Packages changed: libqt5-qtwebengine (5.15.9 -> 5.15.10) nfs-utils openvpn (2.5.6 -> 2.5.7) python-gobject python-importlib-metadata (4.11.3 -> 4.11.4) udisks2 yast2-network (4.5.2 -> 4.5.3) === Details === ==== libqt5-qtwebengine ==== Version update (5.15.9 -> 5.15.10) - Update to version 5.15.10: * Fix top level build with no widget * Fix read-after-free on EGL extensions * Update Chromium * Add workaround for unstable gn on macOS in ci * Pass archiver to gn build * Fix navigation to non-local URLs * Add support for universal builds for qtwebengine and qtpdf * Enable Apple Silicon support * Fix cross compilation x86_64->arm64 on mac * Bump version to 5.15.10 * CustomDialogs: Make custom input fields readable in dark mode * CookieBrowser: Make alternating rows readable in dark mode * Update Chromium: * Bump V8_PATCH_LEVEL * Fix clang set-but-unused-variable warning * Fix mac toolchain python linker script call * Fix missing dependency for gpu sources * Fix python calls * Fix undefined symbol for universal link * Quick fix for regression in service workers by reverting backports * [Backport] CVE-2022-0797: Out of bounds memory access in Mojo * [Backport] CVE-2022-1125 * [Backport] CVE-2022-1138: Inappropriate implementation in Web Cursor. * [Backport] CVE-2022-1305: Use after free in storage * [Backport] CVE-2022-1310: Use after free in regular expressions * [Backport] CVE-2022-1314: Type Confusion in V8 * [Backport] CVE-2022-1493: Use after free in Dev Tools * [Backport] On arm64 hosts, set host_cpu to 'arm64', not 'arm' * [Backport] Security Bug 1296876 * [Backport] Security bug 1269999 * [Backport] Security bug 1280852 * [Backport] Security bug 1292905 * [Backport] Security bug 1304659 * [Backport] Security bug 1306507 ==== nfs-utils ==== Subpackages: libnfsidmap1 nfs-client nfs-kernel-server - 0001-systemd-Apply-all-sysctl-settings-when-NFS-related-m.patch Ensure sysctl setting work (bsc#1199856) - 0002-Update-autoconfig-files-to-work-with-v2.71.patch - 0003-autoconf-change-tirpc-to-check-for-a-file-not-for-an.patch Update for latest autoconf ==== openvpn ==== Version update (2.5.6 -> 2.5.7) - update to 2.5.7: * Limited OpenSSL 3.0 support * print OpenSSL error stack if decoding PKCS12 file fails * fix omission of cipher-negotiation.rst in tarballs * fix errno handling on Windows (Windows has different classes of error codes, GetLastError() and C runtime errno, these should now be handled correctly) * fix PATH_MAX build failure in auth-pam.c * fix t_net.sh self-test leaving around stale "ovpn-dummy0" interface * fix overlong path names, leading to missing pkcs11-helper patch in tarball ==== python-gobject ==== Subpackages: python38-gobject python38-gobject-Gdk python38-gobject-cairo - Add dependency on python-cairo to python-gobject-cairo: The introspection wrapper needs the actual pycairo underneath (boo#1179584). ==== python-importlib-metadata ==== Version update (4.11.3 -> 4.11.4) - update to 4.11.4: * #379: In ``PathDistribution._name_from_stem``, avoid including parts of the extension in the result. * #381: In ``PathDistribution._normalized_name``, ensure names loaded from the stem of the filename are also normalized, ensuring duplicate entry points by packages varying only by non-normalized name are hidden. ==== udisks2 ==== Subpackages: libudisks2-0 libudisks2-0_btrfs udisks2-lang - Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_udisks2-zram-setup@.service.patch * harden_udisks2.service.patch ==== yast2-network ==== Version update (4.5.2 -> 4.5.3) - Allow more than 6 domains in resolver search list (bsc#1200155). - 4.5.3