Removed rpms
============

 - jupyter-jupyter_contrib_core
 - jupyter-jupyter_highlight_selected_word
 - jupyter-jupyter_latex_envs
 - jupyter-jupytext
 - jupyter-jupytext-jupyterlab
 - jupyter-qgrid
 - libtorch
 - python3-CXX
 - python3-CXX-devel
 - python3-GeoIP
 - python3-IMDbPY
 - python3-Keras-Applications
 - python3-Ming
 - python3-PasteScript
 - python3-PyPrint
 - python3-Pykka
 - python3-Qt.py
 - python3-Quandl
 - python3-Theano
 - python3-abclient
 - python3-amqplib
 - python3-anymarkup
 - python3-audiolazy
 - python3-autodoc
 - python3-bcolz
 - python3-blindspin
 - python3-buku
 - python3-buku-bash-completion
 - python3-buku-fish-completion
 - python3-buku-zsh-completion
 - python3-celerymon
 - python3-cerealizer
 - python3-certbot-dns-cloudxns
 - python3-cilium-microscope
 - python3-combi
 - python3-congressclient
 - python3-coverage-env-plugin
 - python3-demjson
 - python3-dephell-archive
 - python3-dephell-argparse
 - python3-dephell-discover
 - python3-dephell-licenses
 - python3-dephell-links
 - python3-dephell-setuptools
 - python3-dephell-shells
 - python3-discover
 - python3-django-babel
 - python3-djvulibre
 - python3-dnsdiag
 - python3-efilter
 - python3-enum-compat
 - python3-featureflow
 - python3-flake8-future-import
 - python3-flask-restplus
 - python3-fysom
 - python3-gitdb2
 - python3-glances
 - python3-goobook
 - python3-grab
 - python3-hp3parclient
 - python3-hyper
 - python3-img2pdf
 - python3-jenkins-job-builder
 - python3-jgraph
 - python3-jsonextended
 - python3-jsonlib-python3
 - python3-jsonpath-rw-ext
 - python3-jupyter-nbutils
 - python3-jupyter_calysto
 - python3-jupyter_contrib_core
 - python3-jupyter_full_width
 - python3-jupyter_highlight_selected_word
 - python3-jupyter_imatlab_kernel
 - python3-jupyter_jgraph
 - python3-jupyter_jupyterlab_launcher
 - python3-jupyter_latex_envs
 - python3-jupyter_nbpresent
 - python3-jupyter_nbsmoke
 - python3-jupyter_sphinx
 - python3-jupyter_themer
 - python3-jupyter_vega
 - python3-jupyter_watermark
 - python3-jupytext
 - python3-keepalive
 - python3-keyczar
 - python3-language-check
 - python3-logilab-astng
 - python3-lws
 - python3-lzmaffi
 - python3-missingno
 - python3-mockldap
 - python3-moksha-common
 - python3-moviepy
 - python3-murano-pkg-check
 - python3-nagiosplugin
 - python3-nbindex-jupyter
 - python3-nbsphinx-link
 - python3-nose-cover3
 - python3-nose-random
 - python3-openstack.nose_plugin
 - python3-os-api-ref
 - python3-oslo.db
 - python3-pampy
 - python3-pass_python_keyring
 - python3-pdfkit
 - python3-pep517
 - python3-piston-mini-client
 - python3-pomegranate
 - python3-pomegranate-devel
 - python3-proboscis
 - python3-pyIOSXR
 - python3-pyblake2
 - python3-pyfg
 - python3-pygeos
 - python3-pympv
 - python3-pytest-faulthandler
 - python3-pytest-flake8dir
 - python3-pytest-ordering
 - python3-pytest-pythonpath
 - python3-pytest-random-order
 - python3-pytest-repeat
 - python3-pytest-reqs
 - python3-pytest-travis-fold
 - python3-python-fileinspector
 - python3-python-jsonrpc-server
 - python3-qgrid
 - python3-raet
 - python3-ravello-sdk
 - python3-requests-html
 - python3-ruamel.yaml.cmd
 - python3-rustcfg
 - python3-serpy
 - python3-shouldbe
 - python3-sigal
 - python3-slumber
 - python3-socketIO-client-nexus
 - python3-sphinxcontrib-actdiag
 - python3-sqlsoup
 - python3-test-server
 - python3-torch
 - python3-torch-devel
 - python3-tox-travis
 - python3-trello
 - python3-twodict
 - python3-uncompyle6
 - python3-whois_similarity_distance
 - python3-xcaplib
 - python3-xsge_tmx
 - python3-yubico
 - python3-zake
 - pytorch-converters
 - pytorch-examples
 - spyder3-line-profiler
 - spyder3-memory-profiler
 - spyder3-unittest

Added rpms
==========

 - AppStream-compose
 - AppStream-compose-devel
 - ant-jakartamail
 - cargo1.74
 - fonttools
 - fuse2fs
 - google-noto-sans-cjk-fonts
 - google-noto-sans-hk-black-fonts
 - google-noto-sans-hk-bold-fonts
 - google-noto-sans-hk-demilight-fonts
 - google-noto-sans-hk-fonts
 - google-noto-sans-hk-fonts-full
 - google-noto-sans-hk-light-fonts
 - google-noto-sans-hk-medium-fonts
 - google-noto-sans-hk-mono-fonts
 - google-noto-sans-hk-regular-fonts
 - google-noto-sans-hk-thin-fonts
 - google-noto-sans-jp-black-fonts
 - google-noto-sans-jp-bold-fonts
 - google-noto-sans-jp-demilight-fonts
 - google-noto-sans-jp-fonts
 - google-noto-sans-jp-fonts-full
 - google-noto-sans-jp-light-fonts
 - google-noto-sans-jp-medium-fonts
 - google-noto-sans-jp-mono-fonts
 - google-noto-sans-jp-regular-fonts
 - google-noto-sans-jp-thin-fonts
 - google-noto-sans-kr-black-fonts
 - google-noto-sans-kr-bold-fonts
 - google-noto-sans-kr-demilight-fonts
 - google-noto-sans-kr-fonts
 - google-noto-sans-kr-fonts-full
 - google-noto-sans-kr-light-fonts
 - google-noto-sans-kr-medium-fonts
 - google-noto-sans-kr-mono-fonts
 - google-noto-sans-kr-regular-fonts
 - google-noto-sans-kr-thin-fonts
 - google-noto-sans-sc-black-fonts
 - google-noto-sans-sc-bold-fonts
 - google-noto-sans-sc-demilight-fonts
 - google-noto-sans-sc-fonts
 - google-noto-sans-sc-fonts-full
 - google-noto-sans-sc-light-fonts
 - google-noto-sans-sc-medium-fonts
 - google-noto-sans-sc-mono-fonts
 - google-noto-sans-sc-regular-fonts
 - google-noto-sans-sc-thin-fonts
 - google-noto-sans-tc-black-fonts
 - google-noto-sans-tc-bold-fonts
 - google-noto-sans-tc-demilight-fonts
 - google-noto-sans-tc-fonts
 - google-noto-sans-tc-fonts-full
 - google-noto-sans-tc-light-fonts
 - google-noto-sans-tc-medium-fonts
 - google-noto-sans-tc-mono-fonts
 - google-noto-sans-tc-regular-fonts
 - google-noto-sans-tc-thin-fonts
 - google-noto-serif-hk-black-fonts
 - google-noto-serif-hk-bold-fonts
 - google-noto-serif-hk-extralight-fonts
 - google-noto-serif-hk-fonts
 - google-noto-serif-hk-fonts-full
 - google-noto-serif-hk-light-fonts
 - google-noto-serif-hk-medium-fonts
 - google-noto-serif-hk-regular-fonts
 - google-noto-serif-hk-semibold-fonts
 - google-noto-serif-jp-black-fonts
 - google-noto-serif-jp-bold-fonts
 - google-noto-serif-jp-extralight-fonts
 - google-noto-serif-jp-fonts
 - google-noto-serif-jp-fonts-full
 - google-noto-serif-jp-light-fonts
 - google-noto-serif-jp-medium-fonts
 - google-noto-serif-jp-regular-fonts
 - google-noto-serif-jp-semibold-fonts
 - google-noto-serif-kr-black-fonts
 - google-noto-serif-kr-bold-fonts
 - google-noto-serif-kr-extralight-fonts
 - google-noto-serif-kr-fonts
 - google-noto-serif-kr-fonts-full
 - google-noto-serif-kr-light-fonts
 - google-noto-serif-kr-medium-fonts
 - google-noto-serif-kr-regular-fonts
 - google-noto-serif-kr-semibold-fonts
 - google-noto-serif-sc-black-fonts
 - google-noto-serif-sc-bold-fonts
 - google-noto-serif-sc-extralight-fonts
 - google-noto-serif-sc-fonts
 - google-noto-serif-sc-fonts-full
 - google-noto-serif-sc-light-fonts
 - google-noto-serif-sc-medium-fonts
 - google-noto-serif-sc-regular-fonts
 - google-noto-serif-sc-semibold-fonts
 - google-noto-serif-tc-black-fonts
 - google-noto-serif-tc-bold-fonts
 - google-noto-serif-tc-extralight-fonts
 - google-noto-serif-tc-fonts
 - google-noto-serif-tc-fonts-full
 - google-noto-serif-tc-light-fonts
 - google-noto-serif-tc-medium-fonts
 - google-noto-serif-tc-regular-fonts
 - google-noto-serif-tc-semibold-fonts
 - hplip-udev-rules
 - intel-gpu-tools-devel
 - java-21-openjdk
 - java-21-openjdk-demo
 - java-21-openjdk-devel
 - java-21-openjdk-headless
 - java-21-openjdk-javadoc
 - java-21-openjdk-jmods
 - java-21-openjdk-src
 - libappstream-compose0
 - libjasper7
 - libjasper7-32bit
 - libpython3_12-1_0
 - libpython3_12-1_0-32bit
 - libsquashfuse0
 - libtiff6
 - libtiff6-32bit
 - noto-arimo-fonts
 - noto-cousine-fonts
 - noto-fonts
 - noto-loopedlao-fonts
 - noto-loopedlao-ui-fonts
 - noto-loopedthai-fonts
 - noto-loopedthai-ui-fonts
 - noto-music-fonts
 - noto-rashihebrew-fonts
 - noto-sans-bassavah-fonts
 - noto-sans-bhaiksuki-fonts
 - noto-sans-caucasianalbanian-fonts
 - noto-sans-chorasmian-fonts
 - noto-sans-cyprominoan-fonts
 - noto-sans-duployan-fonts
 - noto-sans-elbasan-fonts
 - noto-sans-elymaic-fonts
 - noto-sans-grantha-fonts
 - noto-sans-gunjalagondi-fonts
 - noto-sans-hanifirohingya-fonts
 - noto-sans-hatran-fonts
 - noto-sans-hebrewdroid-fonts
 - noto-sans-hebrewnew-fonts
 - noto-sans-indicsiyaqnumbers-fonts
 - noto-sans-khojki-fonts
 - noto-sans-khudawadi-fonts
 - noto-sans-lineara-fonts
 - noto-sans-mahajani-fonts
 - noto-sans-manichaean-fonts
 - noto-sans-marchen-fonts
 - noto-sans-masaramgondi-fonts
 - noto-sans-math-fonts
 - noto-sans-mayannumerals-fonts
 - noto-sans-medefaidrin-fonts
 - noto-sans-mendekikakui-fonts
 - noto-sans-meroitic-fonts
 - noto-sans-miao-fonts
 - noto-sans-modi-fonts
 - noto-sans-mro-fonts
 - noto-sans-multani-fonts
 - noto-sans-nabataean-fonts
 - noto-sans-nandinagari-fonts
 - noto-sans-newa-fonts
 - noto-sans-nushu-fonts
 - noto-sans-oldhungarian-fonts
 - noto-sans-oldnortharabian-fonts
 - noto-sans-oldpermic-fonts
 - noto-sans-oldsogdian-fonts
 - noto-sans-pahawhhmong-fonts
 - noto-sans-palmyrene-fonts
 - noto-sans-paucinhau-fonts
 - noto-sans-psalterpahlavi-fonts
 - noto-sans-sharada-fonts
 - noto-sans-siddham-fonts
 - noto-sans-signwriting-fonts
 - noto-sans-sogdian-fonts
 - noto-sans-sorasompeng-fonts
 - noto-sans-soyombo-fonts
 - noto-sans-syriac-fonts
 - noto-sans-takri-fonts
 - noto-sans-tamilsupplement-fonts
 - noto-sans-tangsa-fonts
 - noto-sans-tifinaghadrar-fonts
 - noto-sans-tifinaghagrawimazighen-fonts
 - noto-sans-tifinaghahaggar-fonts
 - noto-sans-tifinaghair-fonts
 - noto-sans-tifinaghapt-fonts
 - noto-sans-tifinaghazawagh-fonts
 - noto-sans-tifinaghghat-fonts
 - noto-sans-tifinaghhawad-fonts
 - noto-sans-tifinaghrhissaixa-fonts
 - noto-sans-tifinaghsil-fonts
 - noto-sans-tifinaghtawellemmet-fonts
 - noto-sans-tirhuta-fonts
 - noto-sans-vithkuqi-fonts
 - noto-sans-wancho-fonts
 - noto-sans-warangciti-fonts
 - noto-sans-zanabazarsquare-fonts
 - noto-serif-ahom-fonts
 - noto-serif-balinese-fonts
 - noto-serif-divesakuru-fonts
 - noto-serif-dogra-fonts
 - noto-serif-grantha-fonts
 - noto-serif-gurmukhi-fonts
 - noto-serif-khojki-fonts
 - noto-serif-makasar-fonts
 - noto-serif-nyiakengpuachuehmong-fonts
 - noto-serif-olduyghur-fonts
 - noto-serif-oriya-fonts
 - noto-serif-tamilslanted-fonts
 - noto-serif-tangut-fonts
 - noto-serif-tibetan-fonts
 - noto-serif-toto-fonts
 - noto-serif-vithkuqi-fonts
 - noto-serif-yezidi-fonts
 - noto-tinos-fonts
 - noto-traditionalnushu-fonts
 - openQA-munin
 - openQA-single-instance-nginx
 - os-autoinst-swtpm
 - osgi-service-log
 - osgi-service-log-javadoc
 - plocate
 - python3-platformdirs
 - python312
 - python312-32bit
 - python312-base
 - python312-base-32bit
 - python312-curses
 - python312-dbm
 - python312-devel
 - python312-doc
 - python312-doc-devhelp
 - python312-idle
 - python312-pip
 - python312-setuptools
 - python312-testsuite
 - python312-tk
 - python312-tools
 - rust1.74
 - squashfuse
 - squashfuse-devel
 - squashfuse-tools
 - typelib-1_0-AppStream-compose-1.0

Package Source Changes
======================

AppStream
+- Fix the documentation being put in the devel subpackage while
+  the doc subpackage was empty. I think the doc %files section was
+  probably removed inadvertently since it wasn't mentioned in the
+  changelog and the doc subpackage declaration was left around.
+- Moved the appstreamcli-compose man page to the same package
+  as the binary.
+- Make AppStream-compose-devel explicitly require
+  libappstream-compose0 to stop rpmlint from reporting an error.
+
+- Enable vala support when building in SLE-15 SP6
+- Fix condition in files section for the case where vala support
+  is disabled, where some files are being generated but were not
+  included
+
+- Update to 0.16.3:
+  Features:
+  * compose: Allow creating metadata with complete URLs and no base URL
+  Bugfixes:
+  * Fix tweaking of appstream.pc when building as subproject
+  * Do not override default-priority when parsing multiple metadata files
+  * Ensure stemmer always has the right locale and token-search works
+  * Require a more recent libxmlb to avoid crashes
+  Miscellaneous:
+  * Work around invalid null-dereference warning in GCC 13
+- Drop patch, merged upstream:
+  * 0001-Do-not-override-default-priority-when-parsing-multip.patch
+
+- Update to 0.16.2:
+  Features:
+  * Add API for asking whether the pool is empty
+  * Add DDE to known desktop-environment list
+  * validator: Check if Release Description is inside description tag
+  * Make AppStream use BCP47 for locale in XML data
+  Bugfixes:
+  * Add missing standard::is-hidden attribute to file search enumerator
+  * spdx: Accept brackets in spdx license expression check
+  * introspection: Bring back AS_FORMAT_STYLE_COLLECTION into its enum
+  * compose: Fix crash in asc_l10n_search_translations_qt()
+  * compose: Set lower-cased CID for synthesized components again
+  * Don't crash when non-YAML documents are read as YAML
+  Miscellaneous:
+  * sanitizers: Allow null-dereference check again
+- Drop patch, merged upstream:
+  * bfa8fa6ac4ef645368a93384a6c16ac551a40922.patch
+- Add upstream change:
+  * 0001-Do-not-override-default-priority-when-parsing-multip.patch
+
+- refresh patch for new glib-2.76 from upstream
+
+- Add upstream fix for new glib-2.76:
+  * bfa8fa6ac4ef645368a93384a6c16ac551a40922.patch
+
+- Update to version 0.16.1:
+  Specification:
+  * docs: Clarify the locations where catalog icons should be placed
+  * spec: Expand documentation for <issue> elements
+  * spec: Mention that <issues> is not part of the description
+  * spec: Give some guidance about tone in release descriptions
+  Bugfixes:
+  * Fix binding helper macro to behave correctly if a function is passed directly
+  * Override-merge icons and provided items correctly
+  * tests: Ensure locale is C.UTF-8 in pool tests
+  Miscellaneous:
+  * release: Add sanity checks at beginning of each function
+- Add ldconfig_scriptlets for libappstream-compose
+
+- Update to version 0.16.0:
+  * Features:
+    + pool: Offer API to look up components by bundles
+    + Bump format version to 0.16
+    + Add new AsSystemInfo to read information about the current OS and device
+    + Add helper to get device names from a modalias
+    + Implement support for external release metadata
+    + Add validation support for external release metadata
+    + compose: Validate external release metadata used for the catalog as well
+    + its: Add rule for standalone release metadata
+    + Add function to test if an AsRelation is satisfied on the current system
+    + cli: Add command to list category contents
+    + cli: Display colored checkmarks if possible
+    + cli: Add new is-satisfied check to test relations from the command-line
+    + cli: Add Markdown export support for metainfo-to-news
+    + qt: Add support for SystemInfo & relation satisfication checks
+  * Specification:
+    + spec: Specify a metadata format for external release descriptions
+  * Bugfixes:
+    + Fix build with Clang 15
+    + Give a better error message if trying to list too many categories
+    + Adjust documentation of AsPool.get_components_by_categories to reflect reality
+    + validator: Validate merge component catalog data properly again
+  * Miscellaneous:
+    + Consistently name catalog metadata as such everywhere
+- Update support-meson0.59.patch for latest version of AppStream
+- Build AppStream with compose support as a separate package.
+
+- Use %ldconfig_scriptlets. Leap 15.3 is out of maintenance.
+
ImageMagick
+- version update to 7.1.1.21
+  https://github.com/ImageMagick/Website/blob/main/ChangeLog.md
+- modified patches
+  [bsc#1217014][bsc#1216811]
+  % ImageMagick-s390x-disable-tests.patch (refreshed)
+- deleted patches
+  - ImageMagick-correct-time-to-live.patch (upstreamed)
+- added patches
+  https://github.com/ImageMagick/ImageMagick/commit/8f3c56fabc619c1672865257e5aafe33cbfaaf3e
+  https://github.com/ImageMagick/ImageMagick/commit/3a7b915d9a810ce742987b37c935f6ae8b36df10
+  + ImageMagick-infinite-resource-time-limit.patch
+
MozillaThunderbird
+- Mozilla Thunderbird 115.5.0
+  * fixed: Initial message was not automatically selected when
+    opened in conversation (bmo#1856266)
+  * fixed: Newsgroup users using FQDN identity generated message
+    ID headers with incorrect domain name (bmo#1846837)
+  * fixed: Link previews had poor legibility in dark mode
+    (bmo#1820244)
+  * fixed: Plasma's task switcher displayed the default icon when
+    running the Thunderbird Flatpak on Wayland (bmo#1863262)
+  * fixed: Link to Flatpak manifest was incorrect (bmo#1863594)
+  * fixed: Security fixes
+  MFSA 2023-52 (bsc#1217230)
+  * CVE-2023-6204 (bmo#1841050)
+    Out-of-bound memory access in WebGL2 blitFramebuffer
+  * CVE-2023-6205 (bmo#1854076)
+    Use-after-free in MessagePort::Entangled
+  * CVE-2023-6206 (bmo#1857430)
+    Clickjacking permission prompts using the fullscreen
+    transition
+  * CVE-2023-6207 (bmo#1861344)
+    Use-after-free in ReadableByteStreamQueueEntry::Buffer
+  * CVE-2023-6208 (bmo#1855345)
+    Using Selection API would copy contents into X11 primary
+    selection.
+  * CVE-2023-6209 (bmo#1858570)
+    Incorrect parsing of relative URLs starting with "///"
+  * CVE-2023-6212 (bmo#1658432, bmo#1820983, bmo#1829252,
+    bmo#1856072, bmo#1856091, bmo#1859030, bmo#1860943,
+    bmo#1862782)
+    Memory safety bugs fixed in Firefox 120, Firefox ESR 115.5,
+    and Thunderbird 115.5.0
+- Mozilla Thunderbird 115.4.3
+  * fixed: Forwarding multiple messages as attachments failed
+    (bmo#1859938)
+  * fixed: Message list scrolling fixes (bmo#1827042,bmo#1845391)
+  * fixed: Some text remained incorrectly visible in the message
+    list when using "Grouped By" sorting (bmo#1839035)
+  * fixed: Subject lines were excessively indented in "Grouped
+    by" views (bmo#1841256)
+  * fixed: "Open Message in Conversation" was incorrectly enabled
+    for selections of multiple messages (bmo#1860539)
+  * fixed: States of collapsed and expanded threads were not
+    maintained when switching folders (bmo#1807063)
+  * fixed: Pressing "n" to move to the next unread message on an
+    unread, collapsed thread opened the thread and selected the
+    second message instead of the first (bmo#1847792)
+  * fixed: Search Folders dialog improvements (bmo#1859050)
+  * fixed: "Read Messages" button in Account Central did not
+    retrieve mail from POP accounts (bmo#1858733)
+  * fixed: Events canceled by the organizer were incorrectly sent
+    cancelation message (bmo#1861355)
+- Mozilla Thunderbird 115.4.2
+  * fixed: No messages or calendar items were displayed on
+    startup (bmo#1860885)
+  * fixed: Toolbar & Folder View widget fixes (bmo#1858750)
+  * fixed: Insert image dialog was not properly sized on some
+    localized builds (bmo#1860503)
+  * fixed: The "unencrypted subject" icon was always briefly
+    displayed when replying to a message (bmo#1828591)
+  * fixed: RSS feeds with lengthy attachment filenames cut off
+    visible content (bmo#1858114)
+  * fixed: RSS feeds with no favicon displayed default icon in
+    the folder color (bmo#1858178)
+  * fixed: NNTP messages that were previously downloaded were not
+    displayed if the server went offline (bmo#1859522)
+  * fixed: Vcard photos were not imported when using opening the
+    file with Thunderbird (bmo#1859114)
+  * fixed: Publishing calendars to invalid URLs did not display a
+    helpful error (bmo#1841547)
+  * fixed: Publishing calendar events via authenticated WebDAV
+    failed (bmo#1857033)
+  * fixed: Converting a message to an event failed when the
+    message pane was not displayed (bmo#1857835)
+  * fixed: Redirect dialog displayed for WebDAV calendars was too
+    small (bmo#1856340)
+  * fixed: Visual and Theme improvements
+    (bmo#1844729,bmo#1860218,bmo#1860272)
+
acpica
+- Update to version 20230331
+  * Add C Flexible Array support.
+  * Add support for 64 bit LoongArch compilation.
+  * Add first batch of RISC-V related definitions.
+  * hwvalid: Drop port I/O validation.
+  * iASL: Added full macro support in the preprocessor.
+  * Add support for AMD Secure Processor Table (ASPT) version 1.
+  * Add support for Arm's MPAM ACPI table version 2.
+  * ACPI 6.5: MADT: add support for trace buffer extension in GICC.
+  * Headers: Delete bogus NodeArray array of pointers from AEST table.
+
+- Update to version 20221020:
+  * Added support for FFH (Fixed Function Hardware) Operation Region
+    special context data.
+  * Reverted commit "executer/exsystem: Warn about sleeps greater than 10 ms."
+    Due to user complaints about valid sleeps greater than 10ms seen
+    in some existing machines -- generating lots of warnings.
+  * Do not touch VGA memory when EBDA < 1KiB.
+  * Check that EBDA pointer is in valid memory.
+  * Completed the existing partial support for the CDAT "table".
+  * Updated support for the IORT table - update to version E.e
+  * Added CXL 3.0 structures (CXIMS & RDPAS) to the CEDT table
+  * iASL: Added CCEL table to both compiler/disassembler.
+  * iASL: NHLT table: Fixed compilation of optional undocumented fields
+  * iASL: Fix iASL compile error due to ACPI_TDEL_OFFSET.
+
ant
+- Package and distribute the new ant-jakartamail
+
+- Update ant keyring with new developer keys.
+- Update to 1.10.13:
+  * Breaking changes:
+  - <get> has a new attribute authenticateOnRedirect that can be
+    used to prevent Ant from sending the configured credentials
+    when following a redirect. It is false by default, which means
+    builds that rely on credentials being used on the redirected
+    URI may break.
+  * Fixed bugs:
+  - the PropertyEnumerator change introduced in 1.10.9 proved to
+    be not fully backwards compatible when combined with certain
+    custom PropertyHelper implementations - for example when using
+    AntXtras.
+  - legacy-xml reporter of the junitlauncher task now escapes ]]>
+    when writing CDATA.
+  - <scp> may leak connections when trying to preserve the last
+    modified timestamps of files transferred recursively from a
+    server.
+  - tstamp task would in certain cases parse the SOURCE_DATE_EPOCH
+    environment variable value to an incorrect date. This has now
+    been fixed.
+  - fetch.xml didn't set up non-default repositories propery and
+    thus failed to download JAI.
+  - When building and installing Ant distribution from source, the
+    build script would change permissions on unrelated files in
+    the destination directory. This is now fixed and such
+    unrelated files in the destination directory will be left
+    untouched.
+  - parsing tar entries with multiple NUL bytes in their name
+    would include garbage bytes as the name included all bytes up
+    to the last NUL rather than the first.
+  - loadresource might log warnings even though quiet was set to
+    true
+  - javac task would add paths constructs containing wildcards to
+    the internally created argument file where wildcards are not
+    allowed
+  * Other changes:
+  - added an implementation of the MIME Mail sender based on the
+    repackaged Jakarta Mail package rather than javax Mail.
+  - The "listener" element in the junitlauncher task now supports
+    an "extension" attribute to control the filename extension
+    of the generated output file from the listener.
+  - <ftp> now supports FTPs.
+  - DirectoryScanner avoids listing directory contents when it
+    known it will never use the information retrieved. This may
+    improve performance in some special cases.
+  - <manifest> will now create the parent directory of the
+    manifestFile attribute if it doesn't exist.
+  - org.apache.tools.ant.BuildLogger now has a new method
+    getMessageOutputLevel() which returns the currently set
+    message output level.
+
ant-antlr
+- Package and distribute the new ant-jakartamail
+
+- Update ant keyring with new developer keys.
+- Update to 1.10.13:
+  * Breaking changes:
+  - <get> has a new attribute authenticateOnRedirect that can be
+    used to prevent Ant from sending the configured credentials
+    when following a redirect. It is false by default, which means
+    builds that rely on credentials being used on the redirected
+    URI may break.
+  * Fixed bugs:
+  - the PropertyEnumerator change introduced in 1.10.9 proved to
+    be not fully backwards compatible when combined with certain
+    custom PropertyHelper implementations - for example when using
+    AntXtras.
+  - legacy-xml reporter of the junitlauncher task now escapes ]]>
+    when writing CDATA.
+  - <scp> may leak connections when trying to preserve the last
+    modified timestamps of files transferred recursively from a
+    server.
+  - tstamp task would in certain cases parse the SOURCE_DATE_EPOCH
+    environment variable value to an incorrect date. This has now
+    been fixed.
+  - fetch.xml didn't set up non-default repositories propery and
+    thus failed to download JAI.
+  - When building and installing Ant distribution from source, the
+    build script would change permissions on unrelated files in
+    the destination directory. This is now fixed and such
+    unrelated files in the destination directory will be left
+    untouched.
+  - parsing tar entries with multiple NUL bytes in their name
+    would include garbage bytes as the name included all bytes up
+    to the last NUL rather than the first.
+  - loadresource might log warnings even though quiet was set to
+    true
+  - javac task would add paths constructs containing wildcards to
+    the internally created argument file where wildcards are not
+    allowed
+  * Other changes:
+  - added an implementation of the MIME Mail sender based on the
+    repackaged Jakarta Mail package rather than javax Mail.
+  - The "listener" element in the junitlauncher task now supports
+    an "extension" attribute to control the filename extension
+    of the generated output file from the listener.
+  - <ftp> now supports FTPs.
+  - DirectoryScanner avoids listing directory contents when it
+    known it will never use the information retrieved. This may
+    improve performance in some special cases.
+  - <manifest> will now create the parent directory of the
+    manifestFile attribute if it doesn't exist.
+  - org.apache.tools.ant.BuildLogger now has a new method
+    getMessageOutputLevel() which returns the currently set
+    message output level.
+
ant-junit
+- Package and distribute the new ant-jakartamail
+
+- Update ant keyring with new developer keys.
+- Update to 1.10.13:
+  * Breaking changes:
+  - <get> has a new attribute authenticateOnRedirect that can be
+    used to prevent Ant from sending the configured credentials
+    when following a redirect. It is false by default, which means
+    builds that rely on credentials being used on the redirected
+    URI may break.
+  * Fixed bugs:
+  - the PropertyEnumerator change introduced in 1.10.9 proved to
+    be not fully backwards compatible when combined with certain
+    custom PropertyHelper implementations - for example when using
+    AntXtras.
+  - legacy-xml reporter of the junitlauncher task now escapes ]]>
+    when writing CDATA.
+  - <scp> may leak connections when trying to preserve the last
+    modified timestamps of files transferred recursively from a
+    server.
+  - tstamp task would in certain cases parse the SOURCE_DATE_EPOCH
+    environment variable value to an incorrect date. This has now
+    been fixed.
+  - fetch.xml didn't set up non-default repositories propery and
+    thus failed to download JAI.
+  - When building and installing Ant distribution from source, the
+    build script would change permissions on unrelated files in
+    the destination directory. This is now fixed and such
+    unrelated files in the destination directory will be left
+    untouched.
+  - parsing tar entries with multiple NUL bytes in their name
+    would include garbage bytes as the name included all bytes up
+    to the last NUL rather than the first.
+  - loadresource might log warnings even though quiet was set to
+    true
+  - javac task would add paths constructs containing wildcards to
+    the internally created argument file where wildcards are not
+    allowed
+  * Other changes:
+  - added an implementation of the MIME Mail sender based on the
+    repackaged Jakarta Mail package rather than javax Mail.
+  - The "listener" element in the junitlauncher task now supports
+    an "extension" attribute to control the filename extension
+    of the generated output file from the listener.
+  - <ftp> now supports FTPs.
+  - DirectoryScanner avoids listing directory contents when it
+    known it will never use the information retrieved. This may
+    improve performance in some special cases.
+  - <manifest> will now create the parent directory of the
+    manifestFile attribute if it doesn't exist.
+  - org.apache.tools.ant.BuildLogger now has a new method
+    getMessageOutputLevel() which returns the currently set
+    message output level.
+
ant-junit5
+- Package and distribute the new ant-jakartamail
+
+- Update ant keyring with new developer keys.
+- Update to 1.10.13:
+  * Breaking changes:
+  - <get> has a new attribute authenticateOnRedirect that can be
+    used to prevent Ant from sending the configured credentials
+    when following a redirect. It is false by default, which means
+    builds that rely on credentials being used on the redirected
+    URI may break.
+  * Fixed bugs:
+  - the PropertyEnumerator change introduced in 1.10.9 proved to
+    be not fully backwards compatible when combined with certain
+    custom PropertyHelper implementations - for example when using
+    AntXtras.
+  - legacy-xml reporter of the junitlauncher task now escapes ]]>
+    when writing CDATA.
+  - <scp> may leak connections when trying to preserve the last
+    modified timestamps of files transferred recursively from a
+    server.
+  - tstamp task would in certain cases parse the SOURCE_DATE_EPOCH
+    environment variable value to an incorrect date. This has now
+    been fixed.
+  - fetch.xml didn't set up non-default repositories propery and
+    thus failed to download JAI.
+  - When building and installing Ant distribution from source, the
+    build script would change permissions on unrelated files in
+    the destination directory. This is now fixed and such
+    unrelated files in the destination directory will be left
+    untouched.
+  - parsing tar entries with multiple NUL bytes in their name
+    would include garbage bytes as the name included all bytes up
+    to the last NUL rather than the first.
+  - loadresource might log warnings even though quiet was set to
+    true
+  - javac task would add paths constructs containing wildcards to
+    the internally created argument file where wildcards are not
+    allowed
+  * Other changes:
+  - added an implementation of the MIME Mail sender based on the
+    repackaged Jakarta Mail package rather than javax Mail.
+  - The "listener" element in the junitlauncher task now supports
+    an "extension" attribute to control the filename extension
+    of the generated output file from the listener.
+  - <ftp> now supports FTPs.
+  - DirectoryScanner avoids listing directory contents when it
+    known it will never use the information retrieved. This may
+    improve performance in some special cases.
+  - <manifest> will now create the parent directory of the
+    manifestFile attribute if it doesn't exist.
+  - org.apache.tools.ant.BuildLogger now has a new method
+    getMessageOutputLevel() which returns the currently set
+    message output level.
+
bcc
+- Re-enable bcc-lua now that boo#1215592 is resolved
+
+- Disable building of tests file
+  + Remove zip from build requirements as it is no longer needed
+
+- Mention boo#1215592 in spec file, which tracks the problem with luajit
+  that require temporarily disabling bcc-lua
+
+- Disable bcc-lua until luajit issue is resolved
+- Explicitly add python3-setuptools and zip as a build requirement
+- Update to version 0.28.0
+  + Support for kernel up to 6.3.
+  + new libbpf tool: tcppktlat.
+  + bcc tool updates: funcslower, wakeuptime, profile, offcputime, deadlock,
+    funccount, argdist, kvmexit, runqlen and cpuunclaimed.
+  + libbpf tool update: memleak, tcprtt, tcpconnlat, funclatency, syscount,
+    cpufreq, biosnoop.
+  + support ringbuf_query for bcc tools.
+  + handle '[uprobes]' memory mapped file properly during stack tracing.
+  + Fix maximum allowed index for print_linear_hist for bcc tools.
+  + add module kfunc/kretfunc support.
+  + clang rewriter: initialize only the requested parameters
+  + filter with available_filter_functions to make multi-functions kprobes more
+    robust for both bcc and libbpf tools.
+  + doc update, other bug fixes and tools improvement
+- Update to version 0.27.0
+  + Support for kernel up to 6.2
+  + bcc tool updates for ttysnoop, slabratetop, readahead, nfsslower, cpudist,
+    cachetop, cachestat, etc.
+  + libbpf-tools updates for mdflush, drsnoop, statsnoop, ttysnoop, softirqs,
+    wakeuptime, cachestat, numamove, etc.
+  + fix for incomplete static libraries
+  + implement zip archive support
+  + upgrade to use c++14 standard
+  + new libbpf-tools: memleak
+  + add loongarch support in libbpft-tools
+  + doc update, bug fixes and other tools improvement
+
clamav-database
+- database refresh on 2023-12-04 (bsc#1084929)
+
+- database refresh on 2023-11-27 (bsc#1084929)
+
cloud-regionsrv
+- Update to version 8.2.0 (bsc#1216917)
+  + Handle IPv4 setup as optional
+  + Make resolution via IP address of client in the fallback path exception
+    free
+
-    need to sned location information from the server. Otherwise fail over
+    need to send location information from the server. Otherwise fail over
crash
-- On ppc64 handle a CPU that is in an emergency stack when running
-  in real mode or other special scenarios, including dedicated
-  emergency stacks such as machine check and system reset
-  interrupt.
-  Added crash-ppc64-handle-backtrace-in-emergency-stack.patch
-  Obtained by porting crash-utility/crash github commit:
-  cdd57e8b16aba2f5714673368d6dbc7565d59841
-  A requested update via bsc#1210396
-
-- Fix the problem about crash-kmp-rt is being pulled out from sle_module_rt
-  on SP5 after crash SR#289192 and kernels-source SR#288863 [2] are being
-  accepted.
+- Tidy patches to apply without offsets to crash 8.0.4/gdb 10.2:
+  - crash-allow-use-of-sadump-captured-KASLR-kernel.patch
+  - crash-debuginfo-compressed.patch
+  - crash-make-emacs-default.diff
+  - crash-sles9-time.patch
+  - crash-stop_read_error_when_intent_is_retry.patch
+  - crash-usrmerge.patch
-- Enable kmp-rt for SLERT15 SP5
+- Update to crash-8.0.4
+  - Removed patches already present in upstream source:
+  * crash-fix-glibc-redefs.patch
+  * crash-get-linux_banner-without-using-syment-type.patch
+- Removed the redundant clean section from the spec file
+
+- Updated crash gcore extension to current upstream v1.64 dated
+  2023-02-28. It's not updated in each product version and most
+  don't release a crash-gcore rpm now but updated the latest
+  openSUSE package project at this time.
+
+- On initialization crash verifies the core based on the text
+  referenced by the linux_banner symbol in the supplied core. It
+  chooses how to get the address of the text based on the symbol
+  type decoded with gdb. For some compressed kernels with an
+  accessible debuginfo file the type is not supported (bss segment
+  found, data reference expected) but the symbol and it's value are
+  valid. This causes the linux_banner text to be used as the
+  "address" of the linux_banner and that's an invalid address for
+  the coredump causing crash to fail to load reporting something
+  like:
+  WARNING: invalid linux_banner pointer: 65762078756e694c
+  where the address is obviously ASCII text used as a number. A
+  SUSE patch to support compressed kernel binaries introduces the
+  behavior, it does not happen for upstream crash source as-is. The
+  difference is whether the symbol details are obtained from the
+  kernel binary or debuginfo (fails for some debuginfos).
+  * crash-get-linux_banner-without-using-syment-type.patch
+  In verify_version(), choose how to obtain the linux_banner address
+  based on the result of get_symbol_type() instead. TYPE_CODE_ARRAY
+  causes the value of the symbol obtained from gdb to be used.
+  TYPE_CODE_PTR causes the sybol data to be read to get the address.
+  Default is unrecognized type but a warning is shown and the value
+  obtained from gdb used as a best case choice.
+  (bsc#1190434 c#24)
+
+- crash has it's own definitions of some glibc functions, including
+  strlcpy(), length limited string copy. In glibc 2.38 the second
+  argument is const char *, in crash it is char *. The argument is
+  the source string to copy from and shouldn't be modified.  crash
+  uses the glibc version in some places, it's own in others and the
+  declarations are incompatible resulting in build errors. Added
+  * crash-fix-glibc-redefs.patch
+  to make the crash declaration of strlcpy() match the glibc 2.38
+  version. It may also need to be made product version conditional
+  but it should fix Factory.
+
+- Remove hard dependency to kernel macros to allow quilt setup
+
+- Fix build on SLE12:
+  * crash-gdb-gnulib-define-warndecl.patch: Provide a definition of
+    __warndecl() in the gnulib copy of cdefs.h.
+
+- Update to crash 8.0.3
+  - Remove upstreamed patches:
+  * crash-EPPIC-extension-support-for-crash-8.x-gdb-10.x.patch
+  * crash-Add-RISCV64-framework-code-support.patch
+  * crash-RISCV64-Make-crash-tool-enter-command-line-and-suppo.patch
+  * crash-RISCV64-Add-dis-command-support.patch
+  * crash-RISCV64-Add-irq-command-support.patch
+  * crash-RISCV64-Add-bt-command-support.patch
+  * crash-RISCV64-Add-help-r-command-support.patch
+  * crash-RISCV64-Add-help-m-M-command-support.patch
+  * crash-RISCV64-Add-mach-command-support.patch
+  * crash-RISCV64-Add-the-implementation-of-symbol-verify.patch
+  * crash-define-EM_RISCV-fallback.patch
+  * gdb-10.2-Revert-gnulib-fix-stat-fstat-build-errors.patch
+  * gdb-10.2-gnulib-update-to-776af40e0.patch
+- Stop building the trace extension from the main package. The
+  extension is now built from the crash-trace source package.
+  - Remove crash-trace-2021-02-08.tar.bz2
+
+- Fix ppc64le build with glibc 2.32+:
+  * gdb-10.2-Revert-gnulib-fix-stat-fstat-build-errors.patch
+  * gdb-10.2-gnulib-update-to-776af40e0.patch
+  * crash-gdb-10.2.series: Patch series for the embedded GDB.
+  * crash-gdb-7.6.series: Remove (obsolete).
+
+- crash-define-EM_RISCV-fallback.patch: Provide a fallback
+  definition of EM_RISCV.
+
+- Remove crash-Define-fallback-PN_XNUM.patch: No more compatibility
+  with SLE11.
+
+- Enable build for 32-bit Arm and 32-bit IBM POWER.
+
+- Add support for RISCV64:
+  * crash-Add-RISCV64-framework-code-support.patch
+  * crash-RISCV64-Make-crash-tool-enter-command-line-and-suppo.patch
+  * crash-RISCV64-Add-dis-command-support.patch
+  * crash-RISCV64-Add-irq-command-support.patch
+  * crash-RISCV64-Add-bt-command-support.patch
+  * crash-RISCV64-Add-help-r-command-support.patch
+  * crash-RISCV64-Add-help-m-M-command-support.patch
+  * crash-RISCV64-Add-mach-command-support.patch
+  * crash-RISCV64-Add-the-implementation-of-symbol-verify.patch
+
+- crash-EPPIC-extension-support-for-crash-8.x-gdb-10.x.patch: EPPIC
+  extension support for crash-8.x + gdb-10.x.
+
+- Update to crash 8.0.2
+  - Update to gdb-10.2
+  - Support kernels at least up to 5.18
+  - Refresh
+  * crash-patch-gdb.patch
+  * crash-extensions-rule-for-defs.patch
+  * crash-SLE15-SP1-Fix-for-PPC64-kernel-virtual-address-translation-in.patch
+  - Remove upstreamed patches
+  * 0019-Add-kernel-version-dependent-check-for-getting-lengt.patch
+  * crash-missing-declarations.patch
+- Disable eppic extension, because it does not built for GDB 10.2.
+- Remove eppic patches
+  * eppic-remove-duplicate-symbols.patch
+  * eppic-support-arm64.patch
+  * eppic-switch-to-system-lib.patch
+- Clean up specfile after the discontinued SIAL extension.
crmsh
+- Update to version 4.6.0+20231123.50296e9:
+  * Fix: sh: raise AuthorizationError and generate diagnose messages when ClusterShell fails with 255
+  * Dev: bootstrap: allow to authenticate interactively in `crm cluster join --use-ssh-agent`
+  * Dev: ssh-agent: add informative logging for adding keys to authorized_keys
+  * Dev: ssh-agent: add diagnose messages
+  * Dev: bootstrap: implement ssh-agent support for geo cluster (jsc#PED-5774)
+  * Dev: bootstrap: refine key swap for user `hacluster`
+  * Dev: bootstrap: implement ssh-agent support for qdevice (jsc#PED-5774)
+  * Dev: bootstrap: implement ssh-agent support (jsc#PED-5774)
+  * Dev: cmd_status: Show error correctly for crm status
+  * Dev: ui_utils: Supports '=' when setting node/resource attributes
+  * Fix: report: Pick up tarball suffix dynamically (bsc#1215438)
+  * Fix: report: Pick 'gzip' as the first compress prog for cross-platform compatibility(bsc#1215438)
+  * Fix: constants: Add several resource meta attributes (bsc#1215319)
+  * Dev: spec: Remove %generate_buildrequires to prevent OBS build failures on SLE15SP5 and Leap15.5
+  * Dev: refactor shell calling routines
+
curl
+  * [bsc#1217573, CVE-2023-46218] cookie mixed case PSL bypass
+  * [bsc#1217574, CVE-2023-46219] HSTS long file name clears contents
+  * Add curl-CVE-2023-46218.patch curl-CVE-2023-46219.patch
+
+- Security fixes:
desktop-file-utils
+- Add patches to support Desktop entry spec 1.5 (bsc#1216357):
+  * 0001-validate-support-SingleMainWindow-key-from-1.5.patch
+  * 0002-validate-Support-version-1.5.patch
+
e2fsprogs
-- libext2fs-add-sanity-check-to-extent-manipulation.patch: libext2fs: add
-  sanity check to extent manipulation (bsc#1198446 CVE-2022-1304)
+- libext2fs-add-sanity-check-to-extent-manipulation.patch: Merged upstream
+  in 1.46.6
+- References to old bugs fixed by updating to latest upstream version:
+  CVE-2015-0247 CVE-2015-1572 CVE-2019-5094 CVE-2019-5188 CVE-2022-1304
+  bsc#1009532 bsc#1038194 bsc#1128383 bsc#1145716 bsc#1152101 bsc#1154295
+  bsc#1160571 bsc#1160979 bsc#1170964 bsc#1183791 bsc#1198446 bsc#915402
+  bsc#918346 bsc#960273
-- Add references from old package:
-  Autoreconf removed from the spec file, just without bsc reference
-  (bsc#1183791)
-  Fix po-remove-unnecessary-buggy-positional-parameter-spe.patch in 1.45.3
-  (bsc#1170964)
-  Fix e2fsck-clarify-overflow-link-count-error-message.patch in 1.46.0
-  (bsc#1160979)
-  Fix ext2fs-update-allocation-info-earlier-in-ext2fs_mkdi.patch in 1.46.0
-  (bsc#1160979)
-  Fix ext2fs-implement-dir-entry-creation-in-htree-directo.patch in 1.46.0
-  (bsc#1160979)
-  Fix tests-add-test-to-excercise-indexed-directories-with.patch in 1.46.0
-  (bsc#1160979)
-  Fix tune2fs-update-dir-checksums-when-clearing-dir_index.patch in 1.46.0
-  (bsc#1160979)
-  Fix e2fsck-abort-if-there-is-a-corrupted-directory-block.patch in 1.45.5
-  (bsc#1160571 CVE-2019-5188)
-  Fix e2fsck-don-t-try-to-rehash-a-deleted-directory.patch in 1.45.5
-  (bsc#1160571 CVE-2019-5188)
-  Fix resize2fs-Make-minimum-size-estimates-more-reliable.patch in 1.45.5
-  (bsc#1154295)
-  Fix libsupport-add-checks-to-prevent-buffer-overrun-bugs.patch in 1.45.4
-  (bsc#1152101 CVE-2019-5094)
-  Fix libext2fs-call-fsync-2-to-clear-stale-errors-for-a-n.patch in 1.44.3
-  (bsc#1145716)
-  Fix e2fsck-check-and-fix-tails-of-all-bitmaps.patch in 1.45.1 (bsc#1128383)
-  Fix libext2fs-Fix-fsync-2-detection.patch in 1.44.0 (bsc#1038194)
-  Fix resize2fs-Fix-32-64-bit-overflow-when-multiplying-by-blocks-cl.patch
-  in 1.42.12 (bsc#1009532)
-  Fix libext2fs-fix-potential-buffer-overflow-in-closefs.patch
-  in 1.42.13 (bsc#918346 CVE-2015-1572)
-  Fix libext2fs-avoid-buffer-overflow-if-s_first_meta_bg-i.patch
-  in 1.42.12 (bsc#915402 CVE-2015-0247)
-  Got specfile fix through Factory (bsc#960273)
-  Fix libext2fs-don-t-ignore-fsync-errors.patch in 1.43.4 (bsc#1038194)
+- mke2fs-Drop-metadata_csum_seed-and-orphan_file-from-.patch: Update
+  mke2fs.conf to create filesystems only with features supported
+  by tools in SLE15-SP4/5 by default.
+
+- Update specfile to make sure regenerate_initrd_post macro is defined
+
+- Update to 1.47.0:
+  * Add support for the orphan_file feature, which speeds up workloads
+    that are deleting or truncating a large number files in parallel.
+    This compat feature was first supported in the v5.15 Linux kernel.
+  * The mke2fs program (via the mke2fs.conf file) now enables the
+    metadata_csum_seed and orphan_file features by default.
+    The metadata_csum_seed feature is an incompat feature which is
+    first supported in the Linux kernel starting in the 4.4 kernel.
+  * Mke2fs now supports the extended option "assume_storage_prezeroed"
+    which causes mke2fs to skip zeroing the journal and inode tables
+    and to mark the inode tables as zeroed.
+  * Add support to tune2fs and e2label to set the label and UUID for
+    a mounted file system using a ioctl, which is more reliable than
+    modifying the superblock via writing to the block device.
+    The kernel support for setting the label landed in v5.17, while
+    the support for adding the UUID landed in v6.0. If the ioctls
+    are not supported, tune2fs and e2label will fall back old
+    strategy of directly modifying the superblock.
+  * Allow tune2fs to disable the casefold feature after scanning all
+    of the directories do not have the Casefold flag set.
+
+- Replace transitional %usrmerged macro with regular version check (boo#1206798)
+
+- Refresh e2fsprogs.keyring based on currently provided keys.
+
+- Spec file cleanup:
+  + Drop remainders regarding -mini packages, which was not a thing
+    since Jan 2014.
+  + Split build of fuse2fs out into a sep build (_multibuild
+    enabled).
+
+- enabled fuse2fs build which enable to mount ext2/3/4 via FUSE
+
+- avoid empty preuninstall script
+
+- Update to 1.46.5:
+  * better handling for resizing to fs sizes which would exceed inode limits
+  * fix crash in e2fsck fastcommit handling
+  * fix possibly lost quota limits when e2fsck corrects quota files
+  * fix tune2fs to properly transfer quota limits when convertion quota files
+  * add support for handling of version 0 quota files in tune2fs
+  * teach libss to use libreadline.so.8
+  * optimize resize2fs cpu usage for large filesystems
+  * teach libuuid to use getrandom() or getentropy() if available
+- libss-add-newer-libreadline.so.8-to-dlopen-path.patch: Remove, merged upstream
+- quota-Add-support-to-version-0-quota-format.patch: Remove, merged upstream
+- quota-Fold-quota_read_all_dquots-into-quota_update_l.patch: Remove, merged upstream
+- quota-Rename-quota_update_limits-to-quota_read_all_d.patch: Remove, merged upstream
+- tune2fs-Fix-conversion-of-quota-files.patch: Remove, merged upstream
+- e2fsck-Do-not-trash-user-limits-when-processing-orph.patch: Remove, merged upstream
+- debugfs-Fix-headers-for-quota-commands.patch: Remove, merged upstream
+- quota-Drop-dead-code.patch: Remove, merged upstream
+
+- Drop ProtectClock hardening, can cause issues if other device acceess is needed
eclipse
+- Added patch:
+  * eclipse-ant.patch
+    + allow building with newer ant versions
+
+- Fix build with hamcrest 2.2
+- Removed patch:
+  * explicit-hamcrest.patch
+    + not needed any more
+- Modified patch:
+  * eclipse-feature-plugins-to-category-ius.patch
+  * eclipse-patch-out-fileupload-dep.patch
+    + do not require org.hamcrest.* bundles that don't exist in
+    hamcrest 2.x any more
+
fping
-- add fping-4.0-fix_ipv6-disabled.patch to fix fping on servers
-  with disabled IPv6 [bsc#1133988]
+- Update to 5.1:
+  * Netdata: use host instead name as family label
+  * Netdata: use formatstring macro PRId64
+  * Allow -4 option to be given multiple times
+  * Documentation fix
+  * Retain privileges until after privileged setsockopt
+  * Set bind to source only when option is set
+  * Fix getnameinfo not called properly for IPv4
+  * Documentation updates
+
+- no longer invoke permissions macros for fping. It now uses ICMP_RAW sockets
+  instead (bsc#1174504).
+
+- update to 5.0:
+  - In non-quiet loop and count mode, a line is printed for every lost packet
+    8.8.8.8 : xmt/rcv/%loss = 2/2/0%, min/avg/max = 12.3/12.5/12.8
+    8.8.8.7 : xmt/rcv/%loss = 2/0/100%
+  - The returned size in bytes now always excludes the IP header, so if before it
+    reported '84 bytes' e.g. when using 'fping -l', now it reports '64 bytes'.
+    This is to make the reported size consistent with ping(8) from iputils and
+    also with fping when pinging a IPv6 host (which never included the IPv6
+    header size).
+  - The number of sent pings is only counted when the pings are received or have
+    timed out, ensuring that the loss ratio will be always correct. This makes it
+    possible, for example, to use loop mode (-l) with interval statistics (-Q)
+    and a timeout larger than period, without having the issue that initially
+    some pings would be reported as missing (#193)
+  - Improved precision of measurements from 10us to 1us (#136, thanks @tycho)
+  - The reported size of received packets is now always correct on Linux even for
+    packets > 4096 bytes.
+
+- fping 4.4:
+  * Linux unprivileged ping support (ping_group_range)
+  * Add SIGQUIT summary support similar to ping
+  * bug fixes
+- drop fping-4.2-gcc10-extern.patch, upstream
+
+- add upstream signing key and validate source signature
+
+- correct download URL (upstream is using .gz instead of bz2)
+- refreshed fping-4.2-gcc10-extern.patch
+
+- add fping-4.2-gcc10-extern.patch to fix build with GCC10
+
+- bzip2 the sources
+- package COPYING file instead of INSTALL file
+- use permission settings only on SLE-15 and newer
+
+- Update to version 4.2
+  * Allow decimal numbers for -t -i -p and -Q
+  * New option -x/--reachable to check # of reachable hosts
+  * Fix build with --disable-ipv6 (#134)
+  * Fix hang with '-6' if the binary is named 'fping6'
+  * Get rid of warning 'timeout -t value' (#142)
+
+- Update to version 4.1
+  * Fix problem when socket fd is 0
+  * Fix running on servers with disabled IPv6
+  * Allow running "fping -h" or "--help" even when raw socket
+    can't be opened
+  * Fix build issue with FreeBSD and IPv6
-- Update to version 3.10:
-  + Fix confusing error message with -g and IPv6 addresses (#58).
-  + Allow option '-f' also for non-root (since setuid privileges
-    are dropped).
-  + Do not retry twice DNS lookup on DNS lookup problem.
-  + Remove support for NIS groups.
-  + Better document -B backoff-factor and when it can be used (#33)
-  + More tests added.
-
-- Update to version 3.9:
-  + Fix random output on socket error (#56).
-  + Support ppc64le architecture by including alpha libtool
-    version.
-  + Fix compilation problem on FreeBSD (#57).
-  + Initial test suite and continous intergration (with
-    travis-ci.org / coveralls.io).
-  + Don't output usage information on error.
-- Changes from version 3.8:
-  + Fix segmentation fault introduced in version 3.7 with loop mode
-    (#55).
-- Changes from version 3.7:
-  + Allow running as non-root on Mac OS X by using non-privileged
-    ICMP (#7).
-  + Remove unnecessary IPv6 socket options.
-  + Fix again compatibility issue with FreeBSD.
-  + Fix fping hanging forever on permanent sendto failure.
-  + Fix duplicate echo reply packets causing early stop in count
-    mode (#53).
-- Changes from version 3.6:
-  + Fix loop issue after 65536 pings (#12).
-  + Minimum ping data size is now 0.
-  + Removed setsockopt IPV6_CHECKSUM, which shouldn't be set and
-    breaks compiling on Solaris.
-  + Fix wrong min RTT value with -Q option (#51).
-- Drop export CFLAGS="%optflags -D_GNU_SOURCE -fwhole-program", it
-  breaks the build.
-
frr
+- Apply upstream fix for a crash on malformed BGP UPDATE message
+  with an EOR, because the presence of EOR does not lead to a
+  treat-as-withdraw outcome (CVE-2023-47235,bsc#1216896,https://github.com/FRRouting/frr/pull/14716/commits/6814f2e0138a6ea5e1f83bdd9085d9a77999900b)
+  [+ 0015-bgpd-Treat-EOR-as-withdrawn-to-avoid-unwanted-handli.patch]
+- Apply upstream fix for a crash on crafted BGP UPDATE message with
+  a MP_UNREACH_NLRI attribute and additional NLRI data (CVE-2023-47234,
+  bsc#1216897,https://github.com/FRRouting/frr/pull/14716/commits/c37119df45bbf4ef713bc10475af2ee06e12f3bf)
+  [+ 0016-bgpd-Ignore-handling-NLRIs-if-we-received-MP_UNREACH.patch]
+- Apply upstream fix for attempts to read beyond the end of the
+  stream during labeled unicast parsing (CVE-2023-38407,bsc#1216899,https://github.com/FRRouting/frr/pull/12956/commits/ab362eae68edec12c175d9bc488bcc3f8b73d36f)
+  [+ 0017-bgpd-Fix-use-beyond-end-of-stream-of-labeled-unicast.patch]
+- Apply upstream fix for an nlri length of zero mishandling, aka
+  "flowspec overflow" (CVE-2023-38406,bsc#1216900,https://github.com/FRRouting/frr/pull/12884/commits/0b999c886e241c52bd1f7ef0066700e4b618ebb3)
+  [+ 0018-bgpd-Flowspec-overflow-issue.patch]
+
git
+- update to 2.43.0:
+  * The "--rfc" option of "git format-patch" used to be a valid way to
+  override an earlier "--subject-prefix=<something>" on the command
+  line and replace it with "[RFC PATCH]", but from this release, it
+  merely prefixes the string "RFC " in front of the given subject
+  prefix.  If you are negatively affected by this change, please use
+  "--subject-prefix=PATCH --rfc" as a replacement.
+  * In Git 2.42, "git rev-list --stdin" learned to take non-revisions
+  (like "--not") from the standard input, but the way such a "--not" was
+  handled was quite confusing, which has been rethought.  The updated
+  rule is that "--not" given from the command line only affects revs
+  given from the command line that comes but not revs read from the
+  standard input, and "--not" read from the standard input affects
+  revs given from the standard input and not revs given from the
+  command line.
+  * A message written in olden time prevented a branch from getting
+  checked out, saying it is already checked out elsewhere. But these
+  days, we treat a branch that is being bisected or rebased just like
+  a branch that is checked out and protect it from getting modified
+  with the same codepath.  The message has been rephrased to say that
+  the branch is "in use" to avoid confusion.
+  * Hourly and other schedules of "git maintenance" jobs are randomly
+  distributed now.
+  * "git cmd -h" learned to signal which options can be negated by
+  listing such options like "--[no-]opt".
+  * The way authentication related data other than passwords (e.g.,
+  oauth token and password expiration data) are stored in libsecret
+  keyrings has been rethought.
+  * Update the libsecret and wincred credential helpers to correctly
+  match which credential to erase; they erased the wrong entry in
+  some cases.
+  * Git GUI updates.
+  * "git format-patch" learned a new "--description-file" option that
+  lets cover letter description to be fed; this can be used on
+  detached HEAD where there is no branch description available, and
+  also can override the branch description if there is one.
+  * Use of the "--max-pack-size" option to allow multiple packfiles to
+  be created is now supported even when we are sending unreachable
+  objects to cruft packs.
+  * "git format-patch --rfc --subject-prefix=<foo>" used to ignore the
+  "--subject-prefix" option and used "[RFC PATCH]"; now we will add
+  "RFC" prefix to whatever subject prefix is specified.
+  * "git log --format" has been taught the %(decorate) placeholder for
+  further customization over what the "--decorate" option offers.
+  * The default log message created by "git revert", when reverting a
+  commit that records a revert, has been tweaked, to encourage people
+  to describe complex "revert of revert of revert" situations better in
+  their own words.
+  * The command-line completion support (in contrib/) learned to
+  complete "git commit --trailer=" for possible trailer keys.
+  * "git update-index" learned the "--show-index-version" option to
+  inspect the index format version used by the on-disk index file.
+  * "git diff" learned the "diff.statNameWidth" configuration variable,
+  to give the default width for the name part in the "--stat" output.
+  * "git range-diff --notes=foo" compared "log --notes=foo --notes" of
+  the two ranges, instead of using just the specified notes tree,
+  which has been corrected to use only the specified notes tree.
+  * The command line completion script (in contrib/) can be told to
+  complete aliases by including ": git <cmd> ;" in the alias to tell
+  it that the alias should be completed in a similar way to how "git
+  <cmd>" is completed.  The parsing code for the alias has been
+  loosened to allow ';' without an extra space before it.
+  * "git for-each-ref" and friends learned to apply mailmap to
+  authorname and other fields in a more flexible way than using
+  separate placeholder letters like %a[eElL] every time we want to
+  come up with small variants.
+  * "git repack" machinery learned to pay attention to the "--filter="
+  option.
+  * "git repack" learned the "--max-cruft-size" option to prevent cruft
+  packs from growing without bounds.
+  * "git merge-tree" learned to take strategy backend specific options
+  via the "-X" option, like "git merge" does.
+  * "git log" and friends learned the "--dd" option that is a
+  short-hand for "--diff-merges=first-parent -p".
+  * The attribute subsystem learned to honor the "attr.tree"
+  configuration variable that specifies which tree to read the
+  .gitattributes files from.
+  * "git merge-file" learns a mode to read three variants of the
+  contents to be merged from blob objects.
+  * see https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.0.txt
+
+- git 2.42.1:
+  * The usual number of bug fixes, including
+  * Fix "git diff" exit code handling
+  * Various fixes to the behavior of "rebase -i" when the command
+    got interrupted by conflicting changes
+
+- Add rule for /etc/gitconfig in gitweb.cgi apparmor profile (bsc#1216501).
+
+- gitweb.cgi AppArmor profile
+  - make the profile a named profile
+  - add local/ include to make custom additions easier
+
-- Apply "CVE-2023-25652.patch" to fix a security vulnerability
-  where by feeding a specially crafted input to `git apply
-  - -reject`, a path outside the working tree could be overwritten
-  with partially controlled contents (corresponding to the rejected
-  hunk(s) from the given patch). [CVE-2023-25652, bsc#1210686]
-- Apply "CVE-2023-25815.patch" to fix a security vulnerability that
-  exists when Git is compiled with runtime prefix support and runs
-  without translated messages, then it still used the gettext
-  machinery to display messages, which subsequently potentially
-  looked for translated messages in unexpected places. This allowed
-  for malicious placement of crafted messages. [CVE-2023-25815,
-  bsc#1210686]
-- Apply "CVE-2023-29007-0.patch", "CVE-2023-29007-1.patch",
-  "CVE-2023-29007-2.patch", and "CVE-2023-29007-3.patch" to fix a
-  security vulnerability that occurred when renaming or deleting a
-  section from a configuration file, then certain malicious
-  configuration values might have been misinterpreted as the
-  beginning of a new configuration section, leading to arbitrary
-  configuration injection. [CVE-2023-29007, bsc#1210686]
-
-- Fix CVE-2023-22490, using a specially-crafted repository, Git can be tricked
-  into using its local clone optimization even when using a non-local transport
-  (CVE-2023-22490, bsc#1208027)
-- Fix CVE-2023-23946, a path outside the working tree can be overwritten as the
-  user who is running "git apply"
-  (CVE-2023-23946, bsc#1208028)
-  * fix-CVE-2023-22490-1.patch
-  * fix-CVE-2023-22490-2.patch
-  * fix-CVE-2023-22490-3.patch
-  * fix-CVE-2023-22490-4.patch
-
-- Fix CVE-2022-41903, heap overflow in `git archive` and
-  `git log --format`
-  (CVE-2022-41903, bsc#1207033)
-  * fix-CVE-2022-41903.patch
-- Fix CVE-2022-23521, gitattributes parsing integer overflow
-  (CVE-2022-23521, bsc#1207032)
-
-- Fix CVE-2022-39260, overflow in `split_cmdline()`, leading to
-  arbitrary heap writes and remote code execution
-  (CVE-2022-39260, bsc#1204456)
-  fix-CVE-2022-39260.patch
-- Fix CVE-2022-39253, dereference issue with symbolic links via
-  the `--local` clone mechanism
-  (CVE-2022-39253, bsc#1204455)
-  fix-CVE-2022-39253.patch
-
-- Follow up fix for CVE-2022-24765, potential command injection
-  via git worktree.
-  (CVE-2022-29187, bsc#1201431)
-  * fix-CVE-2022-29187.patch
+- git 2.42.0:
+  * "git pack-refs" learns "--include" and "--exclude" to tweak the ref
+    hierarchy to be packed using pattern matching.
+  * 'git worktree add' learned how to create a worktree based on an
+    orphaned branch with `--orphan`.
+  * "git pack-objects" learned to invoke a new hook program that
+    enumerates extra objects to be used as anchoring points to keep
+    otherwise unreachable objects in cruft packs.
+  * Add more "git var" for toolsmiths to learn various locations Git is
+    configured with either via the configuration or hard-coded defaults.
+  * 'git notes append' was taught '--separator' to specify string to insert
+    between paragraphs.
+  * The "git for-each-ref" family of commands learned placeholders
+    related to GPG signature verification.
+  * "git diff --no-index" learned to read from named pipes as if they
+    were regular files, to allow "git diff <(process) <(substitution)"
+    some shells support.
+  * Help newbies by suggesting that there are cases where force-pushing
+    is a valid and sensible thing to update a branch at a remote
+    repository, rather than reconciling with merge/rebase.
+  * "git blame --contents=file" has been taught to work in a bare
+    repository.
+  * "git branch -f X" to repoint the branch X said that X was "checked
+    out" in another worktree, even when branch X was not and instead
+    being bisected or rebased.  The message was reworded to say the
+    branch was "in use".
+  * Tone down the warning on SHA-256 repositories being an experimental
+    curiosity.  We do not have support for them to interoperate with
+    traditional SHA-1 repositories, but at this point, we do not plan
+    to make breaking changes to SHA-256 repositories and there is no
+    longer need for such a strongly phrased warning.
+  * "git diff-tree" has been taught to take advantage of the
+    sparse-index feature.
+  * The object traversal using reachability bitmap done by
+    "pack-object" has been tweaked to take advantage of the fact that
+    using "boundary" commits as representative of all the uninteresting
+    ones can save quite a lot of object enumeration.
+  * "git worktree" learned to work better with sparse index feature.
+  * When the external merge driver is killed by a signal, its output
+    should not be trusted as a resolution with conflicts that is
+    proposed by the driver, but the code did.
+  * The set-up code for the get_revision() API now allows feeding
+    options like --all and --not in the --stdin mode.
+  * Move functions that are not about pure string manipulation out of
+    strbuf.[ch]
+  * "imap-send" codepaths got cleaned up to get rid of unused
+    parameters.
+  * Enumerating refs in the packed-refs file, while excluding refs that
+    match certain patterns, has been optimized.
+  * Mark-up unused parameters in the code so that we can eventually
+    enable -Wunused-parameter by default.
+  * Instead of inventing a custom counter variables for debugging,
+    use existing trace2 facility in the fsync customization codepath.
+  * "git branch --list --format=<format>" and friends are taught
+    a new "%(describe)" placeholder.
+  * Clarify how to choose the starting point for a new topic in
+    developer guidance document.
+  * The implementation of "get_sha1_hex()" that reads a hexadecimal
+    string that spells a full object name has been extended to cope
+    with any hash function used in the repository, but the "sha1" in
+    its name survived.  Rename it to get_hash_hex(), a name that is
+    more consistent within its friends like get_hash_hex_algop().
+  * Command line parser fix, and a small parse-options API update.
+  * bug fixes
+
+- git 2.41.0: This update contains a number of compatible updates,
+  improvements and extensions to multiple workflows. Some changes
+  may break backwards compatibility:
+  * The libsecret credential helper obsoletes direct GNOME keyring
+    support, which was dropped (git-credential-gnome-keyring)
+  * "git format-patch" has been taught to ignore end-user
+    configuration ("diff.noprefix") and always use the standard
+    prefixes, to avoid breaking the receiving end of the patch
+- drop sha256_clone_fix.patch
+
+- git 2.40.1:
+  * CVE-2023-25652: By feeding specially crafted input to git apply
+  - -reject, a path outside the working tree can be overwritten
+    with partially controlled contents (corresponding to the
+    rejected hunk(s) from the given patch).
+  * CVE-2023-25815: When Git is compiled with runtime prefix
+    support and runs without translated messages, it still used
+    the gettext machinery to display messages, which subsequently
+    potentially looked for translated messages in unexpected
+    places. This allowed for malicious placement of crafted
+    messages.
+  * CVE-2023-29007: When renaming or deleting a section from a
+    configuration file, certain malicious configuration values may
+    be misinterpreted as the beginning of a new configuration
+    section, leading to arbitrary configuration injection.
+
+- sha256_clone_fix.patch: fix cloning of empty sha256 repositories (jsc#PED-3891)
+
+- git 2.40.0:
+  * backward incompatible change: The format.attach configuration
+    variable lacked a way to override a value defined in a
+    lower-priority configuration file (e.g. the system one) by
+    redefining it in a higher-priority configuration file. Now,
+    setting format.attach to an empty string means show the patch
+    inline in the e-mail message, without using MIME attachment.
+  * multiple commands and workflows gained additional options,
+    compatible functionality, or more helpful output
+  * "grep -P" learned to use Unicode Character Property to grok
+    character classes when processing \b and \w etc.
+  * under-the-hood improvements and bug fixes
+- The scripted "git add -p/-i" implementation was removed upstream.
+  The openSUSE package already preferred the C implementation.
+
+- git 2.39.2:
+  * CVE-2023-22490: Using a specially-crafted repository, Git can
+    be tricked into using its local clone optimization even when
+    using a non-local transport boo#1208027
+  * CVE-2023-23946: a path outside the working tree can be
+    overwritten as the user who is running "git apply" boo#1208028
+
+- git 2.39.1, fixing two security issues that could allow remote
+  code execution when accessing specially crafted repositories:
+  * CVE-2022-41903: log format integer overflow boo#1207033
+  * CVE-2022-23521: gitattributed parsing integer overflow
+    boo#1207032
+
+- switch to pkgconfig(zlib) so that alternative providers can be
+  used
+
+- git 2.39.0:
+  * "git grep" learned to expand the sparse-index more lazily and
+    on demand in a sparse checkout.
+  * By default, use of fsmonitor on a repository on networked
+    filesystem is disabled.
+  * After checking out a "branch" that is a symbolic-ref that points at
+    another branch, "git symbolic-ref HEAD" reports the underlying
+    branch, not the symbolic-ref the user gave checkout as argument.
+    The command learned the "--no-recurse" option to stop after
+    dereferencing a symbolic-ref only once.
+  * "git branch --edit-description @{-1}" is now a way to edit branch
+    description of the branch you were on before switching to the
+    current branch.
+  * "git merge-tree --stdin" is a new way to request a series of merges
+    and report the merge results.
+  * "git shortlog" learned to group by the "format" string.
+  * A new "--include-whitespace" option is added to "git patch-id", and
+    existing bugs in the internal patch-id logic that did not match
+    what "git patch-id" produces have been corrected.
+  * Enable gc.cruftpacks by default for those who opt into
+    feature.experimental setting.
+  * "git repack" learns to send cruft objects out of the way into
+    packfiles outside the repository.
+  * 'scalar reconfigure -a' is taught to automatically remove
+    scalar.repo entires which no longer exist.
+  * Redact headers from cURL's h2h3 module in GIT_CURL_VERBOSE and
+    others.
+  * 'git maintenance register' is taught to write configuration to an
+    arbitrary path, and 'git for-each-repo' is taught to expand tilde
+    characters in paths.
+  * When creating new notes, the template used to get a stray empty
+    newline, which has been removed.
+  * "git receive-pack" used to use all the local refs as the boundary for
+    checking connectivity of the data "git push" sent, but now it uses
+    only the refs that it advertised to the pusher. In a repository with
+    the .hideRefs configuration, this reduces the resources needed to
+    perform the check.
+  * With '--recurse-submodules=on-demand', all submodules are
+    recursively pushed.
+  * developer visible fixes
+
+- git 2.38.2, a general maintenance release:
+  * Fix unaligned memory access for reads from the index v4
+  * "git remote rename" failed to rename a remote without fetch
+    refspec, which has been corrected.
+  * "git clone" did not like to see the "--bare" and the "--origin"
+    options used together without a good reason.
+  * "git fsck" failed to release contents of tree objects already
+    used from the memory
+  * "git rebase -i" can mistakenly attempt to apply a fixup to
+    commit itself, which has been corrected.
+  * Fix segfault with "git merge-tree" on read-only repositories
+  * Fix a logic in "mailinfo -b" that miscomputed the length of a
+    substring, which lead to an out-of-bounds access.
+  * The codepath to sign learned to report errors when it fails to
+    read from "ssh-keygen".
+  * "GIT_EDITOR=: git branch --edit-description" resulted in failure
+  * "git multi-pack-index repack/expire" used to repack unreachable
+    cruft into a new pack, which have been corrected.
+  * The code to clean temporary object directories (used for
+    quarantine) tried to remove them inside its signal handler
+  * "git branch --edit-description" on an unborh branch misleadingly
+    said that no such branch exists
+  * `git rebase --update-refs` would delete references when all
+    `update-ref` commands in the sequencer were removed
+
+- disable tests on s390x (check-chainlint)
+
+- update to 2.38.1 (bsc#1204455, CVE-2022-39253, bsc#1204456, CVE-2022-39260):
+  * CVE-2022-39253:
+    When relying on the `--local` clone optimization, Git dereferences
+    symbolic links in the source repository before creating hardlinks
+    (or copies) of the dereferenced link in the destination repository.
+    This can lead to surprising behavior where arbitrary files are
+    present in a repository's `$GIT_DIR` when cloning from a malicious
+    repository.
+    Git will no longer dereference symbolic links via the `--local`
+    clone mechanism, and will instead refuse to clone repositories that
+    have symbolic links present in the `$GIT_DIR/objects` directory.
+    Additionally, the value of `protocol.file.allow` is changed to be
+    "user" by default.
+  * CVE-2022-39260:
+    An overly-long command string given to `git shell` can result in
+    overflow in `split_cmdline()`, leading to arbitrary heap writes and
+    remote code execution when `git shell` is exposed and the directory
+    `$HOME/git-shell-commands` exists.
+    `git shell` is taught to refuse interactive commands that are
+    longer than 4MiB in size. `split_cmdline()` is hardened to reject
+    inputs larger than 2GiB.
+
+- git 2.38.0:
+  * scalar: a repository management tool for large repositories
+  * new git rebase --update-refs (global rebase.updateRefs)
+    to update dependent branches
+  * merge-tree integrated with the new ort merge strategy
+  - -write-tree, while --trivial-merge retains the old mode
+  * bare git repositories can now be stored and distributed
+    in other git repositories
+  * Setting the safe.bareRepository configuration to "explicit"
+    avoids running arbitrary commands from filesystem monitoring
+    hooks of untrusted git repositories unless --git-dir is set
+  * git grep: new -m / --max-count options to limit the number
+    of matches per file
+  * git ls-files --format is a new option to customize outout
+  * git cat-file and git show now support mailmap author mapping
+  * bug fixes and performance improvements
+
+- drop python2 requires as git-p4 is documented to work with python3
+
+- Remove nogroup requirement: no longer needed
+
+- git 2.37.3:
+  * Plug memory leaks in the failure code path in the "merge-ort"
+    merge strategy backend.
+  * "vimdiff3" regression has been corrected
+  * "git fsck" improvements
+  * Fixes to sparse index compatibility work for "reset" and
+    "checkout" commands
+  * Documentation for "git add --renormalize" has been improved
+  * developer visible fixes
+
+- git 2.37.2:
+  * multiple bug fixes, developer visible or handling corner cases
+  * "git p4" improved non-ASCII support
+
+- git 2.37.1:
+  * Rewrite of "git add -i" in C that appeared in Git 2.25 didn't
+    correctly record a removed file to the index, which is an old
+    regression but has become widely known because the C version has
+    become the default in the latest release.
+  * Fix for CVE-2022-29187 [boo#1201431]:
+    The safety check that verifies a safe ownership of the Git
+    worktree is now extended to also cover the ownership of the Git
+    directory (and the `.git` file, if there is any).
+
+- Usage of sysusers_requires is optional, like during quilt setup
+
+- Use the system user's group instead of nogroup
+
+- Add /etc/bash_completion.d/git-prompt: checks for git-prompt.sh and source it
+  if available. Some users rely on the __git_ps1 function becoming available
+  when bash-completion is loaded.  Continue to load this library at
+  bash-completion startup for now, to ease the transition to a world order
+  where the prompt function is requested separately. Inspired by Debian.
+
+- Update git to 2.37.0:
+  https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.37.0.txt
+- git add --interactive is now default upstream, remove suse patch:
+  * suse-use-builtin-add-interactive.patch
+
+- Fix rpmlint errors/warnings about bash/zsh completion locations.
+- Remove now obsolete git-zsh-completion-fixes.diff.
+- Adjust git-tcsh-completion-fixes.diff.
+
+- Do not recommend git-cvs and git-svn by git, but rather have
+  those two packages supplement the combination of git and their
+  respective counterparts.
+
+- git 2.36.1:
+  * fix "git submodule update" noisyness without pathspec
+  * fix "diff-tree --stdin"
+  * fix "git name-rev" referenging strings after they are freed
+  * fix "git show <commit1> <commit2>... -- <pathspec>" loosing the
+    pathspec when showing the second and subsequent commits
+  * fix "git fast-export -- <pathspec>" loosing the pathspec when
+    showing the second and subsequent commits
+  * fix "git format-patch <args> -- <pathspec>" loosing the
+    pathspec when showing the second and subsequent commits
+
+- git 2.36.0:
+  * "git name-rev --stdin" has been deprecated and issues a
+    warning when used; use "git name-rev --annotate-stdin" instead.
+  * "git clone --filter=... --recurse-submodules" only makes the
+    top-level a partial clone, while submodules are fully cloned.
+    This behaviour is changed to pass the same filter down to the
+    submodules.
+  * improvements and extensions to multiple workflows and features
+  * bug fixes and performance improvements
glibc
-- dl-map-segment-align-munmap.patch: elf: Align argument of __munmap to
-  page size (bsc#1215891, BZ #28676)
+- gb18030-2022.patch: add GB18030-2022 charmap (jsc#PED-4908, BZ #30243)
-- gai-merge-continue-actions.patch: Simplify allocations and fix merge and
-  continue actions (CVE-2023-4813, bsc#1215286, BZ #28931)
+- dtors-reverse-ctor-order.patch: Remove, has been reverted
-- gb18030-2022.patch: add GB18030-2022 charmap (jsc#PED-4908, BZ #30243)
+- Avoid use of SSE in i586 build
-- nscd-netlink-cache-invalidation.patch: nscd: Fix netlink cache
-  invalidation if epoll is used (bsc#1212910, BZ #29415)
+- Add systemd also to gshadow lookups (jsc#PED-5188)
+- For SLE continue to use nsswitch.conf without systemd
-- nss-files-hosts-v4mapped.patch: Restore lookup of IPv4 mapped addresses
-  in files database (bsc#1212819, BZ #25457)
+- setxid-propagate-glibc-tunables.patch: Propagate GLIBC_TUNABLES in
+  setxid binaries
+- tunables-string-parsing.patch: tunables: Terminate if end of input is
+  reached (CVE-2023-4911, bsc#1215501)
+
+- fstat-implementation.patch: io: Do not implement fstat with fstatat
+
+- getaddrinfo-memory-leak.patch: Fix leak in getaddrinfo introduced by the
+  fix for CVE-2023-4806 (CVE-2023-5156, bsc#1215714, BZ #30884)
+
+- getcanonname-use-after-free.patch: getaddrinfo: Fix use after free in
+  getcanonname (CVE-2023-4806, bsc#1215281, BZ #30843)
+- Do not build any cross packages in SLES
+
+- no-aaaa-read-overflow.patch: Stack read overflow with large TCP
+  responses in no-aaaa mode (CVE-2023-4527, bsc#1215280, BZ #30842)
+
+- Add systemd to passwd, group and shadow lookups (jsc#PED-5188)
+
+- ppc64-flock-fob64.patch: io: Fix record locking contants for powerpc64
+  with __USE_FILE_OFFSET64 (BZ #30804)
+- libio-io-vtables.patch: libio: Fix oversized __io_vtables
+- call-init-proxy-objects.patch: elf: Do not run constructors for proxy
+  objects
+- dtors-reverse-ctor-order.patch: elf: Always call destructors in reverse
+  constructor order (BZ #30785)
+
+- intl-c-utf-8-like-c-locale.patch: intl: Treat C.UTF-8 locale like C
+  locale (BZ #16621)
+- glibc-disable-gettext-for-c-utf8.patch: Removed
+
+- Add cross-ppc64le package
+
+- posix-memalign-fragmentation.patch: malloc: Enable merging of remainders
+  in memalign, remove bin scanning from memalign (BZ #30723)
+- Limit build counter sync to i686 flavor, to reduce needs for rebuilds
+
+- Add cross-s390x package (bsc#1214460)
+
+- Require that elf/check-localplt does not fail
+- glibc-2.3.90-langpackdir.diff: add hidden alias for __strcpy_chk
+- cache-amd-legacy.patch: x86: Fix for cache computation on AMD legacy
+  cpus
+- cache-intel-shared.patch: x86: Fix incorrect scope of setting
+  `shared_per_thread` (BZ# 30745)
+
+- Update to glibc 2.38
+  * When C2X features are enabled and the base argument is 0 or 2, the
+    following functions support binary integers prefixed by 0b or 0B as
+    input
+  * PRIb*, PRIB* and SCNb* macros from C2X have been added to
+    <inttypes.h>.
+  * printf-family functions now support the wN format length modifiers for
+    arguments of type intN_t, int_leastN_t, uintN_t or uint_leastN_t
+    and the wfN format
+    length modifiers for arguments of type int_fastN_t or uint_fastN_t, as
+    specified in draft ISO C2X
+  * A new tunable, glibc.pthread.stack_hugetlb, can be used to disable
+    Transparent Huge Pages (THP) in stack allocation at pthread_create
+  * Vector math library libmvec support has been added to AArch64
+  * The strlcpy and strlcat functions have been added
+  * CVE-2023-25139: When the printf family of functions is called with a
+    format specifier that uses an <apostrophe> (enable grouping) and a
+    minimum width specifier, the resulting output could be larger than
+    reasonably expected by a caller that computed a tight bound on the
+    buffer size
+- Enable build with _FORTIFY_SOURCE
+- glibc-2.3.90-langpackdir.diff: avoid reference to __strcpy_chk
+- iconv-error-verbosity.patch: iconv: restore verbosity with unrecognized
+  encoding names (BZ #30694)
+- printf-grouping.patch, strftime-time64.patch,
+  getlogin-no-loginuid.patch, fix-locking-in-_IO_cleanup.patch,
+  gshadow-erange-rhandling.patch, system-sigchld-block.patch,
+  gmon-buffer-alloc.patch, check-pf-cancel-handler.patch,
+  powerpc64-fcntl-lock.patch, realloc-limit-chunk-reuse.patch,
+  dl-find-object-return.patch; Removed
+- bsc#1211828
+- bsc#1212819
+
+- gshadow-erange-rhandling.patch: gshadow: Matching sgetsgent, sgetsgent_r
+  ERANGE handling (BZ #30151)
+- system-sigchld-block.patch: posix: Fix system blocks SIGCHLD erroneously
+  (BZ #30163)
+- gmon-buffer-alloc.patch: gmon: Fix allocated buffer overflow
+  (CVE-2023-0687, bsc#1207975, BZ #29444)
+- check-pf-cancel-handler.patch: __check_pf: Add a cancellation cleanup
+  handler (BZ #20975)
+- powerpc64-fcntl-lock.patch: io: Fix F_GETLK, F_SETLK, and F_SETLKW for
+  powerpc64
+- realloc-limit-chunk-reuse.patch: realloc: Limit chunk reuse to only
+  growing requests (BZ #30579)
+- dl-find-object-return.patch: elf: _dl_find_object may return 1 during
+  early startup (BZ #30515)
-- remove-excessive-p-align-check.patch: elf: Remove excessive p_align
-  check on PT_LOAD segments (bsc#1211829, BZ #28688)
-- segment-align.patch: elf: Properly align PT_LOAD segments (bsc#1211829,
-  BZ #28676)
-- ld-so-always-use-map-copy.patch: ld.so: Always use MAP_COPY to map the
-  first segment (BZ #30452)
+- Need to build with GCC 12 as minimum
-- resolv-conf-lock.patch: resolv_conf: release lock on allocation failure
-  (bsc#1211828, BZ #30527)
+- fix-locking-in-_IO_cleanup.patch: Update to final version
-- ulp-prologue-into-asm-functions.patch: Add support for livepatches
-  in ASM written functions (bsc#1211726)
+- ulp-prologue-into-asm-functions.patch: Add support for livepatches in
+  ASM written functions (bsc#1210777, bsc#1211726)
-- amd-cacheinfo.patch: x86: Cache computation for AMD architecture
-  (bsc#1207957)
-
-- gmon-hash-table-size.patch: gmon: Fix allocated buffer overflow
-  (CVE-2023-0687, bsc#1207975, BZ #29444)
-
-- strncmp-avx2-boundary.patch: Fix avx2 strncmp offset compare condition
-  check (bsc#1208358, BZ #25933)
-
-- dlopen-filter-object.patch: elf: Allow dlopen of filter object to work
-  (bsc#1207571, BZ #16272)
-- powerpc-tst-ucontext.patch: powerpc: Fix unrecognized instruction errors
-  with recent GCC
-
-- x86-shared-non-temporal-threshold.patch: Reversing calculation of
-  __x86_shared_non_temporal_threshold (bsc#1201942)
+- Update to glibc 2.37
+  * The getent tool now supports the --no-addrconfig option
+  * The dynamic linker no longer loads shared objects from the "tls"
+    subdirectories on the library search path or the subdirectory that
+    corresponds to the AT_PLATFORM system name, or employs the legacy AT_HWCAP
+    search mechanism, which was deprecated in version 2.33
+- printf-grouping.patch: Account for grouping in printf width (BZ #30068)
+- strftime-time64.patch: Use 64-bit time_t interfaces in strftime and
+  strptime (BZ #30053)
+- glibcextract-compile-c-snippet.patch, sys-mount-kernel-definition.patch,
+  sys-mount-usage.patch, nscd-netlink-cache-invalidation.patch,
+  syslog-large-messages.patch, dlmopen-libc-early-init.patch,
+  ldd-vdso-dependency.patch, syslog-extra-whitespace.patch,
+  errlist-edeadlock.patch, makeflags.patch, get-nscd-addresses.patch,
+  x86-64-avx2-string-functions.patch, nscd-aicache.patch,
+  dl-debug-bindings.patch, floatn.patch: Removed
+- bsc#1207957
+- bsc#1208358
+- bsc#1212910
+
+- Remove reference to obsolete %usrmerged macro (boo#1206798)
+
+- floatn.patch: Update _FloatN header support for C++ in GCC 13
+
+- nscd: Convert to systemd-sysusers
+
+- dl-debug-bindings.patch: elf: Reinstate on DL_DEBUG_BINDINGS
+  _dl_lookup_symbol_x (bsc#1204710)
+
+- get-nscd-addresses.patch: get_nscd_addresses: Fix subscript typos (BZ
+  [#29605])
+- x86-64-avx2-string-functions.patch: check for required cpu features in
+  AVX2 string functions (BZ #29611)
+- nscd-aicache.patch: nscd: Drop local address tuple variable (BZ #29607)
+
+- makeflags.patch: Makerules: fix MAKEFLAGS assignment for upcoming
+  make-4.4 (BZ# 29564)
+
+- errlist-edeadlock.patch: errlist: add missing entry for EDEADLOCK (BZ
+  [#29545])
+
+- syslog-large-messages.patch: syslog: Fix large messages (CVE-2022-39046,
+  bsc#1203011, BZ #29536)
+- dlmopen-libc-early-init.patch: elf: Call __libc_early_init for reused
+  namespaces (BZ #29528)
+- ldd-vdso-dependency.patch: elf: Restore how vDSO dependency is printed
+  with LD_TRACE_LOADED_OBJECTS (BZ #29539)
+- syslog-extra-whitespace.patch: syslog: Remove extra whitespace between
+  timestamp and message (BZ #29544)
-- memcmp-power10.patch: powerpc: Optimized memcmp for power10
-  (jsc#PED-987)
-
-- disable-check-consistency.patch: i386: Disable check_consistency for GCC
-  5 and above (bsc#1201640, BZ #25788)
+- nscd-netlink-cache-invalidation.patch: nscd: Fix netlink cache
+  invalidation if epoll is used (boo#1199964, BZ #29415)
-- static-tls-surplus.patch: Remove tunables (bsc#1201560)
+- glibcextract-compile-c-snippet.patch: glibcextract.py: Add
+  compile_c_snippet
+- sys-mount-kernel-definition.patch: linux: Mimic kernel definition for
+  BLOCK_SIZE
+- sys-mount-usage.patch: linux: Fix sys/mount.h usage with kernel headers
+
+- Update to glibc 2.36
+  Major new features:
+  * Support for DT_RELR relative relocation format has been added to
+    glibc
+  * On Linux, the pidfd_open, pidfd_getfd, and pidfd_send_signal functions
+    have been added
+  * On Linux, the process_madvise function has been added
+  * On Linux, the process_mrelease function has been added
+  * The “no-aaaa” DNS stub resolver option has been added
+  * On Linux, the fsopen, fsmount, move_mount, fsconfig, fspick, open_tree,
+    and mount_setattr have been added
+  * localedef now accepts locale definition files encoded in UTF-8
+  * Support for the mbrtoc8 and c8rtomb multibyte/UTF-8 character conversion
+    functions has been added per the ISO C2X N2653 and C++20 P0482R6 proposals
+  * The functions arc4random, arc4random_buf, and arc4random_uniform have been
+    added
+  Deprecated and removed features, and other changes affecting compatibility:
+  * Support for prelink will be removed in the next release
+  * The Linux kernel version check has been removed along with the
+    LD_ASSUME_KERNEL environment variable
+  * On Linux, The LD_LIBRARY_VERSION environment variable has been removed
+- get-nprocs-sched-uninit-read.patch, get-nprocs-inaccurate.patch,
+  strcmp-rtm-fallback.path, pt-load-invalid-hole.patch,
+  localedef-ld-monetary.patch, nptl-spurious-eintr.patch,
+  strncpy-power9-vsx.patch, nptl-cleanup-async-restore.patch,
+  read-chk-cancel.patch, wcrtomb-fortify.patch,
+  nptl-cleanup-async-restore-2.patch: Removed
+- CVE-2023-4813, bsc#1215286
+- bsc#1198751
+- bsc#1200334
+
+- nptl-cleanup-async-restore-2.patch: nptl: Fix
+  ___pthread_unregister_cancel_restore asynchronous restore (bsc#1200093,
+  BZ #29214)
+
+- read-chk-cancel.patch: debug: make __read_chk a cancellation point
+  (bsc#1200682, BZ #29274)
+- wcrtomb-fortify.patch: wcrtomb: Make behavior POSIX compliant
+  (bsc#1200688)
-- static-tls-surplus.patch: rtld: Avoid using up static TLS surplus for
-  optimizations (bsc#1200855, BZ #25051)
+- Set SUSE_ZNOW=0
-  __strncpy_power9 (bsc#1200334, BZ #29197)
+  __strncpy_power9 (BZ #29197)
+- nptl-cleanup-async-restore.patch: nptl: Fix __libc_cleanup_pop_restore
+  asynchronous restore (bsc#1200093, BZ #29214)
+
+- nptl-spurious-eintr.patch: nptl: Handle spurious EINTR when thread
+  cancellation is disabled (BZ #29029)
+
+- Follow the distro default gcc version to build the cross
+  bootstrap packages.
+
+- switched to https urls
+
+- get-nprocs-sched-uninit-read.patch: linux: __get_nprocs_sched: do not
+  feed CPU_COUNT_S with garbage (BZ #28850)
+- get-nprocs-inaccurate.patch: linux: fix accuracy of get_nprocs and
+  get_nprocs_conf (BZ #28865)
+- strcmp-rtm-fallback.path: x86: Fallback {str|wcs}cmp RTM in the ncmp
+  overflow case (BZ #28896)
+- pt-load-invalid-hole.patch: elf: Check invalid hole in PT_LOAD segments
+  (BZ #28838)
+- localedef-ld-monetary.patch: localedef: Update LC_MONETARY handling (BZ
+  [#28845])
+
+- Update to glibc 2.35
+  Major new features:
+  * Unicode 14.0.0 Support
+  * Bump r_version in the debugger interface to 2
+  * Support for the C.UTF-8 locale has been added to glibc
+  * <math.h> functions that round their results to a narrower type, and
+    corresponding <tgmath.h> macros, are added from TS 18661-1:2014, TS
+    18661-3:2015 and draft ISO C2X
+  * <math.h> functions for floating-point maximum and minimum,
+    corresponding to new operations in IEEE 754-2019, and corresponding
+    <tgmath.h> macros, are added from draft ISO C2X
+  * <math.h> macros for single-precision float constants are added as a
+    GNU extension
+  * The __STDC_IEC_60559_BFP__ and __STDC_IEC_60559_COMPLEX__ macros are
+    predefined as specified in TS 18661-1:2014
+  * The exp10 functions in <math.h> now have a corresponding type-generic
+    macro in <tgmath.h>
+  * The ISO C2X macro _PRINTF_NAN_LEN_MAX has been added to <stdio.h>
+  * printf-family functions now support the %b format for output of
+    integers in binary, as specified in draft ISO C2X, and the %B variant
+    of that format recommended by draft ISO C2X
+  * A new DSO sorting algorithm has been added in the dynamic linker that uses
+    topological sorting by depth-first search (DFS), solving performance issues
+    of the existing sorting algorithm when encountering particular circular
+    object dependency cases
+  * A new tunable, glibc.rtld.dynamic_sort, can be used to select between
+    the two DSO sorting algorithms
+  * ABI support for a new function '__memcmpeq'. '__memcmpeq' is meant
+    to be used by compilers for optimizing usage of 'memcmp' when its
+    return value is only used for its boolean status
+  * Support for automatically registering threads with the Linux rseq
+    system call has been added
+  * A symbolic link to the dynamic linker is now installed under
+    /usr/bin/ld.so (or more precisely, '${bindir}/ld.so')
+  * All programs and the testsuite in glibc are now built as position independent
+    executables (PIE) by default on toolchains and architectures that support it
+  * On Linux, a new tunable, glibc.malloc.hugetlb, can be used to
+    either make malloc issue madvise plus MADV_HUGEPAGE on mmap and sbrk
+    or to use huge pages directly with mmap calls with the MAP_HUGETLB
+    flags)
+  * The printf family of functions now handles the flagged %#m conversion
+    specifier, printing errno as an error constant (similar to strerrorname_np)
+  * The function _dl_find_object has been added
+  * On Linux, the epoll_pwait2 function has been added
+  * The function posix_spawn_file_actions_addtcsetpgrp_np has been added,
+    enabling posix_spawn and posix_spawnp to set the controlling terminal in
+    the new process in a race free manner
+  * Source fortification (_FORTIFY_SOURCE) level 3 is now available for
+    applications compiling with glibc and gcc 12 and later
+  Deprecated and removed features, and other changes affecting compatibility:
+  * On x86-64, the LD_PREFER_MAP_32BIT_EXEC environment variable support
+    has been removed since the first PT_LOAD segment is no longer executable
+    due to defaulting to -z separate-code
+  * The r_version update in the debugger interface makes the glibc binary
+    incompatible with GDB
+  * Intel MPX support (lazy PLT, ld.so profile, and LD_AUDIT) has been removed
+  * The catchsegv script and associated libSegFault.so shared object have
+    been removed
+  * Support for prelink will be removed in the next release; this includes
+    removal of the LD_TRACE_PRELINKING, and LD_USE_LOAD_BIAS, environment
+    variables and their functionality in the dynamic loader
+  Changes to build and runtime requirements:
+  * The audit module interface version LAV_CURRENT is increased to enable
+    proper bind-now support
+  * The audit interface on aarch64 is extended to support both the indirect
+    result location register (x8) and NEON Q register
+  Security related changes:
+  * CVE-2022-23219: Passing an overlong file name to the clnt_create
+    legacy function could result in a stack-based buffer overflow when
+    using the "unix" protocol
+  * CVE-2022-23218: Passing an overlong file name to the svcunix_create
+    legacy function could result in a stack-based buffer overflow
+  * CVE-2021-3998: Passing a path longer than PATH_MAX to the realpath
+    function could result in a memory leak and potential access of
+    uninitialized memory
+  * CVE-2021-3999: Passing a buffer of size exactly 1 byte to the getcwd
+    function may result in an off-by-one buffer underflow and overflow
+    when the current working directory is longer than PATH_MAX and also
+    corresponds to the / directory through an unprivileged mount
+    namespace
+- copy-and-spawn-sgid-double-close.patch,
+  fcntl-time-bits-64-redirect.patch, gaiconf-init-double-free.patch,
+  gconv-parseconfdir-memory-leak.patch, getcwd-attribute-access.patch,
+  glibc-c-utf8-locale.patch, iconv-charmap-close-output.patch,
+  ld-show-auxv-colon.patch, ldconfig-leak-empty-paths.patch,
+  librt-null-pointer.patch, pthread-kill-fail-after-exit.patch,
+  pthread-kill-race-thread-exit.patch, pthread-kill-return-esrch.patch,
+  pthread-kill-send-specific-thread.patch,
+  pthread-mutexattr-getrobust-np-type.patch,
+  setxid-deadlock-blocked-signals.patch,
+  sysconf-nprocessors-affinity.patch, x86-string-control-test.patch:
+  Removed.
+- bsc#1194640
+- bsc#1194768
+- bsc#1194770
+- bsc#1197718
+- bsc#1211829
+- bsc#1215891
-- selinux-deprecated.patch: Disable warnings due to deprecated libselinux
-  symbols used by nss and nscd (bsc#1197718)
-- systemtap-altmacro.patch: i386: Remove broken CAN_USE_REGISTER_ASM_EBP
-  (bsc#1197718, BZ #28771)
-
-- Add s390-add-z16-name.diff for bsc#1198751.
-
-- getcwd-erange.patch: getcwd: Set errno to ERANGE for size == 1
-  (CVE-2021-3999, bsc#1194640, BZ #28769)
-
-- 0001-powerpc-Optimized-strcpy-for-POWER9.patch,
-  0002-powerpc-Optimized-stpcpy-for-POWER9.patch,
-  0003-powerpc-Optimized-rawmemchr-for-POWER9.patch,
-  0004-powerpc64le-add-optimized-strlen-for-P9.patch,
-  0005-powerpc-fix-ifunc-implementation-list-for-POWER9-str.patch,
-  0006-powerpc-Add-optimized-strncpy-for-POWER9.patch,
-  0007-powerpc-Add-optimized-stpncpy-for-POWER9.patch,
-  0008-powerpc-Add-optimized-ilogb-for-POWER9.patch,
-  0009-powerpc-Add-optimized-llogb-for-POWER9.patch,
-  0010-powerpc-Add-optimized-strlen-for-POWER10.patch,
-  0011-powerpc64le-Optimized-memmove-for-POWER10.patch,
-  0012-powerpc64le-Optimize-memcpy-for-POWER10.patch,
-  0013-powerpc64le-Optimize-memset-for-POWER10.patch,
-  0014-powerpc64le-Fix-ifunc-selection-for-memset-memmove-b.patch,
-  0015-powerpc-Add-optimized-rawmemchr-for-POWER10.patch: ppc64le ifunc
-  improvements (bsc#1194785, jsc#SLE-18195)
-
-- clnt-create-unix-overflow.patch: Buffer overflow in sunrpc clnt_create
-  for "unix" (CVE-2022-23219, bsc#1194768, BZ #22542)
-- svcunix-create-overflow.patch: Buffer overflow in sunrpc svcunix_create
-  (CVE-2022-23218, bsc#1194770, BZ #28768)
+- Enable building the cross packages in rings.
+- Add ExtraBuildFlags for build flags that cannot be passed to configure.
-- Enable livepatching on x86_64.
-- 0001-s390x-Align-child-stack-while-clone.-BZ-27968.patch,
-  0002-S390-Optimize-__memcpy_z196.patch,
-  0003-S390-Optimize-__memset_z196.patch,
-  0004-S390-Sync-HWCAP-names-with-kernel-by-adding-aliases-.patch,
-  0005-S390-Add-new-hwcap-values.patch,
-  0006-S390-Add-PCI_MIO-and-SIE-HWCAPs.patch: [15sp4 FEAT] GNU2007 -
-  GLIBC: Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869)
+- glibc.rpmlintrc: Update for rpmlint2
-- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify
-  (CVE-2021-33574, bsc#1186489, BZ #27896)
+- ld-show-auxv-colon.patch: elf: Fix missing colon in LD_SHOW_AUXV output
+  (BZ #282539
+- x86-string-control-test.patch: x86-64: Use testl to check
+  __x86_string_control
+- pthread-kill-fail-after-exit.patch: nptl: pthread_kill, pthread_cancel
+  should not fail after exit (BZ #19193)
+- pthread-kill-race-thread-exit.patch: nptl: Fix race between pthread_kill
+  and thread exit (BZ #12889)
+- getcwd-attribute-access.patch: posix: Fix attribute access mode on
+  getcwd (BZ #27476)
+- pthread-kill-return-esrch.patch: nptl: pthread_kill needs to return
+  ESRCH for old programs (BZ #19193)
+- pthread-mutexattr-getrobust-np-type.patch: nptl: Fix type of
+  pthread_mutexattr_getrobust_np, pthread_mutexattr_setrobust_np (BZ
+  [#28036])
+- setxid-deadlock-blocked-signals.patch: nptl: Avoid setxid deadlock with
+  blocked signals in thread exit (BZ #28361)
+- pthread-kill-send-specific-thread.patch: nptl: pthread_kill must send
+  signals to a specific thread (BZ #28407)
+- sysconf-nprocessors-affinity.patch: linux: Revert the use of
+  sched_getaffinity on get_nproc (BZ #28310)
+- iconv-charmap-close-output.patch: renamed from
+  icon-charmap-close-output.patch
+
+- Don't create separate debuginfo packages for cross packages
+
+- ldconfig-leak-empty-paths.patch: ldconfig: avoid leak on empty paths in
+  config file
+- gconv-parseconfdir-memory-leak.patch: gconv_parseconfdir: Fix memory leak
+- gaiconf-init-double-free.patch: gaiconf_init: Avoid double-free in label
+  and precedence lists
+- copy-and-spawn-sgid-double-close.patch: copy_and_spawn_sgid: Avoid
+  double calls to close()
+- icon-charmap-close-output.patch: iconv_charmap: Close output file when
+  done
+- fcntl-time-bits-64-redirect.patch: Linux: Fix fcntl, ioctl, prctl
+  redirects for _TIME_BITS=64 (BZ #28182)
+- librt-null-pointer.patch: librt: fix NULL pointer dereference (BZ
+  [#28213])
+
+- Add cross development packages for aarch64 and riscv64.
+
+- Update to glibc 2.34
+  Major new features:
+  * When _DYNAMIC_STACK_SIZE_SOURCE or _GNU_SOURCE are defined,
+    PTHREAD_STACK_MIN is no longer constant and is redefined to
+    sysconf(_SC_THREAD_STACK_MIN)
+  * Add _SC_MINSIGSTKSZ and _SC_SIGSTKSZ
+  * The dynamic linker implements the --list-diagnostics option, printing
+    a dump of information related to IFUNC resolver operation and
+    glibc-hwcaps subdirectory selection
+  * On Linux, the function execveat has been added
+  * The ISO C2X function timespec_getres has been added
+  * The feature test macro __STDC_WANT_IEC_60559_EXT__, from draft ISO
+    C2X, is supported to enable declarations of functions defined in Annex F
+    of C2X
+  * Add support for 64-bit time_t on configurations like x86 where time_t
+    is traditionally 32-bit
+  * The main gconv-modules file in glibc now contains only a small set of
+    essential converter modules and the rest have been moved into a supplementary
+    configuration file gconv-modules-extra.conf in the gconv-modules.d directory
+    in the same GCONV_PATH
+  * On Linux, a new tunable, glibc.pthread.stack_cache_size, can be used
+    to configure the size of the thread stack cache
+  * The function _Fork has been added as an async-signal-safe fork replacement
+    since Austin Group issue 62 droped the async-signal-safe requirement for
+    fork (and it will be included in the future POSIX standard)
+  * On Linux, the close_range function has been added
+  * The function closefrom has been added
+  * The posix_spawn_file_actions_closefrom_np function has been added, enabling
+    posix_spawn and posix_spawnp to close all file descriptors great than or
+    equal to a giver integer
+  Deprecated and removed features, and other changes affecting compatibility:
+  * The function pthread_mutex_consistent_np has been deprecated
+  * The function pthread_mutexattr_getrobust_np has been deprecated
+  * The function pthread_mutexattr_setrobust_np has been deprecated
+  * The function pthread_yield has been deprecated
+  * The function inet_neta declared in <arpa/inet.h> has been deprecated
+  * Various rarely-used functions declared in <resolv.h> and
+    <arpa/nameser.h> have been deprecated
+  * The pthread cancellation handler is now installed with SA_RESTART and
+    pthread_cancel will always send the internal SIGCANCEL on a cancellation
+    request
+  * The symbols mallwatch and tr_break are now deprecated and no longer used in
+    mtrace
+  * The __morecore and __after_morecore_hook malloc hooks and the default
+    implementation __default_morecore have been removed from the API
+  * Debugging features in malloc such as the MALLOC_CHECK_ environment variable
+    (or the glibc.malloc.check tunable), mtrace() and mcheck() have now been
+    disabled by default in the main C library
+  * The deprecated functions malloc_get_state and malloc_set_state have been
+    moved from the core C library into libc_malloc_debug.so
+  * The deprecated memory allocation hooks __malloc_hook, __realloc_hook,
+    __memalign_hook and __free_hook are now removed from the API
+  Changes to build and runtime requirements:
+  * On Linux, the shm_open, sem_open, and related functions now expect the
+    file shared memory file system to be mounted at /dev/shm
+  Security related changes:
+    CVE-2021-27645: The nameserver caching daemon (nscd), when processing
+    a request for netgroup lookup, may crash due to a double-free,
+    potentially resulting in degraded service or Denial of Service on the
+    local system
+    CVE-2021-33574: The mq_notify function has a potential use-after-free
+    issue when using a notification type of SIGEV_THREAD and a thread
+    attribute with a non-default affinity mask
+    CVE-2021-35942: The wordexp function may overflow the positional
+    parameter number when processing the expansion resulting in a crash
+- nss-database-check-reload.patch, nss-load-chroot.patch,
+  x86-isa-level.patch, nscd-netgroupcache.patch,
+  nss-database-lookup.patch, select-modify-timeout.patch,
+  nptl-db-libpthread-load-order.patch, rawmemchr-warning.patch,
+  tst-cpu-features-amx.patch, mq-notify-use-after-free.patch: Removed
+- bsc#1181403
+- bsc#1184035
+- bsc#1187911
+- jsc#PED-987
-- wordexp-param-overflow.patch: wordexp: handle overflow in positional
-  parameter number (CVE-2021-35942, bsc#1187911, BZ #28011)
+- Enable usrmerge in Factory always as it's default there
+- Add conflict with pre-usrmerge filesystem package
-- s390-memmove-ifunc-selector-arch13.patch: S390: Also check vector
-  support in memmove ifunc-selector (bsc#1184035, BZ #27511)
+- mq-notify-use-after-free.patch: Use __pthread_attr_copy in mq_notify
+  (CVE-2021-33574, bsc#1186489, BZ #27896)
+- Drop glibc-usrmerge-bootstrap-helper package
-- Update glibc-2.31-HTM-vzeroupper.diff with a AVX-SSE transition
-  fix.
+- tst-cpu-features-amx.patch: x86: tst-cpu-features-supports.c: Update AMX
+  check
-- Add glibc-2.31-HTM-vzeroupper.diff to avoid VZEROUPPER in the
-  AVX2 accelerated string routines which cause HTM transaction
-  aborts.  Instead use EVEX or SSE.  (bsc#1181403)
+- rawmemchr-warning.patch: string: Work around GCC PR 98512 in rawmemchr
+- nptl-db-libpthread-load-order.patch: nptl_db: Support different
+  libpthread/ld.so load orders (bsc#1184214, BZ #27744)
+
+- Enable support for static PIE (bsc#1184646)
+- select-modify-timeout.patch: linux: always update select timeout
+  (bsc#1184339, BZ #27706)
+
+- Don't remove -f[asynchronous-]unwind-tables during configure run, no
+  longer needed
+
+- nss-database-check-reload.patch: nsswitch: return result when nss
+  database is locked (BZ #27343)
+- nss-load-chroot.patch: nss: Re-enable NSS module loading after chroot
+  (bsc#1182323, BZ #27389)
+- x86-isa-level.patch: x86: Set minimum x86-64 level marker (bsc#1182522,
+  BZ #27318)
+- nss-database-lookup.patch: nss: fix nss_database_lookup2's alternate
+  handling (bsc#1182247, BZ #27416)
+- nss-revert-api.patch: remove
-- gconv-assertion-iso-2022-jp.patch: gconv: Fix assertion failure in
-  ISO-2022-JP-3 module (CVE-2021-3326, bsc#1181505, BZ #27256)
+- Disable x86 ISA level for now (bsc#1182522, BZ #27318)
+- nss-revert-api.patch: Workaround for nss-compat brokeness (bsc#1182247,
+  BZ #27416)
+
+- Fix build of utils flavor for usrmerge
+
+- Prepare for usrmerge (bsc#1029961)
+
+- Add --enable-memory-tagging for aarch64
+
+- Update to glibc 2.33
+  * The dynamic linker accepts the --list-tunables argument which prints
+    all the supported tunables.
+  * The dynamic linker accepts the --argv0 argument and provides opportunity
+    to change argv[0] string.
+  * The dynamic linker loads optimized implementations of shared objects
+    from subdirectories under the glibc-hwcaps directory on the library
+    search path if the system's capabilities meet the requirements for
+    that subdirectory.
+  * The new --help option of the dynamic linker provides usage and
+    information and library search path diagnostics.
+  * The mallinfo2 function is added to report statistics as per mallinfo,
+    but with larger field widths to accurately report values that are
+    larger than fit in an integer.
+  * Add <sys/platform/x86.h> to provide query macros for x86 CPU features.
+  * A new fortification level _FORTIFY_SOURCE=3 is available.
+  * The mallinfo function is marked deprecated.
+  * When dlopen is used in statically linked programs, alternative library
+    implementations from HWCAP subdirectories are no longer loaded.
+  * The deprecated <sys/vtimes.h> header and the function vtimes have been
+    removed.
+  * On s390(x), the type float_t is now derived from the macro
+    __FLT_EVAL_METHOD__ that is defined by the compiler, instead of being
+    hardcoded to double.
+  * A future version of glibc will stop loading shared objects from the
+    "tls" subdirectories on the library search path, the subdirectory that
+    corresponds to the AT_PLATFORM system name, and also stop employing
+    the legacy AT_HWCAP search mechanism.
+  * CVE-2021-3326: An assertion failure during conversion from the
+    ISO-20220-JP-3 character set using the iconv function has been fixed.
+- Remove obsolete, unused /etc/default/nss
+- aarch64-static-pie.patch, euc-kr-overrun.patch,
+  get-nprocs-cpu-online-parsing.patch, iconv-redundant-shift.patch,
+  iconv-ucs4-loop-bounds.patch, ifunc-fma4.patch,
+  intl-codeset-suffixes.patch, nscd-gc-cycle.patch,
+  printf-long-double-non-normal.patch, strerrorname-np.patch,
+  syslog-locking.patch, sysvipc.patch: Removed
+- bsc#1180557
+- bsc#1181505
+- bsc#1191592
+- bsc#1201942
-- sysvipc-sem-stat-any.patch: sysvipc: Fix SEM_STAT_ANY kernel argument
-  pass (bsc#1180557, BZ #26637)
+- Remove support for %optimize_power
+- Move to power4 baseline on ppc
-- aarch64-getauxval.patch: aarch64: Accept PLT calls to __getauxval within
-  libc.so (bsc#1167939)
+- aarch64-static-pie.patch: fix static PIE start code for BTI
+  (bsc#1179450, BZ #27068)
-- power10-support.patch: Add support for POWER10 (jsc#SLE-13520)
-- iconv-option-parsing.patch: Rewrite iconv option parsing
-  (CVE-2016-10228, bsc#1027496, BZ #19519)
-
-- Update to glibc 2.31
-- glibc-2.14-crypt.diff, crypt_blowfish-const.patch,
-  crypt_blowfish-1.2-sha.diff, crypt_blowfish-gensalt.patch,
-  crypt_blowfish-1.2-hack_around_arm.diff, glibc-nodate.patch,
-  powerpc-elision-enable-envvar.patch, s390-elision-enable-envvar.patch,
-  crt-nocompress-debug-sections.patch, resolv-context-leak.patch,
-  dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch,
-  math-c++-compat.patch, remove-nss-nis-compat.patch,
-  eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch,
-  assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch,
-  dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch,
-  nscd-libnsl.patch, malloc-tcache-leak.patch,
-  falkor-memcpy-memmove.patch, aarch64-cpu-features.patch,
-  nss-files-large-buffers.patch, sysconf-uio-maxiov.patch,
-  glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch,
-  spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch,
-  tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch,
-  malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch,
-  fillin-rpath-empty-tokens.patch, getcwd-absolute.patch,
-  memalign-overflow.patch, stack-guard-size-accounting.patch,
-  libgcc-rtld-now.patch, res-send-enomem.patch,
-  glibc-fix-avx512-mempcpy.patch, i386-memmove-sse2-unaligned.patch,
-  realpath-ssize-max-overflow.patch, localtime-2039.patch,
-  math-remove-slow-path.patch, aarch64-hwcap-atomics.patch,
-  glibc-fix-aarch64-build.diff, absolute-symbols.patch,
-  x86-haswell-string-flags.patch,
-  pthread-cond-broadcast-waiters-after-spinning.patch,
-  mman-map-sync.patch, mman-linux-map-shared-validate.patch,
-  nptl-setxid-error.patch, pthread-mutex-trylock-barrier.patch,
-  getaddrinfo-parse-ipv4-address.patch, japanese-era-name-may-2019.patch,
-  force-elision-race.patch, regex-read-overrun.patch,
-  regex-parse-reg-exp.patch,
-  0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch,
-  0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch,
-  0003-S390-Unify-31-64bit-memcpy.patch,
-  0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch,
-  0005-S390-Remove-s390-specific-implementation-of-bcopy.patch,
-  0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch,
-  0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch,
-  0008-S390-Add-z13-memmove-ifunc-variant.patch,
-  0009-S390-Add-z13-strstr-ifunc-variant.patch,
-  0010-S390-Add-z13-memmem-ifunc-variant.patch,
-  0011-S390-Cleanup-ifunc-resolve.h.patch,
-  0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch,
-  0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch,
-  0014-S390-Add-configure-check-to-detect-support-for-arch1.patch,
-  0015-S390-Add-arch13-memmove-ifunc-variant.patch,
-  0016-S390-Add-arch13-strstr-ifunc-variant.patch,
-  0017-S390-Add-arch13-memmem-ifunc-variant.patch,
-  prefer-map-32bit-exec.patch, s390-strstr-page-boundary.patch,
-  ppc-tle-htm-nosc.patch,
-  posix-Add-internal-symbols-for-posix_spawn-interface.patch,
-  glibc-2.29-posix-Use-posix_spawn-on-popen.patch,
-  backtrace-powerpc.patch, pthread-rwlock-pwn.patch,
-  manual-memory-protection.patch, ldbl-96-rem-pio2l.patch,
-  dl-sort-maps.patch, dlopen-filter-object.patch,
-  glob-use-after-free.patch, nptl-setxid-race.patch, nscd-senfile.patch,
-  ldd-system-interp.patch, abort-no-flush.patch,
-  fnmatch-collating-elements.patch, nss-files-long-lines-2.patch,
-  iconv-reset-input-buffer.patch, nscd-prune.patch, syslog-locking.patch:
-  Removed.
-- long-double-alias.patch, glibc-nsswitch-usr.diff, euc-kr-overrun.patch,
-  riscv-syscall-clobber.patch, nscd-gc-cycle.patch: Added.
+- intl-codeset-suffixes.patch: intl: Handle translation output codesets
+  with suffixes (BZ #26383)
+- strerrorname-np.patch: string: Fix strerrorname_np return value (BZ
+  [#26555])
+- sysvipc.patch: sysvipc: Fix SEM_STAT_ANY kernel argument pass (BZ
+  [#26637], BZ #26639, BZ #26636)
+
+- Use --enable-cet on x86_64 to instrument glibc for indirect branch
+  tracking and shadow stack use.  Enable indirect branch tracking
+  and shadow stack in the dynamic loader (jsc#PM-2110, bsc#1175154)
-- nscd-senfile.patch: Fix concurrent changes on nscd aware files
-  (bsc#1171878, BZ #23178)
-- nscd-prune.patch: nscd: bump GC cycle during cache pruning (bsc#1171878,
-  BZ #26130)
+- Keep nsswitch.conf in /etc for SLES15
+- ifunc-fma4.patch: x86-64: Fix FMA4 detection in ifunc (BZ #26534)
-- nptl-setxid-race.patch: nptl: wait for pending setxid request also in
-  detached thread (bsc#1162930, BZ #25942)
+- Update to glibc 2.32
+  * Unicode 13.0.0 Support
+  * New locale added: ckb_IQ
+  * The GNU C Library now loads audit modules listed in the DT_AUDIT and
+    DT_DEPAUDIT dynamic section entries of the main executable
+  * powerpc64le supports IEEE128 long double libm/libc redirects when
+    using the -mabi=ieeelongdouble to compile C code on supported GCC
+    toolchains
+  * To help detect buffer overflows and other out-of-bounds accesses
+    several APIs have been annotated with GCC 'access' attribute
+  * On Linux, functions the pthread_attr_setsigmask_np and
+    pthread_attr_getsigmask_np have been added
+  * The GNU C Library now provides the header file <sys/single_threaded.h>
+    which declares the variable __libc_single_threaded
+  * The functions sigabbrev_np and sigdescr_np have been added
+  * The functions strerrorname_np and strerrordesc_np have been added
+  * AArch64 now supports standard branch protection security hardening
+    in glibc when it is built with a GCC that is configured with
+  - -enable-standard-branch-protection (or if -mbranch-protection=standard
+    flag is passed when building both GCC target libraries and glibc,
+    in either case a custom GCC is needed)
+  * The deprecated <sys/sysctl.h> header and the sysctl function have been
+    removed
+  * The sstk function is no longer available to newly linked binaries
+  * The legacy signal handling functions siginterrupt, sigpause, sighold,
+    sigrelse, sigignore and sigset, and the sigmask macro have been
+    deprecated
+  * ldconfig now defaults to the new format for ld.so.cache
+  * The deprecated arrays sys_siglist, _sys_siglist, and sys_sigabbrev
+    are no longer available to newly linked binaries, and their declarations
+    have been removed from <string.h>
+  * The deprecated symbols sys_errlist, _sys_errlist, sys_nerr, and _sys_nerr
+    are no longer available to newly linked binaries, and their declarations
+    have been removed from from <stdio.h>
+  * Both strerror and strerror_l now share the same internal buffer in the
+    calling thread, meaning that the returned string pointer may be invalided
+    or contents might be overwritten on subsequent calls in the same thread or
+    if the thread is terminated
+  * Using weak references to libpthread functions such as pthread_create
+    or pthread_key_create to detect the singled-threaded nature of a
+    program is an obsolescent feature
+  * The "files" NSS module no longer supports the "key" database (used for
+    secure RPC)
+  * The __morecore and __after_morecore_hook malloc hooks and the default
+    implementation __default_morecore have been deprecated
+  * The hesiod NSS module has been deprecated and will be removed in a
+    future version of glibc
+  * CVE-2016-10228: An infinite loop has been fixed in the iconv program when
+    invoked with the -c option and when processing invalid multi-byte input
+    sequences
+  * CVE-2020-10029: Trigonometric functions on x86 targets suffered from stack
+    corruption when they were passed a pseudo-zero argument
+  * CVE-2020-1752: A use-after-free vulnerability in the glob function when
+    expanding ~user has been fixed.
+  * CVE-2020-6096: A signed comparison vulnerability in the ARMv7 memcpy and
+    memmove functions has been fixed
+- riscv-syscall-clobber.patch, ldbl-96-rem-pio2l.patch,
+  long-double-alias.patch: Removed
+- bsc#1027496
+- bsc#1162930
+- bsc#1166106
+- bsc#1167631
+- bsc#1167939
+- bsc#1194785, jsc#SLE-18195
+- bsc#1200855
+- bsc#1201560
+- bsc#1201640
+- bsc#1207571
+- jsc#SLE-13520
+
+- long-double-alias.patch: Fix build with GCC 10 when long double = double
+- nscd-gc-cycle.patch: nscd: bump GC cycle during cache pruning
+  (bsc#1171878, BZ #26130)
+
+- glibc-nsswitch-usr.diff: read /usr/etc/nsswitch.conf if
+  /etc/nsswitch.conf does not exist
+- Install default nsswitch.conf in /usr/etc
+- Don't install gai.conf in /etc
-- glob-use-after-free.patch: Fix use-after-free in glob when expanding
-  ~user (CVE-2020-1752, bsc#1167631, BZ #25414)
-
-- dl-sort-maps.patch, dlopen-filter-object.patch: Allow dlopen of filter
-  object to work (bsc#1166106, BZ #16272)
+- Split off %lang_package
+- riscv-syscall-clobber.patch: riscv: Avoid clobbering register parameters
+  in syscall
-- pthread-rwlock-pwn.patch: Fix rwlock stall with
-  PREFER_WRITER_NONRECURSIVE_NP (bsc#1164505, BZ #23861)
-- manual-memory-protection.patch: manual: Document mprotect and introduce
-  section on memory protection (bsc#1163184)
+- nsswitch.conf: comment out initgroups setting, so that it defaults to
+  the group setting (bsc#1164075)
-- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC
-  (CVE-2020-1751, bsc#1158996, BZ #25423)
-
-- posix-Add-internal-symbols-for-posix_spawn-interface.patch,
-  glibc-2.29-posix-Use-posix_spawn-on-popen.patch: Use posix_spawn on
-  popen (bsc#1149332, BZ #22834)
+- fix-locking-in-_IO_cleanup.patch: update to latest version
-- ppc-tle-htm-nosc.patch: powerpc: Fix syscalls during early process
-  initialization (SLE-8348, BZ #22685)
+- Update to glibc 2.31
+  * The GNU C Library now supports a feature test macro _ISOC2X_SOURCE to
+    enable features from the draft ISO C2X standard
+  * The <math.h> functions that round their results to a narrower type now
+    have corresponding type-generic macros in <tgmath.h>
+  * The function pthread_clockjoin_np has been added, enabling join with a
+    terminated thread with a specific clock
+  * New locale added: mnw_MM (Mon language spoken in Myanmar).
+  * The DNS stub resolver will optionally send the AD (authenticated data) bit
+    in queries if the trust-ad option is set via the options directive in
+    /etc/resolv.conf (or if RES_TRUSTAD is set in _res.options)
+  * The totalorder and totalordermag functions, and the corresponding
+    functions for other floating-point types, now take pointer arguments to
+    avoid signaling NaNs possibly being converted to quiet NaNs in argument
+    passing
+  * The obsolete function stime is no longer available to newly linked
+    binaries, and its declaration has been removed from <time.h>
+  * The gettimeofday function no longer reports information about a
+    system-wide time zone
+  * If a lazy binding failure happens during dlopen, during the execution of
+    an ELF constructor, the process is now terminated
+- malloc-info-whitespace.patch, riscv-vfork.patch,
+  prefer-map-32bit-exec.patch, backtrace-powerpc.patch,
+  ldconfig-dynstr.patch: Removed.
+- bsc#1157893
+- bsc#1163184
+- fate#325815, fate#325879, fate#325880, fate#325881, fate#325882
+- fate#325962
-- s390-strstr-page-boundary.patch: S390: Fix handling of needles crossing
-  a page in strstr z15 ifunc-variant (bsc#1157893, BZ #25226)
+- backtrace-powerpc.patch: Fix array overflow in backtrace on PowerPC
+  (CVE-2020-1751, bsc#1158996, BZ #25423)
+- Drop support for pluggable gconv modules (bsc#1159851)
-- GNU1815 - Hardware support in toolchain (bsc#1151582)
-  0001-S390-Add-configure-check-to-detect-z10-as-mininum-ar.patch
-  0002-S390-Use-hwcap-instead-of-dl_hwcap-in-ifunc-resolver.patch
-  0003-S390-Unify-31-64bit-memcpy.patch
-  0004-S390-Refactor-memcpy-mempcpy-ifunc-handling.patch
-  0005-S390-Remove-s390-specific-implementation-of-bcopy.patch
-  0006-S390-Use-memcpy-for-forward-cases-in-memmove.patch
-  0007-S390-Add-configure-check-to-detect-z13-as-mininum-ar.patch
-  0008-S390-Add-z13-memmove-ifunc-variant.patch
-  0009-S390-Add-z13-strstr-ifunc-variant.patch
-  0010-S390-Add-z13-memmem-ifunc-variant.patch
-  0011-S390-Cleanup-ifunc-resolve.h.patch
-  0012-S390-Mark-vx-and-vxe-as-important-hwcap.patch
-  0013-S390-Add-new-hwcap-values-for-new-cpu-architecture-a.patch
-  0014-S390-Add-configure-check-to-detect-support-for-arch1.patch
-  0015-S390-Add-arch13-memmove-ifunc-variant.patch
-  0016-S390-Add-arch13-strstr-ifunc-variant.patch
-  0017-S390-Add-arch13-memmem-ifunc-variant.patch
-
-- regex-parse-reg-exp.patch: ERE '0|()0|\1|0' causes regexec undefined
-  behavior (CVE-2009-5155, bsc#1127223, BZ #18986)
-- regex-read-overrun.patch: regex: fix read overrun (CVE-2019-9169,
-  bsc#1127308, BZ #24114)
+- nsswitch.conf: add usrfiles for services, protocols, rpc, ethers
+  and aliases for /usr/etc move
-- crt-nocompress-debug-sections.patch: Don't compress debug sections in
-  crt*.o files (bsc#1123710)
+- euc-kr-overrun.patch: Fix buffer overrun in EUC-KR conversion module
+  (CVE-2019-25013, BZ #24973)
-- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig
-  (bsc#1117993, BZ #23973)
+- ldconfig-dynstr.patch: ldconfig: handle .dynstr located in separate
+  segment (bsc#1153149, BZ #25087)
-- force-elision-race.patch: Fix race in pthread_mutex_lock while promoting
-  to PTHREAD_MUTEX_ELISION_NP (bsc#1131330, BZ #23275)
+- Package gconv-modules.cache as %ghost
+- Regenerate it also in the %post of glibc-local-base-<targettype>
+
+- move mo files to glibc-locale as that's where all the other
+  informations for those locales are. glibc-locale-base only has English
+  anyways.
+
+- riscv-vfork.patch: Fix RISC-V vfork build with Linux 5.3 kernel headers
+
+- Remove NoSource tags (bsc#994835)
+
+- pwdutils is long gone and replaced by shadow
+
+- Update to glibc 2.30
+  * Unicode 12.1.0 Support
+  * The dynamic linker accepts the --preload argument to preload shared
+    objects
+  * The twalk_r function has been added
+  * On Linux, the getdents64, gettid, and tgkill functions have been added
+  * Minguo (Republic of China) calendar support has been added
+  * The entry for the new Japanese era has been added
+  * Memory allocation functions malloc, calloc, realloc, reallocarray, valloc,
+    pvalloc, memalign, and posix_memalign fail now with total object size
+    larger than PTRDIFF_MAX
+  * The dynamic linker no longer refuses to load objects which reference
+    versioned symbols whose implementation has moved to a different soname
+    since the object has been linked
+  * Add new POSIX-proposed pthread_cond_clockwait, pthread_mutex_clocklock,
+    pthread_rwlock_clockrdlock, pthread_rwlock_clockwrlock and sem_clockwait
+    functions
+  * On AArch64 the GNU IFUNC resolver call ABI changed
+  * The copy_file_range function fails with ENOSYS if the kernel does not
+    support the system call of the same name
+  * The functions clock_gettime, clock_getres, clock_settime,
+    clock_getcpuclockid, clock_nanosleep were removed from the librt library
+    for new applications (on architectures which had them)
+  * The obsolete and never-implemented XSI STREAMS header files <stropts.h>
+    and <sys/stropts.h> have been removed
+  * Support for the "inet6" option in /etc/resolv.conf and the RES_USE_INET6
+    resolver flag (deprecated in glibc 2.25) have been removed
+  * The obsolete RES_INSECURE1 and RES_INSECURE2 option flags for the DNS stub
+    resolver have been removed from <resolv.h>
+  * With --enable-bind-now, installed programs are now linked with the
+    BIND_NOW flag.
+  * On 32-bit Arm, support for the port-based I/O emulation and the <sys/io.h>
+    header have been removed
+  * The Linux-specific <sys/sysctl.h> header and the sysctl function have been
+    deprecated and will be removed from a future version of glibc
+  * CVE-2019-7309: x86-64 memcmp used signed Jcc instructions to check
+    size
+  * CVE-2019-9169: Attempted case-insensitive regular-expression match
+    via proceed_next_node in posix/regexec.c leads to heap-based buffer
+    over-read
+- pthread-rwlock-trylock-stalls.patch,
+  arm-systemtap-probe-constraint.patch, pthread-mutex-barrier.patch,
+  fork-handler-lock.patch, pthread-join-probe.patch,
+  riscv-clone-unwind.patch, add-new-Fortran-vector-math-header-file.patch,
+  regex-read-overrun.patch, japanese-era-name-may-2019.patch,
+  dl-show-auxv.patch, s390-vx-vxe-hwcap.patch, taisho-era-string.patch,
+  malloc-tracing-hooks.patch, pldd-inf-loop.patch,
+  malloc-large-bin-corruption-check.patch, wfile-sync-crash.patch,
+  malloc-tests-warnings.patch, fnmatch-collating-elements.patch,
+  iconv-reset-input-buffer.patch: Removed
+- malloc-info-whitespace.patch: Remove unwanted leading whitespace in
+  malloc_info (BZ #24867)
+- bsc#1100396
+- bsc#1130045
+
+- Move /var/lib/misc/Makefile to /usr/share/misc/Makefile.makedb (bsc#1138726)
+
+- malloc-tests-warnings.patch: Fix warnings in malloc tests with GCC 9
+
+- Set optflags for i686 after _lto_cflags is set (boo#1138807).
+
+- Disable LTO due to a usage of top-level assembler that
+  causes LTO issues (boo#1138807).
+
+- nss-files-long-lines-2.patch: Remove obsolete patch
+
+- dl-show-auxv.patch: Fix output of LD_SHOW_AUXV=1
+- s390-vx-vxe-hwcap.patch: S390: Mark vx and vxe as important hwcap
+- taisho-era-string.patch: ja_JP: Change the offset for Taisho gan-nen
+  from 2 to 1 (BZ #24162)
+- malloc-tracing-hooks.patch: malloc: Set and reset all hooks for tracing
+  (BZ #16573)
+- pldd-inf-loop.patch: elf: Fix pldd (BZ#18035)
+- malloc-large-bin-corruption-check.patch: malloc: Check for large bin
+  list corruption when inserting unsorted chunk (BZ #24216)
+- wfile-sync-crash.patch: Fix crash in _IO_wfile_sync (BZ #20568)
-  Japanese era (bsc#1100396, BZ #22964)
+  Japanese era (BZ #22964)
+- Replace glibc_post_upgrade with lua script
-- pthread-mutex-trylock-barrier.patch: pthread_mutex_trylock does not use
-  the correct order of instructions while maintaining the robust mutex
-  list due to missing compiler barriers (bsc#1130045, BZ #24180)
-- getaddrinfo-parse-ipv4-address.patch: getaddrinfo: Fully parse IPv4
-  address strings (CVE-2016-10739, bsc#1122729, BZ #20018)
-
-- mman-map-sync.patch: Add MAP_SYNC from Linux 4.15 (bsc#1126590)
-- mman-linux-map-shared-validate.patch: Add MAP_SHARED_VALIDATE from Linux
-  4.15 (bsc#1126590)
-- nptl-setxid-error.patch: nptl: Preserve error in setxid thread broadcast
-  in coredumps (bsc#1063675, BZ #22153)
+- add-new-Fortran-vector-math-header-file.patch: Update from upstream
-- x86-haswell-string-flags.patch: Fix Haswell CPU string flags
-  (bsc#1114984, BZ #23709)
-- pthread-cond-broadcast-waiters-after-spinning.patch: Fix
-  waiters-after-spinning case (bsc#1114993, BZ #23538)
+- regex-read-overrun.patch: fix read overrun (CVE-2019-9169, bsc#1127308,
+  BZ #24114)
+- ldconfig-concurrency.patch: Avoid concurrency problem in ldconfig
+  (bsc#1117993, BZ #23973)
+
+- Add add-new-Fortran-vector-math-header-file.patch.
-- absolute-symbols.patch: Don't relocate absolute symbols (bsc#1112570, BZ
-  [#19818])
+- pthread-rwlock-trylock-stalls.patch: nptl: Fix pthread_rwlock_try*lock
+  stalls (BZ #23844)
+- arm-systemtap-probe-constraint.patch: arm: Use "nr" constraint for
+  Systemtap probes (BZ #24164)
+- pthread-mutex-barrier.patch: Add compiler barriers around modifications
+  of the robust mutex list for pthread_mutex_trylock (BZ #24180)
+- fork-handler-lock.patch: nptl: Avoid fork handler lock for
+  async-signal-safe fork (BZ #24161)
+- pthread-join-probe.patch: nptl: Fix invalid Systemtap probe in
+  pthread_join (BZ #24211)
+- riscv-clone-unwind.patch: RISC-V: Fix elfutils testsuite unwind failures
+  (BZ #24040)
+
+- Update to glibc 2.29
+  * The getcpu wrapper function has been added, which returns the currently
+    used CPU and NUMA node
+  * Optimized generic exp, exp2, log, log2, pow, sinf, cosf, sincosf and tanf
+  * The reallocarray function is now declared under _DEFAULT_SOURCE, not just
+    for _GNU_SOURCE, to match BSD environments
+  * For powercp64le ABI, Transactional Lock Elision is now enabled iff kernel
+    indicates that it will abort the transaction prior to entering the kernel
+    (PPC_FEATURE2_HTM_NOSC on hwcap2)
+  * The functions posix_spawn_file_actions_addchdir_np and
+    posix_spawn_file_actions_addfchdir_np have been added, enabling
+    posix_spawn and posix_spawnp to run the new process in a different
+    directory
+  * The popen and system do not run atfork handlers anymore (BZ#17490)
+  * strftime's default formatting of a locale's alternative year (%Ey)
+    has been changed to zero-pad the year to a minimum of two digits,
+    like "%y"
+  * As a GNU extension, the '_' and '-' flags can now be applied to
+    "%EY" to control how the year number is formatted
+  * The glibc.tune tunable namespace has been renamed to glibc.cpu and the
+    tunable glibc.tune.cpu has been renamed to glibc.cpu.name
+  * The type of the pr_uid and pr_gid members of struct elf_prpsinfo, defined
+    in <sys/procfs.h>, has been corrected to match the type actually used by
+    the Linux kernel
+  * An archaic GNU extension to scanf, under which '%as', '%aS', and '%a[...]'
+    meant to scan a string and allocate space for it with malloc, is now
+    restricted to programs compiled in C89 or C++98 mode with _GNU_SOURCE
+    defined
+- unwind-ctor.patch, old-getdents64.patch, nss-files-leak.patch,
+  riscv-feholdexcept-setround.patch,
+  pthread-cond-broadcast-waiters-after-spinning.patch,
+  regex-uninit-memory-access.patch, spawni-maybe-script-execute.patch,
+  gethostid-gethostbyname-failure.patch, strstr-huge-needle.patch,
+  pthread-mutex-lock-elision-race.patch, x86-haswell-string-flags.patch,
+  if-nametoindex-descr-leak.patch, riscv-flush-icache.patch: Removed
+- CVE-2016-10739
+- bsc#1114984
+- bsc#1114993
+- bsc#1122729
+- bsc#1131330
+- bsc#1149332
+- bsc#1151582
+- bsc#1164505
+
+- fnmatch-collating-elements.patch: update
+- riscv-flush-icache.patch: fix for compiling against 4.20 headers
+
+- if-nametoindex-descr-leak.patch: if_nametoindex: Fix descriptor leak for
+  overlong name (CVE-2018-19591, BZ #23927, bsc#1117603)
+
+- Fix typography for glibc-locale-base.
+
+- pthread-mutex-lock-elision-race.patch: Fix race in pthread_mutex_lock
+  while promoting to PTHREAD_MUTEX_ELISION_NP (BZ #23275)
+- x86-haswell-string-flags.patch: x86: Fix Haswell CPU string flags (BZ
+  [#23709])
+
+- unwind-ctor.patch: Add missing unwind information to ld.so on powerpc32
+  (BZ #23707)
+- old-getdents64.patch: Rewrite __old_getdents64 (BZ #23497)
+- nss-files-leak.patch: Fix file stream leak in aliases lookup (BZ #23521)
+- riscv-feholdexcept-setround.patch: Fix rounding save/restore bug
+- pthread-cond-broadcast-waiters-after-spinning.patch: Fix
+  waiters-after-spinning case (BZ #23538)
+- regex-uninit-memory-access.patch: fix uninitialized memory access (BZ
+  [#23578])
+- spawni-maybe-script-execute.patch: Fix segfault in maybe_script_execute
+- gethostid-gethostbyname-failure.patch: Check for NULL value from
+  gethostbyname_r (BZ #23679)
+- strstr-huge-needle.patch: Fix strstr bug with huge needles (BZ #23637)
-- glibc-fix-aarch64-build.diff: Fix build on aarch64 with
-  binutils newer than 2.30.
+- Add libpng-devel and zlib-devel for utils build
-- aarch64-hwcap-atomics.patch: aarch64: add HWCAP_ATOMICS to
-  HWCAP_IMPORTANT (fate#325962)
+- Update to glibc 2.28
+  * The localization data for ISO 14651 is updated to match the 2016
+    Edition 4 release of the standard, this matches data provided by
+    Unicode 9.0.0
+  * Unicode 11.0.0 Support: Character encoding, character type info, and
+    transliteration tables are all updated to Unicode 11.0.0, using
+    generator scripts contributed by Mike FABIAN (Red Hat)
+  * <math.h> functions that round their results to a narrower type are added
+    from TS 18661-1:2014 and TS 18661-3:2015
+  * Two grammatical forms of month names are now supported
+  * The renameat2 function has been added, a variant of the renameat function
+    which has a flags argument
+  * The statx function has been added, a variant of the fstatat64
+    function with an additional flags argument
+  * IDN domain names in getaddrinfo and getnameinfo now use the system libidn2
+    library if installed
+  * Parsing of dynamic string tokens in DT_RPATH, DT_RUNPATH, DT_NEEDED,
+    DT_AUXILIARY, and DT_FILTER has been expanded to support the full
+    range of ELF gABI expressions including such constructs as
+    '$ORIGIN$ORIGIN' (if valid)
+  * Support for ISO C threads (ISO/IEC 9899:2011) has been added.
+  * The nonstandard header files <libio.h> and <_G_config.h> are no longer
+    installed
+  * The stdio functions 'getc' and 'putc' are no longer defined as macros
+  * All stdio functions now treat end-of-file as a sticky condition
+  * The macros 'major', 'minor', and 'makedev' are now only available from
+    the header <sys/sysmacros.h>
+  * The obsolete function ustat is no longer available to newly linked
+    binaries; the headers <ustat.h> and <sys/ustat.h> have been removed
+  * The obsolete function nfsservctl is no longer available to newly linked
+    binaries
+  * The obsolete function name llseek is no longer available to newly linked
+    binaries
+  * The AI_IDN_ALLOW_UNASSIGNED and NI_IDN_ALLOW_UNASSIGNED flags for the
+    getaddrinfo and getnameinfo functions have been deprecated
+  * The AI_IDN_USE_STD3_ASCII_RULES and NI_IDN_USE_STD3_ASCII_RULES flags for
+    the getaddrinfo and getnameinfo functions have been deprecated
+  * The fcntl function now have a Long File Support variant named fcntl64
+  * CVE-2016-6261, CVE-2016-6263, CVE-2017-14062: Various vulnerabilities have
+    been fixed by removing the glibc-internal IDNA implementation and using
+    the system-provided libidn2 library instead
+- Split off all libcrypt related functions into package libxcrypt
+- fix-locking-in-_IO_cleanup.patch, fnmatch-collating-elements.patch:
+  Rediff
+- aarch64-sys-ptrace-update.patch,
+  crypt_blowfish-1.2-hack_around_arm.diff, crypt_blowfish-1.2-sha.diff,
+  crypt_blowfish-const.patch, crypt_blowfish-gensalt.patch,
+  glibc-2.14-crypt.diff, i386-memmove-sse2-unaligned.patch,
+  i386-sigaction-sa-restorer.patch, mempcpy-avx512.patch,
+  netgroup-cache-keys.patch, nss-database-multiple-dfn.patch,
+  pkey-get-reserved-name.patch, powerpc-sys-ptrace-undefine-macros.patch,
+  powerpc-sys-ptrace-update.patch, realpath-ssize-max-overflow.patch,
+  res-send-enomem.patch, riscv-fmax-fmin-nan.patch,
+  riscv-kernel-sigaction.patch, riscv-readelflib.patch,
+  riscv-tls-init.patch: Removed
+- glibc_post_upgrade.c: Don't reload init (bsc#1103124)
+- CVE-2009-5155, CVE-2015-8985
+- bsc#1092877
+- bsc#1102526
+- bsc#1112570
+- bsc#1126590
+- bsc#1127223
+
+- Use python3-pexpect instead of python-pexpect
-- math-remove-slow-path.patch: Remove slow paths from math routines
-  (fate#325815, fate#325879, fate#325880, fate#325881, fate#325882)
+- riscv-kernel-sigaction.patch: fix struct kernel_sigaction to match the
+  kernel version (BZ #23069)
-- localtime-2039.patch: Fix year 2039 bug for localtime with 64-bit time_t
-  (bsc#1102526, BZ #22639)
+- glibc-2.3.90-langpackdir.diff: No longer search in /usr/share/locale-bundle
-- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing
-  2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644)
+- mempcpy-avx512.patch: Don't write beyond destination in
+  __mempcpy_avx512_no_vzeroupper (CVE-2018-11237, bsc#1094154)
-- glibc-fix-avx512-mempcpy.patch: replace with upstream version
-
-- Use %license also for COPYING and COPYING.LIB (bsc#1082318)
-
-- Add glibc-fix-avx512-mempcpy.patch as quick fix for mempcpy
-  buffer overwrite in memmove-avx512-no-vzeroupper.S for Knights
-  Landing CPUs (CVE-2018-11237, bnc#1094154, bnc#1092877, BZ #23196)
+- Use %license also for COPYING, COPYING.LIB
+- i386-memmove-sse2-unaligned.patch: Fix SSE2 memmove issue when crossing
+  2GB boundary (CVE-2017-18269, bnc#1094150, BZ #22644)
+
-- Use %license (bsc#1082318)
-
-- stack-guard-size-accounting.patch: Fix stack guard size accounting
-  (bsc#1074208, BZ #22637)
-- libgcc-rtld-now.patch: Open libgcc.so with RTLD_NOW during
-  pthread_cancel (bsc#1074208, BZ #22636)
-
-- Mark source0 as nosource in non-main source rpms
-
-- Add systemtap-headers to BuildRequires.
-- Add --enable-systemtap to configure arguments. (fate#324969,
-  bsc#1073636)
-
-- memalign-overflow.patch: Fix integer overflows in internal memalign and
-  malloc functions (CVE-2018-6485, CVE-2018-6551, bsc#1079036, BZ #22343,
-  BZ #22774)
+- pkey-get-reserved-name.patch: Linux: use reserved name __key in pkey_get
+  (BZ #22797)
+- aarch64-sys-ptrace-update.patch: linux/aarch64: sync sys/ptrace.h with
+  Linux 4.15 (BZ #22433)
+- powerpc-sys-ptrace-undefine-macros.patch: powerpc: Undefine Linux ptrace
+  macros that conflict with __ptrace_request
+- powerpc-sys-ptrace-update.patch: linux/powerpc: sync sys/ptrace.h with
+  Linux 4.15 (BZ #22433, BZ #22807)
+- netgroup-cache-keys.patch: Fix netgroup cache keys (BZ #22342)
+- i386-sigaction-sa-restorer.patch: i386: Fix i386 sigaction sa_restorer
+  initialization (BZ #21269)
+- riscv-tls-init.patch: RISC-V: Do not initialize $gp in TLS macros
+- riscv-fmax-fmin-nan.patch: RISC-V: fmax/fmin: Handle signalling NaNs
+  correctly (BZ #22884)
+
+- nss-database-multiple-dfn.patch: Fix multiple definitions of
+  __nss_*_database (BZ #22918)
+
+- Use %license (boo#1082318)
+
+- Add systemtap-headers to BuildRequires
+- Add --enable-systemtap to configure arguments (fate#324969, bsc#1073636)
+
+- riscv-readelflib.patch: Fix parsing flags in ELF64 files on riscv
+
+- Update to glibc 2.27
+  * Optimized x86-64 asin, atan2, exp, expf, log, pow, atan, sin, cosf,
+    sinf, sincosf and tan with FMA
+  * Optimized x86-64 trunc and truncf for processors with SSE4.1
+  * Optimized generic expf, exp2f, logf, log2f, powf, sinf, cosf and
+    sincosf
+  * In order to support faster and safer process termination the malloc API
+    family of functions will no longer print a failure address and stack
+    backtrace after detecting heap corruption
+  * The abort function terminates the process immediately, without flushing
+    stdio streams
+  * On platforms where long double has the IEEE binary128 format (aarch64,
+    alpha, mips64, riscv, s390 and sparc), the math library now implements
+    _Float128 interfaces for that type, as defined by ISO/IEC TS 18661-3:2015
+    These are the same interfaces added in version 2.26 for some platforms where
+    this format is supported but is not the format of long double
+  * On platforms with support for _Float64x (aarch64, alpha, i386, ia64,
+    mips64, powerpc64le, riscv, s390, sparc and x86_64), the math library now
+    implements interfaces for that type, as defined by ISO/IEC TS
+    18661-3:2015
+  * The math library now implements interfaces for the _Float32, _Float64 and
+    _Float32x types, as defined by ISO/IEC TS 18661-3:2015
+  * glibc now implements the memfd_create and mlock2 functions on Linux
+  * Support for memory protection keys was added
+  * The copy_file_range function was added
+  * The ldconfig utility now processes `include' directives using the C/POSIX
+    collation ordering
+  * Support for two grammatical forms of month names has been added
+  * Support for the RISC-V ISA running on Linux has been added
+  * Statically compiled applications attempting to load locales compiled for the
+    GNU C Library version 2.27 will fail and fall back to the builtin C/POSIX
+    locale
+  * Support for statically linked applications which call dlopen is deprecated
+    and will be removed in a future version of glibc
+  * Support for old programs which use internal stdio data structures and
+    functions is deprecated
+  * On GNU/Linux, the obsolete Linux constant PTRACE_SEIZE_DEVEL is no longer
+    defined by <sys/ptrace.h>
+  * libm no longer supports SVID error handling (calling a user-provided
+    matherr function on error) or the _LIB_VERSION variable to control error
+    handling
+  * The libm functions pow10, pow10f and pow10l are no longer supported for
+    new programs
+  * The mcontext_t type is no longer the same as struct sigcontext
+  * The add-ons mechanism for building additional packages at the same time as
+    glibc has been removed
+  * The res_hnok, res_dnok, res_mailok and res_ownok functions now check that
+    the specified string can be parsed as a domain name
+  * In the malloc_info output, the <heap> element may contain another <aspace>
+    element, "subheaps", which contains the number of sub-heaps
+  * In the malloc_info output, the <heap> element may contain another <aspace>
+    element, "subheaps", which contains the number of sub-heaps
+  * The nonstandard header files <libio.h> and <_G_config.h> are deprecated
+    and will be removed in a future release
+  * CVE-2018-6485, CVE-2018-6551: The posix_memalign and memalign
+    functions, when called with an object size near the value of SIZE_MAX,
+    would return a pointer to a buffer which is too small, instead of NULL
+    (bsc#1079036)
+- Support for Sun RPC is no longer available, use libtirpc instead
+- glibc-nodate.patch, powerpc-elision-enable-envvar.patch,
+  s390-elision-enable-envvar.patch, resolv-context-leak.patch,
+  dl-runtime-resolve-opt-avx512f.patch, libpthread-compat-wrappers.patch,
+  math-c++-compat.patch, remove-nss-nis-compat.patch,
+  eh-frame-zero-terminator.patch, ld-so-hwcap-x86-64.patch,
+  assert-pedantic.patch, getaddrinfo-errno.patch, resolv-conf-oom.patch,
+  dynarray-allocation.patch, nearbyint-inexact.patch, nss-compat.patch,
+  nscd-libnsl.patch, malloc-tcache-leak.patch,
+  falkor-memcpy-memmove.patch, aarch64-cpu-features.patch,
+  nss-files-large-buffers.patch. sysconf-uio-maxiov.patch,
+  glob-tilde-overflow.patch, dl-runtime-resolve-xsave.patch,
+  spawni-assert.patch, x86-64-dl-platform.patch, glob64-s390.patch,
+  tst-tlsopt-powerpc.patch, powerpc-hwcap-bits.patch,
+  malloc-tcache-check-overflow.patch, dl-init-paths-overflow.patch,
+  fillin-rpath-empty-tokens.patch, getcwd-absolute.patch,
+  ldd-system-interp.patchabort-no-flush.patch: Removed
+- All patches refreshed
+- bsc#1063675
+- bsc#1074208
gnome-control-center
+- Add gnome-control-center-network-fix-nmce-popup.patch:
+  network-connection-editor: Close the editor when nm-connection-editor
+  exits(bsc#1208193 glgo#GNOME/gnome-control-center!1956).
+
google-guest-configs
+- Update to version 20230808.00 (bsc#1214546, bsc#1214572)
+  * 64-gce-disk-removal.rules: delete (#51)
+- from version 20230801.00
+  * Replace xxd with dd for google_nvme_id (#56)
+- from version 20230729.00
+  * Setup irq binding for a3 8g vm (#57)
+- from version 20230724.00
+  * Debian packaging: add xxd dependency (#55)
+
+- Update to version 20230626.00 (bsc#1212418, bsc#1212759)
+  * Revert "Replace `xxd` to `cut` for google_nvme_id (#49)" (#54)
+
+- Update to version 20230526.00
+  * dracut: Add a new dracut module for gcp udev rules (#53)
+- from version 20230522.00
+  * src/lib/udev: only create symlinks for GCP devices (#52)
+- from version 20230515.00
+  * Replace `xxd` to `cut` for google_nvme_id (#49)
+- from version 20230328.00
+  * Set hostname: consider fully qualified static hostname (#46)
+
+- Update to version 20230217.01
+  * Support multiple local SSD controllers (#39)
+- from version 20230217.00
+  * Update OWNERS (#45)
+- from version 20230215.00
+  * DHCP hostname: don't reset hostname if
+    the hostname hasn't changed (#44)
+- from version 20230202.00
+  * Update OWNERS file (#43)
+- from version 20230123.00
+  * Fix a repository URL in packaging specs (#41)
+
google-noto-fonts
+fix: bsc#1202279 and gh#notofonts/Arimo#13
+- fix-arimo.patch
+
+fix: summary and descriptions not mentioning font being Serif
+  add: README.FAQ to answer some questions about Noto Fonts packaging
+
+feat: create new metapackage noto-fonts with all Noto Fonts except CJK and Emoji
+
+update: 20220524 -> 20220607
+- Noto Sans and Noto Sans Myanmar have been updated
+  fix(spec): add LICENSE to every package, remove redundant doc package
+- It is likely a legal requirement that the license must be included with the package (rather than only recommends)
+- Using the %license macro and including the license in every subpackage is the norm
+  fix(sh): prevent redundant .svn files from being compressed into archive
+  chore(spec): use install instead of mkdir and cp
+  chore(sh): fix typo
+
+- Add obsoletes and provides for google-{arimo,cousine,tinos}-fonts
+
+- Switch back to hinted ttf as unhinted otf causes blurring (boo#1199938)
+
+- Add obsoletes and provides for:
+  - noto-mono-fonts: Got merged into noto-sans-mono-fonts
+  - noto-sans-syriac* variants: Got merged into noto-sans-syriac-fonts
+  - noto-sans-tibetan-fonts: Got renamed to noto-serif-tibetan-fonts
+- Update to version 20220524
+  - Updated Noto Sans Myanmar and Noto Sans Tangsa Fonts
+
+- Clarify sources
+
+- Fix unversioned obsoletes
+- Merge noto-sans-display-fonts into noto-sans-fonts
+  - Fixes inconsistent font family names see Github issue #2315
+- Bump version to 20220516
+  - Start using OTF fonts to be in-line with Noto CJK and Emoji
+  - No new fonts
+
+- Update URL and source for zips
+- Update to version 20220509
+  - 96 new fonts, details at https://pastebin.com/ycnpAn88
+
grub2
-- Fix failure to identify recent ext4 filesystem (bsc#1216010)
-  * 0001-fs-ext2-Ignore-checksum-seed-incompat-feature.patch
-  * 0001-fs-ext2-Ignore-the-large_dir-incompat-feature.patch
-- Add patch to fix reading files from btrfs with "implicit" holes
-  * 0001-fs-btrfs-Zero-file-data-not-backed-by-extents.patch
+- grub2.spec: Fix openQA test failure in SLE-15-SP6 due to missing
+  font in memdisk
+
+- Update the TPM2 patches to skip the persistent SRK handle if not
+  specified and improve the error messages
+  + 0003-protectors-Add-TPM2-Key-Protector.patch
+  + 0005-util-grub-protect-Add-new-tool.patch
+  + 0004-tpm2-Support-authorized-policy.patch
+
+- Fix XFS regression in 2.12~rc1 and support large extent counters
+  * 0001-fs-xfs-Incorrect-short-form-directory-data-boundary-.patch
+  * 0002-fs-xfs-Fix-XFS-directory-extent-parsing.patch
+  * 0003-fs-xfs-add-large-extent-counters-incompat-feature-su.patch
-  * 0001-kern-ieee1275-init-ppc64-Restrict-high-memory-in-pre.patch
+  * 0001-kern-ieee1275-init-Restrict-high-memory-in-presence-.patch
+
+- Fix a potential error when appending multiple keys into the
+  synthesized initrd
+  * Fix-the-size-calculation-for-the-synthesized-initrd.patch
+
+- Fix Xen chainloding error of no matching file path found (bsc#1216081)
+  * grub2-efi-chainload-harder.patch
+
+- Use grub-tpm2 token to unlock keyslots to make the unsealing process more
+  efficient and secure.
+  * 0001-luks2-Use-grub-tpm2-token-for-TPM2-protected-volume-.patch
+- Add patch to fix reading files from btrfs with "implicit" holes:
+  * 0001-fs-btrfs-Zero-file-data-not-backed-by-extents.patch
+
+- Update the TPM 2.0 patches to support more RSA and ECC algorithms
+  * 0002-tpm2-Add-TPM-Software-Stack-TSS.patch
+  * 0003-protectors-Add-TPM2-Key-Protector.patch
+  * 0005-util-grub-protect-Add-new-tool.patch
+
+- Remove build require for gcc-32bit, target platform didn't rely on libgcc
+  function shipped with compiler but rather using functions supplied in grub
+  directly.
+
+- Add BuildIgnore to break cycle with the branding package
+
+- Only build with fde-tpm-helper-rpm-macros for the architectures
+  supporting the newer UEFI and TPM 2.0.
+  * Also correct the location of %fde_tpm_update_requires
+
+- Add the new BuildRequires for EFI builds for the better FDE
+  support: fde-tpm-helper-rpm-macros
+  + Also add the the macros to %post and %posttrans
+
+- Correct the type of allocated EFI pages for ARM64 kernel (bsc#1215151)
+  * arm64-Use-proper-memory-type-for-kernel-allocation.patch
+
+- grub2-mkconfig-riscv64.patch: Handle riscv64 in mkconfig
+
+- Implement NV index mode for TPM 2.0 key protector
+  0001-protectors-Implement-NV-index.patch
+- Fall back to passphrase mode when the key protector fails to
+  unlock the disk
+  0002-cryptodisk-Fallback-to-passphrase.patch
+- Wipe out the cached key cleanly
+  0003-cryptodisk-wipe-out-the-cached-keys-from-protectors.patch
+- Make diskfiler to look up cryptodisk devices first
+  0004-diskfilter-look-up-cryptodisk-devices-first.patch
+
+- Change the bash-completion directory (bsc#1213855)
+  * grub2-change-bash-completion-dir.patch
+
+- Version bump to 2.12~rc1 (PED-5589)
+  * Added:
+  - grub-2.12~rc1.tar.xz
+  * Removed:
+  - grub-2.06.tar.xz
+  * Patch dropped merged by new version:
+  - grub2-GRUB_CMDLINE_LINUX_RECOVERY-for-recovery-mode.patch
+  - grub2-s390x-02-kexec-module-added-to-emu.patch
+  - grub2-efi-chainloader-root.patch
+  - grub2-Fix-incorrect-netmask-on-ppc64.patch
+  - 0001-osdep-Introduce-include-grub-osdep-major.h-and-use-i.patch
+  - 0002-osdep-linux-hostdisk-Use-stat-instead-of-udevadm-for.patch
+  - 0002-net-read-bracketed-ipv6-addrs-and-port-numbers.patch
+  - grub2-s390x-10-keep-network-at-kexec.patch
+  - 0001-Fix-build-error-in-binutils-2.36.patch
+  - 0001-emu-fix-executable-stack-marking.patch
+  - 0046-squash-verifiers-Move-verifiers-API-to-kernel-image.patch
+  - 0001-30_uefi-firmware-fix-printf-format-with-null-byte.patch
+  - 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch
+  - 0001-Filter-out-POSIX-locale-for-translation.patch
+  - 0001-disk-diskfilter-Use-nodes-in-logical-volume-s-segmen.patch
+  - 0001-fs-xfs-Fix-unreadable-filesystem-with-v4-superblock.patch
+  - 0001-fs-btrfs-Make-extent-item-iteration-to-handle-gaps.patch
+  - 0001-grub-mkconfig-restore-umask-for-grub.cfg.patch
+  - 0001-ieee1275-Drop-HEAP_MAX_ADDR-and-HEAP_MIN_SIZE-consta.patch
+  - 0002-ieee1275-claim-more-memory.patch
+  - 0003-ieee1275-request-memory-with-ibm-client-architecture.patch
+  - 0001-RISC-V-Adjust-march-flags-for-binutils-2.38.patch
+  - 0001-mkimage-Fix-dangling-pointer-may-be-used-error.patch
+  - 0002-Fix-Werror-array-bounds-array-subscript-0-is-outside.patch
+  - 0003-reed_solomon-Fix-array-subscript-0-is-outside-array-.patch
+  - 0001-powerpc-do-CAS-in-a-more-compatible-way.patch
+  - 0001-libc-config-merge-from-glibc.patch
+  - 0001-video-Remove-trailing-whitespaces.patch
+  - 0002-loader-efi-chainloader-Simplify-the-loader-state.patch
+  - 0003-commands-boot-Add-API-to-pass-context-to-loader.patch
+  - 0004-loader-efi-chainloader-Use-grub_loader_set_ex.patch
+  - 0005-kern-efi-sb-Reject-non-kernel-files-in-the-shim_lock.patch
+  - 0006-kern-file-Do-not-leak-device_name-on-error-in-grub_f.patch
+  - 0007-video-readers-png-Abort-sooner-if-a-read-operation-f.patch
+  - 0008-video-readers-png-Refuse-to-handle-multiple-image-he.patch
+  - 0009-video-readers-png-Drop-greyscale-support-to-fix-heap.patch
+  - 0010-video-readers-png-Avoid-heap-OOB-R-W-inserting-huff-.patch
+  - 0011-video-readers-png-Sanity-check-some-huffman-codes.patch
+  - 0012-video-readers-jpeg-Abort-sooner-if-a-read-operation-.patch
+  - 0013-video-readers-jpeg-Do-not-reallocate-a-given-huff-ta.patch
+  - 0014-video-readers-jpeg-Refuse-to-handle-multiple-start-o.patch
+  - 0015-video-readers-jpeg-Block-int-underflow-wild-pointer-.patch
+  - 0016-normal-charset-Fix-array-out-of-bounds-formatting-un.patch
+  - 0017-net-ip-Do-IP-fragment-maths-safely.patch
+  - 0018-net-netbuff-Block-overly-large-netbuff-allocs.patch
+  - 0019-net-dns-Fix-double-free-addresses-on-corrupt-DNS-res.patch
+  - 0020-net-dns-Don-t-read-past-the-end-of-the-string-we-re-.patch
+  - 0021-net-tftp-Prevent-a-UAF-and-double-free-from-a-failed.patch
+  - 0022-net-tftp-Avoid-a-trivial-UAF.patch
+  - 0023-net-http-Do-not-tear-down-socket-if-it-s-already-bee.patch
+  - 0024-net-http-Fix-OOB-write-for-split-http-headers.patch
+  - 0025-net-http-Error-out-on-headers-with-LF-without-CR.patch
+  - 0026-fs-f2fs-Do-not-read-past-the-end-of-nat-journal-entr.patch
+  - 0027-fs-f2fs-Do-not-read-past-the-end-of-nat-bitmap.patch
+  - 0028-fs-f2fs-Do-not-copy-file-names-that-are-too-long.patch
+  - 0029-fs-btrfs-Fix-several-fuzz-issues-with-invalid-dir-it.patch
+  - 0030-fs-btrfs-Fix-more-ASAN-and-SEGV-issues-found-with-fu.patch
+  - 0031-fs-btrfs-Fix-more-fuzz-issues-related-to-chunks.patch
+  - 0032-Use-grub_loader_set_ex-for-secureboot-chainloader.patch
+  - 0001-luks2-Add-debug-message-to-align-with-luks-and-geli-.patch
+  - 0002-cryptodisk-Refactor-to-discard-have_it-global.patch
+  - 0003-cryptodisk-Return-failure-in-cryptomount-when-no-cry.patch
+  - 0004-cryptodisk-Improve-error-messaging-in-cryptomount-in.patch
+  - 0005-cryptodisk-Improve-cryptomount-u-error-message.patch
+  - 0006-cryptodisk-Add-infrastructure-to-pass-data-from-cryp.patch
+  - 0007-cryptodisk-Refactor-password-input-out-of-crypto-dev.patch
+  - 0008-cryptodisk-Move-global-variables-into-grub_cryptomou.patch
+  - 0009-cryptodisk-Improve-handling-of-partition-name-in-cry.patch
+  - 0001-crytodisk-fix-cryptodisk-module-looking-up.patch
+  - 0001-devmapper-getroot-Have-devmapper-recognize-LUKS2.patch
+  - 0002-devmapper-getroot-Set-up-cheated-LUKS2-cryptodisk-mo.patch
+  - 0003-disk-cryptodisk-When-cheatmounting-use-the-sector-in.patch
+  - 0004-normal-menu-Don-t-show-Booting-s-msg-when-auto-booti.patch
+  - 0005-EFI-suppress-the-Welcome-to-GRUB-message-in-EFI-buil.patch
+  - 0006-EFI-console-Do-not-set-colorstate-until-the-first-te.patch
+  - 0007-EFI-console-Do-not-set-cursor-until-the-first-text-o.patch
+  - efi-set-variable-with-attrs.patch
+  - 0001-mm-Allow-dynamically-requesting-additional-memory-re.patch
+  - 0002-kern-efi-mm-Always-request-a-fixed-number-of-pages-o.patch
+  - 0003-kern-efi-mm-Extract-function-to-add-memory-regions.patch
+  - 0004-kern-efi-mm-Pass-up-errors-from-add_memory_regions.patch
+  - 0005-kern-efi-mm-Implement-runtime-addition-of-pages.patch
+  - 0001-kern-efi-mm-Enlarge-the-default-heap-size.patch
+  - 0002-mm-Defer-the-disk-cache-invalidation.patch
+  - 0001-grub-install-set-point-of-no-return-for-powerpc-ieee1275.patch
+  - 0001-commands-efi-tpm-Refine-the-status-of-log-event.patch
+  - 0002-commands-efi-tpm-Use-grub_strcpy-instead-of-grub_mem.patch
+  - 0003-efi-tpm-Add-EFI_CC_MEASUREMENT_PROTOCOL-support.patch
+  - 0001-ibmvtpm-Add-support-for-trusted-boot-using-a-vTPM-2..patch
+  - 0002-ieee1275-implement-vec5-for-cas-negotiation.patch
+  - 0001-font-Reject-glyphs-exceeds-font-max_glyph_width-or-f.patch
+  - 0002-font-Fix-size-overflow-in-grub_font_get_glyph_intern.patch
+  - 0003-font-Fix-several-integer-overflows-in-grub_font_cons.patch
+  - 0004-font-Remove-grub_font_dup_glyph.patch
+  - 0005-font-Fix-integer-overflow-in-ensure_comb_space.patch
+  - 0006-font-Fix-integer-overflow-in-BMP-index.patch
+  - 0007-font-Fix-integer-underflow-in-binary-search-of-char-.patch
+  - 0008-fbutil-Fix-integer-overflow.patch
+  - 0009-font-Fix-an-integer-underflow-in-blit_comb.patch
+  - 0010-font-Harden-grub_font_blit_glyph-and-grub_font_blit_.patch
+  - 0011-font-Assign-null_font-to-glyphs-in-ascii_font_glyph.patch
+  - 0012-normal-charset-Fix-an-integer-overflow-in-grub_unico.patch
+  - 0001-fs-btrfs-Use-full-btrfs-bootloader-area.patch
+  - 0001-ieee1275-Increase-initially-allocated-heap-from-1-4-.patch
+  - 0001-grub-core-modify-sector-by-sysfs-as-disk-sector.patch
+  - grub2-add-module-for-boot-loader-interface.patch
+  - 0001-ieee1275-Further-increase-initially-allocated-heap-f.patch
+  - 0002-tpm-Disable-tpm-verifier-if-tpm-is-not-present.patch
+  - 0001-RISC-V-Handle-R_RISCV_CALL_PLT-reloc.patch
+  - 0001-loader-linux-Ensure-the-newc-pathname-is-NULL-termin.patch
+  - 0001-kern-ieee1275-init-Convert-plain-numbers-to-constant.patch
+  - 0002-kern-ieee1275-init-Extended-support-in-Vec5.patch
+  - 0001-fs-ext2-Ignore-checksum-seed-incompat-feature.patch
+  - 0001-fs-ext2-Ignore-the-large_dir-incompat-feature.patch
+  * Patch modified to new base version:
+  - use-grub2-as-a-package-name.patch
+  - grub2-fix-menu-in-xen-host-server.patch
+  - grub2-secureboot-add-linuxefi.patch
+  - grub2-secureboot-chainloader.patch
+  - grub2-s390x-01-Changes-made-and-files-added-in-order-to-allow-s390x.patch
+  - grub2-s390x-03-output-7-bit-ascii.patch
+  - grub2-s390x-04-grub2-install.patch
+  - grub2-use-rpmsort-for-version-sorting.patch
+  - grub2-getroot-treat-mdadm-ddf-as-simple-device.patch
+  - grub2-grubenv-in-btrfs-header.patch
+  - grub2-commands-introduce-read_file-subcommand.patch
+  - grub2-efi-chainload-harder.patch
+  - grub2-emu-4-all.patch
+  - grub2-util-30_os-prober-multiple-initrd.patch
+  - grub2-install-fix-not-a-directory-error.patch
+  - grub-install-force-journal-draining-to-ensure-data-i.patch
+  - grub2-btrfs-01-add-ability-to-boot-from-subvolumes.patch
+  - grub2-btrfs-04-grub2-install.patch
+  - grub2-btrfs-05-grub2-mkconfig.patch
+  - grub2-btrfs-06-subvol-mount.patch
+  - grub2-efi-xen-chainload.patch
+  - grub2-efi-xen-cmdline.patch
+  - grub2-efi-xen-removable.patch
+  - grub2-suse-remove-linux-root-param.patch
+  - grub2-ppc64le-disable-video.patch
+  - grub2-install-remove-useless-check-PReP-partition-is-empty.patch
+  - 0004-efinet-UEFI-IPv6-PXE-support.patch
+  - 0007-efinet-Setting-network-from-UEFI-device-path.patch
+  - 0008-efinet-Setting-DNS-server-from-UEFI-protocol.patch
+  - 0001-add-support-for-UEFI-network-protocols.patch
+  - grub2-mkconfig-default-entry-correction.patch
+  - grub2-s390x-11-secureboot.patch
+  - grub2-secureboot-install-signed-grub.patch
+  - grub2-gfxmenu-support-scrolling-menu-entry-s-text.patch
+  - 0002-cmdline-Provide-cmdline-functions-as-module.patch
+  - 0001-efi-linux-provide-linux-command.patch
+  - 0001-Add-support-for-Linux-EFI-stub-loading-on-aarch64.patch
+  - 0004-arm-arm64-loader-Better-memory-allocation-and-error-.patch
+  - 0002-Arm-check-for-the-PE-magic-for-the-compiled-arch.patch
+  - 0001-Factor-out-grub_efi_linux_boot.patch
+  - 0003-Handle-multi-arch-64-on-32-boot-in-linuxefi-loader.patch
+  - 0015-test_asn1-test-module-for-libtasn1.patch
+  - 0021-appended-signatures-documentation.patch
+  - 0022-ieee1275-enter-lockdown-based-on-ibm-secure-boot.patch
+  - 0003-grub-install-support-prep-environment-block.patch
+  - 0004-Introduce-prep_load_env-command.patch
+  - 0001-grub-install-bailout-root-device-probing.patch
+  - 0001-install-fix-software-raid1-on-esp.patch
+  - 0001-ofdisk-improve-boot-time-by-lookup-boot-disk-first.patch
+  - 0001-protectors-Add-key-protectors-framework.patch
+  - 0002-tpm2-Add-TPM-Software-Stack-TSS.patch
+  - 0004-cryptodisk-Support-key-protectors.patch
+  - 0008-linuxefi-Use-common-grub_initrd_load.patch
+  - 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
+  - grub-read-pcr.patch
+  - tpm-record-pcrs.patch
+  - 0001-clean-up-crypttab-and-linux-modules-dependency.patch
+  * Patch refreshed:
+  - rename-grub-info-file-to-grub2.patch
+  - grub2-linux.patch
+  - grub2-simplefb.patch
+  - grub2-ppc-terminfo.patch
+  - grub2-pass-corret-root-for-nfsroot.patch
+  - grub2-efi-HP-workaround.patch
+  - grub2-secureboot-no-insmod-on-sb.patch
+  - grub2-linuxefi-fix-boot-params.patch
+  - grub2-s390x-05-grub2-mkconfig.patch
+  - grub2-xen-linux16.patch
+  - grub2-efi-disable-video-cirrus-and-bochus.patch
+  - grub2-vbe-blacklist-preferred-1440x900x32.patch
+  - grub2-mkconfig-aarch64.patch
+  - grub2-menu-unrestricted.patch
+  - grub2-mkconfig-arm.patch
+  - grub2-s390x-06-loadparm.patch
+  - grub2-s390x-07-add-image-param-for-zipl-setup.patch
+  - grub2-s390x-08-workaround-part-to-disk.patch
+  - grub2-diskfilter-support-pv-without-metadatacopies.patch
+  - grub2-getroot-support-nvdimm.patch
+  - grub2-s390x-skip-zfcpdump-image.patch
+  - grub2-btrfs-02-export-subvolume-envvars.patch
+  - grub2-btrfs-03-follow_default.patch
+  - grub2-btrfs-07-subvol-fallback.patch
+  - grub2-btrfs-08-workaround-snapshot-menu-default-entry.patch
+  - grub2-btrfs-09-get-default-subvolume.patch
+  - grub2-btrfs-10-config-directory.patch
+  - grub2-efi-xen-cfg-unquote.patch
+  - grub2-Add-hidden-menu-entries.patch
+  - grub2-SUSE-Add-the-t-hotkey.patch
+  - grub2-ppc64le-memory-map.patch
+  - grub2-ppc64-cas-reboot-support.patch
+  - grub2-ppc64-cas-new-scope.patch
+  - grub2-ppc64-cas-fix-double-free.patch
+  - 0003-bootp-New-net_bootp6-command.patch
+  - 0005-grub.texi-Add-net_bootp6-doument.patch
+  - 0006-bootp-Add-processing-DHCPACK-packet-from-HTTP-Boot.patch
+  - 0012-tpm-Build-tpm-as-module.patch
+  - 0002-AUDIT-0-http-boot-tracker-bug.patch
+  - grub2-btrfs-help-on-snapper-rollback.patch
+  - grub2-video-limit-the-resolution-for-fixed-bimap-font.patch
+  - 0001-kern-mm.c-Make-grub_calloc-inline.patch
+  - 0001-Unify-the-check-to-enable-btrfs-relative-path.patch
+  - 0002-arm64-make-sure-fdt-has-address-cells-and-size-cells.patch
+  - 0003-Make-grub_error-more-verbose.patch
+  - 0001-ieee1275-Avoiding-many-unecessary-open-close.patch
+  - 0001-Workaround-volatile-efi-boot-variable.patch
+  - 0001-templates-Follow-the-path-of-usr-merged-kernel-confi.patch
+  - 0004-Try-to-pick-better-locations-for-kernel-and-initrd.patch
+  - 0004-Add-suport-for-signing-grub-with-an-appended-signatu.patch
+  - 0005-docs-grub-Document-signing-grub-under-UEFI.patch
+  - 0006-docs-grub-Document-signing-grub-with-an-appended-sig.patch
+  - 0007-dl-provide-a-fake-grub_dl_set_persistent-for-the-emu.patch
+  - 0008-pgp-factor-out-rsa_pad.patch
+  - 0010-posix_wrap-tweaks-in-preparation-for-libtasn1.patch
+  - 0011-libtasn1-import-libtasn1-4.18.0.patch
+  - 0014-libtasn1-compile-into-asn1-module.patch
+  - 0016-grub-install-support-embedding-x509-certificates.patch
+  - 0017-appended-signatures-import-GNUTLS-s-ASN.1-descriptio.patch
+  - 0018-appended-signatures-parse-PKCS-7-signedData-and-X.50.patch
+  - 0019-appended-signatures-support-verifying-appended-signa.patch
+  - 0020-appended-signatures-verification-tests.patch
+  - 0001-grub-install-Add-SUSE-signed-image-support-for-power.patch
+  - 0002-Add-grub_disk_write_tail-helper-function.patch
+  - 0005-export-environment-at-start-up.patch
+  - 0001-Fix-infinite-boot-loop-on-headless-system-in-qemu.patch
+  - 0003-protectors-Add-TPM2-Key-Protector.patch
+  - 0005-util-grub-protect-Add-new-tool.patch
+  - 0010-templates-import-etc-crypttab-to-grub.cfg.patch
+  - grub-install-record-pcrs.patch
+  - safe_tpm_pcr_snapshot.patch
+  - 0002-Mark-environmet-blocks-as-used-for-image-embedding.patch
+  - 0001-grub2-Set-multiple-device-path-for-a-nvmf-boot-devic.patch
+  - 0002-discard-cached-key-before-entering-grub-shell-and-ed.patch
+  - 0001-ieee1275-ofdisk-retry-on-open-and-read-failure.patch
+  - 0002-Restrict-cryptsetup-key-file-permission-for-better-s.patch
+  * New:
+  - 0001-xen_boot-add-missing-grub_arch_efi_linux_load_image_.patch
+  - 0001-font-Try-memdisk-fonts-with-the-same-name.patch
+  - 0001-Make-grub.cfg-compatible-to-old-binaries.patch
+  - 0001-disk-cryptodisk-Fix-missing-change-when-updating-to-.patch
+  * Embedding fonts in the grub.efi to get signed for secure boot
+
+- Fix error message "unknown command tpm_record_pcrs" with encrypted boot and
+  no tpm device present (bsc#1213547)
+  * 0002-tpm-Disable-tpm-verifier-if-tpm-is-not-present.patch
+
+- add 0001-fs-ext2-Ignore-checksum-seed-incompat-feature.patch,
+  0001-fs-ext2-Ignore-the-large_dir-incompat-feature.patch:
+  * support more featureful extX filesystems (backport from
+  upstream git)
+
+- Exclude the deprecated EFI location, /usr/lib64/efi/, from
+  Tumbleweed and ALP
+
+- Update TPM 2.0 key unsealing patches
+  * Add the new upstreaming patches
+    0001-protectors-Add-key-protectors-framework.patch
+    0002-tpm2-Add-TPM-Software-Stack-TSS.patch
+    0003-protectors-Add-TPM2-Key-Protector.patch
+    0004-cryptodisk-Support-key-protectors.patch
+    0005-util-grub-protect-Add-new-tool.patch
+  * Add the authorized policy patches based on the upstreaming
+    patches
+    0001-tpm2-Add-TPM2-types-structures-and-command-constants.patch
+    0002-tpm2-Add-more-marshal-unmarshal-functions.patch
+    0003-tpm2-Implement-more-TPM2-commands.patch
+    0004-tpm2-Support-authorized-policy.patch
+  * Drop the old patches
+    0010-protectors-Add-key-protectors-framework.patch
+    0011-tpm2-Add-TPM-Software-Stack-TSS.patch
+    0012-protectors-Add-TPM2-Key-Protector.patch
+    0013-cryptodisk-Support-key-protectors.patch
+    0014-util-grub-protect-Add-new-tool.patch
+    fix-tpm2-build.patch
+    tpm-protector-dont-measure-sealed-key.patch
+    tpm-protector-export-secret-key.patch
+    grub-unseal-debug.patch
+    0001-tpm2-adjust-the-input-parameters-of-TPM2_EvictContro.patch
+    0002-tpm2-declare-the-input-arguments-of-TPM2-functions-a.patch
+    0003-tpm2-resend-the-command-on-TPM_RC_RETRY.patch
+    0004-tpm2-add-new-TPM2-types-structures-and-command-const.patch
+    0005-tpm2-add-more-marshal-unmarshal-functions.patch
+    0006-tpm2-check-the-command-parameters-of-TPM2-commands.patch
+    0007-tpm2-pack-the-missing-authorization-command-for-TPM2.patch
+    0008-tpm2-allow-some-command-parameters-to-be-NULL.patch
+    0009-tpm2-remove-the-unnecessary-variables.patch
+    0010-tpm2-add-TPM2-commands-to-support-authorized-policy.patch
+    0011-tpm2-make-the-file-reading-unmarshal-functions-gener.patch
+    0012-tpm2-initialize-the-PCR-selection-list-early.patch
+    0013-tpm2-support-unsealing-key-with-authorized-policy.patch
+  * Refresh grub-read-pcr.patch
+  * Introduce a new build requirement: libtasn1-devel
+- Only package grub2-protect for the architectures with EFI support
+
+  * 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
-- Fix installation over serial console ends up in infinite boot loop
-  (bsc#1187810) (bsc#1209667) (bsc#1209372)
-  * 0001-Fix-infinite-boot-loop-on-headless-system-in-qemu.patch
-
+- Restrict cryptsetup key file permission for better security (bsc#1207499)
+  * 0001-loader-linux-Ensure-the-newc-pathname-is-NULL-termin.patch
+  * 0002-Restrict-cryptsetup-key-file-permission-for-better-s.patch
+
+- Meanwhile, memtest86+ gained EFI support, but using the grub
+  command line to run it manually is quite tedious...
+  Adapt 20_memtest86+ to provide a proper menu entry. Executing
+  memtest requires to turn security off in BIOS: (Boot Mode: Other OS).
+
+- Tolerate kernel moved out of /boot. (bsc#1184804)
+  * grub2-s390x-12-zipl-setup-usrmerge.patch
+
+- Discard cached key from grub shell and editor mode
+  * 0001-clean-up-crypttab-and-linux-modules-dependency.patch
+  * 0002-discard-cached-key-before-entering-grub-shell-and-ed.patch
+
-- Move unsupported zfs modules into 'extras' packages
-  (bsc#1205554) (PED-2947)
+- Fix riscv64 error for relocation 0x13 is not implemented yet
+  * 0001-RISC-V-Handle-R_RISCV_CALL_PLT-reloc.patch
+- Rediff
+  * safe_tpm_pcr_snapshot.patch
+- Patch supersceded
+  * 0001-tpm-Disable-tpm-verifier-if-tpm-is-not-present.patch
+
+- Refresh 0003-tpm2-resend-the-command-on-TPM_RC_RETRY.patch to
+  handle the TPM2 responseCode correctly.
+
+- Add module for boot loader interface. Needed for load Unified Kernel
+  Image (UKI)
+  * grub2-add-module-for-boot-loader-interface.patch
+
+- Amend the TPM2 stack and add authorized policy mode to
+  tpm2_key_protector
+  * 0001-tpm2-adjust-the-input-parameters-of-TPM2_EvictContro.patch
+  * 0002-tpm2-declare-the-input-arguments-of-TPM2-functions-a.patch
+  * 0003-tpm2-resend-the-command-on-TPM_RC_RETRY.patch
+  * 0004-tpm2-add-new-TPM2-types-structures-and-command-const.patch
+  * 0005-tpm2-add-more-marshal-unmarshal-functions.patch
+  * 0006-tpm2-check-the-command-parameters-of-TPM2-commands.patch
+  * 0007-tpm2-pack-the-missing-authorization-command-for-TPM2.patch
+  * 0008-tpm2-allow-some-command-parameters-to-be-NULL.patch
+  * 0009-tpm2-remove-the-unnecessary-variables.patch
+  * 0010-tpm2-add-TPM2-commands-to-support-authorized-policy.patch
+  * 0011-tpm2-make-the-file-reading-unmarshal-functions-gener.patch
+  * 0012-tpm2-initialize-the-PCR-selection-list-early.patch
+  * 0013-tpm2-support-unsealing-key-with-authorized-policy.patch
+- Fix GCC 13 build failure (bsc#1201089)
+  * 0002-AUDIT-0-http-boot-tracker-bug.patch
+
+- Move unsupported zfs modules into 'extras' packages
+  (bsc#1205554) (PED-2947)
+
+- Fix inappropriately including commented lines in crypttab (bsc#1206279)
+  * 0010-templates-import-etc-crypttab-to-grub.cfg.patch
+
+- Increase the path buffer in the crypttab command for the long
+  volume name (bsc#1206333)
+  * grub2-increase-crypttab-path-buffer.patch
+
-- Support grub2-install on LUKS2 encrypted device
-  * 0001-devmapper-getroot-Have-devmapper-recognize-LUKS2.patch
-  * 0002-devmapper-getroot-Set-up-cheated-LUKS2-cryptodisk-mo.patch
-  * 0003-disk-cryptodisk-When-cheatmounting-use-the-sector-in.patch
+- Make full utilization of btrfs bootloader area (bsc#1161823)
+  * 0001-fs-btrfs-Use-full-btrfs-bootloader-area.patch
+  * 0002-Mark-environmet-blocks-as-used-for-image-embedding.patch
+- Patch removed
+  * 0001-i386-pc-build-btrfs-zstd-support-into-separate-modul.patch
+
+- Fix regression of reverting back to asking password twice when a keyfile is
+  already used (bsc#1205309)
+  * 0010-templates-import-etc-crypttab-to-grub.cfg.patch
+- Removed 0001-linux-fix-efi_relocate_kernel-failure.patch as reported
+  regression in some hardware being stuck in initrd loading (bsc#1205380)
+
+- Fix password asked twice if third field in crypttab not present (bsc#1205312)
+  * 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
+
+- Fix efi pcr snapshot related funtion is defined but not used on powerpc
+  platform.
+  * safe_tpm_pcr_snapshot.patch
+- Fix firmware oops after disk decrypting failure (bsc#1204037)
+  * 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
+
+- Add patch to fix kernel relocation error in low memory
+  * 0001-linux-fix-efi_relocate_kernel-failure.patch
+
+- Add safety measure to pcr snapshot by checking platform and tpm status
+  * safe_tpm_pcr_snapshot.patch
+
+- Fix installation failure due to unavailable nvram device on
+  ppc64le (bsc#1201361)
+  * 0001-grub-install-set-point-of-no-return-for-powerpc-ieee1275.patch
+
+- Add patches to dynamically allocate additional memory regions for
+  EFI systems (bsc#1202438)
+  * 0001-mm-Allow-dynamically-requesting-additional-memory-re.patch
+  * 0002-kern-efi-mm-Always-request-a-fixed-number-of-pages-o.patch
+  * 0003-kern-efi-mm-Extract-function-to-add-memory-regions.patch
+  * 0004-kern-efi-mm-Pass-up-errors-from-add_memory_regions.patch
+  * 0005-kern-efi-mm-Implement-runtime-addition-of-pages.patch
+- Enlarge the default heap size and defer the disk cache
+  invalidation (bsc#1202438)
+  * 0001-kern-efi-mm-Enlarge-the-default-heap-size.patch
+  * 0002-mm-Defer-the-disk-cache-invalidation.patch
+
+- Add patches for ALP FDE support
+  * 0001-devmapper-getroot-Have-devmapper-recognize-LUKS2.patch
+  * 0002-devmapper-getroot-Set-up-cheated-LUKS2-cryptodisk-mo.patch
+  * 0003-disk-cryptodisk-When-cheatmounting-use-the-sector-in.patch
+  * 0004-normal-menu-Don-t-show-Booting-s-msg-when-auto-booti.patch
+  * 0005-EFI-suppress-the-Welcome-to-GRUB-message-in-EFI-buil.patch
+  * 0006-EFI-console-Do-not-set-colorstate-until-the-first-te.patch
+  * 0007-EFI-console-Do-not-set-cursor-until-the-first-text-o.patch
+  * 0008-linuxefi-Use-common-grub_initrd_load.patch
+  * 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
+  * 0010-templates-import-etc-crypttab-to-grub.cfg.patch
+  * grub-read-pcr.patch
+  * efi-set-variable-with-attrs.patch
+  * tpm-record-pcrs.patch
+  * tpm-protector-dont-measure-sealed-key.patch
+  * tpm-protector-export-secret-key.patch
+  * grub-install-record-pcrs.patch
+  * grub-unseal-debug.patch
+
+- Fix out of memory error cannot be prevented via disabling tpm (bsc#1202438)
+  * 0001-tpm-Disable-tpm-verifier-if-tpm-is-not-present.patch
+
+- Fix tpm error stop tumbleweed from booting (bsc#1202374)
+  * 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch
+- Patch Removed
+  * 0001-tpm-Log-EFI_VOLUME_FULL-and-continue.patch
+
+- Add tpm, tpm2, luks2 and gcry_sha512 to default grub.efi (bsc#1197625)
+- Make grub-tpm.efi a symlink to grub.efi
+  * grub2.spec
+- Log error when tpm event log is full and continue
+  * 0001-tpm-Log-EFI_VOLUME_FULL-and-continue.patch
+- Patch superseded
+  * 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch
+
-- Fix installation failure due to unavailable nvram device on
-  ppc64le (bsc#1201361)
-  * 0001-grub-install-set-point-of-no-return-for-powerpc-ieee1275.patch
-
-- Update SBAT security contact (boo#1193282)
+- Fix error message in displaying help on bootable snapshot (bsc#1199609)
+
+- Fix installation over serial console ends up in infinite boot loop
+  (bsc#1187810) (bsc#1209667) (bsc#1209372)
+  * 0001-Fix-infinite-boot-loop-on-headless-system-in-qemu.patch
+- Fix ppc64le build error for new IEEE long double ABI
+  * 0001-libc-config-merge-from-glibc.patch
+
+- use common SBAT values (boo#1193282)
+
+- Fix wrong order in kernel sorting of listing rc before final release
+  (bsc#1197376)
+  * grub2-use-rpmsort-for-version-sorting.patch
+
+- Fix duplicated insmod part_gpt lines in grub.cfg (bsc#1197186)
+  * 0001-grub-probe-Deduplicate-probed-partmap-output.patch
+
+- Fix GCC 12 build failure (bsc#1196546)
+  * 0001-mkimage-Fix-dangling-pointer-may-be-used-error.patch
+  * 0002-Fix-Werror-array-bounds-array-subscript-0-is-outside.patch
+  * 0003-reed_solomon-Fix-array-subscript-0-is-outside-array-.patch
+- Revised
+  * grub2-btrfs-01-add-ability-to-boot-from-subvolumes.patch
+  * 0002-ieee1275-powerpc-enables-device-mapper-discovery.patch
+
gstreamer-plugins-bad
-- Add gstreamer-plugins-bad-CVE-2023-40474.patch: Backporting
-  ff91a3d8 from upstream, Fix possible overflow using
-  max_sub_layers_minus1 (CVE-2023-40474 bsc#1215793).
+- Add gstreamer-plugins-bad-CVE-2023-40474.patch:
+  Backporting ce17e968 from upstream, Fix integer overflow causing
+  out of bounds writes when handling invalid uncompressed video.
+  (CVE-2023-40474 bsc#1215796)
-- Add patch from upstream to fix a heap overwrite in PGS subtitle
+- Add gstreamer-plugins-bad-CVE-2023-40476.patch:
+  Backporting ff91a3d8 from upstream, Fix possible overflow using
+  max_sub_layers_minus1.
+  (CVE-2023-40476 bsc#1215793)
+
+- Add 0001-dvdspu-Make-sure-enough-data-is-allocated-for-the.patch:
+  from upstream to fix a heap overwrite in PGS subtitle
-  execution (bsc#1213126, CVE-2023-37329):
-  * 0001-dvdspu-Make-sure-enough-data-is-allocated-for-the.patch
+  execution (CVE-2023-37329 bsc#1213126).
hplip
-- Add patch to fix hplip being vulnerable to a malicious printer
-  attribute handling which could provoke a buffer overflow if
-  CUPS returned a printer with too large name/location/uri/etc.
-  It seems upstream tried to fix this buffer overflow in 3.22.x
-  by using snprintf instead of strcpy and in the process they
-  introduced another similar issue (boo#1209866, lp#2013185).
-  This backport of the fix submitted to TW for boo#1209866 fixes
-  the buffer overflow correctly:
+- hppsfilter: booklet printing: change insecure fixed /tmp file paths
+  (bsc#1214399)
+  * add hppsfilter-booklet-printing-change-insecure-fixed-tm.patch
+
+- Update to hplip 3.23.8 (jsc#PED-5846)
+- Support for new printers:
+  * HP Color LaserJet Pro MFP 4301fdne
+  * HP Color LaserJet Pro MFP 4301fdwe
+  * HP Color LaserJet Pro MFP 4301cdwe
+  * HP Color LaserJet Pro MFP 4301cfdne
+  * HP Color LaserJet Pro MFP 4301cfdwe
+  * HP Color LaserJet Pro MFP 4302dwe
+  * HP Color LaserJet Pro MFP 4302fdne
+  * HP Color LaserJet Pro MFP 4302fdwe
+  * HP Color LaserJet Pro MFP 4302cdwe
+  * HP Color LaserJet Pro MFP 4302fdn
+  * HP Color LaserJet Pro MFP 4302fdw
+  * HP Color LaserJet Pro MFP 4303dw
+  * HP Color LaserJet Pro MFP 4303fdn
+  * HP Color LaserJet Pro MFP 4303fdw
+  * HP Color LaserJet Pro MFP 4303cdw
+  * HP Color LaserJet Pro MFP 4303cfdn
+  * HP Color LaserJet Pro MFP 4303cfdw
+  * HP Color LaserJet Pro 4201dne
+  * HP Color LaserJet Pro 4201dwe
+  * HP Color LaserJet Pro 4201cdne
+  * HP Color LaserJet Pro 4201cdwe
+  * HP Color LaserJet Pro 4202dne
+  * HP Color LaserJet Pro 4202dwe
+  * HP Color LaserJet Pro 4202dn
+  * HP Color LaserJet Pro 4202dw
+  * HP Color LaserJet Pro 4203dn
+  * HP Color LaserJet Pro 4203dw
+  * HP Color LaserJet Pro 4203cdn
+  * HP Color LaserJet Pro 4203cdw
+  * HP DeskJet 2800 All-in-One Printer series
+  * HP DeskJet 2800e All-in-One Printer series
+  * HP DeskJet Ink Advantage 2800 All-in-One Printer series
+  * HP DeskJet 4200 All-in-One Printer series
+  * HP DeskJet 4200e All-in-One Printer series
+  * HP DeskJet Ink Advantage 4200 All-in-One Printer series
+  * HP DeskJet Ink Advantage Ultra 4900 All-in-One Printer series
+
+- Update to hplip 3.23.5
+  * added new CUPS filter hpcdmfax
+- Support for new printers:
+  * HP Smart Tank 520_540 series
+  * HP Smart Tank 580-590 series
+  * HP Smart Tank 5100 series
+  * HP Smart Tank 210-220 series
+  * HP Color LaserJet Enterprise 6700dn
+  * HP Color LaserJet Enterprise 6700
+  * HP Color LaserJet Enterprise 6701dn
+  * HP Color LaserJet Enterprise 6701
+  * HP Color LaserJet Enterprise X654dn
+  * HP Color LaserJet Enterprise X65455dn
+  * HP Color LaserJet Enterprise X654
+  * HP Color LaserJet Enterprise X65465dn
+  * HP Color LaserJet Enterprise X654 65 PPM
+  * HP Color LaserJet Enterprise X654 55 to 65ppm License
+  * HP Color LaserJet Enterprise X654 Down License
+  * HP Color LaserJet Enterprise MFP 6800dn
+  * HP Color LaserJet Enterprise Flow MFP 6800zf
+  * HP Color LaserJet Enterprise Flow MFP 6800zfsw
+  * HP Color LaserJet Enterprise Flow MFP 6800zfw+
+  * HP Color LaserJet Enterprise MFP 6800
+  * HP Color LaserJet Enterprise MFP 6801
+  * HP Color LaserJet Enterprise MFP 6801 zfsw
+  * HP Color LaserJet Enterprise Flow MFP 6801zfw+
+  * HP Color LaserJet Enterprise MFP X677 55 to 65ppm License
+  * HP Color LaserJet Enterprise MFP X677 65ppm
+  * HP Color LaserJet Enterprise MFP X677s
+  * HP Color LaserJet Enterprise Flow MFP X677z
+  * HP Color LaserJet Enterprise MFP X67765dn
+  * HP Color LaserJet Enterprise Flow MFP X67765zs
+  * HP Color LaserJet Enterprise Flow MFP X67765z+
+  * HP Color LaserJet Enterprise MFP X677
+  * HP Color LaserJet Enterprise MFP X67755dn
+  * HP Color LaserJet Enterprise Flow MFP X67755zs
+  * HP Color LaserJet Enterprise Flow MFP X67755z+
+  * HP Color LaserJet Enterprise MFP X677dn
+  * HP Color LaserJet Enterprise Flow MFP X677zs
+  * HP Color LaserJet Enterprise Flow MFP X677z+
+  * HP Color LaserJet Enterprise 5700dn
+  * HP Color LaserJet Enterprise 5700
+  * HP Color LaserJet Enterprise X55745dn
+  * HP Color LaserJet Enterprise X55745
+  * HP Color LaserJet Enterprise MFP 5800dn
+  * HP Color LaserJet Enterprise MFP 5800f
+  * HP Color LaserJet Enterprise Flow MFP 5800zf
+  * HP Color LaserJet Enterprise MFP 5800
+  * HP Color LaserJet Enterprise MFP X57945
+  * HP Color LaserJet Enterprise Flow MFP X57945zs
+  * HP Color LaserJet Enterprise MFP X57945dn
+  * HP Color LaserJet Enterprise Flow MFP X57945z
+
+- Add patch to fix hplip applying printf string format parsing to
+  printer attributes returned from CUPS (such as
+  "dnssd://foo%20series._ipp._tcp.local/?uuid=...") which results
+  in a segfault (boo#1209866, lp#2013185):
-- Add hplip-3.20.6-python-includes.patch to fix C compiler flags
-  (boo#1198794)
+- Update to 3.22.10
+  * drop no-systray-failure-message.patch (fixed upstream)
+  * adapt Use-lsb_release-fallback-code-if-import-distro-fails.patch
+    (code moved to different source file upstream)
+
+- Update disable_hp-upgrade.patch: Log the 'openSUSE disabled this
+  for security message' is 'info', not 'error'.
+
+- Move the hplip-udev-rules requirement from hplip to hplip-hpijs.
+  The main package will get it via indirect dependencies then.
+
+- Split off hplip-udev-rules hplip-udev-rules so that you can install
+  hplip-sane only and scan as a normal user, fixes boo#1203811
+
+- Update to 3.22.6
+  Added support for following new Distro's:
+  * Mx Linux 21.1
+  * Ubuntu 22.04
+  * Fedora 36
+  Added support for the following new Printers:
+  * HP Color LaserJet Managed MFP E785dn
+  * HP Color LaserJet Managed MFP E78523dn
+  * HP Color LaserJet Managed MFP E78528dn
+  * HP Color LaserJet Managed MFP E786dn
+  * HP Color LaserJet Managed MFP E786 Core Printer
+  * HP Color LaserJet Managed MFP E78625dn
+  * HP Color LaserJet  Managed FlowMFP E786z
+  * HP Color LaserJet Managed Flow MFP E78625z
+  * HP Color LaserJet Managed MFP E78630dn
+  * HP Color LaserJet Managed Flow MFP E78630z
+  * HP Color LaserJet Managed MFP E78635dn
+  * HP Color LaserJet Managed Flow MFP E78635z
+  * HP LaserJet Managed MFP E731dn
+  * HP LaserJet Managed MFP E731 Core Printer
+  * HP LaserJet Managed MFP E73130dn
+  * HP LaserJet Managed Flow MFP E731z
+  * HP LaserJet Managed Flow MFP E73130z
+  * HP LaserJet Managed MFP E73135dn
+  * HP LaserJet Managed Flow MFP E73135z
+  * HP LaserJet Managed MFP E73140dn
+  * HP LaserJet Managed Flow MFP E73140z
+  * HP Color LaserJet Managed MFP E877dn
+  * HP Color LaserJet Managed MFP E877 Core Printer
+  * HP Color LaserJet Managed MFP E87740dn
+  * HP Color LaserJet Managed Flow MFP E877z
+  * HP Color LaserJet Managed Flow MFP E87740z
+  * HP Color LaserJet Managed MFP E87750dn
+  * HP Color LaserJet Managed Flow MFP E87750z
+  * HP Color LaserJet Managed MFP E87760dn
+  * HP Color LaserJet Managed Flow MFP E87760z
+  * HP Color LaserJet Managed MFP E87770dn
+  * HP Color LaserJet Managed Flow MFP E87770z
+  * HP LaserJet Managed MFP E826dn
+  * HP LaserJet Managed MFP E826 Core Printer
+  * HP LaserJet Managed MFP E82650dn
+  * HP LaserJet Managed Flow MFP E826z
+  * HP LaserJet Managed Flow MFP E82650z
+  * HP LaserJet Managed MFP E82660dn
+  * HP LaserJet Managed Flow MFP E82660z
+  * HP LaserJet Managed MFP E82670dn
+  * HP LaserJet Managed Flow MFP E82670z
+  * HP LaserJet Managed MFP E730dn
+  * HP LaserJet Managed MFP E73025dn
+  * HP LaserJet Managed MFP E73030dn
+  * HP LaserJet Pro MFP 3101fdwe
+  * HP LaserJet Pro MFP 3101fdw
+  * HP LaserJet Pro MFP 3102fdwe
+  * HP LaserJet Pro MFP 3102fdw
+  * HP LaserJet Pro MFP 3103fdw
+  * HP LaserJet Pro MFP 3104fdw
+  * HP LaserJet Pro MFP 3101fdne
+  * HP LaserJet Pro MFP 3101fdn
+  * HP LaserJet Pro MFP 3102fdne
+  * HP LaserJet Pro MFP 3102fdn
+  * HP LaserJet Pro MFP 3103fdn
+  * HP LaserJet Pro MFP 3104fdn
+  * HP LaserJet Pro 3001dwe
+  * HP LaserJet Pro 3001dw
+  * HP LaserJet Pro 3002dwe
+  * HP LaserJet Pro 3002dw
+  * HP LaserJet Pro 3003dw
+  * HP LaserJet Pro 3004dw
+  * HP LaserJet Pro 3001dne
+  * HP LaserJet Pro 3001dn
+  * HP LaserJet Pro 3002dne
+  * HP LaserJet Pro 3002dn
+  * HP LaserJet Pro 3003dn
+  * HP LaserJet Pro 3004dn
+
+- Add rebased hplip-3.20.6-python-includes.patch to fix the non-
+  functional scanning: libsane-hpaio.so.1: undefined symbol: _DBG
+  (fixes boo#1198794)
+
+- Update to 3.22.4
+  Added support for following new Distro's:
+  * Manjaro 21.2
+  Added support for the following new Printers:
+  * HP LaserJet Pro 4001ne
+  * HP LaserJet Pro 4001n
+  * HP LaserJet Pro 4001dne
+  * HP LaserJet Pro 4001dn
+  * HP LaserJet Pro 4001dwe
+  * HP LaserJet Pro 4001dw
+  * HP LaserJet Pro 4001d
+  * HP LaserJet Pro 4001de
+  * HP LaserJet Pro 4002ne
+  * HP LaserJet Pro 4002n
+  * HP LaserJet Pro 4002dne
+  * HP LaserJet Pro 4002dn
+  * HP LaserJet Pro 4002dwe
+  * HP LaserJet Pro 4002dw
+  * HP LaserJet Pro 4002d
+  * HP LaserJet Pro 4002de
+  * HP LaserJet Pro 4003dn
+  * HP LaserJet Pro 4003dw
+  * HP LaserJet Pro 4003n
+  * HP LaserJet Pro 4003d
+  * HP LaserJet Pro 4004d
+  * HP LaserJet Pro 4004dn
+  * HP LaserJet Pro 4004dw
+  * HP LaserJet Pro MFP 4101dwe
+  * HP LaserJet Pro MFP 4101dw
+  * HP LaserJet Pro MFP 4101fdn
+  * HP LaserJet Pro MFP 4101fdne
+  * HP LaserJet Pro MFP 4101fdw
+  * HP LaserJet Pro MFP 4101fdwe
+  * HP LaserJet Pro MFP 4102dwe
+  * HP LaserJet Pro MFP 4102dw
+  * HP LaserJet Pro MFP 4102fdn
+  * HP LaserJet Pro MFP 4102fdw
+  * HP LaserJet Pro MFP 4102fdwe
+  * HP LaserJet Pro MFP 4102fdne
+  * HP LaserJet Pro MFP 4102fnw
+  * HP LaserJet Pro MFP 4102fnwe
+  * HP LaserJet Pro MFP 4103dw
+  * HP LaserJet Pro MFP 4103dn
+  * HP LaserJet Pro MFP 4103fdn
+  * HP LaserJet Pro MFP 4103fdw
+  * HP LaserJet Pro MFP 4104dw
+  * HP LaserJet Pro MFP 4104fdw
+  * HP LaserJet Pro MFP 4104fdn
+  * HP ScanJet Pro 3600 f1
+  * HP ScanJet Pro N4600 fnw1
+  * HP ScanJet Pro 2600 f1
+  * HP ScanJet Enterprise Flow N6600 fnw1
+- Changes from 3.22.2
+  Added support for following new Distro's:
+  * Elementary OS 6.1
+  * RHEL 8.5
+  * Linux Mint 20.3
+  Added support for the following new Printers:
+  * HP LaserJet Tank MFP 1602a
+  * HP LaserJet Tank MFP 1602w
+  * HP LaserJet Tank MFP 1604w
+  * HP LaserJet Tank MFP 2602dn
+  * HP LaserJet Tank MFP 2602sdn
+  * HP LaserJet Tank MFP 2602sdw
+  * HP LaserJet Tank MFP 2602dw
+  * HP LaserJet Tank MFP 2604dw
+  * HP LaserJet Tank MFP 2604sdw
+  * HP LaserJet Tank MFP 2603dw
+  * HP LaserJet Tank MFP 2603sdw
+  * HP LaserJet Tank MFP 2605sdw
+  * HP LaserJet Tank MFP 2606dn
+  * HP LaserJet Tank MFP 2606sdn
+  * HP LaserJet Tank MFP 2606sdw
+  * HP LaserJet Tank MFP 2606dw
+  * HP LaserJet Tank MFP 2606dc
+  * HP LaserJet Tank MFP 1005
+  * HP LaserJet Tank MFP 1005w
+  * HP LaserJet Tank MFP 1005nw
+  * HP LaserJet Tank 1502a
+  * HP LaserJet Tank 1502w
+  * HP LaserJet Tank 1504w
+  * HP LaserJet Tank 2502dw
+  * HP LaserJet Tank 2502dn
+  * HP LaserJet Tank 2504dw
+  * HP LaserJet Tank 2503dw
+  * HP LaserJet Tank 2506dw
+  * HP LaserJet Tank 2506d
+  * HP LaserJet Tank 2506dn
+  * HP LaserJet Tank 1020
+  * HP LaserJet Tank 1020w
+  * HP LaserJet Tank 1020nw
+- Changes from 3.21.12
+  Added support for following new Distro's:
+  * MX Linux 21
+  * Elementary OS 6
+  * Fedora 35
+- Drop photocard-fix-import-error-for-pcardext.patch,
+  because now in upstream.
+- Rebase Use-lsb_release-fallback-code-if-import-distro-fails.patch,
+  bacause some is in upstream now.
+- Reabse hplip-missing-drivers.patch
intel-gpu-tools
-- release 1.24 (23 Apr 2021)
-  * fixed build against sle15-sp4 (boo#1197732)
-- supersedes
-  * n_disable-build-of-gem_userptr_blits.patch
-  * n_disable-build-of-pm_rpm.patch
-- refreshed u_respect_cflags.diff
+- Build against libprocps on older openSUSE releases.
+
+- Update to version 1.28:
+  * New meson options testplan, sphinx and xe_driver.
+  * Add amdgpu GFX1036, GFX1037 chips.
+  * Add xe_pciids.h with Lunar Lake (LNL) support.
+  * Use the new procps library libproc2.
+  * Add helper for srandom seed initialization.
+  * Support for vmwgfx driver.
+  * i915_pciids.h updated to include Pontevecchio (PVC) platform.
+  * Add OAM formats and support for media engines in perf tests.
+  * Support for Xe driver.
+  * igt_runner can now dump GPU state on timeout.
+  * igt_runner will now use proper 'abort' as result instead of pseudoresult.
+  * New vendor agnostic gputop tool.
+  * New tool to dump Intel GuC/HuC CSS header.
+  * Improve tools intel_watermark, intel_vbt_decode, intel_reg.
+  * New way for documenting tests will allow to generate documentation and
+    testlists during build, see README.md and test_documentation.md. This
+    is mandatory for Intel (both i915 and xe) and kms tests.
+  * Move intel specific tests to new directory.
+  * Ported and refactored drmlib security tests in amdgpu.
+  * Switch DRM selftests to KUnit.
+  * Enabled MeteorLake aux ccs tests.
+  * Exercise oversized object detection for Xe.
+  * Enable validation for VDSC output formats.
+  * Add support for Bigjoiner / 8K mode.
+  * Use intel_cmds_info library.
+  * Use Intel kernel gpu command definitions.
+  * Add a basic perf_pmu test.
+  * Add test for V3D's Wait BO IOCTL.
+  * Add i915_power test for power measurement.
+  * Remove sysfs_clients.
+- Remove intel-gpu-tools-libproc2_libproc2_library.patch (fixed upstream)
+- Remove u_intel-gpu-tools-1.7-fix-bashisms.patch (obsolete)
+
+- Build against libproc2 instead of libprocps
+  * intel-gpu-tools-libproc2_libproc2_library.patch
+
+- Update to version 1.27.1:
+  * Support for Intel discrete graphics and other new platforms (Andrzej
+    Turko, Matt Roper, Clint Taylor, Tejas Upadhyay, et al)
+  * Support for MSM driver. (Mark Yacoub, Rob Clark)
+  * Support for SRIOV device selection. (Łukasz Łaguna)
+  * Tiled display emulation support with chamelium. (Kunal Joshi)
+  * Support for Chamelium v3. (Mark Yacoub)
+  * Initial FreeBSD support. (Jake Freeland)
+  * Structured communication from tests to igt_runner. (Petri Latvala)
+  * Removed last remaining uses of libdrm_intel in tests and
+    tools. (Zbigniew Kempczyński)
+  * Automatic kernel code coverage collection during testing. (Mauro
+    Carvalho Chehab)
+- Remove intel-gpu-tools_fix-meson.patch
+
+- Disable SUSE_ZNOW to fix failing tests on x86_64
+  + https://gitlab.freedesktop.org/drm/igt-gpu-tools/-/issues/102
+
+- Build with meson 0.60 (intel-gpu-tools_fix-meson.patch)
+  + https://gitlab.freedesktop.org/drm/igt-gpu-tools/-/issues/107
+
+- Update to version 1.26:
+  * Autotools support has been entirely dropped in favor of only meson. (Arkadiusz Hiler)
+  * Tests can now signal that the whole test round should be aborted. (Arkadiusz Hiler)
+  * Various robustness improvements for Chamelium use. (Arkadiusz Hiler,
+    Kunal Joshi, Imre Deak, et al)
+  * Device filtering improvements for multi-device use. (Arkadiusz Hiler)
+  * Device filtering for various Intel tools like intel_gpu_top. (Ayaz A Siddiqui)
+  * Overhauled kernel parameter handling. (Jani Nikula)
+  * Introduced an i915 batchbuffer facility. (Zbigniew Kempczyński)
+  * Improvements for testing nouveau. (Lyude Paul)
+  * More readable and useful output for lsgpu and other tools that list
+    devices. (Tvrtko Ursulin)
+  * intel_gpu_top can now show per-client busyness stats. (Tvrtko Ursulin)
+  * igt_runner can now limit the disk space used by a single test. (Petri Latvala)
+- Switch to meson build system, Remove u_respect_cflags.diff (no longer needed)
+
+- Update to version 1.25:
+  * Meson build options have been renamed. Please check the news options in
+    meson_options.txt and make sure you don't get any warnings when configuring
+    the project. (Simon Ser)
+  * Compile-testing CI for MIPS. (Guillaume Tucker)
+  * Various igt_runner reliability improvements (Petri Latvala & Arkadiusz Hiler)
+  * Switched GEM tests to engine discovery. (Tvrtko Ursulin et al)
+  * Subtests can now be documented and their descriptions are available in
+    generated HTML docs and on the command line via *-describe. Documenting new
+    tests is mandatory. (Arkadiusz Hiler)
+  * Unified library for EDID creation (Simon Ser)
+  * Chamelium port auto-discovery (Simon Ser)
+  * Tigerlake support (Lucas De Marchi)
+  * Cometlake support (Anusha Srivatsa)
+  * Add kernel selftest wrapper for dmabuf (Chris Wilson)
+  * Bumped required meson version to 0.47.2 (Arkadiusz Hiler)
+  * Rewritten README to be more friendly (Arkadiusz Hiler)
+  * Introduced dynamic subsubtests for getting partial result for
+    runtime*dependant features (Petri Latvala)
+  * IGT can now run on the selected GPU via --device and lsgpu tool (Zbigniew
+    Kempczyński)
+  * Reduced runtime of many many tests (Chris Wilson et al)
+
+- Update to version 1.24:
+  * Bumped required meson version to 0.47. (Arkadiusz Hiler)
+  * All the meson build options that used auto, true and false are now first
+    class 'feature' options taking auto, enabled and disabled. (Arkadiusz Hiler)
+  * Piglit as the primary test executor replaced by mostly drop-in
+    compatible igt_runner. (Petri Latvala)
+  * Stack traces now contain source file names and line numbers, using
+    libdw. (Maarten Lankhorst)
+  * Pixman dependency is now mandatory. (Maxime Ripard)
+  * The project has moved to gitlab, and uses gitlab's CI to build test
+    and sanity test each commit on various distributions and
+    architectures. (Arkadiusz Hiler et al)
+  * Shader debugger removed due to lack of use and accumulation of
+    bitrot. (Arkadiusz Hiler)
+  * Added support for testing DP/HDMI audio with the Chamelium device,
+    dropping the audio tests that required exotic custom hardware to
+    execute. (Simon Ser)
+  * Autotools support dropped for various parts of IGT (assembler,
+    documentation, etc). (Daniel Vetter)
+  * intel-gpu-top can now output data to stdout or a log file for
+    noninteractive use. (Tvrtko Ursulin)
+- Remove n_disable-build-of-pm_rpm.patch is no longer needed
ipxe
+- Fix build with RPM 4.19: unnumbered patches are no longer
+  supported.
+
+- Add floppy disk image.
+  * use syslinux-mtools for building the image syslinux-mtools.patch
+
+- Update to version 1.21.1+git20231006.ff0f8604:
+  * [libc] Use wall clock time as seed for the (non-cryptographic) RNG
+  * [eapol] Send EAPoL-Start packets to trigger EAP authentication
+  * [eap] Define a supplicant model for EAP and EAPoL
+  * [dhcp] Request NTP server option
+  * [ntp] Define NTP server setting
+  * [efi] Provide read-only access to EFI variables via settings mechanism
+  * [crypto] Add support for PKCS#8 private key format
+  * [efi] Add support for executing images via a shim
+  * [image] Generalise concept of selected image
+  * [tls] Handle fragmented handshake records (jsc#PED-5536)
+  * [params] Allow for arbitrary HTTP request headers to be specified
+  * [rng] Allow entropy source to be selected at runtime
+  * [efi] Support the initrd autodetection mechanism in newer Linux kernels
+  * [loong64] Add initial support for LoongArch64
+  * [efi] Enable NET_PROTO_LLDP by default
+  * [dhcp] Ignore DHCPNAK unless originating from the selected DHCP server
+  * [xen] Update to current Xen headers
+  * [efi] Allow autoexec script to be located alongside iPXE binary
+  * [efi] Accept a command line passed to an iPXE image via LoadOptions
+  * [efi] Update to current EDK2 headers
+  * [golan] Add new PCI ID for NVIDIA BlueField-3 network device
+  * [arm] Support building as a Linux userspace binary for AArch64
+
+- enable HTTPS downloads (jsc#PED-5536)
+
jasper
+- Update to 4.0.0:
+  * Improve static linking (##336).
+  * Fix path relocation in mingw environment (#335).
+  * Improve logging and build scripts.
+  * Improve JPEG-2000 conformance test results.
+  * Enable PIC by default.
+  * Fix memory leaks in function cmdopts_parse (#332) (CVE-2022-2963).
+  * imgcmp:
+    + Add quiet (-q) option.
+    + Add debug-level option.
+    + Fix memory leak.
+    imginfo:
+    + Add quiet (-q) option.
+  * Fix bug in parsing PGX header.
+  * Fix integer overflow bug (#345) (CVE-2022-40755).
+- Remove jasper-CVE-2022-2963.patch
+
-- bsc#1184757 CVE-2021-3467: Fix NULL pointer deref in jp2_decode()
-  Add jasper-CVE-2021-3467.patch
-- bsc#1184798 CVE-2021-3443: Fix NULL pointer derefin jp2_decode()
-  Add jasper-CVE-2021-3443.patch
-- bsc#1182104 CVE-2021-26927: Fix NULL pointer deref in jp2_decode()
-  bsc#1182105 CVE-2021-26926: Fix Out of bounds read in jp2_decode()
-  Add jasper-CVE-2021-26926-CVE-2021-26927.patch
-
-- bsc#1188437 CVE-2021-27845: Fix divide-by-zery in cp_create()
-  Add jasper-CVE-2021-27845.patch
-
-- bsc#1179748 CVE-2020-27828: Fix heap overflow by checking maxrlvls
-  Add jasper-CVE-2020-27828.patch
-- bsc#1181483 CVE-2021-3272: Fix heap overflow by ensuring number
-  of channels matches image components
-  Add jasper-CVE-2021-3272.patch
-
-- bsc#1010979 CVE-2016-9398: Use new fix from upstream where we
-  actually check for allowed value range instead of just negating
-  Add jasper-CVE-2016-9398-upstream.patch
-
-- bsc#1120807 CVE-2018-20570: Fix heap based buffer over-read in jp2_encode
-  Add jasper-CVE-2018-20570.patch
-- bsc#1120805 CVE-2018-20622: Fix memory leak in jas_malloc.c
-  Add jasper-CVE-2018-20622.patch
-- bsc#1117328 CVE-2018-19543, bsc#1045450 CVE-2017-9782: Fix numchans mixup
-  Add jasper-CVE-2018-19543-CVE-2017-9782.patch
-- bsc#1115637 CVE-2018-19139: Fix mem leaks by registering jpc_unk_destroyparms
-  Add jasper-CVE-2018-19139.patch
-- bsc#1114498 CVE-2018-18873: Fix null pointer deref in ras_putdatastd
-  Add jasper-CVE-2018-18873.patch
-- bsc#1088278 CVE-2018-9252: Fix reachable assertion in jpc_abstorelstepsize
-  Add jasper-CVE-2018-9252.patch
-- bsc#1057152 CVE-2017-14132: Fix heap base overflow in by checking components
-  Add jasper-CVE-2017-14132.patch
-
-- bsc#1010980 CVE-2016-9399: Fix assert in calcstepsizes
-  Add jasper-CVE-2016-9399.patch
-- bsc#1020451 CVE-2017-5499: Validate component depth bit
-  Add jasper-CVE-2017-5499.patch
-- bsc#1020456 CVE-2017-5503, bsc#1020458 CVE-2017-5504, bsc#1020460 CVE-2017-5505:
-  Check bounds in jas_seq2d_bindsub()
-  Add jasper-CVE-2017-5503-CVE-2017-5504-CVE-2017-5505.patch
+- Update to 3.0.6:
+  * Fix bug in manual deployment script.
+
+- Update to 3.0.5:
+  * Fix a minor build issue (#328).
+
+- Update to 3.0.4:
+  * Eliminate some bogus calls to abort.
+  * Fix a typo in jas_safeui64_div (#323).
+  * Add some additional logging messages.
+  * Fix the source of a potential compiler warning (#321).
+
+- Update to 3.0.3:
+  * Fix some portability issues in a few scripts.
+
+- Add back missing Requires to the devel package
+
+- Update to 3.0.2:
+  * Fix a build issue that occurs when a cross-compiler is
+    used (e.g., #319).
+
+- Update to 3.0.1:
+  * Fix some build/portability issues (e.g., #317, #318).
+- Drop jasper-cmake-warnings.patch: contained in upstream release
+
+- Update to 3.0.0:
+  * Introducing some API changes please refer to the "News" section
+    of the JasPer manuel: https://jasper-software.github.io/jasper-manual
+  * Greatly improve documentation.
+  * Add support for multithreading.
+  * Add some customization points in the library, such as the
+    memory allocator and error logging function.
+  * Add improved memory usage tracking and limiting.
+  * Add experimental partial encoding/decoding support for the
+    HEIC format.
+  * Fix some longstanding issues in the JasPer I/O streams API.
+  * Fix many bugs (e.g., #305, #307, #308, #309, #312, #314, and
+    many others not associated with any issue numbers).
+- Remove jasper-freeglut.patch: not needed anymore
+- Add jasper-cmake-warnings.patch: fix cmake warnings
+- Remove legacy provides/obsoletes related to sle11 and bsc#437293
+
+- Add jasper-freeglut.patch, fixes freeglut detection and linking
+- Run spec-cleaner
+- Change license from SUSE-Public-Domain to JasPer-2.0
+- Cleanup docdir, only package the html and pdf docs and not
+  the sources
+
+- Update to 2.0.33:
+  * Fix a JP2/JPC decoder bug (#291)
+  * Fix a build issue impacting some platforms (#296)
+
+- Update to 2.0.32:
+  * Between 2.0.29 and 2.0.32 were only experiments with
+    GitHub Actions
+
+- Update to 2.0.29:
+  * Loosen some overly tight restrictions on JP2 codestreams,
+    which caused some valid codestreams to be rejected. (#289)
+
+- Update to 2.0.28:
+  * Fix potential null pointer dereference in the JP2/JPC decoder.
+    (#269) (CVE-2021-3443) bsc#1184798
+  * Fix ignoring of JAS_STREAM_FILEOBJ_NOCLOSE at stream close time.
+    (#286)
+  * Fix integral type sizing problem in JP2 codec. (#284)
+
+- Update to 2.0.27:
+  * Check for an image containing no samples in the PGX
+    decoder. (#271, #272, #273, #274, #275, #276, #281)
+  * Check for dimensions of zero in the JPC and JPEG decoders.
+  * Fix an arguably incorrect type for an integer literal
+    in the PGX decoder. (#270)
+  * Check for an invalid component reference in the
+    JP2 decoder. (#269)
+  * Check on integer size in JP2 decoder. (#278)
+
+- Update to 2.0.26:
+  * Fix JP2 decoder bug that can cause a null pointer dereference
+    for some invalid CDEF boxes. (#268) (CVE-2021-3467) bsc#1184757
+
+- Update to 2.0.25:
+  * Fix memory-related bugs in the JPEG-2000 codec resulting from
+    attempting to decode invalid code streams. (#264, #265)
+    This fix is associated with CVE-2021-26926 bsc#1182105 and
+    bsc#1182104 CVE-2021-26927.
+  * Fix wrong return value under some compilers (#260)
+  * Fix bsc#1181483 CVE-2021-3272 heap buffer overflow
+    in jp2_decode (#259)
+
+- Update to 2.0.24:
+  * Add JAS_VERSION_MAJOR, JAS_VERSION_MINOR, JAS_VERSION_PATCH
+    for easier access to the JasPer version.
+  * Fixes stack overflow bug on Windows, where variable-length
+    arrays are not available. (#256)
+
+- Update to 2.0.23:
+  * Fix CVE-2020-27828, heap-overflow in cp_create() in jpc_enc.c (#252)
+    bsc#1179748
+
+- Update to 2.0.22:
+  * Update manual
+  * Remove JPEG dummy codec
+  * Fix test suite build failure regarding disabled MIF codec (#249)
+  * Fix OpenGL/glut detection (#247)
+- Remove jasper-2.0.21-glut.patch: upstreamed
+
+- Add jasper-2.0.21-glut.patch: Fix glut.h detection
+  See https://github.com/jasper-software/jasper/issues/247
+
+- Update to 2.0.21:
+  * Fix ZDI-15-529
+    https://github.com/jasper-software/jasper/pull/245
+  * Fix CVE-2018-19541 in decoder
+    https://github.com/jasper-software/jasper/pull/244
+
+- Update to 2.0.20:
+  * Fixed several ISO/IEC 15444-4 conformance bugs
+  * Fixed new variant of CVE-2016-9398
+  * Disabled the MIF codec by default for security reasons (but it is still
+    included in the library);
+    in a future release, the MIF codec may also be excluded from the
+    library by default
+  * Added documentation for the I/O streams library API
+  * Improved adherance to specification
+- Move to GitHub repo https://github.com/jasper-software/jasper
+- Update URL to https://jasper-software.github.io/jasper
+
+- Update to 2.0.19:
+  * CVE-2021-27845 bsc#1188437
+    https://github.com/mdadams/jasper/issues/194 (part 1)
+  * Fix CVE-2018-9154
+    https://github.com/jasper-software/jasper/issues/215
+    https://github.com/jasper-software/jasper/issues/166
+    https://github.com/jasper-software/jasper/issues/175
+    https://github.com/jasper-maint/jasper/issues/8
+  * Fix CVE-2018-19541
+    https://github.com/jasper-software/jasper/pull/199
+    https://github.com/jasper-maint/jasper/issues/6
+  * Fix CVE-2016-9399 bsc#1010980, CVE-2017-13751
+    https://github.com/jasper-maint/jasper/issues/1
+  * Fix CVE-2018-19540
+    https://github.com/jasper-software/jasper/issues/182
+    https://github.com/jasper-maint/jasper/issues/22
+  * Fix CVE-2018-9055
+    https://github.com/jasper-maint/jasper/issues/9
+  * Fix CVE-2017-13748
+    https://github.com/jasper-software/jasper/issues/168
+  * Fix CVE-2017-5503 bsc#1020456, CVE-2017-5504 bsc#1020458, CVE-2017-5505 bsc#1020460
+    https://github.com/jasper-maint/jasper/issues/3
+    https://github.com/jasper-maint/jasper/issues/4
+    https://github.com/jasper-maint/jasper/issues/5
+    https://github.com/jasper-software/jasper/issues/88
+    https://github.com/jasper-software/jasper/issues/89
+    https://github.com/jasper-software/jasper/issues/90
+  * Fix CVE-2018-9252 bsc#1088278
+    https://github.com/jasper-maint/jasper/issues/16
+  * Fix CVE-2018-19139 bsc#1115637
+    https://github.com/jasper-maint/jasper/issues/14
+  * Fix CVE-2018-19543 bsc#1117328, CVE-2017-9782 bsc#1045450
+    https://github.com/jasper-maint/jasper/issues/13
+    https://github.com/jasper-maint/jasper/issues/18
+    https://github.com/jasper-software/jasper/issues/140
+    https://github.com/jasper-software/jasper/issues/182
+  * Fix CVE-2018-20570 bsc#1120807
+    https://github.com/jasper-maint/jasper/issues/11
+    https://github.com/jasper-software/jasper/issues/191
+  * Fix CVE-2018-20622 bsc#1120805
+    https://github.com/jasper-maint/jasper/issues/12
+    https://github.com/jasper-software/jasper/issues/193
+  * Fix CVE-2016-9398 bsc#1010979
+    https://github.com/jasper-maint/jasper/issues/10
+  * Fix CVE-2017-14132 bsc#1057152
+    https://github.com/jasper-maint/jasper/issues/17
+  * Fix CVE-2017-5499 bsc#1020451
+    https://github.com/jasper-maint/jasper/issues/2
+    https://github.com/jasper-software/jasper/issues/63
+  * Fix CVE-2018-18873 bsc#1114498
+    https://github.com/jasper-maint/jasper/issues/15
+    https://github.com/jasper-software/jasper/issues/184
+  * Fix https://github.com/jasper-software/jasper/issues/207
+  * Fix https://github.com/jasper-software/jasper/issues/194 part 1
+  * Fix CVE-2017-13750
+    https://github.com/jasper-software/jasper/issues/165
+    https://github.com/jasper-software/jasper/issues/174
+  * New option -DJAS_ENABLE_HIDDEN=true to not export internal symbols in the public symbol table
+  * Fix various memory leaks
+  * Plenty of code cleanups, and performance improvements
+- Remove because contained in upstream:
+  * jasper-CVE-2016-9398.patch
+  * jasper-CVE-2018-19540.patch
+  * jasper-CVE-2018-19541.patch
+  * jasper-CVE-2018-19542.patch
+  * jasper-CVE-2018-9055.patch
+  * jasper-CVE-2018-9154.patch
-- jasper-CVE-2018-19541.patch: verify color palette information
-  in j2 files when it's read from the file as per specifications
-  of JPEG2000. (bsc#1117507)
+- bsc#1117507 CVE-2018-19541: Properly fix heap based overread
+  in jas_image_depalettize. Original fix caused segfaults.
+  Update jasper-CVE-2018-19541.patch
-- bsc#1117505 CVE-2018-19542 Fix NULL pointer dereference jp2_decode:
-  Add jasper-CVE-2018-19542.patch
-- bsc#1010783 CVE-2016-9396 Fix reachable assertion in jpc_cox_getcompparms:
-  * Rename 0001-jpc_cs-reject-all-but-JPC_COX_INS-and-JPC_COX_RFT.patch
-  to jasper-CVE-2016-9396.patch
+- Update to 2.0.16:
+  * Fix assertion failure JPC_NOMINALGAIN (CVE-2016-9396) (#50) bsc#1010783
+  * Fix build on Windows 10 (#162)
+  * Improve README
+  * Fix build with CMake 2.x
+  * Add missing dereference operators (#178, #157)
+  * Check data in jas_image (CVE-2018-19539) (#196)
+- Remove because contained in new release:
+  * jasper-CVE-2018-19539.patch
+  * 0001-jpc_cs-reject-all-but-JPC_COX_INS-and-JPC_COX_RFT.patch
+  * Remove 0001-Added-a-fix-from-nrusch-to-allow-JasPer-to-be-build-.patch
+- Run spec-cleaner
+
+- bsc#1117505 CVE-2018-19542:
+  * Add jasper-CVE-2018-19542.patch
-- bsc#1117511 CVE-2018-19539 Fix access violation in jas_image_readcmpt:
+- bsc#1117511 CVE-2018-19539:
java-1_8_0-openj9
+- Update to OpenJDK 8u392 build 08 with OpenJ9 0.41.0 virtual
+  machine
+- Including Oracle October 2023 CPU changes
+  * CVE-2023-22067 (bsc#1216379), CVE-2023-22081 (bsc#1216374)
+- Including Openj9 0.41.0 fixes of CVE-2023-5676, bsc#1217214
+  * For other OpenJ9 changes, see
+    https://www.eclipse.org/openj9/docs/version0.41
+- Removed patch:
+  * link-with-as-needed.patch
+    + big part not needed anymore besides one hunk integrated into
+    system-libjpeg.patch
+- Modified patch:
+  * system-libjpeg.patch
+    + rediff and integrate one hunk from link-with-as-needed.patch
+
javapackages-tools
+- Added patches:
+  * 0005-Interpolate-properties-also-in-the-current-artifact.patch
+    + interpolate variables also in current artifactId, groupId and
+    version
+  * 0006-Test-variable-expansion-in-artifactId.patch
+    + test previous changes
+  * 0007-Test-that-we-don-t-bomb-on-relativePath.patch
+    + test gracious handling of empty <relativePath/> in parent
+    reference of a pom file
+
+- Added patch:
+  * 0004-Reproducible-builds-keep-order-of-aliases-and-depend.patch
+    + make the aliases and dependencies lists so that the order is
+    kept
+
+- Added patch:
+  * 0003-Reproducible-exclusions-order-in-maven-metadata.patch
+    + sort exclusions in maven metadata
+
+- Modified patch:
+  * 0001-Make-the-alias-generation-reproducible.patch ->
+    0001-Make-maven_depmap-order-of-aliases-reproducible.patch
+    + replace by the version of patch integrated by upstream
+- Added patch:
+  * 0002-Do-not-bomb-on-relativePath-construct.patch
+    + integrated patch fixing parent recursion with empty
+    <relativePath/> element
+
+- Upgrade to upstream version 6.2.0
+  * ÃŽntegrate our changes from javapackages-6.1.0-maven-depmap.patch
+- Removed patch:
+  * javapackages-6.1.0-maven-depmap.patch
+    + upstreamed
+- Added patch:
+  * 0001-Make-the-alias-generation-reproducible.patch
+    + separate patch for our reproducible changes that was not
+    part of the integrated pull request
+
+- Modified patch:
+  * javapackages-6.1.0-maven-depmap.patch
+    + try to make the list of aliases more reproducible
+
+- Enable the tests also for older distributions
+- Require python3-xml (python-xml for distributions that use
+  versioned modules), since module xml needed by some scripts.
+
kernel-firmware-nvidia-gspx-G06
+- update firmware to version 545.29.02
+
less
+- add zstd support to lessopen
+
+- Update to 643:
+  * Fix problem when a program piping into less reads from the tty,
+    like sudo asking for password (github #368).
+  * Fix search modifier ^E after ^W.
+  * Fix bug using negated (^N) search (github #374).
+  * Fix bug setting colors with -D on Windows build (github #386).
+  * Fix reading special chars like PageDown on Windows (github #378).
+  * Fix mouse wheel scrolling on Windows (github #379).
+  * Fix erroneous EOF when terminal window size changes (github #372).
+  * Fix compile error with some definitions of ECHONL (github #395).
+  * Fix crash on Windows when writing logfile (github #405).
+  * Fix regression in exit code when stdin is /dev/null and
+    output is a file (github #373).
+  * Add lesstest test suite to production release (github #344).
+  * Change lesstest output to conform with
+    automake Simple Test Format (github #399).
+
+- Update to 633
+  * This release fixes a build problem found in less-632 on systems
+    which have termcap.h in a subdirectory (ncurses/termcap.h or
+    ncursesw/termcap.h). There is no functional difference between
+    less-632 and less-633
+
+- Update to 632 (differences between 608 and 632)
+  * Add LESSUTFCHARDEF environment variable (github #275).
+  * Add # command (github #330).
+  * Add ^S search modifier (github #196).
+  * Add --wordwrap option (github #113).
+  * Add --no-vbell option (github #304).
+  * Add --no-search-headers option (github #44).
+  * Add --modelines option (github #89).
+  * Add --intr option (github #224).
+  * Add --proc-backspace, --proc-tab and --proc-return options (github #335).
+  * Add --show-preproc-errors option (github #258).
+  * Add LESS_LINES and LESS_COLUMNS environment variables (github #84).
+  * Add LESS_DATA_DELAY environment variable (github #337).
+  * Allow empty "lines" field in --header option.
+  * Update Unicode tables.
+  * Improve ability of ^X to interrupt F command (github #49).
+  * Status column (-J) shows off-screen matches.
+  * Parenthesized sub-patterns in searches are colored with unique colors, if supported by the regular expression library (github #196).
+  * Don't allow opening a tty as file input unless -f is set (github #309).
+  * Don't require newline input after +&... option (github #339).
+  * Fix incorrect handling of some Private Use Unicode characters.
+  * Fix ANSI color bug when overstriking with colored chars (github #276).
+  * Fix compiler const warning (github #279).
+  * Fix signal race in iread (github #280).
+  * Fix reading procfs files on Linux (github #282).
+  * Fix --ignore-case with ctrl-R (no regex) search (github #300).
+  * Fix bug doing repeat search after setting & filter (github #299).
+  * Fix bug doing repeat search before non-repeat search.
+  * Fix crash with -R and certain line lengths (github #338).
+  * Fix input of Windows dead keys (github #352).
+  * Don't retain search options from a cancelled search (github #302).
+  * Don't call realpath on fake filenames like "-" (github #289).
+  * Implement lesstest test suite.
+  * Convert function parameter definitions from K&R to C89 (github #316).
+- Drop patch cve-2022-46663.patch (merged).
+
+- Refreshed all other patches with quilt to an uniform -p1 patch
+  style, which allows us to use %autosetup and simplify the spec
+  file a bit.
+
+- Update to 608:
+  * Add the --header option (github #43).
+  * Add the --no-number-headers option (github #178).
+  * Add the --status-line option.
+  * Add the --redraw-on-quit option (github #36).
+  * Add the --search-options option (github #213).
+  * Add the --exit-follow-on-close option (github #244).
+  * Add 'H' color type to set color of header lines.
+  * Add #version conditional to lesskey.
+  * Add += syntax to variable section in lesskey files.
+  * Allow option name in -- command to end with '=' in addition to '\n'.
+  * Add $HOME/.config to possible locations of lesskey file (github #153).
+  * Add $XDG_STATE_HOME and $HOME/.local/state to possible locations
+    of history file (github #223).
+  * Don't read or write history file in secure mode (github #201).
+  * Fix display of multibyte and double-width chars in prompt.
+  * Fix ESC-BACKSPACE command when BACKSPACE key does not send 0x08
+    (github #188).
+  * Add more \k codes to lesskey format.
+  * Fix bug when empty file is modified while viewing it.
+  * Fix bug when parsing a malformed lesskey file (githb #234).
+  * Fix bug scrolling history when --incsearch is set (github #214).
+  * Fix buffer overflow when invoking lessecho with more than 63 -m/-n
+    options (github #198).
+  * Fix buffer overflow in bin_file (github #271).
+  * Fix bug restoring color at end of highlighted text.
+  * Fix bug in parsing lesskey file.
+  * Defer moving cursor to lower left in some more cases.
+  * Suppress TAB filename expansion in some cases where it doesn't make sense.
+  * Fix termlib detection when compiler doesn't accept
+    calls to undeclared functions.
+  * Escape filenames when invoking LESSCLOSE.
+  * Fix bug using multibyte UTF-8 char in search string
+    with --incsearch (github #273).
+
+- Which need one /usr/bin/which, not the package which
libdiscid
+- update to 0.6.4:
+  * LIB-69: Revert "Use discid_feature enum in discid_read_sparse".
+    Fixes compiler errors with C++.
+  * LIB-66: fix for Debian kFreeBSD
+  * Haiku platform support (TOC only)
+  * Use discid_feature enum in discid_read_sparse
+  * Fixed building with CMake on macOS
+  * LIB-68: provide macOS universal2 binaries with support for both
+    x86_64 and arm64
+  * LIB-67: Source tarball with updated autotools configuration
+  * CMake: Use GNUInstallDirs to determine install location
+  * CMake 2.8.12 is now the minimum required version
+
-- updated to 0.3.0
-  - Fixed reading of 99 track CDs on Mac OS X.
-  - Added API for reading ISRCs and MCNs (implemented on Windows and Mac OS X).
-  - Added Solaris, OpenBSD and kFreeBSD support.
-- libdiscid-visibility.patch, libdiscid-no-crypto.patch
-  Adapted to the 0.3 release
-
libhugetlbfs
+- Add libhugetlbfs-noexecstack.patch (bsc#1213639)
+- Increase buffer size in libhugetlbfs-increase-mount-buffer.patch
+  as in the provided fix (bsc#1213639)
+
+- Add libhugetlbfs-increase-mount-buffer.patch for upstream issue gh#43
+  (boo#1216576, bsc#1213639)
+
-- update to 2.17:
-  * PPC segement alignment restrictions can be disabled
-  * Added Aarch64 support
-  * Allow compiler overrides for 64 and 32 bit builds
-  * hugeadm now handles /etc/mtab being a simlink properly
-  * ppc64 fixes
-- remove libhugetlbfs.ia64-libdir.patch:
-  ia64 is no longer supported by openSUSE
-- add ignore-perl-modules.diff: do not install perl modules, unused
-  and are installed in the wrong place to be found anyway
-- add ARM support
-- add disable-rw-on-non-ldscripts.diff: Skip rw tests
-- Do not install tests anymore
-
-- Tests compile fine for s390(x), also include them in the package, the same
-  way it is done for other archs as well.
-
libmbim
+- Fix build with RPM 4.19: unnumbered patches are no longer
+  supported.
+
libosinfo
-- jsc#PED-2104 [Virt Tools] Refresh Virtualization Tools for Xen
+- Update to version 1.11.0 (jsc#PED-2104)
+  Changes in this release include:
+  * Several minor memory leak fixes
+  * Several CI improvements
+  * Several translations improvements
+- Drop 3a0fef72.patch as it is now part of the tarball
+
+- jsc#PED-2113 [Virt Tools] Refresh Virtualization Tools for Xen
librtas
+- Update to version 2.0.5 (jsc#PED-554)
+  * librtas: fix buffer length determination in rtas_set_sysparm()
+  * librtasevent: 'format' function attribute for printf-style functions
+  * convert PAGE_SIZE to WORK_AREA_SIZE
+
+- Add _multibuild to define 2nd spec file as additional flavor.
+  Eliminates the need for source package links in OBS.
+
libvpl
+- only build %ix86 for Tumbleweed; otherwise just build it for
+  x86_64 (bsc#1217662)
+
+- Update to version 2023.2.0
+  * Added
+    + oneVPL API 2.9 support
+    + Perceptual encoding prefilter option to
+    sample_multi_transcode
+  * Fixed
+    + VPP processing for YUV input
+    + Sample_multi_transcode segfault on wayland
+    + Missing prerequisites in vpl-infer README
+  * Changed
+    + vpl-infer Dockerfile and Linux setup steps to better align
+    with https://dgpu-docs.intel.com/
+  * Removed
+    + dpcpp-blur example
+- Drop upstreamed fix_arm_ilp32.patch
+
+- Update to version 2023.1.1
+  * Added
+    + Help screen listing valid options for vpl-inspect
+    + YUV400 option for JPEG encoding with sample_encode
+    + Build option --disable_experimental to build with
+    ONEVPL_EXPERIMENTAL disabled
+  * Changed
+    + Session creation example to request a minimum API version
+- Update to version 2023.1.0
+  * Added
+    + oneVPL API 2.8 support
+    + New infer sample
+    + xdg_shell for weston10
+  * Fixed
+    + NOT_ENOUGH_BUFFER error when HRD off in ExtBRC
+    + Legacy tools using x86/x86_64 specific assembler code
+    + Pkg-config files not installing in correct location in cross
+    compilation scenarios
+- Reenable other architectures again for all products.
+  * Add fix_arm_ilp32.patch
+- Drop upstream remove_x86_64_check.patch
+
mariadb
+- Update to 10.11.6:
+    https://mariadb.com/kb/en/mariadb-10-11-6-release-notes/
+    https://mariadb.com/kb/en/mariadb-10-11-6-changelog/
+  * fixes for the following security vulnerabilities:
+    10.11:6: CVE-2023-22084, (bsc#1217405)
+- Refreshed patches:
+  * mariadb-10.4.12-fix-install-db.patch
+
nvidia-open-driver-G06-signed
+- no longer try to overwrite NVreg_OpenRMEnableSupporteGpus driver
+  option setting; apparently it's ignored by the driver (boo#1215981,
+  comment#26)
+
+- use different modprobe.d config file to resolve conflict with
+  older driver package (boo#1217370); overwrite
+  NVreg_OpenRMEnableSupporteGpus driver option setting (disable it),
+  since letting it enabled is supposed to break booting (boo#1215981,
+  comment#23)
+
+- Update to 545.29.02
+- added fbdev=1 option for nvidia-drm module, which gives us a proper
+  framebuffer console now ...
+- nosimplefb kernel option no longer needed with usage of nvidia-drm's
+  fbdev=1 option
+- nvidia's NVreg_OpenRmEnableUnsupportedGpus=1 option no longer
+  needed; GeForce and Workstation GPUs now officially supported
+- support added for H100/H800 GPUs (Hopper)
+
+- cleanup; sle12 no longer supported
+
openQA
+- Update to version 4.6.1701437900.fbad594:
+  * Dependency cron 2023-12-01
+
+- Update to version 4.6.1701312647.3c8b171:
+  * Dependency cron 2023-11-30
+  * Show FQDN in VNC command if available via `WORKER_HOSTNAME`
+  * Add YAML:PP as direct dependecy of generate assetpack script
+  * Cleanup openQA spec files
+  * infopanel: render scenario_description as markdown
+
+- Update to version 4.6.1700951825.872b397:
+  * Fix testrefs in lists
+  * Fix test short reference rendering
+  * Mention NetworkManager support
+  * Fix typo
+
+- Update to version 4.6.1700754150.dda8c55:
+  * Pass TMPDIR=1 to OBS Rsync authentication
+  * Dependency cron 2023-11-23
+  * Fix missing space in scheduling error message
+  * Set asset size on job creation
+
+- Update to version 4.6.1700240294.34068e3:
+  * Prevent label/flag/bugref overlapping
+  * Dependency cron 2023-11-17
+  * Improve comment in test code for dependency handling
+  * Do not associate skipped child jobs with new parent when restarting jobs
+  * Fix force-restarting jobs when an advanced restarting option was chosen
+  * Simplify code for setting up restart buttons
+
+- Update to version 4.6.1700156289.0130cfb:
+  * ObsRsync Plugin support for HTTP authentication in Build Service
+  * Add documentation for flag:carryover
+  * Update documentation about manual setup of PostgreSQL
+  * Comments API: Render markdown on explicit request only
+  * Add tests for carryover flags
+  * Consistently use 'carryover' instead of 'takeover'
+  * Perform comment carryover when comment has flag:carryover
+  * Add formatted bugref and carryover flag for comments
+  * Update markdown unit tests for new bugref
+  * Increase MOJO_CONNECT_TIMEOUT in openqa-cli
+  * Avoid unintended mass-removals in openqa-auto-update
+
+- Update to version 4.6.1699952945.e6799a9:
+  * Make openqa-cli retry also on connection errors
+  * Add headers to search results
+
+- Update to version 4.6.1699113915.9e4ee2f:
+  * templates: Clarify how issue reference carry over can be prevented
+  * Dependency cron 2023-11-03
+  * Sync AMQP plugin config defaults with code
+
+- Update to version 4.6.1698924934.1bd59f9:
+  * Dependency cron 2023-11-01
+  * Fix skipping Selenium tests
+  * munin: Include context in minion plugin title
+
+- Update to version 4.6.1698662280.91607f3:
+  * git subrepo pull (merge) external/os-autoinst-common
+
+- Update to version 4.6.1698405013.f1d481a:
+  * Dependency cron 2023-10-27
+  * Use commit message checks from os-autoinst-common
+  * Warn when modifying files under external directly
+  * CI: Use consistent casing in commit message check
+  * CI: Fix typo in github action name
+  * Update .github/workflows/commit_message_checker.yml
+  * Update commit-message-checker & add extra rule for subject lines
+
+- Update to version 4.6.1698089463.d08787a:
+  * Document `run_args` limitation on Python Modules
+
+- Update to version 4.6.1697790484.83ab402:
+  * Add Fedora SIGs gitlab group to bugrefs
+  * Add self argument to python examples
+  * Extend Test Module Documentation & Explain Python integration
+
+- Update to version 4.6.1697730420.c5419ae:
+  * Update Multi Machine docs to ref os-autoinst-setup-multi-machine only
+  * Add repeat parameter to clone a job multiple times
+
+- Update to version 4.6.1697251395.f46075b:
+  * Dependency cron 2023-10-14
+
+- Update to version 4.6.1697137041.0b9e261:
+  * Update all container references to current Leap 15.5
+  * Dependency cron 2023-10-11
+  * Apply memory limit for openqa-worker services
+
+- Update to version 4.6.1696927712.9de9760:
+  * ci: Use PERL_TEST_WARNINGS_ONLY_REPORT_WARNINGS
+  * spec: Use PERL_TEST_WARNINGS_ONLY_REPORT_WARNINGS
+
+- Update to version 4.6.1696521554.d04a2c8:
+  * Dependency cron 2023-10-05
+  * Properly handle duplicate sections on openqa/client.conf
+  * Fix perltidy dependency update
+  * De-prioritize harmless log message about scheduler wakeup
+
+- Update to version 4.6.1696214599.759eb2e:
+  * Dependency cron 2023-10-02
+
+- Update to version 4.6.1696170052.87fc8eb:
+  * Make tidy version check compatible with dotted versions
+  * Fix dependency update script
+
+- Update to version 4.6.1695913264.63a7e9e:
+  * Avoid displaying buttons on sticky table headers
+  * Dependency cron 2023-09-28
+  * Reduce runtime of t/04-scheduler.t
+  * Require Mojolicious 9.340.0
+
+- Update to version 4.6.1695760067.7b58081:
+  * t: Fix api/13-influxdb.t timezone issue
+
+- Update to version 4.6.1695350713.4878536:
+  * Dependency cron 2023-09-22
+  * scheduler: Log statistics of rejected jobs
+  * Fix key navigation on test details
+  * Fix usage of spew with empty content
+  * Update code according to new Perl::Tidy
+  * Update Perl::Tidy to 20230909
+  * Adapt to deprecation of spurt in upstream Mojolicious
+  * Dependency cron 2023-09-13
+  * git subrepo pull (merge) external/os-autoinst-common
+  * Fix websocket warning not to include the status "working"
+  * Log an info message when worker status updates are too frequent
+  * Make searching for unfinished jobs faster
+  * Makefile: Make replacements in unit files more robust
+  * Optimize get_property method
+  * Add scheduler test with more workers and jobs
+  * Remove optional allocated_ parameters from schedule
+  * Extract _allocate_jobs
+  * Make max_running_jobs a hard limit
+
+- Update to version 4.6.1694191490.cda0470:
+  * Increase min/max values for worker status updates
+  * Remove worker population broadcasts
+
+- Update to version 4.6.1694101660.598baea:
+  * Fix missing Conflicts in unit files
+  * Remove redundant worker SELECT query
+
+- Update to version 4.6.1693909530.ff28f36:
+  * Remove one UPDATE query from worker status updates
+  * contrib: Align the .xml.erp profile to the recent install attempts
+  * contrib: Add autoyast profile for SUSE PRG2 o3 workers
+
+- Update to version 4.6.1693565748.f367431:
+  * Allow settings to wrap into the next line
+
+- Update to version 4.6.1692951551.c933949:
+  * apparmor: Allow using tesseract
+  * Allow using force-result label with all final job states
+
+- Update to version 4.6.1692349627.5bfccc7:
+  * Remove defaults, should be ensured by OpenQA::Setup already
+  * Add usleep_backoff function and use it for asset uploads
+
+- Update to version 4.6.1692303781.9dd2c86:
+  * Fix scheduler getting max_running_jobs config
+  * Add timezone to SQL
+
+- Update to version 4.6.1692077260.5fbe296:
+  * Make the number of asset upload attempts configurable
+  * Log number of remaining retry attempts for asset uploads
+  * Display max_running_jobs on /tests page
+  * Set max_running_jobs to -1 by default
+  * Remove max_conns setting again from Nginx config
+
+- Update to version 4.6.1691585432.1459599:
+  * Sync testsuite name validation in YAML schema for template and scenario
+  * Limit number of running jobs per webui instance
+  * openqa-bootstrap: Align Leap repo priorities with documentation
+  * Add timezone to SQL query
+
+- Update to version 4.6.1690904243.43514d5:
+  * docs: Point to new multi-machine setup script instead of manual steps
+
+- Update to version 4.6.1690803816.e47aebd:
+  * dependencies: Require Mojo OAuth2 plugin
+
+- Update to version 4.6.1690598632.46f13d3:
+  * Dependency cron 2023-07-29
+
+- Update to version 4.6.1690300398.6c9149e:
+  * Use regular single quotes in javascript code
+  * docs: Fix firewalld service setup commands
+  * docs: Use 'trusted' firewall zone same as in setup instructions
+  * docs: Use consistent singe-ticks in python code example
+
+- Update to version 4.6.1690178908.b9e03ab:
+  * tests: Improve failure when comparing expected image results fails
+  * Display line breaks in data tables
+  * Add X-Forwarded-Proto to nginx config
+  * Update docs/WritingTests.asciidoc
+  * Update docs/WritingTests.asciidoc
+  * Document custom rsync command examples for TESTPOOLSERVER
+  * docs: Make multi-machine related code sections directly executable
+  * Enhance Python test docs
+  * Don't use apache specific www group in fetchneedles
+  * Make the job ID copying easier
+  * Make the restart and reschedule buttons visually distinguishable
+  * Avoid accidental re-triggering of products
+  * Allow to partially re-schedule a product from a job
+  * Fix re-triggering scheduled products with falsy required params
+
+- Update to version 4.6.1689360748.edd4aa1:
+  * contrib: Update/extend autoyast profile
+
+- Update to version 4.6.1689265095.7be7504:
+  * Comment out TLS section in nginx config by default as there are no certs
+  * Fix openQA spec to actually build single-instance-nginx subpkg
+  * Dependency cron 2023-07-13
+
+- Update to version 4.6.1689162874.c51d4b9:
+  * Avoid worker to wait until setup timeout on asset errors
+  * Add nginx config for tls
+  * Avoid asset caching ending up with `Job terminated unexpectedly`
+  * Avoid errors in the logs when invalid group IDs are passed
+  * Provide single-instance-apache from single-instance
+  * Introduce nginx version of the single-instance rpm
+  * Prevent bootstrap script retry failed proxy conf with remote script
+  * Avoid errors in the logs when invalid job IDs are passed
+  * Install nginx webserver in bootstrap script if requested
+  * bootstrap: Use correct syntax to pass args to remote script
+  * Fix openqa-bootstrap script referencing unbound var
+
+- Update to version 4.6.1688760836.a3a5f95:
+  * Quote shell vars
+  * Remove unreachable shift statement from script arg parsing
+  * Convert script/configure-web-proxy from POSIX sh to bash
+  * Fix escaping in test tables
+  * Allow nginx setup via configure-web-proxy and openqa-bootstrap script
+  * Improved nginx config: Provide template and includes
+  * Extend install doc to cover nginx
+
+- Update to version 4.6.1688565452.efc15ea:
+  * Use indented here-documents
+  * Fix tests due to postgres error msg filtered in wrong language
+
+- Update to version 4.6.1688124489.7f4be1c:
+  * Include nginx config in RPM
+  * Make sure munin config survives package update
+  * Consider devel mode test stable after recent changes
+  * Workaround line not being marked as covered
+  * Make it more obvious when devel mode fullstack test lacks files
+  * Fix race condition at the end of developer mode test
+  * Workaround sporadic failures of developer mode test
+  * De-duplicate code for re-login in devel mode test
+  * t: Reduce likelyhood of sporadic error about not logged in user
+
+- Update to version 4.6.1688038171.b33d284:
+  * Improve tempdir template uniqueness
+
+- Update to version 4.6.1687961273.be57a22:
+  * Fix example in openqa-clone-job helptext
+
+- Update to version 4.6.1687920426.098ed2e:
+  * Dependency cron 2023-06-28
+  * Use a unique template for worker tempdir
+  * git subrepo pull (merge) external/os-autoinst-common
+  * Apply best practices to Dockerfiles
+
+- Update to version 4.6.1687532073.e11feac:
+  * Do not hardlink symlink assets
+  * Reclone external/os-autoinst-common subrepo
+
+- Update to version 4.6.1687510203.8d9fc92:
+  * Add a hint regarding changes in the external directory
+  * Add subpackage openQA-munin
+  * Avoid hard dependency on Apache in systemd file
+  * Prevent sponsor logo overflow
+  * docs: Feature the "single-instance" container most prominently
+  * docs: Add single-instance container instructions
+  * docs: Remove obsolete note about Leap <15.2
+  * Fix style check finding false-positive problems
+  * Remove experimental regex from test
+  * Simplify regex validation helper
+  * Catch regex errors when filtering dashboards
+  * Improve regex validation test
+  * Delete potential extra lines from regex validation error
+  * Simplify regex validation via `use warnings FATAL => 'regexp'`
+  * Validate regex for filtering groups on dashboard pages
+  * Show possibly returned error message when loading dashboard
+
+- Update to version 4.6.1687285703.cd38e7f:
+  * munin: Make alert thresholds configurable
+  * Limit git diff to a maximum number of commits
+  * container: Rely on package-provided script to fix OBS build
+  * container: Add healthcheck for single-instance
+  * container: Update single-instance according to best practices
+
+- Update to version 4.6.1686951519.7cf0865:
+  * Update Dockerfiles to Leap 15.5
+  * Refresh tools/ci/ scripts for Leap 15.5
+  * Fix source view of local case dirs
+  * Update CircleCI image to Leap 15.5
+
+- Update to version 4.6.1686859477.329edf1:
+  * nginx: Set if_modified_since before
+  * Use signatures in Shared::Plugin::SharedHelpers
+  * Add munin plugin for minion jobs
+  * Update CI documentation to use of `pull_request_target`
+
+- Update to version 4.6.1686649789.d386b2b:
+  * Switch to Leap 15.5 in CI workflow
+
+- Update to version 4.6.1686317795.57b586f:
+  * Unify `_job_ref` and `_settings_key`
+  * Extend tests for behavior of `_INCLUDE_CHILDREN`
+  * Simplify code for dependency handling when creating jobs
+  * Make `_INCLUDE_CHILDREN` work for nested children
+  * Allow partial retrigger
+
+- Update to version 4.6.1686302766.69ffe8a:
+  * Increase client_body_buffer_size to be larger than UPLOAD_CHUNK_SIZE
+  * Add `priority` property to `job_templates` in YAML
+  * Add test for wildcard version in yaml
+  * Pass job result from os-autoinst's state file to web UI
+  * Extract reading state file into a separate function
+  * Simplify code for formatting reason
+  * t: Use signatures in complete OpenQA::SeleniumTest
+  * t: Simplify chromium dir lookup
+  * t: Simplify find_element call in 33-developer_mode.t
+  * Fix openqa-clone-custom-git-refspec on git-checkout job sources
+  * t: Further extract variables in openqa-clone-custom-git-refspec test
+  * t: Reduce duplication in clone-custom-git-refspec test
+  * t: Reduce length of some test strings in clone-custom-git-refspec
+  * Fix timestamp to be actual ns
+  * Add max_conns limit to nginx config
+  * Add re-try in comments test to mitigate alert problem
+  * Switch OBS SCM/CI Workflow to branch_package
+  * Add various optimizations and bug fixes for O3 deployment
+  * Allow wildcard version in scenarios YAML
+  * Remove YAML::PP duplicate_keys option
+  * Forbid cyclic references in YAML
+  * Fix flaky coverage in Worker::WebUIConnection
+  * Add test for rendering Git links in investigation tab
+  * documentation: Improve grammar
+
+- Update to version 4.6.1685846780.f3b6f99:
+  * Dependency cron 2023-06-04
+  * Dependency cron 2023-06-03
+
+- Update to version 4.6.1685738164.28716cd:
+  * Reference further documentation for database migrations
+  * Use same selectors in comments test as in real code
+  * Show number of minion jobs with hook_rc indicating failure
+  * Fix condition evaluation for skip variables
+  * Allow overriding variables
+  * Build openQA devel container only on archs where chromium is built
+  * Improve error handling in comments JavaScript code
+  * Improve JavaScript code for commenting further
+  * Simplify JavaScript code for adding/updating comments
+
+- Update to version 4.6.1685524945.b4ca723:
+  * Improve performance of server-side asset upload handling
+  * doc: Improve references for a quick installation
+  * openqa-bootstrap: Remove obsolete systemd check
+  * openqa-bootstrap: Speedup package installation
+  * openqa-bootstrap: Optionally skip SUSE-specifics
+  * container: Add single-instance variant
+  * openqa-bootstrap: Support systemd-less environments
+  * container: Handle potentially already existing certificates gracefully
+  * Add development container for openQA
+  * Update docs/WritingTests.asciidoc
+  * Mention required permisson for webhook based CI setup
+  * Use normal operators consistently in `CloneJob` consistently
+  * Fix logic in openqa-clone-job
+  * Remove unneeded list comprehension in openqa-label-all
+  * Remove python3-future from dependencies
+  * doc: Improve "Container based setup" section
+  * Fix postgres dir permissions for running openqa-bootstrap in nspawn
+  * doc: Improve introduction of "Containerized setup" chapter
+  * Remove debug "print" in gru plugin
+  * Extract formatting of CI check description into function
+  * Improve reporting CI status back
+  * Take restarted jobs into account when a PR is updated/closed
+  * Handle updated/closed PRs via webhook
+  * Assign webhook ID when creating a scheduled product from webhook
+  * Add indexed column `webhook_id` to scheduled products table
+  * Consider a tag's version when cleaning up job results
+
+- Update to version 4.6.1684771865.6dc41fa:
+  * doc: Fix wrong paths to container directory
+  * Delete worker logs as well when cleaning up job logs
+
+- Update to version 4.6.1684511766.434312e:
+  * Make retention periods for jobs outside groups configurable
+  * Improve documentation of cleanup under "Getting started"
+  * Add tests for cleanup of groupless job results
+  * Fix issues in the structuring of cleanup-related documentation
+  * Fix sporadic failure in t/ui/18-tests-details.t
+  * Remove slash from the path if base_url ends with one
+  * Fix warning related to use of `@_` in signatured subroutine
+  * Remove codecov token again after problem fixed
+  * Only output JSON when using --json-output
+  * Explicitly check parameters for scheduling CI jobs
+  * Require PR-ID in webhook and improve validation
+
+- Update to version 4.6.1683890027.16a2697:
+  * Add test for datetime based build
+  * Allow colon in tag's build
+  * Fix sporadic failures of comments test
+  * Add route to schedule a product via a webhook and report status
+  * Explicitly match maintenance repo settings variables
+
+- Update to version 4.6.1683639249.98b3171:
+  * Improve non-matching log output in investigation tab
+  * Increase heartbeat timeout to 15 minutes
+  * Output host of missing api credentials
+  * Refactor ISOs-API controller to make it reusable
+  * Improve contrast between failed and incomplete color
+
+- Update to version 4.6.1683294886.8a7e554:
+  * Fix spec
+  * Improve coding style in `_find_network`
+  * Fix several issues with `allocate_network`
+  * Fix duplication of Devel::Cover requirements specified
+  * Dependency cron 2023-05-05
+  * CI: Fix codecov upload step with token
+  * CI: Use most recent codecov orb 3.2.4
+  * CI: Try to fix codecov upload with circleCI orb
+  * Add `xz` to worker container
+  * Makefile: Fix manual calls of codecov report
+
+- Update to version 4.6.1683023936.135efe1:
+  * Improve coding style in code for manual restarting
+  * Use subtests to make pagination test descriptions more unique
+  * Extract code to cancel other jobs in cluster to function
+  * Avoid jobs not part of parallel cluster ending up `parallel_restarted`
+  * Make serialization of test results portable
+  * Update documentation in accordance with 29bcb6cd
+  * Verify and improve restarting behavior in certain case
+  * Improve helpers of restarting test
+  * Add pagination tests for GET /api/v1/products
+  * Add pagination tests for GET /api/v1/machines
+  * Add pagination for GET /api/v1/test_suites
+  * Improve contrast of Progress bar text
+  * Fix surplus whitespaces in source view
+  * Don't restart scheduled or running chained parents
+
+- Update to version 4.6.1682511024.316b8d8:
+  * docs: Use version variable in PackageHub call as well
+  * Use constant `WORKER_COMMAND_ABORT`
+  * Avoid race condition by waiting for the #text element
+  * Improve coding style in `parse_tags_from_comments`
+  * Remove mostly useless logging for tag detection
+  * Result/Jobs.pm: Update serial console name
+
+- Update to version 4.6.1682330950.cdcc4a7:
+  * Add minimalistic "health" check route
+
+- Update to version 4.6.1682067800.cbbc51b:
+  * Improve contrast of progress bar showing number of failures (#5080)
+  * Fix non-deleted serial_terminal_user.txt
+  * Dependency cron 2023-04-21
+  * docs: Add SLE installation instructions
+  * docs: Update outdated reference for "job label"
+  * Dependency cron 2023-04-20
+  * Add conditional check to skip maint updates verification
+
+- Update to version 4.6.1681833567.dd4f8b9:
+  * Clarify "Pause on failure" does *not* affect screen mismatch
+
+- Update to version 4.6.1681375245.d0e672c:
+  * Fix typo in installation documentation
+  * Improve out-of-the-box experience when invoking web UI container
+  * Avoid one layer when building web UI container
+  * openqa-clone-job: Apply group settings to all cloned jobs
+
+- Update to version 4.6.1681211083.828aa75:
+  * Track download count to supress alert if no downloads ongoing
+
+- Update to version 4.6.1680796926.68ee481:
+  * Show error message from server when commenting fails
+
+- Update to version 4.6.1680648567.628cb20:
+  * Ensure final status update for cancelled jobs
+  * Modernize and improve `obs_rsync.js`
+  * Dependency cron 2023-04-04
+
+- Update to version 4.6.1680231128.78c4788:
+  * Dependency cron 2023-03-31
+  * Add a --name option to openqa-cli
+  * Make it easier to identify openqa-cli in logs
+  * Require and document use of time-sync
+  * Update test for cache->_exceeds_limit
+  * Fix enabling live stream/log when the backend is not up yet
+  * Mention the keyword DSL in the docs
+  * Avoid live view getting stuck in a certain case
+  * Correct formula in _exceeds_limit when CACHE_MIN_FREE_PERCENTAGE is set
+  * Add documentation for running openQA jobs as CI checks
+  * Add test for case of correct key and wrong secret
+  * Fix logging reason of auth errors
+
+- Update to version 4.6.1679910590.9fc2aa0:
+  * Remove obsolete frontend code for sending commands to worker
+
+- Update to version 4.6.1679673928.0929919:
+  * Streamline `openqa-clone-job` output with `openqa-cli schedule`
+  * Render web UI URLs for jobs created via `openqa-cli schedule`
+  * Assign dependencies when cloning jobs with children but without parents
+  * Prevent github from caching badges too long
+  * Provide container image to trigger/monitor jobs as CI
+  * Make key-auth work for openQA instances under nested path
+
+- Update to version 4.6.1679501784.c715f72:
+  * Add advice to timestamp mismatch error
+  * Unify handling formatting args of `openqa-cli` sub cmds
+  * Don't be quiet about errors of `openqa-cli schedule`
+  * Don't rely on js for badge length setting
+  * Improve variable declarations in `43-cli-schedule.t`
+  * Avoid changing Perl-global for UTF-8-encoded output in CLI
+  * Combine `openqa-cli api` options `-r` and `-m`
+  * Streamline "waiting" output between `openqa-cli` sub commands
+  * Reuse retry from `openqa-cli api` in `openqa-cli schedule`
+  * Tweak retry-loop of `openqa-cli`
+  * Move retry-loop from `api.pm` to baseclass to use in other cmds
+  * Remove unused variable in `api.pm`
+  * Allow scheduling and monitoring a product via `openqa-cli`
+  * Evaluate comment contents on carry-over
+
+- Update to version 4.6.1679268237.39af241:
+  * Optimize database queries for next/previous
+
+- Update to version 4.6.1679074680.4609521:
+  * Remove unused variable in `_sort_dep`
+  * Improve test for `_SKIP_CHAINED_DEPS`
+  * Make t_created unambiguous in SQL
+
+- Update to version 4.6.1678883699.d3ce35d:
+  * Add note about hook script in carry over comment
+  * Extract locating hook script for job into separate function
+  * Improve coding style in `carry_over_bugrefs`
+  * Improve auth test
+  * Test OpenID error handling
+  * Fix "Useless use of a constant" in auth test
+  * Make it easier to distinguish OpenID-related errors
+  * Fix `restart_job` jobs failing with `already has clone`
+  * Avoid failing coverage check in ISO-API test
+  * Simplify example for scenario YAML mentioned in documentation
+  * Improve coding style of ISO-API tests
+  * Move tests for scheduling from YAML into separate file
+  * Split tests for scheduling from YAML file
+  * Make machines/products in scenario definitions YAML optional
+  * Refactor code for scheduling jobs from YAML file
+  * Use constant to avoid duplicating default job priority
+  * Document supplying scenario definitions via YAML
+  * Extend test checks for YAML-related error handling to cover context
+  * Simplify code for returning from `_schedule_from_yaml`
+  * Use signatures in helper functions of `_schedule_from_yaml`
+  * Allow specifying scenario definitions YAML content directly
+  * Remove stub with TODO for cloning a Git repo to retrieve YAML file
+  * Rename `SCHEDULE_FROM_YAML_FILE` to `SCENARIO_DEFINITIONS_YAML_FILE`
+  * Validate scenario definitions passed for scheduling an ISO explicitly
+  * Fix various problems with the function for scheduling from YAML file
+  * Improve tests for scheduling an ISO using definitions from YAML file
+  * Load job templates from YAML file when scheduling isos
+
+- Update to version 4.6.1678589270.14d05d8:
+  * Dependency cron 2023-03-12
+  * Dependency cron 2023-03-11
+
+- Update to version 4.6.1678383164.7327f0f:
+  * Add bage for openQA in openQA test (appliance) (#5030)
+
+- Update to version 4.6.1678283083.88597fc:
+  * Trigger job finalization reliably from livehandler
+  * Run cache.fullstack job also in nightly job
+  * Use Minion's dependency handling to restart before finalizing
+  * Invoke hook script only after the first restart attempt
+  * Avoid ugly checks for Gru in enqueuing functions for jobs
+  * Improve error handling when automatically restarting a job
+  * Update docs/UsersGuide.asciidoc
+  * Add openQA status badges
+
+- Update to version 4.6.1677862140.c495768:
+  * Make --skip-deps and --skip-chained-deps work as described in the docs
+
+- Update to version 4.6.1677511074.f74fdc6:
+  * Extend test for RETRY and user-cancelled jobs
+
+- Update to version 4.6.1677486029.9cf9ed8:
+  * Mark WORKER_COMMAND_CANCEL condition as uncoverable
+
+- Update to version 4.6.1677163264.aee8d8c:
+  * Do not restart user-cancelled job with RETRY
+
+- Update to version 4.6.1676994766.f6873b5:
+  * Replace fragile awk script with AssetPack config file
+  * Add basic test for re-routing
+  * Cover remaining places in code that need adjustment for re-routing
+  * Refactor re-routing; move the code into a separate function
+  * Allow re-routing via `Mojolicious::Plugin::RequestBase`
+  * Mention GITHUB_TOKEN in the usage
+  * Note the format for NEEDLES_DIR
+  * Allow escaping percentage signs in job settings to avoid substitution
+  * Make generate-packed-assets return non zero in case of errors
+  * Fix regex to get AssetPack plugins
+  * Revert "Revert "Retry asset downloads automatically""
+  * OBS: Do not test builds on EOL Leap 15.3
+
+- Update to version 4.6.1676689467.218fd47:
+  * Dependency cron 2023-02-18
+
+- Update to version 4.6.1676652271.14173e7:
+  * Revert "Retry asset downloads automatically"
+  * Enable build for PowerPC after openQA packages are no longer noarch
+  * Retry asset downloads automatically
+  * Add pagination for GET /api/v1/workers
+  * Remove unused 'backend_info'
+  * Track coverage of test server spawned by `t/25-downloader.t`
+  * Avoid caveats of `Archive::Extract` using `bsdtar` instead
+
+- Update to version 4.6.1676474487.945e502:
+  * Remove noarch from openQA.spec
+  * Dependency cron 2023-02-15
+  * Update documentation of bug references and labels to meanwhile changes
+  * Fix investigation git log
+  * Render bugrefs as clickable links within labels
+  * Use signatures in Markdown module
+  * Ensure consistent openQA version when installing openQA-local-db
+
+- Update to version 4.6.1676033243.8d9ce6f:
+  * Fix off-by-one error when limiting jobs API route using `latest=1`
+  * Restore font color of main menu actions
+  * Dependency cron 2023-02-09
+
+- Update to version 4.6.1675863678.6b1808c:
+  * Improve appearance of tables
+  * ci: Point out how to fix an empty cache
+
+- Update to version 4.6.1674746026.5aaec11:
+  * Avoid errors about changing the working directory after asset extraction
+  * Fix error when displaying help for minion sub command
+
+- Update to version 4.6.1674655858.a839999:
+  * Avoid ugly underline when hovering over "Delete asset from disk" button
+  * Allow to search for an asset in the asets table from "Downloads" tab
+  * Clarify that delete button on the assets table will delete file on disk
+  * Allow specifying search term for asset table via URL query parameter
+  * Improve coding style in setup code for assets table
+  * Initialize Mojolicious::Static only in one place
+  * Fix missing input validation for needle API endpoints
+
+- Update to version 4.6.1674465154.bcd646c:
+  * t/24-worker-jobs.t: Add virtio_console_user.log to Livelog
+  * Job(s): Add virtio_console_user.log to live serial output
+  * Result/Jobs.pm: Link also virtio_console_user.txt
+  * Worker/Job.pm: Document serial_terminal.txt
+  * Worker/Job.pm: Upload virtio_console_user.log
+  * Worker/Job.pm: Rename all .log to *.txt
+  * t/24-worker-jobs.t: DRY
+
+- Update to version 4.6.1674133294.994bfb0:
+  * Avoid another race condition by waiting for the #text element
+
+- Update to version 4.6.1673871170.29e858b:
+  * Fix build by providing postgresql during build
+
+- Update to version 4.6.1673622416.c01e5cb:
+  * Change type of `owner` column to bigint in consistency with jobs table
+  * Add postgresql service to requirements
+  * Avoid deadlock when updating asset size during job creation
+  * Fix asset cache error handling to avoid proceeding in case of failures
+  * Add missing `use Mojo::UserAgent`
+  * Clean up /api/v1/jobs pagination and remove unused code
+  * Add pagination for GET /api/v1/jobs
+  * Avoid race condition by waiting for the #text element
+  * Dependency cron 2023-01-10
+  * Revert "Add postgresql service to requirements"
+
+- Update to version 4.6.1673059575.c051c08:
+  * Dependency cron 2023-01-07
+  * Try running the full-stack test without retry
+  * Add postgresql service to requirements
+  * Pin css_parser to version 1.12.0 because newer need ruby 2.7
+  * Dependency cron 2023-01-05
+
+- Update to version 4.6.1671708203.c9f8b10:
+  * Dependency cron 2022-12-22
+  * codecov.yml: Introduce specific coverage thresholds
+  * codecov: Remove redundant duplication of default values and range
+  * Avoid jobs from being stuck in state "running"
+
+- Update to version 4.6.1671625243.c73687c:
+  * Use signatures in WebAPI::Controller::Running
+  * Avoid deadlock when updating asset size during job creation
+  * Improve `t/api/04-jobs.t`
+
+- Update to version 4.6.1671158755.972ff1f:
+  * Dependency cron 2022-12-16
+
+- Update to version 4.6.1671027455.dda1de5:
+  * container: Install tessseract so we can test OCR
+  * Dependency cron 2022-12-14
+  * Split big transaction in stale job detection
+  * Remove unused function `set_running`
+
+- Update to version 4.6.1670662257.ab43bbd:
+  * Use signatures in OpenQA::Shared::Plugin::Gru
+
+- Update to version 4.6.1670600800.c750f3b:
+  * Use signatures in OpenQA::Schema
+  * Fix race-condition reading job module details files
+  * Inform about dependencies before running tests
+  * Increase timeouts of tests api/14 and ui/13
+
+- Update to version 4.6.1670432877.32837b1:
+  * Protect second asset size update from possible deadlocks
+  * Support use-case of "local" worker when detecting worker address
+  * Extract code for determining whether a host is local
+  * tests: Consume expected fake error from web socket
+  * Condense scheduling debug output to single line
+  * Fix missing `wait_for_ajax` call in comments test
+  * Catch error and return 404 for module_fails with non existing test
+  * Protect one asset size update from possible deadlocks
+  * Avoid running jobs with undetermined worker address
+  * Add signatures in OpenQA::Task::Bug::Limit
+  * Add signatures in OpenQA::Task::Job::Limit
+  * Add signatures in OpenQA::Task::Job::FinalizeResults
+  * Add signatures in OpenQA::WebAPI::Controller::Admin::Needle
+  * Add signatures in OpenQA::WebAPI::Controller::API::V1::Bug
+  * Add signatures in OpenQA::WebAPI::Auth::Fake
+  * t: Add signatures in cache-service
+  * t: Add signatures in build_tagging
+  * t: Add signatures in grutasks
+  * t: Bump timeout of ui/21-admin-needles.t based on local runtime
+  * Simplify _create_clones with post-for
+  * Extract methods for creating clones with right dependency
+
+- Update to version 4.6.1669922159.5e076a0:
+  * Fix typos in developer mode documentation
+  * Add support for absolute URLs to openqa-cli
+  * Add --links option to openqa-cli for pagination
+  * Allow using 'pngquant' instead 'optipng'
+  * Allow ignoring failure when paused on specific command
+  * Ensure openQA-single-instance pulls in same version of openQA
+
+- Update to version 4.6.1669740924.a0f6803:
+  * Add pagination for GET /api/v1/bugs
+  * Extract opening/configuring cache service SQLite db into functions
+  * Avoid `database is locked` errors if SQLite writes are slow
+  * Add pagination for GET /api/v1/assets
+
+- Update to version 4.6.1669397828.6ece53c:
+  * Add UI for pausing on failure via developer mode
+  * Dependency cron 2022-11-25
+  * Revert "Use signatures in OpenQA::Shared::Plugin::Gru"
+  * tools: Fix hadolint for systems running in SELinux enforcing mode
+  * Dependency cron 2022-11-25
+  * Simplify loop in in OpenQA::Task::Needle::Scan
+  * OpenQA::Schema::ResultSet::DeveloperSessions: Extract method
+  * Use signatures in OpenQA::Shared::Plugin::Gru
+  * Use signatures in OpenQA::CacheService
+  * Use signatures in OpenQA::Task::Needle::Scan
+  * OpenQA::WebAPI::Controller::Admin::Workers: Delete redundant comment
+  * Move 'dsn' function to only place used'
+  * Use signatures in OpenQA::Schema
+
+- Update to version 4.6.1669212003.b93eb7f:
+  * Fix hadolint check
+  * Use signatures in WebAPI::Controller::Step
+
+- Update to version 4.6.1668839343.05e490d:
+  * Dependency cron 2022-11-19
+
+- Update to version 4.6.1668778874.64c641d:
+  * Bump actual limits to higher to fix users unable to get results
+  * Simplify WebAPI::Controller::API::V1::Job
+  * Remove obsolete WebAPI::Controller::API::V1::Job::result
+  * OpenQA::WebAPI::Controller::API::V1::Job: Simplify
+  * OpenQA::WebAPI::Controller::API::V1::Job: Use signatures
+  * OpenQA::Schema::ResultSet::Bugs: Use signatures
+  * Use signatures in complete OpenQA::Worker
+  * Use signatures for OpenQA::Utils::run_cmd_with_log_return_error
+  * OpenQA::Utils: Simplify human_readable_size
+
+- Update to version 4.6.1668597146.2561fef:
+  * Avoid relying on DNS setup to determine worker registration name
+  * Fix "Use of uninitialized value" in OpenQA/Worker.pm
+  * Bump query limits to higher limits to fix users unable to get results
+  * Avoid misuse of the word "hostname" in documentation
+  * Use more compact coding style in developer mode UI test
+  * Fix submitting "Pause on next command" selection of developer mode
+  * Auto-detect `WORKER_HOSTNAME` on worker startup if not set explicitly
+  * Clarify "worker hostname" logged on worker startup
+  * docs: Add a suggested workflow documentation for test review
+
+- Update to version 4.6.1668162974.2b84746:
+  * Add distinct set of limits for assets
+  * Limit implementation for sub list_scheduled_ajax
+  * Limit implementation for sub list in Jobs.pm
+  * Limit implementation for sub list in Worker.pm
+  * Limit implementation for sub list in Table.pm
+  * Limit implementation for sub list in Comment.pm
+  * Limit implementation for sub list in Bug.pm
+  * Limit implementation for sub list in Asset.pm
+  * Initialize generic default and max limits
+  * Add unit test for scheduled jobs limiting
+  * Add unit test for jobs limiting (api call)
+  * Add unit test for workers limiting (api call)
+  * Add unit test for products limiting (api call)
+  * Add unit test for machines limiting (api call)
+  * Add unit test for comments limiting (api call)
+  * Add unit test for bugs limiting (api call)
+  * Add unit test for assets limiting (api call)
+
+- Update to version 4.6.1667998549.1a9c56e:
+  * Handle concurrent job deletion when updating job result size
+  * Sort vars.json by key
+  * Dependency cron 2022-11-08
+  * Use signatures in OpenQA::Scheduler
+  * Add an API endpoint to find jobs with certain job settings
+  * Restore formatting of `vars.json` after a523306
+  * Remove likely unneeded code in WebAPI::Plugin::REST
+  * Use signatures in OpenQA::WebAPI::Plugin::REST
+
openssl-3
+- Security fix: [bsc#1216922, CVE-2023-5678]
+  * Fix excessive time spent in DH check / generation with large Q
+    parameter value.
+  * Applications that use the functions DH_generate_key() to generate
+    an X9.42 DH key may experience long delays. Likewise,
+    applications that use DH_check_pub_key(), DH_check_pub_key_ex
+    () or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42
+    DH parameters may experience long delays. Where the key or
+    parameters that are being checked have been obtained from an
+    untrusted source this may lead to a Denial of Service.
+  * Add openssl-CVE-2023-5678.patch
+
+- Added openssl-3-use-include-directive.patch so that the default
+  /etc/ssl/openssl3.cnf file will include any configuration files that
+  other packages might place into /etc/ssl/engines3.d/ and
+  /etc/ssl/engdef3.d/.
+- Updated spec file to create the two new necessary directores for
+  the above patch. [bsc#1194187, bsc#1207472]
+
openvswitch
+- Updated the corrected patch for CVE-2023-5366 [bsc#1216002]
+
openvswitch3
+- Fix CVE-2023-5366 [bsc#1216002], openvswitch: missing masks on a final stage with ports trie
+- Added patch,
+    CVE-2023-5366.patch
+
+- Renamed the patch,
+    CVE-2023-3152.patch => CVE-2023-3153.patch
+
os-autoinst
-- Fix os-autoinst-devel opencv dependency for upgrade (boo#1201552)
+- Update to version 4.6.1701427827.ab6274c:
+  * Speedup isotovideo test slightly by disabling the video encoder
+  * Avoid sleep after cloning via Git failed and retries are exhausted
+  * Speed up isotovideo test
+  * openvswitch: Ensure a consistent MTU size compatible with GRE tunnels
+  * Fix connection delete behavior when no connection is present
+  * Refactor common parts
+  * Add support for NetworkManager in setup multi-machine script
+  * Fix shell-check warnings
+
+- Update to version 4.6.1701346324.3e38557:
+  * Speedup isotovideo test slightly by disabling the video encoder
+  * Avoid sleep after cloning via Git failed and retries are exhausted
+  * Speed up isotovideo test
+  * Fix connection delete behavior when no connection is present
+  * Refactor common parts
+  * Add support for NetworkManager in setup multi-machine script
+  * t/18-backend-qemu.t: Test for uppercase OVMF file names
+  * backend/qemu: Preserve case when modifying OVMF file names
+
+- Update to version 4.6.1700826581.a2deffd:
+  * Fix connection delete behavior when no connection is present
+  * Refactor common parts
+  * Add support for NetworkManager in setup multi-machine script
+  * Fix shell-check warnings
+  * dist: Add missing dependency on ssh in s390_zvm_requires
+  * t/18-backend-qemu.t: Test for uppercase OVMF file names
+  * backend/qemu: Preserve case when modifying OVMF file names
+
+- Update to version 4.6.1700759257.6f41f56:
+  * dist: Add missing dependency on ssh in s390_zvm_requires
+  * Rewrite s390 console to work with arbitrary IP and Hostname combinations
+  * t/18-backend-qemu.t: Test for uppercase OVMF file names
+  * backend/qemu: Preserve case when modifying OVMF file names
+  * Disable SVIRT_WORKER_CACHE by default
+
+- Update to version 4.6.1699947509.970d060:
+  * Disable SVIRT_WORKER_CACHE by default
+  * Use commit message checks from os-autoinst-common
+  * backend::baseclass: Fix wording of informative message
+  * Slightly simplify backend::baseclass
+  * Remove unused tools/absolutize
+  * git subrepo commit (merge) external/os-autoinst-common
+
+- Update to version 4.6.1698238759.64b339c:
+  * Use commit message checks from os-autoinst-common
+  * backend::baseclass: Fix wording of informative message
+  * Slightly simplify backend::baseclass
+  * Fix character encoding of JSON result file
+  * Remove unused tools/absolutize
+
+- Update to version 4.6.1698096072.7fee4e3:
+  * Fix rsync command when asset name contains a colon
+  * Document important caveat of SVIRT_WORKER_CACHE setting
+  * Simplify log message when copying asset to svirt host
+  * Fixed python linter errors
+  * Stable Function signatures for Python Modules
+  * Enforce in tests that Python does not support `run_args`
+
+- Update to version 4.6.1697790639.4abe47f:
+  * Get the python code to snitch its version
+  * Fix table of svirt backend variables
+  * Make use of openQA worker cache within the svirt backend optional
+  * Mention undocumented behavior from RAIDLEVEL
+  * os-autoinst-setup-multi-machine: Ensure wicked network daemon
+  * Revert "os-autoinst-setup-multi-machine: Missing dir for gre-up-script"
+
+- Update to version 4.6.1697713961.41e50e4:
+  * Fix table of svirt backend variables
+  * Make use of openQA worker cache within the svirt backend optional
+  * Mention undocumented behavior from RAIDLEVEL
+  * os-autoinst-setup-multi-machine: Ensure wicked network daemon
+  * Revert "os-autoinst-setup-multi-machine: Missing dir for gre-up-script"
+  * os-autoinst-setup-multi-machine: Fix missing dir for gre-up-script
+
+- Update to version 4.6.1697205140.6b9f9df:
+  * Add dependency on ipxe-bootimgs
+  * Fix the ipxe rom file path from installed package 'ipxe-bootimgs'
+  * ci: Use PERL_TEST_WARNINGS_ONLY_REPORT_WARNINGS
+  * Fix rsync command in `sshVirtsh` console
+  * Streamline coding style of `get_ssh_credentials` functions
+  * Utilize possibly cached asset in svirt backend
+
+- Update to version 4.6.1696926689.86f4251:
+  * ci: Use PERL_TEST_WARNINGS_ONLY_REPORT_WARNINGS
+  * Fix rsync command in `sshVirtsh` console
+  * Streamline coding style of `get_ssh_credentials` functions
+  * Utilize possibly cached asset in svirt backend
+  * Remove wrong condition for `unxz` call on svirt host
+  * t: Add at least one test to 04-testapi-python.t
+  * spec: Use PERL_TEST_WARNINGS_ONLY_REPORT_WARNINGS
+
+- Update to version 4.6.1696682209.cdbccdf:
+  * Revert "Utilize possibly cached asset in svirt backend"
+  * t: Fix lost statement coverage in backend::ipmi::dell_sleep
+  * Fix os-autoinst_dev build on current Tumbleweed
+  * Improve error message about JSON encoding
+  * Remove wrong condition for `unxz` call on svirt host
+
+- Update to version 4.6.1696427596.90f0576:
+  * Improve error message about JSON encoding
+  * Fix perltidy version detection
+  * Update Perl::Tidy to 20230912
+  * Error on non-existing WHEELS_DIR
+  * Add VNC depth support to the generalhw backend
+
+- Update to version 4.6.1695896472.1c9ce39:
+  * Add VNC depth support to the generalhw backend
+  * Require Mojolicious 9.340.0
+  * script/os-autoinst-setup-multi-machine: Drop unnecessary setcap on qemu
+  * ssh_screen: Log SSH read errors
+  * Fix return context check in mocked SSH error method in unit test
+
+- Update to version 4.6.1695644896.26abc02:
+  * script/os-autoinst-setup-multi-machine: Drop unnecessary setcap on qemu
+  * ssh_screen: Log SSH read errors
+  * Fix return context check in mocked SSH error method in unit test
+  * Fix Perl::Tidy version
+  * IPMI backend incorrectly handle empty return value
+
+- Update to version 4.6.1695365879.b5000e3:
+  * Fix timeout of 14-isotovideo.t for dev machine.
+  * Fix typo
+  * Locate actual wheels in WHEELS_DIR
+  * Update Perl::Tidy to 20230909
+  * Adapt to deprecation of spurt in upstream Mojolicious
+
+- Update to version 4.6.1693332527.fb060dc:
+  * Improve setting default zone in os-autoinst-setup-multi-machine
+  * Revert "Fix script_run sanity checks"
+  * script_run: Terminate test if the command string is invalid
+  * script_run: Fix command mistype check on serial console
+  * Be more robust if os-autoinst-setup-multi-machine is ran twice
+  * Start openvswitch before use in os-autoinst-setup-multi-machine
+
+- Update to version 4.6.1692873408.b5fd97a:
+  * Revert "Fix script_run sanity checks"
+  * script_run: Terminate test if the command string is invalid
+  * script_run: Fix command mistype check on serial console
+  * Be more robust if os-autoinst-setup-multi-machine is ran twice
+  * Start openvswitch before use in os-autoinst-setup-multi-machine
+  * docs: Update currently supported test log formats
+
+- Update to version 4.6.1692366409.4b45019:
+  * Be more robust if os-autoinst-setup-multi-machine is ran twice
+  * Start openvswitch before use in os-autoinst-setup-multi-machine
+  * docs: Update currently supported test log formats
+  * Add unit test for save_storage
+  * Add full-stack test for `save_storage`
+  * Add 'NAME' to QEMU backend blocklist in check_vars_docu
+  * Document `save_storage` and 'SAVE_STORAGE_TIMEOUT'
+
+- Update to version 4.6.1692183824.664c432:
+  * docs: Update currently supported test log formats
+  * Add unit test for save_storage
+  * Add full-stack test for `save_storage`
+  * Add 'NAME' to QEMU backend blocklist in check_vars_docu
+  * Document `save_storage` and 'SAVE_STORAGE_TIMEOUT'
+  * Add support for saving storage during test
+  * consoles: Mention VNC keyboard layout in errors
+
+- Update to version 4.6.1691146636.a00cbb0:
+  * Add unit test for save_storage
+  * Add full-stack test for `save_storage`
+  * Add 'NAME' to QEMU backend blocklist in check_vars_docu
+  * Document `save_storage` and 'SAVE_STORAGE_TIMEOUT'
+  * Add support for saving storage during test
+  * consoles: Mention VNC keyboard layout in errors
+  * os-autoinst-openvswitch: Fix running into timeout for slow network init
+  * os-autoinst-setup-multi-machine: Ensure correct default zone
+  * os-autoinst-setup-multi-machine: Use more common 'br0' as ethernet
+  * os-autoinst-setup-multi-machine: Make zone configurable
+  * os-autoinst-setup-multi-machine: Ensure IP forwarding
+  * os-autoinst-setup-multi-machine: Extract main function
+  * os-autoinst-setup-multi-machine: Add live-mode related steps
+  * Include os-autoinst-setup-multi-machine in doc+package
+  * Add multi-machine setup script
+
+- Update to version 4.6.1690965531.f57286b:
+  * consoles: Mention VNC keyboard layout in errors
+  * Convert error message from bytes to text
+  * Decode utf8 in read_json
+  * os-autoinst-openvswitch: Fix running into timeout for slow network init
+  * os-autoinst-setup-multi-machine: Ensure correct default zone
+  * os-autoinst-setup-multi-machine: Use more common 'br0' as ethernet
+
+- Update to version 4.6.1690540437.6c17e24:
+  * Avoid CMake deprecation warning by bumping version
+  * Revert "Use tempfile TMPDIR option"
+  * Make it possible to run more than one python test module
+  * Update Perl::Tidy to 20230701
+  * consoles/{serial_screen,virtio_terminal}: Add hint about testing
+  * t/22-svirt.t: Rename console name
+  * svirt: Fix comments for ssh-virtsh-serial constants
+  * Use tempfile TMPDIR option
+  * Use a tempfile template to easily identify tempfiles
+
+- Update to version 4.6.1690288691.492e561:
+  * Revert "Use tempfile TMPDIR option"
+  * Make it possible to run more than one python test module
+  * Update Perl::Tidy to 20230701
+  * lockapi: add timeout parameter to barrier_wait()
+  * consoles/{serial_screen,virtio_terminal}: Add hint about testing
+
+- Update to version 4.6.1689704414.b3077ad:
+  * Make it possible to run more than one python test module
+  * Update Perl::Tidy to 20230701
+  * lockapi: add timeout parameter to barrier_wait()
+  * consoles/{serial_screen,virtio_terminal}: Add hint about testing
+  * t/22-svirt.t: Rename console name
+  * svirt: Fix comments for ssh-virtsh-serial constants
+
+- Update to version 4.6.1688832263.576c710:
+  * consoles/{serial_screen,virtio_terminal}: Add hint about testing
+  * t/22-svirt.t: Rename console name
+  * svirt: Fix comments for ssh-virtsh-serial constants
+  * Use tempfile TMPDIR option
+  * Use a tempfile template to easily identify tempfiles
+  * Apply best practices to Dockerfiles
+  * git subrepo pull (merge) external/os-autoinst-common
+
+- Update to version 4.6.1688579291.d13a461:
+  * Use tempfile TMPDIR option
+  * Use a tempfile template to easily identify tempfiles
+  * Apply best practices to Dockerfiles
+  * Bump version number
+  * git subrepo pull (merge) external/os-autoinst-common
+  * Remove non-functional save_storage_drives from testapi
+  * Add unit tests for multiple click points
+  * Allow a needle to have multiple click points
+
+- Update to version 4.6.1687960328.0df62a5:
+  * Apply best practices to Dockerfiles
+  * Bump version number
+  * git subrepo pull (merge) external/os-autoinst-common
+  * Isotovideo/Interface.pm: Bump interface to 39
+  * t/22-svirt.t: Update to define serial console for user (sut-serial)
+  * Remove non-functional save_storage_drives from testapi
+  * Add unit tests for multiple click points
+  * Allow a needle to have multiple click points
+
+- Update to version 4.6.1683886197.05274f7:
+  * Suppress unneeded log output in 17-basetest.t
+  * Add s390x support to QEMU backend
+  * Enable VNC endian conversion when worker is big-endian
+  * Add support for serial device of s390x in testapi
+  * dist: Fix unresolved dependency on chattr in OBS
+
+- Update to version 4.6.1683277334.0688448:
+  * Enable VNC endian conversion when worker is big-endian
+  * Add support for serial device of s390x in testapi
+  * dist: Fix unresolved dependency on chattr in OBS
+  * Show initialization errors of `isotovideo` again
+  * Test sending forced VNC update request explicitly
+  * container: Distinguish jq and non-jq variants in BuildTag
+  * Drop setting of TESSDATA_PREFIX in invoke-tests
+  * Replace Perl::Critic::{Freenode,Community}
+  * Add workaround to prevent `t/29-backend-generalhw.t` being unstable
+  * Cover all code of `console.pm`
+  * Fix CMake warning about ordering
+  * ci: Improve marking uncoverable statements
+  * Drop Leap-15.3 from OBS CI
+
+- Update to version 4.6.1682499524.994700d:
+  * Show initialization errors of `isotovideo` again
+  * dist: Fix missing dependency to "chattr" when using qemu on Tumbleweed
+  * Test sending forced VNC update request explicitly
+  * container: Distinguish jq and non-jq variants in BuildTag
+  * Drop setting of TESSDATA_PREFIX in invoke-tests
+
+- Update to version 4.6.1682085875.d9579ac:
+  * container: Distinguish jq and non-jq variants in BuildTag
+  * Drop setting of TESSDATA_PREFIX in invoke-tests
+  * Replace Perl::Critic::{Freenode,Community}
+  * Add workaround to prevent `t/29-backend-generalhw.t` being unstable
+  * Cover all code of `console.pm`
+
+- Update to version 4.6.1681806256.6802f44:
+  * Replace Perl::Critic::{Freenode,Community}
+  * Add workaround to prevent `t/29-backend-generalhw.t` being unstable
+  * Cover all code of `console.pm`
+  * Fix CMake warning about ordering
+  * Drop Leap-15.3 from OBS CI
+
+- Update to version 4.6.1681474976.f647990:
+  * Cover all code of `console.pm`
+  * Fix CMake warning about ordering
+  * ci: Improve marking uncoverable statements
+  * Drop Leap-15.3 from OBS CI
+  * ci: Add slash to directories in codecov.yml
+
+- Update to version 4.6.1680543297.d2a0a8b:
+  * ci: Add slash to directories in codecov.yml
+  * container: Provide jq for convenience in downstream jobs
+  * ci: Prevent module clash in code coverage
+  * ci: Fix fully covered codecov paths
+  * Turn around default of script_run, see #1807
+
+- Update to version 4.6.1680454188.7ce59f8:
+  * ci: Prevent module clash in code coverage
+  * ci: Fix fully covered codecov paths
+  * Turn around default of script_run, see #1807
+  * Don't require selected console for wait_serial
+  * testapi.pm: Move function prototype to the top
+
+- Update to version 4.6.1679419381.956c72b:
+  * testapi.pm: Move function prototype to the top
+  * testapi/save_screenshot: Do not act on serial terminal
+  * Update tidy version
+  * Don't set NUMDISKS to the default of 1
+  * Isotovideo/Utils.pm: Fix undefined NUMDISKS for generalhw
+  * Rename foo.pm and bar/baz.pm to more specific names
+
+- Update to version 4.6.1679050790.fe55fab:
+  * Update tidy version
+  * Don't set NUMDISKS to the default of 1
+  * Isotovideo/Utils.pm: Fix undefined NUMDISKS for generalhw
+  * Explicitly specify backingfile format
+  * Fix flaky codecov coverage checks about t/data/tests
+  * Rename foo.pm and bar/baz.pm to more specific names
+
+- Update to version 4.6.1678887116.6d02300:
+  * Don't set NUMDISKS to the default of 1
+  * Isotovideo/Utils.pm: Fix undefined NUMDISKS for generalhw
+  * Explicitly specify backingfile format
+  * Fix flaky codecov coverage checks about t/data/tests
+  * Stream run_cmd output in generalhw backend
+
+- Update to version 4.6.1678302794.ef0676d:
+  * Explicitly specify backingfile format
+  * Fix flaky codecov coverage checks about t/data/tests
+  * Stream run_cmd output in generalhw backend
+  * Rename foo.pm and bar/baz.pm to more specific names
+  * testapi: Remove obsolete "do_wait" argument to "send_key"
+
+- Update to version 4.6.1678267388.ef1258a:
+  * Explicitly specify backingfile format
+  * Fix flaky codecov coverage checks about t/data/tests
+  * Stream run_cmd output in generalhw backend
+  * Use true-or-assign operator
+  * testapi: Remove obsolete "do_wait" argument to "send_key"
+  * Remove deprecated backends after one-year notice
+
+- Update to version 4.6.1677843192.451bff6:
+  * Use true-or-assign operator
+  * Add Enterprise Linux support to the QEMU backend
+  * testapi: Remove obsolete "do_wait" argument to "send_key"
+  * Remove deprecated backends after one-year notice
+  * Fix generalhw cmd log: Show actual cmd and not "IPMI"
+  * Fall back to manual fetch when checking out branch/ref of Git repo
+  * Fix typo in `t/34-git.t`
+  * Format `t/34-git.t` in a more compact way
+
+- Update to version 4.6.1677698531.3c837b1:
+  * Remove deprecated backends after one-year notice
+  * Fix generalhw cmd log: Show actual cmd and not "IPMI"
+  * xt: Mark non-git error as uncoverable
+  * Move isotovideo code for handling shutdown to runner and add tests
+  * Avoid setting misleading reason for handled errors
+
+- Update to version 4.6.1676641030.f996c8e:
+  * Disable test for OCR feature on archs where we lack dependencies
+  * testapi: Fix 'snd2png' call arguments introduced in 264fcd83
+  * Introduce VNC_EXTRA_VARS variable
+  * Fix retry logic for git clone
+  * Turn off commit signing in git tests
+  * Use proper perl "signatures" in testapi
+  * t: Remove unnecessary uncovered mocking in 03-testapi.t
+  * t: Cleanup temporary file from 03-testapi.t at end of test
+  * testapi: Add signatures for various, now test-covered functions
+
+- Update to version 4.6.1676451610.d3d76e5:
+  * testapi: Fix 'snd2png' call arguments introduced in 264fcd83
+  * Introduce VNC_EXTRA_VARS variable
+  * Allow debugging JSON RPC per job
+  * Fix retry logic for git clone
+  * Use proper perl "signatures" in testapi
+  * t: Remove unnecessary uncovered mocking in 03-testapi.t
+  * t: Cleanup temporary file from 03-testapi.t at end of test
+  * testapi: Add signatures for various, now test-covered functions
+
+- Update to version 4.6.1675977373.865ccf1:
+  * Introduce VNC_EXTRA_VARS variable
+  * Allow debugging JSON RPC per job
+  * Fix retry logic for git clone
+  * Turn off commit signing in git tests
+  * sshVirtsh: Show virsh stderr output on virsh start failure
+  * Isotovideo/Interface.pm: Bump interface to 35
+  * backend/qemu.pm: Add virtio_console_user fifo name
+
+- Update to version 4.6.1675863430.39ed46d:
+  * Fix retry logic for git clone
+  * Turn off commit signing in git tests
+  * sshVirtsh: Show virsh stderr output on virsh start failure
+  * Isotovideo/Interface.pm: Bump interface to 35
+  * testapi: Improve wrong call handling in get_test_data
+  * distribution: Use "enter_cmd" where applicable in become_root
+  * backend/qemu.pm: Add virtio_console_user fifo name
+
+- Update to version 4.6.1674646390.61f9e42:
+  * sshVirtsh: Show virsh stderr output on virsh start failure
+  * Isotovideo/Interface.pm: Bump interface to 35
+  * testapi: Improve wrong call handling in get_test_data
+  * distribution: Use "enter_cmd" where applicable in become_root
+  * t: Add call tests for multiple missing testapi functions
+  * backend/qemu.pm: Add virtio_console_user fifo name
+
+- Update to version 4.6.1674226658.ae134c9:
+  * Set tesseract to quiet mode and remove 'stderr_like' checks
+  * Export TESSDATA_PREFIX in check phase of os-autoinst.spec
+  * Avoid shellcheck warnings
+  * tests: Drop unused Test::MockModule
+  * Add ./t to fully covered paths in codecov
+  * Move 18-qemu.t VGA test to suppress unneeded warning
+
+- Update to version 4.6.1672996991.b66759a:
+  * Mark uncoverable statemenst in tests
+  * Mark subroutine header as uncoverable
+  * Rearrange, move use statements
+  * Move loop()
+  * Move _read_response
+  * Move loop(0)
+  * Move setup_signal_handler
+  * Move run method to Runner
+  * Mark uncoverable statements in 04-check_vars_docu.t
+
+- Update to version 4.6.1671527615.519846f:
+  * log: Print PID
+  * Fix uncoverable comments
+  * Add switch to silence tidy
+  * Mark uncoverable branch in 02-test_ocr.t
+  * Add tesseract-ocr to test OCR in CI
+
+- Update to version 4.6.1671186166.693557b:
+  * Fix uncoverable comments
+  * Add switch to silence tidy
+  * Mark uncoverable branch in 02-test_ocr.t
+  * Add tesseract-ocr to test OCR in CI
+  * Update checkout action to v3
+
+- Update to version 4.6.1671027435.2e911c9:
+  * t: Mark fake isotovideo fork as uncoverable
+  * t: Mark errors about missing backend docs as uncoverable
+  * t: Drop unused fake command responses
+  * Add subtest for search_for_expected_serial_failures
+  * Resume directly after failure in case `assert_script_run` fails
+
+- Update to version 4.6.1669996116.7d465c7:
+  * Add subtest for search_for_expected_serial_failures
+  * Resume directly after failure in case `assert_script_run` fails
+  * Show escaped version of keyboard emulator server return
+  * Fix assert_script_sudo invocation
+  * Update pertidy to 20221112
+
+- Update to version 4.6.1669812248.67848c3:
+  * Show escaped version of keyboard emulator server return
+  * Fix assert_script_sudo invocation
+  * Update pertidy to 20221112
+  * Revert "Move backend into CommandHandler as well"
+  * Extend subtest verify_sound_image (t/17-basetest.t)
+  * Extend subtest record_screenmatch (17-basetest.t)
+  * Add subtest for sub rollback_activated_consoles
+  * Resolve IP when appending qemu parameter 'sanhook'
+  * Minor test improvements
+  * Make assert_script_sudo work properly in serial terminal
+
+- Update to version 4.6.1669395975.d36887c:
+  * Extend subtest verify_sound_image (t/17-basetest.t)
+  * Extend subtest record_screenmatch (17-basetest.t)
+  * Add subtest for sub rollback_activated_consoles
+  * Extend documentation for developer mode variables
+  * Allow pausing on failures via developer mode
+  * Add command to pause test execution and allow passing options to resume
+  * Minor test improvements
+  * Make assert_script_sudo work properly in serial terminal
+
+- Update to version 4.6.1669124427.5a76fb8:
+  * Revert WIP commits from "Extend t/17-basetest.t"
+  * Move backend into CommandHandler as well
+  * Move stop_autotest into CommandHandler
+  * Use IPC::Run in Utils
+  * Check for warnings in isotovideo test
+  * Show in developer mode when test is executing the post fail hook
+
+- Update to version 4.6.1669026749.61d5b38:
+  * Remove standstill_detected from basetest.pm
+  * Move stop_autotest into CommandHandler
+  * Simplify basetest run_post_fail call a bit
+  * Use proper perl function to get FQDN
+  * testapi: Try to return sane default in non-qemu host_ip calls
+  * Move loop into CommandHandler
+  * Make blocking mode configurable for pipe
+
+- Update to version 4.6.1668764515.17a0b01:
+  * Move stop_autotest into CommandHandler
+  * Simplify basetest run_post_fail call a bit
+  * Use a codecov upload token
+  * Use proper perl function to get FQDN
+  * Move loop into CommandHandler
+  * Make blocking mode configurable for pipe
+
+- Update to version 4.6.1668597862.2a1886e:
+  * Simplify basetest run_post_fail call a bit
+  * Use a codecov upload token
+  * Use proper perl function to get FQDN
+  * testapi: Try to return sane default in non-qemu host_ip calls
+  * Move loop into CommandHandler
+  * Migrate from codecov action v2 to v3
+
+- Update to version 4.6.1668109069.7a0df62:
+  * Move check_asserted_screen into CommandHandler
+  * Disable merge commit message length check
+  * Don't lessen overall result badness via serial fail autodetect
+  * Move backend process logic into new class
+  * Move debugger logic into Utils
+
+- Update to version 4.6.1667579802.62acb88:
+  * Disable merge commit message length check
+  * Don't lessen overall result badness via serial fail autodetect
+  * Move backend process logic into new class
+  * Move debugger logic into Utils
+  * Add clicktime to click_lastmatch() args
+
+- Update to version 4.6.1667404110.1bb28ec:
+  * Don't lessen overall result badness via serial fail autodetect
+  * Move backend process logic into new class
+  * Move debugger logic into Utils
+  * Add clicktime to click_lastmatch() args
+  * Allow explicit use of SSH agent after 026c93c broke implicit use
+
+- Update to version 4.6.1666985981.c33e9ef:
+  * Move debugger logic into Utils
+  * Add clicktime to click_lastmatch() args
+  * Allow explicit use of SSH agent after 026c93c broke implicit use
+  * Exclude flaky general hardware test on OBS
+  * Consolidate qemu video device setting, deprecate QEMUVGA
+  * testapi: Use signatures for compat_args()
+  * testapi: Optimize compat_args()'s handling of one fixed parameter
+
+- Update to version 4.6.1665498312.7686810:
+  * Add clicktime to click_lastmatch() args
+  * Allow explicit use of SSH agent after 026c93c broke implicit use
+  * Exclude flaky general hardware test on OBS
+  * Consolidate qemu video device setting, deprecate QEMUVGA
+  * testapi: Use signatures for compat_args()
+  * testapi: Optimize compat_args()'s handling of one fixed parameter
+
+- Update to version 4.6.1665391167.89e6727:
+  * Exclude flaky general hardware test on OBS
+  * Consolidate qemu video device setting, deprecate QEMUVGA
+  * t: Add test for mouse_click/dclick/tclick
+  * testapi: Simplify matched variable assignment in wait_serial
+  * testapi: Simplify args handling in type_string
+  * testapi: Align signatures of mouse_tclick to mouse_click/mouse_dclick
+  * testapi: Use signatures for compat_args()
+  * testapi: Optimize compat_args()'s handling of one fixed parameter
+
+- Update to version 4.6.1664893395.3e0c5db:
+  * Consolidate qemu video device setting, deprecate QEMUVGA
+  * t: Add test for mouse_click/dclick/tclick
+  * testapi: Simplify matched variable assignment in wait_serial
+  * testapi: Simplify args handling in type_string
+  * testapi: Align signatures of mouse_tclick to mouse_click/mouse_dclick
+  * Simplify some code in testapi
+  * Extend tests of IKVM backend
+  * Fix use of interpolation in error message of IPMI backend
+
+- Update to version 4.6.1664522064.8df8ac9:
+  * Avoid mentioning backend files explicitly in codecov config
+  * Add files that are now fully covered to the list in codecov config
+  * Fix missing quotes output in vmx file
+  * Extend tests of IKVM backend
+  * Fix use of interpolation in error message of IPMI backend
+  * Cover `qemu.pm` fully and improve checks for invoked commands
+
+- Update to version 4.6.1664296060.b33e5b8:
+  * Cover error case when invoking QEMU cmd `blockdev-snapshot-sync`
+  * Cover remaining QEMU startup code
+  * Fix typo in QEMU backend tests
+  * Test further special cases when starting QEMU
+  * Improve error handling when starting sub process in QEMU backend
+  * Test special cases when starting QEMU or mark lines as uncoverable
+  * Test remaining special cases when handling QMP command
+  * Dynamically obtain vmware datastore
+
+- Update to version 4.6.1663935216.436f134:
+  * Prevent stalebot from closing stale issues
+  * Clarify test fail message to distinguish errors
+  * Bump API version for recent validate_script_output changes
+  * Improve performance of `wait_still_screen`
+  * Slightly simplify autotest
+  * Log HTTP response in VMWare test
+  * Ensure the VMWare test is using one event loop instance consistently
+  * Log the used underlying reactor in VMWare test
+  * Improve error handling of open/read calls in dewebsockify test
+  * Simplify `t/27-consoles-vmware.t`
+  * Extend unit tests of general hardware backend
+  * Extend tests for s390x backend
+  * Avoid adding multiple QEMU graphic backends on ARM
+  * Test setting the QEMU graphics backend (depnding on `QEMUVGA`)
+  * Fix resolution with default graphics backend on new QEMU versions
+  * Fix resolution with virtio backend on new QEMU versions
+  * Tune default similarity level for `wait_screen_change` when typing
+  * Prevent buffered output when running Perl testsuite
+  * Speed up `type_string` calls with `wait_screen_change` parameter
+  * Support `no_wait` option in `wait_screen_change`
+
+- Update to version 4.6.1663745179.57e1160:
+  * Improve validate_script_output for clarity
+  * Slightly simplify autotest
+  * Log HTTP response in VMWare test
+  * Ensure the VMWare test is using one event loop instance consistently
+  * Log the used underlying reactor in VMWare test
+  * Extend unit tests of general hardware backend
+  * Avoid adding multiple QEMU graphic backends on ARM
+  * Test setting the QEMU graphics backend (depnding on `QEMUVGA`)
+  * Fix resolution with default graphics backend on new QEMU versions
+  * Fix resolution with virtio backend on new QEMU versions
+
+- Update to version 4.6.1663323740.d1930d4:
+  * Slightly simplify autotest
+  * Extend unit tests of general hardware backend
+  * Avoid adding multiple QEMU graphic backends on ARM
+  * Test setting the QEMU graphics backend (depnding on `QEMUVGA`)
+  * Fix resolution with default graphics backend on new QEMU versions
+  * Fix resolution with virtio backend on new QEMU versions
+
+- Update to version 4.6.1662625276.a9cb3fd:
+  * Extend tests of IPMI backend or mark lines as uncoverable
+  * Fix overriding die-handler in IPMI backend
+  * Move loop to wait for screen change from autotest to backend
+  * Disable VMWare test for all archs as it is generally unstable
+  * Make lowercase settings fatal
+  * Extend unit tests of backend driver
+
+- Update to version 4.6.1662465492.44da018:
+  * Disable VMWare test for all archs as it is generally unstable
+  * Make lowercase settings fatal
+  * Extend unit tests of backend driver
+  * tools/container_run_ci: Call bash instead of sh
+  * t: Quit early on zypper failure
+  * Avoid problems with `baseclass.pm` test in OBS
+  * Add test for case when new screenshot is very similar to last
+  * Add tests for child process handling of baseclass
+  * Extend tests of SSH handling in baseclass
+  * Add tests for certain special cases in `baseclass.pm`
+  * Extend unit tests of `baseclass.pm`
+  * Add missing use in `baseclass.pm`
+
+- Update to version 4.6.1662114056.d3ebb59:
+  * tools/container_run_ci: Call bash instead of sh
+  * t: Quit early on zypper failure
+  * tools/tidy: Do not overwrite path to root dir
+  * Avoid problems with `baseclass.pm` test in OBS
+  * Add test for case when new screenshot is very similar to last
+  * Add tests for child process handling of baseclass
+  * Extend tests of SSH handling in baseclass
+  * Add tests for certain special cases in `baseclass.pm`
+
+- Update to version 4.6.1661858178.a6c1811:
+  * Fix nr. of keys sent in send_key_until_needlematch
+  * Improve dewebsockify test
+  * Add test for empty password
+  * Check if SSH password is defined explicitly
+  * testapi: Allow forcing worker ip in autoinst_url()
+
+- Update to version 4.6.1661770536.d8c6a21:
+  * Improve dewebsockify test
+  * Add test for empty password
+  * Check if SSH password is defined explicitly
+  * testapi: Allow forcing worker ip in autoinst_url()
+  * Mark certain statements in baseclass as uncoverable
+  * Test `wait_serial` when it is a serial terminal
+
+- Update to version 4.6.1661423925.9ac2f89:
+  * Add test for empty password
+  * Check if SSH password is defined explicitly
+  * testapi: Allow forcing worker ip in autoinst_url()
+  * Mark certain statements in baseclass as uncoverable
+  * Test `wait_serial` when it is a serial terminal
+  * Test bouncer functions of baseclass
+  * Test console functions of baseclass
+
+- Update to version 4.6.1661348972.dc704b7:
+  * testapi: Allow forcing worker ip in autoinst_url()
+  * Mark certain statements in baseclass as uncoverable
+  * Test `wait_serial` when it is a serial terminal
+  * Test bouncer functions of baseclass
+  * Test console functions of baseclass
+  * Test enqueuing data for external video encoder
+  * Avoid division by zero when making stopwatch-summary
+  * Remove "alive" check from isotovideo/backend
+
+- Update to version 4.6.1661179507.eb3f483:
+  * Mark certain statements in baseclass as uncoverable
+  * Test `wait_serial` when it is a serial terminal
+  * Test bouncer functions of baseclass
+  * Test console functions of baseclass
+  * Test enqueuing data for external video encoder
+  * Avoid division by zero when making stopwatch-summary
+  * Remove "alive" check from isotovideo/backend
+  * Test starting external video encoder
+  * Test `do_capture` via `run_capture_loop` to cover its code as well
+
+- Update to version 4.6.1660819728.515dc27:
+  * Add tests for so far uncovered corner cases in capture loop
+  * Package HP Elitebook 820G1 dmidata
+  * tools: Exclude unreliable t/data/tests/tests from coverage
+  * tools: Remove redundant 'select' for codecov
+  * Implement QEMU backend support for arbitrary CPU topology
+
+- Update to version 4.6.1660650761.bd747b4:
+  * Package HP Elitebook 820G1 dmidata
+  * tools: Exclude unreliable t/data/tests/tests from coverage
+  * tools: Remove redundant 'select' for codecov
+  * Implement QEMU backend support for arbitrary CPU topology
+  * Laptop: switch laptop hardware to HP EliteBook 820 G1 model
+
+- Update to version 4.6.1660580448.e31c80d:
+  * tools: Exclude unreliable t/data/tests/tests from coverage
+  * tools: Remove redundant 'select' for codecov
+  * Implement QEMU backend support for arbitrary CPU topology
+  * Implement --color switch on the command-line
+  * Add capability to start vmware VMs with cloud init data
+  * Bump the isotovideo interface number
+  * Add a unit test for send_key_until_needlematch
+  * send_key_until_needlematch: Avoid timeout in the first iteration
+
+- Update to version 4.6.1660317963.5a74501:
+  * Implement QEMU backend support for arbitrary CPU topology
+  * Implement --color switch on the command-line
+  * spec: Only exclude 27-consoles-vmware on ppc64le
+  * spec: Exclude t/27-consoles-vmware.t on OBS
+  * Fix CPUs assignment in QEMU 6.20
+  * Bump the isotovideo interface number
+  * Add a unit test for send_key_until_needlematch
+  * send_key_until_needlematch: Avoid timeout in the first iteration
+
+- Update to version 4.6.1660125909.67bf60f:
+  * Implement --color switch on the command-line
+  * spec: Only exclude 27-consoles-vmware on ppc64le
+  * spec: Exclude t/27-consoles-vmware.t on OBS
+  * Add capability to start vmware VMs with cloud init data
+  * Bump the isotovideo interface number
+  * Add a unit test for send_key_until_needlematch
+  * send_key_until_needlematch: Avoid timeout in the first iteration
+
+- Update to version 4.6.1659623026.7aaa3d1:
+  * spec: Only exclude 27-consoles-vmware on ppc64le
+  * spec: Exclude t/27-consoles-vmware.t on OBS
+  * Fix CPUs assignment in QEMU 6.20
+  * t: Remove useless rmtree
+  * wheels: Pick up Perl modules and tests
+
+- Update to version 4.6.1659553242.de857e0:
+  * spec: Exclude t/27-consoles-vmware.t on OBS
+  * Fix CPUs assignment in QEMU 6.20
+  * t: Remove useless rmtree
+  * wheels: Pick up Perl modules and tests
+  * Make DISCARD inside SUT unmap blocks in qcow2 file
+
+- Update to version 4.6.1659356059.2610c33:
+  * t: Remove useless rmtree
+  * wheels: Pick up Perl modules and tests
+  * Fix re-connecting via VNC over WebSockets
+  * Make DISCARD inside SUT unmap blocks in qcow2 file
+  * End color escape sequences at the end of the line
+
+- Update to version 4.6.1659175884.1aca550:
+  * Fix re-connecting via VNC over WebSockets
+  * End color escape sequences at the end of the line
+  * Allow insecure VNC over WebSockets connections only if configured
+  * Add test for `vnctest` script
+  * Fix race condition in dewebsockify test
+  * Adapt spec file to include new scripts for VNC over WebSockets
+  * Test further code paths of VMWare/WebSockets related code
+
+- Update to version 4.6.1658780871.1a85ca4:
+  * End color escape sequences at the end of the line
+  * Allow insecure VNC over WebSockets connections only if configured
+  * Add test for `vnctest` script
+  * Fix race condition in dewebsockify test
+  * Adapt spec file to include new scripts for VNC over WebSockets
+  * Test further code paths of VMWare/WebSockets related code
+  * Fix error handling when launching VNC server to eventually die
+  * Enable VNC over WebSockets only for the connection to the virsh guest
+
+- Update to version 4.6.1658311695.1bd05bc:
+  * Allow insecure VNC over WebSockets connections only if configured
+  * Add test for `vnctest` script
+  * Fix race condition in dewebsockify test
+  * Adapt spec file to include new scripts for VNC over WebSockets
+  * Test further code paths of VMWare/WebSockets related code
+  * Fix error handling when launching VNC server to eventually die
+  * Enable VNC over WebSockets only for the connection to the virsh guest
+  * Add basic unit test for dewebsockify
+  * Deduce URL for VMWare VNC over WebSockets from test variables
+
+- Update to version 4.6.1658158082.102b55e:
+  * Remove deprecated specifier
+  * container: Fix missing 'useradd' in newer distributions
+  * Stop showing ipmi password in error ouput
+  * container: Add testing dedicated privilege-drop user
+  * Document testing svirt/VMWare using local virsh client
+
+- Update to version 4.6.1657896031.dcf12d0:
+  * Use opencv4 on Leap 15.4
+  * Switch development base back to Tumbleweed assuming problems are fixed
+  * Simplify git path handling further
+  * Fix git version readout for symlinked directories
+  * Ensure the directory in git_rev_parse is absolute
+
+- Update to version 4.6.1657546751.7d61873:
+  * README: Fix origin story
+  * README: Add origin story of os-autoinst
+  * t: Increase timeout for scripts
+  * Increase timeout for local VNC connections to prevent incompletes
+  * Prevent passwords leaked to log by redundant log-message
+
+- Update to version 4.6.1657278379.0bbf325:
+  * Prevent passwords leaked to log by redundant log-message
+  * t: Fix double slash in casedir path
+  * t: Add test for OpenQA::Isotovideo::Utils::_store_asset
+  * Fix error from stricter git permission checks
+  * Support .git-files as well
+  * Combine git version readout function
+  * Use proper SPDX-License header for crop
+
+- Update to version 4.6.1657110724.7ae418c:
+  * Use proper SPDX-License header for crop
+  * Update tidy to 20220613
+  * testapi: Fix use of invalid option wait_screen_changes
+  * ci: Mark OpenQA directory as fully covered
+  * ci: Fully cover OpenQA::Qemu::Proc
+
+- Update to version 4.6.1656950580.7f3d9ea:
+  * testapi: Fix use of invalid option wait_screen_changes
+  * ci: Mark OpenQA directory as fully covered
+  * ci: Fully cover OpenQA::Qemu::Proc
+  * Remove unused variables in VNC code
+  * Remove unused method gen_runfile
+
+- Update to version 4.6.1656323984.78d30a2:
+  * ci: Mark OpenQA directory as fully covered
+  * ci: Fully cover OpenQA::Qemu::Proc
+  * Remove unused variables in VNC code
+  * Remove unused method gen_runfile
+  * Remove unused method gen_qemu_img_commit
+
+- Update to version 4.6.1656152564.8735fa2:
+  * ci: Fully cover OpenQA::Qemu::Proc
+  * Remove unused variables in VNC code
+  * Remove unused method gen_runfile
+  * Remove unused method gen_qemu_img_commit
+  * ci: Cover OpenQA::Qemu::MutParams
+
+- Update to version 4.6.1656071262.52a4665:
+  * Remove unused variables in VNC code
+  * Remove unused method gen_runfile
+  * Remove unused method gen_qemu_img_commit
+  * ci: Cover CARP_TRACE methods
+  * ci: Cover OpenQA::Qemu::MutParams
+
+- Update to version 4.6.1655790189.d6cebcd:
+  * Fix using little-endian VNC server on big-endian
+  * Revert "Fix endian conversion in VNC code for s390x/ppc64"
+  * Fix endian conversion in VNC code for s390x/ppc64
+  * ci: Cover OpenQA::Isotovideo::CommandHandler
+  * ci: Also test Leap 15.4 in OBS
+
+- Update to version 4.6.1655481409.ddf414b:
+  * Fix endian conversion in VNC code for s390x/ppc64
+  * ci: Cover OpenQA::Isotovideo::CommandHandler
+  * Cover OpenQA::Commands completely
+  * ci: Also test Leap 15.4 in OBS
+  * Fix HTML Devel::Cover report
+
+- Update to version 4.6.1655453312.bf5e2df:
+  * Cover OpenQA::Commands completely
+  * ci: Also test Leap 15.4 in OBS
+  * Fix HTML Devel::Cover report
+  * Fix `t/18-qemu-options.t` on newer QEMU versions
+  * Add general recommendations and s390x specific details to backend docs
+
+- Update to version 4.6.1655298846.b80c956:
+  * Fix `t/18-qemu-options.t` on newer QEMU versions
+  * Add general recommendations and s390x specific details to backend docs
+  * Link the backend-specific documentation from the main README file
+  * Update documentation of default value of QEMUVGA
+  * Allow running tests (invoking isotovideo) without Git
+
+- Update to version 4.6.1654845865.16d96d7:
+  * Simplify testapi methods _is_valid_result and match_has_tag
+  * Simplify testapi::check_var
+  * Use proper perl "signatures" in most of testapi
+  * t: Add test for testapi::x11_start_program
+  * t: Add test for set_var, get_var_array, check_var_array
+  * t: Add test for testapi::force_soft_failure
+  * t: Add test for testapi::init
+  * qemu: stop hard-coding resolution for PPC/ SPARC
+
+- Update to version 4.6.1654632693.a8e87a5:
+  * Fix perl 5.36 warnings on use of @_ in functions with signature
+  * Canonicalize path in @INC
+  * ci: Run tests from toplevel directory
+  * Add --workdir option to isotovideo
+  * ci: Upload coverage HTML as an artifact
+  * Use combined operators
+
+- Update to version 4.6.1654271985.8742f99:
+  * Canonicalize path in @INC
+  * ci: Run tests from toplevel directory
+  * Add --workdir option to isotovideo
+  * ci: Upload coverage HTML as an artifact
+  * Use combined operators
+  * Pass -x and -y as array arguments
+
+- Update to version 4.6.1654172370.feb899d:
+  * ci: Upload coverage HTML as an artifact
+  * Use combined operators
+  * Pass -x and -y as array arguments
+  * Make xres and yres class variables
+  * Add XRES and YRES docs to correct places
+  * Address code review comments
+
+- Update to version 4.6.1654018695.5972f50:
+  * Use combined operators
+  * Pass -x and -y as array arguments
+  * Make xres and yres class variables
+  * Add XRES and YRES docs to correct places
+  * Address code review comments
+  * Move docs to correct section
+  * Allow videoencoder to use custom resolution
+
+- Update to version 4.6.1653078548.548335f:
+  * Enable the use of Perl "signatures" in testapi
+  * Fix finding `git` in build script
+  * Avoid Git error in installed version of os-autoinst
+  * Add basic unit tests for backend svirt
+  * Small fixes for svirt backend and removal of HDDFORMAT check
+  * Remove 'HDDFORMAT' from backendvars
+  * Only load snapshots if there is actually a next module
+
+- Update to version 4.6.1653037748.75eb1b1:
+  * Add basic unit tests for backend svirt
+  * Small fixes for svirt backend and removal of HDDFORMAT check
+  * Improve error feedback for non-existant CASEDIR
+  * t: Add simple test coverage for some baseclass subs
+  * Simplify baseclass a bit
+  * Improve socket check die messages
+  * Delete disabled code in backend::amt
+  * Remove 'HDDFORMAT' from backendvars
+
+- Update to version 4.6.1652795155.981fd51:
+  * Make code for setting VNC timeout portable
+  * Apply VNC timeout also for reading/writing
+  * Avoid backend from being stuck on broken VNC connections for too long
+  * Improve code for parsing raw VNC encoding
+  * Simplify/improve error handling in `update_framebuffer`
+  * Enforce using signatures everywhere (with exceptions marked)
+  * Use signatures in OpenQA::Benchmark::Stopwatch completely
+  * Add unit test for `wait_screen_change`
+
+- Update to version 4.6.1652444983.2156ecc:
+  * Improve code for parsing raw VNC encoding
+  * Fix signature for `post_fail_hook` in basetest
+  * Fix signature for log::diag
+  * Allow additional arguments to basetest methods
+  * Add all missing function signatures except testapi
+
+- Update to version 4.6.1652368455.bfce006:
+  * Fix signature for log::diag
+  * Allow additional arguments to basetest methods
+  * Add all missing function signatures except testapi
+  * Use signatures in some in-place definitions as well
+  * Use more signatures in some places where missing
+  * Use signatures in log.pm
+  * doc: Use signatures in memorydumps.asciidoc Perl example
+
+- Update to version 4.6.1652179270.790b61c:
+  * VNC console: Test more types of messages and encodings
+  * VNC console: Add comments for certain magic numbers
+  * VNC console: Test receiving color map
+  * VNC console: Test cutting text
+  * VNC console: Test security handshake
+  * VNC console: Remove unreachable die and test changing RFB version
+  * VNC console: Test updating frame buffer
+  * Simplify quote subroutine in osutils
+  * Use proper perl "signatures" in common files - osutils
+
+- Update to version 4.6.1651738707.516ced4:
+  * VNC console: Test sending pointer events
+  * Use proper perl "signatures" in common files - commands
+  * Add perl-Template-Toolkit to dependencies for devel
+  * Extend svirt documentation
+  * consoles::video-stream: Increase pipe size for ffmpeg
+
+- Update to version 4.6.1651587009.a2fc74e:
+  * Add perl-Template-Toolkit to dependencies for devel
+  * Extend svirt documentation
+  * consoles::video-stream: Increase pipe size for ffmpeg
+  * consoles::video-stream: Fix race on SUT quickly changing resolution
+  * Use log functions directly in isotovideo
+  * Simplify isotovideo with Mojo::File
+
+- Update to version 4.6.1651143156.4d81dfa:
+  * Use log functions directly in isotovideo
+  * Simplify isotovideo with Mojo::File
+  * Use more signatures in isotovideo
+  * Move import statements to top in isotovideo
+  * Downgrade libslirp0 in CI env to fix network in SUT
+  * Document dependency for using `QEMU_ENABLE_SMBD=1`
+
+- Update to version 4.6.1650611277.d0e275b8:
+  * Fix consoles::serial_screen:request_screen_update signatures
+  * Ignore external/ directory for tidy
+  * Use OpenQA::Test::PatchDeparse to avoid warnings
+  * git subrepo pull (merge) external/os-autoinst-common
+  * Sync tools/tidy with openQA
+  * t: Add unit test for consoles::amtSol
+  * t: Add test for consoles::sshVirtshSUT
+  * t: Add unit test for consoles::network_console
+  * Enlarge visible windows only in fullscreen method
+
+- Update to version 4.6.1650546937.fd12334c:
+  * Ignore external/ directory for tidy
+  * Use OpenQA::Test::PatchDeparse to avoid warnings
+  * git subrepo pull (merge) external/os-autoinst-common
+  * Sync tools/tidy with openQA
+  * t: Add unit test for consoles::amtSol
+  * t: Add test for consoles::sshVirtshSUT
+  * t: Add unit test for consoles::network_console
+  * Use signatures in most of backend/ and consoles/ as possible
+  * Enlarge visible windows only in fullscreen method
+
+- Update to version 4.6.1650200290.89b7f088:
+  * Correct croak on type_string with wrong function name
+  * Fix potentially missing parameters on mutex_wait
+  * Use proper perl "signatures" in common files - lockapi
+  * Use proper perl "signatures" in common files - ppmclibs
+  * Use proper perl "signatures" in common files - mmapi
+  * t: Mock log functions to avoid capture problems
+  * Remove unnecessary but potentially racy signalblocker log lines
+  * Use proper perl "signatures" in common files - bmwqemu
+  * Ensure consistent signature styling
+
+- Update to version 4.6.1649758034.966cfef9:
+  * Fix potentially missing parameters on mutex_wait
+  * Use proper perl "signatures" in common files - lockapi
+  * Use proper perl "signatures" in common files - ppmclibs
+  * Use proper perl "signatures" in common files - mmapi
+  * t: Mock log functions to avoid capture problems
+  * Remove unnecessary but potentially racy signalblocker log lines
+  * Use proper perl "signatures" in common files - bmwqemu
+  * Ensure consistent signature styling
+  * Use proper perl "signatures" in common files - autotest
+
+- Update to version 4.6.1649418021.dbe823dc:
+  * Ensure consistent signature styling
+  * Use proper perl "signatures" in common files - autotest
+  * Use proper perl "signatures" in common files - basetest
+  * Use proper perl "signatures" in common files - cv
+  * Call make update-deps
+  * git subrepo pull (merge) external/os-autoinst-common
+  * Add check to ensure fully covered files stay at 100 % coverage
+  * Fix missing coverage in consoles/virtio_terminal.pm
+  * Use proper perl "signatures" in common files - needle
+  * Provide virtio RNG by default by changing QEMU_VIRTIO_RNG default to 1
+
+- Update to version 4.6.1649341166.907d2f25:
+  * Use proper perl "signatures" in common files - autotest
+  * Use proper perl "signatures" in common files - basetest
+  * Use proper perl "signatures" in common files - cv
+  * Call make update-deps
+  * git subrepo pull (merge) external/os-autoinst-common
+  * Add check to ensure fully covered files stay at 100 % coverage
+  * Fix missing coverage in consoles/virtio_terminal.pm
+  * Speedup t/10-virtio_terminal.t
+  * Use proper perl "signatures" in common files - needle
+  * Provide virtio RNG by default by changing QEMU_VIRTIO_RNG default to 1
+
+- Update to version 4.6.1649148610.29f5bfd8:
+  * Add check to ensure fully covered files stay at 100 % coverage
+  * Fix missing coverage in consoles/virtio_terminal.pm
+  * Speedup t/10-virtio_terminal.t
+  * Rely on signatures for get/set_snapshot in virtio_console
+  * Use consistent signatures in consoles::virtio_terminal.pm
+  * Update tidy to 20220217
+  * Mark uncoverable line in 10-virtio_terminal.t as such
+  * t: Reduce runtime of 18-qemu-options.t by doing less QEMU_APPEND checks
+
+- Update to version 4.6.1648754972.aa0153e1:
+  * Change test to not buffer log output
+  * Change test not to rely on a race condition
+  * Avoid command server uploads from running out of space
+  * Add explicit test for `set_pipe_sz()` to ensure stable test coverage
+  * Hide secrets in all log_call invocations
+  * Write command processing tests in a more compact style
+  * Do not require additional command to pause on a test module
+  * Avoid JSON::PP::Boolean warnings
+
+- Update to version 4.6.1648546456.43990702:
+  * Avoid JSON::PP::Boolean warnings
+  * Add unit test for save_tmp_file
+  * Reuse Mojo::Base for instantiating driver objects
+  * Switch to the new log module
+  * Add test for isotovideo exit status
+  * Fix a bug where the collected event was registered too late
+  * testapi: Return name of saved file in save_tmp_file
+  * Print concrete error message when limit in command server is exceeded
+  * Remove limit for uploads via the command server
+
+- Update to version 4.6.1648231888.efaf5f44:
+  * Reuse Mojo::Base for instantiating driver objects
+  * Switch to the new log module
+  * Add test for isotovideo exit status
+  * Fix a bug where the collected event was registered too late
+  * Print concrete error message when limit in command server is exceeded
+  * Remove limit for uploads via the command server
+  * Fix qemu test to actually wait for the process to be stopped
+  * Fix return value of set_assert_screen_timeout
+  * Fix typo for read_until
+  * Fix serialization error introduced by 7be44a78
+
+- Update to version 4.6.1648043830.be0fdb95:
+  * Print concrete error message when limit in command server is exceeded
+  * Remove limit for uploads via the command server
+  * Fix qemu test to actually wait for the process to be stopped
+  * Fix return value of set_assert_screen_timeout
+  * Fix typo for read_until
+  * Fix serialization error introduced by 7be44a78
+  * Add checks for initialization of `consoles::VNC` accessors from args
+  * Avoid warnings about redefinition of `has`
+  * Reduce pipe size in test to make coverage less flaky
+
+- Update to version 4.6.1647710532.fe0bf80d:
+  * Fix return value of set_assert_screen_timeout
+  * Fix typo for read_until
+  * Fix serialization error introduced by 7be44a78
+  * Add checks for initialization of `consoles::VNC` accessors from args
+  * Avoid warnings about redefinition of `has`
+  * Increase default VNC timeout for remote connections
+  * Reduce pipe size in test to make coverage less flaky
+  * myjsonrpc: Don't limit how often select may return EINTR
+
+- Update to version 4.6.1647448515.d9b79947:
+  * Fix serialization error introduced by 7be44a78
+  * Add checks for initialization of `consoles::VNC` accessors from args
+  * Avoid warnings about redefinition of `has`
+  * Increase default VNC timeout for remote connections
+  * Reduce pipe size in test to make coverage less flaky
+  * myjsonrpc: Don't limit how often select may return EINTR
+  * Use proper perl "signatures" in common files - distribution
+  * backend: Harden hyperv|vmware regex vmm family check
+  * backend::svirt: Extract methods _is_hyperv/_is_vmware
+  * backend::svirt: Extract method _vmm_family
+
+- Update to version 4.6.1646895108.0c834255:
+  * Simplify '$next_test' assignment in autotest
+  * Record info in next test module after loading snapshot
+  * Add error handling for uninitialized isotovideo socket
+  * xt: Ensure all perl files using Mojo::Base as best practice
+  * Use Mojo::Base in autotest as well
+  * t: Ensure to show exception details when python test modules fail
+  * Delete whitespace at end-of-line in all applicable files
+  * Fix off-by-one error in color calculation
+  * Simplify consoles::VNC
+
+- Update to version 4.6.1646659002.ff0946af:
+  * Fix off-by-one error in color calculation
+  * Simplify consoles::VNC
+  * Cleanup tpm*.permall before creating sock file
+  * Simplify usage check in check_qemu_oom
+  * Align isotovideo 'usage' method to others
+  * t: Refactor 03-testapi.t
+  * Add proper command line parsing for all scripts
+  * Add proper header to os-autoinst-openvswitch
+  * testapi: Fix validate_script_output() argument parsing
+
+- Update to version 4.6.1646420056.628a380c:
+  * Cleanup tpm*.permall before creating sock file
+  * t: Refactor 03-testapi.t
+  * Add proper command line parsing for all scripts
+  * Add proper header to os-autoinst-openvswitch
+  * Add dependency for crop.py
+  * Remove obsolete python2 support in crop.py
+  * Remove obsolete autogen.sh
+  * Fix condition in script `check_qemu_oom`
+  * testapi: Fix validate_script_output() argument parsing
+
+- Update to version 4.6.1646240746.8eee6a61:
+  * Add proper command line parsing for all scripts
+  * Add proper header to os-autoinst-openvswitch
+  * Add dependency for crop.py
+  * Remove obsolete python2 support in crop.py
+  * Remove obsolete autogen.sh
+  * Fix condition in script `check_qemu_oom`
+  * Fix language in check_needles.pl
+  * Simplify common scripts
+  * Use proper perl "signatures" in common script files
+  * t: Also prevent git-related problems in 14-isotovideo and 30-make
+
+- Update to version 4.6.1646045612.c69906cf:
+  * Fix language in check_needles.pl
+  * Simplify common scripts
+  * Use proper perl "signatures" in common script files
+  * t: Use more 'enter_cmd' where it simplifies things
+  * t: Also prevent git-related problems in 14-isotovideo and 30-make
+  * ci: Provide manual dispatch for openQA fullstack test
+  * fullstack: Address die_on_timeout deprecation messages with script_run
+  * Fix flaky poweroff in openQA full stack tests
+
+- Update to version 4.6.1645893162.2162e9e2:
+  * t: Use more 'enter_cmd' where it simplifies things
+  * t: Also prevent git-related problems in 14-isotovideo and 30-make
+  * ci: Provide manual dispatch for openQA fullstack test
+  * fullstack: Address die_on_timeout deprecation messages with script_run
+  * Fix flaky poweroff in openQA full stack tests
+  * t: Add video-console testing with generalhw backend
+  * t: Add video_stream console tests
+  * generalhw: Add GENERAL_HW_IMAGE_CMD
+
+- Update to version 4.6.1645700100.d410cc0d:
+  * ci: Provide manual dispatch for openQA fullstack test
+  * fullstack: Address die_on_timeout deprecation messages with script_run
+  * Fix flaky poweroff in openQA full stack tests
+  * t: Add video-console testing with generalhw backend
+  * t: Add video_stream console tests
+  * generalhw: Add GENERAL_HW_IMAGE_CMD
+  * generalhw: Wrap GENERAL_HW_ARG_VARIABLES_BY_CMD
+  * Add stall detection to video-stream console
+  * Add support for v4l2 device as an input to video-stream console
+
+- Update to version 4.6.1645215388.05525341:
+  * t: Add test for actual die of deprecated backends
+  * Extract deprecation function to baseclass
+  * Deprecate likely unused backend::ikvm
+  * Use the new fatal dependency handling for backend::pvm
+  * Use the new fatal deprecation handling for backend::amt
+  * README: Include suggestion for deprecation handling
+  * Fix YAML style check on checklist.yml
+  * CI: Add automatic review checklist based on changed file paths
+  * Avoid warning because of missing second argument
+  * Use Mojo::Base consistently
+
+- Update to version 4.6.1644598050.d3b51b29:
+  * Fix default VNC connect timeout
+  * Allow network cable to be unplugged
+  * Make open_pipe tests more portable
+  * Test set_pipe_sz consistently with every run
+  * Avoid non-incremental screen updates in `localXvnc` console
+  * Adjust mergify config for new OBS checks
+  * Use proper perl "signatures" in consoles::VNC
+
+- Update to version 4.6.1644498177.fa8ce0fe:
+  * Make open_pipe tests more portable
+  * Test set_pipe_sz consistently with every run
+  * Avoid non-incremental screen updates in `localXvnc` console
+  * Adjust mergify config for new OBS checks
+  * Fix sporadic failures in openQA's fullstack test
+  * Use proper perl "signatures" in consoles::VNC
+  * Adapt configure_repositories step in OBS workflow
+
+- Update to version 4.6.1644251702.a663af4a:
+  * Avoid non-incremental screen updates in `localXvnc` console
+  * Adjust mergify config for new OBS checks
+  * Fix sporadic failures in openQA's fullstack test
+  * Adapt configure_repositories step in OBS workflow
+  * Add unit test for requesting full screen updates when checking screen
+  * Speed up `t/23-baseclass.t` using `Time::Mock::Time`
+  * Avoid division by zero when computing stopwatch data
+  * Fix include of extension-less perl files in tidy config
+  * Tidy tools/check_coverage according to new os-autoinst rules
+  * git subrepo pull (merge) external/os-autoinst-common
+
+- Update to version 4.6.1643736149.ab6013d7:
+  * Fix sporadic failures in openQA's fullstack test
+  * Adapt configure_repositories step in OBS workflow
+  * Add unit test for requesting full screen updates when checking screen
+  * Speed up `t/23-baseclass.t` using `Time::Mock::Time`
+  * Avoid division by zero when computing stopwatch data
+  * Force full screen update in intervals similar to full screen search
+  * Force full screen update shortly before check screen would fail
+  * Simplify initialization of variables in `check_asserted_screen`
+  * Fix include of extension-less perl files in tidy config
+  * Tidy tools/check_coverage according to new os-autoinst rules
+  * git subrepo pull (merge) external/os-autoinst-common
+
+- Update to version 4.6.1643647733.c2de822c:
+  * Add unit test for requesting full screen updates when checking screen
+  * Speed up `t/23-baseclass.t` using `Time::Mock::Time`
+  * Avoid division by zero when computing stopwatch data
+  * Force full screen update in intervals similar to full screen search
+  * Force full screen update shortly before check screen would fail
+  * Simplify initialization of variables in `check_asserted_screen`
+  * Revert "svirt: Implement do_extract_assets"
+  * Revert "svirt: Store vmname early for use after test run"
+  * Fix include of extension-less perl files in tidy config
+
+- Update to version 4.6.1643373757.e32e527c:
+  * Revert "svirt: Implement do_extract_assets"
+  * Revert "svirt: Store vmname early for use after test run"
+  * svirt: Store vmname early for use after test run
+  * Run openQA full-stack test as part of os-autoinst CI tests
+  * Add new variables in backend/generalhw.pm
+  * svirt: Implement do_extract_assets
+
+- Update to version 4.6.1643273407.65ca16b7:
+  * svirt: Store vmname early for use after test run
+  * Run openQA full-stack test as part of os-autoinst CI tests
+  * Add new variables in backend/generalhw.pm
+  * Add simple test for backend::ikvm
+  * svirt: Implement do_extract_assets
+
+- Update to version 4.6.1643061641.d319802b:
+  * Continue further checks in fullstack test after one fails
+  * Add OBS workflow
+  * Simplify base inheritance statement with Mojo::Base everywhere
+  * Exclude 29-backend-driver.t from OBS checks
+  * Simplify string concatenation in log.pm
+  * Extract all log functions into new module "log"
+  * Add test for defining/starting VM via VMware in svirt backend
+  * Add test for generating XML file with UEFI loader in svirt backend
+  * Use tidyall for faster tidying
+  * Fix single, unnecessary UTF8 character in consoles::VNC
+  * git subrepo pull (merge) external/os-autoinst-common
+
+- Update to version 4.6.1642780089.7ef72e20:
+  * Simplify base inheritance statement with Mojo::Base everywhere
+  * Exclude 29-backend-driver.t from OBS checks
+  * Simplify string concatenation in log.pm
+  * Extract all log functions into new module "log"
+  * Remove unused function consoles::VNC::_bin_int
+  * Add test for defining/starting VM via VMware in svirt backend
+  * Use tidyall for faster tidying
+  * Fix single, unnecessary UTF8 character in consoles::VNC
+  * git subrepo pull (merge) external/os-autoinst-common
+
+- Update to version 4.6.1642697070.a9af3880:
+  * Exclude 29-backend-driver.t from OBS checks
+  * Simplify string concatenation in log.pm
+  * Extract all log functions into new module "log"
+  * Remove unused function consoles::VNC::_bin_int
+  * Add test for defining/starting VM via VMware in svirt backend
+  * Add test for generating XML file with UEFI loader in svirt backend
+  * Fix wrong operator precedence introduced by 54d514df79fa1
+  * Fix wrong condition in SSH virsh console introduced by 54d514df79fa1
+
+- Update to version 4.6.1642494095.69489cc2:
+  * Fix missing parameter for consoles::vnc_base::get_last_mouse_set
+  * Use more log functions from bmwqemu
+  * Consolidate log call formats in backend::ipmi and backend::qemu
+  * generalhw: Add 'power' API support
+  * generalhw: Improve logging of run_cmd()
+  * generalhw: Prevent RWP::Session stealing exit code from IPC::Run
+  * Enable assets collection for generalhw backend too
+  * backend: Avoid re-entrant close_pipes() call
+
+- Update to version 4.6.1642298632.e723f49f:
+  * Add test with 100% statement coverage for consoles::localXvnc
+  * consoles: Remove code in localXvnc unused since 5e3bc516
+  * Remove discouraged use of base POSIX import
+  * t: Make all test modules consistently executable
+  * Use Mojo::File::path for convenience consistently
+  * testapi: Allow distri class provide default for die_on_timeout
+  * Fix `consoles::VNC::new does not exist! at t/27-consoles-vnc_base.t`
+  * Prevent use of external facing API in consoles as well
+  * Prevent the use of external facing API commands in backend
+
+- Update to version 4.6.1642074968.043eb0fc:
+  * Fix `consoles::VNC::new does not exist! at t/27-consoles-vnc_base.t`
+  * Prevent use of external facing API in consoles as well
+  * Prevent the use of external facing API commands in backend
+  * doc: Use consistent spelling 'hostname'
+  * doc: Document ZVM backend variables
+  * doc: Document HMC backend variables
+  * t: Add missing coverage for consoles::serial_screen
+  * t: Simplify file read/write with Mojo::File in 99-full-stack.t
+  * t: Add test for consoles::VNC
+  * t: Add consoles::vnc_base unit test
+  * t: Remove unnecessary method import in 03-testapi.t
+
+- Update to version 4.6.1641552142.fa5fd35d:
+  * Fix circular dependency
+
+- Update to version 4.6.1641477883.20dfb00e:
+  * Fix 02-test_ocr.t after bmwqemu::vars change
+  * t: Ensure 100% statement coverage of consoles/virtio_terminal.pm
+  * consoles: Avoid all external facing API calls
+  * Automatically detect KVM in qemu if available
+
+- Update to version 4.6.1641243369.d5c49a55:
+  * Control access to %bmwqemu::vars and warn about invalid keys
+  * Use proper perl "signatures" in some consoles
+
+- Update to version 4.6.1640797853.158869d0:
+  * Add coverage for unimplemented methods
+  * Revert "Another attempt/method for running tests on physical laptops"
+
+- Update to version 4.6.1640620511.76c851d7:
+  * Use a constant for default max typing interval
+  * t: Add video-console testing with generalhw backend
+  * t: Add video_stream console tests
+  * generalhw: Improve logging of run_cmd()
+  * generalhw: Prevent RWP::Session stealing exit code from IPC::Run
+  * Do not limit saving assets to qemu backend only
+  * backend: Avoid re-entrant close_pipes() call
+  * generalhw: Add GENERAL_HW_IMAGE_CMD
+  * generalhw: Wrap GENERAL_HW_ARG_VARIABLES_BY_CMD
+  * generalhw: Make run_cmd more generic
+  * Add stall detection to video-stream console
+  * Add support for v4l2 device as an input to video-stream console
+  * Add video-stream console support to generalhw backend
+  * Add video-stream console
+  * dist: Move swtpm "files" out of unnecessary ifarch
+  * README: Add a section how to verify a runtime environment
+  * Fix podman pull link
+
+- Update to version 4.6.1640094932.fc9361df:
+  * dist: Fix missing package build for swtpm
+  * xt: Add test for calling make itself
+  * Makefile: Fix initial call with test target
+
+- Update to version 4.6.1639512920.3ca390ca:
+  * distribution: Fix sporadic here-document input failure
+  * Add hardware console log to IPMI and PowerVM backends
package-translations
+- Update to version 89.87.20231104.cc3bb316:
+  * Added translation using Weblate (Turkish)
+  * Translated using Weblate (French)
+  * Translated using Weblate (Italian)
+  * Added translation using Weblate (Turkish)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Czech)
+  * Added translation using Weblate (Georgian)
+  * Translated using Weblate (Czech)
+  * Translated using Weblate (Russian)
+  * Translated using Weblate (Arabic)
+  * Translated using Weblate (Arabic)
+
perl-Term-Table
+- updated to 0.018
+  see /usr/share/doc/packages/perl-Term-Table/Changes
+  0.018     2023-10-22 21:55:51-07:00 America/Los_Angeles
+  - Merged doc fix PR
+
+- updated to 0.017
+  see /usr/share/doc/packages/perl-Term-Table/Changes
+  0.017     2023-09-13 10:41:08-07:00 America/Los_Angeles
+  - Remove 'Importer' dependency
+
+- updated to 0.016
+  see /usr/share/doc/packages/perl-Term-Table/Changes
+  0.016     2022-01-03 12:56:51-08:00 America/Los_Angeles
+  - Be explicit about bareword filehandles
+
+- updated to 0.015
+  see /usr/share/doc/packages/perl-Term-Table/Changes
+  0.015     2019-11-18 15:58:23-08:00 America/Los_Angeles
+  - Update inlined Object::HashBase
+
+- updated to 0.014
+  see /usr/share/doc/packages/perl-Term-Table/Changes
+  0.014     2019-10-15 16:54:41-07:00 America/Los_Angeles
+  - Clone STDOUT on load in case it gets changed later
+
+- updated to 0.013
+  see /usr/share/doc/packages/perl-Term-Table/Changes
+  0.013     2018-12-04 11:38:36-08:00 America/Los_Angeles
+
perl-Test-MockModule
+- updated to 0.177.0
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.177.0
+  - 35f0d0b Update changelog - Geoff Franks
+  - 1d5b485 Move test modules from build to test requires - Olaf Alders
+  - 78afe10 Clean up changelog - Geoff Franks
+  v0.277.0
+  - Move test modules from build to test requires - Olaf Alders
+
+- updated to 0.176.0
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.176.0
+  - 3ba8bc7 lexically scoped strictness - David Cantrell
+  - e57fc5a Update ci with dockerhub auth - Geoff Franks
+  - bfe1e63 Update GitHub workflow with deprecated add-path - Nicolas R
+  vX.XXX.X
+  - XXXXXXX 'strict' mode is now lexically scoped
+
+- updated to 0.175.0
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.175.0
+  - 964aa2a Ignore CI files and whitesource - Nicolas R
+
+- updated to 0.174.0
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.174.0
+  - cf65e7c Fix typo in pod - nima
+
+- updated to 0.173.0
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.173.0
+  - 4dacd82 Add warning when 'unmock' called without arguments - Matthew Hughes
+  - b20dc7c import warns when using unknown argument - Nicolas R
+  - 3b217ba Fix windows CI by installing SUPER - Nicolas R
+  - 0ef70c5 Add .whitesource configuration file - whitesource-bolt-for-github[bot]
+
+- updated to 0.172.0
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.172.0
+  - 7558aa9 Make sure we can redefine a function in 'main' - Nicolas R
+  - 0538fe1 Plug GitHub workflow as additional CI - Nicolas R
+  - 0e9d90b update parallel to use in_parallel instead ofaggregate - Geoff Franks
+
+- updated to 0.171.0
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.171.0
+  - 89dc5c0 Fixes #25 - mocking core::global no longer fails trying to load the module - Geoff Franks
+  - 9bb081a update ci for fewer infinite loops - Geoff Franks
+  - 289d014 Update release notes for all the newly merged PRs - Geoff Franks
+  - fef9e74 Allow chaining of new with mock, redefine, define - Nicolas Rochelemagne
+  - e136131 Prevent redefine() from triggering DESTROY. - Felipe Gasper
+  - 311f6b4 Adjust Travis CI configuration to use travis-perl.github.io - Nicolas Rochelemagne
+  - 2bed3e2 Add strict mode to ban the use of noop and mock. - Todd Rinaldo
+  - 0298d8d Provide define method so the mock method is unneeded in tests. - Todd Rinaldo
+  v0.171.0
+  - allow chaining of new with mock, redefine, define
+  - redefine() no longer triggers errors if the object being mocked is not a hashref
+  - Adds a define() method for mocking new functions that do not exist. Throws an
+    error if a function does exist.
+  - Adds `strict` mode to prevent usage of noop() and mock() functions, and force
+    the usage of define/redefine if desired.:
+    ```
+    use Test::MockModule qw/strict/;
+    ```
+  - Mocking CORE::GLOBAL no longer throws errors indicating CORE::GLOBAL should have
+    been installed/loaded
+
+- updated to 0.170.0
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.170.0
+  - 182d066 Fix versioning for semver conversion + PAUSE - Geoff Franks
+  - 4afeedf release v0.17.0 - CI Bot
+  - 9df8ac4 Add CI pipeline for releasing to cpan - Geoff Franks
+  - 577350e Pod - provide a code snippet for original usage - Nicolas R
+  - 3e4ec72 Add missing pod entries - Geoff Franks
+  v0.16
+  - Fixes an issue where warnings were thrown for mismatched prototypes,
+    when mocking a prototyped function.
+    Thanks @toddr for the fix!
+
+- updated to 0.15
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.15
+  - Fixes a minor bug in the release tarball
+
+- updated to 0.14
+  see /usr/share/doc/packages/perl-Test-MockModule/Changes
+  v0.14
+  - Fixes a bug where the `redefine()` function was dying when attempting to
+    mock a function that was defined further up a module's inheritance chain.
+    It now only dies when the mocked function does not exist in the module being
+    mocked, or any of its parent modules. Thanks @atoomic for the improvement!
+
-- initial package 0.05
-  * created by cpanspec 1.78.04
-
perl-Test-Simple
+- updated to 1.302196
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302196  2023-10-24 10:27:33-07:00 America/Los_Angeles
+  - Fix #882
+  - Fix handling of VSTRING and LVALUE refs in is_deeply() #918
+  - Merge several doc fixes from mauke
+
+- updated to 1.302195
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302195  2023-04-28 05:55:54-07:00 America/Los_Angeles
+  - Fix done_testing(0) producing 2 plans and an incorrect message
+
+- updated to 1.302194
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302194  2023-03-13 20:06:57-07:00 America/Los_Angeles
+  - Fix failing test on 5.10
+
+- updated to 1.302193
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302193  2023-03-06 09:38:00-08:00 America/Los_Angeles
+  - Deprecate inst't()
+
+- updated to 1.302192
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302192  2023-02-02 07:34:08-08:00 America/Los_Angeles
+  - Silence deprecation warning when testing smartmatch
+
+- updated to 1.302191
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302191  2022-07-09 10:48:09-07:00 America/Los_Angeles
+  - CI Fixes
+  - avoid failing when printing diagnostic info comparing partial overload objects
+
+- updated to 1.302190
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302190  2022-03-04 15:07:45-08:00 America/Los_Angeles
+  - Fix subtest times to be hi-res
+
+- updated to 1.302189
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302189  2022-02-24 21:23:05-08:00 America/Los_Angeles
+  - Fix #890, #891
+
+- updated to 1.302188
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302188  2021-09-29 08:31:27-07:00 America/Los_Angeles
+  - Fix for non-gcc compilers on 5.10.0
+
+- updated to 1.302187
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302187  2021-09-17 06:59:05-07:00 America/Los_Angeles
+  - Fix tests for core boolean support
+
+- updated to 1.302186
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302186  2021-07-26 10:37:46-07:00 America/Los_Angeles
+  - Add start/stop timestamps to subtests
+
+- updated to 1.302185
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302185  2021-05-19 11:08:39-07:00 America/Los_Angeles
+  - Fix test from last commit to pass on older perls
+  1.302184  2021-05-19 09:19:08-07:00 America/Los_Angeles
+  - Fix Test::Builder->skip to stringify arguments
+
+- updated to 1.302183
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302183  2020-10-21 20:10:36-07:00 America/Los_Angeles
+  - avoid closing over scalar in BEGIN block in cmp_ok eval
+
+- updated to 1.302182
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302182  2020-10-05 22:02:28-07:00 America/Los_Angeles
+  - Fix 5.6 support
+  - Fix fragile %INC handling in a test
+
+- updated to 1.302181
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302181  2020-09-14 09:46:04-07:00 America/Los_Angeles
+  - put try_sig_mask back where it goes (And add test to prevent this in the future)
+  - Drop new List::Util requirement back down
+  1.302180  2020-09-13 23:11:18-07:00 America/Los_Angeles
+  - No changes since last trial
+  1.302179  2020-09-12 22:35:19-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Bump minimum List::Util version (for uniq)
+  1.302178  2020-09-07 14:11:52-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Move try_sig_mask to the only module that uses it.
+  - Inherit warnings bitmask in cmp_ok string eval
+  - Update copyright date
+  - Improved API for interept {} and what it returns
+
+- updated to 1.302177
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302177  2020-08-06 21:46:06-07:00 America/Los_Angeles
+  - Minor fix to author downstream test
+  - No significant changes since the last trial
+  1.302176  2020-08-05 21:45:19-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix Test::More's $TODO inside intercept (#862)
+
+- updated to 1.302175
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302175  2020-04-13 11:37:36-07:00 America/Los_Angeles
+  - Fix typos in POD
+  - Fix incorrect Test2::Hub documentation
+  - Fix test that needed . in @INC on windows
+  - Fix Breakage test to show more info
+
+- updated to 1.302174
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302174  2020-03-30 13:55:54-07:00 America/Los_Angeles
+  - Fallback if JSON::PP is not available during IPC errors
+
+- updated to 1.302173
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302173  2020-03-27 09:00:16-07:00 America/Los_Angeles
+  - Add extra debugging for "Not all files from hub '...' have been collected!"
+
+- updated to 1.302172
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302172  2020-03-08 15:21:25-07:00 America/Los_Angeles
+  - Fix transition doc
+  - Fix warnings from info / debug tap
+
+- updated to 1.302171
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302171  2020-01-17 09:47:59-08:00 America/Los_Angeles
+  - Fix 5.6
+  - Fix EBDIC
+  - Upgrade Object::HashBase
+  - Clarify error message in test (#841)
+  - Spelling/Grammer fixes
+
+- updated to 1.302170
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302170  2019-12-02 13:25:48-08:00 America/Los_Angeles
+  - Fix unwanted END phase event (#840)
+
+- updated to 1.302169
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302169  2019-11-18 15:49:38-08:00 America/Los_Angeles
+  - Update inline Object::HashBase
+  - Avoid 'used only once' warnings in BEGIN and END blocks (James E Keenan <jkeenan@cpan.org>)
+
+- updated to 1.302168
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302168  2019-09-06 07:40:18-07:00 America/Los_Angeles
+  - Fix Typo in a Test2::API::Breakage warning (Thanks E. Choroba)
+  - Delay loading of Term::Table until needed (Thanks Graham Knop)
+
+- updated to 1.302167
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302167  2019-08-23 14:07:58-07:00 America/Los_Angeles
+  - add test2_is_testing_done api method
+  - Fix string compare warning
+
+- updated to 1.302166
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302166  2019-08-15 10:37:01-07:00 America/Los_Angeles
+  - Fix context test on older perls
+  1.302165  2019-08-15 10:21:09-07:00 America/Los_Angeles
+  - Better diagnostics when a context is destroyed unexpectedly
+  - Add an event to notify when END phase starts
+
+- updated to 1.302164
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302164  2019-04-27 01:43:44-07:00 America/Los_Angeles
+  1.302163  2019-04-25 05:45:47-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Do not use threads::Shared in Test::Tester::Capture (#826)
+  - Add missing version info to Info/Table
+  - Fix event in global destruction bug (#827)
+  - Proper fix for todo = '' (#812, #829)
+
+- updated to 1.302162
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302162  2019-02-05 19:55:14-08:00 America/Los_Angeles
+  - Typo fixes in documentation
+  1.302161  2019-01-29 09:34:27-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Remove SHM Optimization
+
+- updated to 1.302160
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302160  2019-01-18 11:44:33-08:00 America/Los_Angeles
+  - No Changes since last trial release
+  1.302159  2019-01-09 13:21:37-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Add table support to ctx->fail and ctx->fail_and_return
+  - Fix Instance.t on haiku-os
+  1.302158  2019-01-08 15:36:24-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix TAP test on windows
+  - Fix math errors in table indentation
+  - Devel requires Term::Table
+  1.302157  2019-01-08 14:10:29-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix minor typos and missing doc sections
+  - Add table support in info facet and TAP formatter
+
+- updated to 1.302156
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302156  2019-01-07 11:13:07-08:00 America/Los_Angeles
+  - No changes from last trial
+  1.302155  2019-01-04 11:25:17-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix test not to fail in non-english locales
+  1.302154  2019-01-04 10:20:54-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix SHM pid checking for some platforms in Instance.t
+  - Add SHM errno/msg to warning about SHM going away
+  1.302153  2019-01-03 08:39:42-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Improve SHM verification and state awareness
+  1.302152  2018-12-26 12:21:32-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - More Instance.t improvements
+  - Add trace to SHM error when possible
+  1.302151  2018-12-20 11:05:47-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix another locale error in Instance.t
+  1.302150  2018-12-20 10:57:09-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix locale error in Instance.t
+  - Windows test fixes
+  - perl 5.6 test fixes
+  1.302149  2018-12-20 09:47:31-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Even more SHM error improvements
+  1.302148  2018-12-17 13:08:23-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Further Improve SHM error message
+  1.302147  2018-12-17 12:59:14-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Improve SHM error message
+  1.302146  2018-12-17 09:06:44-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix SHM test to work on machines without SHM
+  1.302145  2018-12-12 11:26:32-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix localization error in new test (#820)
+  1.302144  2018-12-12 09:51:25-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Add tests for shmwrite fix (#815)
+  1.302143  2018-12-11 19:10:37-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix failure to check error code on shmwrite (#815)
+  1.302142  2018-12-11 11:55:22-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix #814 Windows fork+test failure
+  - Fix #819 Documentation updates
+  - Fix #810 Verbose TAP newline regression
+  - Fix #817 local $TODO bug
+  - Fix #812 Another local $TODO bug
+  - Fix #815 shm read warning
+  - Merge doc fix PR's from magnolia-k (thanks!)
+
+- updated to 1.302141
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302141  2018-11-30 14:27:19-08:00 America/Los_Angeles
+  - Fix bug where IPC init failed in preload+fork environments
+
+- updated to 1.302140
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302140  2018-08-13 08:00:25-07:00 America/Los_Angeles
+  - No Changes since last release
+  1.302139  2018-07-17 12:38:37-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Mask warning from the recent IPC fix generated when threaded Test tools are loaded at run-time
+
+- updated to 1.302138
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302138  2018-07-11 09:29:51-07:00 America/Los_Angeles
+  - No changes since trial
+  1.302137  2018-05-25 08:45:13-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Make it safe to fork before events in IPC
+
+- updated to 1.302136
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302136  2018-04-19 05:40:11-07:00 America/Los_Angeles
+  - Add test2_add_callback_testing_done to Test2::API
+
+- updated to 1.302135
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302135  2018-03-29 22:53:00-07:00 America/Los_Angeles
+  - No changes since last trial
+  1.302134  2018-03-19 21:20:08-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Make sure all hubs, events, and contexts get a unique (per run) id.
+  - Use a common generator for unique(enough) id's (not UUIDs)
+
+- updated to 1.302133
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302133  2018-03-11 12:48:37-07:00 America/Los_Angeles
+  - No changes since last trial
+  1.302132  2018-03-09 15:43:51-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Add method to validate facet data
+  - Add Test2::Event::V2 event class, and context helpers
+  - Improve how events handle facets
+  - Break out meta_facet_data
+  - Document and fix Facets2Legacy
+  - Fix nested and in_subtest to look at hub facets
+  - Fix event->related and trace with uuid
+  1.302131  2018-03-07 09:36:16-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Make sure event puts the uuid into the about facet
+
+- updated to 1.302130
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302130  2018-03-07 08:07:54-08:00 America/Los_Angeles
+  - No changes since last trial
+  1.302129  2018-03-06 13:43:22-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Make hubs tag events with a new facet
+
+- updated to 1.302128
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302128  2018-03-05 09:26:53-08:00 America/Los_Angeles
+  - No changes since the trial
+  1.302127  2018-03-02 12:43:56-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix missing UUID in Test::Builder subtests
+  1.302126  2018-03-01 23:15:52-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Add optional UUID tagging
+
+- updated to 1.302125
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302125  2018-02-21 23:10:39-08:00 America/Los_Angeles
+  - No changes since trial
+  1.302124  2018-02-13 22:02:48-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix a test to skip without threads
+  1.302123  2018-02-13 21:39:31-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Make it possible to disable IPC
+
+- updated to 1.302122
+  see /usr/share/doc/packages/perl-Test-Simple/Changes
+  1.302122  2018-02-05 08:13:56-08:00 America/Los_Angeles
+  - Add 'mode' ro render facet
+  1.302121  2018-02-04 13:27:41-08:00 America/Los_Angeles
+  - Update Copyright
+  - Add 'render' facet
+
-- update to 1.001003:
-  + Doc updates for maintainer change
-
-- updated to 1.001002
-  * restore ability to use regex with test_err and test_out
-    (Zefram) [rt.cpan.org #89655] [github #389] [github #387]
-    Bug Fixes
-  * Fix precedence error with (return ... and ...)
-    (nthykier) [github #385]
-    Doc Changes
-  * Add a shorter work around for the UTF-8 output problem.
-    (Michael G Schwern)
-    Bug Fixes
-  * Test::Builder::Tester now works with subtests.
-    (Michael G Schwern) [github 350]
-  * Fix test_fail() inside a do statement.
-    (nnutter) [github #369]
-    New Features
-  * A subtest will put its name at the front of its results to make
-    subtests easier to read. [github #290] [github #364]
-    (Brendan Byrd)
-    Feature Changes
-  * like() and unlike() no longer warn about undef. [github #335]
-    (Michael G Schwern)
-
-- use original .tar.gz
-
-- update to 0.98:
-  + subtest() should not fail if $? is non-zero.
-  + The behavior of is() and undef has been documented.
-  + Adapted the tests for the new Perl 5.14 regex stringification.
-  + The filehandles used by default will now inherit any filehandle
-    disciplines from STDOUT and STDERR IF AND ONLY IF they were applied
-    before Test::Builder is loaded.
-- also package the examples in docdir
-
-- buildrequire perl-devel on fedora
-
-- recreated by cpanspec 1.78
-- noarch pkg
-- bzipped Source
-- added bcond_with pod
-- fixed deps
-  o Removed: Prov perl-Test-More, perl-Test-Builder
-  o fixed dep for *Pod*
-
-- update to 0.96
-  * You can call done_testing() again after reset() [googlecode 59]
-
-- looong time no updated. 0.88 is needed for CPANPLUS packages.
-  Let's fast forward this one.
-- Update to 0.95_02
-  See http://cpansearch.perl.org/src/MSCHWERN/Test-Simple-0.95_02/Changes
-
perl-Test2-Suite
+- updated to 0.000159
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000159  2023-10-25 14:09:23-07:00 America/Los_Angeles
+  - Document that diag() intentionally returns false, and add a `return 0`
+  0.000158  2023-10-22 22:05:42-07:00 America/Los_Angeles
+  - Mark Workflow-Acceptance.t as AUTHOR_TESTING
+  0.000157  2023-10-22 21:26:49-07:00 America/Los_Angeles
+  - Fix #280: Document --no_srand option in Test2::V0
+  - Fix #276: Document bool() import in Test2::V0
+  - Fix #279: Merged fix for VMS test issues
+  - Fix #277: Merged POD tweaks
+
+- updated to 0.000156
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000156  2023-09-13 15:11:52-07:00 America/Los_Angeles
+  - Fix typo in POD for Test2::Util::Importer
+
+- updated to 0.000155
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000155  2023-04-28 08:28:42-07:00 America/Los_Angeles
+  - Fix #247
+  - Fix changes file
+  0.000154  2023-04-28 05:57:58-07:00 America/Los_Angeles
+  - Fix 00-report.t
+  0.000153  2023-04-27 15:27:32-07:00 America/Los_Angeles
+  - Fix broken call to plugins
+  0.000152  2023-04-27 02:52:44-07:00 America/Los_Angeles
+  - Inline Importer.pm for core support
+  0.000151  2023-04-27 02:35:37-07:00 America/Los_Angeles
+  - The following are all in hopes of getting Test2:Suite into core.
+  - Make Module::Pluggable optional
+  - Inline Scope::Guard
+  - Inline Sub::Info
+  - Do not recommend Sub::Name
+
+- updated to 0.000150
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000150  2023-03-21 08:25:21-07:00 America/Los_Angeles
+  - Do not index Devel::MAT::Dumper
+  0.000149  2023-03-21 06:44:50-07:00 America/Los_Angeles
+  - Fix warning when Devel::MAT::Dumper is installed and -w is used
+
+- updated to 0.000148
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000148  2023-03-05 14:59:45-08:00 America/Los_Angeles
+  - Fixes for refcount stuff
+  0.000147  2023-03-04 11:42:59-08:00 America/Los_Angeles
+  - Add refcount tools, and include in ::V0
+  0.000146  2023-03-04 11:08:10-08:00 America/Los_Angeles
+  - Add T2_AUTO_DUMP and T2_AUTO_DEPARSE env vars
+
+- updated to 0.000145
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000145  2022-03-04 15:10:09-08:00 America/Los_Angeles
+  - Fix subtest times to be hi-res
+
+- updated to 0.000144
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000144  2021-12-03 13:17:19-08:00 America/Los_Angeles
+  - Add void context warning for dies and lives
+  0.000143  2021-12-01 11:20:03-08:00 America/Los_Angeles
+  - Add stringification option for custom compare checks
+
+- updated to 0.000142
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000142  2021-11-15 14:06:34-08:00 America/Los_Angeles
+  - Fix deprecation diagnostics
+  - Fix older perls by removing //=
+
+- updated to 0.000141
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000141  2021-07-26 12:15:34-07:00 America/Los_Angeles
+  - Add start and stop stamps to async subtest
+
+- updated to 0.000140
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000140  2021-05-12 08:08:17-07:00 America/Los_Angeles
+  - Add L() "length" quick check for comparisons
+
+- updated to 0.000139
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000139  2020-12-15 19:48:07-08:00 America/Los_Angeles
+  - Merge PR to add ISA checks
+  - Fix Manual module that was missing package/return true
+
+- updated to 0.000138
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000138  2020-10-21 19:46:07-07:00 America/Los_Angeles
+  - Merge doc fix from PR
+  - Merge strict fix for test
+
+- updated to 0.000137
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000137  2020-10-21 18:22:07-07:00 America/Los_Angeles
+  - Test new syntax `use Test2::Plugin::SRand seed => $seed;`
+  - Update GitHub workflow with deprecated add-path
+
+- updated to 0.000136
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000136  2020-10-05 22:05:24-07:00 America/Los_Angeles
+  - Fix typo Test2::Builder -> Test::Builder
+  - Improve import logic for SRand
+  - Other misc typo fixes
+
+- updated to 0.000135
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000135  2020-08-16 21:44:24-07:00 America/Los_Angeles
+  - No changes since last trial
+  0.000134  2020-08-15 13:11:30-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix 5.8 support
+  0.000133  2020-08-14 21:59:19-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Add summary of missing/extra elements in compare diagnostics
+
+- updated to 0.000132
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000132  2020-08-06 18:10:48-07:00 America/Los_Angeles
+  - Fix min Test2 version
+  0.000131  2020-08-05 21:45:59-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix the grabber tool to inherit Test::Builder $TODO functionality
+
+updated to 0.000130
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000130  2020-05-30 11:11:54-07:00 America/Los_Angeles
+  - Many documentation fixes
+
+- updated to 0.000129
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000129  2020-01-31 08:33:46-08:00 America/Los_Angeles
+  - José Joaquín Atria Improve error handling of mock->override with AUTOLOADed methods
+  0.000128  2020-01-30 08:45:43-08:00 America/Los_Angeles
+  - Nicolas R Import option to skip utf8 import
+  - Victoria Mihell-Hale Correct POD for Test2/Tools/Mock.pm's mocked() method
+  - Victoria Mihell-Hale Fix miscellaneous typos in Test2(/Tools)/Mock.pm POD
+  - Nicolas R Add GitHub actions
+  - Daniel Mita Fix PKG case for Test2::Tools::Target docs
+  - Daniel Mita Document target change in V0 and Bundle::Extended
+  - Daniel Mita Allow hashref to be used for Test2::Tools::Target
+
+- updated to 0.000127
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000127  2019-10-30 21:25:29-07:00 America/Los_Angeles
+  - Fix srand toggling
+
+- updated to 0.000126
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000126  2019-08-28 12:44:59-07:00 America/Los_Angeles
+  - Mention HUGE caveat in Test2::Plugin::Times
+  - Make Test2::Util::Times::render_duration support 1 arg form
+
+- updated to 0.000125
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000125  2019-08-19 10:40:20-07:00 America/Los_Angeles
+  - Add harness_job_fields to Times plugin
+
+- updated to 0.000124
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000124  2019-08-16 14:54:25-07:00 America/Los_Angeles
+  - Make Times plugin use INFO facets for display
+  0.000123  2019-08-16 13:21:29-07:00 America/Los_Angeles
+  - Fix double-load bug on Plugin::Times
+
+- updated to 0.000122
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000122  2019-05-18 08:21:20-07:00 America/Los_Angeles
+  - Fix diag issues with ClassicCompare
+
+- updated to 0.000121
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000121  2019-05-07 12:00:27-07:00 America/Los_Angeles
+  - Tracking for mocked methods
+  - Include raw table in facet data when compare fails
+
+- updated to 0.000120
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000120  2019-04-26 05:19:18-07:00 America/Los_Angeles
+  - Allow all_items inside bag
+
+- updated to 0.000119
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000119  2019-03-16 15:17:33-07:00 America/Los_Angeles
+  - Allow meta-checks in bag/array/hash (Thanks jjatria)
+
+- updated to 0.000118
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000118  2019-01-18 13:44:06-08:00 America/Los_Angeles
+  - Fix typo Test::Workflow -> Test2::Workflow #170
+  - Fix test broken by new Test-Simple #175
+
+- updated to 0.000117
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000117  2018-12-04 11:37:15-08:00 America/Los_Angeles
+  - Remove test that belongs in another dist
+  0.000116  2018-11-28 15:47:12-08:00 America/Los_Angeles
+  - Add 'set' to mock tools
+  - Fix 'overload' issue in deep check cycle detection.
+  - Minor updates
+
+- updated to 0.000115
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000115  2018-07-11 09:39:37-07:00 America/Los_Angeles
+  - Fix warning on undefined note/diag
+  - Improve an error message.
+
+- updated to 0.000114
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000114  2018-04-19 08:39:56-07:00 America/Los_Angeles
+  - Fix missing manual section
+  0.000113  2018-04-19 08:03:42-07:00 America/Los_Angeles
+  - Fix typo
+  0.000112  2018-04-19 07:15:40-07:00 America/Los_Angeles
+  - Switch spec to use the testing_done callback
+  - Update copyright dates
+  - Finish the Anatomy manual section
+  - Finish the Tooling manual section
+
+- updated to 0.000111
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000111  2018-03-14 12:37:45-07:00 America/Los_Angeles
+  - No Changes since last trial
+  0.000110  2018-03-13 13:36:37-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Allow events from unattached processes in AsyncSubtest
+  0.000109  2018-03-12 13:20:18-07:00 America/Los_Angeles (TRIAL RELEASE)
+  - Add AsyncSubtest retrieval to hubs
+
+- updated to 0.000108
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000108  2018-03-11 12:51:56-07:00 America/Los_Angeles
+  - No changes since last release
+  0.000107  2018-03-09 15:43:30-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Add rounded() and within() wrappers for approximate comparisons
+
+- updated to 0.000106
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000106  2018-03-06 13:10:55-08:00 America/Los_Angeles
+  - No changes since trial
+  0.000105  2018-03-06 09:13:36-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix nesting bug in Test2::Workflow
+
+- updated to 0.000104
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000104  2018-03-05 09:27:44-08:00 America/Los_Angeles
+  - Add Data::Dumper to dep list (#154)
+  0.000103  2018-03-02 13:00:54-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - AsyncSubtest now works with UUIDs and adds other proper meta-data
+
+- updated to 0.000102
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000102  2018-03-02 09:45:27-08:00 America/Los_Angeles
+  - No Changes since last trial
+  0.000101  2018-02-21 16:27:18-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Add much needed verbosity to 'You must attach to an AsyncSubtest ...' errors
+  - Documentation updates
+
+- updated to 0.000100
+  see /usr/share/doc/packages/perl-Test2-Suite/Changes
+  0.000100  2018-02-13 21:41:30-08:00 America/Los_Angeles
+  - No changes from last TRIAL
+  0.000099  2018-02-06 12:53:16-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix AsyncSubtest plan to be at the right nesting, and buffered
+  0.000098  2018-02-06 12:05:28-08:00 America/Los_Angeles (TRIAL RELEASE)
+  - Fix AsyncSubtest main event buffered/nesting values
+  - Fix bug where AsyncSub test vanishes with no error when finished after
+    its parent ends.
+
poppler-data
+- update to 0.4.12:
+  * updated files from the adobe-type-tools repositories
+
-- Update to version 0.4.5:
-  + New data from Adobe.
-  + New data from xpdf.
-
psmisc
+- Fix version at configure time as there was no .tarball-version
+
pv
+- increase required memory in _constraints [bsc#1217165]
+  (tests still fails in ETA related tests)
+
-- Update to new upstream release 1.5.3
-  * Added new display options --buffer-percent, --last-written
-  * New transfer option --no-splice
-  * New option --watchfd to monitor file descriptor status of another
-  process, rather than moving data from stdin to stdout.
-
python-Twisted
+- Add CVE-2023-46137-HTTP-pipeline-response.patch (bsc#1216588,
+  CVE-2023-46137) serializing pipelined HTTP requests.
+
python-apache-libcloud
+- Fixed the list_nodes() function in the Azure ARM driver to handle
+  pagination and return all the VMs for a subscription (bsc#1214808)
+- Added:
+  * azure_pagination.patch
+
python-azure-storage-queue
+- Update in SLE-15 (bsc#1202088, CVE-2022-30187)
+
+- New upstream release (bsc#1202088, CVE-2022-30187)
+  + Version 12.4.0
+  + For detailed information about changes see the
+    CHANGELOG.md file provided with this package
+
+- New upstream release
+  + Version 12.3.0
+  + For detailed information about changes see the
+    CHANGELOG.md file provided with this package
+- Update Requires from setup.py
+
+- New upstream release
+  + Version 12.2.0
+  + For detailed information about changes see the
+    CHANGELOG.md file provided with this package
+- Rename LICENSE.txt to LICENSE in %files section
+- Update Requires from setup.py
+
+- New upstream release
+  + Version 12.1.6
+  + For detailed information about changes see the
+    CHANGELOG.md file provided with this package
+- Update Requires from setup.py
+
+- New upstream release
+  + Version 12.1.5
+  + For detailed information about changes see the
+    CHANGELOG.md file provided with this package
+- Update Requires from setup.py
+
+  + Version 12.1.4
+  + For detailed information about changes see the
+    CHANGELOG.md file provided with this package
+- Update Requires from setup.py
+
+- New upstream release
python-flask-peewee
-- Add patch from upstream to fix building with latest Werkzeug and Flask:
-  * 0001-Compatibility-with-newer-werkzeug-and-flask.patch
-- Add BuildRequires: %{pythons} to fix tests
-
-- Add runtests.py from upstream since the source package doesn't include it
-  and use it to enable tests to run.
+- Add runtests.py from upstream since the source package doesn't include it and
+  use it to enable tests to run.
-- Add 0001-Clarify-that-project-uses-MIT.patch from upstream after a request
-  I made to clarify the project license
+- Add 0001-Clarify-that-project-uses-MIT.patch from upstream after a request I made
+  to clarify the project license
python3-Twisted
+- Add CVE-2023-46137-HTTP-pipeline-response.patch (bsc#1216588,
+  CVE-2023-46137) serializing pipelined HTTP requests.
+
qt6-base
+- Add patch from upstream to fix a regression introduced in
+  0002-QTextLayout-fix-maximumWidth-for-a-text-containing-line.patch
+  which makes qt-creator6 hang in an infinite loop (boo#1215178,
+  QTBUG-109474, QTCREATORBUG-28593):
+  * 0001-Fix-infinite-layout-loop-with-negative-line-width.patch
+
regionServiceClientConfigAzure
+- Update to version 2.0.1 (bsc#1217537)
+  + Replacing 104.45.31.195.pem 191.237.254.253.pem certs
+    expiring in 8 years and new length of 4096
+    These certs will replace the current certs that
+    expire soon
+
regionServiceClientConfigEC2
+- Update to version 4.1.1 (bsc#1217536)
+  + Replace 54.247.166.75.pem and 54.253.118.149.pem old soon to expired certs
+    with new generated ones that expire in 8 years and have longer length (4096)
+
regionServiceClientConfigGCE
+- Update to version 4.0.1 (bsc#1217538)
+  + Replace 130.211.242.136.pem and 130.211.88.88.pem certs
+    expiring in 8 years and new length of 4096
+    These certs will replace the current certs that
+    expire soon
+
-- Re-add previously removed provide, need all 3
-
rrdtool
-- Remove umask usage as it creates issues and it's not thread safe,
-  fixes bsc#1189375.
-  * remove-umask.patch
+- Decouple e59f703bbcc0af949ee365206426b6394c340c6f.patch from
+  github url
+
+- Follow upstream, disable the following, failing tests: rpn1
+  https://github.com/oetiker/rrdtool-1.x/blob/master/.travis.yml#L30
+
+- Add patch to fix segfault (seen in %check on aarch64):
+  * e59f703bbcc0af949ee365206426b6394c340c6f.patch
+
+- Update to 1.8.0:
+  For the list of changes, please have a look here:
+  https://github.com/oetiker/rrdtool-1.x/blob/master/CHANGES
+- Remove unneeded python3.patch
+
+- remove conditionals around patch declaration, found by Stefan Liehmann
+
+- add python-rpm-macros
+
+- Added hardening to systemd service(s) (bsc#1181400). Added patch(es):
+  * harden_rrdcached.service.patch
+  Modified:
+  * rrdcached.service
+
+- rrdtool 1.7.2:
+  * fix segfault on non-existent RRD file when using rrdcached
+  * fix bounds handling, documentation and checking on rrdtool xport
+  * Fix %s/%S unit autoscaling in gprint for json/xml
+  * Optimized PDP Calculation
+- drop rrdtool-1.7.1-compile_fix.patch, upstream
+
+- Version update to 1.7.1:
+  * fix many compile time warnings
+  * Re-enable 0-width lines
+  * Include rrd_pdpcalc.pod in Makefile.am also
+  * Lots of spelling fixes for rrdtool source and documentation
+  * fix off by one issue in rrdtool xport output
+  * fix lua extension build
+  * fix python bindings
+  * fix multiple static variable issues in conflict with MT
+  * make translations actually work
+  * Fixed configure --enable / --disable options
+  * rrd_daemon stability fixes
+  * fix tcl bindings
+  * do not call umask ever (not MT safe)
+  * Multiline Titles
+  * French translation
+  * Added support for --allow-shrink with --rigid flag (#843)
+  * Added SUSPEND/RESUME/SUSPENDALL/RESUMEALL commands for rrd_cached
+  * include the daemon name in the error message
+- add rrdtool-1.7.1-compile_fix.patch to fix build with the new
+  version
+
+- fix building bindings for Python 2 for suse_version < 1500
rsync
+- Update to latest version from Factory (3.2.7)
+- Deleted the following patches, already included in that version:
+  - rsync-CVE-2020-14387.patch
+  - rsync-CVE-2022-29154-trust-sender-1.patch
+  - rsync-CVE-2022-29154-trust-sender-2.patch
+  - rsync-CVE-2022-29154.patch
+  - rsync-fix-delay-updates-never-updates-after-interruption.patch
+
+- Rename patch to follow naming patch policies:
+  fortified-strlcpy-fix.patch -> rsync-fortified-strlcpy-fix.patch
+
+- Use "slp" for bcond, not "openslp", like we use for all other
+  packages, too.
+- Disable slp patch and configure option if bcond slp is disabled.
+
+- add fortified-strlcpy-fix.patch (bsc#1214616, bsc#1214249)
+
+- Disable openslp support on new distros (bsc#1214884)
+
+- Add support directory to %docdir.
+  Includes some upstream provided scripts such as rrsync. (bsc#1212198)
+
+- Switch rsyncd symlink to a wrapper script to allow setting a distinct
+  SELinux type (bsc#1209654)
+
+- New version fixes bug (boo#1203727): implicit containing directory
+  sometimes rejected as unrequested
+- update to 3.2.7
+  * BUG FIXES:
+  - Fixed the client-side validating of the remote sender's filtering behavior.
+  - More fixes for the "unrequested file-list name" name, including a copy of
+    "/" with `--relative` enabled and a copy with a lot of related paths with
+    `--relative` enabled (often derived from a `--files-from` list).
+  - When rsync gets an unpack error on an ACL, mention the filename.
+  - Avoid over-setting sanitize_paths when a daemon is serving "/" (even if
+    "use chroot" is false).
+  * ENHANCEMENTS:
+  - Added negotiated daemon-auth support that allows a stronger checksum digest
+    to be used to validate a user's login to the daemon.  Added SHA512, SHA256,
+    and SHA1 digests to MD5 & MD4.  These new digests are at the highest priority
+    in the new daemon-auth negotiation list.
+  - Added support for the SHA1 digest in file checksums.  While this tends to be
+    overkill, it is available if someone really needs it.  This overly-long
+    checksum is at the lowest priority in the normal checksum negotiation list.
+    See [`--checksum-choice`](rsync.1#opt) (`--cc`) and the `RSYNC_CHECKSUM_LIST`
+    environment var for how to customize this.
+  - Improved the xattr hash table to use a 64-bit key without slowing down the
+    key's computation.  This should make extra sure that a hash collision doesn't
+    happen.
+  - If the `--version` option is repeated (e.g. `-VV`) then the information is
+    output in a (still readable) JSON format.  Client side only.
+  - The script `support/json-rsync-version` is available to get the JSON style
+    version output from any rsync.  The script accepts either text on stdin
+  * *or** an arg that specifies an rsync executable to run with a doubled
+    `--version` option.  If the text we get isn't already in JSON format, it is
+    converted. Newer rsync versions will provide more complete json info than
+    older rsync versions. Various tweaks are made to keep the flag names
+    consistent across versions.
+  - The [`use chroot`](rsyncd.conf.5#) daemon parameter now defaults to "unset"
+    so that rsync can use chroot when it works and a sanitized copy when chroot
+    is not supported (e.g., for a non-root daemon).  Explicitly setting the
+    parameter to true or false (on or off) behaves the same way as before.
+  - The `--fuzzy` option was optimized a bit to try to cut down on the amount of
+    computations when considering a big pool of files. The simple heuristic from
+    Kenneth Finnegan resuled in about a 2x speedup.
+  - If rsync is forced to use protocol 29 or before (perhaps due to talking to an
+    rsync before 3.0.0), the modify time of a file is limited to 4-bytes.  Rsync
+    now interprets this value as an unsigned integer so that a current year past
+    2038 can continue to be represented. This does mean that years prior to 1970
+    cannot be represented in an older protocol, but this trade-off seems like the
+    right choice given that (1) 2038 is very rapidly approaching, and (2) newer
+    protocols support a much wider range of old and new dates.
+  - The rsync client now treats an empty destination arg as an error, just like
+    it does for an empty source arg. This doesn't affect a `host:` arg (which is
+    treated the same as `host:.`) since the arg is not completely empty.  The use
+    of [`--old-args`](rsync.1#opt) (including via `RSYNC_OLD_ARGS`) allows the
+    prior behavior of treating an empty destination arg as a ".".
+  * PACKAGING RELATED:
+  - The checksum code now uses openssl's EVP methods, which gets rid of various
+    deprecation warnings and makes it easy to support more digest methods.  On
+    newer systems, the MD4 digest is marked as legacy in the openssl code, which
+    makes openssl refuse to support it via EVP.  You can choose to ignore this
+    and allow rsync's MD4 code to be used for older rsync connections (when
+    talking to an rsync prior to 3.0.0) or you can choose to configure rsync to
+    tell openssl to enable legacy algorithms (see below).
+  - A simple openssl config file is supplied that can be installed for rsync to
+    use.  If you install packaging/openssl-rsync.cnf to a public spot (such as
+    `/etc/ssl/openssl-rsync.cnf`) and then run configure with the option
+    `--with-openssl-conf=/path/name.cnf`, this will cause rsync to export the
+    configured path in the OPENSSL_CONF environment variable (when the variable
+    is not already set).  This will enable openssl's MD4 code for rsync to use.
+  - The packager may wish to include an explicit "use chroot = true" in the top
+    section of their supplied /etc/rsyncd.conf file if the daemon is being
+    installed to run as the root user (though rsync should behave the same even
+    with the value unset, a little extra paranoia doesn't hurt).
+  - I've noticed that some packagers haven't installed support/nameconvert for
+    users to use in their chrooted rsync configs.  Even if it is not installed
+    as an executable script (to avoid a python3 dependency) it would be good to
+    install it with the other rsync-related support scripts.
+  - It would be good to add support/json-rsync-version to the list of installed
+    support scripts.
+
+- Use bundled SLP patch now that upstream fixed it:
+  * Remove rsync-3.2.5-slp.patch
+
+- update to 3.2.6:
+  * More path-cleaning improvements in the file-list validation code to avoid
+    rejecting of valid args.
+  * A file-list validation fix for a --files-from file that ends without a
+    line-terminating character.
+  * Added a safety check that prevents the sender from removing destination
+    files when a local copy using --remove-source-files has some files that are
+    shared between the sending & receiving hierarchies, including the case
+    where the source dir & destination dir are identical.
+  * Fixed a bug in the internal MD4 checksum code that could cause the digest
+    to be sporadically incorrect (the openssl version was/is fine).
+  * A minor tweak to rrsync added "copy-devices" to the list of known args, but
+    left it disabled by default.
+
+- Build SLE version with g++-11
+  to work around nondeterministic g++-7 (boo#1193895)
+
+- Migration to /usr/etc: Saving user changed configuration files
+  in /etc and restoring them while an RPM update.
+
+- Add upstream patch rsync-3.2.5-slp.patch, as the one included in
+  the released tarball doesn't fully apply.
+- Drop patch rsync-CVE-2022-29154.patch, already included upstream.
+- Update to 3.2.5
+  * SECURITY FIXES:
+  - Added some file-list safety checking that helps to ensure that a rogue
+    sending rsync can't add unrequested top-level names and/or include recursive
+    names that should have been excluded by the sender.  These extra safety
+    checks only require the receiver rsync to be updated.  When dealing with an
+    untrusted sending host, it is safest to copy into a dedicated destination
+    directory for the remote content (i.e. don't copy into a destination
+    directory that contains files that aren't from the remote host unless you
+    trust the remote host). Fixes CVE-2022-29154.
+  - A fix for CVE-2022-37434 in the bundled zlib (buffer overflow issue).
+  * BUG FIXES:
+  - Fixed the handling of filenames specified with backslash-quoted wildcards
+    when the default remote-arg-escaping is enabled.
+  - Fixed the configure check for signed char that was causing a host that
+    defaults to unsigned characters to generate bogus rolling checksums. This
+    made rsync send mostly literal data for a copy instead of finding matching
+    data in the receiver's basis file (for a file that contains high-bit
+    characters).
+  - Lots of manpage improvements, including an attempt to better describe how
+    include/exclude filters work.
+  - If rsync is compiled with an xxhash 0.8 library and then moved to a system
+    with a dynamically linked xxhash 0.7 library, we now detect this and disable
+    the XX3 hashes (since these routines didn't stabilize until 0.8).
+  * ENHANCEMENTS:
+  - The [`--trust-sender`](rsync.1#opt) option was added as a way to bypass the
+    extra file-list safety checking (should that be required).
+  * PACKAGING RELATED:
+  - A note to those wanting to patch older rsync versions: the changes in this
+    release requires the quoted argument change from 3.2.4. Then, you'll want
+    every single code change from 3.2.5 since there is no fluff in this release.
+  - The build date that goes into the manpages is now based on the developer's
+    release date, not on the build's local-timezone interpretation of the date.
+  * DEVELOPER RELATED:
+  - Configure now defaults GETGROUPS_T to gid_t when cross compiling.
+  - Configure now looks for the bsd/string.h include file in order to fix the
+    build on a host that has strlcpy() in the main libc but not defined in the
+    main string.h file.
+
-  * Added patch rsync-rsync-CVE-2022-29154.patch
+  * Added patch rsync-CVE-2022-29154.patch
+
+- Removed %config flag for files in /usr directory.
+
+- Moved logrotate files from user specific directory /etc/logrotate.d
+  to vendor specific directory /usr/etc/logrotate.d.
+
+- Update to 3.2.4
+  * A new form of arg protection was added that works similarly to
+    the older `--protect-args` (`-s`) option but in a way that
+    avoids breaking things like rrsync.
+  * A long-standing bug was preventing rsync from figuring out the
+    current locale's decimal point character, which made rsync
+    always output numbers using the "C" locale.
+  * Too many changes to list, see included NEWS.md file.
+- Drop rsync-CVE-2020-14387.patch, already included upstream.
+
+- Added hardening to systemd service(s) (bsc#1181400). Modified:
+  * rsyncd.service
rust
+- Update to version 1.74.0 - for details see the rust1.74 package
+
rust1
-Version 1.73.0 (2023-10-05)
+Version 1.74.0 (2023-11-16)
-- [Uplift `clippy::fn_null_check` lint as `useless_ptr_null_checks`.](https://github.com/rust-lang/rust/pull/111717/)
-- [Make `noop_method_call` warn by default.](https://github.com/rust-lang/rust/pull/111916/)
-- [Support interpolated block for `try` and `async` in macros.](https://github.com/rust-lang/rust/pull/112953/)
-- [Make `unconditional_recursion` lint detect recursive drops.](https://github.com/rust-lang/rust/pull/113902/)
-- [Future compatibility warning for some impls being incorrectly considered not overlapping.](https://github.com/rust-lang/rust/pull/114023/)
-- [The `invalid_reference_casting` lint is now **deny-by-default** (instead of allow-by-default)](https://github.com/rust-lang/rust/pull/112431)
+- [Codify that `std::mem::Discriminant<T>` does not depend on any lifetimes in T](https://github.com/rust-lang/rust/pull/104299/)
+- [Replace `private_in_public` lint with `private_interfaces` and `private_bounds` per RFC 2145.](https://github.com/rust-lang/rust/pull/113126/)
+  Read more in [RFC 2145](https://rust-lang.github.io/rfcs/2145-type-privacy.html).
+- [Allow explicit `#[repr(Rust)]`](https://github.com/rust-lang/rust/pull/114201/)
+- [closure field capturing: don't depend on alignment of packed fields](https://github.com/rust-lang/rust/pull/115315/)
+- [Enable MIR-based drop-tracking for `async` blocks](https://github.com/rust-lang/rust/pull/107421/)
+- [Stabilize `impl_trait_projections`](https://github.com/rust-lang/rust/pull/115659)
-- [Write version information in a `.comment` section like GCC/Clang.](https://github.com/rust-lang/rust/pull/97550/)
-- [Add documentation on v0 symbol mangling.](https://github.com/rust-lang/rust/pull/97571/)
-- [Stabilize `extern "thiscall"` and `"thiscall-unwind"` ABIs.](https://github.com/rust-lang/rust/pull/114562/)
-- [Only check outlives goals on impl compared to trait.](https://github.com/rust-lang/rust/pull/109356/)
-- [Infer type in irrefutable slice patterns with fixed length as array.](https://github.com/rust-lang/rust/pull/113199/)
-- [Discard default auto trait impls if explicit ones exist.](https://github.com/rust-lang/rust/pull/113312/)
-- Add several new tier 3 targets:
-  - [`aarch64-unknown-teeos`](https://github.com/rust-lang/rust/pull/113480/)
-  - [`csky-unknown-linux-gnuabiv2`](https://github.com/rust-lang/rust/pull/113658/)
-  - [`riscv64-linux-android`](https://github.com/rust-lang/rust/pull/112858/)
-  - [`riscv64gc-unknown-hermit`](https://github.com/rust-lang/rust/pull/114004/)
-  - [`x86_64-unikraft-linux-musl`](https://github.com/rust-lang/rust/pull/113411/)
-  - [`x86_64-unknown-linux-ohos`](https://github.com/rust-lang/rust/pull/113061/)
-- [Add `wasm32-wasi-preview1-threads` as a tier 2 target.](https://github.com/rust-lang/rust/pull/112922/)
-  Refer to Rust's [platform support page][platform-support-doc]
-  for more information on Rust's tiered platform support.
+- [stabilize combining +bundle and +whole-archive link modifiers](https://github.com/rust-lang/rust/pull/113301/)
+- [Stabilize `PATH` option for `--print KIND=PATH`](https://github.com/rust-lang/rust/pull/114183/)
+- [Enable ASAN/LSAN/TSAN for `*-apple-ios-macabi`](https://github.com/rust-lang/rust/pull/115644/)
+- [Promote loongarch64-unknown-none* to Tier 2](https://github.com/rust-lang/rust/pull/115368/)
+- [Add `i686-pc-windows-gnullvm` as a tier 3 target](https://github.com/rust-lang/rust/pull/115687/)
-- [Add `Read`, `Write` and `Seek` impls for `Arc<File>`.](https://github.com/rust-lang/rust/pull/94748/)
-- [Merge functionality of `io::Sink` into `io::Empty`.](https://github.com/rust-lang/rust/pull/98154/)
-- [Implement `RefUnwindSafe` for `Backtrace`](https://github.com/rust-lang/rust/pull/100455/)
-- [Make `ExitStatus` implement `Default`](https://github.com/rust-lang/rust/pull/106425/)
-- [`impl SliceIndex<str> for (Bound<usize>, Bound<usize>)`](https://github.com/rust-lang/rust/pull/111081/)
-- [Change default panic handler message format.](https://github.com/rust-lang/rust/pull/112849/)
-- [Cleaner `assert_eq!` & `assert_ne!` panic messages.](https://github.com/rust-lang/rust/pull/111071/)
-- [Correct the (deprecated) Android `stat` struct definitions.](https://github.com/rust-lang/rust/pull/113130/)
+- [Implement `From<OwnedFd/Handle>` for ChildStdin/out/err](https://github.com/rust-lang/rust/pull/98704/)
+- [Implement `From<{&,&mut} [T; N]>` for `Vec<T>` where `T: Clone`](https://github.com/rust-lang/rust/pull/111278/)
+- [impl Step for IP addresses](https://github.com/rust-lang/rust/pull/113748/)
+- [Implement `From<[T; N]>` for `Rc<[T]>` and `Arc<[T]>`](https://github.com/rust-lang/rust/pull/114041/)
+- [`impl TryFrom<char> for u16`](https://github.com/rust-lang/rust/pull/114065/)
+- [Stabilize `io_error_other` feature](https://github.com/rust-lang/rust/pull/115453/)
+- [Stabilize the `Saturating` type](https://github.com/rust-lang/rust/pull/115477/)
+- [Stabilize const_transmute_copy](https://github.com/rust-lang/rust/pull/115520/)
-- [Unsigned `{integer}::div_ceil`](https://doc.rust-lang.org/stable/std/primitive.u32.html#method.div_ceil)
-- [Unsigned `{integer}::next_multiple_of`](https://doc.rust-lang.org/stable/std/primitive.u32.html#method.next_multiple_of)
-- [Unsigned `{integer}::checked_next_multiple_of`](https://doc.rust-lang.org/stable/std/primitive.u32.html#method.checked_next_multiple_of)
-- [`std::ffi::FromBytesUntilNulError`](https://doc.rust-lang.org/stable/std/ffi/struct.FromBytesUntilNulError.html)
-- [`std::os::unix::fs::chown`](https://doc.rust-lang.org/stable/std/os/unix/fs/fn.chown.html)
-- [`std::os::unix::fs::fchown`](https://doc.rust-lang.org/stable/std/os/unix/fs/fn.fchown.html)
-- [`std::os::unix::fs::lchown`](https://doc.rust-lang.org/stable/std/os/unix/fs/fn.lchown.html)
-- [`LocalKey::<Cell<T>>::get`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.get)
-- [`LocalKey::<Cell<T>>::set`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.set)
-- [`LocalKey::<Cell<T>>::take`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.take)
-- [`LocalKey::<Cell<T>>::replace`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.replace)
-- [`LocalKey::<RefCell<T>>::with_borrow`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.with_borrow)
-- [`LocalKey::<RefCell<T>>::with_borrow_mut`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.with_borrow_mut)
-- [`LocalKey::<RefCell<T>>::set`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.set-1)
-- [`LocalKey::<RefCell<T>>::take`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.take-1)
-- [`LocalKey::<RefCell<T>>::replace`](https://doc.rust-lang.org/stable/std/thread/struct.LocalKey.html#method.replace-1)
+- [`core::num::Saturating`](https://doc.rust-lang.org/stable/std/num/struct.Saturating.html)
+- [`impl From<io::Stdout> for std::process::Stdio`](https://doc.rust-lang.org/stable/std/process/struct.Stdio.html#impl-From%3CStdout%3E-for-Stdio)
+- [`impl From<io::Stderr> for std::process::Stdio`](https://doc.rust-lang.org/stable/std/process/struct.Stdio.html#impl-From%3CStderr%3E-for-Stdio)
+- [`impl From<OwnedHandle> for std::process::Child{Stdin, Stdout, Stderr}`](https://doc.rust-lang.org/stable/std/process/struct.Stdio.html#impl-From%3CStderr%3E-for-Stdio)
+- [`impl From<OwnedFd> for std::process::Child{Stdin, Stdout, Stderr}`](https://doc.rust-lang.org/stable/std/process/struct.Stdio.html#impl-From%3CStderr%3E-for-Stdio)
+- [`std::ffi::OsString::from_encoded_bytes_unchecked`](https://doc.rust-lang.org/stable/std/ffi/struct.OsString.html#method.from_encoded_bytes_unchecked)
+- [`std::ffi::OsString::into_encoded_bytes`](https://doc.rust-lang.org/stable/std/ffi/struct.OsString.html#method.into_encoded_bytes)
+- [`std::ffi::OsStr::from_encoded_bytes_unchecked`](https://doc.rust-lang.org/stable/std/ffi/struct.OsStr.html#method.from_encoded_bytes_unchecked)
+- [`std::ffi::OsStr::as_encoded_bytes`](https://doc.rust-lang.org/stable/std/ffi/struct.OsStr.html#method.as_encoded_bytes)
+- [`std::io::Error::other`](https://doc.rust-lang.org/stable/std/io/struct.Error.html#method.other)
+- [`impl TryFrom<char> for u16`](https://doc.rust-lang.org/stable/std/primitive.u16.html#impl-TryFrom%3Cchar%3E-for-u16)
+- [`impl<T: Clone, const N: usize> From<&[T; N]> for Vec<T>`](https://doc.rust-lang.org/stable/std/vec/struct.Vec.html#impl-From%3C%26%5BT;+N%5D%3E-for-Vec%3CT,+Global%3E)
+- [`impl<T: Clone, const N: usize> From<&mut [T; N]> for Vec<T>`](https://doc.rust-lang.org/stable/std/vec/struct.Vec.html#impl-From%3C%26mut+%5BT;+N%5D%3E-for-Vec%3CT,+Global%3E)
+- [`impl<T, const N: usize> From<[T; N]> for Arc<[T]>`](https://doc.rust-lang.org/stable/std/sync/struct.Arc.html#impl-From%3C%5BT;+N%5D%3E-for-Arc%3C%5BT%5D,+Global%3E)
+- [`impl<T, const N: usize> From<[T; N]> for Rc<[T]>`](https://doc.rust-lang.org/stable/std/rc/struct.Rc.html#impl-From%3C%5BT;+N%5D%3E-for-Rc%3C%5BT%5D,+Global%3E)
-- [`rc::Weak::new`](https://doc.rust-lang.org/stable/alloc/rc/struct.Weak.html#method.new)
-- [`sync::Weak::new`](https://doc.rust-lang.org/stable/alloc/sync/struct.Weak.html#method.new)
-- [`NonNull::as_ref`](https://doc.rust-lang.org/stable/core/ptr/struct.NonNull.html#method.as_ref)
+- [`core::mem::transmute_copy`](https://doc.rust-lang.org/beta/std/mem/fn.transmute_copy.html)
+- [`str::is_ascii`](https://doc.rust-lang.org/beta/std/primitive.str.html#method.is_ascii)
+- [`[u8]::is_ascii`](https://doc.rust-lang.org/beta/std/primitive.slice.html#method.is_ascii)
-- [Encode URL params correctly for `SourceId` in `Cargo.lock`.](https://github.com/rust-lang/cargo/pull/12280/)
-- [Bail out an error when using `cargo::` in custom build script.](https://github.com/rust-lang/cargo/pull/12332/)
-  Misc
-----
+- [fix: Set MSRV for internal packages](https://github.com/rust-lang/cargo/pull/12381/)
+- [config: merge lists in precedence order](https://github.com/rust-lang/cargo/pull/12515/)
+- [fix(update): Clarify meaning of --aggressive as --recursive](https://github.com/rust-lang/cargo/pull/12544/)
+- [fix(update): Make `-p` more convenient by being positional](https://github.com/rust-lang/cargo/pull/12545/)
+- [feat(help): Add styling to help output ](https://github.com/rust-lang/cargo/pull/12578/)
+- [feat(pkgid): Allow incomplete versions when unambigious](https://github.com/rust-lang/cargo/pull/12614/)
+- [feat: stabilize credential-process and registry-auth](https://github.com/rust-lang/cargo/pull/12649/)
+- [feat(cli): Add '-n' to dry-run](https://github.com/rust-lang/cargo/pull/12660/)
+- [Add support for `target.'cfg(..)'.linker`](https://github.com/rust-lang/cargo/pull/12535/)
+- [Stabilize `--keep-going`](https://github.com/rust-lang/cargo/pull/12568/)
+- [feat: Stabilize lints](https://github.com/rust-lang/cargo/pull/12648/)
+  Rustdoc
+-------
+- [Add warning block support in rustdoc](https://github.com/rust-lang/rust/pull/106561/)
+- [Accept additional user-defined syntax classes in fenced code blocks](https://github.com/rust-lang/rust/pull/110800/)
+- [rustdoc-search: add support for type parameters](https://github.com/rust-lang/rust/pull/112725/)
+- [rustdoc: show inner enum and struct in type definition for concrete type](https://github.com/rust-lang/rust/pull/114855/)
-- [Update the minimum external LLVM to 15.](https://github.com/rust-lang/rust/pull/114148/)
-- [Check for non-defining uses of return position `impl Trait`.](https://github.com/rust-lang/rust/pull/112842/)
+- [Raise minimum supported Apple OS versions](https://github.com/rust-lang/rust/pull/104385/)
+- [make Cell::swap panic if the Cells partially overlap](https://github.com/rust-lang/rust/pull/114795/)
+- [Reject invalid crate names in `--extern`](https://github.com/rust-lang/rust/pull/116001/)
+- [Don't resolve generic impls that may be shadowed by dyn built-in impls](https://github.com/rust-lang/rust/pull/114941/)
+- [The new `impl From<{&,&mut} [T; N]> for Vec<T>` is known to cause some inference failures with overly-generic code.](https://github.com/rust-lang/rust/issues/117054) In those examples using the `tui` crate, the combination of `AsRef<_>` and `Into<Vec>` leaves the middle type ambiguous, and the new `impl` adds another possibility, so it now requires an explicit type annotation.
scap-security-guide
+- updated to 0.1.70 (jsc#ECO-3319)
+  - Add openembedded distro support (#10793)
+  - Remove DRAFT wording for OpenShift STIG (#11100)
+  - Remove test-function-check_playbook_file_removed_and_added test (#10982)
+  - scap-security-guide: Add Poky support (#11046)
+
sqlite3
+- Sync version 3.44.0 from Factory
+  * Fixes bsc#1210660, CVE-2023-2137: Heap buffer overflow
+  * sqlite3-rtree-i686.patch: temporary build fix for 32-bit x86.
+  * Obsoletes sqlite-CVE-2022-46908.patch
+  * Obsoletes sqlite-src-3390000-func7-pg-181.patch
+
squashfs
+- For reference: previous updates fixed
+  * CVE-2021-40153 (bsc#1189936)
+  * CVE-2015-4645, CVE-2015-4646 (bsc#935380)
+
+- update to 4.6.1:
+  * Race condition which can cause corruption of the "fragment
+    table" fixed.  This is a regression introduced in August 2022,
+    and it has been seen when tailend packing is used (-tailends option).
+  * Fix build failure when the tools are being built without
+    extended attribute (XATTRs) support.
+  * Fix XATTR error message when an unrecognised prefix is
+    found
+  * Fix incorrect free of pointer when an unrecognised XATTR
+    prefix is found.
+  * Major improvements in extended attribute handling,
+    pseudo file handling, and miscellaneous new options and
+    improvements
+  * Extended attribute handling improved in Mksquashfs and
+    Sqfstar
+  * New Pseudo file xattr definition to add extended
+    attributes to files.
+  * New xattrs-add Action to add extended attributes to files
+  * Extended attribute handling improved in Unsquashfs
+  * Other major improvements
+  * Unsquashfs can now output Pseudo files to standard out.
+  * Mksquashfs can now input Pseudo files from standard in.
+  * Squashfs filesystems can now be converted (different
+    block size compression etc) without unpacking to an
+    intermediate filesystem or mounting, by piping the output of
+    Unsquashfs to Mksquashfs.
+  * Pseudo files are now supported by Sqfstar.
+  * "Non-anchored" excludes are now supported by Unsquashfs.
+
+- Do not repeat openSUSE / SLE version tests
+- Actually format and package the man pages
+
+- set LZMA_XZ_SUPPORT=1 so you can (un)squash -comp lzma images
+
+- update to 4.5.1 (bsc#1190531, CVE-2021-41072):
+  * This release adds Manpages for Mksquashfs(1), Unsquashfs(1),
+    Sqfstar(1) and Sqfscat(1).
+  * The -help text output from the utilities has been improved
+    and extended as well (but the Manpages are now more
+    comprehensive).
+  * CVE-2021-41072 which is a writing outside of destination
+    exploit, has been fixed.
+  * The number of hard-links in the filesystem is now also
+    displayed by Mksquashfs in the output summary.
+  * The number of hard-links written by Unsquashfs is now
+    also displayed in the output summary.
+  * Unsquashfs will now write to a pre-existing destination
+    directory, rather than aborting.
+  * Unsquashfs now allows "." to used as the destination, to
+    extract to the current directory.
+  * The Unsquashfs progress bar now tracks empty files and
+    hardlinks, in addition to data blocks.
+  * -no-hardlinks option has been implemented for Sqfstar.
+  * More sanity checking for "corrupted" filesystems, including
+    checks for multiply linked directories and directory loops.
+  * Options that may cause filesystems to be unmountable have
+    been moved into a new "experts" category in the Mksquashfs
+    help text (and Manpage).
+  * Maximum cpiostyle filename limited to PATH_MAX.  This
+    prevents attempts to overflow the stack, or cause system
+    calls to fail with a too long pathname.
+  * Don't always use "max open file limit" when calculating
+    length of queues, as a very large file limit can cause
+    Unsquashfs to abort.  Instead use the smaller of max open
+    file limit and cache size.
+  * Fix Mksquashfs silently ignoring Pseudo file definitions
+    when appending.
+  * Don't abort if no XATTR support has been built in, and
+    there's XATTRs in the filesystem.  This is a regression
+    introduced in 2019 in Version 4.4.
+  * Fix duplicate check when the last file block is sparse.
+
+- update to 4.5:
+  * Mksquashfs now supports "Actions".
+  * New sqfstar command which will create a Squashfs image from a tar archive.
+  * Tar style handling of source pathnames in Mksquashfs.
+  * Cpio style handling of source pathnames in Mksquashfs.
+  * New option to throttle the amount of CPU and I/O.
+  * Mksquashfs now allows no source directory to be specified.
+  * New Pseudo file "R" definition which allows a Regular file
+    o be created with data stored within the Pseudo file.
+  * Symbolic links are now followed in extract files
+  * Unsquashfs now supports "exclude" files.
+  * Max depth traversal option added.
+  * Unsquashfs can now output a "Pseudo file" representing the
+    input Squashfs filesystem.
+  * New -one-file-system option in Mksquashfs.
+  * New -no-hardlinks option in Mksquashfs.
+  * Exit code in Unsquashfs changed to distinguish between
+    non-fatal errors (exit 2), and fatal errors (exit 1).
+  * Xattr id count added in Unsquashfs "-stat" output.
+  * Unsquashfs "write outside directory" exploit fixed.
+  * Error handling in Unsquashfs writer thread fixed.
+  * Fix failure to truncate destination if appending aborted.
+  * Prevent Mksquashfs reading the destination file.
+
strongswan
+- Updated to version 5.9.12 (jsc#PED-5765 bsc#1216901)
+  * Fixed a buffer overflow in charon-tkm [CVE-2023-41913]
+  * Support for ``nameConstraints`` of type ``iPAddress`` are now
+    supported by the "x509", "openssl" and "constraints" plugins
+  * Support for encoding subjectAlternativeName extensions of type
+    uniformResourceIdentifier in X.509 certificates has been added.
+  * Make the NetworkManager plugin (charon-nm) actually use the
+    XFRM interface it creates since 5.9.10. This involves setting
+    interface IDs on SAs and policies, and installing routes via
+    the interface. To avoid routing loops if the remote traffic
+    selectors include the VPN server, IKE and ESP packets are
+    marked to bypass the routing table that contains the routes via
+    XFRM interface.
+  * The kernel-libipsec plugin now always installs routes to remote
+    networks even if no address is found in the local traffic
+    selectors, which allows forwarding traffic from networks the
+    VPN host is not part of.
+  * Fixed issues while reestablishing multiple CHILD_SAs (e.g.
+    after a DPD timeout) that could cause a reqid to get assigned
+    to multiple CHILD_SAs with unrelated traffic selectors.
+- Removed following patch which is part of updated package
+    [- strongswan-5.9.7-5.9.11_charon_tkm_dh_len.patch]
+
suseconnect-ng
+- Update to version 1.4.0~git0.b0f7c25bfdfa
+  * Added EULA display for addons (bsc#1170267)
+  * Fix zypper argument for auto-agreeing licenses (bsc#1214781)
+  * Enable building on SLE12 SP5 (jsc#PED-3179)
+
+- Update to version 1.3.0
+  * Track .changes file in git
+
+- Update to version 1.2.0~git0.abd0fec:
+  * enhance docs for package testing
+  * Fixed `provides` to work with yast2-registration on SLE15 < SP4 (bsc#1212799)
+  * Improve error message if product set more than once
+
swaks
+- user request: manpage added
+  https://bugzilla.opensuse.org/show_bug.cgi?id=1193140
+
+- 🙄 also require perl-IO-Socket-INET6 to ipv6 works out of the box
+
+- some feature require perl-Net-DNS
+
system-role-common-criteria
-- Bump version to 15.6.0 (bsc#1208913)
+- Set the encryption password directly from the role dialog
+  (jsc#PED-4166, jsc#PED-4474)
+- 15.6.1
+
+- Branch package for SP6 (bsc#1208913)
systemtap
+- update to Systemtap version 4.9 to support new kernel rebase
+  Also for bsc#1212940 - STAP_PROBE_ASM broken on s390x glibc builds
+  New patch: autoconf-ver.patch
+  Delete patch (upstream): sys-sdt.h-fp-constraints-arm32.patch
+  Delete patch (upstream): sys-sdt.h-fp-constraints-x86_64.patch
+  Delete patch (upstream): sys-sdt.h-fp-constraints-aarch64-s390.patch
+  Changelog:
+  * ISystemtap: the new interactive systemtap jupyter kernel.
+    This provides a simple GUI for writing/running Systemtap
+    scripts in an easy, incremental way within Jupyterlab.
+    Added 2 news scripts, stap-jupyter-install
+    and stap-jupyter-container. See stap-jupyter(1).
+  * The new "language-server" mode, specified by "stap
+  - -language-server", starts a LSP server which will
+    communicate with the client via stdio.
+  * This server currently supports code completion suggestions.
+  * See language-server/README.md for more details and usage
+    instructions.
+  * Safety/liveness checking for $context variable assignments in
+    probes of retpoline-compiled kernels is temporarily disabled.
+  * DWARF-related probes (.function, .statement) now merge DWARF
+    and non-DWARF symbol-table based matches, rather than being
+    either-or.
+  * The python3 tapset was extended to support python3 3.9, 3.10,
+    and 3.11. See stapprobes(3stap) for further details on probing
+    python functions.
+  * A template cve band-aid script is now included, which
+    demonstrates how to use a new 'livepatch.stp' tapset to
+    standardize activation, interactive control,
+    and monitoring of systemtap cve band-aids.
+  * The kernel runtime now uses much less memory when the number
+    of "possible CPUs" are way more than the online ones. For
+    example, VMWare guests usually have 128 "possible CPUs" while fewer
+    CPUs are actually present or online in the guest system.
+  * The memory allocation size is now irrelevant to the value of
+    NR_CPUS of the current kernel. It is only subject to the
+    number of "possible CPUs" or "online CPUs".
+  * CPU hotplug is supported to the extent that there won't be
+    any kernel panics or memory corruptions.
+  * The bpf backend's embedded-code assembler has been improved
+    to support more conventional assembly syntax with named
+    opcodes. The opcode names are based on the iovisor bpf-docs
+
+- Add _multibuild to define 2nd spec file as additional flavor.
+  Eliminates the need for source package links in OBS.
+
+- Resolve failed s390x glibc build (bsc#1198442)
+    New patch: handle-user-supplied-sdt-probe-argument-template.patch
+
systemtap-docs
+- Upgrade to version 4.9. See systemtap.spec for changelog
+  New patch: autoconf-ver.patch
+
systemtap-dtrace
+- Upgrade to version 4.9. See systemtap.spec for changelog
+  Delete patch (upstream): sys-sdt.h-fp-constraints-arm32.patch
+  Delete patch (upstream): sys-sdt.h-fp-constraints-x86_64.patch
+  Delete patch (upstream): sys-sdt.h-fp-constraints-aarch64-s390.patch
+
+- Remove unnecessary patches.  Only patches specific to
+  dtrace are needed.
+
systemtap-headers
+- Upgrade to version 4.9. See systemtap.spec for changelog
+  Delete patch (upstream): sys-sdt.h-fp-constraints-arm32.patch
+  Delete patch (upstream): sys-sdt.h-fp-constraints-x86_64.patch
+  Delete patch (upstream): sys-sdt.h-fp-constraints-aarch64-s390.patch
+
+- Resolve failed s390x glibc build (bsc#1198442)
+    New patch: handle-user-supplied-sdt-probe-argument-template.patch
+
tiff
-- security update:
-  * CVE-2023-38289 [bsc#1213589]
-    + tiff-CVE-2023-38289.patch
-  * CVE-2023-38288 [bsc#1213590]
-    + tiff-CVE-2023-38288.patch
-  * CVE-2023-3576 [bsc#1213273]
-    + tiff-CVE-2023-3576.patch
-  * CVE-2020-18768 [bsc#1214574]
-    + tiff-CVE-2020-18768.patch
-  * CVE-2023-26966 [bsc#1212881]
-    + tiff-CVE-2023-26966.patch
-  * CVE-2023-3618 [bsc#1213274]
-    + tiff-CVE-2023-3618.patch
-  * CVE-2023-2908 [bsc#1212888]
-    + tiff-CVE-2023-2908.patch
-  * CVE-2023-3316 [bsc#1212535]
-    + tiff-CVE-2023-3316.patch
+- Update to version 4.6.0:
+  * API/ABI breaks: none
+  * WebP decoder: validate WebP blob width, height, band count against
+    TIFF parameters to avoid use of uninitialized variable, or decoding
+    corrupted content without explicit error (fixes issue #581, issue #582).
+  * WebP codec: turn exact mode when creating lossless files to avoid
+    altering R,G,B values in areas where alpha=0
+  * Fix TransferFunction writing of only two transfer functions.
+  * TIFFReadDirectoryCheckOrder: avoid integer overflow. When it occurs,
+    it should be harmless in practice though
+  * tiffcp: remove -i option (ignore errors)
+  * This version removes a big number of utilities that have suffered from
+    lack of maintenance over the years and were the source of various
+    reported security issues:
+    + fax2ps
+    + fax2tiff
+    + pal2rgb
+    + ppm2tiff
+    + raw2tiff
+    + rgb2ycbcr
+    + thumbnail
+    + tiff2bw
+    + tiff2rgba
+    + tiffcmp
+    + tiffcrop
+    + tiffdither
+    + tiffgt
+    + tiffmedian
+    + tiff2ps
+    + tiff2pdf
+- Remove no longer needed tiff-4.0.3-compress-warning.patch.
+
+- Update to version 4.5.1:
+  * Definition of tags reformatted (clang-format off) for better readability of tag comments in tiff.h and tif_dirinfo.c
+  * Do not install libtiff-4.pc when tiff-install is reset.
+  * Add versioninfo resource files for DLL and tools compiled with Windows MSVC and MINGW.
+  * Disable clang-formatting for tif_config.h.cmake.in and tiffconf.h.cmake.in because sensitive for CMake scripts.
+  * CMake: make WebP component name compatible with upstream ConfigWebP.cmake
+  * CMake: make Findliblzma with upstream CMake config file
+  * CMake: FindDeflate.cmake: fix several errors (issue #526).
+  * CMake: FindLERC.cmake: version string return added.
+  * CMake: export TiffConfig.cmake and TiffConfigVersion.cmake files
+  * CMake: fix export of INTERFACE_INCLUDE_DIRECTORIES
+  * Hardcode HOST_FILLORDER to FILLORDER_LSB2MSB and make 'H' flag of TIFFOpen() to warn and an alias of FILLORDER_MSB2LSB. tif_lerc.c: use WORDS_BIGENDIAN instead of HOST_BIGENDIAN.
+  * Optimize relative seeking within TIFFSetDirectory() by using the learned list of IFD offsets.
+  * Improve internal IFD offset and directory number map handling.
+  * Behavior of TIFFOpen() mode "r+" in the Windows implementation adjusted to that of Linux.
+  * TIFFDirectory td_fieldsset type changed from unsigned long, which can be 32 or 64 bits, to uint32_t (fixes issue #484).
+  * tif_ojpeg.c: checking for division by zero (fixes issue #554).
+  * LZWDecode(): avoid crash when trying to read again from a strip whith a missing end-of-information marker (fixes issue #548).
+  * Fixed runtime error: applying zero offset to null pointer in countInkNamesString().
+  * Fixing crash in TIFFUnlinkDirectory() when called with directory number zero ("TIFFUnlinkDirectory(0)") as well as fixing incorrect behaviour when unlinking the first directory.
+  * tif_luv: check and correct for NaN data in uv_encode() (issue #530).
+  * TIFFClose() avoid NULL pointer dereferencing (issue #515).
+  * tif_hash_set.c: include tif_hash_set.h after tif_config.h to let a chance for GDAL symbol renaming trick.
+  * Fax3: fix failure to decode some fax3 number_of_images and add test for Fax3 decoding issues (issue #513).
+  * TIFFSetDirectory() and TIFFWriteDirectorySec() avoid harmless unsigned-integer-overflow (due to gdal oss-fuzz #54311 and #54343).
+  * tif_ojpeg.c: fix issue #554 by checking for division by zero in OJPEGWriteHeaderInfo().
+  * LZWDecode(): avoid crash when trying to read again from a strip whith a missing end-of-information marker (issue #548).
+- Drop no longer needed patches:
+  * tiff-CVE-2023-0795,CVE-2023-0796,CVE-2023-0797,CVE-2023-0798,CVE-2023-0799.patch
+  * tiff-CVE-2022-48281.patch
+  * tiff-CVE-2023-0800,CVE-2023-0801,CVE-2023-0802,CVE-2023-0803,CVE-2023-0804.patch
-  * CVE-2023-25433 [bsc#1212883]
+- Update to 4.5.0:
+  * tdir_t type updated to uint32_t. This type is now used for the return
+    value of TIFFCurrentDirectory() and TIFFNumberOfDirectories(), and as
+    the argument of TIFFSetDirectory() and TIFFUnlinkDirectory()
+  * Addition of an open option concept with the new functions TIFFOpenExt(),
+    TIFFOpenWExt(), TIFFFdOpenExt(), TIFFClientOpenExt(), TIFFOpenOptionsAlloc(),
+    TIFFOpenOptionsFree()
+  * Leveraging above mentioned open option concept, addition of a new capability
+    to limit the size of a single dynamic memory allocation done by the library
+    with TIFFOpenOptionsSetMaxSingleMemAlloc()
+  * Related to IFD-Loop detection refactoring, the number of IFDs that libtiff
+    can browse through has been extended from 65535 to 1048576. This value is
+    a build-time setting that can be configured with CMake's TIFF_MAX_DIR_COUNT
+    variable or autoconf's --with-max-dir-count option.
+  * Whole code base reformatting of .c/.h files using new .clang-format format
+  * Documentation changed from static HTML and man pages to
+    Restructured Text (rst). HTML and man pages are now build artifacts.
+  * SONAME version bumped to 6 due to changes in symbol versioning.
+  * autoconf/cmake: detect (not yet released) libjpeg-turbo 2.2 to take into
+    its capability of handling both 8-bit JPEG and 12-bit JPEG in a single build.
+  * autoconf/cmake: detect sphinx-build to build HTML and man pages
+  * CMakeLists.txt: fix warning with -Wdev
+  * CMake: correctly set default value of 'lzma' option when liblzma is detected
+  * CMake: Moved linking of CMath::CMath into CMath_LIBRARY check.
+  * Fix CMake build to be compatible with FetchContent.
+  * cmake: Correct duplicate definition of _CRT_SECURE_NO_WARNINGS
+  * cmake: Fixes for Visual Studio 2022.
+  * Adds Requires.private generation so that pkg-config can correctly find
+    the dependencies of libtiff.
+  * Fix dependency on libm on Android
+  * Fix build in tif_lzw.c
+  * CMake: Add options for disabling tools, tests, contrib and docs.
+  * tiffcrop: Fix memory allocation to require a larger buffer (CVE-2022-3570, CVE-2022-3598)
+    [bsc#1205422]
+  * tiffcrop: disable incompatibility of -Z, -X, -Y, -z options with any PAGE_MODE_x option
+    (CVE-2022-3627, CVE-2022-3597, CVE-2022-3626)
+  * tiffcrop: fix floating-point exception (CVE-2022-2056, CVE-2022-2057, CVE-2022-2058)
+  * _TIFFCheckFieldIsValidForCodec(): return FALSE when passed a codec-specific tag
+    and the codec is not configured (CVE-2022-34526)
+  * Revised handling of TIFFTAG_INKNAMES and related TIFFTAG_NUMBEROFINKS value (CVE-2022-3599)
+  * tiffcrop: -S option mutually exclusive (CVE-2022-2519, CVE-2022-2520, CVE-2022-2521)
+- Drop tiff-CVE-2022-3597,CVE-2022-3626,CVE-2022-3627.patch
+- Drop tiff-CVE-2022-34526.patch
+- Drop tiff-CVE-2022-3599.patch
+- Drop tiff-CVE-2022-3598.patch
+- Drop tiff-CVE-2022-3970.patch
+- Drop tiff-CVE-2022-2519,CVE-2022-2520,CVE-2022-2521.patch
+- Drop tiff-CVE-2022-2056,CVE-2022-2057,CVE-2022-2058.patch
+
-  * CVE-2022-3570 [bsc#1205422]
-  * CVE-2022-3598 [bsc#1204642]
-    + tiff-CVE-2022-3598,3570.patch
+  * CVE-2022-3970 [bsc#1205392]
+    + tiff-CVE-2022-3970.patch
-  * CVE-2022-3970 [bsc#1205392]
-    + tiff-CVE-2022-3970.patch
+  * CVE-2022-3598 [bsc#1204642]
+    + tiff-CVE-2022-3598.patch
-  * CVE-2022-2867 [bsc#1202466]
-  * CVE-2022-2868 [bsc#1202467]
-  * CVE-2022-2869 [bsc#1202468]
-    + tiff-CVE-2022-2867,CVE-2022-2868,CVE-2022-2869.patch
-
-- CVE-2022-34266 [bsc#1201971] and [bsc#1201723]:
-  Rename tiff-CVE-2022-0561.patch to
-  tiff-CVE-2022-0561,CVE-2022-34266.patch
-  This CVE is actually a duplicate.
+- update to 4.4.0:
+  * TIFFIsBigTiff() function added.
+  * Functions TIFFFieldSetGetSize() and TIFFieldSetGetCountSize() added.
+  * LZWDecode(): major speed improvements (~30% faster)
+  * Predictor 2 (horizontal differenciation): support 64-bit
+  * Support libjpeg 9d
+  * avoid hang in TIFFRewriteDirectory() if a classic file > 4 GB is attempted
+    to be created
+  * tif_jbig.c: fix crash when reading a file with multiple IFD in
+    memory-mapped mode and when bit reversal is needed
+  * TIFFFetchNormalTag(): avoid calling memcpy() with a null source pointer and
+    size of zero
+  * TIFFWriteDirectoryTagData(): turn assertion on data length into a runtime
+    check
+  * TIFFFetchStripThing(): avoid calling memcpy() with a null source pointer
+    and size of zero
+  * TIFFReadDirectory(): avoid calling memcpy() with a null source pointer and
+    size of zero
+  * TIFFYCbCrToRGBInit(): avoid Integer-overflow
+  * TIFFGetField(TIFFTAG_STRIPBYTECOUNTS/TIFFTAG_STRIPOFFSETS): return error if
+    returned pointer is NULL (fixes #342)
+  * OJPEG: avoid assertion when using TIFFReadScanline()
+  * TIFFReadDirectory: fix OJPEG hack
+  * LZW codec: fix support for strips/tiles > 2 GB on Windows
+  * TIFFAppendToStrip(): fix rewrite-in-place logic
+  * Fix TIFFRewriteDirectory discarding directories.
+  * TIFFReadCustomDirectory(): avoid crash when reading SubjectDistance tag on
+    a non EXIF directory
+  * Fix Segmentation fault printing GPS directory if Altitude tag is present
+  * tif_jpeg.c: do not emit progressive scans with mozjpeg. (#266)
+  * _TIFFRewriteField(): fix when writing a IFD with a single tile that is a
+    sparse one, on big endian hosts
+  * Fix all remaining uses of legacy Deflate compression id and warn on use.
+  * CVE-2022-22844 bsc#1194539
+  * CVE-2022-2867 bsc#1202466
+  * CVE-2022-2868 bsc#1202467
+  * CVE-2022-2869 bsc#1202468
+- drop tiff-CVE-2022-0907.patch, tiff-CVE-2022-0561.patch, tiff-CVE-2022-0562.patch,
+  tiff-CVE-2022-0865.patch, tiff-CVE-2022-0909.patch, tiff-CVE-2022-0924.patch,
+  tiff-CVE-2022-0908.patch, tiff-CVE-2022-1056,CVE-2022-0891.patch: all upstream
+- add signature validation, adds tiff.keyring
+
+- security update:
+  * CVE-2022-0907 [bsc#1197070]
+    + tiff-CVE-2022-0907.patch
+
+  * CVE-2022-34266 [bsc#1201723] [bsc#1201971]
-- security update: Fix buffer overwrite
-  * CVE-2019-17546[bsc#1154365]
-    + tiff-CVE-2019-17546.patch
-- security update: Fix heap based buffer overflow in pal2rgb
-  * CVE-2017-17095[bsc#1071031]
-    + tiff-CVE-2017-17095.patch
-- security update: Fix OOB in _TIFFmemcpy
-  * CVE-2022-22844[bsc#1194539]
-    + tiff-CVE-2022-22844.patch
-- security update: Fix memory allocation failure in tif_read.c
-  * CVE-2020-35521[bsc#1182808] CVE-2020-35522[bsc#1182809]
-    + tiff-CVE-2020-35521,CVE-2020-35522.patch
-- security update: Fix DOS via invertImage()
-  * CVE-2020-19131[bsc#1190312]
-    + tiff-CVE-2020-19131.patch
-- security update: Fix heap-based buffer overflow in TIFF2PDF tool
-  * CVE-2020-35524[bsc#1182812]
-    + tiff-CVE-2020-35524.patch
-- security update: Fix integer overflow in tif_getimage
-  * CVE-2020-35523 [bsc#1182811]
-    + tiff-CVE-2020-35523.patch
-
-- security update: amend patch to fix test
-- modified patches
-  % tiff-CVE-2019-14973.patch (refreshed)
-
-- security update: Fix integer overflow in _TIFFCheckMalloc()
-  * CVE-2019-14973 [bsc#1146608]
-    + tiff-CVE-2019-14973.patch
+- switch source url to https
+
+- version update to 4.3.0
+  * Build and usage of the library and its utilities requires a C99
+    capable compiler.
+  * New optional codec for the LERC (Limited Error Raster Compression)
+    compression scheme. To have it available, configure libtiff against
+    the SDK available at https://github.com/esri/lerc
+  * Removal of unused, or now useless due to C99 availability,
+    functions in port/
+  * tiffcmp: fix comparaison with pixels that are
+    fractional number of bytes
+  * tiff2ps: exit the loop in case of error
+  * tiff2pdf: check that tiff_datasize fits in a signed tsize_t
+
+- version update to 4.2.0
+  Major changes:
+  * Optional support for using libdeflate is added.
+  * Many of the tools now support a memory usage limit.
+  See http://www.simplesystems.org/libtiff/v4.2.0.html for more.
+  * CVE-2020-35521 bsc#1182808
+  * CVE-2020-35522 bsc#1182809
+  * CVE-2020-35523 bsc#1182811
+  * CVE-2020-35524 bsc#1182812
+
+- Drop webp support as it would introduce build cycle
+
+- Enable zstd and webp support
+
+- version update to 4.1.0
+  * fixes several CVEs mentioned below and more,
+    see ChangeLog
+  * CVE-2019-17546 bsc#1154365
+  * CVE-2017-17095 bsc#1071031
+  * CVE-2019-14973 bsc#1146608
+  * CVE-2020-19131 bsc#1190312
+- deleted patches
+  - tiff-CVE-2018-12900.patch (upstreamed)
+  - tiff-CVE-2018-17000,19210.patch (upstreamed)
+  - tiff-CVE-2019-6128.patch (upstreamed)
+  - tiff-CVE-2019-7663.patch (upstreamed)
+- amend tiff-CVE-2018-12900.patch: fix wrong error message
+  [bsc#1099257]
+
+- Support only SLE12+ and remove the no longer needed conditions
+
-  * CVE-2018-18661 [bsc#1113672]
-    + tiff-CVE-2018-18661.patch
-  * CVE-2018-18557 [bsc#1113094]
-    + tiff-CVE-2018-18557.patch
-- asan_build: build ASAN included
-- debug_build: build more suitable for debugging
+- upddated to 4.0.10:
+  * fixes several CVEs mentioned below plus CVE-2018-18557 [bsc#1113094]
+  and CVE-2018-18661 [bsc#1113672] and more
+- removed patches
+  * tiff-CVE-2017-11613,CVE-2018-16335,15209.patch
+  * tiff-CVE-2017-18013.patch
+  * tiff-CVE-2017-9935,CVE-2018-17795.patch
+  * tiff-CVE-2018-10779.patch
+  * tiff-CVE-2018-10963.patch
+  * tiff-CVE-2018-17100.patch
+  * tiff-CVE-2018-17101.patch
+  * tiff-CVE-2018-7456.patch
+  * tiff-CVE-2018-8905.patch
+  * tiff-4.0.9-bsc1081690-CVE-2018-5784.patch
-  * CVE-2018-17100 [bsc#1108637]
-    + tiff-CVE-2018-17100.patch
-  * CVE-2018-17101 [bsc#1108627]
-    + tiff-CVE-2018-17101.patch
+  * CVE-2018-17100 [bsc#1108637]
+    + tiff-CVE-2018-17100.patch
+  * CVE-2018-17101 [bsc#1108627]
+    + tiff-CVE-2018-17101.patch
+
+- remove pal2rgb tool [bsc#1071031]
+
+- security update
traceroute
+- security update
+- added patches
+  fix CVE-2023-46316 [bsc#1216591], wrapper scripts do not properly parse command lines
+  + traceroute-CVE-2023-46316.patch
+
trento-agent
+- Release 2.2.0
+  [#] Changelog
+  [#]# [2.2.0](https://github.com/trento-project/agent/tree/2.2.0) (2023-11-14)
+  [Full Changelog](https://github.com/trento-project/agent/compare/2.1.0...2.2.0)
+  [#]## Added
+  - Products gatherer [\#285](https://github.com/trento-project/agent/pull/285) (@arbulu89)
+  - Mount info gatherer [\#284](https://github.com/trento-project/agent/pull/284) (@arbulu89)
+  - Add os-release gatherer [\#283](https://github.com/trento-project/agent/pull/283) (@rtorrero)
+  - Sapservices gatherer  [\#282](https://github.com/trento-project/agent/pull/282) (@CDimonaco)
+  - Disp work gatherer [\#281](https://github.com/trento-project/agent/pull/281) (@arbulu89)
+  - Add .tool-versions file [\#280](https://github.com/trento-project/agent/pull/280) (@arbulu89)
+  - Systemd V2 gatherer [\#278](https://github.com/trento-project/agent/pull/278) (@arbulu89)
+  - Gatherers versioning [\#277](https://github.com/trento-project/agent/pull/277) (@CDimonaco)
+  - Resolver gatherer [\#274](https://github.com/trento-project/agent/pull/274) (@rtorrero)
+  - Refactor NewSAPSystemsList to have a default function [\#273](https://github.com/trento-project/agent/pull/273) (@arbulu89)
+  - Sapcontrol gatherer [\#270](https://github.com/trento-project/agent/pull/270) (@arbulu89)
+  - Dir scan gatherer [\#269](https://github.com/trento-project/agent/pull/269) (@CDimonaco)
+  - sysctl gatherer [\#268](https://github.com/trento-project/agent/pull/268) (@rtorrero)
+  - Sap profile gatherer [\#267](https://github.com/trento-project/agent/pull/267) (@arbulu89)
+  - Fstab gatherer [\#265](https://github.com/trento-project/agent/pull/265) (@CDimonaco)
+  - Groups gatherer [\#264](https://github.com/trento-project/agent/pull/264) (@CDimonaco)
+  - Handle nil value in NewFactValue [\#263](https://github.com/trento-project/agent/pull/263) (@arbulu89)
+  - Add passwd file gatherer [\#261](https://github.com/trento-project/agent/pull/261) (@arbulu89)
+  - Add configuration options to NewFactValue [\#260](https://github.com/trento-project/agent/pull/260) (@arbulu89)
+  - Saptune gatherer [\#256](https://github.com/trento-project/agent/pull/256) (@rtorrero)
+  - Use json.RawMessage type to avoid unnecessary json.Unmarshal [\#255](https://github.com/trento-project/agent/pull/255) (@rtorrero)
+  - Add saptune discovery [\#253](https://github.com/trento-project/agent/pull/253) (@rtorrero)
+  - Ignore extra output when comparing versions with zypper [\#243](https://github.com/trento-project/agent/pull/243) (@nelsonkopliku)
+  [#]## Other Changes
+  - Bump actions/cache from 3.3.1 to 3.3.2 [\#252](https://github.com/trento-project/agent/pull/252) (@dependabot[bot])
+  - Bump github.com/hashicorp/go-plugin from 1.5.0 to 1.5.1 [\#250](https://github.com/trento-project/agent/pull/250) (@dependabot[bot])
+  - Bump github.com/hashicorp/go-plugin from 1.4.10 to 1.5.0 [\#249](https://github.com/trento-project/agent/pull/249) (@dependabot[bot])
+  - Bump actions/checkout from 3 to 4 [\#248](https://github.com/trento-project/agent/pull/248) (@dependabot[bot])
+  - bump contracts version [\#246](https://github.com/trento-project/agent/pull/246) (@nelsonkopliku)
+  - Bump github.com/google/uuid from 1.3.0 to 1.3.1 [\#244](https://github.com/trento-project/agent/pull/244) (@dependabot[bot])
+  - Bump github.com/vektra/mockery/v2 from 2.27.1 to 2.32.3 [\#240](https://github.com/trento-project/agent/pull/240) (@dependabot[bot])
+  - Bump golang.org/x/sync from 0.2.0 to 0.3.0 [\#239](https://github.com/trento-project/agent/pull/239) (@dependabot[bot])
+  - Bump google.golang.org/protobuf from 1.30.0 to 1.31.0 [\#238](https://github.com/trento-project/agent/pull/238) (@dependabot[bot])
+  - Bump github.com/spf13/viper from 1.15.0 to 1.16.0 [\#237](https://github.com/trento-project/agent/pull/237) (@dependabot[bot])
+  - Remove not needed certificates [\#236](https://github.com/trento-project/agent/pull/236) (@nelsonkopliku)
+  - Bump github.com/hashicorp/go-plugin from 1.4.8 to 1.4.10 [\#232](https://github.com/trento-project/agent/pull/232) (@dependabot[bot])
+  - Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3 [\#231](https://github.com/trento-project/agent/pull/231) (@dependabot[bot])
+  - Bump github.com/stretchr/testify from 1.8.2 to 1.8.4 [\#230](https://github.com/trento-project/agent/pull/230) (@dependabot[bot])
+  - Bump github.com/spf13/cobra from 1.6.1 to 1.7.0 [\#215](https://github.com/trento-project/agent/pull/215) (@dependabot[bot])
+
trento-server-installer
+- Release 2.2.0
+  [#] Changelog
+  [#]# [2.2.0](https://github.com/trento-project/helm-charts/tree/2.2.0) (2023-11-14)
+  [Full Changelog](https://github.com/trento-project/helm-charts/compare/2.1.0...2.2.0)
+  [#]## Added
+  - Add namespace option [\#77](https://github.com/trento-project/helm-charts/pull/77) (@rtorrero)
+  - Make pruning crobjob days variable [\#76](https://github.com/trento-project/helm-charts/pull/76) (@arbulu89)
+  - Wanda rollout [\#74](https://github.com/trento-project/helm-charts/pull/74) (@nelsonkopliku)
+  [#]## Fixed
+  - Enable rolling releases for script packages in OBS [\#78](https://github.com/trento-project/helm-charts/pull/78) (@rtorrero)
+  [#]## Other Changes
+  - Bump helm/chart-testing-action from 2.4.0 to 2.6.0 [\#79](https://github.com/trento-project/helm-charts/pull/79) (@dependabot[bot])
+  - Bump actions/checkout from 3 to 4 [\#75](https://github.com/trento-project/helm-charts/pull/75) (@dependabot[bot])
+  - Bump helm/chart-testing-action from 2.3.1 to 2.4.0 [\#70](https://github.com/trento-project/helm-charts/pull/70) (@dependabot[bot])
+
trento-supportconfig-plugin
+- Release 2.2.0
+  [#] Changelog
+  [#]# [2.2.0](https://github.com/trento-project/helm-charts/tree/2.2.0) (2023-11-14)
+  [Full Changelog](https://github.com/trento-project/helm-charts/compare/2.1.0...2.2.0)
+  [#]## Added
+  - Add namespace option [\#77](https://github.com/trento-project/helm-charts/pull/77) (@rtorrero)
+  - Make pruning crobjob days variable [\#76](https://github.com/trento-project/helm-charts/pull/76) (@arbulu89)
+  - Wanda rollout [\#74](https://github.com/trento-project/helm-charts/pull/74) (@nelsonkopliku)
+  [#]## Fixed
+  - Enable rolling releases for script packages in OBS [\#78](https://github.com/trento-project/helm-charts/pull/78) (@rtorrero)
+  [#]## Other Changes
+  - Bump helm/chart-testing-action from 2.4.0 to 2.6.0 [\#79](https://github.com/trento-project/helm-charts/pull/79) (@dependabot[bot])
+  - Bump actions/checkout from 3 to 4 [\#75](https://github.com/trento-project/helm-charts/pull/75) (@dependabot[bot])
+  - Bump helm/chart-testing-action from 2.3.1 to 2.4.0 [\#70](https://github.com/trento-project/helm-charts/pull/70) (@dependabot[bot])
+
+- Release 2.1.0
+  [#] Changelog
+  [#]# [2.1.0](https://github.com/trento-project/helm-charts/tree/2.1.0) (2023-08-02)
+  [Full Changelog](https://github.com/trento-project/helm-charts/compare/2.0.0...2.1.0)
+  [#]## Other Changes
+  - Update copyright year to 2023 [\#72](https://github.com/trento-project/helm-charts/pull/72) (@EMaksy)
+
upower
+- Update to version 0.99.17 (bsc#1217052):
+  + New ChargeCycles D-Bus property
+  + New async GLib APIs
+  + Various fixes
+
valgrind
+- update to 3.22.0: (jsc#PED-5442):
+  * Memcheck now tests and warns about the values used for
+    alignment and size. These apply to various functions: memalign,
+    posix_memalign and aligned_alloc in C and various overloads
+    of operators new and delete in C++. The kinds of error that can
+    be detected are
+  - invalid alignment, for instance the alignment is usually required
+    to be a power of 2
+  - mismatched alignment between aligned allocation and aligned
+    deallocation
+  - mismatched size when sized delete is used
+  - bad size for functions that have implementation defined behaviour
+    when the requested size is zero
+  * many bug fixes, see https://valgrind.org/docs/manual/dist.news.html
+
+- remove 32bit support for ALP
+
+- add VEX-x86-pinsrd.patch (bko#276780)
+
+- remove buildrequires on 32bit packages
+
+- update filelist for 32bit disabled projects
+
valgrind:client-headers
+- update to 3.22.0: (jsc#PED-5442):
+  * Memcheck now tests and warns about the values used for
+    alignment and size. These apply to various functions: memalign,
+    posix_memalign and aligned_alloc in C and various overloads
+    of operators new and delete in C++. The kinds of error that can
+    be detected are
+  - invalid alignment, for instance the alignment is usually required
+    to be a power of 2
+  - mismatched alignment between aligned allocation and aligned
+    deallocation
+  - mismatched size when sized delete is used
+  - bad size for functions that have implementation defined behaviour
+    when the requested size is zero
+  * many bug fixes, see https://valgrind.org/docs/manual/dist.news.html
+
+- remove 32bit support for ALP
+
+- add VEX-x86-pinsrd.patch (bko#276780)
+
+- remove buildrequires on 32bit packages
+
+- update filelist for 32bit disabled projects
+
xerces-c
+- Fix CVE-2023-37536: an integer overflow could potentially lead to
+  out-of-bounds memory accesses (bsc#1216156).
+  * Add xerces-c-CVE-2023-37536.patch.
+
xf86-video-intel
+- renamed n_Mesa-i965-crocus.patch to n_Mesa-i965-crocus-iris.patch
+- n_Mesa-i965-crocus-iris.patch
+  * use "iris" instead of "crocus" for anything newer than Haswell
+
+- n_Mesa-i965-crocus.patch
+  * Mesa's DRI driver is now called "crocus" (previously "i965");
+    fixes hardware OpenGL support when still using "intel" X
+    driver instead of "modesetting" one ...
+
xxhash
+- Update to release 0.8.2
+  * ARM NEON speed improvements; on M1 Pro it is +20% speed for
+    XXH3 and XXH128 (from 30.0 GB/s to 36 GB/s).
+  * Added support for ARM's SVE vector extension.
+  * Resolved some issues with XXH3's s390x vector implementation.
+- Delete xxhash-avoid-armv6-unaligned-access.patch (should be
+  fixed by c0dd448b), delete 836f4e735cf368542f14005e41d2f84ec29dfd60.patch
+  (merged), delete 15ce80f9f2760609d8cc68cea76d3f3217ab70e1.patch
+  aka xxhash-ppc64le-gcc7.patch (merged)
+
+- Add 15ce80f9f2760609d8cc68cea76d3f3217ab70e1.patch: fix build
+  failure on ppc64le when using gcc 7 (boo#1208794).
+
yast2-trans
+- Update to version 84.87.20231121.7869d671a6:
+  * New POT for text domain 'hana-ha'.
+
+- Update to version 84.87.20231117.f12231d4de:
+  * New POT for text domain 'cc'.
+
+- Update to version 84.87.20231104.b73ad6fbc9:
+  * Translated using Weblate (Slovak)
+  * Translated using Weblate (Czech)
+  * Translated using Weblate (Dutch)
+  * Translated using Weblate (Catalan)
+  * Translated using Weblate (Japanese)
+  * Translated using Weblate (Japanese)
+  * New POT for text domain 'storage'.
+  * New POT for text domain 'installation'.
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * New POT for text domain 'update'.
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+
+- Update to version 84.87.20231027.a9c9df2125:
+  * Translated using Weblate (Galician)
+  * Translated using Weblate (Macedonian)
+  * Translated using Weblate (Macedonian)
+  * Translated using Weblate (Macedonian)
+  * Translated using Weblate (Macedonian)
+  * Translated using Weblate (Macedonian)
+  * Translated using Weblate (Macedonian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Catalan)
+  * Translated using Weblate (Czech)
+  * Translated using Weblate (Czech)
+  * Translated using Weblate (Slovak)
+  * Translated using Weblate (Slovak)
+  * Translated using Weblate (Dutch)
+  * Translated using Weblate (Japanese)
+  * New POT for text domain 'storage'.
+  * New POT for text domain 'country'.
+  * Translated using Weblate (Dutch)
+  * Translated using Weblate (Catalan)
+  * Translated using Weblate (Japanese)
+  * Translated using Weblate (French)
+  * New POT for text domain 'qt-pkg'.
+
+- Update to version 84.87.20231004.bd479b5f2d:
+  * Translated using Weblate (Portuguese (Brazil))
+  * Translated using Weblate (Portuguese (Brazil))
+  * Translated using Weblate (German)
+  * Translated using Weblate (German)
+  * Translated using Weblate (German)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Catalan)
+  * Translated using Weblate (Catalan)
+
+- Update to version 84.87.20230930.5f9e01162a:
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Spanish)
+  * Translated using Weblate (Spanish)
+  * Translated using Weblate (Spanish)
+  * Translated using Weblate (Spanish)
+  * New POT for text domain 'storage'.
+
+- Update to version 84.87.20230922.91d997adab:
+  * New POT for text domain 'packager'.
+  * New POT for text domain 'iscsi-client'.
+
+- Update to version 84.87.20230913.43f962446c:
+  * Translated using Weblate (Indonesian)
+  * New POT for text domain 'control'.
+
+- Update to version 84.87.20230909.35988571be:
+  * Translated using Weblate (Swedish)
+  * Translated using Weblate (Swedish)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Russian)
+
+- Update to version 84.87.20230901.be24cb382f:
+  * Translated using Weblate (Slovak)
+  * Translated using Weblate (Dutch)
+  * Translated using Weblate (Japanese)
+  * Translated using Weblate (Czech)
+  * Translated using Weblate (Catalan)
+  * New POT for text domain 'bootloader'.
+  * Translated using Weblate (Kurdish)
+  * Translated using Weblate (Kurdish)
+
+- Update to version 84.87.20230818.ea489402e5:
+  * Translated using Weblate (Latvian)
+  * Translated using Weblate (Catalan)
+  * Translated using Weblate (Catalan)
+  * Translated using Weblate (Catalan)
+
+- Update to version 84.87.20230811.13616e3be9:
+  * Translated using Weblate (Georgian)
+  * Translated using Weblate (Slovak)
+  * Translated using Weblate (Slovak)
+  * Translated using Weblate (Slovak)
+  * Translated using Weblate (Japanese)
+  * Translated using Weblate (Japanese)
+  * Translated using Weblate (Japanese)
+  * Translated using Weblate (Czech)
+  * Translated using Weblate (Dutch)
+  * Translated using Weblate (Czech)
+  * Translated using Weblate (Dutch)
+  * Translated using Weblate (Czech)
+  * New POT for text domain 'users'.
+  * New POT for text domain 'storage'.
+  * New POT for text domain 'sap-installation-wizard'.
+  * New POT for text domain 'qt-pkg'.
+  * New POT for text domain 'qt'.
+  * New POT for text domain 'pam'.
+  * New POT for text domain 'ncurses'.
+  * New POT for text domain 'migration_sle'.
+  * New POT for text domain 'kdump'.
+  * New POT for text domain 'installation'.
+  * New POT for text domain 'control'.
+
+- Update to version 84.87.20230729.64eca7e0a1:
+  * Translated using Weblate (Kurdish)
+  * Translated using Weblate (Czech)
+
+- Update to version 84.87.20230720.09601d9b28:
+  * Translated using Weblate (English (United Kingdom))
+  * Translated using Weblate (English (United Kingdom))
+  * Translated using Weblate (Russian)
+
+- Update to version 84.87.20230714.966688ddd0:
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+
+- Update to version 84.87.20230708.d1de37aed1:
+  * Translated using Weblate (Chinese (China) (zh_CN))
+  * Translated using Weblate (Kurdish)
+
+- Update to version 84.87.20230630.ccfa6add46:
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Finnish)
+
+- Update to version 84.87.20230619.113a4fdc71:
+  * Translated using Weblate (Kurdish)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Kurdish)
+  * Translated using Weblate (Kurdish)
+  * Translated using Weblate (Kurdish)
+  * Translated using Weblate (Kurdish)
+  * Translated using Weblate (Arabic)
+  * Translated using Weblate (Kurdish)
+  * Translated using Weblate (Italian)
+  * New POT for text domain 'users'.
+  * New POT for text domain 's390'.
+  * New POT for text domain 'storage'.
+  * New POT for text domain 'apparmor'.
+
+- Update to version 84.87.20230602.240a95214f:
+  * New POT for text domain 'control'.
+  * Translated using Weblate (Macedonian)
+  * New POT for text domain 'autoinst'.
+