Packages changed: container-selinux (2.164.2 -> 2.171.0) gawk kernel-firmware (20211027 -> 20211115) libX11 libglvnd podman (3.4.1 -> 3.4.2) snapper (0.9.0 -> 0.9.1) xen yast2 (4.4.20 -> 4.4.22) === Details === ==== container-selinux ==== Version update (2.164.2 -> 2.171.0) - Update to version 2.171.0 * Define kubernetes_file_t as a config_type * Allow containers to be socket activated by user domains and by systemd. * Allow iptables to use fifo files of a container runtime * Allow container_runtime create all tmpfs content as container_runtime_tmpfs_t * Allow containers to create lnk_file on tmpfs_t directories. ==== gawk ==== - disable racy iolint tests boo#1192521 add gawk-5.1.1-Disable-racy-test-in-test-iolint.awk.patch ==== kernel-firmware ==== Version update (20211027 -> 20211115) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Update to version 20211115 (git commit f5d519563ac9): * linux-firmware: Update AMD cpu microcode * amdgpu: update raven2 firmware from 21.40 * amdgpu: update navi14 firmware from 21.40 * amdgpu: update raven firmware from 21.40 * amdgpu: update navi12 firmware from 21.40 * amdgpu: update navi10 firmware from 21.40 * amdgpu: update vega20 firmware from 21.40 * amdgpu: update vega12 firmware from 21.40 * amdgpu: update vega10 firmware from 21.40 * amdgpu: update picasso firmware from 21.40 * amdgpu: update vangogh firmware from 21.40 * amdgpu: update beige goby firmware from 21.40 * amdgpu: add cyan skillfish firmware from 21.40 * amdgpu: update dimgrey cavefish firmware from 21.40 * amdgpu: update green sardine firmware from 21.40 * amdgpu: update navy flounder firmware from 21.40 * amdgpu: update renoir firmware from 21.40 * amdgpu: update arcturus firmware from 21.40 * amdgpu: update sienna cichlid firmware from 21.40 * rtl_bt: Update RTL8852A BT USB firmware to 0xDBA9_6937 * iwlwifi: add new FWs from core64-96 release * iwlwifi: update 9000-family firmwares to core64-96 * amdgpu: update VCN firmware for green sardine * linux-firmware: update frimware for mediatek bluetooth chip (MT7921) - Update aliases ==== libX11 ==== Subpackages: libX11-6 libX11-data - u_no-longer-crash-in-XVisualIDFromVisual.patch * no longer crash in XVisualIDFromVisual() [boo#1191517] ==== libglvnd ==== - Disable asm on aarch64 Tumbleweed due to issue with BTI - boo#1188928 ==== podman ==== Version update (3.4.1 -> 3.4.2) Subpackages: podman-cni-config - Update to version 3.4.2: * Fixed a bug where podman tag could not tag manifest lists (#12046). * Fixed a bug where built-in volumes specified by images would not be created correctly under some circumstances. * Fixed a bug where, when using Podman Machine on OS X, containers in pods did not have working port forwarding from the host (#12207). * Fixed a bug where the podman network reload command command on containers using the slirp4netns network mode and the rootlessport port forwarding driver would make an unnecessary attempt to restart rootlessport on containers that did not forward ports. * Fixed a bug where the podman generate kube command would generate YAML including some unnecessary (set to default) fields (e.g. empty SELinux and DNS configuration blocks, and the privileged flag when set to false) (#11995). * Fixed a bug where the podman pod rm command could, if interrupted at the right moment, leave a reference to an already-removed infra container behind (#12034). * Fixed a bug where the podman pod rm command would not remove pods with more than one container if all containers save for the infra container were stopped unless --force was specified (#11713). * Fixed a bug where the --memory flag to podman run and podman create did not accept a limit of 0 (which should specify unlimited memory) (#12002). * Fixed a bug where the remote Podman client's podman build command could attempt to build a Dockerfile in the working directory of the podman system service instance instead of the Dockerfile specified by the user (#12054). * Fixed a bug where the podman logs --tail command could function improperly (printing more output than requested) when the journald log driver was used. * Fixed a bug where containers run using the slirp4netns network mode with IPv6 enabled would not have IPv6 connectivity until several seconds after they started (#11062). * Fixed a bug where some Podman commands could cause an extra dbus-daemon process to be created (#9727). * Fixed a bug where rootless Podman would sometimes print warnings about a failure to move the pause process into a given CGroup (#12065). * Fixed a bug where the checkpointed field in podman inspect on a container was not set to false after a container was restored. * Fixed a bug where the podman system service command would print overly-verbose logs about request IDs (#12181). * Fixed a bug where Podman could, when creating a new container without a name explicitly specified by the user, sometimes use an auto-generated name already in use by another container if multiple containers were being created in parallel (#11735). ==== snapper ==== Version update (0.9.0 -> 0.9.1) Subpackages: libsnapper5 - look for most configuration files in /etc/snapper and /usr/share/snapper (bsc#1189601) - version 0.9.1 ==== xen ==== - Update to Xen 4.16.0 RC3 release xen-4.16.0-testing-src.tar.bz2 - Drop iPXE sources and patches. iPXE is only used by QEMU traditional which has never shipped with SLE15. ipxe.tar.bz2 ipxe-enable-nics.patch ipxe-no-error-logical-not-parentheses.patch ipxe-use-rpm-opt-flags.patch - Drop building ocaml xenstored in the spec file. There are no plans or need to support this version. ==== yast2 ==== Version update (4.4.20 -> 4.4.22) - Force creating the UI before checking -pkg etc. UI plug-ins (bsc#1192650) - 4.4.22 - Adapt the code to the new product specification API (bsc#1192626). - yast2-packager is now responsible for finding the list of available base products during installation. - Drop ProductControlProduct class. - 4.4.21