Packages changed: MicroOS-release (20241102 -> 20241103) SDL2 (2.30.8 -> 2.30.9) glib2-branding-openSUSE gtk4 (4.16.3 -> 4.16.5) libnl3 (3.10.0 -> 3.11.0) mpg123 (1.32.8 -> 1.32.9) nftables (1.0.9 -> 1.1.1) python311 python311-core runc (1.2.0 -> 1.2.1) vlc === Details === ==== MicroOS-release ==== Version update (20241102 -> 20241103) Subpackages: MicroOS-release-appliance MicroOS-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== SDL2 ==== Version update (2.30.8 -> 2.30.9) - Update to release 2.30.9 * Fixed flicker when entering/exiting fullscreen or moving the window between scaled and non-scaled displays under Wayland. ==== glib2-branding-openSUSE ==== - Remove "picture-uri-dark" in schema "org.gnome.desktop.screensaver", there is no this key in schema currently. ==== gtk4 ==== Version update (4.16.3 -> 4.16.5) Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0 - Update to version 4.16.5: + Clean up debug spew. - Update to version 4.16.4: + GtkTextView: - Fix some missing CSS invalidation - Handle charsets in clipboard datatypes + GtkApplication: Respect GDK_DEBUG=no-portals + Printing: - Avoid warnings for avahi errors - Fix a segfault in the print dialog setup code + Accessibility: Handle NULL values in more places + Gdk: - vulkan: Fix validation errors - Fix 32bit build for the jpeg loader + Wayland: Fix a possible deadlock with high-priority sources triggering Wayland roundtrips + Updated translations. ==== libnl3 ==== Version update (3.10.0 -> 3.11.0) Subpackages: libnl-config libnl3-200 - Update to release 3.11 * Add NLA_{SINT|UINT} attribute types * Add NLA functions for variable-length integers * link/bonding: add getters for attributes * lib/route: add support for bridge msti ==== mpg123 ==== Version update (1.32.8 -> 1.32.9) - Update to version 1.32.9 libmpg123: * Increase the library patchlevel, as was forgotten on previous release. Now you can check for distversion >= 1.32.8 or mpg123 libversion >= 48 patchlevel 3 to see if you're vulnerable to CVE-2024-10573. ==== nftables ==== Version update (1.0.9 -> 1.1.1) Subpackages: libnftables1 python311-nftables - Update to release 1.1.1 * Reduce netlink cache dependencies to speed up incremental updates. * Allow zero burst in byte ratelimiter expression. * Fix double-free when users call nft_ctx_clear_vars() followed by nft_ctx_free(). * Document that the tproxy statement is non-terminal (unlike in iptables). This allows for tproxy+log and tproxy+mark combos, see man nft(8) for details. * Add egress support for the `list hooks` subcommand. - Update to release 1.1.0 * Restore compatibility set element dump with <= 0.9.8 * Disallow empty interface names * Restore rule replace command * Search for group, rt_mark, rt_realms at /etc/iproute2, /usr/share/iproute2 * Resolve some timezone issues * Support for variables in map expressions * VLAN support ==== python311 ==== - Add CVE-2024-9287-venv_path_unquoted.patch to properly quote path names provided when creating a virtual environment (bsc#1232241, CVE-2024-9287) ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Add CVE-2024-9287-venv_path_unquoted.patch to properly quote path names provided when creating a virtual environment (bsc#1232241, CVE-2024-9287) ==== runc ==== Version update (1.2.0 -> 1.2.1) - Update to runc v1.2.1. Upstream changelog is available from . ==== vlc ==== Subpackages: libvlc5 libvlccore9 vlc-noX vlc-qt - Drop the requres_ge libbluray1 statement, which was added as a hack due to a libbluray ABI brak at version 0.5. By now libbluray is at .so.2, so that statement was actually a NOP. as RPM simply ignored in-existing package dependencies.