-32bit pam_kwallet6-common - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-x11 patterns-base-x11_enhanced - use distrobox instead of toolbox on SLE (jsc#PED-13820) - do not require vim-small if vim is installed (bsc#1262334) ==== perl-CGI ==== Version update (4.710.0 -> 4.720.0) - updated to 4.720.0 (4.72) see /usr/share/doc/packages/perl-CGI/Changes 4.72 2026-05-05 [ INTERNALS ] - fix regression due to edge case bug introduced in 4.71 (GH #278, thanks to dddonovan) ==== perl-CryptX ==== Version update (0.87.0 -> 0.89.0) - updated to 0.89.0 (0.089) see /usr/share/doc/packages/perl-CryptX/Changes 0.089 2026-05-10 - new: Crypt::ASN1 - new: Crypt::AuthEnc::SIV - new: Crypt::AuthEnc::XChaCha20Poly1305 - new: Crypt::Cipher::SM4 - new: Crypt::Digest::TurboSHAKE - new: Crypt::Digest::KangarooTwelve - new: Crypt::PK::Ed448 - new: Crypt::PK::X448 - new: Crypt::Stream::XChaCha - new: Crypt::Stream::XSalsa20 - Crypt::PK::Ed25519 - new functions: sign_message_ctx, verify_message_ctx, sign_message_ph, verify_message_ph - Crypt::Digest: object digest accessors now finalize the object; use reset() before reuse - Crypt::Mac + Crypt::AuthEnc: finalized-object lifecycle is now enforced consistently - security/hardening fixes across Digest/Mac/AuthEnc/Mode/Stream/PK/PRNG - fixes related to wycheproof test suite - documentation cleanup & improvements - support for RFC 8702 RSA-PSS-SHAKE128/256 and ECDSA-SHAKE128/256 - support for FRP256v1 elliptic-curve - bundled libtomcrypt update branch:develop (commit: 8b5af49b 2026-05-06) 0.088 2026-04-23 - Crypt::KeyDerivation - new functions: pbkdf1_openssl, bcrypt_pbkdf, scrypt_pbkdf, argon2_pbkdf - Crypt::Misc - new functions: random_v7uuid, is_uuid - bundled libtomcrypt update branch:develop (commit: 2e441a17 2026-04-15) - bundled libtommath update branch:develop (commit: ae40a87 2026-04-20) - security fix CVE-2026-41564 https://github.com/DCIT/perl-CryptX/security/advisories/GHSA-24c2-gp6c-24c6 bsc#1262697 ==== perl-Net-CIDR-Lite ==== Version update (0.220.0 -> 0.240.0) - updated to 0.240.0 (0.24) see /usr/share/doc/packages/perl-Net-CIDR-Lite/Changes 0.24 2026-05-10 - Security: (CVE-2026-45190) Reject Unicode digits and trailing newlines in parser inputs. bsc#1264710 - Security: (CVE-2026-45191) Reject zero-padded CIDR masks. bsc#1264709 0.23 2026-04-10 - Security: (CVE-2026-40199) Fix IPv4 mapped IPv6 packed length. bsc#1262088 - Security: (CVE-2026-40198) Reject invalid uncompressed IPv6. bsc#1262088 ==== perl-libwww-perl ==== Version update (6.820.0 -> 6.830.0) - updated to 6.830.0 (6.83) see /usr/share/doc/packages/perl-libwww-perl/Changes 6.83 2026-05-12 11:41:48Z - LWP::UserAgent now strips Authorization and Proxy-Authorization headers on cross-origin redirects (a different scheme, host, or port) to prevent credential leakage to the redirect target. Same-origin redirects retain credentials. Opt out with allow_credentialed_redirects => 1. CVE-2026-8368 reported by Kai Zen; PoC and initial patch by Stig Palmquist. - LWP::UserAgent now refuses https to http redirects by default to prevent leaking remaining request headers and bodies over plaintext. Opt in with allow_downgrade => 1. Related hardening alongside CVE-2026-8368; PoC by Stig Palmquist. bsc#1265156 ==== permissions ==== Version update (1699_20260217 -> 1699_20260512) Subpackages: permctl permissions-config - Update to version 1699_20260512: * iputils: Fix capability permissions for clockdiff * profiles: drop nfs-utils rmtab entry * README: document RPM installation time race condition ==== plasma5support6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: libPlasma5Support6 libPlasma5Support6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== plasma6-activities ==== Version update (6.6.4 -> 6.6.5) Subpackages: libPlasmaActivities7 plasma6-activities-imports - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== plasma6-activities-stats ==== Version update (6.6.4 -> 6.6.5) Subpackages: libPlasmaActivitiesStats1 - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== plasma6-browser-integration ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-browser-integration-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== plasma6-desktop ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-desktop-emojier plasma6-desktop-lang plasma6-kimpanel-ibus - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * applets/kicker: open category on return again * applets/kicker: don't show sidebar scrollbar without screen (kde#517535) * kcms/tablet: Improve line drawing * kcms/tablet: Initially set start position (kde#519600) * kcm_keys_test: Fix shortcut element name * kcms/keyboard: Fix KeyBindings resetButton positioning * keysrunner: Align dbus path sanitization with kglobalacceld which fixes triggering plasma-systemmonitor actions using krunner * applets/kicker: don't activate when dropping * applets/kicker: match background opacity in submenus (kde#517495) ==== plasma6-disks ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-disks-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== plasma6-integration ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-integration-plugin plasma6-integration-plugin-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * qt6/KFontSettingsData: Chop off extra fontString items for versions under 6.11 (kde#519185) ==== plasma6-nm ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-nm-lang plasma6-nm-openconnect plasma6-nm-openvpn plasma6-nm-pptp plasma6-nm-vpnc - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * applet: Fix accessibility of switches (kde#519217) * Ensure that placeholder is not visible when applet closes (kde#511367) * Keep focus on password field when hovering another delegate (kde#454523,kde#510784) ==== plasma6-openSUSE ==== Subpackages: plasma6-branding-openSUSE plasma6-sddm-theme-openSUSE plasma6-theme-openSUSE - Update to 6.6.5 ==== plasma6-pa ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-pa-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Explictly set text format on label ==== plasma6-print-manager ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-print-manager-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Port PrinterDelegate to required properties (kde#518705) ==== plasma6-systemmonitor ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-systemmonitor-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== plasma6-thunderbolt ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-thunderbolt-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - No code changes since 6.6.4 ==== plasma6-workspace ==== Version update (6.6.4 -> 6.6.5) Subpackages: plasma6-session plasma6-session-x11 plasma6-workspace-lang plasma6-workspace-libs sddm-qt6-branding-openSUSE - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * applets/kicker: show separator after service runner Recent Files (kde#518978) * kcms/font: Make buttons accessible (kde#519471) * runners/helprunner: Fix broken icon and text * xembedsniproxy: fix icon transparency * libkworkspace: Handle new states from logind (kde#518174) * ktimezoned.cpp: Fix what appears a copy-paste error * appiumtests: fix race condition in mediacontrollertest MPRIS player * appiumtests: fix D-Bus Properties Get return type in mediacontrollertest * appiumtests: fix unstable D-Bus activated plasmoid test in CI * kcms/soundtheme: Use on(Double)Clicked from GridDelegate instead of custom TapHandler * logout: Fix broken text legiblity with themes like Air and Breeze Light (kde#518001) * klipper: always set clipboard when moving entry to top (kde#514095) * SourcesPage: Fix sourceDelegate padding calculations * kcms/region_language: fix locale suffix matching (kde#518878) * applets/systemtray: Fix scroll orientation string case mismatch * applets/notifications: fix null-guard bugs in Globals.qml (kde#519046) * Fix kde_output_device_v2 bind version in devicenotifications * libclock: Fix stale transition metadata on timezone change * applets/activitybar: import Kirigami * libclock: fix lockscreen timezone init race on multi-screen - Drop patches, now upstream: * 0001-libkworkspace-Handle-new-states-from-logind.patch ==== polkit-default-privs ==== Version update (1550+20260428.f2a5d2e -> 1550+20260513.3b99372) - Update to version 1550+20260513.3b99372: * profiles: whitelist apparmor aa-notify.from_file action (bsc#1265157) ==== polkit-kde-agent-6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: polkit-kde-agent-6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== postfix ==== - AUDIT-0: postfix: move permissions from /etc to /usr/share/permissions (bsc#1264563) Apply proposed changes. ==== powerdevil6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: powerdevil6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Fix screen brightness stuck at 30% after PowerDevil restart (kde#513809) ==== python-gobject ==== Version update (3.56.2 -> 3.56.3) Subpackages: python311-gobject python311-gobject-Gdk python311-gobject-cairo python313-gobject python313-gobject-Gdk python313-gobject-cairo - Update to version 3.56.3: + Fix crash when user_data is defined before callback + Add missing msg argument to asyncio cancel() + Fix potential buffer overflow errors + Fix memory leak when initializing GTK templates ==== python-numpy ==== Version update (2.4.3 -> 2.4.4) Subpackages: python311-numpy python313-numpy - Force "none" cpu-baseline on x86_64 and %{ix86} only - Ignore test_cpu_features test failure on s390x - Ignore test_einsum test failure on %{ix86} - Update to 2.4.4 * np.linalg.norm returned different value after update to 2.4.2 * fix FNV-1a 64-bit selection by using NPY_SIZEOF_UINTP * avoid warning on ufunc with where=True and no output * document caveats of ndarray.resize on 3.14 and newer * fix POWER VSX feature mapping * numpy.i: Replace deprecated sprintf with snprintf - Set `cpu_baseline` build option to `none` to be compatible with the widest arrays of CPU (including `qemu` and older CPUs; bsc#1261151). ==== qqc2-breeze-style6 ==== Version update (6.6.4 -> 6.6.5) - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Revert "ToolButton: Fix flat mode not inheriting background color scheme" ==== rsync ==== - Security update (CVE-2026-41035, bsc#1262223): rsync: count of entries mismatch can lead to a use-after-free - Add rsync-CVE-2026-41035.patch ==== ruby4.0 ==== Version update (4.0.3 -> 4.0.4) Subpackages: libruby4_0-4_0 - make install also need the locale set on 15.x - Update to 4.0.4 - Bug #21955: Fiber#transfer: machine stack not released when fiber terminates, causing FiberError: can't set a guard page - Ruby - Ruby Issue Tracking System - Bug #21964: Fiber stack acquire can expand unnecessarily - Ruby - Ruby Issue Tracking System - Bug #21971: Fix regexp performance regression for patterns starting with s/k - Ruby - Ruby Issue Tracking System - Bug #21961: Marshal.load freeze option fail to freeze linked strings - Ruby - Ruby Issue Tracking System - Bug #21959: rb_internal_thread_event_hooks_rw_lock is not reinitialized after fork causing deadlocks - Ruby - Ruby Issue Tracking System - Bug #21954: NoMethodError instead of Gem::LoadError on gem activation problem in Ruby 4.0.2 - Ruby - Ruby Issue Tracking System - Bug #21844: Inconsistent ArgumentError message for Data::define.new - Ruby - Ruby Issue Tracking System - Bug #21992: Defining BasicObject#initialize causes segmentation fault - Ruby - Ruby Issue Tracking System - Bug #22018: ISeq created via RubyVM::InstructionSequence.compile don't support coverage - Ruby - Ruby Issue Tracking System - Bug #21985: RubyVM::AST negative numbers do not include - in location - Ruby - Ruby Issue Tracking System - Bug #21986: RubyVM::AST incorrect location for literals followed by modifier if - Ruby - Ruby Issue Tracking System - Bug #21933: Ruby::Box: named capture local variable can become nil after non-matching lines - Ruby - Ruby Issue Tracking System - Bug #21940: Ruby::Box: $_ returns stale value due to gvar_tbl caching - Ruby - Ruby Issue Tracking System - Bug #22004: parse.y doesn't executes loop body with while true || true condition - Ruby - Ruby Issue Tracking System - Bug #21952: Ruby::Box double free at process exit when fiddle/import is required in multiple boxes - Ruby - Ruby Issue Tracking System - Bug #22003: .bundle extensions not built when doing out-of-source build - Ruby - Ruby Issue Tracking System - Bug #22002: argument stack underflow (-1) - Ruby - Ruby Issue Tracking System ==== rubygem-gem2rpm ==== - update suse.patch - fix copyright header - fix BR order - update suse.patch - remove unneeded buildrequires for u-a ==== sddm-kcm6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: sddm-kcm6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== shaderc ==== Version update (2026.1 -> 2026.2) - Update to release 2026.2 * Test GL_EXT_descriptor_heap ==== spectacle ==== Version update (6.6.4 -> 6.6.5) Subpackages: spectacle-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * OptionsMenu: Drop double ownership of delay widgets * Keep spectacle alive briefly after copying screenshots (kde#) * SelectionEditor: Don't call setShowMagnifier in hoverMoveEvent (kde#509776,kde#509777) * CaptureOverlay: Fix checking the wrong showMagnifier property when activating the magnifier loader * fix: viewer window not hiding when quit-after-export is enabled ==== systemsettings6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: systemsettings6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * Set accessible text for back button (kde#519333) * Fix empty category in sidebar when "Highlight Changed Settings" is enabled (kde#518868) * systemsettingsrunner: add correct file URLs to the kickoff and krunner entries. (kde#500259) * Ignore warnings from qt.qpa.services ==== vulkan-loader ==== Version update (1.4.341 -> 1.4.350) - Update to tag SDK-1.4.350.0 * Fix the wrong extension being used for GGP ==== vulkan-tools ==== Version update (1.4.341 -> 1.4.350) - Update to tag SDK-1.4.350.0 * vulkaninfo: Enable device groups extension * vulkaninfo: Check extensions before querying properties ==== wacomtablet-kcm6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: wacomtablet-kcm6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 ==== xdg-desktop-portal-kde6 ==== Version update (6.6.4 -> 6.6.5) Subpackages: xdg-desktop-portal-kde6-lang - Update to 6.6.5: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.5 - Changes since 6.6.4: * Update version for new release 6.6.5 * PortalDialog: fix standard button handling (kde#519631) * ci: disable qmllint ==== yast2 ==== Version update (5.0.20 -> 5.0.21) Subpackages: yast2-logs - Drop the logic for checking TPM2 availability. - The TPM2 check is now provided by yast2-storage-ng (related to jsc#PED-10703). - 5.0.21 ==== yast2-storage-ng ==== Version update (5.0.43 -> 5.0.45) - Allow checking if a bootloader type is BLS-compliant (related to jsc#PED-10703). - 5.0.45 - New BlsEfi strategy to be used by Agama to create partitions for booting in a way that is compliant to the BLS specification (related to jsc#PED-10703). - 5.0.44 - Add TPM BLS encrytion method (related to jsc#PED-10703). ==== zypper ==== Version update (1.14.96 -> 1.14.97) Subpackages: zypper-log zypper-needs-restarting - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - version 1.14.97