Packages changed: Mesa (26.0.4 -> 26.0.5) Mesa-drivers (26.0.4 -> 26.0.5) MicroOS-release (20260408 -> 20260420) aardvark-dns (1.17.0 -> 1.17.1) adwaita-fonts (49.0 -> 50.0) at-spi2-core (2.58.3 -> 2.60.0) aurorae6 (6.6.3 -> 6.6.4) baloo-widgets (25.12.3 -> 26.04.0) blog (2.37 -> 2.38) bluedevil6 (6.6.3 -> 6.6.4) boost-base breeze6 (6.6.3 -> 6.6.4) breeze6-gtk (6.6.3 -> 6.6.4) cockpit (356 -> 360) discover6 (6.6.3 -> 6.6.4) dolphin (25.12.3 -> 26.04.0) falkon (25.12.3 -> 26.04.0) ffmpeg-8 ffmpegthumbs (25.12.3 -> 26.04.0) flatpak (1.16.3 -> 1.16.6) flatpak-kcm6 (6.6.3 -> 6.6.4) gcc16 (16.0.1+git8152 -> 16.0.1+git8711) gdk-pixbuf (2.44.4 -> 2.44.6) glib2 (2.86.4 -> 2.88.0) glycin-loaders (2.0.8 -> 2.1.1) gnutls gsettings-desktop-schemas (49.1 -> 50.0) gstreamer (1.28.1 -> 1.28.2) gstreamer-plugins-bad (1.28.1 -> 1.28.2) gstreamer-plugins-base (1.28.1 -> 1.28.2) gvfs (1.58.2 -> 1.60.0) harfbuzz (12.3.2 -> 14.1.0) health-checker (1.13+git20251219.f90f390 -> 1.13+git20260414.bb3e4ad) iproute2 (6.19 -> 7.0) kaccounts-integration (25.12.3 -> 26.04.0) kaccounts-providers (25.12.3 -> 26.04.0) kactivitymanagerd6 (6.6.3 -> 6.6.4) kate (25.12.3 -> 26.04.0) kde-cli-tools6 (6.6.3 -> 6.6.4) kde-gtk-config6 (6.6.3 -> 6.6.4) kdecoration6 (6.6.3 -> 6.6.4) kdegraphics-mobipocket (25.12.3 -> 26.04.0) kdegraphics-thumbnailers (25.12.3 -> 26.04.0) kdeplasma6-addons (6.6.3 -> 6.6.4) kdialog (25.12.3 -> 26.04.0) kdump (2.1.8 -> 2.1.9) kernel-firmware-amdgpu (20260327 -> 20260414) kernel-firmware-bluetooth (20260327 -> 20260408) kernel-firmware-i915 (20260402 -> 20260416) kernel-firmware-intel (20260331 -> 20260408) kernel-firmware-media (20260331 -> 20260414) kernel-firmware-nvidia (20251018 -> 20260408) kernel-firmware-platform (20260305 -> 20260416) kernel-firmware-qcom (20260402 -> 20260416) kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound (20260331 -> 20260408) kernel-source (6.19.11 -> 6.19.12) kf6-attica (6.24.0 -> 6.25.0) kf6-baloo (6.24.0 -> 6.25.0) kf6-bluez-qt (6.24.0 -> 6.25.0) kf6-breeze-icons (6.24.0 -> 6.25.0) kf6-frameworkintegration (6.24.0 -> 6.25.0) kf6-karchive (6.24.0 -> 6.25.0) kf6-kauth (6.24.0 -> 6.25.0) kf6-kbookmarks (6.24.0 -> 6.25.0) kf6-kcmutils (6.24.0 -> 6.25.0) kf6-kcodecs (6.24.0 -> 6.25.0) kf6-kcolorscheme (6.24.0 -> 6.25.0) kf6-kcompletion (6.24.0 -> 6.25.0) kf6-kconfig (6.24.0 -> 6.25.0) kf6-kconfigwidgets (6.24.0 -> 6.25.0) kf6-kcontacts (6.24.0 -> 6.25.0) kf6-kcoreaddons (6.24.0 -> 6.25.0) kf6-kcrash (6.24.0 -> 6.25.0) kf6-kdbusaddons (6.24.0 -> 6.25.0) kf6-kdeclarative (6.24.0 -> 6.25.0) kf6-kded (6.24.0 -> 6.25.0) kf6-kdesu (6.24.0 -> 6.25.0) kf6-kdnssd (6.24.0 -> 6.25.0) kf6-kdoctools (6.24.0 -> 6.25.0) kf6-kfilemetadata (6.24.0 -> 6.25.0) kf6-kglobalaccel (6.24.0 -> 6.25.0) kf6-kguiaddons (6.24.0 -> 6.25.0) kf6-kholidays (6.24.0 -> 6.25.0) kf6-ki18n (6.24.0 -> 6.25.0) kf6-kiconthemes (6.24.0 -> 6.25.0) kf6-kidletime (6.24.0 -> 6.25.0) kf6-kimageformats (6.24.0 -> 6.25.0) kf6-kio (6.24.0 -> 6.25.0) kf6-kirigami (6.24.0 -> 6.25.0) kf6-kitemmodels (6.24.0 -> 6.25.0) kf6-kitemviews (6.24.0 -> 6.25.0) kf6-kjobwidgets (6.24.0 -> 6.25.0) kf6-knewstuff (6.24.0 -> 6.25.0) kf6-knotifications (6.24.0 -> 6.25.0) kf6-knotifyconfig (6.24.0 -> 6.25.0) kf6-kpackage (6.24.0 -> 6.25.0) kf6-kparts (6.24.0 -> 6.25.0) kf6-kpty (6.24.0 -> 6.25.0) kf6-kquickcharts (6.24.0 -> 6.25.0) kf6-krunner (6.24.0 -> 6.25.0) kf6-kservice (6.24.0 -> 6.25.0) kf6-kstatusnotifieritem (6.24.0 -> 6.25.0) kf6-ksvg (6.24.0 -> 6.25.0) kf6-ktexteditor (6.24.0 -> 6.25.0) kf6-ktextwidgets (6.24.0 -> 6.25.0) kf6-kunitconversion (6.24.0 -> 6.25.0) kf6-kuserfeedback (6.24.0 -> 6.25.0) kf6-kwallet (6.24.0 -> 6.25.0) kf6-kwidgetsaddons (6.24.0 -> 6.25.0) kf6-kwindowsystem (6.24.0 -> 6.25.0) kf6-kxmlgui (6.24.0 -> 6.25.0) kf6-modemmanager-qt (6.24.0 -> 6.25.0) kf6-networkmanager-qt (6.24.0 -> 6.25.0) kf6-prison (6.24.0 -> 6.25.0) kf6-purpose (6.24.0 -> 6.25.0) kf6-qqc2-desktop-style (6.24.0 -> 6.25.0) kf6-solid (6.24.0 -> 6.25.0) kf6-sonnet (6.24.0 -> 6.25.0) kf6-syndication (6.24.0 -> 6.25.0) kf6-syntax-highlighting (6.24.0 -> 6.25.0) kgamma6 (6.6.3 -> 6.6.4) kglobalacceld6 (6.6.3 -> 6.6.4) kinfocenter6 (6.6.3 -> 6.6.4) kio-extras (25.12.3 -> 26.04.0) kio-gdrive (25.12.3 -> 26.04.0) kmenuedit6 (6.6.3 -> 6.6.4) knighttime6 (6.6.3 -> 6.6.4) konsole (25.12.3 -> 26.04.0) kpipewire6 (6.6.3 -> 6.6.4) kpmcore (25.12.3 -> 26.04.0) kscreen6 (6.6.3 -> 6.6.4) kscreenlocker6 (6.6.3 -> 6.6.4) ksshaskpass6 (6.6.3 -> 6.6.4) ksystemstats6 (6.6.3 -> 6.6.4) kwalletmanager (25.12.3 -> 26.04.0) kwayland-integration6 (6.6.3 -> 6.6.4) kwayland6 (6.6.3 -> 6.6.4) kwin6 (6.6.3 -> 6.6.4) layer-shell-qt6 (6.6.3 -> 6.6.4) lcms2 (2.17 -> 2.18) leancrypto (1.6.0 -> 1.7.2) libarchive (3.8.5 -> 3.8.7) libcap (2.75 -> 2.78) libglvnd libglycin (2.0.8 -> 2.1.1) libjcat (0.2.5 -> 0.2.6) libjpeg-turbo libkdcraw-qt6 (25.12.3 -> 26.04.0) libkexiv2-qt6 (25.12.3 -> 26.04.0) libkgapi6 (25.12.3 -> 26.04.0) libkscreen6 (6.6.3 -> 6.6.4) libksysguard6 (6.6.3 -> 6.6.4) libostree (2025.7 -> 2026.1) libplasma6 (6.6.3 -> 6.6.4) libpng16 (1.6.56 -> 1.6.57) librsvg (2.61.3 -> 2.62.0) libsodium (1.0.21 -> 1.0.22) libxkbcommon (1.12.4 -> 1.13.1) lilv (0.26.2 -> 0.26.4) llvm21 milou6 (6.6.3 -> 6.6.4) ncurses ngtcp2 (1.21.0 -> 1.22.0) openldap2 (2.6.10 -> 2.6.13) openssl-3 parted (3.6 -> 3.7) partitionmanager (25.12.3 -> 26.04.0) patterns-base plasma5support6 (6.6.3 -> 6.6.4) plasma6-activities (6.6.3 -> 6.6.4) plasma6-activities-stats (6.6.3 -> 6.6.4) plasma6-browser-integration (6.6.3 -> 6.6.4) plasma6-desktop (6.6.3 -> 6.6.4) plasma6-integration (6.6.3 -> 6.6.4) plasma6-nm (6.6.3 -> 6.6.4) plasma6-openSUSE plasma6-pa (6.6.3 -> 6.6.4) plasma6-print-manager (6.6.3 -> 6.6.4) plasma6-systemmonitor (6.6.3 -> 6.6.4) plasma6-workspace (6.6.3 -> 6.6.4) polkit-default-privs (1550+20260212.d84c6be -> 1550+20260414.1647bf2) polkit-kde-agent-6 (6.6.3 -> 6.6.4) polkit-qt6-1 (0.200.0 -> 0.201.1) powerdevil6 (6.6.3 -> 6.6.4) protobuf-c python-SQLAlchemy (2.0.48 -> 2.0.49) python-bcrypt (4.3.0 -> 5.0.0) python-cryptography (46.0.6 -> 46.0.7) python-greenlet (3.3.2 -> 3.4.0) python-maturin (1.12.6 -> 1.13.1) python-requests python313 (3.13.12 -> 3.13.13) python313-core (3.13.12 -> 3.13.13) python313-setuptools qalculate (5.9.0 -> 5.10.0) qqc2-breeze-style6 (6.6.3 -> 6.6.4) qrca (25.12.3 -> 26.04.0) qt6-tools run0-wrappers rust-keylime samba (4.23.5+git.463.513487e87f1 -> 4.23.6+git.466.1a6b75cb208) sdbootutil (1+git20260407.f1134c1 -> 1+git20260409.83d5678) sddm-kcm6 (6.6.3 -> 6.6.4) selinux-policy (20260311 -> 20260414) serd (0.32.6 -> 0.32.8) signon-kwallet-extension (25.12.3 -> 26.04.0) skopeo (1.22.0 -> 1.22.1) spectacle (6.6.3 -> 6.6.4) spirv-tools sqlite3 (3.51.3 -> 3.53.0) systemd-presets-common-SUSE systemsettings6 (6.6.3 -> 6.6.4) transactional-update vmaf (3.0.0 -> 3.1.0) xconsole (1.1.0 -> 1.1.1) xdg-desktop-portal (1.20.3 -> 1.20.4) xdg-desktop-portal-kde6 (6.6.3 -> 6.6.4) xdm xorg-x11-server xwayland === Details === ==== Mesa ==== Version update (26.0.4 -> 26.0.5) Subpackages: Mesa-libEGL1 Mesa-libGL1 libgbm1 - Disable vulkan and panfrost on armv6 as it fails to build - Update to 26.0.5 bugfix release - -> https://docs.mesa3d.org/relnotes/26.0.5 - pick up GL header files from libglvnd, because in libglvnd sources these are still updated but in Mesa sources they are not any longer and are completely outdated (boo#1260932) - require gcc 15 in order to fix build on SLE16/Leap 16.0 ==== Mesa-drivers ==== Version update (26.0.4 -> 26.0.5) Subpackages: Mesa-dri Mesa-vulkan-device-select libvulkan_lvp - Disable vulkan and panfrost on armv6 as it fails to build - Update to 26.0.5 bugfix release - -> https://docs.mesa3d.org/relnotes/26.0.5 - pick up GL header files from libglvnd, because in libglvnd sources these are still updated but in Mesa sources they are not any longer and are completely outdated (boo#1260932) - require gcc 15 in order to fix build on SLE16/Leap 16.0 ==== MicroOS-release ==== Version update (20260408 -> 20260420) Subpackages: MicroOS-release-appliance MicroOS-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== aardvark-dns ==== Version update (1.17.0 -> 1.17.1) - Update to version 1.17.1: * release v1.17.1 * release notes for v1.17.1 * migration to oidc connection * fix handling of incorrect tcp packets (bsc#1261735, CVE-2026-35406) ==== adwaita-fonts ==== Version update (49.0 -> 50.0) - Update to version 50.0: + mono: Remove RIS workaround ==== at-spi2-core ==== Version update (2.58.3 -> 2.60.0) Subpackages: libatk-1_0-0 libatk-bridge-2_0-0 libatspi0 typelib-1_0-Atk-1_0 typelib-1_0-Atspi-2_0 - Migrate to xz compression and manual service run - Update to version 2.60.0: + Fix detection of whether the org.freedesktop.a11y.PointerLocator interface is available. - Update to version 2.59.90: + AtspiDevice: Add API to enable and disable features. This can be used to test whether particular features are supported by the device. + AtspiDevice: Add a pointer-moved signal. This is supported on X11 and on Wayland when the compositor supports the org.freedesktop.a11y.PointerLocator interface. + AtspiDevice: Add key-pressed and key-released signals. Deprecate atspi_device_add_key_watcher. + AtspiDeviceX11: Support monitoring the pointer. This currently requires xres, which is now an optional dependency. + Fix a use after free in _atspi_send_event. - Update to version 2.59.1: + Added a build option to link against dbus-glib, rather than using the internal fork for the main loop integration code. + Add ATSPI_MODIFIER_SUPER as an alias for META3. + Various documentation fixes. - Changes from version 2.59.0: + meson: Use dbus-broker by default. + Document the remaining DBus interfaces. ==== aurorae6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== baloo-widgets ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * autotests: add wigetfactorytest * widgetfactory: translate dates to local timezone * filemetadataprovider: clean up old QT_VERSION check * tagsftileitemaction: Rename plugin from "Tags" to "Assign tags" * TagCheckBox: Handle dolphin crashes when encountering a tag containing slash '/' character (kde#437501) ==== blog ==== Version update (2.37 -> 2.38) Subpackages: libblogger2 - Update to version 2.38 * Silent debugging messages in epoll algorithm (boo#1261699) * Make it work on 3215 console of s390 means no tcdrain() for 3215, no blocking writes, not more then 130 characters per line, no \r, finalize lines with \n. Nevertheless use a blocking read for password requests. Make automatic CLEAR an kernel command line option with the parameter blog.timeout=0 (boo#1261697) ==== bluedevil6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== boost-base ==== Subpackages: boost-license1_90_0 libboost_filesystem1_90_0 libboost_log1_90_0 libboost_thread1_90_0 - disable the cobalt module explicitly to avoid implicit enablement when using a C++20 defaulted compiler given we are not packaging that module at the moment; this fixes the packaging with GCC 16 ==== breeze6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: breeze6-cursors breeze6-decoration breeze6-style breeze6-wallpapers - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * Do not pass QIcon::Selected mode to icon painter (kde#506437) ==== breeze6-gtk ==== Version update (6.6.3 -> 6.6.4) Subpackages: gtk3-metatheme-breeze6 metatheme-breeze6-common - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== cockpit ==== Version update (356 -> 360) Subpackages: cockpit-bridge cockpit-networkmanager cockpit-packagekit cockpit-system cockpit-ws cockpit-ws-selinux - Update to 360 * 360 - ws: be more explicit when handling hostnames on cli bsc#1261829/CVE-2026-4631 - ws: support loading a custom login page - Translation updates * 359 - Bug fixes and translation updates - Update to 358 * 358 - Networking: Add Wi-Fi support - Cockpit Client updated to GTK 4 - Bugfixes and translation updates - Dependency updates * 357 - lib: Use browser context menu on shift - bridge: support Python 3.14 on old kernels (RHEL 8) - add 0010-Override-kdump-message.patch bsc#1259774 - Refactor packagekit-single-install.patch to match upstream * bsc#1259210 ==== discover6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: discover6-backend-flatpak discover6-backend-fwupd discover6-notifier - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * RpmOstreeBackend: Translate some user-facing string literals * Update version for new release 6.6.4 * TransactionModel: Add visibleTransactionCount, use it in DiscoverObject ==== dolphin ==== Version update (25.12.3 -> 26.04.0) Subpackages: dolphin-part libdolphinvcs6 - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - Changes since 26.03.90: * Refresh shortcut: Ignore repeat events (kde#514209) * DolphinTabPage: Prevent re-entrant signal activation for slotViewActivated (kde#508554, kde#512011,, kde#508405,, kde#511076,, kde#503576) - Update to 26.03.90 * New feature release - Changes since 26.03.80: * panels/information: prevent memleak when closing mediawidget * dolphincontextmenu: Set item list properties before adding actions * CMakeLists.txt: bump KF6_MIN_VERSION to 6.23 - Update to 26.03.80 * New feature release - Too many changes since 25.12.3, only listing bugfixes: * Fix incorrect app id for Kfind (kde#510370) * informationpanel: ignore gestures on media slider (kde#431307) * information/pixmapviewer: handle hdipi for animated images (kde#510829) * kitemlistview: when editing file name set anchored selection (kde#453262) * KItemListController: Check for highlightEntireRow on rightClick (kde#508356) * Revert "!1026" (kde#516341) * Add keyboard shortcut support for service menu actions (kde#260266) * Dynamic view should weight folders. (kde#508304) * KItemListController: Use entire row for drag and drop if highlightEntireRow is true (kde#515439) * panel/terminal: Add ability to disable konsole url sync (kde#306381) * Add keyboard anchor assignments to mouse events (kde#508609) * dolphinfontrequester: Do not apply custom view font to font mode combobox (kde#499783) * viewproperties: remove temp file after loading defaultConfig (kde#510500) * dolphinmainwindow: Reload context menu plugins when configuration changes (kde#508722) * Dolphin: Inform user when italic filename style is not supported by the font (kde#499784) * viewmodes: ensure font dialog retains last custom selection (kde#499786) * dolphinview: fix missing selection on next item after Delete key removal (kde#513371) * dolphinview: do not get view properties if we do not apply dynamic view (kde#508402) * DolphinView: observeCreatedDirectory take into account last / of m_url (kde#513345) * dolphintabbpage: Allow migration for users with the old session file format (kde#513466) * kfileitemmodel: Fix folder/file icon rating display (kde#512940) * folderstabssettingspage: add 3 options for closing split view (kde#464696) * kitemviews: Prevent crash when dragging details side padding header (kde#511057) * dolphinnavigatorswidgetaction: show focus indicator in split mode (kde#150718) * context menu: use selected item as containing folder for New file menu (kde#508196) * kstandarditemlistwidget: Fix vertical misalignment for file names containing certain glyphs (kde#512152) * main: set active view in split mode when not restoring session (kde#503576) * Revert "Avoid implicitly selecting items" (kde#494125) * dolphin: improve keyboard search behavior for repeated characters (kde#501851) * informationpanel: ensure selection info is shown when using keyboard navigation (kde#474507) ==== falkon ==== Version update (25.12.3 -> 26.04.0) Subpackages: falkon-kde - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * UserAgent: Allow adding urls without valid host * Fix Drag&Drop actions in bookmarks manager * Add cut, copy and paste to Bookmarks context menu (kde#477140) * KWallet: Do not show password when failed * KWallet: Show notification when wallet opening fails * KWallet add more guards around the code * KWallet: Open the wallet only when asked * KWallet: Do not ask for password at start * Add support to add items into sidebar menu ==== ffmpeg-8 ==== Subpackages: libavcodec62 libavfilter11 libavformat62 libavutil60 libswresample6 libswscale9 - Add explicit symbol lists to work-around-abi-break.patch [boo#1261836] ==== ffmpegthumbs ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * Fix OSS-Fuzz AFL builds ==== flatpak ==== Version update (1.16.3 -> 1.16.6) Subpackages: flatpak-selinux libflatpak0 system-user-flatpak - Install flatpak-selinux.if in distributed instead of contrib to avoid clashing with the interfaces from the main selinux-policy package (bsc#1262051) - Add 1262051-selinux-flatpak.if-should-be-installed-in-distribute.patch - Can be dropped when this comes back from upstream: https://github.com/flatpak/flatpak/pull/6622 - Update to version 1.16.6: + Bug fixes: - Fix the remaining regression for Chromium based browsers by not leaking file descriptors down to wrapped command - Fix a regression when installing extra-data without a runtime, which is the case for openh264 - Fix the remaining regression for Epiphany by ignoring unusable sandbox-expose paths for sub-sandboxes in the portal - Fix the installed tests by allowing to add a new ref to an existing temporary ostree repo - Avoid closing fds 0/1/2 when they are used as a bad argument to flatpak-run, and reduce duplication in handling file descriptor arguments - Update to version 1.16.5: + Bug fixes: Fix regressions caused by the sandbox escape security fix, which impact some browsers, browser-based apps and Steam + Enhancements: Expand test coverage of flatpak-run features used by flatpak-portal - Update to version 1.16.4: + Security fixes: - Fix a complete sandbox escape which leads to host file access and code execution in the host context (CVE-2026-34078) - Prevent arbitrary file deletion on the host filesystem (CVE-2026-34079) - Prevent arbitrary read-access to files in the system-helper context (GHSA-2fxp-43j9-pwvc) - Prevent orphaning cross-user pull operations (GHSA-89xm-3m96-w3jg) - Update suse_version macro for 1610 (jsc#PED-15828) ==== flatpak-kcm6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - No code changes since 6.6.3 ==== gcc16 ==== Version update (16.0.1+git8152 -> 16.0.1+git8711) Subpackages: libgcc_s1 libgomp1 libstdc++6 - Update to 16.0.1+git8711 - Streamline AMD GCN enablement and configuration by basing it on LLVM version availability. Support llvm19 and up. - Fix bootstrap cross compiler packaging and simplify handling by properly requesting suffixed binaries from configury. - Update to 16.0.1+git8664 - Only package version suffixed binaries in %gcc_libc_bootstrap packages, drop LTO related tools from them. This makes them co-installable between different GCC versions. - Going forward no longer register alternatives via update-alternatives for %gcc_libc_bootstrap packages, even on older distros. - Update to 16.0.1+git8410 - Avoid conflicts between %gcc_libc_bootstrap packages of different versions if update-alternatives are still in use (SLE 15 and older) - Wipe all icecream backend build support from the spec file. ==== gdk-pixbuf ==== Version update (2.44.4 -> 2.44.6) Subpackages: gdk-pixbuf-query-loaders libgdk_pixbuf-2_0-0 typelib-1_0-GdkPixbuf-2_0 - Update to version 2.44.6: + build: Add a legacy_xpm option to build the old xpm loader + xpm: Rename the old xpm loader to legacy-xpm, and use it for gdk_pixbuf_new_from_xpm_data if it is available. Note that the old loader will only be used for this purpose. xpm files still get loaded with glycin. + jpeg: Reject data with an unsupported number of components + Update contribution guidelines + glycin: Fix an issue with looping animations + Do not accidentally query loaders from the host - Pass legacy_xpm=enabled to meson setup, build legacy xpm support - Migrate to xz compression and manual service run - Update to version 2.44.5: + Make the testsuite work with glycin + glycin: Add support for xpm and xbm + Updated translations. - Drop gdk-pixbuf-jpeg-slow.patch, we are not running tests, nor do we want to depend on glycin during build as it leads to a cycle. - Pass test=false to meson setup. - Drop unused check section and already disabled meson_test macro. ==== glib2 ==== Version update (2.86.4 -> 2.88.0) Subpackages: glib2-tools libgio-2_0-0 libgirepository-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GLibUnix-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - Migrate to xz compression and manual service run - Update to version 2.88.0: + gslice: Factor out a size helper macro and stop using MAX in a public header - Drop 5097.patch: fixed upstream. - Update to version 2.87.5: + Avoid installing broken symlinks as part of the test data for the gdatetime tests + Fix `g_file_set_contents()` with non-ASCII filenames on Windows + Bugs fixed: - Documentation issue with g_slice_new and g_slice_new0 - Unclear assertion failure message when `G_PARAM_CONSTRUCT` and `G_PARAM_CONSTRUCT_ONLY` are both specified - vs2019-arm64 CI fails with ninja error - g_file_set_contents broken on windows for non-ASCII filenames - Documentation of g_file_info_get_is_backup() doesn’t define what a backup file is - GLocalFileInfo's set_symlink() is backwards - Memory leak in g_desktop_app_info_launch_uris_with_spawn - gsocketconnection: Set an error when closed if no address is cached - minor doc fixes - tests: Fix a minor memory leak in the socket test - Prevent iptosmessage test failures on FreeBSD and Hurd - gobject: Disable new construct property check with G_DISABLE_CHECKS + Updated translations. - Add 5097.patch: Fix build of NetworkManager, patch from upstream - Update to version 2.87.3: + Improved support for `GNotification` on Windows + Fix module lookups via `GModule` on Cygwin + Fix local timezone lookup with nested symlinks in `/etc/localtime` + Fix ordering and sequential consistency of gatomic memory barriers on MSVC and fallback GCC code paths + Fix various integer overflow bugs (CVE-2026-1484, CVE-2026-1485, CVE-2026-1489) + Add `GSocketControlMessage` subclasses for receiving `IP_TOS` and `IPV6_TCLASS` + Support polling more than 1024 FDs on macOS + Remove platform-specific backward compatibility from GLib-2.0 as it’s impossible to support + Improve introspection annotations for delimiters on `g_strsplit_set()` + Basic support for building and running some functionality on tvOS and watchOS + Add `g_get_monotonic_time()` variant with nanosecond precision + Updated translations. - Update to version 2.87.2: + Add initial support for `GNotification` on Windows + glib-compile-resources: Incorrect compiler detection on Windows when building GTK causes a DoS + gio/unixmounts: use bsearch() to check for set inclusion + gdesktopappinfo: Fix -Wsign-conversion warnings + gobject: Fix -Wshorten-64-to-32 warnings and enable warning flag + gtestutils: Avoid pointless logging string handling in gtestutils + glib-unix: Implement g_unix_fd_query_path for Cygwin + gio: Fix some -Wsign-conversion warnings + gmodule: Enable -Wshorten-64-to-32 warnings for gmodule + Fixup unicode 17 -Changes from version 2.87.1: * Several low-risk CVE fixes * Respect `NO_COLOR` environment variable in log output * Update file system type lists to mark more file system types as system ones and to recognise `ntfs3` file systems + Add `G_GNUC_FLAG_ENUM` attribute to mark enums as flags + Add a static CRT constructor and fusion manifest XML for GLib utilities on Windows so that `stderr` can be unbuffered and streams are flushed on exit + Fix `G_FILE_MONITOR_WATCH_HARD_LINKS` on Windows - Changes from version 2.87.0: + Update to Unicode 17.0.0 (!4793, work by Peng Wu) + Support runtime extensions to `gdbus-codegen` tool to allow modifying its output in project-specific ways + Use document portal to open all the URIs for snaps + Add g_markup_parse_context_get_offset() API for getting error locations in XML files - GNOME/ptyxis#490 new tab does not open in current directory when hostname contains a period - hash resize broken for large sizes - g_filename_from_uri rejects valid host names according to RFC 1123 - !4793 gunicode: Update the code for Unicode 17.0.0 - !4807 Add missing "nullable" to parameter docs of GList/GSList - !4810 gutils: Mark load_user_special_dirs unlocked + Updated translations - Drop glib2-CVE-2026-0988.patch: fixed upstream. ==== glycin-loaders ==== Version update (2.0.8 -> 2.1.1) - BuildRequire pkgconfig(glycin-2) for all build modules except libglycin itself. Chain them properly behind each other. - Update to version 2.1.1: + Fixed: Bump gufo to 4.0.1. This fixes optaining key-value pairs potentially containing nul-characters, which is not allowed per PNG standard and can't be transmitted as String via D-Bus. - Migrate to xz compression and manual service run - Update to version 2.1.0: + Fixed: thumbnailer: Remove padding if stride is longer than row data, avoiding broken scaling. This manly affects AVIF and HEIC - Update to version 2.1.rc: + image-rs: Don't assume that JPEGs are in YCbCr encoded. Support grayscale and YCCK as well. ==== gnutls ==== - Fix build with libnettle 4.0: (bsc#1257934) * Support building with Nettle 4 [PR2075] * accelerated: don't register custom HMAC for AArch64 if Nettle 4 [PR2080] * Add patches: - gnutls-libnettle4-2075.patch - gnutls-libnettle4-2080.patch ==== gsettings-desktop-schemas ==== Version update (49.1 -> 50.0) - Migrate to xz compression and manual service run - Update to version 50.0: + Updated translations. - Update to version 50.rc: + Updated translations. - Update to version 50.beta: + Disable primary selection by default + Update deprecated terminal-exec key to xdg-terminal-exec changes + Updated translations. - Update to version 50.alpha: + Added accessibility setting for reduced motion + Added setting to specify the first week day + Added setting to enable session saving/restoring + Added setting to configure disable-while-typing for keyboards + Added configuration options for stylus eraser buttons. + Updated translations. ==== gstreamer ==== Version update (1.28.1 -> 1.28.2) Subpackages: libgstreamer-1_0-0 - Update to version 1.28.2: + Highlighted bugfixes in 1.28.2 - Various security fixes and playback fixes - audioencoder: allow change of channel configuration with avenc_aac - audioinvert: fix float format handling - h264parse, h265parse, baseparse: Preserve upstream buffer duration if possible - compositor: fix segfault with force-live=true and no sink pads (regression) - fallbacksrc: send select-streams event to collection source element directly - hlsdemux2: fix seekable range for live HLS streams - glupload: Fix linking glupload with restrictive caps filter - nvcodec: Add capability caching to speed up plugin initialization - RTP and RTCP packet handling fixes - RTSP server fixes for clean-up of timed out play requests - video-converter: fix I420/A420 BGRA/ARGB output on big-endian - qtdemux: fix invalid WebVTT timestamps, and other fixes - qmlgl6sink: Qt6GLVideoItem caps update handling fixes - threadshare udp sink and source fixes - transcriberbin and speechmatics text-to-speech fixes and improvements - videorate: Fix wrong caps in case of PTS going backward - vtdec: more Apple VideoToolbox decoder fixes - wavparse: Fix parsing of RF64 wave files - wasapi2sink: Ignore transient device errors from default device - waylandsink: various fixes and improvements - WebRTC DTLS robustness/stability improvements - Cerbero: Various inno Windows installer fixes and improvements; new 'gstreamer_bundle' wheels meta-package - Various bug fixes, build fixes, memory leak fixes, and other stability and reliability improvements + gstreamer: - bin: iterator is not nullable - registry: Skip .dSYM bundles when loading plugins, try 3 - baseparse: . Preserve upstream buffer duration if possible . Fix out_buffer leak in frame_free and missing ref in frame_copy - filesink: Fix wrong open() in overwrite mode - queue: Fix potential use-after-free in log function - GThreadFunc return type fixes - Strange File-sink-file-mode property value in filesink plugin ==== gstreamer-plugins-bad ==== Version update (1.28.1 -> 1.28.2) Subpackages: libgstphotography-1_0-0 libgstplay-1_0-0 - Add an explicit BuildRequires: pkgconfig(libvmaf) instead of relying on some other package to pull it. This fixes build in SLFO. - Fix suse_version check to enable faad codec only in TW since SLE 16 SP1 will use a suse_version value of 1610 - Update to version 1.28.2: + analytics: Set default pixel-aspect-ratio for inference elements + av1dec: Enable VIDEO_META and VIDEO_ALIGNMENT for pool + av1parse, vp9parse: Remove segment clipping to let downstream handle frame boundaries + av1parse: - Avoid signed 32 bit integer overflow and OOB reads when parsing LEB128 values - Split the alignment and stream type logic - Misc fixes 2 typo - Invalid assertion in gst_av1_parse_detect_stream_format() + dashsink: test: use playbin3 for DASH playback verification + decklinkvideosink: fix element leak in decklink callback + dtls: unregister signal handlers from connection + gdppay: Fix null pointer dereference on duplicated caps event + h264parse, h265parse: Preserve upstream buffer duration if possible + h264parser: - Fix memory leak in gst_h264_parser_parse_nal() - Avoid NULL pointer dereferences when freeing partially parsed SPS/MVC data + h264: Memory Leak in gst_h264_parser_parse_nal() + h266parser: Avoid integer overflow when parsing profile / tier / level + jp2kdecimator: Avoid integer overflows and divisions by zero on invalid tile configurations + mxfdemux: hardening + nice: Fix leak of webrtc libnice thread + nvcodec: Add capability caching to speed up plugin initialization + tsmux: Fix integer overflow in SCTE35 NULL interval + sctp: Set number of outgoing & incoming streams to the same value + shm: fix shmsink exit code 1 on clean shutdown + soundtouch: Only allow up to 192kHz and 16 channels + srtpenc: preserve ROC when master key is updated for an ongoing session + svtav1: fix "Level of parallelism" property type discrepencies + vkswapper/vksink: Don't advertise unsupported formats + vmncdec: Set cursormask to NULL to prevent double free + vtdec: - vp9 support is only enabled in first vtdec element - Do not hold the stream lock when pushing out frames - Prefer outputting VulkanImage instead of sysmem, fix some leaks, ensure vulkansink provides a window - Store supplemental codec support in a global variable - Supplemental VideoToolbox decoders now registered via vtutil helper - Handle decoder error status for iOS, vtenc: restart if VTCompressionSessionCompleteFrames fails + vulkan: Clear mutex when GstVulkanImageMemory is freed + vulkanvp9dec: Fix case in device-specific factory name + wasapi2: Log target device information + wasapi2sink: Ignore device errors from default device + wayland: display: Add protection when replacing wl_output + waylandsink: - Fix waylandsink crash when call window flush - Properly reset the tag orientation + wlwindow: fix viewport source outside buffer when play resolution change stream + Fix a couple of const correctness bugs around strchr() usage + GThreadFunc return type fixes + meson: Fix downloading MoltenVK SDK, make it work when meson-installed - Split out gstreamer-plugins-bad-extra sub-package, move mpeg2 encoder/plexer in its own sub-package. Gstreamer-plugins-libav provides the prefered software plugin. ==== gstreamer-plugins-base ==== Version update (1.28.1 -> 1.28.2) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 - Update to version 1.28.2: + GstAudio/VideoDecoder: Fix different seqnum for eos event error + gst-validate reports event::eos-has-wrong-seqnum in GstAudio/VideoDecoder + audioencoder: Remove fixed caps from srcpad + audio-resampler-neon: read array operand by hand to fix build errors with some armv7hf toolchains + audio-resampler: build error with some armv7hf toolchains: 'asm' operand has impossible constraints + compositor: move gst_compositor_init_blend() to element class_init + exiftag: - Add missing bounds check and integer overflow protections in various places - Ignore invalid fractions with numerator/denominator G_MININT - Unmap buffer if parsing a rational number gives a zero denominator + gl: upload: Fix linking glupload with restrictive caps filter + glupload: can't handle caps video/x-raw(memory:GLMemory) + glcolorconvert: Fix NULL pointer dereference on buffers without video meta + libs_gstglcolorconvert test failure in 1.28.1 + opusenc: - Use correct memcpy() size when copying Vorbis channel positions - Using invalid size for memcpy? + playback: Make sure to check for empty/any caps before getting the first structure + rtcp: Fix buffer overread in SDES packet parsing + rtpbuffer: Add validation for CSRC list length + rtsp: - gstrtspurl: Parse URL having user without password - Does not parse URL with user but no password as valid + subparse: - Avoid NULL-pointer dereferences in mdvdsub parsing code - Fix integer overflow when calculating qttext timestamp - Replace regex string matching / replacing with plain C string parsing + typefindfunctions: Avoid signed 32 bit integer overflow and OOB reads when parsing LEB128 values + video-converter: fix I420/A420 BGRA/ARGB output on big-endian + video: fix too small default stride for UYVP with odd widths + videorate: Fix unrestored caps on backward PTS + GThreadFunc return type fixes - Split put new gstreamer-plugins-base-extra sub-package. ==== gvfs ==== Version update (1.58.2 -> 1.60.0) Subpackages: gvfs-backends - Drop google conditional and pkgconfig(libgdata), no longer supported. - Migrate to xz compression and manual service run - Update to version 1.60.0: + CVE-2026-28296: ftp: Reject paths with CR/LF in g_vfs_ftp_file_new_from_ftp + monitor: Do not load monitors when GIO_USE_VFS=local ==== harfbuzz ==== Version update (12.3.2 -> 14.1.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - Disable the new libharfbuzz-gpu demo-tool behind a bcond (with gpu). Building this leads to a build-cycle unfortunately. - Update to version 14.1.0: + GPU library improvements: - Add anti-aliased rendering for small sizes. - Store font scale in blob header. - Port scale/ppem support to MSL, WGSL, and HLSL shaders. - Fix contour breaks and bounds quantization in encode. - Fix garbled rendering after font change in web demo. + Various robustness fixes. + Various fuzzing fixes for harfbuzz-raster, harfbuzz-gpu and harfbuzz-vector libraries. + Move HB_NO_CFF from HB_LEAN to HB_NO_DRAW closure, and fix HB_TINY build. - Changes from version 14.0.0: + New libharfbuzz-gpu library: GPU text rasterization based on the Slug algorithm by Eric Lengyel. Encodes glyph outlines on the CPU into compact blobs that the GPU decodes and rasterizes directly in the fragment shader, with no intermediate bitmap atlas. + Shader sources provided in GLSL, WGSL, MSL, and HLSL. + New hb-gpu installed utility for interactive GPU text rendering. + Live web demo: https://harfbuzz.github.io/hb-gpu-demo/ + New harfbuzz-world.cc amalgamated source for building a subset of all HarfBuzz libraries into one compilation unit, driven by a custom hb-features.h. + Updated README with libraries overview and project description. + Various bug fixes. - Add pkgconfig(glew) and pkgconfig(glfw3) BuildRequires: New dependencies. - Add new sub-package libharfbuzz-gpu0 following upstream changes. - Update to version 13.2.1: + Fix regression in tracing messages from previous release. - Changes from version 13.2.0: + Fix hb-view glyph positioning with --glyphs input from hb-shape - -ned. + Various fuzzing fixes for harfbuzz-subset, harfbuzz-raster and harfbuzz-vector libraries. + Various improvements to tracing messages. + Various documentation improvements. - Migrate to xz compression and manual service run - Update to version 13.1.1: + Support gzip-compressed SVG glyphs in harfbuzz-raster and harfbuzz-vector libraries. This new functionality requires zlib, and will not be available if HarfBuzz is built without zlib. + Improve handling of SVG glyphs in harfbuzz-raster and harfbuzz-vector libraries. + Further harden application of stch feature against malicious fonts. + Various fuzzing fixes. + Various build fixes: - Add missing chafa dependency to hb-raster utility, and remove accidental cairo dependency. - Don’t build raster and vector fuzzers if the library is disabled. - Add meson options for enabling / disabling libpng and zlib. - Support building harfbuzz-raster and harfbuzz-vector libraries with CMake. - Add new optional pkgconfig(zlib) BuildRequires. - Update to version 13.1.0: + The harfbuzz-raster library can now render bitmap color glyph formats (CBDT and sbix). It now also has an API to serialize / deserialize images to and from PNGs. This new functionality requires libpng, and will not be available if HarfBuzz is built without libpng. + Install hb-raster command line utility. + Fix overflow when applying stch feature with malicious fonts. + Fix memory leaks in harfbuzz-raster and harfbuzz-vector in error conditions, as well as more robust handling of allocation failures. + Various documentation improvements and build fixes. - Build the new optional libpng support, add pkgconfig(libpng) BuildRequires. - Update to version 13.0.1: + Bug fixes in rendering COLR v1 fonts. + Various build fixes. - Update to version 13.0.0: + New experimental drawing and rendering libraries: - New public hb-vector API for vector output of glyph outlines. The only supported output format currently is SVG. - The new API is available in a separate harfbuzz-vector library. - New public hb-raster API for rasterizing glyphs to A8 / BGRA32 images. - The new API is available in a separate harfbuzz-raster library. - Both APIs are still experimental and subject to change. - Both libraries support monochrome as well as vector color glyph formats (COLR v0, v1, and SVG). - Additionally, hb-vector supports also bitmap color glyph formats (CBDT and sbix). - New command line utilities to accompany the new APIs: hb-vector and hb-raster. They share many of the same options as hb-view. + New subset flag HB_SUBSET_FLAGS_DOWNGRADE_CFF2 to convert instantiated CFF2 table to CFF . This options will desubroutinize CFF2 table and convert it to CID-keyed CFF table. This is useful for compatibility with older renderers ... changelog too long, skipping 18 lines ... following upstream changes. ==== health-checker ==== Version update (1.13+git20251219.f90f390 -> 1.13+git20260414.bb3e4ad) Subpackages: health-checker-plugins-MicroOS - Update to version 1.13+git20260414.bb3e4ad: * Update configure.ac with autoupdate * Remove dependencies on cloud-init [bsc#1244078] and for removed plugins ==== iproute2 ==== Version update (6.19 -> 7.0) - Update to release 7.0 * iplink_can: add initial CAN XL support * dpll: add mode setting support * dpll: add support for fractional frequency offset in ppt ==== kaccounts-integration ==== Version update (25.12.3 -> 26.04.0) Subpackages: libkaccounts6-2 - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - No code change since 25.12.3 ==== kaccounts-providers ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - No code change since 25.12.3 ==== kactivitymanagerd6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kate ==== Version update (25.12.3 -> 26.04.0) Subpackages: kate-plugins - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - Changes since 26.03.90: * build plugin: disallow closing first 2 tabs * fix tab middle click to close with Qt >= 6.11 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Too many changes since 25.12.3, only listing bugfixes: * Fix crash in external tools plugin (kde#517045) * addons/project: update open tabs when renaming (kde#516105) * addons/search: add a way to clear the history (kde#503327) * Fix view-less doc viewspace check (kde#515809) * Fix word select+move shortcut conflict on macos (kde#512817) * be consistent: we add the . later (kde#512111) * Only append child's children if there's something to append (kde#513758) * addons/project: allow D&D to move files (kde#479862) * fix delete of last file open in editor (kde#513649) * make the files relative to current dir (kde#512981) * addons/project: allow deleting folders (kde#487775) * Fix reading search highlight color (kde#512537) ==== kde-cli-tools6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kde-gtk-config6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: kde-gtk-config6-gtk3 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kdecoration6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libkdecorations3-6 libkdecorations3private2 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kdegraphics-mobipocket ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * Return at the end of main() * Use QTextStream instead of qDebug() ==== kdegraphics-thumbnailers ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - Changes since 26.03.90: * Fix off by one access * Fix invalid memory access * Fix memory leak - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * Tweak the defensive check in dsc_scan_data * blender thumbnailer: Bail out if we did not read the amount of data we expected * ps thumbnailer: Allocating a string of negative lenth makes no sense * ps: Fix crash on malformed files * Fix crash on malformed files * Fix crash on broken files * blender: Fix multiplication overflow ending up in crash * Fix OSS-Fuzz AFL builds ==== kdeplasma6-addons ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * Disable qmllint for weather applet * applets/weather: improve keyboard navigation ==== kdialog ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: ==== kdump ==== Version update (2.1.8 -> 2.1.9) - upgrade to version 2.1.9 * fix syntax in sysconfig * drop quiet from commandline when KDUMP_VERBOSE=8 - update calibrate values ==== kernel-firmware-amdgpu ==== Version update (20260327 -> 20260414) - Update to version 20260414 (git commit f48f551a902b): * firmware/amdgpu: Update DMCUB fw to Release 0.1.55.0 - Update to version 20260410 (git commit dc85ccedc9c9): * amdgpu: Revert Yellow Carp DMUB fw to 0x4000045 ==== kernel-firmware-bluetooth ==== Version update (20260327 -> 20260408) - Update to version 20260408 (git commit e9cae76da758): * Revert "rtl_bt: Update RTL8822C BT USB and UART firmware to 0x0673" ==== kernel-firmware-i915 ==== Version update (20260402 -> 20260416) - Update to version 20260416 (git commit a2f5a2941878): * i915: Xe3LPD DMC v2.34 * i915: Xe3LPD_3002 DMC v2.29 ==== kernel-firmware-intel ==== Version update (20260331 -> 20260408) - Update aliases from 7.0 - Update to version 20260408 (git commit e9cae76da758): * WHENCE: Fix ISH firmware symlink prefix for Lenovo PTL systems * intel_vpu: Update NPU firmware ==== kernel-firmware-media ==== Version update (20260331 -> 20260414) - Update to version 20260414 (git commit f48f551a902b): * mediatek: vpu: drop old sym link ==== kernel-firmware-nvidia ==== Version update (20251018 -> 20260408) - Update to version 20260408 (git commit e9cae76da758): * nvidia: add acr/bl symlink for booting GSP-RM on GA100 ==== kernel-firmware-platform ==== Version update (20260305 -> 20260416) - Update to version 20260416 (git commit a2f5a2941878): * powervr: update Imagination Rogue firmware images ==== kernel-firmware-qcom ==== Version update (20260402 -> 20260416) - Update to version 20260416 (git commit a2f5a2941878): * qcom: Update ADSP firmware for Kaanapali platform - Update to version 20260414 (git commit f48f551a902b): * qcom: Update ADSP firmware for QCM6490 platform - Update to version 20260408 (git commit e9cae76da758): * qcom: add QUPv3 firmware for shikra ==== kernel-firmware-realtek ==== - Update aliases from 7.0 ==== kernel-firmware-serial ==== - Update aliases from 7.0 ==== kernel-firmware-sound ==== Version update (20260331 -> 20260408) - Update to version 20260408 (git commit e9cae76da758): * linux-firmware: qcom: sync audioreach firmwares from v1.0.3 build * qcom: consolidate audioreach-tplg firmwares into one location in WHENCE ==== kernel-source ==== Version update (6.19.11 -> 6.19.12) Subpackages: kernel-64kb kernel-default - usb: typec: ucsi: skip connector validation before init (git-fixes). - commit c7234f7 - Linux 6.19.12 (bsc#1012628). - drm/amd/pm: disable OD_FAN_CURVE if temp or pwm range invalid for smu v13 (bsc#1012628). - net: correctly handle tunneled traffic on IPV6_CSUM GSO fallback (bsc#1012628). - net: mana: fix use-after-free in add_adev() error path (bsc#1012628). - scsi: target: file: Use kzalloc_flex for aio_cmd (bsc#1012628). - scsi: target: tcm_loop: Drain commands in target_reset handler (bsc#1012628). - xfs: only assert new size for datafork during truncate extents (bsc#1012628). - xfs: factor out xfs_attr3_node_entry_remove (bsc#1012628). - xfs: factor out xfs_attr3_leaf_init (bsc#1012628). - xfs: close crash window in attr dabtree inactivation (bsc#1012628). - arm64/scs: Fix handling of advance_loc4 (bsc#1012628). - HID: logitech-hidpp: Enable MX Master 4 over bluetooth (bsc#1012628). - wifi: mac80211: check tdls flag in ieee80211_tdls_oper (bsc#1012628). - HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (bsc#1012628). - atm: lec: fix use-after-free in sock_def_readable() (bsc#1012628). - btrfs: don't take device_list_mutex when querying zone info (bsc#1012628). - tg3: replace placeholder MAC address with device property (bsc#1012628). - objtool: Fix Clang jump table detection (bsc#1012628). - HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1012628). - HID: core: Mitigate potential OOB by removing bogus memset() (bsc#1012628). - objtool/klp: fix mkstemp() failure with long paths (bsc#1012628). - HID: multitouch: Check to ensure report responses match the request (bsc#1012628). - btrfs: reserve enough transaction items for qgroup ioctls (bsc#1012628). - i2c: tegra: Don't mark devices with pins as IRQ safe (bsc#1012628). - btrfs: reject root items with drop_progress and zero drop_level (bsc#1012628). - drm/amd/display: Fix gamma 2.2 colorop TFs (bsc#1012628). - smb: client: fix generic/694 due to wrong ->i_blocks (bsc#1012628). - spi: geni-qcom: Check DMA interrupts early in ISR (bsc#1012628). - mshv: Fix error handling in mshv_region_pin (bsc#1012628). - dt-bindings: auxdisplay: ht16k33: Use unevaluatedProperties to fix common property warning (bsc#1012628). - wifi: iwlwifi: mld: Fix MLO scan timing (bsc#1012628). - wifi: iwlwifi: mvm: don't send a 6E related command when not supported (bsc#1012628). - wifi: iwlwifi: mld: correctly set wifi generation data (bsc#1012628). - wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (bsc#1012628). - cgroup: Wait for dying tasks to leave on rmdir (bsc#1012628). - selftests/cgroup: Don't require synchronous populated update on task exit (bsc#1012628). - cgroup: Fix cgroup_drain_dying() testing the wrong condition (bsc#1012628). - crypto: caam - fix DMA corruption on long hmac keys (bsc#1012628). - crypto: caam - fix overflow on long hmac keys (bsc#1012628). - crypto: deflate - fix spurious -ENOSPC (bsc#1012628). - crypto: af-alg - fix NULL pointer dereference in scatterwalk (bsc#1012628). - mpls: add seqcount to protect the platform_label{,s} pair (bsc#1012628). - net: mana: Fix RX skb truesize accounting (bsc#1012628). - netdevsim: fix build if SKB_EXTENSIONS=n (bsc#1012628). - net: fec: fix the PTP periodic output sysfs interface (bsc#1012628). - net: enetc: reset PIR and CIR if they are not equal when initializing TX ring (bsc#1012628). - net: enetc: add graceful stop to safely reinitialize the TX Ring (bsc#1012628). - net: enetc: do not access non-existent registers on pseudo MAC (bsc#1012628). - net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak (bsc#1012628). - net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak (bsc#1012628). - iommupt/amdv1: mark amdv1pt_install_leaf_entry as __always_inline (bsc#1012628). - net/ipv6: ioam6: prevent schema length wraparound in trace fill (bsc#1012628). - tg3: Fix race for querying speed/duplex (bsc#1012628). - net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch (bsc#1012628). - ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() (bsc#1012628). - ip6_tunnel: clear skb2->cb[] in ip4ip6_err() (bsc#1012628). ... changelog too long, skipping 476 lines ... - commit 1b7d8a2 ==== kf6-attica ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Attica6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-baloo ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-baloo-file kf6-baloo-imports kf6-baloo-kioslaves libKF6Baloo6 libKF6BalooEngine6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Fix remaining QFile::open nodiscard warnings * [FileIndexerConfigUtils] Fix a nodiscard warning in fixture setup * [FileIndexerConfigUtils] Remove unneeded QTextStream * [FileIndexerConfigTest] Get rid of an almost duplicate helper function * [FileIndexerConfigTest] Reduce repetitions/manual expansion * [FileIndexerConfigTest] Reduce string puzzles to improve readability * [FileIndexerConfigTest] Move single-use strings out of header file * [DocumentUrlDBTest] Remove unused helper function * [ExtractorProcess] Verify transaction was sucessfully created * Tell the compiler QFile::open(fd, ...) can not fail for STDIN * [Query] Use explicit percent-encoding for title and json data * [QuerySerializationTest] Extend test coverage for disallowed characters * [QuerySerializationTest] Cover fromSearchUrl/toSearchUrl methods * [QuerySerializationTest] Make JSON roundtrip test data driven * Update version to 6.25.0 ==== kf6-bluez-qt ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-bluez-qt-imports libKF6BluezQt6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-breeze-icons ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6BreezeIcons6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Duplicate kdesrc-build icon as kde-builder icon * Remove duplicate/bogous style sheets * Remove unused path in im-invisible-user.svg that breaks webfont on MacOS * Add data-question status icon similar to other data-* status icons * Add nicer 16x16 variant of dialog-question * Add keyframe-warn * Resize kmouth, konversation, and kde-im-log-viewer to same height * Add icon for conic gradients * Add mask action icons * Update version to 6.25.0 ==== kf6-frameworkintegration ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-frameworkintegration-plugin libKF6Style6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-karchive ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Archive6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Fix int overflow + QList assert on broken files * Generate a pkgconfig file * Update version to 6.25.0 ==== kf6-kauth ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6AuthCore6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kbookmarks ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Bookmarks6 libKF6BookmarksWidgets6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kcmutils ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kcmutils-imports libKF6KCMUtils6 libKF6KCMUtilsCore6 libKF6KCMUtilsQuick6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Revert "Enable LSAN in CI" * Update version to 6.25.0 ==== kf6-kcodecs ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Codecs6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * We depend against qt 6.8 => we can remove check here * Propagate C++20 requirement to consumers * [KEncodingProber] Remove unused/unreachable Reset() method * [KEncodingProber] Use in-class initialization for prober members * [Codec] Default constructors/destructors, annotate as constexpr * [Codec] Simplify codecForName lookup * [Codec] Benchmark codecForName lookup * [Codec] Move test class declaration to implementation file * [Codec] Remove double quote for invalid codec warning * [KCharsets] Simplify instance singleton * [KCharsets] Reuse translated strings from encodingsByScript * [KCharsets] Fix possible initialization race for encodingsByScript * [KCharsets] Remove unused include * [KCharsetsTest] Reduce call nesting to improve readability * Update version to 6.25.0 ==== kf6-kcolorscheme ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6ColorScheme6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kcompletion ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Completion6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kconfig ==== Version update (6.24.0 -> 6.25.0) Subpackages: kconf_update6 kf6-kconfig-imports libKF6ConfigCore6 libKF6ConfigGui6 libKF6ConfigQml6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * kreadconfig: Add flag to include globals * kdesktopfile: tolerate nameless action for _SEPARATOR_ (kde#517770) * Remove ifdef now that we depend on Qt >= 6.9.0 * QDoc fixes * kreadconfig: Add flag to dump all entries * Do not try to read registry entries for absolute config file names * Avoid creation of not already existing registry keys * Update version to 6.25.0 ==== kf6-kconfigwidgets ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6ConfigWidgets6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kcontacts ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Contacts6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kcoreaddons ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kcoreaddons-imports libKF6CoreAddons6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Remove control characters when quoting args * Update dependency version to 6.25.0 * Remove unused cmake variable * Update version to 6.25.0 ==== kf6-kcrash ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Crash6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kdbusaddons ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kdbusaddons-tools libKF6DBusAddons6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kdeclarative ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kdeclarative-imports libKF6CalendarEvents6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kded ==== Version update (6.24.0 -> 6.25.0) - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kdesu ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Su6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kdnssd ==== Version update (6.24.0 -> 6.25.0) - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kdoctools ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6DocTools6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * dynamically retrieve the list of languages to install * Install arabic files * Update version to 6.25.0 ==== kf6-kfilemetadata ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6FileMetaData3 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * ExtractionPluginManager -> ExtractorCollection * ffmpeg: use qScopeGuard to release AVFormatContext on failure * extractors/exiv2: remove version check for BMFF_SUPPORT * ffmpegextractor: when color_space_name is "unkwown" don't set ColorSpace * Update version to 6.25.0 ==== kf6-kglobalaccel ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6GlobalAccel6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kguiaddons ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kguiaddons-imports libKF6GuiAddons6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * waylandclipboard: Wait for up to 1s for the clipboard contents * waylandclipboard: Properly interrupt thread when client extension goes inactive * Remove ifdef now that we depend on Qt >= 6.9.0 * Change include in ksysteminhibitor_dbus.cpp preventing building when using a QT version < 6.9. * systemclipboard: waylandApp ptr validation cleanup * systemclipboard/wlrwaylandclipboard: Fix WlrDataControlDevice::setPrimarySelection * Update version to 6.25.0 ==== kf6-kholidays ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kholidays-imports libKF6Holidays6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update holidays of 2026 for Taiwan. * CI - add pre-commit support * Use markdownlint-cli2 to format markdown files * Use gersemi to format CMake files * .codespellrc - allow "lightening" * clang-format fixes * clean whitespace issues * Edit portuguese holidays * Update version to 6.25.0 ==== kf6-ki18n ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-ki18n-imports libKF6I18n6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kiconthemes ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kiconthemes-imports libKF6IconThemes6 libKF6IconWidgets6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Explain why SVG preference was reverted * Don't try to create KIconTheme with empty theme name * Revert "KIconTheme: Prefer SVG files over PNG files" (kde#516007) * Update version to 6.25.0 ==== kf6-kidletime ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kidletime-plugins libKF6IdleTime6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kimageformats ==== Version update (6.24.0 -> 6.25.0) - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * TIM: PlayStation graphics read only support * Remove ifdef now that we depend on Qt >= 6.9.0 * IFF: fix Integer-overflow in IDATChunk::strideSize * Update version to 6.25.0 ==== kf6-kio ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6KIO6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Too many changes since 6.24.0, only listing bugfixes: * Revert "KFileItem: use permissions to determine isWritable and isReadable" (kde#504287) * Fix protocol in "Destination" header for WebDAV copy/move. (kde#487503) * filepreviewjob: Track subjobs using QPointer (kde#517867) * gui/filepreviewjob: avoid a crash when temp is removed (kde#516575) * kurlnavigator: Change fallback behaviour for user input url (kde#408315) ==== kf6-kirigami ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kirigami-imports libKirigamiPlatform6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Disable Alpine CI * Disable qmllint for some modules * PageRow: don't leak the dialog layer window * Fix AboutPage license sheet * Remove duplicate FeatureSummary include * Don't include quiet packages in feature_summary * TitleSubtitle: Add tweakable textFormat property * platform: Prefer filesystem over qrc when determining install root * LinkButton: Create template, move items from control to template * Update version to 6.25.0 ==== kf6-kitemmodels ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kitemmodels-imports libKF6ItemModels6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Remove unused cmake variables * Update version to 6.25.0 ==== kf6-kitemviews ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6ItemViews6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kjobwidgets ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6JobWidgets6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-knewstuff ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-knewstuff-imports libKF6NewStuffCore6 libKF6NewStuffWidgets6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Use KF6Kirigami, fix cmake variable use KF_DEP_VERSION * Update version to 6.25.0 ==== kf6-knotifications ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-knotifications-imports libKF6Notifications6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-knotifyconfig ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6NotifyConfig6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kpackage ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Package6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kparts ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Parts6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kpty ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Pty6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kquickcharts ==== Version update (6.24.0 -> 6.25.0) - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-krunner ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Runner6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Fix cmake warnings (use correct Qt version) * Update version to 6.25.0 ==== kf6-kservice ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Service6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Bump sycoca version after changing the hash * Extract to variable * Fix a typo in the bitmask used in the hash * Update version to 6.25.0 ==== kf6-kstatusnotifieritem ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6StatusNotifierItem6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Don't include quiet packages in feature_summary * Update version to 6.25.0 ==== kf6-ksvg ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-ksvg-imports libKF6Svg6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Add basic test for Svg * Update version to 6.25.0 ==== kf6-ktexteditor ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6TextEditor6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * don't do reverse encoding if the target is the null char * KTextEditor::DocumentPrivate constructor does the register * katedocument: Use first line of text as document title * katedocument: Add relevant MIME types to Save dialog * Remove cmake warning * Update MiniMap Area (kde#516653) * Update version to 6.25.0 ==== kf6-ktextwidgets ==== Version update (6.24.0 -> 6.25.0) - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-kunitconversion ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6UnitConversion6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Add missing since documentation to Momme * Add conversions to/from momme for silk fabric weight * Update version to 6.25.0 ==== kf6-kuserfeedback ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kuserfeedback-imports libKF6UserFeedbackCore6 libKF6UserFeedbackWidgets6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * We depend against qt6 * Fix some cmake warnings * Update version to 6.25.0 ==== kf6-kwallet ==== Version update (6.24.0 -> 6.25.0) Subpackages: kwalletd6 libKF6Wallet6 libKF6WalletBackend6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Fix find_package calls when not building kwalletd and ksecretd * Hardcode one short DH key instead of brute-forcing one * ksecretd: fix intermittent Secret Service session key mismatches with libsecret (kde#514194) * Update version to 6.25.0 ==== kf6-kwidgetsaddons ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6WidgetsAddons6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * KMessageBox: Set very long lines to wrap, even on very wide screens * KAccelatorManager: Avoid unnecessary allocations * Add test for resizing dialogs with squeezed messages * Re-enable logic to allow resizing of some KMessageBox dialogs * Update version to 6.25.0 ==== kf6-kwindowsystem ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-kwindowsystem-imports libKF6WindowSystem6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * kxcbevent_p.h: FWD KXcbEvent as class instead of struct * Add missing Q_EMIT to signal call * platforms/wayland: Fix a crash in WindowEffects::installBlur() * Update version to 6.25.0 ==== kf6-kxmlgui ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6XmlGui6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * KKeySequenceWidget: Add text to clear button * Update version to 6.25.0 ==== kf6-modemmanager-qt ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6ModemManagerQt6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Fix version guards * Update version to 6.25.0 ==== kf6-networkmanager-qt ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-networkmanager-qt-imports libKF6NetworkManagerQt6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Fix cmake warnings * Update version to 6.25.0 ==== kf6-prison ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-prison-imports libKF6Prison6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-purpose ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-purpose-services libKF6Purpose6 libKF6PurposeWidgets6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-qqc2-desktop-style ==== Version update (6.24.0 -> 6.25.0) - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * SpinBox: Use displayText for display text * Popup: remove default contentItem * Popup: don't clip by default * Update version to 6.25.0 ==== kf6-solid ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Solid6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * fstab: Use qCCritical instead of qCritical * Update version to 6.25.0 ==== kf6-sonnet ==== Version update (6.24.0 -> 6.25.0) Subpackages: kf6-sonnet-imports libKF6SonnetCore6 libKF6SonnetUi6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Remove seemingly useless text position check * Update version to 6.25.0 ==== kf6-syndication ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6Syndication6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Update version to 6.25.0 ==== kf6-syntax-highlighting ==== Version update (6.24.0 -> 6.25.0) Subpackages: libKF6SyntaxHighlighting6 - Update to 6.25.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.25.0 - Changes since 6.24.0: * Update dependency version to 6.25.0 * Add highlighting for ISO 10303-21 STEP files * cmake.xml: update syntax for CMake 4.3 * adapt XSD and code to docs (kde#517428) * fix reading of spellchecking element to match XSD (kde#517428) * Add license * Add PIO Assembler syntax highlighting * Add autotest reference file * Add syntax file and tests for SAS * systemd unit: update to systemd v260 * Update version to 6.25.0 ==== kgamma6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kglobalacceld6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libKGlobalAccelD6-0 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kinfocenter6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kio-extras ==== Version update (25.12.3 -> 26.04.0) Subpackages: libkioarchive6-6 trash_kcm - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Too many changes since 25.12.3, only listing bugfixes: * sftp: Fix detection of empty permissions (kde#498888) * man2html: Fix calculating rowspan (kde#509901) ==== kio-gdrive ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * documentation.yml is no more needed ==== kmenuedit6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== knighttime6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libKNightTime0 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== konsole ==== Version update (25.12.3 -> 26.04.0) Subpackages: konsole-part - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Too many changes since 25.12.3, only listing bugfixes: * Add commandline arguments to show/hide toolbars (kde#510472) * Fix spurious home directory replacement in window title (kde#513684) * Fix context menu event handling (kde#512130) * Remove extra character and nulls in HTML export for lines with CJK (kde#511323) ==== kpipewire6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: kpipewire6-imports libKPipeWire6 libKPipeWireDmaBuf6 libKPipeWireRecord6 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * recording: Disable frame repeat timer for recording to file (kde#518009) * libx264: Use CRF instead of global_quality for constant-quality encoding (kde#518009) ==== kpmcore ==== Version update (25.12.3 -> 26.04.0) Subpackages: libkpmcore13 - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * partitionalignment: Fix division by zero crash in PartitionAlignment::sectorAlignment * Change place of --size option in cryptsetup resize command to match manpage. ==== kscreen6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kscreenlocker6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libKScreenLocker6 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== ksshaskpass6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 - Move to /usr/bin, with compat symlink in the libexec/ssh location ==== ksystemstats6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kwalletmanager ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * Set a sensible default window size on first launch * documentation.yml is no more needed * manager: Drop old icons ==== kwayland-integration6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kwayland6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libKWaylandClient6 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== kwin6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libkwin6 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * ci: Disable qt dev pipeline for now * ci: Adjust the minimal build pipeline to new CI image names * main_wayland: prevent stale config values from causing wrong Xwayland scaling * plugins/blur: make the scene responsible for expanding repaint regions (kde#515568) * wayland: Fix scaled pointer position when focused client gets a pointer * Manage text input v3 object client state in a per-client fashion. * autotests/integration: Test server-side key repeat with Bounce Keys * autotests/integration: add a test for server side key repeat * plugins/bouncekeys: Let key repeat events through the filter (kde#513268) * backends/drm: disable drm color pipelines on AMD * plugins/startupfeedback: Get rid of intermediate QImage in scalePixmap() * plugins/startupfeedback: Remove unnecessary image format conversion * plugins/startupfeedback: Make scaled pixmap use ARGB32_Premultiplied format * plugins/startupfeedback: Fix pixelated icons (kde#489403) * effects/wobblywindows: Fix blur flickering after wobble (kde#474196) * scene/workspacescene: fix direct scanout with overlay items on other screens (kde#516808) * A11yKeyboardMonitor: Don't crash when XKB state is null (kde#517711) - Drop patches, now upstream: * 0001-backends-drm-disable-drm-color-pipelines-on-AMD.patch ==== layer-shell-qt6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libLayerShellQtInterface6 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * Fix spectacle crash ==== lcms2 ==== Version update (2.17 -> 2.18) - Update to version 2.18 * Fix a signed integer overflow which could trigger a FPE_INTOVF. * Added documentation for PCS illuminants and chromatic adaptation. * Check for a possible out-of-bounds in softproofing transforms when using cmsCreateExtendedTransform * Fix for a out-of-bound read, issue #522. * Add an extra check for out-of-bounds read when misusing a support function. * avoid divide by zero, special case from spec. notes on CAM02. * Fix CGATS parser bug when number has a "+" sign. * Fix a typo when handling a special case for BPC. * Fixed a loss of precision when Lab16 is used as input color space on integer transforms. * Fixes hypotetical corrupted pointer in non-happy path. Cannot happen in real world. * Fix a theoretical memory leak. * Mark some tables as const. * Make the param of cmsCreateLab4Profile() to refer to the media white instead of the illuminant. * fix a warning in unit tests. * Remove redundant check. Fixes #497. * Update autotools. * fix plugins soname + add oklab to transicc (experimental). * meson: ability to disable .so.version libraries. * Fix black point detection when using darker colorant.. * testcms2.c: Fix incorrect string comparisons. * Fix CICp tag size.. * Fix broken linkicc. * Add a guard against a wrong use of flags. * Fix for #469 heap buffer overflow on convert_utf16_to_utf32(). - Use %ldconfig_scriptlets macro ==== leancrypto ==== Version update (1.6.0 -> 1.7.2) - Update to 1.7.2: * Fix RDSEED counter * Process code by AI code checkers and apply suggested cosmetic fixes * Heap memory: always munlock all mlock'ed memory * Fix ChaCha20 on Apple compiled with XCode 26.4 * Fix a potential crasher with Base64 and applied various fixes reported * Add X.509 certificate signing request (CSR) generator and parser * ML-DSA: add lc_dilithium_pk_from_sk API to derive the PK from a given SK * SLH-DSA: add lc_sphincs_pk_from_sk API to derive the PK from a given SK * ML-KEM: add lc_kyber_pk_from_sk API to derive the PK from a given SK * AES-CT: fix non-aligned data processing - reported * Apply suggestions from Claude code * X.509: Enforce path length restriction - Update to 1.7.1 * Offer a means to select the AES-C constant time / S-Box implementation via lc_init API * use the AES-C constant time implementation by default - it is about 3 times slower than the AES-C S-Box implementation, but more secure. As the leancrypto library is about secure by default, the CT implementation is just right. Furthermore, if a caller wants to have the faster AES-C S-Box, he can call lc_init(LC_INIT_AES_SBOX) at the beginning. * CVE-2026-34610: X.509: fix security issue (bsc#1261382) * FIPS: mark only seeded DRBG instances as FIPS-approved * ASN.1: add lc_x509_cert_check_issuer_ca convenience function * Enable side-channel-resistant AES implementation (and thus enable respective Timecop tests) * Fix some side channel test failures (all failures are due to test case issues, and no real problems) * AARCH64: enable GCS support (see https://community.arm.com/arm-community-blogs/b/tools-software-ides-blog/posts/gcc-15-continuously-improving#guarded and https://docs.kernel.org/next/arch/arm64/gcs.html) * Add PKCS#8 support for ML-DSA following RFC9881 including full support for the seed or full keys. The change adds OpenSSL interoperability testing as well. NOTE: The raw on-disk private key format that is generated with lc_x509_generate --create-keypair changed to comply with RFC9881. * Add PKCS#8 support for SLH-DSA. The change adds OpenSSL interoperability testing as well. NOTE: The raw on-disk private key format that is generated with lc_x509_generate --create-keypair changed to dump the raw key instead of wrapping it into a BIT STRING to comply with OpenSSL's format. * Provide full PKCS#7 interoperability with OpenSSL: OpenSSL artificially orders the parsing of the authenticated attributes. This implies that the message digest part of the authenticated attributes is parsed as last entry. This ordering is important for the signature generation and verification. Furthermore, for ML-DSA/SLH-DSA, the authenticated attributes are signed with the pure algorithm instead of the pre-hashed operation as suggested by RFC5652 section 9.2. * ML-KEM/DSA: add safety measures against compilers trying to reason about code they should not reason about. Derived from https://github.com/pq-code-package/ml[dsa|kem]-native/ * ML-DSA: reduce amount of duplicate code compilation suggested * ML-DSA: fix bug in poly_uniform which, however, is unlikely to be triggered * ChaCha20: fix crasher when assembler support is not compiled * Add AES constant time C implementation accessible with the lc_aes_*ct references. Yet, it is about 3 times slower than the default C implementation. Thus is is only provided if somebody truly relies on a constant time implementation. - Patches are merged upstream: * Drop fe9751f2.patch * Drop leancrypto_avx_detect1.patch * Drop leancrypto_avx_detect2.patch * Drop 0469d92f.patch - For full changelog, see: https://github.com/smuellerDD/leancrypto/releases/tag/v1.7.0 https://github.com/smuellerDD/leancrypto/releases/tag/v1.7.1 ==== libarchive ==== Version update (3.8.5 -> 3.8.7) - Update to 3.8.7: * CAB: fix NULL pointer dereference during skip (#2900) * CAB: Fix Heap OOB Write in CAB LZX decoder (#2919) * cpio: various fixes and improvements (#2899, #2908, #2910, #2939) * contrib/untar: fix out-of-bounds read (#2903) * iso9660: fix undefined behavior (#2897) * iso9660: fix posibble heap buffer overflow on 32-bit systems (#2934) * libarchive: fix handling of option failures (#2871) * libarchive: do not continue with truncated numbers (#2911) * libarchive: lzop and grzip filter support (#2947) * RAR: fix LZSS window size mismatch after PPMd block (#2898) - Added add-missing-tests.patch: the distributed tarball is missing a test file, add it back - Removed libarchive-3.8.6-add-missing-test.patch - update to 3.8.6: * fix incompatibility with Nettle 4.x (boo#1257934) * fix NULL pointer dereference in archive_acl_from_text_w() (boo#1260998) * bsdunzip: fix ISO week year and Gregorian year confusion * 7zip: fix SEGV in check_7zip_header_in_sfx via ELF offset validation (boo#1260999) * 7zip: fix out-of-bounds access on ELF 64-bit header (boo#1261000) * RAR5 reader: fix infinite loop in rar5 decompression (boo#1261001) * RAR5 reader: fix potential memory leak (boo#1261002) * RAR5: fix SIGSEGV when archive_read_support_format_rar5 is called twice * CAB reader: fix memory leak on repeated calls to archive_read_support_format_cab * mtree reader: Fix file descriptor leak in mtree parser cleanup (boo#1261003) * various small bugfixes in code and documentation - the distributed tarball is missing a test file, add it back add libarchive-3.8.6-add-missing-test.patch ==== libcap ==== Version update (2.75 -> 2.78) - updated to 2.78 - Fix a potential TOCTOU race condition in cap_set_file(). (CVE-2026-4878 bsc#1261809). - Fix a typo in a capset error (reported and fixed by Edward Nolan). - updated to 2.77 - Fix mistakes in setcap for reporting errors: report them with the appropriate filename. - Fix bug in cap.GetIAB() - Improve libcap managed memory allocation and support CHERI RISC-V. - Add C++ support to the run a .so file as an executable mechanism employed by libcap.so, libpsx.so and pam_cap.so. - updated to 2.76 - More libpsx and psx Go package mechanism fixes. - Address an arm64 (aarch64) libpsx issue seen with Tracee. - To make the various .so files continue to be runnable as standalone programs added another workaround for glibc. - _IO_stdin_used needs to be weakly defined to make puts() and friends work. Also updated the Stackoverflow answer to include that detail. - new man page cap_text_formats(7). - Removed a spurious debugging printf() from setcap tool. - Removed cap_ workarounds for go.dev cap package examples. The website bugs have been resolved: go/issues/70611; go/issues/70630. - Added a Makefile to the contrib/seccomp example. ==== libglvnd ==== - enable installation of GL headers files and move them to %docdir/include to be picked up by Mesa build later, because in libglvnd sources these are still updated but in Mesa sources they are not any longer and are completely outdated (boo#1260932) ==== libglycin ==== Version update (2.0.8 -> 2.1.1) - BuildRequire pkgconfig(glycin-2) for all build modules except libglycin itself. Chain them properly behind each other. - Update to version 2.1.1: + Fixed: Bump gufo to 4.0.1. This fixes optaining key-value pairs potentially containing nul-characters, which is not allowed per PNG standard and can't be transmitted as String via D-Bus. - Migrate to xz compression and manual service run - Update to version 2.1.0: + Fixed: thumbnailer: Remove padding if stride is longer than row data, avoiding broken scaling. This manly affects AVIF and HEIC - Update to version 2.1.rc: + image-rs: Don't assume that JPEGs are in YCbCr encoded. Support grayscale and YCCK as well. ==== libjcat ==== Version update (0.2.5 -> 0.2.6) - Update to version 0.2.6: + New Features: - Allow disabling time checks when not using a trust list + Bugfixes: - Do not allow multiple items with the same ID - Do not try to change the GnuTLS system-wide config - Require at least one successful verification regardless of flags - Return the correct error code using the gnutls rc - Skip the PQ tests if the GnuTLS config is not malleable - Use the correct flag when self-verifying PQC certs ==== libjpeg-turbo ==== - update to 3.1.4.1: * Fixed an issue in the TurboJPEG 2.x compatibility wrapper whereby, if a calling program attempted to decompress a lossless JPEG image using `tjDecompress2()` with decompression scaling, the decompressed image was unexpectedly unscaled. * The SIMD dispatchers now use `getauxval()` or `elf_aux_info()`, if available, to detect support for Neon and AltiVec instructions on AArch32 and PowerPC Linux, Android, and * BSD systems. * Hardened the libjpeg API against hypothetical applications that may erroneously set one of the exposed quantization table values to 0 just before calling `jpeg_start_compress()`. * Fixed a division-by-zero error that occurred when attempting to use the jpegtran `-drop` option with a specially-crafted malformed drop * a memory leak that occurred if a pre-allocated JPEG destination buffer was passed to `tj3Compress*()` or `tj3Transform()`, `TJPARAM_NOREALLOC` was unset, and it was necessary for the library to re-allocate the buffer to accommodate the destination image * a potential caller double free that occurred if pre-allocated JPEG destination buffers were passed to `tj3Transform()`, multiple lossless transform operations were performed, and it was necessary for the library to re-allocate the second buffer to accommodate the second destination image. * Fixed an issue in `tj3Transform()` whereby, if `TJPARAM_SAVEMARKERS` was set to 2 or 4, `TJXOPT_COPYNONE` was not specified, an ICC profile was extracted from the source image, and another ICC profile was associated with the TurboJPEG instance using `tj3SetICCProfile()`, both profiles were embedded in the destination image. The documented API behavior is for `qTJXOPT_COPYNONE` to take precedence over `TJPARAM_SAVEMARKERS` and for `TJPARAM_SAVEMARKERS` to take precedence over the associated ICC profile. Thus, `tj3Transform()` now ignores the associated ICC profile unless `TJXOPT_COPYNONE` is specified or `TJPARAM_SAVEMARKERS` is set to something other than 2 or 4. * Fixed an oversight in the libjpeg API whereby, if a calling application manually set `cinfo.Ss` (the predictor selection value) to a value less than 1 or greater than 7 after calling `jpeg_enable_lossless()` and prior to calling `jpeg_start_compress()`, an incorrect (all white) lossless JPEG image was silently generated. * Further hardened the TurboJPEG Java API against hypothetical applications that may erroneously pass huge values to one of the compression, YUV encoding, decompression, YUV decoding, or packed-pixel image I/O methods, leading to signed integer overflow in the JNI wrapper's buffer size checks that rendered those checks ineffective. - update to 3.1.3: * Hardened the TurboJPEG API against hypothetical applications that may erroneously call `tj*Compress*()` or `tj*Transform()` with a reused JPEG destination buffer pointer while specifying a destination buffer size of 0. * Hardened the TurboJPEG API against hypothetical applications that may erroneously set `TJPARAM_LOSSLESS` or `TJPARAM_COLORSPACE` prior to calling `tj3EncodeYUV*8()` or `tj3CompressFromYUV*8()`. `tj3EncodeYUV*8()` and tj3CompressFromYUV*8()` now ignore `TJPARAM_LOSSLESS` and `TJPARAM_COLORSPACE`. * Hardened the TurboJPEG Java API against hypothetical applications that may erroneously pass huge X or Y offsets to one of the compression, YUV encoding, decompression, or YUV decoding methods, leading to signed integer overflow in the JNI wrapper's buffer size checks that rendered those checks ineffective. * Fixed an issue in the TurboJPEG Java API whereby `TJCompressor.getSourceBuf()` sometimes returned the buffer from a previous invocation of `TJCompressor.loadSourceImage()` if the target data precision was changed before the most recent invocation. * Fixed an issue in the PPM reader that caused incorrect pixels to be generated when using `tj3LoadImage*()` or `TJCompressor.loadSourceImage()` to load a PBMPLUS (PPM/PGM) file into a CMYK buffer with a different data precision than that of the file. ==== libkdcraw-qt6 ==== Version update (25.12.3 -> 26.04.0) Subpackages: libKDcrawQt6-5 - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * Drop Qt5 support ==== libkexiv2-qt6 ==== Version update (25.12.3 -> 26.04.0) Subpackages: libKExiv2Qt6-0 - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * Fix undefined behaviour Invalid-enum-value * Port to QDoc ==== libkgapi6 ==== Version update (25.12.3 -> 26.04.0) Subpackages: libKPim6GAPICore6 libKPim6GAPIDrive6 libkgapi6-sasl2-kdexoauth2 - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * cmake_minimum_required: drop outdated FATAL_ERROR. * Add default ClangBuildAnalyzer.ini (testing compile time) * Add missing USE_UNITY_CMAKE_SUPPORT variable for building as unity from cmakepreset * Fix clazy warning ==== libkscreen6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libKF6Screen8 libKF6ScreenDpms8 libkscreen6-plugin - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * dpms: Log more information when platform detection fails ==== libksysguard6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: ksysguardsystemstats6-data libKSysGuardSystemStats2 libksysguard6-imports - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * fix gpu usage and memory graph scaling and inf values * fix nvidia-smi process leak ==== libostree ==== Version update (2025.7 -> 2026.1) Subpackages: libostree-1-1 - Update to 2026.1: * fix soft-reboot handling for var, sysroot, and boot mounts, * preserve extension BLS keys across staged deployments. * libarchive integration now correctly handles UTF-8 filenames without locale dependency * ostree admin status --json now includes the deployment origin refspec. ==== libplasma6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libPlasma7 libplasma6-components libplasma6-desktoptheme - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * plasma/pluginloader: forward args to instantiatePlugin * appletquickitem: turn launch error message into error data * pluginloader: never return nullptr on loadApplet * desktoptheme: Remove duplicate stylesheet from SVGs (kde#518178) ==== libpng16 ==== Version update (1.6.56 -> 1.6.57) - version update to 1.6.57: * Fixed CVE-2026-34757 (medium severity): Use-after-free in `png_set_PLTE`, `png_set_tRNS` and `png_set_hIST` leading to corrupted chunk data and potential heap information disclosure. Also hardened the append-style setters (`png_set_text`, `png_set_sPLT`, `png_set_unknown_chunks`) against a theoretical variant of the same aliasing pattern. (Reported by Iv4n .) * Fixed integer overflow in rowbytes computation in read transforms. (Contributed by Mohammad Seet.) - fixes [bsc#1261957] ==== librsvg ==== Version update (2.61.3 -> 2.62.0) - Migrate to xz compression and manual service run - Update to version 2.62.0: + The minimum supported Rust version (MSRV) is 1.92.0. + The librsvg and librsvg-rebind crates now use Rust/Cargo edition=2024. + Fix rendering of markers at the end of open subpaths. + Small optimization for userLanguage so regexes only get compiled if needed. + Update gtk-rs-core crates to 0.22.0. - Update to version 2.61.92: + librsvg crate version 2.62.0-beta.2 + librsvg-rebind crate version 0.3.0-beta.0 + Fix rendering of markers at the end of open subpaths. + Small optimization for userLanguage so regexes only get compiled if needed. + Update the time crate to 0.3.47 for RUSTSEC-2026-0009 + Switch to Rust/Cargo edition=2024. - Update to version 2.61.4: + librsvg crate version 2.61.4 + librsvg-rebind crate version 0.2.1 + Update the time crate to 0.3.47 for RUSTSEC-2026-0009 + Fix the check for cargo-cbuild in meson.build ==== libsodium ==== Version update (1.0.21 -> 1.0.22) - Update to 1.0.22: * Post-quantum key encapsulation is now available. ML-KEM768, the NIST-standardized lattice-based KEM, is accessible through the crypto_kem_mlkem768_*() functions. * X-Wing, a hybrid KEM combining ML-KEM768 with X25519 for protection against both classical and quantum adversaries, is available through the crypto_kem_*() functions. X-Wing is the recommended KEM for most applications. * SHA-3 hash functions are now available as crypto_hash_sha3256_*() and crypto_hash_sha3512_*(), with both one-shot and streaming APIs. * Performance: NEON optimizations for Argon2 on ARM platforms. * Performance: SHA3 (Keccak1600) now leverages ARM SHA3 instructions when available on ARM platforms. * Performance: WebAssembly SIMD implementations of Argon2 have been added. * XOF state alignment has been relaxed. * crypto_core_keccak1600_state has been added. * Export missing crypto_ipcrypt_nd_keygen() helper function. * crypto_auth_hmacsha256_init and crypto_auth_hmacsha512_init now accept NULL key pointers (with a zero key length), for consistency with other _init functions. * Fixed compilation with GCC on aarch64 and gcc 4.x. * On aarch64, aes256-gcm is now enabled even when not using clang, including MSVC. * Libsodium can be directly used as a dependency in a Zig project. * Remove patch libsodium-Fix-compilation-with-GCC-on-aarch64.patch ==== libxkbcommon ==== Version update (1.12.4 -> 1.13.1) Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0 - Update to release 1.13.1 [boo#1262256] * context: The default include paths initialization is delayed until required. This is more efficient for clients that only get the keymap from the server and thus do not need to look up any XKB files. * Added the XKB extensions directories, a new mechanism to facilitate keyboard layout packaging and distribution. ==== lilv ==== Version update (0.26.2 -> 0.26.4) - Update to 0.26.4 * Add clang nullability annotations * Address new warnings in clang and clang-tidy 21 * Fix default LV2 path on cross-compiled Windows builds * Fix loading of duplicate bundles with equivalent versions * Fix potential crash when UIs have multiple types or binaries * Use consistent quoting and punctuation in log messages - Set suse_version for enabling docs to >= to 1699 as we don't have python3-sphinxygen in SLES (jsc#PED-15821) ==== llvm21 ==== - Drop ld.lld as an ld alternative (boo#1259813). ==== milou6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== ncurses ==== Subpackages: libncurses6 ncurses-utils terminfo-base - added fix-mouse.patch to fix regression introduced in patch 20260301 causing htop to crash (boo#1253379) ==== ngtcp2 ==== Version update (1.21.0 -> 1.22.0) Subpackages: libngtcp2-16 libngtcp2_crypto_gnutls8 libngtcp2_crypto_ossl0 - enable openssl support on factory only (jsc#PED-15770) - update to 1.22.0: * Consistent hex literals and integer suffixes * Deprecate quictls * Introduce struct ngtcp2_stateless_reset_token * Fix assertion failure without get_new_connection_id * Add ngtcp2_pkt_write_stateless_reset2 * Add missing callbacks to callbacks test * Add ngtcp2_conn_get_active_dcid2 and ngtcp2_cid_token2 * Prefer sizeof token instead of integer constant * Introduce struct ngtcp2_path_challenge_data * Store cid and token directly into frame * tests: Remove xcid_init in favor of make_xcid * tests: Inline initialization for transport parameters tests * tests: Make shared crypto objects static const * build(deps): bump actions/upload-artifact from 6 to 7 * tests: More static const variables * build(deps): bump actions/download-artifact from 7 to 8 * Avoid memset for struct initialization * Hp ecb * crypto: Encrypt full chacha block * crypto/wolfssl: Use aes-ecb for header protection cipher * Upcase hex char in string literals * crypto: No need to disable padding for aes-ecb * More use of designated initializers * docker: Switch to aws-lc * GHA: Build with macos-26 * Fix assertion error when seq=0 Connection ID is required on 0.5RTT * Add function to continue TLS handshake * Refine handshake continuation * doc: Add documentation about TLS handshake interruptions ==== openldap2 ==== Version update (2.6.10 -> 2.6.13) - Update to release 2.6.13 * slapd now uses a fresh timestamp for lastbind * Made slapd delta-syncrepl always use the logDB rootdn * Fixed slapd reverse lookup of proxied IPv6 addresses * Fixed a slapd logging buffer overflow * Fixed slapd-ldap response when invalid secprops is configured * Fixed a slapd-mdb error when deleting the last child of a branch * Fixed slapo-memberof clashing with refint on subtree renames * Fixed slapo-syncprov to use the correct rootDN for accesslog replay * Fixed libldap to reject empty types in LDIF * Fixed liblber to not run into a potential NULL deref in `ber_bvreplace_x` * Fixed a libldap heap buffer overflow in `parse_whsp` * Fixed some memory leaks and race conditions in slapd and one in slapo-syncprov * Fixed slapd-mdb always initialize pausepoll * Fixed slapo-dds incorrectly setting minttl in certain scenarios * Fixed slapo-{constaint,memberof,nestgroup,retcode,syncprov} to not propagate request controls to internal ops ==== openssl-3 ==== Subpackages: libopenssl3 - Adapt spec file for immutability via systemd-tmpfiles (jsc#PED-14813) - Fix check %{suse_version} > 1600 (jsc#PED-15816) - Security fixes: * CVE-2026-28387: Potential use-after-free in DANE client code (bsc#1260441) * CVE-2026-28388: NULL Pointer Dereference When Processing a Delta (bsc#1260442) * CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo (bsc#1260443) * CVE-2026-31789: Heap buffer overflow in hexadecimal conversion (bsc#1260444) * CVE-2026-31790: Incorrect failure handling in RSA KEM RSASVE encapsulation (bsc#1260445) * CVE-2026-28390: NULL pointer dereference during processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo (bsc#1261678) * Add patches: openssl-CVE-2026-28387.patch openssl-CVE-2026-28388.patch openssl-CVE-2026-28388-tests.patch openssl-CVE-2026-28389.patch openssl-CVE-2026-31789.patch openssl-CVE-2026-31790.patch openssl-CVE-2026-31790-tests.patch openssl-CVE-2026-28390.patch - Fix NULL pointer dereference when processing an OCSP response * Add patch openssl-NULL-pointer-dereference-in-ocsp_find_signer_sk.patch - Security fix: * CVE-2026-2673: TLS 1.3 servers may choose unexpected key agreement group (bsc#1259652) Added patch openssl-CVE-2026-2673.patch Added patch openssl-crypto-mem.c-factor-out-memory-allocation-failure-reporting.patch Added patch openssl-Add-array-memory-allocation-routines.patch - Remove showciphers.c in favor of openssl ciphers - Use %ldconfig_scriptlets ==== parted ==== Version update (3.6 -> 3.7) Subpackages: libparted-fs-resize0 libparted2 - update to version 3.7: - Stop adding boot code into the MBR if it's zero when updating an existing msdos partition table - Do not detect ext4 without journal as ext2 removed patches: - parted-wipeaix.patch - dummy-bootcode-only-for-x86.patch - parted-do-version.patch ==== partitionmanager ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * documentation.yml is no more needed * Don't show "Cancel" on both buttons of dialog ==== patterns-base ==== Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11 - add hardware pattern used for SL-Micro equivalent images - extend the immutable base pattern content - add missing pattern-visible() provide to immutable_base pattern (bsc#1262133) ==== plasma5support6 ==== Version update (6.6.3 -> 6.6.4) Subpackages: libPlasma5Support6 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== plasma6-activities ==== Version update (6.6.3 -> 6.6.4) Subpackages: libPlasmaActivities7 plasma6-activities-imports - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== plasma6-activities-stats ==== Version update (6.6.3 -> 6.6.4) Subpackages: libPlasmaActivitiesStats1 - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== plasma6-browser-integration ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * purpose: Don't determine MIME type from the host * reminder: Set XDG activation token on ApplicationLauncherJob ==== plasma6-desktop ==== Version update (6.6.3 -> 6.6.4) Subpackages: plasma6-desktop-emojier - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * applets/kicker: fix sidebar in rtl * Disable qmllint for pager applet * applets/kicker: activate SideBarItem on Return * applets/kickoff: a bunch of fixes for ListOfGrids (kde#517693,kde#518170) * Actually start the drag only after a pointer move (kde#509880) * SolidActions: Use absolute path for getting the template file (kde#518317) * kcm/keys: prevent shortcut conflicts during save (BUG: 471370) (kde#471370) * desktop: stop unsorted desktop icons being sorted during drag and drop ==== plasma6-integration ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * qt5: Handle Qt 6.11 font settings (kde#518570) * systemtray: Don't delete KSNI menu (kde#517599) ==== plasma6-nm ==== Version update (6.6.3 -> 6.6.4) Subpackages: plasma6-nm-openconnect plasma6-nm-openvpn - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * networkmodel: refresh Last used immediately on disconnect (kde#512951) ==== plasma6-openSUSE ==== - Update to 6.6.4 ==== plasma6-pa ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== plasma6-print-manager ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * libkcups: Don't restrict connection list if only one entry * kded: Fix crash when levels list or range lists are invalid (kde#517148,kde#517394) ==== plasma6-systemmonitor ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== plasma6-workspace ==== Version update (6.6.3 -> 6.6.4) Subpackages: plasma6-session plasma6-workspace-libs - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * applets/activitybar: fix layout on narrow panels (kde#518451) * Update version for new release 6.6.4 * Adjust reduced_featureset build to 6.11 * Disable qmllint for calendar module * applets/systemtray: banish black corners in tray icons' context menus (kde#513307) * applets/desktoptheme: Protect against setting infinity size * devicenotifications: keep mode objects around until KWin removes them (kde#516217) * libtaskmanager: Listen for sycoca changes in WaylandTasksModel * applets/digital-clock: Fix clipboard menu (kde#517692) * applets/kicker: provide url in recent apps model * shellcorona: do not crash on panels after their destruction (kde#477941) * applets/systemtray: Guard for itemForService returning null (kde#518128) * Don't prevent the user from using hidden files as wallpapers (kde#472987) ==== polkit-default-privs ==== Version update (1550+20260212.d84c6be -> 1550+20260414.1647bf2) - Update to version 1550+20260414.1647bf2: * profiles: systemd v260 follow-up (bsc#1259318) - Update to version 1550+20260409.85cbda6: * profiles: systemd v260 new actions (bsc#1259318) * profiles: whitelist cosmic-settings Admin action (bsc#1259402) ==== polkit-kde-agent-6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== polkit-qt6-1 ==== Version update (0.200.0 -> 0.201.1) - Update to 0.201.1: * defer Session destruction in KListener::completed * Remove Data(const Data& other), we don't need it * Save roundtrip from subject to string to subject * Mark Subject constructor as explicit * Return {} instead of nullptr * g_object_unref does not like being passed a nullptr * Remove unnecessary g_object_unref call in enumerateTemporaryAuthorizationsSync function * ListenerAdapter: uniquify the identities * Build examples on CI * Use undeprecated install dir variable * Fix examples build for Qt 6.8.1 ==== powerdevil6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== protobuf-c ==== - Add 0001-Fix-compilation-against-protobuf-v34.patch ==== python-SQLAlchemy ==== Version update (2.0.48 -> 2.0.49) - update to 2.0.49: * https://docs.sqlalchemy.org/en/21/changelog/changelog_20.html#change-2.0.49 ==== python-bcrypt ==== Version update (4.3.0 -> 5.0.0) - update to 5.0.0: * Bumped MSRV to 1.74. * Added support for Python 3.14 and free-threaded Python 3.14. * Added support for Windows on ARM. * Passing hashpw a password longer than 72 bytes now raises a ValueError. Previously the password was silently truncated, following the behavior of the original OpenBSD bcrypt implementation. ==== python-cryptography ==== Version update (46.0.6 -> 46.0.7) - Update to 46.0.7 (fixes CVE-2026-39892, bsc#1261863) * **SECURITY ISSUE**: Fixed an issue where non-contiguous buffers could be passed to APIs that accept Python buffers, which could lead to buffer overflow. **CVE-2026-39892** * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.6. ==== python-greenlet ==== Version update (3.3.2 -> 3.4.0) - Update to 3.4.0 * Publish binary wheels for RISC-V 64. * Fix multiple rare crash paths during interpreter shutdown. Note that this now relies on the atexit module, and introduces subtle API changes during interpreter shutdown (for example, getcurrent is no longer available once the atexit callback fires). See PR #499 by Nicolas Bouvrette. * Address the results of an automated code audit performed by Daniel Diniz. This includes several minor correctness changes that theoretically could have been crashing bugs, but typically only in very rare circumstances. See PR 502. * Fix several race conditions that could arise in free-threaded builds when using greenlet objects from multiple threads, some of which could lead to assertion failures or interpreter crashes. See issue 503, with thanks to Nitay Dariel and Daniel Diniz. ==== python-maturin ==== Version update (1.12.6 -> 1.13.1) - Update to version 1.13.1 * fix: fall back to placeholder for abi3 when found interpreters are too old gh#PyO3/maturin#3126 - Changes in version 1.13.0: * Sync legacy_py.rs with upstream PyPI warehouse legacy.py gh#PyO3/maturin#3053 * Fix --strip conflicting with --include-debuginfo in develop gh#PyO3/maturin#3057 * Fix abi3 wheel producing version-specific tags for CPython below minimum gh#PyO3/maturin#3061 * Fix data symlink permission handling gh#PyO3/maturin#3069 * fix: correct bugs in audit.rs typo and module_writer gh#PyO3/maturin#3070 * perf: use lazy-initialized regexes instead of per-call compilation gh#PyO3/maturin#3071 * fix: skip legacy manylinux aliases not in PyPI allow-list gh#PyO3/maturin#3078 * fix: auto-generate .def file for zig + windows-gnu to export PyInit symbol gh#PyO3/maturin#3079 * fix: pass -undefined dynamic_lookup via CARGO_ENCODED_RUSTFLAGS on macOS gh#PyO3/maturin#3083 * feat: add Profile-Guided Optimization (PGO) support gh#PyO3/maturin#3085 * Respect metadata_directory in build_wheel per PEP 517 gh#PyO3/maturin#3086 * Fix cargo path with puccinialin for Windows gh#PyO3/maturin#3093 * build(deps): bump tar from 0.4.44 to 0.4.45 gh#PyO3/maturin#3095 * build(deps): bump rustls-webpki from 0.103.9 to 0.103.10 gh#PyO3/maturin#3096 * Upgrade pyo3 to 0.28 gh#PyO3/maturin#3101 * PyO3: Adds --generate_stubs build options gh#PyO3/maturin#3105 * fix: prevent panic when no interpreters match abi3 minimum version gh#PyO3/maturin#3108 * feat: re-implement delocate for repairing macOS wheels gh#PyO3/maturin#3114 * PyO3: Adds generate-stubs command gh#PyO3/maturin#3115 * feat: re-implement delvewheel for repairing Windows wheels gh#PyO3/maturin#3116 * Add auditwheel Warn mode, default to Warn on macOS/Windows gh#PyO3/maturin#3121 * feat: Support large zip files gh#PyO3/maturin#3118 ==== python-requests ==== - Recover fix-chardet-RequestsDependencyWarning.patch, bsc#1261500 * Fix RequestsDependencyWarning with chardet (6.0.0dev0) on Factory/TW (gh#psf/requests#7219) (gh#psf/requests#7220) (gh#psf/requests#7239) ==== python313 ==== Version update (3.13.12 -> 3.13.13) - Update to 3.13.13 - Security - gh-145986: xml.parsers.expat: Fixed a crash caused by unbounded C recursion when converting deeply nested XML content models with ElementDeclHandler(). This addresses CVE 2026-4224 (bsc#1259735, CVE-2026-4224). - gh-145599: Reject control characters in http.cookies.Morsel update() and js_output(). This addresses CVE 2026-3644 (bsc#1259734, CVE-2026-3644). - gh-145506: Fixes CVE 2026-2297 by ensuring that SourcelessFileLoader uses io.open_code() when opening .pyc files (bsc#1259240, CVE-2026-2297). - gh-144370: Disallow usage of control characters in status in wsgiref.handlers to prevent HTTP header injections. Patch by Benedikt Johannes. - gh-143930: Reject leading dashes in URLs passed to webbrowser.open() (bsc#1260026, CVE-2026-4519). - Library - gh-144503: Fix a regression introduced in 3.14.3 and 3.13.12 where the multiprocessing forkserver start method would fail with BrokenPipeError when the parent process had a very large sys.argv. The argv is now passed to the forkserver as separate command-line arguments rather than being embedded in the -c command string, avoiding the operating system’s per-argument length limit. - gh-146613: itertools: Fix a crash in itertools.groupby() when the grouper iterator is concurrently mutated. - gh-146080: ssl: fix a crash when an SNI callback tries to use an SSL object that has already been garbage-collected. Patch by Bénédikt Tran. - gh-146090: sqlite3: fix a crash when sqlite3.Connection.create_collation() fails with SQLITE_BUSY. Patch by Bénédikt Tran. - gh-146090: sqlite3: properly raise MemoryError instead of SystemError when a context callback fails to be allocated. Patch by Bénédikt Tran. - gh-145633: Fix struct.pack('f', float): use PyFloat_Pack4() to raise OverflowError. Patch by Sergey B Kirpichev and Victor Stinner. - gh-146310: The ensurepip module no longer looks for pip-*.whl wheel packages in the current directory. - gh-146083: Update bundled libexpat to version 2.7.5. - gh-146076: zoneinfo: fix crashes when deleting _weak_cache from a zoneinfo.ZoneInfo subclass. - gh-146054: Limit the size of encodings.search_function() cache. Found by OSS Fuzz in #493449985. - gh-145883: zoneinfo: Fix heap buffer overflow reads from malformed TZif data. Found by OSS Fuzz, issues #492245058 and #492230068. - gh-145750: Avoid undefined behaviour from signed integer overflow when parsing format strings in the struct module. Found by OSS Fuzz in #488466741. - gh-145492: Fix infinite recursion in collections.defaultdict __repr__ when a defaultdict contains itself. Based on analysis by KowalskiThomas in gh-145492. - gh-145623: Fix crash in struct when calling repr() or __sizeof__() on an uninitialized struct.Struct object created via Struct.__new__() without calling __init__(). - gh-145616: Detect Android sysconfig ABI correctly on 32-bit ARM Android on 64-bit ARM kernel - gh-145376: Fix null pointer dereference in unusual error scenario in hashlib. - gh-145551: Fix InvalidStateError when cancelling process created by asyncio.create_subprocess_exec() or asyncio.create_subprocess_shell(). Patch by Daan De Meyer. - gh-145417: venv: Prevent incorrect preservation of SELinux context when copying the Activate.ps1 script. The script inherited the SELinux security context of the system template directory, rather than the destination project directory. - gh-145301: hashlib: fix a crash when the initialization of the underlying C extension module fails. - gh-145264: Base64 decoder (see binascii.a2b_base64(), base64.b64decode(), etc) no longer ignores excess data after the first padded quad in non-strict (default) mode. Instead, in conformance with RFC 4648, section 3.3, it now ignores the pad character, “=”, if it is present before the end of the encoded data. - gh-145158: Avoid undefined behaviour from signed integer overflow when parsing format strings in the struct module. - gh-144984: Fix crash in xml.parsers.expat.xmlparser.ExternalEntityParserCreate() when an allocation fails. The error paths could dereference NULL handlers and double-decrement the parent parser’s reference count. - gh-88091: Fix unicodedata.decomposition() for Hangul characters. - gh-144835: Added missing explanations for some parameters in glob.glob() and glob.iglob(). - gh-144833: Fixed a use-after-free in ssl when SSL_new() returns NULL in newPySSLSocket(). The error was reported via a dangling pointer after the object had already been freed. - gh-144259: Fix inconsistent display of long multiline pasted content in the REPL. - gh-144156: Fix the folding of headers by the email library when RFC 2047 encoded words are used. Now whitespace is correctly preserved and also correctly added between ... changelog too long, skipping 179 lines ... gh#python/cpython#146121). ==== python313-core ==== Version update (3.13.12 -> 3.13.13) Subpackages: libpython3_13-1_0 python313-base - Update to 3.13.13 - Security - gh-145986: xml.parsers.expat: Fixed a crash caused by unbounded C recursion when converting deeply nested XML content models with ElementDeclHandler(). This addresses CVE 2026-4224 (bsc#1259735, CVE-2026-4224). - gh-145599: Reject control characters in http.cookies.Morsel update() and js_output(). This addresses CVE 2026-3644 (bsc#1259734, CVE-2026-3644). - gh-145506: Fixes CVE 2026-2297 by ensuring that SourcelessFileLoader uses io.open_code() when opening .pyc files (bsc#1259240, CVE-2026-2297). - gh-144370: Disallow usage of control characters in status in wsgiref.handlers to prevent HTTP header injections. Patch by Benedikt Johannes. - gh-143930: Reject leading dashes in URLs passed to webbrowser.open() (bsc#1260026, CVE-2026-4519). - Library - gh-144503: Fix a regression introduced in 3.14.3 and 3.13.12 where the multiprocessing forkserver start method would fail with BrokenPipeError when the parent process had a very large sys.argv. The argv is now passed to the forkserver as separate command-line arguments rather than being embedded in the -c command string, avoiding the operating system’s per-argument length limit. - gh-146613: itertools: Fix a crash in itertools.groupby() when the grouper iterator is concurrently mutated. - gh-146080: ssl: fix a crash when an SNI callback tries to use an SSL object that has already been garbage-collected. Patch by Bénédikt Tran. - gh-146090: sqlite3: fix a crash when sqlite3.Connection.create_collation() fails with SQLITE_BUSY. Patch by Bénédikt Tran. - gh-146090: sqlite3: properly raise MemoryError instead of SystemError when a context callback fails to be allocated. Patch by Bénédikt Tran. - gh-145633: Fix struct.pack('f', float): use PyFloat_Pack4() to raise OverflowError. Patch by Sergey B Kirpichev and Victor Stinner. - gh-146310: The ensurepip module no longer looks for pip-*.whl wheel packages in the current directory. - gh-146083: Update bundled libexpat to version 2.7.5. - gh-146076: zoneinfo: fix crashes when deleting _weak_cache from a zoneinfo.ZoneInfo subclass. - gh-146054: Limit the size of encodings.search_function() cache. Found by OSS Fuzz in #493449985. - gh-145883: zoneinfo: Fix heap buffer overflow reads from malformed TZif data. Found by OSS Fuzz, issues #492245058 and #492230068. - gh-145750: Avoid undefined behaviour from signed integer overflow when parsing format strings in the struct module. Found by OSS Fuzz in #488466741. - gh-145492: Fix infinite recursion in collections.defaultdict __repr__ when a defaultdict contains itself. Based on analysis by KowalskiThomas in gh-145492. - gh-145623: Fix crash in struct when calling repr() or __sizeof__() on an uninitialized struct.Struct object created via Struct.__new__() without calling __init__(). - gh-145616: Detect Android sysconfig ABI correctly on 32-bit ARM Android on 64-bit ARM kernel - gh-145376: Fix null pointer dereference in unusual error scenario in hashlib. - gh-145551: Fix InvalidStateError when cancelling process created by asyncio.create_subprocess_exec() or asyncio.create_subprocess_shell(). Patch by Daan De Meyer. - gh-145417: venv: Prevent incorrect preservation of SELinux context when copying the Activate.ps1 script. The script inherited the SELinux security context of the system template directory, rather than the destination project directory. - gh-145301: hashlib: fix a crash when the initialization of the underlying C extension module fails. - gh-145264: Base64 decoder (see binascii.a2b_base64(), base64.b64decode(), etc) no longer ignores excess data after the first padded quad in non-strict (default) mode. Instead, in conformance with RFC 4648, section 3.3, it now ignores the pad character, “=”, if it is present before the end of the encoded data. - gh-145158: Avoid undefined behaviour from signed integer overflow when parsing format strings in the struct module. - gh-144984: Fix crash in xml.parsers.expat.xmlparser.ExternalEntityParserCreate() when an allocation fails. The error paths could dereference NULL handlers and double-decrement the parent parser’s reference count. - gh-88091: Fix unicodedata.decomposition() for Hangul characters. - gh-144835: Added missing explanations for some parameters in glob.glob() and glob.iglob(). - gh-144833: Fixed a use-after-free in ssl when SSL_new() returns NULL in newPySSLSocket(). The error was reported via a dangling pointer after the object had already been freed. - gh-144259: Fix inconsistent display of long multiline pasted content in the REPL. - gh-144156: Fix the folding of headers by the email library when RFC 2047 encoded words are used. Now whitespace is correctly preserved and also correctly added between ... changelog too long, skipping 179 lines ... gh#python/cpython#146121). ==== python313-setuptools ==== - add testsuite for tests ==== qalculate ==== Version update (5.9.0 -> 5.10.0) - Regenerate configure script before build for GCC16 compatibility (boo#1261740) - Update to version 5.10 * Improve factorization and simplification (particularly with radicals, logarithms, and absolute value) * Add ton of refrigeration, slug, mol/dm³, mol/L, and molar units * Add pcm, ppm, ppb, ppt, and ppq (parts per …), and lakh and crore variables * Add XAG, XAU, XPD, and XPT currencies (precious metals) * Use a maximum 4 decimals and minimum of 2 decimals by default for display of value of converted currencies * Improve handling of "to mixed" after previous conversion statement (e.g. "1 m to in to mixed") * Improve interval calculation, with interval arithmetic, with division by zero and/or both real and complex numbers in derivative of expression * Treat 0^0 as undefined (instead of equal to 1), and fix limit for 0^0 * Set initial random seed using /dev/random (or BCryptGenRandom on Windows) * Do not show warning about denominators assumed non-zero when converting to expression with non-unit objects * Do not show negative exponents (if "negexp" is deactivated) when expressions contains unknown variables, even if all units have negative exponents * Do not show possibly real expression in complex exponential form * Initial support for comparison of vectors and matrices * Allow use of apostrophe as thousands separator in input, when specified as such by locale * Fix segfault with recursive variable in "where" expression * Fix segfault in some cases when argument in det() contains only a single element * Fix wrong simplification of "sin(2-cosh(x)^2/x+x)" * Fix negative exponents always used for units with rounding set to (halfway) down or up * Fix file paths with non-ASCII characters on Windows * Fix loading of history on Windows * Minor bug fixes and feature enhancements ==== qqc2-breeze-style6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * ToolTip: Fix binding loop * MobileTextActionsToolBar: Use easier to trigger open behavior ==== qrca ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - Changes since 26.03.90: * Fix Android build with Qt 6.11 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * Fix missing i18n * Align strings with the HIG * Move from Multimedia category to Utilities category * Change AppData name to match actual name ==== qt6-tools ==== Subpackages: libQt6UiTools6 qt6-tools-qdbus - Add patches: * 0003-QDoc-Swap-forever-for-while-true.patch * 0004-QDoc-Disable-Qt-keyword-macros.patch ==== run0-wrappers ==== - Remove wrong conflicts to sudo dependencies ==== rust-keylime ==== - Build with Clang <= 21 for now to work around boo#1260596. ==== samba ==== Version update (4.23.5+git.463.513487e87f1 -> 4.23.6+git.466.1a6b75cb208) Subpackages: libldb2 samba-ad-dc-libs samba-client samba-client-libs samba-libs - Update to 4.23.6 * No function _python_sysroot defined; (bso#15990). * leases torture test flappy; (bso#15978). * smbd: in contend_dirleases() don't bother checking when not enabled; (bso#15984). * possible memory leak on rpc_spoolss; (bso#15979); (bsc#1257200). * "net offlinejoin requestodj" manpage entry incorrectly mentiones provided credentials; (bso#15964). * "use-kerberos=desired" broken; (bso#15789); (bso#1255755). * pthreadpool_tevent has race conditions accessing both pthreadpool_tevent.jobs list and pthreadpool_tevent.glue_list; (bso#15958). * CTDB's statd_callout fails on sm-notify; (bso#15938). * CTDB statd_callout_notify notifies unnecessary clients and loses their state; (bso#15939). * ctdbd socket documentation is wrong; (bso#15977). ==== sdbootutil ==== Version update (1+git20260407.f1134c1 -> 1+git20260409.83d5678) Subpackages: sdbootutil-dracut-measure-pcr sdbootutil-snapper sdbootutil-tukit - Update to version 1+git20260409.83d5678: * Detect uninitialized machine-id - Update to version 1+git20260408.db91528: * Find /etc/os-release and machine-id in mkosi * Drop reference to systemd-experimental * Fix set-default-snapshot when snapshots are not present ==== sddm-kcm6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== selinux-policy ==== Version update (20260311 -> 20260414) Subpackages: selinux-policy-targeted - Update to version 20260414: * Allow snapper_sdbootutil_plugin_t linux_immutable (bsc#1261945) * allow unconfined services to read VM state (bsc#1251789) - Update to version 20260410: * Add missing Nextcloud file contexts (bsc#1261535) * openSUSE uses /var/lib/php8 (bsc#1239177) * /srv/www/htdocs is DocumentRoot of apache (bsc#1261535) * Allow cloud init to domtrans into ssh keygen (bsc#1249964) * Allow accountsd dbus chat with systemd-homed * Allow accountsd read accountsd_share_t files * Fix file context specification for /usr/share/accountsservice * Allow xdm_exec_t be an entrypoint of login_userdomain * Allow sshd-session send a generic signal to sshd-auth * Allow virtnetworkd get attributes of filesystems with extended attributes * Allow Polkit to get attributes of user terminals * Allow nfsidmap connect to xdm over a unix stream socket * Label /usr/share/accountsservice with accountsd_share_t * Allow systemd-resolved write to systemd-networkd socket * Dontaudit setroubleshootd read root's home files like .rpmmacros * Support sandboxing features for sysadm_t * Allow unconfined_t mounton on itself (bsc#1261035) * update support for polkit agent helper (bsc#1251931) * Add auth_nnp_domtrans_chkpwd() * Allow staff_sudo_t read PID1's process state * Allow staff_sudo_t read logind sessions files * Allow nfs-server system generator the dac_read_search capability * Allow snmpd create and use netlink tcpdiag socket * Allow systemd-coredump signull containers * Allow named_filetrans_domain filetrans flatpak homedir (bsc#1253682) * Dontaudit logrotate perfmon and sys_admin capabilities * Allow samba-bgqd sendto over a unix dgram socket * Allow snapper sdbootutil plugin read kernel modules (bsc#1259867) * Move interfaces from other modules to optional block * Allow fedoratp_exec_t be an entrypoint of unconfined_t * Allow rasdaemon_t to list pstore (bsc#1259742) * Allow virtqemud_t send kill signal to svirt_tcg_t * Allow virtqemud_t get priority of a svirt_t process * Allow sysadm user connect to lvm over a unix stream socket * Allow staff user delete thump_tmp_t files * Allow staff user connect to systemd-logind over a unix stream socket * Allow staff user mount /proc * Allow virtqemud map vhost net device * Dontaudit ps to read proc (bsc#1257527) * Revert "Define file equivalency for /var/opt" (bsc#1259704) * Allow dovecot_deliver_t map its private tmp files * Allow rpcbind get attributes of the pidfs filesystem * Fix names in mysql.if * Allow create kerberos files in mysql db home * Allow systemd-resolved connect to systemd-networkd over a unix stream socket * Introduce local_login_allow_accountutils_fallback_mode boolean (bsc#1259119) * Make stalld stalld_var_run_t labeling rules more generic (bsc#1259438) - Syncing with upstream rawhide selinux-policy up to: * d3068ffe2a211a7e959bb1d0ad9dd434c2d7da5b - Update embedded container-selinux version to commit: * f336064bb5a086cab121c02acf285a68fa4b8352 (v2.247.0) ==== serd ==== Version update (0.32.6 -> 0.32.8) - update to 0.32.8 * Avoid use of snprintf() when writing * Fix unbounded reader stack growth when reading NQuads * Improve reader error handling * Relax nullability of SerdNode buffer field * Release reader stack memory on read error * Strengthen handling of corrupt UTF-8 input * Support writing all escapes in Turtle and TriG prefixed names - Set suse_version for enabling docs to >= to 1699 as we don't have * python3-sphinxygen in SLES (jsc#PED-15823) ==== signon-kwallet-extension ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - No code change since 25.12.3 ==== skopeo ==== Version update (1.22.0 -> 1.22.1) - Update to version 1.22.1: * [release-1.22] Bump Skopeo to v1.22.1 * [release-1.20] CVE-2026-34986 gojose v4.1.4 * [release-1.22] Bump google.golang.org/grpc to v1.79.3 * [release-1.22] Bump c/common to v0.67.1, c/image v5.39.2 ==== spectacle ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 * Gui/CaptureOverlay: Work around Qt 6.11 being clever (kde#515304) ==== spirv-tools ==== - Add gcc16.patch ==== sqlite3 ==== Version update (3.51.3 -> 3.53.0) - Update to version 3.53.0: * https://sqlite.org/releaselog/3_53_0.html * Add the Query Result Formatter (QRF) library for formatting the results of SQL queries for human readability on a fixed-pitch font screen. * Enhance ALTER TABLE to permit adding and removing NOT NULL and CHECK constraints. * The REINDEX EXPRESSIONS statement rebuilds expression indexes. * The body of TEMP triggers may now modify and/or query tables in the main schema. * Enhance VACUUM INTO so that if a URI filename is used as the target and that filename has a reserve=N query parameter with N between 0 and 255, then the reserve amount for the generated database copy is set to N. * New SQL functions json_array_insert() and jsonb_array_insert(). * Renovations to the CLI. * New C-language interfaces: sqlite3_str_truncate(), sqlite3_str_free(), sqlite3_carray_bind_v2(). * Add the SQLITE_PREPARE_FROM_DDL option to sqlite3_prepare_v3(). * Added the SQLITE_UTF8_ZT constant which can be used as the encoding parameter to sqlite3_result_text64() or sqlite3_bind_text64() to indicate that the value is UTF-8 encoded and zero terminated. * The SQLITE_LIMIT_PARSER_DEPTH option is added to sqlite3_limit(). * The SQLITE_DBCONFIG_FP_DIGITS option is added to sqlite3_db_config(). * Query planner improvements. * Add new interfaces to the session extension that enable an application to add changes one at a time to the sqlite3_changegroup object. * Improvements to floating-point ↔ text conversions. * Added the self-healing index feature to deal with the stale expression index problem. * Add the "-p|--port" option to sqlite3_rsync. * Add the "opfs-wl" VFS, functionally identical to the "opfs" VFS but using Web Locks for locking, which can promise fairer lock sharing than the "opfs" bespoke protocol can. "opfs-wl" requires Atomics.waitAsync(), so requires newer browsers than "opfs" does. ==== systemd-presets-common-SUSE ==== - Enable the new update-desktop-database service that updates the desktop files database on boot for immutable systems (jsc#PED-14839). ==== systemsettings6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== transactional-update ==== Subpackages: dracut-transactional-update libtukit8 transactional-update-zypp-config tukit tukit-snapper-plugin tukitd - Enable soft-reboots by default again ==== vmaf ==== Version update (3.0.0 -> 3.1.0) - Update to release 3.1.0 * Added `--aom_ctc v7.0` as a recognized option for that testing mode. (Alliance for Open Media's Common Test Conditions) ==== xconsole ==== Version update (1.1.0 -> 1.1.1) - Update to version 1.1.1 * This release adds support for building with meson as well as autoconf. - switch to meson ==== xdg-desktop-portal ==== Version update (1.20.3 -> 1.20.4) - Update to version 1.20.4: + Prevent trashing of arbitrary host files (GHSA-rqr9-jwwf-wxgj) - Update suse_version macro for 1610 (jsc#PED-15832) ==== xdg-desktop-portal-kde6 ==== Version update (6.6.3 -> 6.6.4) - Update to 6.6.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.6.4 - Changes since 6.6.3: * Update version for new release 6.6.4 ==== xdm ==== Subpackages: displaymanager-sysconfig - Explicitly BuildRequire update-alternatives and mark it as being used in post/postun: this was nicely masked by the fact that binutils, installed on every system, already dragged u-a in, which is no longer the case. ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb - updated bsc1260925_CVE-2026-34002_0002-xkb-Add-more-_XkbCheckRequestBounds.patch * XKB Out-of-bounds read in CheckModifierMap() (bsc#1260925, CVE-2026-34002) - bsc1260922_CVE-2026-33999_xkb-fix-buffer-re-use-in-_XkbSetCompatMap.patch * XKB Integer Underflow in XkbSetCompatMap() (bsc#1260922, CVE-2026-33999) - bsc1260923_CVE-2026-34000_xkb-Fix-bounds-check-in-_CheckSetGeom.patch * XKB Out-of-bounds Read in CheckSetGeom() (bsc#1260923, CVE-2026-34000) - bsc1260924_CVE-2026-34001_miext-sync-Fix-use-after-free-in-miSyncTriggerFence.patch * XSYNC Use-after-free in miSyncTriggerFence() (bsc#1260924, CVE-2026-34001) - bsc1260925_CVE-2026-34002_0001-xkb-Fix-out-of-bounds-read-in-CheckModifierMap.patch bsc1260925_CVE-2026-34002_0002-xkb-Add-more-_XkbCheckRequestBounds.patch * XKB Out-of-bounds read in CheckModifierMap() (bsc#1260925, CVE-2026-34002) - bsc1260926_CVE-2026-34003_0001-xkb-Add-additional-bound-checking-in-CheckKeyTypes.patch * XKB Buffer overflow in CheckKeyTypes() (bsc#1260926, CVE-2026-34003) ==== xwayland ==== - updated bsc1260925_CVE-2026-34002_0002-xkb-Add-more-_XkbCheckRequestBounds.patch * XKB Out-of-bounds read in CheckModifierMap() (bsc#1260925, CVE-2026-34002) - bsc1260922_CVE-2026-33999_xkb-fix-buffer-re-use-in-_XkbSetCompatMap.patch * XKB Integer Underflow in XkbSetCompatMap() (bsc#1260922, CVE-2026-33999) - bsc1260923_CVE-2026-34000_xkb-Fix-bounds-check-in-_CheckSetGeom.patch * XKB Out-of-bounds Read in CheckSetGeom() (bsc#1260923, CVE-2026-34000) - bsc1260924_CVE-2026-34001_miext-sync-Fix-use-after-free-in-miSyncTriggerFence.patch * XSYNC Use-after-free in miSyncTriggerFence() (bsc#1260924, CVE-2026-34001) - bsc1260925_CVE-2026-34002_0001-xkb-Fix-out-of-bounds-read-in-CheckModifierMap.patch bsc1260925_CVE-2026-34002_0002-xkb-Add-more-_XkbCheckRequestBounds.patch * XKB Out-of-bounds read in CheckModifierMap() (bsc#1260925, CVE-2026-34002) - bsc1260926_CVE-2026-34003_0001-xkb-Add-additional-bound-checking-in-CheckKeyTypes.patch * XKB Buffer overflow in CheckKeyTypes() (bsc#1260926, CVE-2026-34003)