Removed rpms
============

 - gnome-documents
 - gnome-documents-lang
 - gnome-online-miners
 - gnome-shell-search-provider-documents
 - jq
 - libgps25
 - libgupnp-1_2-0
 - libgupnp-dlna-2_0-3
 - libjq1
 - libonig4
 - libsynctex1
 - libzapojit-0_0-0
 - typelib-1_0-GData-0_0
 - typelib-1_0-Zpj-0_0

Added rpms
==========

 - bash-sh
 - busybox
 - busybox-coreutils
 - busybox-findutils
 - busybox-grep
 - busybox-gzip
 - busybox-psmisc
 - busybox-sed
 - busybox-util-linux
 - busybox-xz
 - gupnp-dlna
 - libgps29
 - libgupnp-1_2-1
 - libgupnp-dlna-2_0-4
 - libpurple-client0
 - libpurple0
 - libsynctex2
 - qemu-SLOF
 - typelib-1_0-GtkSource-3_0

Package Source Changes
======================

Mesa
+- baselibs.conf: readded mistakenly removed packages
+  * Mesa-libVulkan-devel
+  * Mesa-vulkan-device-select
+  * Mesa-vulkan-overlay
+
+- autoselect libvulkan_intel package via hardware supplements on
+  Intel GPUs
+- autoselect libvulkan_radeon package via hardware supplements on
+  AMD GPUs
+- no longer install libvulkan_lvp package (lavapipe=Software
+  Vulkan driver), libvulkan_broadcom and libvulkan_freedreno packages
+  by default, i.e. no longer have libvulkan_intel/libvulkan_radeon
+  and libvulkan_lvp packages installed at the same time (boo#1180522)
+- libvulkan_intel/libvulkan_radeon/libvulkan_lvp now require
+  Mesa-vulkan-device-select package, not the other way round!
+  (baselibs.conf also adjusted)
+
Mesa-drivers
+- baselibs.conf: readded mistakenly removed packages
+  * Mesa-libVulkan-devel
+  * Mesa-vulkan-device-select
+  * Mesa-vulkan-overlay
+
+- autoselect libvulkan_intel package via hardware supplements on
+  Intel GPUs
+- autoselect libvulkan_radeon package via hardware supplements on
+  AMD GPUs
+- no longer install libvulkan_lvp package (lavapipe=Software
+  Vulkan driver), libvulkan_broadcom and libvulkan_freedreno packages
+  by default, i.e. no longer have libvulkan_intel/libvulkan_radeon
+  and libvulkan_lvp packages installed at the same time (boo#1180522)
+- libvulkan_intel/libvulkan_radeon/libvulkan_lvp now require
+  Mesa-vulkan-device-select package, not the other way round!
+  (baselibs.conf also adjusted)
+
MozillaFirefox
+- Firefox Extended Support Release 91.7.0 ESR
+  * Fixed: Various stability, functionality, and security fixes
+  MFSA 2022-10 (bsc#1196900)
+  * CVE-2022-26383 (bmo#1742421)
+    Browser window spoof using fullscreen mode
+  * CVE-2022-26384 (bmo#1744352)
+    iframe allow-scripts sandbox bypass
+  * CVE-2022-26387 (bmo#1752979)
+    Time-of-check time-of-use bug when verifying add-on
+    signatures
+  * CVE-2022-26381 (bmo#1736243)
+    Use-after-free in text reflows
+  * CVE-2022-26386 (bmo#1752396)
+    Temporary files downloaded to /tmp and accessible by other
+    local users
+
MozillaThunderbird
+- Mozilla Thunderbird 91.7
+  * changed: Thunderbird will use the first occurrence of headers
+    that should only appear once
+  * fixed: Auto-complete incorrectly changed a pasted email
+    address to the primary address of a contact
+  * fixed: Attachments with filename extensions that were not
+    registered in MIME types could not be opened
+  * fixed: Copy/Cut/Paste actions not working in Thunderbird
+    Preferences
+  * fixed: Improved screen reader support of displayed message
+    headers
+  * fixed: Various security fixes
+  MFSA 2022-12 (bsc#1196900)
+  * CVE-2022-26383 (bmo#1742421)
+    Browser window spoof using fullscreen mode
+  * CVE-2022-26384 (bmo#1744352)
+    iframe allow-scripts sandbox bypass
+  * CVE-2022-26387 (bmo#1752979)
+    Time-of-check time-of-use bug when verifying add-on
+    signatures
+  * CVE-2022-26381 (bmo#1736243)
+    Use-after-free in text reflows
+  * CVE-2022-26386 (bmo#1752396)
+    Temporary files downloaded to /tmp and accessible by other
+    local users
+
apache2
+- modified patches
+  % apache2-CVE-2022-23943.patch (extended by r1898772 [bsc#1197095c#10])
+
+- security update
+- added patches
+  fix CVE-2022-23943 [bsc#1197098], heap out-of-bounds write in mod_sed
+  + apache2-CVE-2022-23943.patch
+  fix CVE-2022-22720 [bsc#1197095], HTTP request smuggling due to incorrect error handling
+  + apache2-CVE-2022-22720.patch
+  fix CVE-2022-22719 [bsc#1197091], use of uninitialized value of in r:parsebody in mod_lua
+  + apache2-CVE-2022-22719.patch
+  fix CVE-2022-22721 [bsc#1197096], possible buffer overflow with very large or unlimited LimitXMLRequestBody
+  + apache2-CVE-2022-22721.patch
+- apply correctly patches for CVE-2021-44790 [bsc#1193942] and
+  CVE-2021-44224 [bsc#1193943]
+
+- security update
at
+- Drop systemd hardening as it breaks some jobs, fixes bsc#1196219
+  * Remove harden_atd.service.patch
+
bash
+- Do use old legacy PreReq to get bash installed before bash-sh
+  but do not require bash-sh by bash (bsc#1197448)
+
+- Port bash-sh package approach back to SLE-15-SP4 (jsc#SLE-18234)
+
+- Using package bash-sh instead of the update-alternative
+  mechanism.
+
bind
+- Obsolete bind-chrootenv as it is no longer needed.
+  [bsc#1196990, bind.spec]
+
+- * When using forwarders, bogus NS records supplied by, or via, those
+    forwarders may be cached and used by named if it needs to recurse
+    for any reason, causing it to obtain and pass on potentially
+    incorrect answers. [CVE-2021-25220]
+  * TCP connection slots may be consumed for an indefinite time frame
+    via a specifically crafted TCP stream sent from a client.
+    This issue can only be triggered on BIND servers which have
+    keep-response-order enabled, which is not the default configuration.
+    The keep-response-order option is an ACL block, and as such, any
+    hosts specified within it will be able to trigger this issue on
+    affected versions. [CVE-2022-0396]
+  [CVE-2021-25220, bsc#1197135, bind-9.16.27-0001-CVE-2021-25220.patch
+  CVE-2022-0396, bsc#1197136, bind-9.16.27-0002-CVE-2022-0396.patch]
+
branding-openSUSE
+- Bump to 15.4
+
ceph
+- Adjusting _constraints for SLE 15 SP4 to fix build issues with
+  aarch64 and ppc64le (bsc#1196733)
+
chrony
+- bsc#1194229: Fix pool package dependencies, so that SLE actually
+  prefers chrony-pool-suse over chrony-pool-empty.
+
+- Add chrony-htonl.patch to work around undocumented behaviour of
+  htonl() in older glibc versions (SLE-12) on 64 bit big endian
+  architectures (s390x).
+
+- SLE bugs that have been fixed in openSUSE up to this point
+  without explicit references: bsc#1183783, bsc#1184400,
+  bsc#1171806, bsc#1161119, bsc#1159840.
+- Obsoleted SLE patches:
+  * chrony-fix-open.patch
+  * chrony-gettimeofday.patch
+  * chrony-ntp-era-split.patch
+  * chrony-pidfile.patch
+  * chrony-select-timeout.patch
+  * chrony-urandom.patch
+  * chrony.sysconfig
+  * clknetsim-glibc-2.31.patch
+
+- boo#1190926: PrivateDevices is too strict, we might need to
+  access the rtc and ptp devices.
+- Add back support to build chrony on SLE12.
+- Drop dependency on asciidoctor. It is only needed for building
+  the HTML documentation which we don't package anyway.
+
+- Added hardening to systemd service(s). Added patch(es):
+  * harden_chrony-wait.service.patch
+  * harden_chronyd.service.patch
+
+- boo#1187906: Consolidate all references to the helper script.
-- boo#1162964, bsc#1183783, clknetsim-glibc-2.31.patch:
-  Fix build with glibc-2.31
-- bsc#1184400, chrony-pidfile.patch:
-  Use /run instead of /var/run for PIDFile in chronyd.service.
+- Add now working CONFIG parameter to sysusers generator
-- Integrate three upstream patches to fix an infinite loop in
-  chronyc (bsc#1171806).
-  * chrony-select-timeout.patch
-  * chrony-gettimeofday.patch
-  * chrony-urandom.patch
+- Change to using systemd-sysusers
+- Remove otherproviders, not needed anymore
-- Use iburst in the default pool statements to speed up initial
-  synchronisation (bsc#1172113).
+- Update to 4.1
+  * Add support for NTS servers specified by IP address (matching
+    Subject Alternative Name in server certificate)
+  * Add source-specific configuration of trusted certificates
+  * Allow multiple files and directories with trusted certificates
+  * Allow multiple pairs of server keys and certificates
+  * Add copy option to server/pool directive
+  * Increase PPS lock limit to 40% of pulse interval
+  * Perform source selection immediately after loading dump files
+  * Reload dump files for addresses negotiated by NTS-KE server
+  * Update seccomp filter and add less restrictive level
+  * Restart ongoing name resolution on online command
+  * Fix dump files to not include uncorrected offset
+  * Fix initstepslew to accept time from own NTP clients
+  * Reset NTP address and port when no longer negotiated by NTS-KE
+    server
+- Update clknetsim to snapshot f89702d.
+- Refresh chrony.keyring from
+  https://chrony.tuxfamily.org/gpgkey-8F375C7E8D0EE125A3D3BD51537E2B76F7680DAC.asc
+- Ensure the correct pool packages are installed for openSUSE
+  and SLE (bsc#1180689).
+
+- Enable syscallfilter unconditionally [boo#1181826].
+
+- drop buildrequires on NSS. We need gnutls for NTS anyway and we
+  can do all the other required crypto via nettle+gnutls. no need
+  for another crypto library.
+
+- Update to 4.0
+  - Enhancements
+  - Add support for Network Time Security (NTS) authentication
+  - Add support for AES-CMAC keys (AES128, AES256) with Nettle
+  - Add authselectmode directive to control selection of
+    unauthenticated sources
+  - Add binddevice, bindacqdevice, bindcmddevice directives
+  - Add confdir directive to better support fragmented
+    configuration
+  - Add sourcedir directive and "reload sources" command to
+    support dynamic NTP sources specified in files
+  - Add clockprecision directive
+  - Add dscp directive to set Differentiated Services Code Point
+    (DSCP)
+  - Add -L option to limit log messages by severity
+  - Add -p option to print whole configuration with included
+    files
+  - Add -U option to allow start under non-root user
+  - Allow maxsamples to be set to 1 for faster update with -q/-Q
+    option
+  - Avoid replacing NTP sources with sources that have
+    unreachable address
+  - Improve pools to repeat name resolution to get "maxsources"
+    sources
+  - Improve source selection with trusted sources
+  - Improve NTP loop test to prevent synchronisation to itself
+  - Repeat iburst when NTP source is switched from offline state
+    to online
+  - Update clock synchronisation status and leap status more
+    frequently
+  - Update seccomp filter
+  - Add "add pool" command
+  - Add "reset sources" command to drop all measurements
+  - Add authdata command to print details about NTP
+    authentication
+  - Add selectdata command to print details about source
+    selection
+  - Add -N option and sourcename command to print original names
+    of sources
+  - Add -a option to some commands to print also unresolved
+    sources
+  - Add -k, -p, -r options to clients command to select, limit,
+    reset data
+  - Bug fixes
+  - Don’t set interface for NTP responses to allow asymmetric
+    routing
+  - Handle RTCs that don’t support interrupts
+  - Respond to command requests with correct address on
+    multihomed hosts
+  - Removed features
+  - Drop support for RIPEMD keys (RMD128, RMD160, RMD256, RMD320)
+  - Drop support for long (non-standard) MACs in NTPv4 packets
+    (chrony 2.x clients using non-MD5/SHA1 keys need to use
+    option "version 3")
+  - Drop support for line editing with GNU Readline
+- add BuildRequires for gnutls-devel (which also pulls nettle to
+  enable the new features)
+- drop patches which are included in the update:
+  chrony-test-update-processing-of-packet-log.patch
+  chrony-test-fix-util-unit-test-for-NTP-era-split.patch
+- refreshed chrony-config.patch
+- track series file for easier quilt setup
+- added option to turn off testsuite with
+  osc build --without=testsuite
+  testsuite still runs by default
+
+- By default we don't write log files but log to journald, so
+  only recommend logrotate.
+
+- Adjust and rename the sysconfig file, so that it matches the
+  expectations of chronyd.service (bsc#1173277).
+
+- Update to 3.5.1:
+  * Create new file when writing pidfile (CVE-2020-14367, bsc#1174911)
+
+- Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075)
-- Read runtime servers from /var/run/netconfig/chrony.servers to
-  fix bsc#1099272 and bsc#1161119.
-- Move chrony-helper to /usr/lib/chrony/helper, because there
-  should be no executables in /usr/share.
+- Use iburst in the default pool statements to speed up initial
+  synchronisation (bsc#1172113).
+
+- Use _systemdutildir instead of _libexecdir/systemd: systemd does
+  not actually live below libexecdir.
+
+- Add chrony-test-update-processing-of-packet-log.patch in order
+  to fix test-suite failure.
+
+- Update clknetsim to version 79ffe44 (fixes boo#1162964).
+- Backport chrony-test-fix-util-unit-test-for-NTP-era-split.patch.
+
+- Change to BuildRequires: rubygem(asciidoctor) and remove conditional
+  (is available in SLE12-SP4 and SLE15* as well)
+- Fix typo in %install
-- bsc#1159840: Add chrony-ntp-era-split.patch from upstream to fix
-  "make check" builds made after 2019-12-20. Existing installations
-  do not need to be updated as the bug only affects the test, but
-  not chrony itself.
+- Fix asciidoc in Tumbleweed
+- Revert clknetsim to version 58c5e8b
+
+- Fix incorrect download link for package signature
+
+- Temporarily disable signature usage as its expired
+- Update clknetsim to version ac3c832
+
+- fix chrony-service-helper.patch
+
+- Update to 3.5:
+  + Add support for more accurate reading of PHC on Linux 5.0
+  + Add support for hardware timestamping on interfaces with read-only timestamping configuration
+  + Add support for memory locking and real-time priority on FreeBSD, NetBSD, Solaris
+  + Update seccomp filter to work on more architectures
+  + Validate refclock driver options
+  + Fix bindaddress directive on FreeBSD
+  + Fix transposition of hardware RX timestamp on Linux 4.13 and later
+  + Fix building on non-glibc systems
+- Fix location of helper script in chrony-dnssrv@.service
+  (bsc#1128846).
+
+- Update testsuite to version 58c5e8b
+
+- Read runtime servers from /var/run/netconfig/chrony.servers to
+  fix bsc#1099272.
+- Move chrony-helper to /usr/lib/chrony/helper, because there
+  should be no executables in /usr/share.
+- Update clknetsim to revision 8b48422
+
+- Remove discrepancies between spec file and chrony-tmpfiles (boo#1115529)
+
+- Update the keyring and uncomment it in the spec file
+
+- Comment out bad signature
+
+- Added %{_tmpfilesdir}/%{name}.conf
+- Updated clknetsim
+- Update to version 3.4
+  * Enhancements
+    + Add filter option to server/pool/peer directive
+    + Add minsamples and maxsamples options to hwtimestamp directive
+    + Add support for faster frequency adjustments in Linux 4.19
+    + Change default pidfile to /var/run/chrony/chronyd.pid to allow chronyd
+    without root privileges to remove it on exit
+    + Disable sub-second polling intervals for distant NTP sources
+    + Extend range of supported sub-second polling intervals
+    + Get/set IPv4 destination/source address of NTP packets on FreeBSD
+    + Make burst options and command useful with short polling intervals
+    + Modify auto_offline option to activate when sending request failed
+    + Respond from interface that received NTP request if possible
+    + Add onoffline command to switch between online and offline state
+    according to current system network configuration
+    + Improve example NetworkManager dispatcher script
+  * Bug fixes
+    + Avoid waiting in Linux getrandom system call
+    + Fix PPS support on FreeBSD and NetBSD
+
+- Update clknetsim to revision 42b693b
+  * Drop not needed chrony-fix-open.patch
+- Build tests with optflags as well
+- Do not run tests on i586
+- Enable signd
+
+- Mention all sources as such in spec file
+- Fix formatting of changelog
+- Drop reference to change is not present
+
+- Update to version 3.3
+  * Enhancements:
+    + Add burst option to server/pool directive
+    + Add stratum and tai options to refclock directive
+    + Add support for Nettle crypto library
+    + Add workaround for missing kernel receive timestamps on Linux
+    + Wait for late hardware transmit timestamps
+    + Improve source selection with unreachable sources
+    + Improve protection against replay attacks on symmetric mode
+    + Allow PHC refclock to use socket in /var/run/chrony
+    + Add shutdown command to stop chronyd
+    + Simplify format of response to manual list command
+    + Improve handling of unknown responses in chronyc
+  * Bug fixes:
+    + Respond to NTPv1 client requests with zero mode
+    + Fix -x option to not require CAP_SYS_TIME under non-root user
+    + Fix acquisitionport directive to work with privilege separation
+    + Fix handling of socket errors on Linux to avoid high CPU usage
+    + Fix chronyc to not get stuck in infinite loop after clock step
cronie
+- Fix run-crons path in shipped crontab, bsc#1196986
+  * cronie-anacron-1.4.7-run-crons.patch
+  * sample.root
+
cryptsetup
+- cryptsetup 2.4.3:
+  * Fix possible attacks against data confidentiality through
+    LUKS2 online reencryption extension crash recovery
+    CVE-2021-4122, boo#1194469
+  * Add configure option --disable-luks2-reencryption to completely
+    disable LUKS2 reencryption code.
+  * Improve internal metadata validation code for reencryption
+    metadata
+  * Add updated documentation for LUKS2 On-Disk Format
+    Specification version 1.1.0
+  * Fix support for bitlk (BitLocker compatible) startup key with
+    new  metadata entry introduced in Windows 11
+  * Fix space restriction for LUKS2 reencryption with data shift
+
+- cryptsetup 2.4.2:
+  * Fix possible large memory allocation if LUKS2 header size is
+    invalid.
+  * Fix memory corruption in debug message printing LUKS2
+    checksum.
+  * veritysetup: remove link to the UUID library for the static
+    build.
+  * Remove link to pwquality library for integritysetup and
+    veritysetup. These tools do not read passphrases.
+  * OpenSSL3 backend: avoid remaining deprecated calls in API.
+    Crypto backend no longer use API deprecated in OpenSSL 3.0
+  * Check if kernel device-mapper create device failed in an early
+    phase. This happens when a concurrent creation of device-mapper
+    devices meets in the very early state.
+  * Do not set compiler optimization flag for Argon2 KDF if the
+    memory wipe is implemented in libc.
+  * Do not attempt to unload LUKS2 tokens if external tokens are
+    disabled. This allows building a static binary with
+  - -disable-external-tokens.
+  * LUKS convert: also check sysfs for device activity.
+    If udev symlink is missing, code fallbacks to sysfs scan to
+    prevent data corruption for the active device.
+
dleyna-connector-dbus
+- Update to version 0.4.1:
+  + Fix use-after-free on shutdown due to missing reference on bus
+- Changes from version 0.4.0:
+  + Remove build-time dependency on dbus-1
+  + Move build system to meson
+- Add meson BuildRequires and macros, and drop libtool
+  BuildRequires following upstreams port.
+- Drop pkgconfig(dbus-1) BuildRequires following upstream changes.
+- Update URL and Source to new home, as intel have dropped
+  maintenance of this package, go with the leading fork.
+
dleyna-core
+- Update to version 0.7.0:
+  + Port to GUPnP 1.2 API
+  + Switch build system to meson
+  + Make connector search path overridable by setting
+    DLEYNA_CONNECTOR_PATH environment variable
+  + Stability improvements for the task processor
+- Add meson BuildRequires and macros, and drop libtool
+  BuildRequires, following upstreams port.
+- Drop dleyna-core-port-to-gupnp1_2.patch: Fixed upstream.
+- Update URL and Source to new home, as intel have dropped
+  maintenance of this package, go with the leading fork.
+
dleyna-renderer
+- Update to version 0.7.2:
+  + Fix error logging on empty server response.
+- Remove spurious-executable-perm in ChangeLog not needed, nor
+  wanted.
+
+- Update to version 0.7.1:
+  + Stop using deprecated SoupSessionAsync
+  + Build fixes
+- Changes from version 0.7.0:
+  + Port to GUPnP 1.2
+  + Do service introspection on device creation
+  + Move to meson for buld system
+  + Subscribe to correct proxy for subscription-lost
+  + Add a man page
+  + Fix cancelling gasync_tasks
+- Add meson BuildRequires and macros + drop libtool BuildRequires
+  following upstreams port.
+- Add libxslt-tools and docbook-xsl-stylesheets BuildRequires:
+  Build manpages.
+- Drop dleyna-renderer-port-gupnp.patch: Fixed upstream.
+- Update URL and Source to new home, as intel have dropped
+  maintenance of this package, go with the leading fork.
+
dleyna-server
+- Update to version 0.7.2:
+  + Replace another SoupSessionAsync.
+  + Fix unnecessary error logging on empty server responses.
+
+- Update to version 0.7.1:
+  + Build fixes
+  + Fix service file generation for non-default service name
+  + Fix rpath linking errors
+  + Do not use deprecated SoupSessionAsync
+- Changes from version 0.7.0:
+  + Port to GUPnP 1.2
+  + Switch build system to meson
+  + Drop signalfd for GLib's unix signal handling
+  + Fix a potential crash when getting server properties
+  + Add support for changing the D-Bus server name
+  + Fix a use-after-free
+  + Fix unintialized buffer use
+- Add meson BuildRequires and macros + drop libtool BuildRequires:
+  No longer needed following upstreams port.
+- Add pkgconfig(libxml-2.0) BuildRequires: New dependency.
+- Drop dleyna-server-port-gupnp1_2.patch: Fixed upstream.
+- Update URL and Source to new home, as intel have dropped
+  maintenance of this package, go with the leading fork.
+
-- Initial package, version 0.4.0.
-
dracut
+- Update to version 055+suse.244.g2f624182:
+  * fix(resume): only exclude this module when swap is netdev (bsc#1194915)
+
+- Update to version 055+suse.242.g76ae5ce4:
+  * fix(multipath): align multipathd.service type with upstream (bsc#1196958)
+  * fix(systemd-sysusers): use split systemd sysuser configs (bsc#1196223)
+
f2fs-tools
+- Update to snapshot 1.14.0+g67 (972d7107)
+  [boo#1191235]
+
filesystem
+- Add /lib/modprobe.d (bsc#1196275, jsc#SLE-20639)
+
flac
+- Fix out of bound write in append_to_verify_fifo_interleaved_
+  (CVE-2021-0561 bsc#1196660):
+  libFlac-Exit-at-EOS-in-verify-mode.patch
+
-- Update to flac 1.3.0pre4 (packaged as 1.2.99_git* to avoid
-  messing with RPM versioning)
-  * Mostly non-linux related bugfixes plus autotools fixes
-  - flac-openssl.patch --> 0001-Allow-use-of-openSSL.patch
-  - remove flac-1.2.1-automake1_13.patch, fixed in upstream.
-  - add 0001-getopt_long-not-broken-here.patch, FLAC bundles
-  GNU-compatible getopt_long for broken OS, but we do have
-  a functional version in libc already.
-
fwupd
+- Add fwupd-bsc1193921-nvme-ignore-non-PCI-NVMe-devices.patch
+  to ignore non-PCI NVMe devices (bnc#1193921)
+
gdb
+- Patches added (jsc#SLE-22287):
+  * ibm-z-add-another-arch14-instruction.patch
+  * ibm-z-remove-lpswey-parameter.patch
+
gdm
+- Add gdm-restart-session-when-X-server-restart.patch:
+  Avoiding the blank screen when X server restarts with
+  GDM_DISABLE_USER_DISPLAY_SERVER=1 (bsc#1196974).
+
gnome-music
+- Drop the following patches which removes useful code and brings
+  hard time for future rebase:
+  + 0001-Revert-grltrackerwrapper-Add-static-type-annotations.patch
+  + 0002-Revert-coresong-Add-static-type-annotations.patch
+  + 0003-gnome-music-use-python36.patch
+- Rewrite the patches only disabling the python3.7 specific
+  feature:
+  + 0001-gnome-music-use-python36.patch
+  + 0002-gnome-music-revert-from-future-import-annotations.patch
+
+- Add missing typelib (GstTag) Requires: the gi-dep-scanner does
+  not understand the format used in gnome-music.
+
+- Update to version 41.0:
+  + Updated translations.
+
+- Update to version 41.rc:
+  + Touch-ups for the new design.
+  + Async improvements.
+  + Bugs fixed:
+  - Fix duplicated playlist song removal.
+  - Fix flowbox selection state.
+  + Updated translations.
+
+- Update to version 41.beta:
+  + Implemented much of the new design mockups.
+  + Updated translations.
+- Add pkgconfig(libhandy-1) BuildRequires: new dependency.
+
gnome-photos
+- Add a0ac868a19d55dc52100e54fe4b2d29041bc6752.patch: Fix build
+  with meson 0.61.0 and newer.
+
+- Add gnome-photos-fix-vert-align.patch: Fix vertical alignment.
+  (glgo#GNOME/gnome-photos!172).
+- Add upstream bug fix patches from the stable branch:
+  + 5cafad57982fbef0d02b7ecb0b1a2c9f221de391.patch:
+    indexing-notification: Remove unused variable.
+  + 1d22aac8fd7433cd1319fb2ffea0a1e294609f64.patch:
+    indexing-notification: Handle TrackerMiner proxy being NULL on
+    start-up.
+- Update our Supplements to current standard.
+
gnutls
+- FIPS: Additional PBKDF2 requirements for KAT [bsc#1184669]
+  * The IG 10.3.A and SP800-132 require some minimum parameters for
+    the salt length, password length and iteration count. These
+    parameters should be also used in the KAT.
+  * Add gnutls-FIPS-PBKDF2-KAT-requirements.patch
+- Enable to run the regression tests also in FIPS mode.
+
gpsd
+- Re-enable LTO on aarch64
+
+- Set ProtectClock to false or gpsd will not start
+
+- Don't use gpsd version in patches (will break with every update)
+  % harden_gpsd.service.patch
+  % harden_gpsdctl@.service.patch
+
+- Update to version 3.23.1
+  * Improve ubx cycle detection.
+  * Add quirks for Jackson Labs nonstandard NMEA
+  * Change STATUS_NO_FIX to STATUS_UNK to avoid confusion with fix
+    mode.
+  * Change STATUS_FIX to STATUS_GPS to avoid confusion with fix
+    mode.
+  * Change STATUS_DGPS_FIX to STATUS_DGPS to avoid confusion with
+    fix mode.
+  * Split SOURCE_ACM from SOURCE_USB.  ACM has no speeds.
+  * Add speeds 1 mbps, 1.152 mbps, 1.5 mbps, and higher.  When libc
+    supports them.
+  * Improve autobaud.
+  * Add new u-blox M10 messages.
+  * Fix u-blox M6, M7 initialization issues.
+  * Various ubxtool and gpxlogger updates.
+  * Add mtk3301_speed_switcher()
+  * No API, ABI changes.
+  * Fallback to "python3" if "python" not found.
+
+- Added hardening to systemd service(s) (bsc#1181400). Added patch(es):
+  * harden_gpsd.service.patch
+  * harden_gpsdctl@.service.patch
+
+- Update to version 3.23
+  * doc/*xml all moved into www/internals.adoc
+  * Convert all DocBook (.xml) to AsciiDoctor (.adoc)
+  * Remove all XSL remnants.
+  * gpsplot: speedup, add new options.
+  * driver_ubx.c: Add decode for UBX-NAV-STATUS
+  * gps/ubx.py: Improve decode for UBX-NAV-STATUS
+  * cgps: Add popup help, interactive options.
+  * Reorganize and split the man pages.
+  * Small updates for u-blox M8 and M10
+  * Deprecated mtk3331 and ashtech build options.  Use nmea0183
+    instead.
+  * gpssnmp: Move from contrib/ to clients, add manpage
+  * Add www/gpsd-client-example-code.adoc
+  * Add gpsdebuginfo script and man page.
+  * ubxtool: Add BeiDou, Galileo, GLONASS, QZSS, and partial SBAS
+    subframe decodes
+  * Max serial port speed raised to 921,600.
+  * SUBFRAME JSON now includes new fields to support multiple
+    constellations.
+  * gpsd: Add some ADR and UDR message partial decodes.
+  * ubxtool: Add some ADR and UDR message polls and decodes.
+  * Remove COMPASS_ENABLE.  Always compile attitude code.
+  * contrib/webgps.py: use argparse, arguments -V, --version,
+  - -no-html-head.
+  * Add readonly flag to DEVICE JSON.
+  * Control messages to gpsd now return JSON, instead of, sometimes,
+    OK or ERROR.
+  * gpsfake uses "# Date: yyyy-mm-dd" to set initial time.
+  * Don't compute wrong GPS rollover after 2021-10-23.
+  * Bump libgps to version 29.
+
+- disable lto on aarch64 for now (bsc#1187089)
+
+- Update to version 3.22
+  * Added client/gpscsv to convert gpsd JSON to csv.
+  * Added client/gpsplot to dynamically plot gpsd JSON.
+  * Added client/gpssubframe to decode gpsd SUBFRAME JSON.
+  * Added nSat and uSat to SKY JSON.  Old clients can not read new
+    SKY.
+  * Move stuff from source root into clients/, include/, gpsmon/
+    and libgps/.
+  * Move stuff from source root into gpsd/.
+  * Move class ubx out of ubxtool and into gps/ubx.py.
+  * Build all targets in gpsd-$VERSION/, not in tree.
+  * NMEA 4.11 support for $GI (IRNSS) and $GZ (QZSS).
+- Remove obsolete sed scripts that no longer serve a purpose
+- Use new ldconfig macros in Tumbleweed
+
+- Update to version 3.21
+  * Create python programs from .in files to allow macro substitution.
+  * Finally clean .sconsign*.dblite with "scons -c"
+  * Remove revision.h.  Move REVISION into gpsd_config.h
+  * Change asciidoc to asciidoctor, and revise documents to match.
+  * library version bumped to 27
+  * Add leap_seconds to gps_data_t
+  * Add/change many rtcm2 structs in gps.h
+  * Add/change many rtcm3 structs in gps.h
+  * Maindenhead now 8 chars.
+  * Add icondir and sharedir install options
+  * Install basic doc in sharedir
+  * Move gps_data_t->status to gps_fix_t.status for better fix merging
+  * The gps python module is now Pure Python + FFI.  FFI only for packet.py
+  * User should manually delete any old packet*so.
+  * Add wspeedt, wspeedr, wanglem, wanglet, wangler to  gps_fix_t
+  * Add "-p CONFIG", "-p STATUS", "-t" and "-tt" options to ubxtool.
+  * Add python_shebang option to scons config.
+  * gpsrinex has long options and many new options.
+  * Added long options to gpsd.
+  * Remove unused FORCE_GLOBAL_ENABLE
+  * Remove config option reconfigure, replace with -p, --passive runtime option.
+  * Remove config option controlsend (RECONFIGURE_ENABLE)
+  * Add config option rundir=XX.  Default set to /run, or /var/run as required.
+  * Fixes for Python 2.6 up to 3.9.
+
grub2
+- Fix grub-install error when efi system partition is created as mdadm software
+  raid1 device (bsc#1179981) (bsc#1195204)
+  * 0001-install-fix-software-raid1-on-esp.patch
+
+- Fix riscv64 build error
+  * 0001-RISC-V-Adjust-march-flags-for-binutils-2.38.patch
+
+- Fix error in grub-install when linux root device is on lvm thin volume
+  (bsc#1192622) (bsc#1191974)
+  * 0001-grub-install-bailout-root-device-probing.patch
+
-- VUL-0: grub2: grub2-once uses fixed file name in /var/tmp (bsc#1190474)
+- VUL-0: grub2: grub2-once uses fixed file name in /var/tmp (bsc#1190474) (CVE-2021-46705)
gssdp
+- Pass -Dsniffer=false to meson: Disable build of sniffer. Allows
+  to drop pkgconfig(gtk4) BuildRequires and helps eliminate a build
+  cycle.
+- Allow for easy toggling using bcond_with sniffer.
+
+- Update to version 1.4.0.1:
+  + Fix building the sniffer when built as subproject
+  + Do not build docs by default
+- Changes from version 1.3.1:
+  + Implement MAC lookup on Windows
+  + Implement interface index lookup on Windows
+  + Fix distributing docs in the tarball
+  + Build docs by default
+- Changes from version 1.3.0:
+  + Sniffer: Various deprecated function clean-up
+  + Sniffer: Port to GTK4
+  + Docs: Ported to gi-docgen
+  + Docs: Clean-up and other improvements
+  + Client: Minor dead code clean-up
+  + Build: Make GSSDP usable as a subproject
+  + All: Fixes from scan-build
+  + All: Minor introspection fixes
+- Replace pkgconfig(gtl+-3.0) BuildRequires with pkgconfig(gtk4):
+  Follow upstreams port to GTK 4.
+- Enable test suite: enable meson_test in check section.
+
gtk4
+- Add gtk4-make-our-stack-noexec.patch: Make our stack noexec.
+
+- Update to version 4.6.0:
+  + GtkProgressBar: Fix handling of "inverted".
+  + GtkLabel: Add a "natural wrap mode" property to influence how
+    natural width is determined.
+  + GtkTextView: Scroll insertion on-screen after undo / redo.
+  + gsk: Abort region diffing when changes are too complex.
+  + gdk:
+  - Avoid compressing discrete scroll events.
+  - Fix problems with hiding windows.
+  - Improve GL and GLES version checks.
+  + Wayland: Support new high-contrast setting.
+  + Inspector: Add DND inspection support.
+  + build: Avoid deprecated meson apis.
+  + Updated translations.
+
+- Update to version 4.5.1:
+  + GtkWidget sizing has been rewritten to implement
+    width-for-height more properly. This had some fallout, and some
+    widgets may still not react kindly to the new way of doing
+    things. See https://blog.gtk.org/2021/12/03/sizable-news/ for
+    details, and please file issues if you notice fallout.
+  + Rename git `master` branch to `main`
+  + Css:
+  - Fully support font-variant-caps
+  - Fix a crash with gradients
+  + Make various widgets activatable:
+  - GtkComboBox
+  - GtkDropDown
+  + GtkPopover: Make focus indicators not disappear
+  + GtkTextView:
+  - Don't leave embedded children stranded when scrolling
+  - Don't insert Emoji into non-editable textviews
+  - Fix Emoji chooser positioning
+  - Fix problems with pasting text
+  - Improve scroll-to-mark behavior
+  - Support right-aligned, centered and decimal tabs
+  - Make child anchor replacement character settable
+  - Provide more context to input methods
+  + GtkDragIcon: Provide default icons for paintables and files
+  + GtkBuilder: Speed up template precompilation
+  + Actions:
+  - Reduce allocations during signal emissions
+  - Avoid duplication and unnecessary recursion
+  + Inspector:
+  - Show the selected im-module in the General tab
+  - Add a clipboard viewer
+  - Make the recorder record events too
+  - Add a graph visualizing gtk_widget_measure()
+  + Gsk:
+  - Fix hexbox rendering
+  - Fix transformed linear gradient rendering
+  + Printing: Fix dialog-less printing
+  + X11:
+  - Improve behavior of windows drags on headerbar controls
+  - Trap errors for RANDR changes
+  - Fix problems with drag icons
+  + Wayland: Ensure we prefer the Wayland im-module over others
+  + Updated translations.
+- Changes from version 4.5.0:
+  + gsk:
+  - Drop the GL renderer in favor of NGL
+  - Rename NGL to GL
+  - Fix some coordinate overflow issues
+  - Reimplement texture upload and download for better support of
+    image formats and color spaces
+  - New api:
+  * gsk_transform_skew
+  * gsk_transform_to_2d_components
+  + gdk:
+  - Support HSL in gdk_rgba_parse
+  - Use libpng, libjpeg and libtiff directly when loading
+    textures, and support more image formats (including 16bit and
+    float formats)
+  - New apis:
+  * gdk_texture_new_from_bytes
+  * gdk_texture_new_from_filename
+  * gdk_texture_download_float
+  * gdk_texture_save_to_png_bytes
+  * gdk_texture_save_to_tiff
+  * gdk_texture_save_to_tiff_bytes
+  * gdk_display_create_gl_context
+  - Implement GIcon and GLoadableIcon in GdkTexture
+  - Move EGL initialization to the frontend
+  - Use configless EGL contexts, if supported
+  - Use >8bit pixel formats, if supported and requested
+  + css:
+  - Add support for line-height
+  - Add support for text-transform
+  + theme: Fixes for buttons in toolbars
+  + input:
+  - Update compose sequences from libX11 1.7.2
+  - Accept replacement string longer than 20 characters
+  + text:
+  - Implement sloped caret drawing
+  - Add a gtk-hint-font-metrics setting to switch font rendering
+    to be more similar to GTK3
+  + GtkTextView:
+  - Add support for line height
+  - Add support for text transforms
+  - Misc fixes for css->pango attribute translations
+  - Invalidate pango contexts when font settings change
+  - Improve undo grouping when overwriting
+  + GtkListView:
+  - Make tree indentation more flexible with
+    GtkTreeExpander:indent-for-icon
+  + GtkMenuButton: Support custom children
+  + GtkFlowBox: Add prepend and append
+  + GtkCalendar: Fix handling of weeks starting on Monday
+  + GtkWindow: Add a titlebar property
+  + GtkDropDown: Add a show-arrow property
+  + GtkPopoverMenu: Support a use-markup attribute in menu models
+  + Add GtkSymbolicPaintable
+  + Tools: Support DND in gtk4-node-editor and the inspector's
+    recorder
+  + Demos: Improve the font rendering demo
+  + Build:
+  - Require Pango 1.49
+  - Require libpng, libtiff and libjpeg
+  - Speed up handling of resources during build
+  + X11: Support touchpad gestures with XInput 2.4
+  + Updated translations.
+- Drop gtk4-fix-link-to-g_signal_emit.patch: fixed upstream.
+- Add docutils, pkgconfig(libjpeg), pkgconfig(libpng) and
+  pkgconfig(libtiff-4) BuildRequires: New dependencies.
+
+- Drop baselibs.conf, there should not be any consumers of 32bit
+  for this rather new package, so lets not build for the past.
+
+- Add gtk4-fix-link-to-g_signal_emit.patch: fix build failure
+  caused by inproper link to g_signal_emit.
+
+- Disable sassc BuildRequires, only needed when building from git.
+- Add pkgconfig(gi-docgen) and  pkgconfig(iso-codes) BuildRequires
+  and pass gtk_doc=true to meson instead of documentation=true
+  following upstream changes. Also split develdocumentation out
+  into it's own sub-package.
+- Drop pkgconfig(json-glib-1.0) BuildRequires, not needed nor used.
+- Replace option print-backends=all with print-cups=enabled
+  following upstream changes.
+- Stop passing xinerama=enabled to meson, not needed nor used.
+- Add pkgconfig(tracker-sparql-3.0) BuildRequires and pass
+  tracker=enabled to meson, build with tracker support.
+
+- Update to version 4.4.1:
+  + input:
+  - Fix compose data on bigendian systems
+  - Accept long replacement strings for compose sequences
+  + a11y:
+  - Fix accessible relations for menu buttons
+  - Fix accessible descriptions in some cases
+  - Simplify atspi context a bit
+  + GtkTextView:
+  - Fix applying css properties such as letterspacing, line
+    decoration, font features, etc
+  - Improve grouping for undo
+  - Invalidate Pango contexts when font settings change
+  - Fix a crash
+  + Theme: Improve styling for toggle buttons in toolbars
+  + gsk: Avoid coordinate overflow with big text selections
+  + GtkFileChooser: Fix handling of choices
+  + GtkStackSwitcher: Expand child buttons
+  + GtkCalendar: Fix day names for weeks that start on monday
+  + GtkWindow: Prefer menubars when handling F10
+  + GtkFontButton: Make sure the dialog is on the same display
+  + X11: Fix handling of randr events
+  + build: Fix detection of pre-compiled css files
+  + Updated translations.
+
gupnp
+- Update to version 1.4.3:
+  + ServiceProxy:
+  - Properly propagate cancelled actions in deprecated calls.
+  - Fix deprecated async calls, again.
+
+- Update to version 1.4.2:
+  + Context: Fix a memory leak if ACL was used
+  + RootDevice: Deprecate get_relative_location call
+  + RootDevice, Device & Service: Fix use-after-free if Service
+    lives longer than RootDevice
+  + Service: Declare _valist functions deprecated
+  + ServiceAction: Deprecate _return() call
+  + ServiceProxy:
+  - Fix re-queueing the message if POST fails
+  - Fix double-free on ProxyAction
+  + ServiceProxyAction: add _set() to the public API
+  + ControlPoint: Deprecate get_context() call
+  + Doc:
+  - Add missing ContextFilter description
+  - Add note regarding ACL and host_path()
+  - Add note regarding error handling of call API
+- Add gupnp-build-man-pages.patch: Build and install the manpage.
+
+- Update to version 1.4.1:
+  + Fix regression in async deprecated API.
+  + Fix context creation not failing if the HTTP server fails to
+    bind.
+
+- Bump soname to 1_2-1 reflecting real the library version. Obsolete
+  packages had the mismatched version number.
+
+- Update to version 1.4.0:
+  + Fix fallback option for GSSDP dependency.
+  + Linux CM: Fix address family filtering.
+  + Linux CM: Fix a typo.
+- Changes from version 1.3.1:
+  + Add ContextFilter class, deprecate WhiteList.
+  + Fix several reference leaks.
+  + Fix broken boot-id logic.
+  Changes from version 1.3.0:
+  + Service: name Tasks.
+  + Doc: Some grammaer fixes.
+  + Dead and deprecated code clean-up.
+  + Move tests that are actually examples into examples.
+  + Move tests from gtest to test.
+  + Doc: General clean-up.
+  + Fix some introspection annotations.
+  + Build: Make gupnp usable as a subproject (more or less).
+  + Make it possible to re-use a ServiceProxyAction.
+  + Service: Validate "Host" header for GENA actions.
+
gupnp-dlna
+- Update to version 0.12.0:
+  + Re-tag of 0.11 as 0.12. No functional change
+- Changes from version 0.11.0:
+  + Drop GStreamer 0.10 back-end
+  + Drop old compatibility code
+  + Add meson support
+  + Port to more modern GObject
+- Switch to meson build system:
+  + Add meson BuildRequires.
+  + Replace configure/make/make_install macros with respective
+    meson/meson_build/meson_install.
+- Enable test suite: add meson_test to check section.
+
-- Update to version 0.9.5:
-  + Add --disable-maintainer-mode option.
-  + Add a GStreamer 0.10 meta-data back-end.
-
java-11-openjdk
+- Update to upstream tag jdk-11.0.14+9 (January 2022 CPU)
+  * New features
+    + JDK-8248238: Implementation: JEP 388: Windows AArch64 Support
+  * Security fixes
+    + JDK-8217375: jarsigner breaks old signature with long lines
+    in manifest
+    + JDK-8251329: (zipfs) Files.walkFileTree walks infinitely if
+    zip has dir named "." inside
+    + JDK-8264934, CVE-2022-21248, bnc#1194926: Enhance cross VM
+    serialization
+    + JDK-8268488: More valuable DerValues
+    + JDK-8268494: Better inlining of inlined interfaces
+    + JDK-8268512: More content for ContentInfo
+    + JDK-8268795: Enhance digests of Jar files
+    + JDK-8268801: Improve PKCS attribute handling
+    + JDK-8268813, CVE-2022-21283, bnc#1194937: Better String
+    matching
+    + JDK-8269151: Better construction of EncryptedPrivateKeyInfo
+    + JDK-8269944: Better HTTP transport redux
+    + JDK-8270386, CVE-2022-21291, bsc#1194925: Better verification
+    of scan methods
+    + JDK-8270392, CVE-2022-21293, bsc#1194935: Improve String
+    constructions
+    + JDK-8270416, CVE-2022-21294, bsc#1194934: Enhance construction
+    of Identity maps
+    + JDK-8270492, CVE-2022-21282, bsc#1194933: Better resolution of
+    URIs
+    + JDK-8270498, CVE-2022-21296, bsc#1194932: Improve SAX Parser
+    configuration management
+    + JDK-8270646, CVE-2022-21299, bsc#1194931: Improved scanning of
+    XML entities
+    + JDK-8270952, CVE-2022-21277, bsc#1194930: Improve TIFF file
+    handling
+    + JDK-8271962: Better TrueType font loading
+    + JDK-8271968: Better canonical naming
+    + JDK-8271987: Manifest improved manifest entries
+    + JDK-8272014, CVE-2022-21305, bsc#1194939: Better array
+    indexing
+    + JDK-8272026, CVE-2022-21340, bsc#1194940: Verify Jar
+    Verification
+    + JDK-8272236, CVE-2022-21341, bsc#1194941: Improve serial forms
+    for transport
+    + JDK-8272272: Enhance jcmd communication
+    + JDK-8272462: Enhance image handling
+    + JDK-8273290: Enhance sound handling
+    + JDK-8273756, CVE-2022-21360, bsc#1194929: Enhance BMP image
+    support
+    + JDK-8273838, CVE-2022-21365, bsc#1194928: Enhanced BMP
+    processing
+    + JDK-8274096, CVE-2022-21366, bsc#1194927: Improve decoding of
+    image files
+    + JDK-8279541: Improve HarfBuzz
+  * Other changes
+    + JDK-6849922: java/awt/Choice/ChoiceKeyEventReaction/
+    /ChoiceKeyEventReaction.html fails
+    + JDK-7105119: [TEST_BUG] [macosx] In test
+    UIDefaults.toString() must be called with the invokeLater()
+    + JDK-7151826: [TEST_BUG] [macosx] The test
+    javax/swing/JPopupMenu/4966112/bug4966112.java not for mac
+    + JDK-7179006: [macosx] Print-to-file doesn't work: printing to
+    the default printer instead
+    + JDK-8015602: [macosx] Test javax/swing/SpringLayout/4726194/
+    /bug4726194.java fails on MacOSX
+    + JDK-8034084: nsk.nsk/jvmti/ThreadStart/threadstart003 Wrong
+    number of thread end events
+    + JDK-8039261: [TEST_BUG]: There is not a minimal security
+    level in Java Preferences and the TestApplet.html is blocked.
+    + JDK-8047218: [TEST_BUG] java/awt/FullScreen/AltTabCrashTest/
+    /AltTabCrashTest.java fails with exception
+    + JDK-8075909: [TEST_BUG] The regression-swing case failed as
+    it does not have the 'Open' button when select 'subdir' folder
+    with NimbusLAF
+    + JDK-8078219: Verify lack of @test tag in files in java/net
+    test directory
+    + JDK-8080569: java/lang/ProcessBuilder/DestroyTest.java fails
+    with "RuntimeException: Process terminated prematurely"
+    + JDK-8081652: [TESTBUG] java/lang/management/ThreadMXBean/
+    /ThreadMXBeanStateTest.java timed out intermittently
+    + JDK-8129310: java/net/Socket/asyncClose/AsyncClose.java fails
+    intermittently
+    + JDK-8131745: java/lang/management/ThreadMXBean/
+    /AllThreadIds.java still fails intermittently
+    + JDK-8136517: [macosx] Test java/awt/Focus/8073453/
+    /AWTFocusTransitionTest.java fails on MacOSX
+    + JDK-8137101: [TEST_BUG] javax/swing/plaf/basic/BasicHTML/
+    /4251579/bug4251579.java failure due to timing
+    + JDK-8143021: [TEST_BUG] Test javax/swing/JColorChooser/
+    /Test6541987.java fails
+    + JDK-8159597: [TEST_BUG] closed/javax/swing/JPopupMenu/4760494/
+    /bug4760494.java leaves key pressed
+    + JDK-8159904: [TEST_BUG] Failure on solaris of
+    java/awt/Window/MultiWindowApp/MultiWindowAppTest.java
+    + JDK-8163086: java/awt/Window/TranslucentJAppletTest/
+    /TranslucentJAppletTest.java fails
+    + JDK-8165828: [TEST_BUG] The reg case: javax/swing/plaf/metal/
+    /MetalIcons/MetalHiDPIIconsTest.java failed as No Metal Look
+    and Feel
+    + JDK-8169953: JComboBox/8057893: ComboBoxEdited event is not
+    fired! on Windows
+    + JDK-8169954: JFileChooser/8021253: java.lang.RuntimeException:
+    Default button is not pressed
+    + JDK-8169959: javax/swing/JTable/6263446/bug6263446.java:
+    Table should be editing
+    + JDK-8171381: [TEST_BUG] [macos] javax/swing/JPopupMenu/
+    /7156657/bug7156657.java fails on OS X
+    + JDK-8171998: javax/swing/JMenu/4692443/bug4692443.java fails
+    on Windows
+    + JDK-8174819: java/nio/file/WatchService/LotsOfEvents.java
+    fails intermittently
+    + JDK-8179880: Refactor javax/security shell tests to plain
+    java tests
+    + JDK-8180568: Refactor javax/crypto shell tests to plain java
+    tests
+    + JDK-8180569: Refactor sun/security/krb5/ shell tests to plain
+    java tests
+    + JDK-8180571: Refactor sun/security/pkcs11 shell tests to
+    plain java tests and fix failures
+    + JDK-8180573: Refactor sun/security/tools shell tests to plain
+    java tests
+    + JDK-8187649: ArrayIndexOutOfBoundsException in
+    java.util.JapaneseImperialCalendar
+    + JDK-8190753: (zipfs): Accessing a large entry (> 2^31 bytes)
+    leads to a negative initial size for ByteArrayOutputStream
+    + JDK-8195703: BasicJDWPConnectionTest.java: 'App exited
+    unexpectedly with 2'
+    + JDK-8196096: javax/swing/JPopupMenu/6580930/bug6580930.java
+    fails
+    + JDK-8197560: test javax/swing/JTree/8003400/Test8003400.java
+    fails
+    + JDK-8197800: Test java/awt/Focus/NonFocusableWindowTest/
+    /NoEventsTest.java fails on Windows
+    + JDK-8197811: Test java/awt/Choice/PopupPosTest/
+    /PopupPosTest.java fails on Windows
+    + JDK-8198616: java/awt/Focus/6378278/InputVerifierTest.java
+    fails on mac
+    + JDK-8198617: java/awt/Focus/6382144/EndlessLoopTest.java
+    fails on mac
+    + JDK-8198619: java/awt/Focus/FocusTraversalPolicy/
+    /ButtonGroupLayoutTraversal/ButtonGroupLayoutTraversalTest.java
+    fails on mac
+    + JDK-8198623: java/awt/KeyboardFocusmanager/TypeAhead/
+    /EnqueueWithDialogButtonTest/EnqueueWithDialogButtonTest.java
+    fails on mac
+    + JDK-8198624: java/awt/KeyboardFocusmanager/TypeAhead/
+    /SubMenuShowTest/SubMenuShowTest.html fails on mac
+    + JDK-8199138: Add RISC-V support to Zero
+    + JDK-8199529: javax/swing/text/Utilities/8142966/
+    /SwingFontMetricsTest.java fails on windows
+    + JDK-8201224: Make string buffer size dynamic in
+    mlvmJvmtiUtils.c
+    + JDK-8202342: [Graal] fromTonga/nsk/jvmti/unit/
+    /FollowReferences/followref003/TestDescription.java fails with
+    "Location mismatch" errors
+    + JDK-8204161: [TESTBUG] auto failed with the "Applet thread
+    threw exception: java.lang.UnsupportedOperationException"
+    exception
+    + JDK-8206085: Refactor
+    langtools/tools/javac/versions/Versions.java
+    + JDK-8207936: TestZipFile failed with java.lang.AssertionError
+    exception
+    + JDK-8208242: Add @requires to vmTestbase/gc/g1 tests
+    + JDK-8209611: use C++ compiler for hotspot tests
+    + JDK-8210182: Remove macros for C compilation from vmTestBase
+    but non jvmti
+    + JDK-8210198: Clean up JNI_ENV_ARG for
+    vmTestbase/jvmti/Get[A-F] tests
+    + JDK-8210205: build fails on AIX in hotspot cpp tests (for
+    example getstacktr001.cpp)
+    + JDK-8210242: [TESTBUG] vmTestbase/nsk/stress/jni/
+    /jnistress001.java crashes with EXCEPTION_ACCESS_VIOLATION
+    on windows-x86
+    + JDK-8210353: Move java/util/Arrays/TimSortStackSize2.java
+    back to tier1
+    + JDK-8210385: Clean up JNI_ENV_ARG and factorize the macros
+    for vmTestbase/jvmti[A-N] tests
+    + JDK-8210392: assert(Compile::current()->live_nodes() <
+    Compile::current()->max_node_limit()) failed: Live Node limit
+    exceeded limit
+    + JDK-8210395: Add doc to SecurityTools.java
+    + JDK-8210429: Clean up JNI_ENV_ARG for
+    vmTestbase/jvmti/Get[G-Z] tests
+    + JDK-8210481: Remove #ifdef cplusplus from vmTestbase
+    + JDK-8210593: Clean up JNI_ENV_ARG and factorize the macros
+    for vmTestbase/jvmti[N-R] tests
+    + JDK-8210665: Clean up JNI_ENV_ARG and factorize the macros
+    for vmTestbase/jvmti[R-U] tests
+    + JDK-8210689: Remove the multi-line old C style for string
+    literals
+    + JDK-8210700: Clean up JNI_ENV_ARG and factorize the macros
+    for vmTestbase/jvmti/unit tests
+    + JDK-8210726: Fix up a few minor nits forgotten by JDK-8210665
+    + JDK-8210920: Native C++ tests are not using CXXFLAGS
+    + JDK-8210984: [TESTBUG] hs203t003 fails with "# ERROR:
+    hs203t003.cpp, 218: NSK_CPP_STUB2 ( ResumeThread, jvmti,
+    thread)"
+    + JDK-8211036: Remove the NSK_STUB macros from vmTestbase for
+    non jvmti
+    + JDK-8211131: Remove the NSK_CPP_STUB macros from vmTestbase
+    for jvmti/[G-I]*
+    + JDK-8211148: var in implicit lambdas shouldn't be accepted
+    for source < 11
+    + JDK-8211171: move JarUtils to top-level testlibrary
+    + JDK-8211227: Inconsistent TLS protocol version in debug output
+    + JDK-8211261: Remove the NSK_CPP_STUB macros from vmTestbase
+    for jvmti/[A-G]*
+    + JDK-8211432: [REDO] Handle JNIGlobalRefLocker.cpp
+    + JDK-8211782: Remove the NSK_CPP_STUB macros from vmTestbase
+    for jvmti/[I-S]*
+    + JDK-8211801: Remove the NSK_CPP_STUB macros from vmTestbase
+    for jvmti/scenarios/[A-E]
+    + JDK-8211899: Remove the NSK_CPP_STUB macros from vmTestbase
+    for jvmti/scenarios/[E-M]
+    + JDK-8211905: Remove multiple casts for EM06 file
+    + JDK-8211999: Window positioning bugs due to overlapping
+    GraphicsDevice bounds (Windows/HiDPI)
+    + JDK-8212082: Remove the NSK_CPP_STUB macros for remaining
+    vmTestbase/jvmti/[sS]*
+    + JDK-8212083: Handle remaining gc/lock native code and fix two
+    strings
+    + JDK-8212148: Remove remaining NSK_CPP_STUBs
+    + JDK-8213110: Remove the use of applets in automatic tests
+    + JDK-8213189: Make restricted headers in HTTP Client
+    configurable and remove Date by default
+    + JDK-8213263: fix legal headers in test/langtools
+    + JDK-8213296: Fix legal headers in test/jdk/java/net
+    + JDK-8213301: Fix legal headers in jdk logging tests
+    + JDK-8213305: Fix legal headers in test/java/math
+    + JDK-8213306: Fix legal headers in test/java/nio
+    + JDK-8213328: Update test copyrights in test/java/util/zip and
+    test/jdk/tools
+    + JDK-8213330: Fix legal headers in i18n tests
+    + JDK-8213707: [TEST] vmTestbase/nsk/stress/except/
+    /except011.java failed due to wrong class name
+    + JDK-8214469: [macos] PIT: java/awt/Choice/
+    /ChoiceKeyEventReaction/ChoiceKeyEventReaction.java fails
+    + JDK-8215410: Regression test for JDK-8214994
+    + JDK-8215568: Refactor SA clhsdb tests to use ClhsdbLauncher
+    + JDK-8215624: Add parallel heap iteration for jmap \u2013histo
+    + JDK-8215889: assert(!_unloading) failed: This oop is not
+    available to unloading class loader data with ZGC
+    + JDK-8216318: The usage of Disposer in the java.awt.Robot can
+    be deleted
+    + JDK-8216417: cleanup of IPv6 scope-id handling
+    + JDK-8217377: javax/swing/JPopupMenu/6583251/bug6583251.java
+    failed with UnsupportedOperation exception
+    + JDK-8217438: Adapt tools//launcher/Test7029048.java for AIX
+    + JDK-8217633: Configurable extensions with system properties
+    + JDK-8217882: java/net/httpclient/MaxStreams.java failed once
+    + JDK-8217903: java/net/httpclient/Response204.java fails with
+    404
+    + JDK-8218483: Crash in
+    "assert(_daemon_threads_count->get_value() > daemon_count)
+    failed: thread count mismatch 5 : 5"
+    + JDK-8219986: Change to Xcode 10.1 for building on Macosx at
+    Oracle
+    + JDK-8220575: Correctly format test URI's that contain a
+    retrieved IPv6 address
+    + JDK-8221259: New tests for java.net.Socket to exercise long
+    standing behavior
+    + JDK-8221305: java/awt/FontMetrics/MaxAdvanceIsMax.java fails
+    on MacOS + Solaris
+    + JDK-8221902: PIT: javax/swing/JRadioButton/FocusTraversal/
+    /FocusTraversal.java fails on ubuntu
+    + JDK-8221903: PIT: javax/swing/RepaintManager/IconifyTest/
+    /IconifyTest.java fails on ubuntu18.04
+    + JDK-8222446: assert(C->env()->system_dictionary_modification_counter_changed())
+    failed: Must invalidate if TypeFuncs differ
+    + JDK-8223137: Rename predicate 'do_unroll_only()' to
+    'is_unroll_only()'.
+    + JDK-8223138: Small clean-up in loop-tree support.
+    + JDK-8223139: Rename mandatory policy-do routines.
+    + JDK-8223140: Clean-up in 'ok_to_convert()'
+    + JDK-8223141: Change (count) suffix _ct into _cnt.
+    + JDK-8223400: Replace some enums with static const members in
+    hotspot/runtime
+    + JDK-8223658: Performance regression of XML.validation in
+    13-b19
+    + JDK-8223923: C2: Missing interference with mismatched unsafe
+    accesses
+    + JDK-8224829: AsyncSSLSocketClose.java has timing issue
+    + JDK-8225083: Remove Google certificate that is expiring in
+    December 2021
+    + JDK-8226514: Replace wildcard address with loopback or local
+    host in tests - part 17
+    + JDK-8226943: compile error in libfollowref003.cpp  with XCode
+    10.2 on macosx
+    + JDK-8228442: DHKeyExchange/LegacyDHEKeyExchange.java failed
+    due to "SSLException: An established connection was aborted by
+    the software in your host machine"
+    + JDK-8228508: [TESTBUG] java/net/httpclient/SmokeTest.java
+    fails on Windows7
+    + JDK-8229935: [TEST_BUG]: bug8132119.java inconsistently
+    positions text
+    + JDK-8230019: [REDO] compiler/types/correctness/* tests fail
+    with "assert(recv == __null || recv->is_klass()) failed: wrong
+    type"
+    + JDK-8230067: Add optional automatic retry when running jtreg
+    tests
+    + JDK-8230228: [TESTBUG] Several runtime/ErrorHandling tests
+    may fail on some platforms
+    + JDK-8231501: VM crash in
+    MethodData::clean_extra_data(CleanExtraDataClosure*):
+    fatal error: unexpected tag 99
+    + JDK-8233403: Improve verbosity of some httpclient tests
+    + JDK-8233550: [TESTBUG] JTree tests fail regularly on MacOS
+    + JDK-8233552: [TESTBUG] JTable Test bug7068740.java fails on
+    MacOS
+    + JDK-8233553: [TESTBUG] JSpinner test bug4973721.java fails on
+    MacOS
+    + JDK-8233555: [TESTBUG] JRadioButton tests failing on MacoS
+    + JDK-8233556: [TESTBUG] JPopupMenu tests fail on MacOS
+    + JDK-8233559: [TESTBUG] TestNimbusOverride.java is failing on
+    macos
+    + JDK-8233560: [TESTBUG] ToolTipManager/Test6256140.java  is
+    failing on macos
+    + JDK-8233561: [TESTBUG] Swing text test bug8014863.java fails
+    on macos
+    + JDK-8233562: [TESTBUG] Swing StyledEditorKit test
+    bug4506788.java fails on MacOS
+    + JDK-8233564: [TESTBUG] MouseComboBoxTest.java is failing
+    + JDK-8233566: [TESTBUG] KeyboardFocusManager tests failing on
+    MacoS
+    + JDK-8233567: [TESTBUG] FocusSubRequestTest.java fails on macos
+    + JDK-8233569: [TESTBUG] JTextComponent test bug6361367.java
+    fails on macos
+    + JDK-8233570: [TESTBUG] HTMLEditorKit test bug5043626.java is
+    failing on macos
+    + JDK-8233634: [TESTBUG] Swing text test bug4278839.java fails
+    on macos
+    + JDK-8233635: [TESTBUG] ProgressMonitorEscapeKeyPress.java
+    fails on macos
+    + JDK-8233637: [TESTBUG] Swing
+    ActionListenerCalledTwiceTest.java fails on macos
+    + JDK-8233638: [TESTBUG] Swing test
+    ScreenMenuBarInputTwice.java fails on macos
+    + JDK-8233641: [TESTBUG] JMenuItem test bug4171437.java fails
+    on macos
+    + JDK-8233642: [TESTBUG] JMenuBar test bug 4750590.java  fails
+    on macos
+    + JDK-8233643: [TESTBUG] JMenu test bug4515762.java fails on
+    macos
+    + JDK-8233644: [TESTBUG] JInternalFrame test bug8020708.java is
+    failing on macos
+    + JDK-8233647: [TESTBUG] JColorChooser/Test8051548.java is
+    failing on macos
+    + JDK-8234802: [TESTBUG] Test Right Mouse Button Drag Gesture
+    Recognition in all the platforms
+    + JDK-8234823: java/net/Socket/Timeouts.java testcase
+    testTimedConnect2() fails on Windows 10
+    + JDK-8235784: java/lang/invoke/VarHandles/
+    /VarHandleTestByteArrayAsInt.java fails due to timeout with
+    fastdebug bits
+    + JDK-8236042: [TESTBUG] serviceability/sa/ClhsdbCDSCore.java
+    fails with -Xcomp -XX:TieredStopAtLevel=1
+    + JDK-8236177: assert(status == 0) failed: error ETIMEDOUT(60),
+    cond_wait
+    + JDK-8236596: HttpClient leaves HTTP/2 sockets in CLOSE_WAIT,
+    when using proxy tunnel
+    + JDK-8237354: Add option to jcmd to write a gzipped heap dump
+    + JDK-8237589: Fix copyright header formatting
+    + JDK-8238677: java/net/httpclient/ssltest/CertificateTest.java
+    should not specify TLS version
+    + JDK-8239334: Tab Size does not work correctly in JTextArea
+    with setLineWrap on
+    + JDK-8239422: [TESTBUG]
+    compiler/c1/TestPrintIRDuringConstruction.java failed when C1
+    is disabled
+    + JDK-8239827: The test OpenByUNCPathNameTest.java should be
+    changed to be manual
+    + JDK-8240256: Better resource cleaning for SunPKCS11 Provider
+    + JDK-8242044: Add basic HTTP/1.1 support to the HTTP/2 Test
+    Server
+    + JDK-8242526: PIT: javax/swing/JInternalFrame/8020708/
+    /bug8020708.java fails in mach5 ubuntu system
+    + JDK-8242793: Incorrect copyright header in
+    ContinuousCallSiteTargetChange.java
+    + JDK-8243543: jtreg test security/infra/java/security/cert/
+    /CertPathValidator/certification/BuypassCA.java fails
+    + JDK-8244292: Headful clients failing with
+  - -illegal-access=deny
+    + JDK-8245147: Refactor and improve utility of
+    test/langtools/tools/javac/versions/Versions.java
+    + JDK-8245165: Update bug id for
+    javax/swing/text/StyledEditorKit/4506788/bug4506788.java in
+    ProblemList
+    + JDK-8245665: Test WeakAlg.java should only make sure no
+    warning for weak signature algorithms by keytool on root CA
+    + JDK-8246114: java/net/MulticastSocket/Promiscuous.java fails
+    after 8241072 (multi-homed systems)
+    + JDK-8246807: Incorrect copyright header in
+    TimeZoneDatePermissionCheck.sh
+    + JDK-8247403: JShell: No custom input (e.g. from GUI) possible
+    with JavaShellToolBuilder
+    + JDK-8247510: typo in IllegalHandshakeMessage
+    + JDK-8248187: [TESTBUG] javax/swing/plaf/basic/
+    /BasicGraphicsUtils/8132119/bug8132119.java fails with String
+    is not properly drawn
+    + JDK-8248341: ProblemList java/lang/management/ThreadMXBean/
+    /ThreadMXBeanStateTest.java
+    + JDK-8248500: AArch64: Remove the r18 dependency on Windows
+    AArch64
+    + JDK-8248899: security/infra/java/security/cert/
+    /CertPathValidator/certification/QuoVadisCA.java fails,
+    Certificate has been revoked
+    + JDK-8249195: Change to Xcode 11.3.1 for building on Macos at
+    Oracle
+    + JDK-8250521: Configure initial RTO to use minimal retry for
+    loopback connections on Windows
+    + JDK-8250810: Push missing parts of JDK-8248817
+    + JDK-8250839: Improve test template SSLEngineTemplate with
+    SSLContextTemplate
+    + JDK-8250863: Build error with GCC 10 in NetworkInterface.c
+    and k_standard.c
+    + JDK-8250888: nsk/jvmti/scenarios/general_functions/GF08/
+    /gf08t001/TestDriver.java fails
+    + JDK-8251155: HostIdentifier fails to canonicalize hostnames
+    starting with digits
+    + JDK-8251377: [macos11] JTabbedPane selected tab text is
+    barely legible
+    + JDK-8251570: JDK-8215624 causes assert(worker_id <
+    _n_workers) failed: Invalid worker_id
+    + JDK-8251930: AArch64: Native types mismatch in hotspot
+    + JDK-8252049: Native memory leak in ciMethodData ctor
+    + JDK-8252051: Make mlvmJvmtiUtils strncpy uses GCC 10.x
+    friendly
+    + JDK-8252114: Windows-AArch64: Enable and test ZGC and
+    ShenandoahGC
+    + JDK-8253015: Aarch64: Move linux code out from generic CPU
+    feature detection
+    + JDK-8253147: The javax/swing/JPopupMenu/7154841/bug7154841.java
+    fail on big screens
+    + JDK-8253497: Core Libs Terminology Refresh
+    + JDK-8253682: The AppletInitialFocusTest1.java is unstable
+    + JDK-8253763: ParallelObjectIterator should have virtual
+    destructor
+    + JDK-8253866: Security Libs Terminology Refresh
+    + JDK-8254802: ThrowingPushPromisesAsStringCustom.java fails in
+    "try throwing in GET_BODY"
+    + JDK-8255227: java/net/httpclient/FlowAdapterPublisherTest.java
+    intermittently failing with TestServer: start exception:
+    java.io.IOException: Invalid preface
+    + JDK-8255264: Support for identifying the full range of IPv4
+    localhost addresses on Windows
+    + JDK-8255716: AArch64: Regression: JVM crashes if manually
+    offline a core
+    + JDK-8255722: Create a new test for rotated blit
+    + JDK-8256009: Remove src/hotspot/share/adlc/Test/i486.ad
+    + JDK-8256066: Tests use deprecated TestNG API that is no
+    longer available in new versions
+    + JDK-8256152: tests fail because of ambiguous method resolution
+    + JDK-8256182: Update qemu-debootstrap cross-compilation recipe
+    + JDK-8256201: java/awt/FullScreen/FullscreenWindowProps/
+    /FullscreenWindowProps.java failed
+    + JDK-8256202: Some tweaks for jarsigner tests
+    PosixPermissionsTest and SymLinkTest
+    + JDK-8256372: [macos] Unexpected symbol was displayed on
+    JTextField with Monospaced font
+    + JDK-8256956: RegisterImpl::max_slots_per_register is
+    incorrect on AMD64
+    + JDK-8258457: testlibrary_tests/ctw/JarDirTest.java fails with
+    InvalidPathException on windows
+    + JDK-8258855: Two tests sun/security/krb5/auto/
+    /ReplayCacheTestProc.java and ReplayCacheTestProcWithMD5.java
+    failed on OL8.3
+    + JDK-8259237: Demo selection changes with left/right arrow
+    key. No need to press space for selection.
+    + JDK-8260571: Add PrintMetaspaceStatistics to print metaspace
+    statistics upon VM exit
+    + JDK-8260690: JConsole User Guide Link from the Help menu is
+    not accessible by keyboard
+    + JDK-8261036: Reduce classes loaded by CleanerFactory
+    initialization
+    + JDK-8261071: AArch64: Refactor interpreter native wrappers
+    + JDK-8261075: Create stubRoutines.inline.hpp with SafeFetch
+    implementation
+    + JDK-8261236: C2: ClhsdbJstackXcompStress test fails when
+    StressGCM is enabled
+    + JDK-8261297: NMT: Final report should use scale 1
+    + JDK-8261661: gc/stress/TestReclaimStringsLeaksMemory.java
+    fails because Reserved memory size is too big
+    + JDK-8261916: gtest/GTestWrapper.java
+    vmErrorTest.unimplemented1_vm_assert failed
+    + JDK-8262438: sun/security/ssl/SSLLogger/
+    /LoggingFormatConsistency.java failed with "SocketException:
+    Socket is closed"
+    + JDK-8262731: [macOS] Exception from "Printable.print" is
+    swallowed during "PrinterJob.print"
+    + JDK-8262844: (fs) FileStore.supportsFileAttributeView might
+    return false negative in case of ext3
+    + JDK-8263059: security/infra/java/security/cert/
+    /CertPathValidator/certification/ComodoCA.java fails due to
+    revoked cert
+    + JDK-8263068: Rename safefetch.hpp to safefetch.inline.hpp
+    + JDK-8263303: C2 compilation fails with assert(found_sfpt)
+    failed: no node in loop that's not input to safepoint
+    + JDK-8263362: Avoid division by 0 in
+    java/awt/font/TextJustifier.java justify
+    + JDK-8263773: Reenable German localization for builds at Oracle
+    + JDK-8263897: compiler/c2/aarch64/TestVolatilesSerial.java
+    failed with "java.lang.RuntimeException: Wrong method"
+    + JDK-8264526: javax/swing/text/html/parser/Parser/8078268/
+    /bug8078268.java timeout
+    + JDK-8264824: java/net/Inet6Address/B6206527.java doesn't
+    close ServerSocket properly
+    + JDK-8265019: Update tests for additional TestNG test
+    permissions
+    + JDK-8265173: [test] divert spurious log output away from
+    stream under test in ProcessBuilder Basic test
+    + JDK-8265524: Upgrading JSZip from v3.2.2 to v3.6.0
+    + JDK-8266182: Automate manual steps listed in the test
+    jdk/sun/security/pkcs12/ParamsTest.java
+    + JDK-8266579: Update test/jdk/java/lang/ProcessHandle/
+    /PermissionTest.java & test/jdk/java/sql/testng/util/
+    /TestPolicy.java
+    + JDK-8266949: Check possibility to disable OperationTimedOut
+    on Unix
+    + JDK-8267246: -XX:MaxRAMPercentage=0 is unreasonable for jtreg
+    tests on many-core machines
+    + JDK-8267256: Extend minimal retry for loopback connections on
+    Windows to PlainSocketImpl
+    + JDK-8267304: Bump global JTReg memory limit to 768m
+    + JDK-8267652: c2 loop unrolling by 8 results in reading memory
+    past array
+    + JDK-8268019: C2: assert(no_dead_loop) failed: dead loop
+    detected
+    + JDK-8268093: Manual Testcase: "sun/security/krb5/config/
+    /native/TestDynamicStore.java" Fails with NPE
+    + JDK-8268555: Update HttpClient tests that use ITestContext to
+    jtreg 6+1
+    + JDK-8268672: C2: assert(!loop->is_member(u_loop)) failed: can
+    be in outer loop or out of both loops only
+    + JDK-8269034: AccessControlException for SunPKCS11 daemon
+    threads
+    + JDK-8269426: Rename test/jdk/java/lang/invoke/t8150782 to
+    accessClassAndFindClass
+    + JDK-8269574: C2: Avoid redundant uncommon traps in
+    GraphKit::builtin_throw() for JVMTI exception events
+    + JDK-8269656: The test test/langtools/tools/javac/versions/
+    /Versions.java has duplicate test cycles
+    + JDK-8269768: JFR Terminology Refresh
+    + JDK-8269951: [macos] Focus not painted in JButton when
+    setBorderPainted(false) is invoked
+    + JDK-8269984: [macos] JTabbedPane title looks like  disabled
+    + JDK-8269993: [Test]: java/net/httpclient/
+    /DigestEchoClientSSL.java contains redundant @run tags
+    + JDK-8270116: Expand ButtonGroupLayoutTraversalTest.java to
+    run in all LaFs, including Aqua on macOS
+    + JDK-8270216: [macOS] Update named used for Java run loop mode
+    + JDK-8270280: security/infra/java/security/cert/
+    /CertPathValidator/certification/LetsEncryptCA.java OCSP
+    response error
+    + JDK-8270290: NTLM authentication fails if HEAD request is used
+    + JDK-8270317: Large Allocation in CipherSuite
+    + JDK-8270344: Session resumption errors
+    + JDK-8270517: Add Zero support for LoongArch
+    + JDK-8270533: AArch64: size_fits_all_mem_uses should return
+    false if its output is a CAS
+    + JDK-8270886: Crash in
+    PhaseIdealLoop::verify_strip_mined_scheduling
+    + JDK-8271287: jdk/jshell/CommandCompletionTest.java fails with
+    "lists don't have the same size expected"
+    + JDK-8271340: Crash PhaseIdealLoop::clone_outer_loop
+    + JDK-8271341: Opcode() != Op_If && Opcode() != Op_RangeCheck)
+    || outcnt() == 2 assert failure with Test7179138_1.java
+    + JDK-8271459: C2: Missing NegativeArraySizeException when
+    creating StringBuilder with negative capacity
+    + JDK-8271490: [ppc] [s390]: Crash in
+    JavaThread::pd_get_top_frame_for_profiling
+    + JDK-8271560: sun/security/ssl/DHKeyExchange/
+    /LegacyDHEKeyExchange.java still fails due to "An established
+    connection was aborted by the software in your host machine"
+    + JDK-8271567: AArch64: AES Galois CounterMode (GCM)
+    interleaved implementation using vector instructions
+    + JDK-8272180: Upgrade JSZip from v3.6.0 to v3.7.1
+    + JDK-8272181: Windows-AArch64:Backport fix of `Backtracing
+    broken on PAC enabled systems`
+    + JDK-8272316: Wrong Boot JDK help message in 11
+    + JDK-8272318: Improve performance of HeapDumpAllTest
+    + JDK-8272342: [TEST_BUG] java/awt/print/PrinterJob/
+    /PageDialogMarginTest.java catches all exceptions
+    + JDK-8272570: C2: crash in PhaseCFG::global_code_motion
+    + JDK-8272574: C2: assert(false) failed: Bad graph detected in
+    build_loop_late
+    + JDK-8272581: sun/security/pkcs11/Provider/MultipleLogins.sh
+    fails after JDK-8266182
+    + JDK-8272708: [Test]: Cleanup: test/jdk/security/infra/java/
+    /security/cert/CertPathValidator/certification/BuypassCA.java
+    no longer needs ocspEnabled
+    + JDK-8272720: Fix the implementation of loop unrolling
+    heuristic with LoopPercentProfileLimit
+    + JDK-8272783: Epsilon: Refactor tests to improve performance
+    + JDK-8272806: [macOS] "Apple AWT Internal Exception" when
+    input method is changed
+    + JDK-8272828: Add correct licenses to jszip.md
+    + JDK-8272836: Limit run time for java/lang/invoke/LFCaching
+    tests
+    + JDK-8272850: Drop zapping values in the Zap* option
+    descriptions
+    + JDK-8272902: Bump update version for OpenJDK: jdk-11.0.14
+    + JDK-8272914: Create hotspot:tier2 and hotspot:tier3 test
+    groups
+    + JDK-8272966: test/jdk/java/awt/Robot/FlushCurrentEvent.java
+    fails by timeout
+    + JDK-8273026: Slow LoginContext.login() on multi threading
+    application
+    + JDK-8273229: Update OS detection code to recognize Windows
+    Server 2022
+    + JDK-8273235: tools/launcher/HelpFlagsTest.java Fails on
+    Windows 32bit
+    + JDK-8273308: PatternMatchTest.java fails on CI
+    + JDK-8273314: Add tier4 test groups
+    + JDK-8273342: Null pointer dereference in
+    classFileParser.cpp:2817
+    + JDK-8273358: macOS Monterey does not have the font Times
+    needed by Serif
+    + JDK-8273373: Zero: Cannot invoke JVM in primordial threads on
+    Zero
+    + JDK-8273498: compiler/c2/Test7179138_1.java timed out
+    + JDK-8273541: Cleaner Thread creates with normal priority
+    instead of MAX_PRIORITY - 2
+    + JDK-8273547: [11u] [JVMCI] Partial module-info.java backport
+    of JDK-8223332
+    + JDK-8273606: Zero: SPARC64 build fails with si_band type
+    mismatch
+    + JDK-8273646: Add openssl from path variable also in to
+    Default System Openssl Path in OpensslArtifactFetcher
+    + JDK-8273671: Backport of 8260616 misses one JNF header
+    inclusion removal
+    + JDK-8273790: Potential cyclic dependencies between Gregorian
+    and CalendarSystem
+    + JDK-8273795: Zero SPARC64 debug builds fail due to missing
+    interpreter fields
+    + JDK-8273826: Correct Manifest file name and NPE checks
+    + JDK-8273894: ConcurrentModificationException raised every
+    time ReferralsCache drops referral
+    + JDK-8273924: ArrayIndexOutOfBoundsException thrown in
+    java.util.JapaneseImperialCalendar.add()
+    + JDK-8273961: jdk/nio/zipfs/ZipFSTester.java fails if file
+    path contains '+' character
+    + JDK-8273968: JCK javax_xml tests fail in CI
+    + JDK-8274056: JavaAccessibilityUtilities leaks JNI objects
+    + JDK-8274083: Update testing docs to mention tiered testing
+    + JDK-8274293: Build failure on macOS with Xcode 13.0 as vfork
+    is deprecated
+    + JDK-8274326: [macos] Ensure initialisation of sun/lwawt/
+    /macosx/CAccessibility in JavaComponentAccessibility.m
+    + JDK-8274329: Fix non-portable HotSpot code in
+    MethodMatcher::parse_method_pattern
+    + JDK-8274381: missing CAccessibility definitions in JNI code
+    + JDK-8274407: (tz) Update Timezone Data to 2021c
+    + JDK-8274467: TestZoneInfo310.java fails with tzdata2021b
+    + JDK-8274468: TimeZoneTest.java fails with tzdata2021b
+    + JDK-8274522: java/lang/management/ManagementFactory/
+    /MXBeanException.java test fails with Shenandoah
+    + JDK-8274642: jdk/jshell/CommandCompletionTest.java fails with
+    NoSuchElementException after JDK-8271287
+    + JDK-8274773: [TESTBUG] UnsafeIntrinsicsTest intermittently
+    fails on weak memory model platform
+    + JDK-8274779: HttpURLConnection: HttpClient and HttpsClient
+    incorrectly check request method when set to POST
+    + JDK-8274840: Update OS detection code to recognize Windows 11
+    + JDK-8274860: gcc 10.2.1 produces an uninitialized warning in
+    sharedRuntimeTrig.cpp
+    + JDK-8275051: Shenandoah: Correct ordering of requested gc
+    cause and gc request flag
+    + JDK-8275131: Exceptions after a touchpad gesture on macOS
+    + JDK-8275713: TestDockerMemoryMetrics test fails on recent runc
+    + JDK-8275766: (tz) Update Timezone Data to 2021e
+    + JDK-8275849: TestZoneInfo310.java fails with tzdata2021e
+    + JDK-8276066: Reset LoopPercentProfileLimit for x86 due to
+    suboptimal performance
+    + JDK-8276139: TestJpsHostName.java not reliable, better to
+    expand HostIdentifierCreate.java test
+    + JDK-8276157: C2: Compiler stack overflow during escape
+    analysis on Linux x86_32
+    + JDK-8276201: Shenandoah: Race results degenerated GC to enter
+    wrong entry point
+    + JDK-8276536: Update TimeZoneNames files to follow the changes
+    made by JDK-8275766
+    + JDK-8276550: Use SHA256 hash in build.tools.depend.Depend
+    + JDK-8276774: Cookie stored in CookieHandler not sent if user
+    headers contain cookie
+    + JDK-8276854: Windows GHA builds fail due to broken Cygwin
+    + JDK-8277029: JMM GetDiagnosticXXXInfo APIs should verify
+    output array sizes
+    + JDK-8277224: sun.security.pkcs.PKCS9Attributes.toString()
+    throws NPE
+    + JDK-8277529: SIGSEGV in C2 CompilerThread
+    Node::rematerialize() compiling Packet::readUnsignedTrint
+    + JDK-8277815: Fix mistakes in legal header backports
+- Removed patch:
+  * riscv64-zero.patch
+    + integrated upstream
+- Modified patch:
+  * fips.patch
+    + rediff to changed context
+
kernel-default
+- supported.conf: Mark a few SM* chiper modules as supported (bsc#1197287)
+  Mark supported for the modules: sm2_generic, sm3_generic, sm4_generic
+  arm64-specific: sha3-ce, sha512-ce, sm3-ce, sm4-ce
+- commit e6b9e81
+
+- fuse: handle kABI change in struct fuse_args (bsc#1197343
+  CVE-2022-1011).
+- fuse: fix pipe buffer lifetime for direct_io (bsc#1197343
+  CVE-2022-1011).
+- commit 879fc92
+
+- Refresh
+  patches.suse/bpf-Add-MEM_RDONLY-for-helper-args-that-are-pointers.patch
+  Add info about context deviation from upstream.
+- commit f8cba97
+
+- Refresh
+  patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+  Add info about context deviation from upstream.
+- commit 1d085d3
+
+- Refresh
+  patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch
+  Add info about context deviation from upstream.
+- commit e44090b
+
+- Refresh
+  patches.suse/bpf-Replace-ARG_XXX_OR_NULL-with-ARG_XXX-PTR_MAYBE_N.patch
+  Add info about context deviation from upstream.
+- commit da99102
+
+- Refresh
+  patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch
+  Add info on context deviation from upstream.
+- commit aa0e1a6
+
+- Refresh
+  patches.suse/bpf-Generalize-check_ctx_reg-for-reuse-with-other-ty.patch
+  Add info about context deviation from upstream.
+- commit 2d1de22
+
+- bpf: Fix crash due to out of bounds access into reg2btf_ids (git-fixes
+  bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- commit 8bc21d0
+
+- watch_queue: Make comment about setting ->defunct more accurate
+  (CVE-2022-0995 bsc#1197246).
+- watch_queue: Fix lack of barrier/sync/lock between post and read
+  (CVE-2022-0995 bsc#1197246).
+- watch_queue: Free the alloc bitmap when the watch_queue is
+  torn down (CVE-2022-0995 bsc#1197246).
+- watch_queue: Fix the alloc bitmap size to reflect notes
+  allocated (CVE-2022-0995 bsc#1197246).
+- watch_queue: Use the bitmap API when applicable (CVE-2022-0995
+  bsc#1197246).
+- watch_queue: Fix to always request a pow-of-2 pipe ring size
+  (CVE-2022-0995 bsc#1197246).
+- watch_queue: Fix to release page in ->release() (CVE-2022-0995
+  bsc#1197246).
+- watch_queue, pipe: Free watchqueue state after clearing pipe
+  ring (CVE-2022-0995 bsc#1197246).
+- watch_queue: Fix filter limit check (CVE-2022-0995 bsc#1197246).
+- commit 223dbc3
+
+- arm64: PCI: Support root bridge preparation for Hyper-V
+  (bsc#1197291).
+- arm64: PCI: Restructure pcibios_root_bridge_prepare()
+  (bsc#1197291).
+- commit 060e164
+
+- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup
+  (bsc#1196018).
+- commit 6dcb47f
+
+- sr9700: sanity check for packet length (bsc#1196836
+  CVE-2022-26966).
+- commit 56eea34
+
+- Update kabi files.
+  Update to reflect the changes from bpf CVE fixes.
+- commit 993b084
+
+- rpm: SC2006: Use $(...) notation instead of legacy backticked `...`.
+- commit f0d0e90
+
+- nvme-rdma: fix possible use-after-free in transport
+  error_recovery work (bsc#1193787 bsc#1197146 bsc#1193554).
+  Refresh:
+  - patches.suse/0006-nvme-Implement-In-Band-authentication.patch
+- nvme-tcp: fix possible use-after-free in transport
+  error_recovery work (bsc#1193787 bsc#1197146 bsc#1193554).
+  Refresh:
+  - patches.suse/0006-nvme-Implement-In-Band-authentication.patch
+- nvme: fix a possible use-after-free in controller reset during
+  load (bsc#1193787 bsc#1197146 bsc#1193554).
+- nvme-fabrics: ignore invalid fast_io_fail_tmo values
+  (bsc#1193787 bsc#1197146 bsc#1193554).
+- nvme-tcp: fix memory leak when freeing a queue (bsc#1193787
+  bsc#1197146 bsc#1193554).
+- nvme-tcp: validate R2T PDU in nvme_tcp_handle_r2t() (bsc#1193787
+  bsc#1197146 bsc#1193554).
+- blk-mq: don't free tags if the tag_set is used by other device
+  in queue initialztion (bsc#1193787 bsc#1197146 bsc#1193554).
+- commit 4ccb78c
+
+- series: Resort entries
+  The series is not sorted which makes qdoit unhappy. Sort it.
+- commit ce701de
+
+- esp: Fix possible buffer overflow in ESP transformation
+  (CVE-2022-0886 bsc#1197131).
+- sock: remove one redundant SKB_FRAG_PAGE_ORDER macro
+  (CVE-2022-0886 bsc#1197131).
+- commit fa4075e
+
+- ipv6: fix skb drops in igmp6_event_query() and
+  igmp6_event_report() (CVE-2022-0742 bsc#1197128).
+- commit b531b26
+
+- aio: fix use-after-free due to missing POLLFREE handling
+  (CVE-2021-39698 bsc#1196956).
+- aio: keep poll requests on waitqueue until completed
+  (CVE-2021-39698 bsc#1196956).
+- signalfd: use wake_up_pollfree() (CVE-2021-39698 bsc#1196956).
+- binder: use wake_up_pollfree() (CVE-2021-39698 bsc#1196956).
+- wait: add wake_up_pollfree() (CVE-2021-39698 bsc#1196956).
+- commit ee17f5c
+
+- net/smc: Fix hung_task when removing SMC-R devices
+  (bsc#1197082).
+- commit 5256139
+
+- rpm/kernel-source.spec.in: call fdupes per subpackage
+  It is a waste of time to do a global fdupes when we have
+  subpackages.
+- commit 1da8439
+
+- bpf, selftests: Add test case trying to taint map value pointer
+  (bsc#1196130,CVE-2021-45402).
+- bpf: Make 32->64 bounds propagation slightly more robust
+  (bsc#1196130,CVE-2021-45402).
+- bpf: Fix signed bounds propagation after mov32
+  (bsc#1196130,CVE-2021-45402).
+- commit 04987fb
+
+- xen/netfront: react properly to failing
+  gnttab_end_foreign_access_ref() (bsc#1196488, XSA-396,
+  CVE-2022-23042).
+- commit 095b89a
+
+- xen/gnttab: fix gnttab_end_foreign_access() without page
+  specified (bsc#1196488, XSA-396, CVE-2022-23041).
+- commit 20b7983
+
+- xen/pvcalls: use alloc/free_pages_exact() (bsc#1196488,
+  XSA-396, CVE-2022-23041).
+- commit d56d4c6
+
+- xen/9p: use alloc/free_pages_exact() (bsc#1196488, XSA-396,
+  CVE-2022-23041).
+- commit b08fc02
+
+- xen/usb: don't use gnttab_end_foreign_access() in
+  xenhcd_gnttab_done() (bsc#1196488, XSA-396).
+- commit 4198f6f
+
+- xen/gntalloc: don't use gnttab_query_foreign_access()
+  (bsc#1196488, XSA-396, CVE-2022-23039).
+- commit 2239263
+
+- xen/scsifront: don't use gnttab_query_foreign_access() for
+  mapped status (bsc#1196488, XSA-396, CVE-2022-23038).
+- commit 95b1b12
+
+- xen/netfront: don't use gnttab_query_foreign_access() for
+  mapped status (bsc#1196488, XSA-396, CVE-2022-23037).
+- commit aabdf93
+
+- xen/blkfront: don't use gnttab_query_foreign_access() for
+  mapped status (bsc#1196488, XSA-396, CVE-2022-23036).
+- commit d12d408
+
+- xen/grant-table: add gnttab_try_end_foreign_access()
+  (bsc#1196488, XSA-396, CVE-2022-23036, CVE-2022-23038).
+- commit 4da4210
+
+- xen/xenbus: don't let xenbus_grant_ring() remove grants in
+  error case (bsc#1196488, XSA-396, CVE-2022-23040).
+- commit 93f9570
+
+- iommu/vt-d: Fix double list_add when enabling VMD in scalable mode (bsc#1196894).
+- commit 8aad886
+
+- rpm/arch-symbols,guards,*driver: Replace Novell with SUSE.
+- commit 174a64f
+
+- s390/cio: verify the driver availability for path_event call
+  (bsc#1195927 LTC#196420).
+- scsi: zfcp: Fix failed recovery on gone remote port with
+  non-NPIV FCP devices (bsc#1195376 LTC#196087).
+- s390/hypfs: include z/VM guests with access control group set
+  (bsc#1195639 LTC#196353).
+- s390/cpumf: Support for CPU Measurement Sampling Facility LS
+  bit (bsc#1195082 LTC#196087).
+- s390/cpumf: Support for CPU Measurement Facility CSVN 7
+  (bsc#1195082 LTC#196087).
+- s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194966
+  LTC#196029).
+- s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193244
+  LTC#195546).
+- s390/uv: de-duplicate checks for Protected Host Virtualization
+  (bsc#1191740 LTC#194817).
+- s390/boot: disable Secure Execution in dump mode (bsc#1191740
+  LTC#194817).
+- s390/boot: move uv function declarations to boot/uv.h
+  (bsc#1191740 LTC#194817).
+- commit 4d8f983
+
+- usb: host: xen-hcd: add missing unlock in error path
+  (git-fixes).
+- commit 3e3ceb8
+
+- Refresh
+  patches.suse/0002-usb-Introduce-Xen-pvUSB-frontend-xen-hcd.patch.
+- commit 11235e2
+
+- Refresh
+  patches.suse/0001-usb-Add-Xen-pvUSB-protocol-description.patch.
+- commit 1ed63ba
+
+- rpm/kernel-docs.spec.in: use %%license for license declarations
+  Limited to SLE15+ to avoid compatibility nightmares.
+- commit 73d560e
+
+- rpm/*.spec.in: Use https:// urls
+- commit 77b5f8e
+
+- scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (git-fixes
+  bsc#1196746).
+- scsi: bnx2fc: Flush destroy_work queue before calling
+  bnx2fc_interface_put() (git-fixes bsc#1196746).
+- commit 8ac4c67
+
+- ARM: fix build error when BPF_SYSCALL is disabled (bsc#1085308
+  CVE-2022-23960).
+- ARM: include unprivileged BPF status in Spectre V2 reporting
+  (bsc#1085308 CVE-2022-23960).
+- commit 2b85b07
+
+- ARM: Spectre-BHB workaround (bsc#1085308 CVE-2022-23960).
+- Update config files.
+- commit 214f301
+
+- ARM: use LOADADDR() to get load address of sections (bsc#1085308
+  CVE-2022-23960).
+- ARM: early traps initialisation (bsc#1085308 CVE-2022-23960).
+- ARM: report Spectre v2 status through sysfs (bsc#1085308
+  CVE-2022-23960).
+- commit 20f8a99
+
+- nvme-multipath: use vmalloc for ANA log buffer (bsc#1193787 bsc#1197146 bsc#1193554).
+- commit 68439a4
+
+- arm64: proton-pack: Include unprivileged eBPF status in
+  Spectre v2 mitigation reporting (bsc#1085308 CVE-2022-23960
+  CVE-2022-0001 CVE-2022-0002).
+- arm64: Use the clearbhb instruction in mitigations (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered
+  and migrated (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- commit 52f56e7
+
+- arm64: Mitigate spectre style branch history side channels
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- Update config files.
+- Refresh
+  patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch.
+- commit 1403b73
+
+- arm64: proton-pack: Report Spectre-BHB vulnerabilities as
+  part of Spectre-v2 (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: Add percpu vectors for EL1 (bsc#1085308 CVE-2022-23960
+  CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Add macro for reading symbol addresses from
+  the trampoline (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: entry: Add vectors that have the bhb mitigation sequences
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Add non-kpti __bp_harden_el1_vectors for
+  mitigations (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: entry: Allow the trampoline text to occupy multiple pages
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Make the kpti trampoline's kpti sequence optional
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Move trampoline macros out of ifdef'd section
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Don't assume tramp_vectors is the start
+  of the vectors (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: entry: Allow tramp_alias to access symbols after
+  the 4K boundary (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: entry: Move the trampoline data page before the text page
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Free up another register on kpti's tramp_exit path
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Make the trampoline cleanup optional (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- KVM: arm64: Allow indirect vectors to be used without
+  SPECTRE_V3A (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: spectre: Rename spectre_v4_patch_fw_mitigation_conduit
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry.S: Add ventry overflow sanity checks (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- commit 39b0cd1
+
+- arm64: Add Cortex-X2 CPU part definition (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- Refresh
+  patches.suse/arm64-Add-Cortex-A510-CPU-part-definition.patch.
+- commit 1489419
+
+- arm64: add ID_AA64ISAR2_EL1 sys register (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- commit 76b95f9
+
+- x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF +
+  SMT (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit 0161c6c
+
+- x86/speculation: Warn about Spectre v2 LFENCE mitigation
+  (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit 8114d57
+
+- x86/speculation: Use generic retpoline by default on AMD
+  (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit e9a2f46
+
+- x86/speculation: Include unprivileged eBPF status in Spectre v2
+  mitigation reporting (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit 8400263
+
+- Documentation/hw-vuln: Update spectre doc (bsc#1191580
+  CVE-2022-0001 CVE-2022-0002).
+- commit bc2948e
+
+- x86/speculation: Add eIBRS + Retpoline options (bsc#1191580
+  CVE-2022-0001 CVE-2022-0002).
+- commit 6e19c5a
+
+- x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE
+  (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit 2a3d074
+
+- drm/i915: Fix mbus join config lookup (git-fixes bsc#1193640).
+- drm/i915: Fix dbuf slice config lookup (git-fixes bsc#1193640).
+- drm/i915: Workaround broken BIOS DBUF configuration on TGL/RKL
+  (bsc#1193640).
+- drm/i915: Populate pipe dbuf slices more accurately during
+  readout (bsc#1193640).
+- drm/i915: Allow !join_mbus cases for adlp+ dbuf configuration
+  (bsc#1193640).
+- commit e87e53d
+
+- iwlwifi: pcie: add killer devices to the driver (bsc#1196802).
+- iwlwifi: add new killer devices to the driver (bsc#1196802).
+- commit 5e7d8b6
+
+- cpufreq: intel_pstate: Update EPP for AlderLake mobile
+  (bsc#1196848).
+- cpufreq: intel_pstate: ITMT support for overclocked system
+  (bsc#1196849).
+- commit 68d5eea
+
+- drm: Don't test for IRQ support in VBLANK ioctls (bsc#1195464).
+- commit 0ef2c9a
+
+- lib/iov_iter: initialize "flags" in new pipe_buffer
+  (CVE-2022-0847 bsc#1196584 git-fixes).
+- commit 9682d38
+
+- SUNRPC: avoid race between mod_timer() and del_timer_sync()
+  (bnc#1195403).
+- commit 378df3f
+
+- Move upstreamed patches into sorted section
+- commit 1900045
+
+- scsi: smartpqi: Add PCI IDs (bsc#1196627).
+- commit 7890c4e
+
+- Revert PCI MSI-X patch that caused a regression on network devices (bsc#1196403)
+  Deleted:
+  patches.suse/PCI-MSI-Mask-MSI-X-vectors-only-on-success.patch
+- commit 4606b8c
+
+- Update kabi files for intel_pmt_dev_create (bsc#1196591)
+- commit 40a0e22
+
+- Update patches.suse/ibmvnic-don-t-stop-queue-in-xmit.patch
+  (bsc#1192273 ltc#194629 bsc#1191428 ltc#193985).
+- commit de17db9
+
+- kernel-binary.spec: Also exclude the kernel signing key from devel package.
+  There is a check in OBS that fails when it is included. Also the key is
+  not reproducible.
+  Fixes: bb988d4625a3 ("kernel-binary: Do not include sourcedir in certificate path.")
+- commit 68fa069
+
+- Refresh sorted patches.
+- commit 0c5d65a
+
+- Refresh patches.suse/powerpc-64s-hash-Make-hash-faults-work-in-NMI-contex.patch.
+- commit 783700c
+
+- rpm/check-for-config-changes: Ignore PAHOLE_VERSION.
+- commit 88ba5ec
+
+- Update config and supported.conf for intel_vsec (bsc#1196591)
+  intel_pmt driver is renamed to intel_vsec
+- Update config files
+- supported.conf
+- commit 99cb50f
+
+- platform/x86/intel: Move intel_pmt from MFD to Auxiliary Bus
+  (bsc#1196591).
+- driver core: auxiliary bus: Add driver data helpers
+  (bsc#1196591).
+- PCI: Add #defines for accessing PCIe DVSEC fields (bsc#1196591).
+- platform/x86: intel_pmt_telemetry: Ignore zero sized entries
+  (bsc#1196591).
+- platform/x86/intel: pmt: Use y instead of objs in Makefile
+  (bsc#1196591).
+- commit 731c1ca
+
+- platform/x86/intel: Move Intel PMT drivers to new subfolder
+  (bsc#1196591).
+- Refresh
+  patches.suse/platform-x86-intel_pmc_core-Move-to-intel-sub-direct.patch.
+- commit e7adc65
+
+- bpf/selftests: Test PTR_TO_RDONLY_MEM (bsc#1196261 CVE-2022-0500).
+- bpf: Add MEM_RDONLY for helper args that are pointers to rdonly mem
+  (bsc#1196261 CVE-2022-0500).
+- bpf: Make per_cpu_ptr return rdonly PTR_TO_MEM
+  (bsc#1196261CVE-2022-0500).
+- bpf: Convert PTR_TO_MEM_OR_NULL to composable types
+  (bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- bpf: Introduce MEM_RDONLY flag (bsc#1194111 bsc#1194765
+  bsc#1196261 CVE-2021-4204 CVE-2022-0500 CVE-2022-23222).
+- Refresh
+  patches.suse/bpf-Fix-out-of-bounds-access-for-ringbuf-helpers.patch.
+- Refresh
+  patches.suse/bpf-Generally-fix-helper-register-offset-check.patch.
+- bpf: Replace PTR_TO_XXX_OR_NULL with PTR_TO_XXX | PTR_MAYBE_NULL
+  (bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- Refresh
+  patches.suse/bpf-Generalize-check_ctx_reg-for-reuse-with-other-ty.patch.
+- Refresh
+  patches.suse/bpf-Generally-fix-helper-register-offset-check.patch.
+- bpf: Replace RET_XXX_OR_NULL with RET_XXX | PTR_MAYBE_NULL
+  (bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- bpf: Replace ARG_XXX_OR_NULL with ARG_XXX | PTR_MAYBE_NULL
+  (bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- bpf: Introduce composable reg, ret and arg types (bsc#1194111
+  bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- commit 4db4b9b
+
+- Delete ACPI patch that broke s2idle (bsc#1196213)
+  Deleted:
+  patches.suse/ACPI-EC-Rework-flushing-of-EC-work-while-suspended-t.patch
+  A new kABI compat patch was added instead
+- commit 99c6bc9
+
+- NFSD: Fix READDIR buffer overflow (git-fixes bsc#1196346).
+- commit a149497
+
+- arm64: Add Cortex-A510 CPU part definition (git-fixes).
+- commit 1fd20fb
+
+- kernel-binary: Do not include sourcedir in certificate path.
+  The certs macro runs before build directory is set up so it creates the
+  aggregate of supplied certificates in the source directory.
+  Using this file directly as the certificate in kernel config works but
+  embeds the source directory path in the kernel config.
+  To avoid this symlink the certificate to the build directory and use
+  relative path to refer to it.
+  Also fabricate a certificate in the same location in build directory
+  when none is provided.
+- commit bb988d4
+
kernel-firmware
+- Yet more updates for Intel BT firmware for 7265, 826x
+  (CVE-2021-33139,CVE-2021-33155,INTEL-SA-00604,bsc#1195786)
+
kernel-firmware:compressed
+- Yet more updates for Intel BT firmware for 7265, 826x
+  (CVE-2021-33139,CVE-2021-33155,INTEL-SA-00604,bsc#1195786)
+
kernel-kvmsmall
+- supported.conf: Mark a few SM* chiper modules as supported (bsc#1197287)
+  Mark supported for the modules: sm2_generic, sm3_generic, sm4_generic
+  arm64-specific: sha3-ce, sha512-ce, sm3-ce, sm4-ce
+- commit e6b9e81
+
+- fuse: handle kABI change in struct fuse_args (bsc#1197343
+  CVE-2022-1011).
+- fuse: fix pipe buffer lifetime for direct_io (bsc#1197343
+  CVE-2022-1011).
+- commit 879fc92
+
+- Refresh
+  patches.suse/bpf-Add-MEM_RDONLY-for-helper-args-that-are-pointers.patch
+  Add info about context deviation from upstream.
+- commit f8cba97
+
+- Refresh
+  patches.suse/bpf-Replace-PTR_TO_XXX_OR_NULL-with-PTR_TO_XXX-PTR_M.patch
+  Add info about context deviation from upstream.
+- commit 1d085d3
+
+- Refresh
+  patches.suse/bpf-Replace-RET_XXX_OR_NULL-with-RET_XXX-PTR_MAYBE_N.patch
+  Add info about context deviation from upstream.
+- commit e44090b
+
+- Refresh
+  patches.suse/bpf-Replace-ARG_XXX_OR_NULL-with-ARG_XXX-PTR_MAYBE_N.patch
+  Add info about context deviation from upstream.
+- commit da99102
+
+- Refresh
+  patches.suse/bpf-Introduce-composable-reg-ret-and-arg-types.patch
+  Add info on context deviation from upstream.
+- commit aa0e1a6
+
+- Refresh
+  patches.suse/bpf-Generalize-check_ctx_reg-for-reuse-with-other-ty.patch
+  Add info about context deviation from upstream.
+- commit 2d1de22
+
+- bpf: Fix crash due to out of bounds access into reg2btf_ids (git-fixes
+  bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- commit 8bc21d0
+
+- watch_queue: Make comment about setting ->defunct more accurate
+  (CVE-2022-0995 bsc#1197246).
+- watch_queue: Fix lack of barrier/sync/lock between post and read
+  (CVE-2022-0995 bsc#1197246).
+- watch_queue: Free the alloc bitmap when the watch_queue is
+  torn down (CVE-2022-0995 bsc#1197246).
+- watch_queue: Fix the alloc bitmap size to reflect notes
+  allocated (CVE-2022-0995 bsc#1197246).
+- watch_queue: Use the bitmap API when applicable (CVE-2022-0995
+  bsc#1197246).
+- watch_queue: Fix to always request a pow-of-2 pipe ring size
+  (CVE-2022-0995 bsc#1197246).
+- watch_queue: Fix to release page in ->release() (CVE-2022-0995
+  bsc#1197246).
+- watch_queue, pipe: Free watchqueue state after clearing pipe
+  ring (CVE-2022-0995 bsc#1197246).
+- watch_queue: Fix filter limit check (CVE-2022-0995 bsc#1197246).
+- commit 223dbc3
+
+- arm64: PCI: Support root bridge preparation for Hyper-V
+  (bsc#1197291).
+- arm64: PCI: Restructure pcibios_root_bridge_prepare()
+  (bsc#1197291).
+- commit 060e164
+
+- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup
+  (bsc#1196018).
+- commit 6dcb47f
+
+- sr9700: sanity check for packet length (bsc#1196836
+  CVE-2022-26966).
+- commit 56eea34
+
+- Update kabi files.
+  Update to reflect the changes from bpf CVE fixes.
+- commit 993b084
+
+- rpm: SC2006: Use $(...) notation instead of legacy backticked `...`.
+- commit f0d0e90
+
+- nvme-rdma: fix possible use-after-free in transport
+  error_recovery work (bsc#1193787 bsc#1197146 bsc#1193554).
+  Refresh:
+  - patches.suse/0006-nvme-Implement-In-Band-authentication.patch
+- nvme-tcp: fix possible use-after-free in transport
+  error_recovery work (bsc#1193787 bsc#1197146 bsc#1193554).
+  Refresh:
+  - patches.suse/0006-nvme-Implement-In-Band-authentication.patch
+- nvme: fix a possible use-after-free in controller reset during
+  load (bsc#1193787 bsc#1197146 bsc#1193554).
+- nvme-fabrics: ignore invalid fast_io_fail_tmo values
+  (bsc#1193787 bsc#1197146 bsc#1193554).
+- nvme-tcp: fix memory leak when freeing a queue (bsc#1193787
+  bsc#1197146 bsc#1193554).
+- nvme-tcp: validate R2T PDU in nvme_tcp_handle_r2t() (bsc#1193787
+  bsc#1197146 bsc#1193554).
+- blk-mq: don't free tags if the tag_set is used by other device
+  in queue initialztion (bsc#1193787 bsc#1197146 bsc#1193554).
+- commit 4ccb78c
+
+- series: Resort entries
+  The series is not sorted which makes qdoit unhappy. Sort it.
+- commit ce701de
+
+- esp: Fix possible buffer overflow in ESP transformation
+  (CVE-2022-0886 bsc#1197131).
+- sock: remove one redundant SKB_FRAG_PAGE_ORDER macro
+  (CVE-2022-0886 bsc#1197131).
+- commit fa4075e
+
+- ipv6: fix skb drops in igmp6_event_query() and
+  igmp6_event_report() (CVE-2022-0742 bsc#1197128).
+- commit b531b26
+
+- aio: fix use-after-free due to missing POLLFREE handling
+  (CVE-2021-39698 bsc#1196956).
+- aio: keep poll requests on waitqueue until completed
+  (CVE-2021-39698 bsc#1196956).
+- signalfd: use wake_up_pollfree() (CVE-2021-39698 bsc#1196956).
+- binder: use wake_up_pollfree() (CVE-2021-39698 bsc#1196956).
+- wait: add wake_up_pollfree() (CVE-2021-39698 bsc#1196956).
+- commit ee17f5c
+
+- net/smc: Fix hung_task when removing SMC-R devices
+  (bsc#1197082).
+- commit 5256139
+
+- rpm/kernel-source.spec.in: call fdupes per subpackage
+  It is a waste of time to do a global fdupes when we have
+  subpackages.
+- commit 1da8439
+
+- bpf, selftests: Add test case trying to taint map value pointer
+  (bsc#1196130,CVE-2021-45402).
+- bpf: Make 32->64 bounds propagation slightly more robust
+  (bsc#1196130,CVE-2021-45402).
+- bpf: Fix signed bounds propagation after mov32
+  (bsc#1196130,CVE-2021-45402).
+- commit 04987fb
+
+- xen/netfront: react properly to failing
+  gnttab_end_foreign_access_ref() (bsc#1196488, XSA-396,
+  CVE-2022-23042).
+- commit 095b89a
+
+- xen/gnttab: fix gnttab_end_foreign_access() without page
+  specified (bsc#1196488, XSA-396, CVE-2022-23041).
+- commit 20b7983
+
+- xen/pvcalls: use alloc/free_pages_exact() (bsc#1196488,
+  XSA-396, CVE-2022-23041).
+- commit d56d4c6
+
+- xen/9p: use alloc/free_pages_exact() (bsc#1196488, XSA-396,
+  CVE-2022-23041).
+- commit b08fc02
+
+- xen/usb: don't use gnttab_end_foreign_access() in
+  xenhcd_gnttab_done() (bsc#1196488, XSA-396).
+- commit 4198f6f
+
+- xen/gntalloc: don't use gnttab_query_foreign_access()
+  (bsc#1196488, XSA-396, CVE-2022-23039).
+- commit 2239263
+
+- xen/scsifront: don't use gnttab_query_foreign_access() for
+  mapped status (bsc#1196488, XSA-396, CVE-2022-23038).
+- commit 95b1b12
+
+- xen/netfront: don't use gnttab_query_foreign_access() for
+  mapped status (bsc#1196488, XSA-396, CVE-2022-23037).
+- commit aabdf93
+
+- xen/blkfront: don't use gnttab_query_foreign_access() for
+  mapped status (bsc#1196488, XSA-396, CVE-2022-23036).
+- commit d12d408
+
+- xen/grant-table: add gnttab_try_end_foreign_access()
+  (bsc#1196488, XSA-396, CVE-2022-23036, CVE-2022-23038).
+- commit 4da4210
+
+- xen/xenbus: don't let xenbus_grant_ring() remove grants in
+  error case (bsc#1196488, XSA-396, CVE-2022-23040).
+- commit 93f9570
+
+- iommu/vt-d: Fix double list_add when enabling VMD in scalable mode (bsc#1196894).
+- commit 8aad886
+
+- rpm/arch-symbols,guards,*driver: Replace Novell with SUSE.
+- commit 174a64f
+
+- s390/cio: verify the driver availability for path_event call
+  (bsc#1195927 LTC#196420).
+- scsi: zfcp: Fix failed recovery on gone remote port with
+  non-NPIV FCP devices (bsc#1195376 LTC#196087).
+- s390/hypfs: include z/VM guests with access control group set
+  (bsc#1195639 LTC#196353).
+- s390/cpumf: Support for CPU Measurement Sampling Facility LS
+  bit (bsc#1195082 LTC#196087).
+- s390/cpumf: Support for CPU Measurement Facility CSVN 7
+  (bsc#1195082 LTC#196087).
+- s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194966
+  LTC#196029).
+- s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193244
+  LTC#195546).
+- s390/uv: de-duplicate checks for Protected Host Virtualization
+  (bsc#1191740 LTC#194817).
+- s390/boot: disable Secure Execution in dump mode (bsc#1191740
+  LTC#194817).
+- s390/boot: move uv function declarations to boot/uv.h
+  (bsc#1191740 LTC#194817).
+- commit 4d8f983
+
+- usb: host: xen-hcd: add missing unlock in error path
+  (git-fixes).
+- commit 3e3ceb8
+
+- Refresh
+  patches.suse/0002-usb-Introduce-Xen-pvUSB-frontend-xen-hcd.patch.
+- commit 11235e2
+
+- Refresh
+  patches.suse/0001-usb-Add-Xen-pvUSB-protocol-description.patch.
+- commit 1ed63ba
+
+- rpm/kernel-docs.spec.in: use %%license for license declarations
+  Limited to SLE15+ to avoid compatibility nightmares.
+- commit 73d560e
+
+- rpm/*.spec.in: Use https:// urls
+- commit 77b5f8e
+
+- scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe (git-fixes
+  bsc#1196746).
+- scsi: bnx2fc: Flush destroy_work queue before calling
+  bnx2fc_interface_put() (git-fixes bsc#1196746).
+- commit 8ac4c67
+
+- ARM: fix build error when BPF_SYSCALL is disabled (bsc#1085308
+  CVE-2022-23960).
+- ARM: include unprivileged BPF status in Spectre V2 reporting
+  (bsc#1085308 CVE-2022-23960).
+- commit 2b85b07
+
+- ARM: Spectre-BHB workaround (bsc#1085308 CVE-2022-23960).
+- Update config files.
+- commit 214f301
+
+- ARM: use LOADADDR() to get load address of sections (bsc#1085308
+  CVE-2022-23960).
+- ARM: early traps initialisation (bsc#1085308 CVE-2022-23960).
+- ARM: report Spectre v2 status through sysfs (bsc#1085308
+  CVE-2022-23960).
+- commit 20f8a99
+
+- nvme-multipath: use vmalloc for ANA log buffer (bsc#1193787 bsc#1197146 bsc#1193554).
+- commit 68439a4
+
+- arm64: proton-pack: Include unprivileged eBPF status in
+  Spectre v2 mitigation reporting (bsc#1085308 CVE-2022-23960
+  CVE-2022-0001 CVE-2022-0002).
+- arm64: Use the clearbhb instruction in mitigations (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- KVM: arm64: Allow SMCCC_ARCH_WORKAROUND_3 to be discovered
+  and migrated (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- commit 52f56e7
+
+- arm64: Mitigate spectre style branch history side channels
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- Update config files.
+- Refresh
+  patches.suse/kabi-arm64-reserve-space-in-cpu_hwcaps-and-cpu_hwcap.patch.
+- commit 1403b73
+
+- arm64: proton-pack: Report Spectre-BHB vulnerabilities as
+  part of Spectre-v2 (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: Add percpu vectors for EL1 (bsc#1085308 CVE-2022-23960
+  CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Add macro for reading symbol addresses from
+  the trampoline (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: entry: Add vectors that have the bhb mitigation sequences
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Add non-kpti __bp_harden_el1_vectors for
+  mitigations (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: entry: Allow the trampoline text to occupy multiple pages
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Make the kpti trampoline's kpti sequence optional
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Move trampoline macros out of ifdef'd section
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Don't assume tramp_vectors is the start
+  of the vectors (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: entry: Allow tramp_alias to access symbols after
+  the 4K boundary (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: entry: Move the trampoline data page before the text page
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Free up another register on kpti's tramp_exit path
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry: Make the trampoline cleanup optional (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- KVM: arm64: Allow indirect vectors to be used without
+  SPECTRE_V3A (bsc#1085308 CVE-2022-23960 CVE-2022-0001
+  CVE-2022-0002).
+- arm64: spectre: Rename spectre_v4_patch_fw_mitigation_conduit
+  (bsc#1085308 CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- arm64: entry.S: Add ventry overflow sanity checks (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- commit 39b0cd1
+
+- arm64: Add Cortex-X2 CPU part definition (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- Refresh
+  patches.suse/arm64-Add-Cortex-A510-CPU-part-definition.patch.
+- commit 1489419
+
+- arm64: add ID_AA64ISAR2_EL1 sys register (bsc#1085308
+  CVE-2022-23960 CVE-2022-0001 CVE-2022-0002).
+- commit 76b95f9
+
+- x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF +
+  SMT (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit 0161c6c
+
+- x86/speculation: Warn about Spectre v2 LFENCE mitigation
+  (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit 8114d57
+
+- x86/speculation: Use generic retpoline by default on AMD
+  (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit e9a2f46
+
+- x86/speculation: Include unprivileged eBPF status in Spectre v2
+  mitigation reporting (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit 8400263
+
+- Documentation/hw-vuln: Update spectre doc (bsc#1191580
+  CVE-2022-0001 CVE-2022-0002).
+- commit bc2948e
+
+- x86/speculation: Add eIBRS + Retpoline options (bsc#1191580
+  CVE-2022-0001 CVE-2022-0002).
+- commit 6e19c5a
+
+- x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE
+  (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
+- commit 2a3d074
+
+- drm/i915: Fix mbus join config lookup (git-fixes bsc#1193640).
+- drm/i915: Fix dbuf slice config lookup (git-fixes bsc#1193640).
+- drm/i915: Workaround broken BIOS DBUF configuration on TGL/RKL
+  (bsc#1193640).
+- drm/i915: Populate pipe dbuf slices more accurately during
+  readout (bsc#1193640).
+- drm/i915: Allow !join_mbus cases for adlp+ dbuf configuration
+  (bsc#1193640).
+- commit e87e53d
+
+- iwlwifi: pcie: add killer devices to the driver (bsc#1196802).
+- iwlwifi: add new killer devices to the driver (bsc#1196802).
+- commit 5e7d8b6
+
+- cpufreq: intel_pstate: Update EPP for AlderLake mobile
+  (bsc#1196848).
+- cpufreq: intel_pstate: ITMT support for overclocked system
+  (bsc#1196849).
+- commit 68d5eea
+
+- drm: Don't test for IRQ support in VBLANK ioctls (bsc#1195464).
+- commit 0ef2c9a
+
+- lib/iov_iter: initialize "flags" in new pipe_buffer
+  (CVE-2022-0847 bsc#1196584 git-fixes).
+- commit 9682d38
+
+- SUNRPC: avoid race between mod_timer() and del_timer_sync()
+  (bnc#1195403).
+- commit 378df3f
+
+- Move upstreamed patches into sorted section
+- commit 1900045
+
+- scsi: smartpqi: Add PCI IDs (bsc#1196627).
+- commit 7890c4e
+
+- Revert PCI MSI-X patch that caused a regression on network devices (bsc#1196403)
+  Deleted:
+  patches.suse/PCI-MSI-Mask-MSI-X-vectors-only-on-success.patch
+- commit 4606b8c
+
+- Update kabi files for intel_pmt_dev_create (bsc#1196591)
+- commit 40a0e22
+
+- Update patches.suse/ibmvnic-don-t-stop-queue-in-xmit.patch
+  (bsc#1192273 ltc#194629 bsc#1191428 ltc#193985).
+- commit de17db9
+
+- kernel-binary.spec: Also exclude the kernel signing key from devel package.
+  There is a check in OBS that fails when it is included. Also the key is
+  not reproducible.
+  Fixes: bb988d4625a3 ("kernel-binary: Do not include sourcedir in certificate path.")
+- commit 68fa069
+
+- Refresh sorted patches.
+- commit 0c5d65a
+
+- Refresh patches.suse/powerpc-64s-hash-Make-hash-faults-work-in-NMI-contex.patch.
+- commit 783700c
+
+- rpm/check-for-config-changes: Ignore PAHOLE_VERSION.
+- commit 88ba5ec
+
+- Update config and supported.conf for intel_vsec (bsc#1196591)
+  intel_pmt driver is renamed to intel_vsec
+- Update config files
+- supported.conf
+- commit 99cb50f
+
+- platform/x86/intel: Move intel_pmt from MFD to Auxiliary Bus
+  (bsc#1196591).
+- driver core: auxiliary bus: Add driver data helpers
+  (bsc#1196591).
+- PCI: Add #defines for accessing PCIe DVSEC fields (bsc#1196591).
+- platform/x86: intel_pmt_telemetry: Ignore zero sized entries
+  (bsc#1196591).
+- platform/x86/intel: pmt: Use y instead of objs in Makefile
+  (bsc#1196591).
+- commit 731c1ca
+
+- platform/x86/intel: Move Intel PMT drivers to new subfolder
+  (bsc#1196591).
+- Refresh
+  patches.suse/platform-x86-intel_pmc_core-Move-to-intel-sub-direct.patch.
+- commit e7adc65
+
+- bpf/selftests: Test PTR_TO_RDONLY_MEM (bsc#1196261 CVE-2022-0500).
+- bpf: Add MEM_RDONLY for helper args that are pointers to rdonly mem
+  (bsc#1196261 CVE-2022-0500).
+- bpf: Make per_cpu_ptr return rdonly PTR_TO_MEM
+  (bsc#1196261CVE-2022-0500).
+- bpf: Convert PTR_TO_MEM_OR_NULL to composable types
+  (bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- bpf: Introduce MEM_RDONLY flag (bsc#1194111 bsc#1194765
+  bsc#1196261 CVE-2021-4204 CVE-2022-0500 CVE-2022-23222).
+- Refresh
+  patches.suse/bpf-Fix-out-of-bounds-access-for-ringbuf-helpers.patch.
+- Refresh
+  patches.suse/bpf-Generally-fix-helper-register-offset-check.patch.
+- bpf: Replace PTR_TO_XXX_OR_NULL with PTR_TO_XXX | PTR_MAYBE_NULL
+  (bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- Refresh
+  patches.suse/bpf-Generalize-check_ctx_reg-for-reuse-with-other-ty.patch.
+- Refresh
+  patches.suse/bpf-Generally-fix-helper-register-offset-check.patch.
+- bpf: Replace RET_XXX_OR_NULL with RET_XXX | PTR_MAYBE_NULL
+  (bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- bpf: Replace ARG_XXX_OR_NULL with ARG_XXX | PTR_MAYBE_NULL
+  (bsc#1194111 bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- bpf: Introduce composable reg, ret and arg types (bsc#1194111
+  bsc#1194765 bsc#1196261 CVE-2021-4204 CVE-2022-0500
+  CVE-2022-23222).
+- commit 4db4b9b
+
+- Delete ACPI patch that broke s2idle (bsc#1196213)
+  Deleted:
+  patches.suse/ACPI-EC-Rework-flushing-of-EC-work-while-suspended-t.patch
+  A new kABI compat patch was added instead
+- commit 99c6bc9
+
+- NFSD: Fix READDIR buffer overflow (git-fixes bsc#1196346).
+- commit a149497
+
+- arm64: Add Cortex-A510 CPU part definition (git-fixes).
+- commit 1fd20fb
+
+- kernel-binary: Do not include sourcedir in certificate path.
+  The certs macro runs before build directory is set up so it creates the
+  aggregate of supplied certificates in the source directory.
+  Using this file directly as the certificate in kernel config works but
+  embeds the source directory path in the kernel config.
+  To avoid this symlink the certificate to the build directory and use
+  relative path to refer to it.
+  Also fabricate a certificate in the same location in build directory
+  when none is provided.
+- commit bb988d4
+
kvm_stat
+- If the kvm service is enabled and the system rebooted,
+  Systemd's initial attempt to start the kvm unit file may
+  fail in case the kvm module is not loaded.
+  Add an appropriate delay in the unit file. (bsc#1185945)
+  * Add patches:
+  * add-restart-delay.patch
+
+- Add a dummy -rebuild package: give OBS/Tumbleweed a hint to tell
+  when this package needs a rebuild (boo#1178493).
+
lapack
+- Add Fix-out-of-bounds-read.patch to fix out of bound reads when
+  user input is not validated properly.  (bsc#1193562, CVE-2021-4048)
+
-- packaged symlinks created by update-alternative as %ghost files
-- removed quotes from update-alternative command to silence rpmlint warning
-
-- Split devel packages into devel and devel-static
-
-- add update-alternative support to allow user to easily switch
-  between several blas and lapack libraries
-
-- Update to 3.4.2
-  * Bug fixes
-
-- Fix bnc#772628
-
-- update baselibs.conf
-
-- build the c interface lapacke
-
-- doxygen >= 1.7 is required for building docu
-
-- Change obsoletes '<=' for lapack and blas back to '<', there was a
-  version update in between
-- Remove psfig.tex (bnc#757332)
-
-- fixing dependencies for devel-32bit
-
-- Update to 3.4.1
-  * Bug fixes
-
-- Undo spec file obfuscation
-
-- Fixed building on openSUSE 11.4 by fixing defattr
-- Made the package groups consistent: Development/Libraries/Parallel
-- Cleaned up spec file formatting
-- Made all requires use the new package naming
-
-- Adhere to shared library policy, packages containing *.so or *.h
-  files have to be named $FOO-devel, packages containing *.a files either
-  have to be named $FOO-devel-static or provide this name
-- Set license to 'BSD-3-Clause', according to the file LICENSE and the
-  description on http://www.netlib.org/lapack/ it's not public domain
-- Package README and LICENSE in library packages
-- Removed rpmlint filters
-- Use upstream tarball URL
-
-- patch license to follow spdx.org standard
-
-- Remove redundant/unwanted tags/section (cf. specfile guidelines)
-- Use %_smp_mflags for parallel building
-
-- Update to 3.4.0
-  * xGEQRT: QR factorization (improved interface)
-  * xGEQRT3: recursive QR factorization.
-  * xTPQRT: Communication-Avoiding QR sequential kernels.
-  * Bug fixes.
-  * Changes see http://www.netlib.org/lapack/lapack-3.4.0.html
-
-- Run BLAS and LAPACK testsuite when building
-
-- Update to 3.3.1 [bnc#654560]
-  * New procedures to compute the complete CS decomposition of a
-    partitioned unitary matrix
-  * Level-3 BLAS symmetric indefinite solve (xSYTRS) and symmetric
-    indefinite inversion (xSYTRI)
-  * Bug fixes
-  * Changes see at http://www.netlib.org/lapack/lapack-3.3.1.html
-    and http://www.netlib.org/lapack/lapack-3.3.0.html
-
-- Add baselibs.  [bnc#630656]
-
-- Update to version 3.2.2
-  * Bug fix release
-  * Changes see at http://www.netlib.org/lapack/lapack-3.2.2.html
-
-- package man and blas-man as noarch
-
-- Drop -O3 -funroll-all-loops compiler flags, build dcabs1.f with -O0.
-  [bnc#569978]
-
-- Update to version 3.2.1 [bnc#504669]
-  * Changes see at http://www.netlib.org/lapack/lapack-3.2.1.html
-
libbluray
+- Update to 1.3.0:
+  + Add bd_event_name().
+  + Add return value to bd_refcnt_inc().
+  + Add cache for parsed clpi file data.
+  + Add player setting for JRE location (JAVA_HOME).
+  + Improve FreeBSD BD-J support.
+  + Improve portability.
+  + Improve JVM and .jar file probing.
+  + Fix leak.
+- Update to 1.2.1:
+  + Add initial support for .fmts files.
+  + Improve missing/broken playlist handling.
+  + Improve UHD metadata support.
+  + Improve BD-J compability.
+  + Improve error resilience and stability.
+  + Fix long delay in "Evangelion, You are (not) alone" menu.
+  + Fix JVM bootstrap issues with some Java 9 versions.
+  + Fix sign extended bytes when reading single bytes in BDJ.
+  + Fix creating organization and disc specific BD-J BUDA
+    directories.
+  + Use external libudfread when available.
+  + Rename list_titles to bd_list_titles and add it to installed
+    programs.
+- Update to version 1.2.0:
+  + Add functions to list and read BD-ROM files.
+  + Add support for separate key pressed / typed / released user
+    input events.
+  + Add support for AWT mouse events (BD-J).
+  + Fix build with OpenJDK 12 / 13.
+- Update to version 1.1.2:
+  + Add libxml version to pkg-config Requires.private.
+  + Improve support for NetBSD operating system.
+  + Improve BD-J compability.
+  + Improve Java 8+ compability.
+  + Fix main playlist caching in Windows.
+  + Fix mark triggering when multiple marks are passed during
+    single read().
+  + Fix seek bar pop-up at chapter boundary with some discs.
+  + Fix reading resources indirectly from mounted .jar file.
+- Update to version 1.1.1:
+  + Enable playback without menus when index.bdmv is missing.
+  + Improve error resilience and stability.
+  + Improve BD-J compability.
+  + Fix loading libraries on MacOS / hardened runtime.
+  + Fix resetting user-selected streams when playing without menus.
+  + Fix stack overflow when using Java9+ with debugger connection.
+  + Fix polygon-based BD-J graphics primitives.
+  + Fix loading libmmbd in Windows 64-bit.
+  + Fix loading classes with Windows Java 8.
+  + Fix build with Java 1.6.
+  + Fix pkg-config Libs.private.
+- Update to version 1.1.0:
+  + Add initial support for OpenJDK 11.
+  + Add initial support for UHD disc BD-J menus.
+  + Add support for compiling .jar file with Java 9+ compiler.
+  + Move AWT classes to separate .jar file.
+  + Update libudfread submodule repository URL.
+  + Improve main title selection.
+  + Improve error resilience and stability.
+  + Improve BD-J compability.
+  + Fix playback of some broken BD-J discs.
+  + Fix playback of discs without normal titles (only TopMenu /
+    FirstPlay title).
+- Remove unused dependencies from pkgconfig(libbluray)
+  Our pkg is dynamically linked, so Libs.private is not needed
+  Nothing in the exported header files needs paths from
+  Requires.private
+  * libbluray-pkgconfig.patch
+- Refresh libbluray-java9.patch
+- Drop libbluray-jvm_dir.patch
+- Enable build against java-devel >= 10.
+
-- Select the C standard to be used with autoconf macros
-  instead of passing std=c99.
-- Correct CPPFLAGS and CFLAGS
-- Ensure config.h is always included, in 32 bit OS the library
-  was using both fopen() and fopen64() this will cause
-  problems with largefiles due to _FILE_OFFSET_BITS=64 beign
-  used inconsistenly.
-- Patch name : libbluray-autotools.patch
-
-- Added use-recommended-freetype-include.patch -- Freetype upstream
-  recommends using their macros together with ft2build include.
-  Positive sideeffect is that this patch makes it build with both
-  freetype2 2.5.1, and older version
-
-- Update to version 0.4.0:
-  + Fixed slide shows: always cut reads at clip end boundary.
-  + Fixed logging with non-default mask.
-  + Fixed buffer overflow in bd_psr_unregister_cb().
-  + Fixed IG background when button image position changes.
-  + Fixed BD-J tearing issues.
-  + Changed default PhoneME library name in Windows (cvm -> cvmi).
-  + Initialize default player region code to B.
-  + Improved BD-J support (still alpha).
-  + Improved language-based stream autoselection.
-  + Added missing Java files to distribution package.
-  + Added support for multi-clip sub paths.
-  + Added bd_select_stream().
-  + Added menu page effects.
-  + Added button animations.
-  + Added initial support for BluRay Text Subtitles.
-  + Added bd_read_clpi(): use only public API in clpi_dump.
-  + Added reference-counted RLE images.
-- Add pkgconfig(freetype2) BuildRequires, new dependency.
-
-- Update to version 0.3.0:
-  + Build fixes.
-  + Fixed stopping playback from pop-up menu.
-  + Fixed multithreading issues in API.
-  + Fixed initial setting for player profile.
-  + Fixed stack corruption with long log strings.
-  + Improved configure script.
-  + Improved Visual Studio support.
-  + Improved BD-J support (still alpha).
-  + Allow changing player version.
-  + Added PG (subtitle) decoding and rendering support.
-  + Added ARGB overlay interface for BD-J graphics.
-  + Added events for discontinuity, idle state and 3D mode.
-  + Added playmarks to BLURAY_TITLE_INFO.
-  + added start time, in time and out time to BLURAY_CLIP_INFO.
-  + added sub-path id to BLURAY_STREAM_INFO.
-  + Added bd_seek_playitem().
-  + Added bd_set_scr().
-  + Added 3D extension data to raw clip info.
-  + added 3D player settings.
-  + Added cropping and palette update flag to BD_OVERLAY.
-- Add  pkgconfig(libxml-2.0) BuildRequires: new dependency.
-
-- Update to version 0.2.3:
-  + Default to stream 0 when language not found
-  + Bug fixes
-- Add tools subpackage, with the new command line utilities.
-
-- Update to version 0.2.2:
-  + Fixed displaying of single-loop animated buttons when not using
-    animations
-  + Added events for pop-up menu availability and IG menu status
-  + Fixed resuming to interactive title
-  + Use user filesystem handler with libaacs
-  + Fixes to HDMV menu rendering
-  + Optimized HDMV menu rendering
-  + Support for sound effects in HDMV menus
-  + Fixes to HDMV menu decoding
-  + Distribute BD-J code
-
-- Add baselibs.conf, to build 32bit packages, as needed by gvfs.
-
-- Fix soname version to 1
-
-- Update to version 0.2.1:
-  + Make library version information visible to applications.
-  + First released tarball.
-- Remove automake BuildRequires: this is now a real release that
-  was already bootstrapped.
-
-- add automake as buildrequire to avoid implicit dependency
-
-- Initial package, version 0.1.99 (a git-snapshot)
-
libcap
+- Use "or" in the license tag to avoid confusion (bsc#1180073)
+
+- update to 2.63:
+  * restore errno to zero by the time main() is executed
+  * Consistent psx handling (a panic) for syscalls that return thread dependent
+    status Inconsistend behavior noticed by Lorenz Bauer
+  * Add a test case for a deadlock under investigation in golang
+  * Trim some of the #include file use to make the tree compile more
+    efficiently
+
+- update to 2.62:
+  * Bug fix for Go package "cap" and launching
+  * Build cleanups
+  * Documentation updates: cap_max_bits has a man page entry
+  * Recognize default securebits as a libcap mode: HYBRID
+
+- libcap 2.61:
+  * Better error handling of the numerical arguments for capsh and
+    setcap
+  * Fix executable mode for all of the .so files. There were two
+    situations where this was failing (with a hard to debug SIGSEGV
+    inside libc)
+  * Added an example of a shared library object with its own file
+    capability
+  * Fix the top-level include for Make.Rules in the contrib/sucap
+    example application
+  * Add support for running constructors at libcap.so start up time
+    when running as stand alone binary.
+- includes changes from 2.60:
+  * Some build, code linting fixes, the addition of the
+    cap_fill_flag() API and a memory latency optimization
+  * General improvement in thread safety for libcap and cap package
+  * Minor API change replacing libcap:cap_launch_*() void returning
+    functions with int + errno status returns.
+  * Added a cap_iab_dup(), and (*cap.IAB).Dup() to API
+  * New features for capsh: --quiet, -+ and =+ arguments
+- add upstream signing key and verify source signature
+
+- update to 2.59:
+  * Fixed a potential libcap memory leak by adding a destructor
+  * Major improvement is that there is a path for Linux-PAM compliant
+    applications to support setting Ambient vector Capabilities via pam_cap.so now
+  * Added libcap cap_proc_root() API function
+  * Added color support to captree
+  * Fixed contrib/sucap/su to correctly handle the Inheritable flag
+  * capsh enhancements
+  * getcap -r / now generates readable output
+  * The shared library objects: pam_cap.so, libcap.so and libpsx.so, are all now
+    runnable as standalone binaries
+  * The module pam_cap.so now contains support for a default=<IAB> module argument
+  * Enhanced capsh --suggest to also compare against the capability value names
+    and not just their descriptions
+  * Added capsh --current support
+  * Added a contrib/sucap/su.c pure-capabilities PAM implementation of su
+  * Fix for a corner case infinite loop handling long strings
+  * Added libcap cap_iab_compare() and cap_iab_get_pid() APIs
+  * Added a Go utility, captree, to display the process (and thread) graph along with
+    the POSIX.1e and IAB capabilities of each PID{TID} tree.
+
+- update to 2.51:
+  * Fix capsh installation
+  * Add an autoauth module flag to pam_cap.so
+  * Unified libcap/cap (Go) and libcap (C) default generation of external format binary data
+  * API enhancement cap_fill() and (*cap.Set).Fill() - to permit copying one
+    capability flag to another.
+  * --explain=cap_foo: describe what cap_foo does
+  * --suggest=phrase: search all the cap descriptions and describe those that match the phrase
+  * Add "keepcaps" module argument support to pam_cap.so (reported by Zoltan Fridrich. Bug 212945)
+  * extend libcap to include cap_prctl() and cap_prctlw() functions to regain
+    feature parity with Go "cap" package. These are only needed when linking
+    against -lpsx for keepcaps POSIX semantics.
+  * this likely requires substantial application changes to make Ambient
+    capability support usable in general, but doing our part for the admin.
+  * Add a test case for recent kernel fix
+  * Go pragma fix for convenience functions in "cap" module
+
+- Fix a broken symlink. libcap-devel installs libpsx.so but
+  didn't install the library it's pointing to.
+
-  and pam_cap (bsc#1184690)
+  (bsc#1184690)
-- Update to libcap 2.26 for supporting the ambient capabilities
-  (jsc#SLE-17092, jsc#ECO-3460)
-- Use "or" in the license tag to avoid confusion (bsc#1180073)
+- update to 2.49:
+  * Implement cap_func_launcher() and cap.FuncLauncher().
+  * More robust "psx" redirection for nocgo compilation - the documentation for
+    the cgo implementation is now included in the nocgo one because the go.dev
+    automated documentation builds the docs from the nocgo version.
+  * Lots of documentation cleanups and added a few man pages: for IAB and
+    Launching.
+  * Some general no-op License changes that might cause folk to notice but only
+    for formatting reasons. These were initially inspired by some lawyerly
+    interactions, but I ended up rolling back half of them because they
+    confused automated software infrastructure.
+
+- update to 2.48:
+  * More uniform use of $(MAKE) in Makefiles
+  * No longer include symlinks in the git tree
+  * Provide support for make GOLANG=no ...
+  * Provide support for pointing at a specific build of the go binary
+  * camelCase the contrib/seccomp/explore.go program
+  * A number of documentation fixes to man pages and source code comments
+  * Last use of GO major version 0
+
+- update to 2.47:
+  * Restructured gowns to default to uid base of getuid().
+  * Augment NOPRIV libcap mode with the sticky NO_NEW_PRIVS prctl bit.
+  * Improve the usage and diagnostic message for setcap
+  * Documentation fixes, license declarations, example updates
+
+- update to 2.46:
+  * The bulk of this release concerns fixes and improvements to libpsx
+  * Fix the capsh == argument handling and add a test case
+  * Added build support for systems that do not support libpthread
+  * Added build support for not building shared libraries
+
+- update to 2.44:
+  Generally, this is a release to help package builders: no functional change
+  to any of the generated code just documentation and make related fixes.
+
+- update to 2.43
+  * Linus' kernel tree defines CAP_CHECKPOINT_RESTORE (40) so support it.
+  * Fix the creation of the $(FAKEROOT)$(LIBDIR) for split install targets
+  * Clean up a binary from the distribution
+  * Added some more release time checks for non-git tracked files.
+  * Fix a deadlock in libpsx that surfaced with a set of compiler optimizations by removing the psx wrapping harder.
+
+- Update to version 2.42:
+  * Closed a potential issue with "libcap/psx" Go package and errno
+  * Documentation updates
+  * Minor optimization for cap_to_text() and (*cap.Set).String()
+  * Discovered and added a missing function (*cap.Set).SetNSOwner() to achieve parity with libcap
+  * Multiple fixes
+  * Support Go module abstraction
+  * A new kernel capability: CAP_BPF
+  * Better support for cross-compilation
+  * pam_cap now honors PAM_REINITIALIZE_CRED
+  * implements cap_launch functionality
+
+- Update to version 2.32:
+  * Bug fix for fakeroot incompatibility (boo#1162014)
+  * Slight perf improvement for cap_get_bound().
+  * C++ support for psx header inclusion.
+  * Some new testing features for capsh
+
+- Update to version 2.31:
+  * primarily a documentation update
+  * fix libpam.pc to not require libpsx.pc
+  * changed the text format of the default output of getpcap
+
+- Build using -ffat-lto-objects for static library
+
+- Update to version 2.30 (jsc#SLE-17092, jsc#ECO-3460):
+  * BUGFIX: arm and i386 fixes C and Go setgroups choice - used
+    wrong syscall in 2.29.
+  * cleaned up make clean and make install to actually work as
+    intended
+  * updated Gentoo libpsx.pc file from Lars Wendler
+  * refactored the way libpsx linkage with libcap performed mutual
+    discovery.
+  * Previously (2.28) libpsx had an API call overridden by libcap
+    using weak linkage function in libpsx. In 2.30 this is reversed,
+    namely libpsx provides the stronger function and libcap has a
+    weak "no-op" version.
+  * a bit more consistency in handling the 'all' sets in libcap
+    (C) and libcap/cap (Go). Namely, they both dynamically discover
+    the number of capabilities named by the kernel and use this as
+    the definition of 'all' for the current runtime.
+    + libcap (C) exports cap_max_bit() to export the number of
+    supported capabilities
+    + libcap/cap (Go) exports cap.MaxBits() for this same value.
+- For changes for older releases see:
+  * https://sites.google.com/site/fullycapable/release-notes-for-libcap
+- Add glibc-static-devel as build requirement as tests need it
+- Install libpsx.a as it seems to be needed in some cases:
+  * https://bugs.gentoo.org/703912
+
+- Remove pam_cap (bsc#1150522) since this PAM module is a bad idea, security
+  wise.
-- libcap-nolibattr.patch Do not link to libattr, it is
-  a bogus dependency. application uses sys/xattr from libc.
-
-- update license to new format
-
-- Cleanup specfile a bit: Remove old tags.
-
libgnomesu
+- Update to version 2.0.7:
+  * Updated translations.
+  * Better wording in the documentation.
+
libnvme
+- Update to version 1.0-rc7:
+  * linux: fixup log page offset in nvme_get_log_page()
+  * tree: Add support for default trsvcid for all controllers (bsc#1195858)
+  * tree: fixup coredump during nvme discover
+
+- Update to version 1.0-rc6:
+  * tree: add nvme_ctrl_get_ana_state() (bsc#1195938)
+  * tree: link paths to namespaces in nvme_subsystem_scan_namespace() (bsc#1195938)
+  * ioctl.h: ns list bug fix (wrong cns value)
+  * types.h: Key Value Command Set Identifier added (NVME_CSI_KV)
+  * types: fix status code type bug (wrong masking)
+
libreoffice
+- Update to 7.2.5.1 (jsc#SLE-18214):
+  * Fix CVE-2021-25636 Incorrect trust validation of signature with
+    ambiguous KeyInfo children (CVE-2021-25636, bsc#1196456)
+
libsolv
+- fix segfault on conflict resolution when using bindings
+- fix split provides not working if the update includes a forbidden
+  vendor change
+- support strict repository priorities
+  new solver flag: SOLVER_FLAG_STRICT_REPO_PRIORITY
+- support zstd compressed control files in debian packages
+- add an ifdef allowing to rename Solvable dependency members
+  ("requires" is a keyword in C++20)
+- support setting/reading userdata in solv files
+  new functions: repowriter_set_userdata, solv_read_userdata
+- support queying of the custom vendor check function
+  new function: pool_get_custom_vendorcheck
+- support solv files with an idarray block
+- allow accessing the toolversion at runtime
+- bump version to 0.7.21
+
libstorage-ng
+- merge gh#openSUSE/libstorage-ng#863
+- do not run blkdiscard on extended partitions (bsc#1197257)
+- 4.4.94
+
libvirt
+- qemu: Fixes and improvements for SEV(-ES) guests
+  d248e3dc-virsh-domsetlaunchsecstate-report-error.patch,
+  07ddb4c6-qemuDomainSetLaunchSecurityState-check-params.patch,
+  29605313-qemuDomainSetLaunchSecurityState-nocache.patch,
+  82be0ffe-conf-validate-serial-port-model.patch,
+  aab943a6-support-firmware-debug.patch,
+  7714034e-qemu-debug-console-tests.patch,
+  3ef9b51b-qemu-fix-pflash-formatting.patch,
+  5adfb347-qemu-honor-user-nvram-path.patch,
+  08101bde-qemu-inline-nvram-path-code.patch,
+  24adb6c7-qemu-dont-regen-nvram-path.patch,
+  392292cd-tests-dont-use-autogen-nvram-path.patch,
+  32b9d8b0-qemu-support-fw-descriptor-mode.patch,
+  823a62ec-qemu-fix-undefine-crash.patch
+  bsc#1196806
+
libyui
+- Fixed release notes dialog in YQWizard clearing content on click
+  (bsc#1195158)
+- Documented the different ways of displaying release notes in the UI
+- 4.3.3
+
libyui:libyui-ncurses
+- Fixed release notes dialog in YQWizard clearing content on click
+  (bsc#1195158)
+- Documented the different ways of displaying release notes in the UI
+- 4.3.3
+
libyui:libyui-ncurses-pkg
+- Fixed release notes dialog in YQWizard clearing content on click
+  (bsc#1195158)
+- Documented the different ways of displaying release notes in the UI
+- 4.3.3
+
libyui:libyui-qt
+- Fixed release notes dialog in YQWizard clearing content on click
+  (bsc#1195158)
+- Documented the different ways of displaying release notes in the UI
+- 4.3.3
+
libyui:libyui-qt-graph
+- Fixed release notes dialog in YQWizard clearing content on click
+  (bsc#1195158)
+- Documented the different ways of displaying release notes in the UI
+- 4.3.3
+
libyui:libyui-qt-pkg
+- Fixed release notes dialog in YQWizard clearing content on click
+  (bsc#1195158)
+- Documented the different ways of displaying release notes in the UI
+- 4.3.3
+
libzypp
+- Fix package signature check (bsc#184501)
+  Pay attention that header and payload are secured by a valid
+  signature and report more detailed which signature is missing.
+- Retry umount if device is busy (bsc#1196061, closes #381)
+  A previously released ISO image may need a bit more time to
+  release it's loop device. So we wait a bit and retry.
+- Fix serializing/deserializing type mismatch in zypp-rpm
+  protocol (bsc#1196925)
+- Fix handling of ISO media in releaseAll (bsc#1196061)
+- Hint on common ptf resolver conflicts (bsc#1194848)
+- version 17.29.6 (22)
+
lvm2
+- lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691)
+  + change lvm.conf item external_device_info_source from none to udev
+  + bug-1179691_config-set-external_device_info_source-none.patch
+
lvm2:devicemapper
+- lvm2 should use 'external_device_info_source="udev"' by default (bsc#1179691)
+  + change lvm.conf item external_device_info_source from none to udev
+  + bug-1179691_config-set-external_device_info_source-none.patch
+
mc
+- Midnight Commander 4.8.27:
+  * Core
+  - Minimal version of Autoconf is 2.64 (#3603)
+  - Minimal version of Automake is 1.12 (#3986)
+  - Minimal version of Gettext is 0.18.2 (#3603)
+  - Minimal version of libssh2 is 1.2.8 (#4259)
+  - Reimplement version detection (#3603, #4249)
+  - Significantly reduce rebuilt time after version change (#2252, #4266)
+  - Drop automatic migration of configuration from ~/.mc to XDG-based directories (#3682)
+  - zsh: support custom configuration file: ~/.local/share/mc/.zshrc (#4203)
+  - Widgets: implement WST_VISIBLE state to show/hide widgets (#2919)
+  - Find File: add Follow symlinks option (#2020)
+  * VFS
+  - extfs: support unrar-6 (#4154)
+  - extfs: support official 7z binary (7zz) (#4239)
+  - ftpfs: apply file list parser from lftp project (#2841, #3174)
+  * Editor
+  - Word completion: get candidates from all open files (#4160)
+  - etags: get rid of hardcoded list length and window width (#4132)
+  - Update syntax files:
+  - python (#4140)
+  - Add syntax highlighting:
+  - Verilog and SystemVerilog? header files (#4215)
+  - JSON (#4250)
+  - openrc-run scripts (#4246)
+  * Viewer
+  * Diff viewer
+  * Misc
+  - Code clean up (#4179, #4173, #4269)
+  - Filehighlight of c++ and h++ files as sources (#4194)
+  - Filehighlight of JSON files as documents (#4250)
+  - Support of alacritty terminal emulator (​https://github.com/alacritty/alacritty) (#4248)
+  - Support of foot terminal emulator (​https://codeberg.org/dnkl/foot) (#4251)
+  - Support of (alt+)shift+arrow keys in st terminal emulator (st.suckless.org) (#4267)
+  - Mouse support in screen: don't check  variable (#4233)
+  - mc.ext: support fb2 e-books (#4167)
+  - ext.d: use mediainfo to view info about various media files (#4167)
+  - Remove OS/distro-specific package-related stuff from source tree (#4217)
+  * Fixes
+  - FTBFS against NCurses on OS X 10.9.5 (#4181)
+  - Segfault on dialog before panels get visible (#4244)
+  - Crash if shadow is out of screen (build against NCurses) (#4192)
+  - Crash in search (#4222)
+  - Crash on startup with enabled subshell in FreeBSD (workaround) (#4213)
+  - Hang on start randomly with zsh as subshell (#4198)
+  - If command line is invisible it's partially displayed (#4182)
+  - Broken handling of zip archives (#4180, #4183)
+  - Broken handling of jar files as zip archives (#4223)
+  - Timestamps of symlinks, sockets, fifos, etc are not preserved after copy/move (#3985)
+  - %view action in the user menu doesn't work on no-exec filesystem (#4242)
+  - Hardlinks are not colored by file type or extension (#3375)
+  - mcedit: silent macro makes terminal disrupted (#4171)
+  - mcedit: disrupting of TAGS file path (#4207)
+  - vfs: unable to browse compressed tar archives (#4191)
+  - sftpfs vfs: CVE-2021-36370: server fingerprint isn't verified
+    (discovered by AUT-milCERT during an audit of open source software) (#4259)
+  - ftpfs vfs: month of file is always January (#4260)
+  - Tests: log files are written by libcheck and automake simultaneously (#3986)
+- Rebase mc-ext-audio.patch.
+- Rebase mc-extd-sound.patch.
+
mdevctl
+- spec: Add /etc/mdevctl.d/scripts.d directory to %files
+
+- Update to version v1.1.0 (jsc#SLE-18449):
+  * use imported std::env for CARGO_PKG_VERSION in build.rs directly
+  * fix build.rs to allow specify exact path or name of the rst2man
+  * Don't call unnecessary to_string()
+  * Report a useful error when /etc/mdevctl.d doesn't exist
+  * Handle FS permissions problems for defined devices
+  * Fix needless borrow warning from clippy
+  * tests: read stdin in callout test scripts
+  * Report root error when a callout can't be executed
+  * Don't emit warning for files in /etc/mdevctl.d/scripts.d
+  * env: add function to get base scripts directory
+
+- Update to version 0.81:
+  * Automatic version commit for tag 0.81
+  * Fix define from jsonfile
+
mozilla-nss
+- Update FIPS validation string to version-release format.
+- Update nss-fips-approved-crypto-non-ec.patch to remove XCBC MAC
+  from list of FIPS approved algorithms.
+
+- Enable NSS_ENABLE_FIPS_INDICATORS and set NSS_FIPS_MODULE_ID
+  for build.
+
+- Update nss-fips-approved-crypto-non-ec.patch to claim 3DES
+  unapproved in FIPS mode (bsc#1192080).
+- Update nss-fips-constructor-self-tests.patch to allow testing
+  of unapproved algorithms (bsc#1192228).
+- Add nss-fips-version-indicators.patch (bmo#1729550, bsc#1192086).
+  This adds FIPS version indicators.
+- Add nss-fips-180-3-csp-clearing.patch (bmo#1697303, bsc#1192087).
+  Most of the relevant changes are already upstream since NSS 3.60.
+
ndctl
+- Add support for reporting dirty shutdown count (jsc#SLE-18196).
+  + 0016-libndctl-papr-Add-support-for-reporting-shutdown-cou.patch
+  + 0009-libndctl-papr-Fix-probe-for-papr-scm-compatible-nvdi.patch
+  + 0003-libndctl-Unify-adding-dimms-for-papr-and-nfit-famili.patch
+- Merge fixes that went into v72 and v73
+  - Documentation updates
+    + 0015-ndctl-docs-Clarify-update-firwmware-activation-overf.patch
+    + 0014-Documentation-ndctl-fix-self-reference-of-ndctl-disa.patch
+    + 0013-daxctl-Add-Soft-Reservation-theory-of-operation.patch
+    + 0008-ndctl-Update-nvdimm-mailing-list-address.patch
+  - Label index block calculation fix
+    + 0012-ndctl-dimm-Fix-label-index-block-calculations.patch
+    + 0002-Expose-ndctl_bus_nfit_translate_spa-as-a-public-func.patch
+  - Scrub fix
+    + 0011-ndctl-scrub-Reread-scrub-engine-status-at-start.patch
+    + 0010-ndctl-scrub-Stop-translating-return-values.patch
+  - Add memblock count to JSON
+    + 0007-daxctl-emit-counts-of-total-and-online-memblocks.patch
+  - DAX disable fix
+    + 0006-libndctl-check-for-active-system-ram-before-disablin.patch
+    + 0005-libdaxctl-add-an-API-to-check-if-a-device-is-active.patch
+    + 0001-ndctl-namespace-Fix-disable-namespace-accounting-rel.patch
+  - DAX reconfigure fix
+    + 0004-daxctl-fail-reconfigure-device-based-on-kernel-onlin.patch
+
+- Added hardening to systemd service(s) (bsc#1181400). Added patch(es):
+  * harden_ndctl-monitor.service.patch
+
nvme-cli
+- Update to version 2.0-rc7:
+  * netapp-nvme: fix smdevices segfault in json output (bsc#1195937)
+  * fabrics: keep the backward compatibility
+  * nvme: Do not slash escape strings in JSON output (bsc#1195937)
+  * nvme: Print full device path
+  * nvme-print: Make JSON keys consistent with nvme-cli 1.x
+  * nvme-print: print generic device in list command
+  * fabrics: check for discovery controller instead of subsystem NQN (bsc#1197061)
+  * connect: Set errno to zero on nvmf_add_ctrl() success
+  * documenation updates
+- Set path to systemctl via newly introduced config option
+- Update 0100-harden_nvmf-connect@.service.patch due to upstream file rename
+- Moved bash completion script to /usr/share/bash-completion/completions/nvme
+
+- Update to version 2.0-rc6:
+  * nvme: print out ANA state for 'list-subsys' (bsc#1195938)
+  * nvme: Explicit initialize all command line options (bsc#1195945)
+  * nvme: Explicit initialize passthru command line options
+  * nvme: list_ns bug fix (csi option enable)
+  * nvme: nvme write bug fix (no parse for option)
+  * documenation updates
+
open-iscsi
+- Update to latest upstream, including test cleanup, minor
+  bug fixes (cosmetic), and fixing iscsi-init (bsc#1195656).
+
+- Updated to latest upstream 2.1.6 as 2.1.6-suse, which contains
+  bug fixes and cleanups. See the Changelog for more details.
+
openldap2
+- Revert jsc#PM-3288 - CLDAP ( -DLDAP_CONNECTIONLESS ) due to regression
+  reporting is bsc#1197004 causing SSSD to have faults.
+
+- jsc#PM-3288 - restore CLDAP functionality in CLI tools
+
patterns-base
+- Fix boo#1197892 again
+  * move sysvinit-tools to the right pattern
+
+- Add enhanced_base as recommends to transactional_server boo#1197913
+
patterns-gnome
+- Drop gnome-documents Recommends: Package is archived upstream.
+
+- Recommend the gnome_games pattern by gnome_x11 instead of the
+  generic games pattern.
+
+- Do not require gnome-packagekit by gnome_x11: we have a specific
+  sw_management_gnome pattern, which supplements the generic
+  sw_management plus the basic gnome pattern, and that's where we
+  also should (and do) recommend gnome-packagekit.
+
+- Do not recommend speech-dispatcher-module-espeak: we recommend
+  speech-dispatcher, the rest is handled by dependencies from the
+  packages (recommends and supplements).
+- No longer recommend gnome-menus: GNOME 3 is not using menu
+  structures. This package is used by extension-classic, and if
+  that extension is installed, gnome-menus comes in as a dep.
+- Stop recommending samba: samba is the server, which makes no
+  sense to be recommended by the desktop pattern.
+
pcre2
-- Added 0001-Fixed-atomic-group-backtracking-bug.patch
-  * bsc#1187937
-  * PHP 7.6.4 on s390x returns different results for preg_match
-    function as compared to older PHP versions and x86
-  * Sourced from upstream subversion commit:
-    $ svn log -r965 svn://vcs.pcre.org/pcre2/code/trunk
+- version update to 10.39
+  * Fix incorrect detection of alternatives in first character
+    search in JIT
+  * Update to Unicode 14.0.0
+- 0001-Fixed-atomic-group-backtracking-bug.patch released for 15:Update
+  due to bsc#1187937 is already upstreamed
+  https://bugzilla.suse.com/show_bug.cgi?id=1187937#c7
+
+- added patches
+  fix revert https://github.com/PhilipHazel/pcre2/commit/080d7789eba00b570181dfe28809b01aa88c01f8
+  + pcre2-readd-wrappers-POSIX.patch
+
+- pcre2 10.38:
+  * Following Perl's lead, \K is now locked out in lookaround
+    assertions by default, but an option is provided to re-enable
+    the previous behaviour
+
+- pcre2 10.37:
+  * removal of the actual POSIX names regcomp etc. from the POSIX
+    wrapper library because these have caused issues for some
+    applications, replacing pcre2-symbol-clash.patch
+  * fix a hypothetical NULL dereference
+  * fix two bugs related to over-large numbers so the behaviour is
+    now the same as Perl
+  * Fix propagation of \K back from the full pattern recursion
+  * Restore single character repetition optimization in JIT
+
+- Remove regcomp, regexec etc. from libpcre2-posix.
+  (Add pcre2-symbol-clash.patch)
+
+- pcre2 10.36:
+  * add GNU grep's -m (aka --max-count) option to pcre2grep
+  * unify the handling of substitution strings for both -O and
+    callouts in pcre2grep, with the addition of $x{...} and
+    $o{...} to allow for characters whose code points are greater
+    than 255 in Unicode mode
+
+- Refresh spec-file via spec-cleaner.
+  * Add %make_build and %license macros.
+- Update to 10.35
+  * https://www.pcre.org/changelog.txt
+  * Use PCRE2_MATCH_EMPTY flag to detect empty matches in JIT.
+  * A JIT bug is fixed which allowed to read the fields
+    of the compiled pattern before its existence is checked.
+  * Added PCRE2_SUBSTITUTE_LITERAL.
+  * Avoid some VS compiler warnings.
+  * Added PCRE2_SUBSTITUTE_MATCHED.
+  * Added (?* and (?<* as synonms for (*napla: and (*naplb:
+    to match another regex engine.
+  * Fix *THEN verbs in lookahead assertions in JIT.
+  * Added PCRE2_SUBSTITUTE_REPLACEMENT_ONLY.
+  * The JIT stack should be freed when the low-level stack
+    allocation fails.
+  * Changed setting of CMAKE_MODULE_PATH in CMakeLists.txt from SET
+    to LIST(APPEND...) to allow a setting from the command line
+    to be included.
+  * Updated to Unicode 13.0.0.
+  * CMake build now checks for secure_getenv() and strerror().
+  * Restrict the configuration setting for the SELinux compatible
+    execmem allocator (change 10.30/44) to Linux and NetBSD.
+
+- Resubmit the package (bsc#1167890, jsc#SLE-11608)
+
+- Enable JIT on aarch64
+
+- pcre2 10.34:
+  * implement the documented maximum number of capturing
+    subpatterns of 65535
+  * Improve the invalid utf32 support of the JIT compiler
+  * Add support for matching in invalid UTF strings to the pcre2_match()
+  * Give more error detail for invalid UTF-8 when detected in pcre2grep
+  * support for invalid UTF-8 to pcre2grep.
+  * Adjust the limit for "must have" code unit searching, in particular,
+  * increase it substantially for non-anchored patterns.
+  * Allow (*ACCEPT) to be quantified, because an ungreedy quantifier
+    with a zero minimum is potentially useful.
+  * Some changes to the way the minimum subject length is handled
+  * Check for integer overflow when computing lookbehind lengths
+  * Implement non-atomic positive lookaround assertions
+  * Upgraded to Unicode 12.1.0
+  * Make pcre2test -C show if libreadline or libedit is supported
+  * Various bug fixes and improvements
+
+- Update to 10.33-RC1 to fix issue with LTO (boo#1133274).
+  * Callouts from pcre2_substitute() are now available.
+  * The POSIX functions are now all called pcre2_regcomp() etc., with wrapper
+    functions that use the standard POSIX names. However, in pcre2posix.h the POSIX
+    names are defined as macros. This should help avoid linking with the wrong
+    library in some environments, while still exporting the POSIX names for
+    pre-existing programs that use them.
+  * Some new options:
+    (a) PCRE2_EXTRA_ESCAPED_CR_IS_LF makes \r behave as \n.
+    (b) PCRE2_EXTRA_ALT_BSUX enables support for ECMAScript 6's \u{hh...}
+    construct.
+    (c) PCRE2_COPY_MATCHED_SUBJECT causes a copy of a matched subject to be
+    made, instead of just remembering a pointer.
+  * Some new Perl features:
+    (a) Perl 5.28's experimental alphabetic names for atomic groups and
+    lookaround assertions, for example, (*pla:...) and (*atomic:...).
+    (b) The new Perl "script run" features (*script_run:...) and
+    (*atomic_script_run:...) aka (*sr:...) and (*asr:...).
+    (c) When PCRE2_UTF is set, allow non-ASCII letters and decimal digits in
+    capture group names.
+  * --disable-percent-zt disables the use of %zu and %td in formatting strings
+    in pcre2test. They were already automatically disabled for VC and older C
+    compilers.
+  * Some changes related to callouts in pcre2grep:
+    (a) Support for running an external program under VMS has been added, in
+    addition to Windows and fork() support.
+    (b) --disable-pcre2grep-callout-fork restricts the callout support in
+    to the inbuilt echo facility.
+
+- Disable LTO (boo#1133274).
+
+- Do not run profiling in parallel for reproducible builds (boo#1040589)
+
+- Mark all license files as %license
+
+- Build with --enable-jit-sealloc option, otherwise when
+  selinux is enabled or systemd memory protections are on,
+  programs will fail to work with execmem violations.
+
+- pcre2 10.32:
+  * pcre2grep now supports the inclusion of binary zeros in
+    patterns that are read from files via the -f option.
+  * In pcre2_dfa_match(), internal recursive calls no longer use
+    the stack for local workspace and local ovectors
+  * Updated to Unicode version 11.0.0.
+  * (*ACCEPT:ARG), (*FAIL:ARG), and (*COMMIT:ARG) are now supported.
+  * Add support for \N{U+dddd}, but only in Unicode mode.
+  * Addesupport for (?^) to unset all imnsx options
+
+- Drop conditions for old distributions
+- Do profile guided build
permissions
+- Update to version 20201225:
+  * whitelist ksysguard network helper (bsc#1151190)
+
pidgin
+- pidgin 2.14.8:
+  * Fix a regression in purple_str_to_time
+- drop pidgin-fix-double-free-crash.patch, now included
+
+- Extract libpurple.so.* and libpurple-client.so.* to own packages
+  (boo#1191780).
+
+- Add pidgin-fix-double-free-crash.patch: fix double free crash
+
+- Remove obsolete translation-update-upstream support
+  (jsc#SLE-21105).
+
+- update to 2.14.7:
+  * Fix leak in purple_markup_find_tag on error
+  * Fix an assert in purple_markup_html_to_xhtml
+  * Correctly free parse tags at end of purple_html_to_xhtml
+  * Fix leak that may occur when xmlnode_from_str fails
+  * Port purple_str_to_time to use a regular expressions
+
+- Update to 2.14.6:
+  General:
+  * Update references to point to our current websites.
+  * Add a donate link to the help menu.
+  Finch:
+  * Check pkg-config for ncurses before looking for it manually.
+  Pidgin:
+  * Replace newlines in topics with spaces.
+  libpurple:
+  * Added support for the no_proxy environment variable.
+  * Added infrastructure for fuzzing as well as some initial fuzzers.
+  * Fix an out of bounds write in purple_markup_linkify.
+  XMPP:
+  * Enable session management after binding a resource.
+  Zephyr:
+  * Fix a clang logical-not-parentheses warning.
+- Drop pidgin-add-no_proxy-support.patch
+
+- update to 2.14.5:
+  * static code analysis fixes
+  * Disable UPnP and NAT-PMP by default for new user
+  * IRC: Change the default server to irc.libera.chat
+
+- update to 2.14.4:
+  * Use LT_LIB_M to find the math library.  This should simplify things for
+    various distros including the BSD's. (RR #608) (and, Justin Lechner)
+  libpurple:
+  * Update purple-remote and purple-url-handler to have a Python 3 shebang.
+  Pidgin:
+  * Install our AppData file into the $prefix/share/metainfo.
+  Windows-Specific Changes:
+  * Output pkg-config files so that our Windows builds can be seen by meson.
+    Grim owes a blog post on how this works.
+  * Update the debug symbols download in the installer to the inetc plugin.
+  * Make sure the uninstaller removes all files that we install.
+  libpurple:
+  * Removed the AIM protocol plugin. AIM has been shut down since December
+    15th of 2017. We left it around because of a third party server, but our
+    plugin no longer works with it. (RR #598) (Gary Kramlich)
+  * Standardize on wprintf in pidgin/win32/winpidgin.c
+  * Use the inetc nsis plugin that supports https
+  * If building under msys2 copy libgcc_s_dw2-1.dll and libwinpthread to the
+    install directory. (RR #593) (PIDGIN-17511) (Gary Kramlich)
+  * Fix a build issue when compiling with gstreamer but without voice and
+    video.
+  * Enable cyrus-sasl by default.
+  * Fix an issue with opening link in Firefox.
+  * Fix a regression from 2.14.0 where extra whitespace would be displayed
+    when pasting <p> elements from HTML.
+  * Require Python 3 for generating the D-Bus bindings.
+  * Fix an issue where pasting <hr>'s and other HTML elements would
+    eventually lead to a crash.
+
+- don't package directories owned by filesystem rpm (bsc#1184786)
+
+- Add pidgin-always-enable-intltool.patch: always enable intltool.
+  Fixes the build with autoconf 2.71.
+
+- Update to version 2.14.1:
+  * Fix an issue that caused the Mercurial revision in the About
+    box to be "unknown".
+
+- Update to version 2.14.0:
+  + General:
+  * Fixed a memory leak in search results (pidgin.im#17292).
+  * Support SNI with GnuTLS (pidgin.im#17300 tiagosalem).
+  * Add additional error handling to NSS and GnuTLS.
+  + libpurple:
+  * Add invisible buddy support to support presence/name/photos
+    for non-buddies (pidgin.im#17295).
+  * Make purple-remote compatible with both Python 2 and Python 3.
+  * Fix some leaky deprecation warnings.
+  * Fix HTML logs which were writing invalid HTML
+    (pidgin.im#17280).
+  * Fix use after free in purple_smiley_set_data_impl.
+  * Added the chat_send_file ability to protocol plugins.
+  + Pidgin:
+  * Treat <p> tags as line breaks when pasting.
+  * Reverted pidgin.im#17232.
+    It caused more harm than good.
+  + Bonjour:
+  * Always use port fallback for IPv4 addresses.
+  + XMPP:
+  * Support for XEP-0198 Stream Management.
+  * Decrease delay for file transfer using streamhosts.
+  + Voice & Video:
+  * Improve webcam failure handling.
+  * Show error when creating media pipeline fails.
+  * Clip audio level reporting (pidgin.im#14426).
+  * Keep track of devices managed by GstDeviceMonitor.
+  * Ignore PulseAudio monitors.
+  * Backport native Voice & Video prefs from 3.0.
+  * Fix building against GStreamer 0.10.
+  * Fix initial delay on incoming audio.
+  * Properly cleanup timeouts.
+  * Add an audio mixer so mixed sources don't cause a pipe
+    failure.
+  * Add screen share support for Wayland via XDP Portal.
+  * Handle unplug and replug events of selected media device.
+- Rebase pidgin-nonblock-common.patch.
+- Drop pidgin-enable-sni-gnutls.patch,
+  pidgin-Leaky-deprecation-clean-ups.patch: fixed upstream.
+- Drop pidgin-ncurses-6.0-accessors.patch: moved to the libgnt
+  package.
+- Drop support for openSUSE older than Leap 15.0.
+
+- No longer recommend -lang: supplements are in use
+
plasma5-pk-updates
+- Update to version 0.3.2+git70:
+  * Improve EULA dialog layout after QQC2 regressions
+
polkit-default-privs
+- Update to version 13.2+20220309.ce702da:
+  * backport of kpmcore whitelistng (bsc#1178848)
+
+- Update to version 13.2+20220307.7d87af8:
+  * Backport Kcron whitelisting to 15.4 (bsc#1193945)
+
procps
+- Add patch bsc1195468-23da4f40.patch to fix bsc#1195468 that is
+  ignore SIGURG
+
python-lxml
+- With the new update to 4.7.1, the old Bugzilla entries are also
+  fixed:
+  - bsc#1118088 (related to CVE-2018-19787)
+  - bsc#1184177 (related to CVE-2021-28957)
+- Update to 4.7.1 (officially released 2021-12-13)
+  Features added
+  - Chunked Unicode string parsing via parser.feed() now encodes the input
+    data to the native UTF-8 encoding directly, instead of going through
+    Py_UNICODE / wchar_t encoding first, which previously required duplicate
+    recoding in most cases.
+  Bugs fixed
+  - The standard namespace prefixes were mishandled during "C14N2"
+  serialisation
+    on Python 3.
+    See
+  https://mail.python.org/archives/list/lxml@python.org/thread/
+  6ZFBHFOVHOS5GFDOAMPCT6HM5HZPWQ4Q/
+  - lxml.objectify previously accepted non-XML numbers with underscores
+    (like "1_000") as integers or float values in Python 3.6 and later.
+    It now adheres to the number format of the XML spec again.
+  - LP#1939031: Static wheels of lxml now contain the header files of zlib
+    and libiconv (in addition to the already provided headers of
+    libxml2/libxslt/libexslt).
+  Other changes
+  - Wheels include libxml2 2.9.12+ and libxslt 1.1.34 (also on Windows).
+- Update to 4.7.0 (2021-12-13)
+  - Release retracted due to missing files in lxml/includes/.
+- UPdate to 4.6.5 (2021-12-12)
+  Bugs fixed
+  - A vulnerability (GHSL-2021-1038) in the HTML cleaner
+  - allowed sneaking script content through SVG images
+  - (bnc#1193752, CVE-2021-43818).
+  - A vulnerability (GHSL-2021-1037) in the HTML cleaner allowed
+  - sneaking script content through CSS imports and other crafted
+  - constructs (CVE-2021-43818).
+- Update 4.6.4 (2021-11-01)
+  Features added
+  - GH#317: A new property system_url was added to DTD entities.
+  - Patch by Thirdegree.
+  - GH#314: The STATIC_* variables in setup.py can now be passed
+  - via env vars.
+  - Patch by Isaac Jurado.
+- Update 4.6.3 (2021-03-21)
+  Bugs fixed
+  - A vulnerability (CVE-2021-28957) was discovered in the HTML
+  - Cleaner by Kevin Chung, which allowed JavaScript to pass through.
+  - The cleaner now removes the HTML5 formaction attribute.
+- Update 4.6.2 (2020-11-26)
+  Bugs fixed
+  - A vulnerability (bnc#1179534, CVE-2020-27783) was discovered in the HTML
+    Cleaner
+  - by Yaniv Nizry, which allowed JavaScript to pass through. The cleaner
+  - now removes more sneaky "style" content.
+- Update 4.6.1 (2020-10-18)
+  Bugs fixed
+  - A vulnerability was discovered in the HTML Cleaner by Yaniv Nizry,
+  - which allowed JavaScript to pass through. The cleaner now removes
+  - more sneaky "style" content.
+- Update 4.6.0 (2020-10-17)
+  Features added
+  - GH#310: lxml.html.InputGetter supports __len__() to count the number
+  - of input fields. Patch by Aidan Woolley.
+  - lxml.html.InputGetter has a new .items() method to ease processing
+  - all input fields.
+  - lxml.html.InputGetter.keys() now returns the field names in document
+  - order.
+  - GH-309: The API documentation is now generated using sphinx-apidoc.
+  - Patch by Chris Mayo.
+  Bugs fixed
+  - LP#1869455: C14N 2.0 serialisation failed for unprefixed attributes
+  - when a default namespace was defined.
+  - TreeBuilder.close() raised AssertionError in some error cases where
+  - it should have raised XMLSyntaxError. It now raises a combined
+  - exception to keep up backwards compatibility, while switching to
+  - XMLSyntaxError as an interface.
+- Update 4.5.2 (2020-07-09)
+  Bugs fixed
+  - Cleaner() now validates that only known configuration options
+  - can be set.
+  - LP#1882606: Cleaner.clean_html() discarded comments and PIs
+  - regardless of the corresponding configuration option, if
+  - remove_unknown_tags was set.
+  - LP#1880251: Instead of globally overwriting the document loader
+  - in libxml2, lxml now sets it per parser run, which improves the
+  - interoperability with other users of libxml2 such as libxmlsec.
+  - LP#1881960: Fix build in CPython 3.10 by using Cython 0.29.21.
+  - The setup options "--with-xml2-config" and "--with-xslt-config"
+  - were accidentally renamed to "--xml2-config" and "--xslt-config"
+  - in 4.5.1 and are now available again.
+- Update 4.5.1 (2020-05-19)
+  Bugs fixed
+  - LP#1570388: Fix failures when serialising documents larger than
+  - 2GB in some cases.
+  - LP#1865141, GH#298: QName values were not accepted by the
+  - el.iter() method. Patch by xmo-odoo.
+  - LP#1863413, GH#297: The build failed to detect libraries on Linux
+  - that are only configured via pkg-config. Patch by Hugh McMaster.
+- Update 4.5.0 (2020-01-29)
+  Features added
+  - A new function indent() was added to insert tail whitespace for
+  - pretty-printing an XML tree.
+  Bugs fixed
+  - LP#1857794: Tail text of nodes that get removed from a document
+    using item deletion disappeared silently instead of sticking with
+    the node that was removed.
+  Other changes
+  - MacOS builds are 64-bit-only by default. Set CFLAGS and LDFLAGS
+    explicitly to override it.
+  - Linux/MacOS Binary wheels now use libxml2 2.9.10 and libxslt 1.1.34.
+  - LP#1840234: The package version number is now available as
+    lxml.__version__.
+- Update 4.4.3 (2020-01-28)
+  Bugs fixed
+  - LP#1844674: itertext() was missing tail text of comments and PIs
+    since 4.4.0.
+
python3
+- Update bundled pip wheel to the latest SLE version patched
+  against bsc#1186819 (CVE-2021-3572).
+
+- Add patch support-expat-245.patch:
+  * Support Expat >= 2.4.5
+
+- Rename 22198.patch into more descriptive remove-sphinx40-warning.patch.
+
+- Don't use appstream-glib on SLE-12.
+- Use Python 2-based Sphinx on SLE-12.
+- No documentation on SLE-12.
+- Add skip_SSL_tests.patch skipping tests because of patched
+  OpenSSL (bpo#9425).
+
qemu
+- Build PPC firmwares from sources on non-PPC builds as well
+  (bsc#1193545)
+- Build RiscV firmwares on non-RiscV builds as well
+- While there, refactor (and simplify!) the firmware building
+  logic and code
+  * Patches added:
+  Makefile-define-endianess-for-cross-buil.patch
+  Makefile-fix-build-with-binutils-2.38.patch
+
+- qemu,kvm,xen: NULL pointer dereference issue in megasas-gen2 host
+  bus adapter (bsc#1180432, CVE-2020-35503)
+  * Patches added:
+  hw-scsi-megasas-check-for-NULL-frame-in-.patch
+
+- Include vmxcap in the qemu-tools package (is being very useful
+  for debugging bsc#1193364)
+
+- The qemu package should require qemu-x86, qemu-arm, etc, as there's
+  no point installing it without _any_ of them. Additionally, right
+  now, the user does not get a working qemu, if recommended packages
+  are disabled (e.g., on MicroOS or SLE Micro). bsc#1196087
+
+- Give clearer instructions on how to modify the package patches
+  from the output of update_git.sh (docs change only, no functional
+  change)
+
+- qemu,kvm: potential privilege escalation via virtiofsd
+  (bsc#1195161, CVE-2022-0358)
+  * Patches added:
+  virtiofsd-Drop-membership-of-all-supplem.patch
+
+* Patches added:
+  block-backend-Retain-permissions-after-m.patch
+  iotest-065-explicit-compression-type.patch
+  iotest-214-explicit-compression-type.patch
+  iotest-302-use-img_info_log-helper.patch
+  iotest-303-explicit-compression-type.patch
+  iotest-39-use-_qcow2_dump_header.patch
+  iotests-60-more-accurate-set-dirty-bit-i.patch
+  iotests-bash-tests-filter-compression-ty.patch
+  iotests-common.rc-introduce-_qcow2_dump_.patch
+  iotests-declare-lack-of-support-for-comp.patch
+  iotests-drop-qemu_img_verbose-helper.patch
+  iotests-massive-use-_qcow2_dump_header.patch
+  iotests-MRCE-Write-data-to-source.patch
+  iotests.py-filter-out-successful-output-.patch
+  iotests.py-img_info_log-rename-imgopts-a.patch
+  iotests.py-implement-unsupported_imgopts.patch
+  iotests.py-qemu_img-create-support-IMGOP.patch
+  iotests.py-rewrite-default-luks-support-.patch
+  iotests-specify-some-unsupported_imgopts.patch
+  qcow2-simple-case-support-for-downgradin.patch
+  tests-qemu-iotests-Fix-051-for-binaries-.patch
+
+-Backport patch from upstream, bsc#1194063 CVE-2021-4158
+  * Patches added:
+  acpi-validate-hotplug-selector-on-access.patch
+
rdma-core
-- install modprobe.conf files to %_modprobedir (bsc#1196275, jsc#SLE-20639)
+- Update spec file from upstream
+  - install modprobe.conf files to %_modprobedir (bsc#1196275, jsc#SLE-20639)
+  - fix build support for riscv
+- Added cmake-Make-modprobe.d-path-configurable.patch
+  - Backport from upstream to allow modprobe files to be installed in a
+    configurable directory
rygel
+- Update to version 0.40.3:
+  + Tracker3:
+  - Fix deadlock on start-up.
+  - Use the correct graph name for Videos.
+
smartmontools
-- Remove obsolete service parameter (bsc#1183699,
-  smartmontools-smartd-service.patch).
+- Restart smartd and generate smartd_opts only if there are real
+  sysconfig changes; do not trigger generate_smartd_opts by YaST,
+  systemd is enough (bsc#1195785).
+
+- Update smartmontools-drivedb.h to the latest version from the
+  upstream branch RELEASE_7_2_DRIVEDB.
+
+- smartmontools-drivedb_h-update.sh: Fix update needed logic.
+- Add smartmontools-drivedb.h, the latest version from the upstream
+  branch RELEASE_7_2_DRIVEDB.
+
+- update to 7.2:
+  - smartctl: New option '--json=y[c]' selects YAML output.
+  - smartctl '-i': Prints ATA TRIM and Zoned Device capabilities.
+  - smartctl '-j': Fixed 'scsi_grown_defect_list' value.
+  - smartctl '-a': Prints SCSI 'Accumulated power on time'.
+  - smartctl '-n POWERMODE': SCSI support.
+  - smartctl '-s standby,now' and '-s standby,off': SCSI support.
+  - smartctl '-c': NVMe 1.4 additions.
+  - smartd: Support for staggered self-tests.
+  - smartd: No longer writes attribute log if no attributes were read
+    due to standby mode or other error.
+  - smartd: Now resolves symlinks before device names are checked for
+    duplicates.
+  - smartd: Fixed SMARTD_DEVICETYPE environment variable if DEVICESCAN is
+    used without '-d TYPE'.
+  - ATA: Device type '-d jmb39x-q,N' for JMB39x protocol variant used by
+    some QNAP NAS devices.
+  - ATA: Device type '-d jms56x,N' for JMS562 USB to SATA RAID bridges.
+  - SCSI: Improved heuristics for log subpages of new and very old disks.
+  - NVMe: Log transfer size limited to avoid device or kernel crashes.
+  - NVMEe/USB: Device type '-d sntrealtek' for Realtek RTL9210 USB to
+    NVMe bridges.
+  - update-smart-drivedb: New option '--branch X.Y'.
+  - HDD, SSD and USB additions to drive database.
+  - Dropped support for pre-C99 snprintf().
+  - configure: Dropped option '--without-working-snprintf'.
+  - configure: Fixed '-fstack-protector*' detection.
+  - Linux: Various fixes of smartd.service file (bsc#1183699).
+  - Darwin: NVMe log support.
+  - FreeBSD: Device scan does no longer include T_ENCLOSURE devices.
+  - NetBSD: Fixed timeout handling.
+  - NetBSD big endian: Fixed ATA register handling.
+  - OpenBSD: Fixed timeout handling.
+  - Windows: Dropped backward compatibility fixes for very old compilers.
+- drop smartd-service-novm.patch (upstream)
+- drop smartmontools-smartd-service.patch
+  (SLE+Leap, now in upstream, bsc#1183699)
+
+- Update to version 7.1:
+  * smartctl: Fixed bogus exception on unknown form factor value.
+  * smartctl '--json=cg': Suppresses extra spaces also in 'g'
+    format.
+  * smartctl '-i': ATA ACS-4 and ACS-5 enhancements.
+  * smartd: No longer truncates very long device names in warning
+    emails.
+  * smartd: No longer skips scheduled tests if system clock has
+    been adjusted to the past.
+  * smartd '-A': Attribute logs now use local time instead of UTC.
+  * ATA: Device type '-d jmb39x,N' for drives behind JMicron JMB39x
+    RAID port multipliers.
+  * SCSI: Workaround for incomplete Log subpages response from some
+    SAS SSDs.
+  * HDD, SSD and USB additions to drive database.
+  * Autodetection of '-d sntjmicron' type for JMicron USB to NVMe
+    bridges.
+  * Fixed segfault on CCISS transfer sizes > 512 bytes.
+  * Fixed smartd.service 'Type' if libsystemd-dev is not available.
+  * Fixed '/dev/megaraid_sas_ioctl_node' fd leak.
+  * Fixed GPL licensing problem of 'linux_nvme_ioctl.h'
+    (smartmontools#1226,
+    drop smartmontools-nvme_ioctl_h-license.patch).
+- Update smartmontools.keyring. Developers use new key.
+- smartmontools-drivedb_h-update.sh: Recognize equal files in
+  different commits.
+- Drop smartmontools-nvme_ioctl_h-license.patch (SLE+Leap,
+  now in upstream, https://www.smartmontools.org/ticket/1226)
+- Remove smartmontools-drivedb.h. No update available in the
+  upstream branch RELEASE_7_0_DRIVEDB.
+
+- BuildRequire pkgconfig(libsystemd) instead of systemd-devel:
+  Allow OBS to shortcut through the -mini flavors.
system-users
+- Buildrequire the updated sysuser-tools which supports busybox-adduser as well
+
systemd
+- Import commit 5b022ce3dbad3189b7ce1e7b0f018b18ac6e583c (merge of v249.11)
+  For a complete list of changes, visit:
+  https://github.com/openSUSE/systemd/compare/23b6a8633186a2b5b2487621c81ec7e7bb068db1...5b022ce3dbad3189b7ce1e7b0f018b18ac6e583c
+
+- Import commit 23b6a8633186a2b5b2487621c81ec7e7bb068db1
+  f19292f18d udev: 60-persistent-storage-tape.rules: handle duplicate device ID (bsc#1195529)
+  3349f636dc man: tweak description of auto/noauto (bsc#1191502)
+
+- update s390 udev rules conversion script to include the case when
+  the legacy rule was also 41-* (bsc#1195247)
+  * change scripts-udev-convert-rules.sh
+
systemd-rpm-macros
+- Bump version to 11
+
+- Make %_modprobedir point to /lib/modprobe.d (bsc#1196275 bsc#1196406)
+  Until SLE15-SP3:QU2, /usr/lib/modprobe.d path was not supported by kmod and
+  since SLE15-SP4 /etc/modprobe.d/README has references to /lib/modprobe.d...
+
sysuser-tools
-- Furhter enhance sysusers-generate-pre: inside the build
+- Disable systemd-sysuser on SLE15 to stay compatible
+  (disable-systemd-sysusers.patch)
+
+- Add support for new shell field [bsc#1189518]
+
+- Use /bin/bash for sysusers-generate-pre
+
+- Remove usage of grep from sysusers-generate-pre
+- Add a simple test of sysusers-generate-pre to %check
+
+- Bump version up to 3.1. The --replace parameter only appeared in
+  systemd 238, so we need to ensure to get the update order correct
+  for sysuser-generate when using the 3rd command line parameters:
+  * systemd -> sysuser-tools -> system-{user|group}-FOO.
+- Add dependency on systemd >=238 if systemd is installed to
+  sysuser-shadow
+- update sysuser_requires to request sysuser-shadow 3.1
+
+- Support systemd-sysusers --replace=/usr/lib/sysusers.d/ option
+- sysusers-generate-pre: only use first argument for grep
+- sysusers2shadow.sh: use "run" prefix for systemd-sysusers call
+- macros.sysusers: fix typo
+
+- Use /usr/sbin/nologin instead of /sbin/nologin
+
+- Don't abort on unbound first argument
+
+- Remove sysusers/nscd workaround
+
+- Use systemd-sysusers only if /proc is mounted, don't require it
+
+- Set --replace option for systemd-sysusers
+
+- Ignore nscd return code
+
+- If systemd-sysusers is used to create a new user/group, invalidate
+  the nscd passwd and group cache to make the new user/group
+  visible immediately as workaround [bsc#1181121].
+  Needs to be removed after sytemd-sysusers get's fixed, since we
+  invalidate the cache even if the user/group file wasn't changed.
+
+- An "u" in a sysusers.d file will create an user and a group.
+  Create provides for both, user and group.
+
+- Use systemd-sysusers as default to create and update the user
+  account. Fixes the problem that a modified sysusers config file
+  get's ignored by useradd and adduser [bsc#1180549].
+
+- useradd_or_adduser_dep must be PreReq so ordering makes sure it gets
+  installed before.
+- suggest shadow where useradd_or_adduser_dep is actually required
+
+- Avoid useless use of cat
+- Simplify %sysusers_requires
+- Drop shebang, rpm passes it to /bin/sh itself
+
+- Packages providing users need /usr/bin/cat installed to create
+  them. Add that to the PreRequires.
+
+- Create system groups for system users
+
+- Fix bug introduced by simplification of check for useradd -g
+- Refactor use of sed away
+
+- Use eval set -- $LINE instead of read for parsing
+
+- Clean up sysusers2shadow and make it use only /bin/sh
+- Don't let busybox adduser create the home directory, it breaks
+  permissions of e.g. /sbin (home of daemon)
+- Use only /bin/sh in sysusers-generate-pre and the generated code
+
+- Drop use of tail from the generated %pre scriptlets
+
+- Look for /bin/busybox, too
+- Add special handling for busybox and groups
+
+- Use suggests shadow to prefer that over busybox in normal systems
+
+- Add support for busybox adduser/addgroup
+- Change requirements from shadow to useradd_or_adduser_dep
+
+- Fix default home directory [bsc#1105934]
+- Use _rpmmacrodir for macro file
+
+- Further enhance sysusers-generate-pre: inside the build
tcl
-- bsc#1181840: Same fix as for tclConfig.sh is needed for tcl.pc.
-
-- bsc#1179615: TCL_LIBS in tclConfig.sh possibly breaks build on
-  newer service packs and is not needed for linking to a dynamic
-  libtcl anyway, so make it empty.
+- New version 8.6.12:
+  * (bug)[d43f96] [string trim*] broken for Emoji
+  * (bug)[22324b] [string reverse] broken for Emoji
+  * (bug)[1dab71,7c64aa] BRE broken by uninitialized value use
+  * (bug)[8419c5] Unix tty channels tolerate EINTR
+  * ** POTENTIAL INCOMPATIBILITY ***
+  * (bug)[4c591f] [string compare] EIAS violation
+  * (bug)[266494] [concat foo [list #]] EIAS violation
+  * (bug)[24b918] Save IO buffers from modern optimizers
+  * (new) support for POSIX error EILSEQ
+  * (bug)[688fcc] segfault during traced delete of alias
+  * (bug)[ccc448] segfault in ensemble rewrite machinery
+  * (new) Update to Unicode-14
+  * (bug)[a8579d] failed proc argument spec processing
+  * Obsoletes tcl-aa4a13c15516da45.patch
+- Bump %itclver and ensure it stays in sync.
+
+- bsc#1185662: Move tcl.macros /usr/lib/rpm/macros.d .
+- https://core.tcl-lang.org/thread/tktview?name=98ae20f0f5:
+  Add tcl-aa4a13c15516da45.patch to disable lto for the stubs
+  libraries.
+
+- tclConfig.sh: Fix path names and avoid braces in TCL_PACKAGE_PATH
+- Set TCL_LIBRARY at configure time for better consistency.
+
+- New version: 8.6.11:
+  * Add tcltest::(Setup|Eval|Cleanup|)Test
+  * Update to Unicode-13
+  * Add 3 libtommath functions to stub table
+  * Many more bug fixes
+- Potentially incompatible changes:
+  * (bug)[ffeb20] [binary decode base64] ignore invalid chars
+  * (bug)[b8e82d] some -maxlen values break uuencode round trip
+  * (bug)[085913] Tcl_DStringAppendElement # quoting precision
+  * (bug)[81242a] revised documentation for Tcl_UtfAtIndex()
+  * (bug)[ed2980] Tcl_UtfToUniChar reads > TCL_UTF_MAX bytes
+  * (bug)[a1bd37] [clock scan] new ISO format (clock-34.(19-24))
+  * (bug)[501974] [clock scan] +time zone (clock-34.(53-68))
+  * (new) force -eofchar \032 when evaluating library scripts
+  * (new)[48898a] improve error message consistency
+  * (new) revised case of module names
+
+- Add a manpage symlink for tclsh8.6.
+
+- Fix build with RPM 4.16: error: bare words are no longer
+  supported, please use "...":  lib64 == lib64.
+
+- New version: 8.6.10:
+  * (bug)[7a9dc5] [file normalize ~/~foo] segfault
+  * (bug)[3cf3a9] variable 'timezone' deprecated in vc2017
+  * (bug)[cc1e91] [list [list {*}[set a " "]]] regression
+    obsoletes tcl-expand-regression.patch.
+  * (bug)[e3f481] tests var-1.2[01]
+  * (new) Update to Unicode 12.0
+  * (new)[TIP 527] New command [timerate]
+  * (bug)[39fed4] [package require] memory validity
+  * (new) New command tcl::unsupported::corotype
+  * (bug) memlink when namespace deletion kills linked var
+  * (new) README file converted to README.md in Markdown
+  * (bug)[8b9854] [info level 0] regression with ensembles
+  * (bug)[6bdadf] crash multi-arg write-traced [lappend]
+  * (bug)[f8a33c] crash Tcl_Exit before init
+  * (bug)[fa6bf3] Bytecode fails epoch recovery at numLevel=0
+  * (bug)[fec0c1] C stack overflow compiling bytecode
+  * tzdata updated to Olson's tzdata2019c
+  * (bug)[16768d] Fix [info hostname] on NetBSD
+  * (new) libtommath updated to release 1.2.0
+  * (bug)[bcd100] bad fs cache when system encoding changes
+  * (bug)[135804] segfault in [next] after destroy
+  * (bug)[13657a] application/json us text, not binary
+
+- binary-40.3 is expected to fail on riscv64 which does not support NaN
+  propagation
+
+- Use FAT LTO objects in order to provide proper static
+  library (boo#1138797).
+
+- Fix a regression in the handling of denormalized empty lists
+  (tcl-expand-regression.patch, tcl#cc1e91552c).
+
+- New version: 8.6.9:
+  * NR-enable [package require]
+  * (bug)[9fd5c6] crash in object deletion, test oo-11.5
+  * (bug)[3c32a3] crash deleting object with class mixed in
+  * (platform) stop using -lieee, removed from glibc-2.27
+    (bsc#1179615, bsc#1181840).
+  * (bug)[8e6a9a] bad binary [string match], test string-11.55
+  * (bug)[1873ea] repair multi-thread std channel init
+  * (bug)[db36fa] broken bytecode for index values
+  * (bug) broken compiled [string replace], test string-14.19
+  * (bug) [string trim*] engine crashed on invalid UTF
+  * (bug) missing trace in compiled [array set], test var-20.11
+  * (bug)[46a241] crash in unset array with search, var-13.[23]
+  * (bug)[27b682] race made [file delete] raise "no such file"
+  * (bug)[925643] 32/64 cleanup of filesystem DIR operations
+  * (bug) leaks in TclSetEnv and env cache
+  * (bug)[3592747] [yieldto] dying namespace, tailcall-14.1
+  * (bug)[270f78] race in [file mkdir]
+  * (bug)[3f7af0] [file delete] raised "permission denied"
+  * (bug)[d051b7] overflow crash in [format]
+  * revised quoting of [exec] args in generated command line
+  * HTTP Keep-Alive with pipelined requests
+  * (new)[TIP 505] [lreplace] accepts all out of range indices
+  * (bug) Prevent crash from NULL keyName in the registry package
+  * Update tcltest package for Travis support
+  * (bug)[35a8f1] overlong string length of some lists
+  * (bug)[00d04c] Repair [binary encode base64]
+- Version 8.6.8:
+  * [array names -regexp] supports backrefs
+  * Fix gcc build failures due to #pragma placement
+  * (bug)[b50fb2] exec redir append stdout and stderr to file
+  * (bug)[2a9465] http state 100 continue handling broken
+  * (bug)[0e4d88] replace command, delete trace kills namespace
+  * (bug)[1a5655] [info * methods] includes mixins
+  * (bug)[fc1409] segfault in method cloning, oo-15.15
+  * (bug)[3298012] Stop crash when hash tables overflow 32 bits
+  * (bug)[5d6de6] Close failing case of [package prefer stable]
+  * (bug)[4f6a1e] Crash when ensemble map and list are same
+  * (bug)[ce3a21] file normalize failure when tail is empty
+  * (new)[TIP 477] nmake build system reform
+  * (bug)[586e71] EvalObjv exception handling at level #0
+
+- Sync SLE12 with Factory to fix a bug in Itcl that was affecting
+  iwidgets (bsc#903017).
+
texlive
+- Gzip manual page of biber
+
+- Do not attach prefix texlive twice in case of texlive-scripts-extra
+
+- Also add some obsoletes
+
+- Add missed package splits for bsc#1196711
+
+- Lower the official required perl version used for biber to get it
+  build on SLE-15-SP4
+- Drop the obsolete patches of the poppler support
+  * fix-lua-poppler-22.01.patch
+  * source-pdftoepdf-backport-from-2020.patch
+  * c++17-does-not-allow-dynamic-exception-specifications.patch
+  * fix-luatexdir-poppler-22.01.patch
+  * do-not-use-streamSetPos.patch
+  * fix-poppler-config-from-c.patch
+- Ignore patch source-dvipdfm-x.dif from bsc#1099563 as it is part
+  of upstream since TeXLive 2018
+
+- Backport TeXLive 2021, full python3 support and no poppler anymore
+
+- Fix wrong library paths in pkgconfig files (boo#1192662)
+
+- Change to using systemd-sysusers
+
+- Correct the required versions for the perl modules for biber (boo#1185600)
+
+- Add patch source-r58686:r58919.dif
+  * Upstream fix for mpost/luatex btex/etex
+
+- Make public wrapper change into mktex home directory if current
+  directory is not accessible
+
+- Use -fsigned-char on non-Intel boxes for mendex and upmendex
+  otherwise the sort.c results are wrong
+- Reenable pygmentex as now with python3
+
+- Update to TeXLive 2021
+  * No poppler required anymore (hurray)
+  * Uses its own xpdf based library
+- Update to biber 2.16
+  * perl(Unicode::Collate) >= 1.29
+- Port patches mostly by correcting offsets
+  * 0004-Add-ppc64-support-based-on-koriakin-GitHub-patchset.patch
+  * biber-certs.dif
+  * source-64.dif
+  * source-configure.dif
+  * source-dviutils.dif
+  * source-ppc64.dif
+  * source-warns.dif
+  * source.dif
+- Remove patches now fixed upstream or not required anymore
+  * source-fix-bool-poppler.patch
+  * source-fix-const-poppler0.66.0.patch
+  * source-overflow.dif
+  * source-poppler-fix-dict-memleak.patch
+  * source-poppler-use-std_string.patch
+  * source-poppler.dif
+  * source-poppler0.59.0.patch
+  * source-poppler0.79.0.patch
+  * source-poppler0.83.0.patch
+  * source-poppler0.86.0.patch
+
+- Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075)
+
+- Skip packages which are based on python2
+
+- Fix longstanding bug: Make sure that pdfcsplain points to pdftex
+  as otherwise UTF-8 characters are missed in the output
+
+- Avoid expanded texuid/texgid macros within comments (boo#1172690)
+
+- Properly configure luajit
+
+- Clean rpmlintrc as request in SR#805514
+
+- Correct obsoletes for new packages
+
+- Add patch source-ppc64.dif to get ppc64 acrch to work
+  (nevertheless ppc64 is currently disabled)
+
+- Avouid conflict with rungs(.tlu) seeing twice in texlive-scripts
+  and texlive-dvipdfmx-bin
+
+- Add patch 0004-Add-ppc64-support-based-on-koriakin-GitHub-patchset.patch
+  * Support luajit on ppc64/ppc64le
+- Add patch 0006-Fix-register-allocation-bug-in-arm64.patch
+  * luajit fix for arm64
+- Modify spec file to build luajit based programs on ppc64*
+
+- More LuaJIT binaries which are not build on ppc64/ppc64le not fixed
+  since ages https://github.com/LuaJIT/LuaJIT/issues/42
+
+- Adopt patch source-poppler0.59.0.patch to latest use of read_pdf_info()
+
+- Add a _constraints file to have a better control how much disk
+  space and power we have to get all binaries build and installed
+
+- Extend patch source-overflow.dif to catch an overflow found
+  by fortify on ppc64
+- TeXLive 2020 requires harfbuzz >= 2.6
+
+- Update to TeXLive 2020
+  * Version based on texlive-20200327-source and biber-2.14
+  * Remove patches now fixed upstream
+    0001-Updated-tests-after-U-C-upgrade-changed-sortinit-hashes.patch
+    source-poppler0.84.0.patch
+    source-common.patch
+    source-fix-axohelp.patch
+    source-synctex-bump-soname.dif
+  * Ported patches
+    biber-certs.dif
+    source-64.dif
+    source-a2ping.dif
+    source-configure.dif
+    source-fix-bool-poppler.patch
+    source-fix-const-poppler0.66.0.patch
+    source-lacheck.dif
+    source-poppler-fix-dict-memleak.patch
+    source-poppler-use-std_string.patch
+    source-psutils-kpathsea.dif
+    source-psutils.dif
+    source-warns.dif
+    source-x11r7.dif
+    source.dif
+  * New patch source-psutils-kpathsea.dif to avoid false positiv
+
+- Add source-poppler0.86.0.patch: fix build with poppler 0.86.0.
+
+- Add patch source-psutils-kpathsea.dif to ignore warning from
+  kpathsea due missing ls-R files
+
+- Use CVE numbers
+
-- Add patch poppler-fix-0.79.patch to fix compilation with poppler
-  0.79 which has many api incompatible changes aggregated since 0.63
-  (boo#1152776).
-- Fix broken link to texlive-20170524-source-poppler059-1.patch .
+- Make patch suffix unique
+
+- Add source-poppler0.84.0.patch: Fix build with poppler-0.84.
+
+- Add source-common.patch to avoid common variable (boo#1160417)
+- Ensure to have the correct version of perl-Business-ISBN
+  and perl-Business-ISBN-Data
+
+- Add  source-poppler0.83.0.patch: support poppler 0.83.
+
+- Apply patch 0001-Updated-tests-after-U-C-upgrade-changed-sortinit-hashes.patch
+  also for perl 5.30.1 and up (boo#1157545)
+
+- Add patch source-fix-axohelp.patch for bsc#1155411
+  * CVE-2019-18604: improper use of sprintf
+
+- Add 0001-Updated-tests-after-U-C-upgrade-changed-sortinit-hashes.patch
+  from upstream (with context modifications to apply correctly) to update
+  biber tests after the Unicode::Collate upgrade from 1.25 to 1.27
+  changed sortinit hashes with (at least) perl 5.26, while using
+  perl 5.28 seems to work fine (boo#1152776)
+
+- Ensure that pdftoepdf-poppler-0.75.0.cc is used for any version
+  of poppler >= 0.79.0. Fixes the build with 0.80.0.
+- Update source-poppler0.79.0.patch, since we now patch before
+  copying.
+
+- source-poppler0.79.0.patch: fix build with poppler 0.79
+
+- Clean patch source.dif that is remove left over from TeXLive 2018  (boo#1140203)
+
+- Avoid error on older compiler as well as older glm on Leap 42.3
+
+- Correct /etc/texmf/web2c/texmf.cnf (boo#1136314)
+
+- Reenable ARM_COMPLIANT=1 on ARM but fix the memory errors
+
+- Let's give ARM_COMPLIANT=0 on armv7l/aarch64 a try
+
+- Add patch source-poppler0.59.0.patch to support older systems
+  as well
+
+-  On 32bit systems disable some more biber tests with negative
+  values for dateformats as those will always fail
+
+- Make it build by modifying patches
+  * source-configure.dif
+  * source-fix-bool-poppler.patch
+  * source-fix-const-poppler0.66.0.patch
+  * source-poppler-fix-dict-memleak.patch
+  * source-poppler-use-std_string.patch
+  * source.dif
+  and the spec file by moving the code of the choice of the
+  poppler source below the patching area as well as build
+  require pkgconfig(glew), pkgconfig(glm), and pkgconfig(gsl)
+  for asymptote
+
+- Update to TeXLive 2019 (boo#1135744)
+- Modify patches
+  * biber-certs.dif
+  * source-64.dif
+  * source-configure.dif
+  * source-dviutils.dif
+  * source-fix-bool-poppler.patch
+  * source-fix-const-poppler0.66.0.patch
+  * source-overflow.dif
+  * source-poppler-fix-dict-memleak.patch
+  * source-poppler-use-std_string.patch
+  * source-synctex-bump-soname.dif
+  * source-texdoc.dif
+  * source-warns.dif
+  * source.dif
+- Drop obsolate patches
+  * freetype-use-pkg-config.patch
+  * source-bsc1109673.dif
+  * source-dvipdfm-x.dif
+  * source-fix-synctex-missing-header-install.dif
+  * source-lua-fix-bad-compare.patch
+  * source-m-tx-0.63a-buffer-overflow.dif
+  * source-patgen.dif
+  * source-tounicode.dif
+
+- Disable LTO (boo#1133287).
+
+- Update to biber 2.12
+
+- Add patches for poppler 0.72:
+  * Rebase/extend source-fix-const-poppler0.66.0.patch and apply for
+    all versions using pdf*-newpoppler.cc
+  * source-fix-bool-poppler.patch
+  * source-poppler-use-std_string.patch
+  * source-poppler-fix-dict-memleak.patch
+- Add source-lua-fix-bad-compare.patch
+- Drop source-lua-poppler0640.dif, instead of casting the const's
+  away, add const where appropriate
-- Add patch source-dvipdfm-x.dif to fix XeTeX bug #151 (boo#1099563)
+- Add source-fix-const-poppler0.66.0.patch to fix several const
+  issues that broke the build of texlive with poppler 0.66.0.
+
+- Add a view dependencies to perl-biber
+
+- Let texlive-kpathsea-bin Pre Require texlive-tetex-bin
+
+- Respect rename of texconfig to tetex
+
+- Add patch source-tounicode.difto fix tounicode entries for
+  ligatures in pdf output of xelatex
+
+- Add freetype-use-pkg-config.patch to fix build with new Freetype:
+  use pkgconfig to find Freetype libraries.
+
+- Shorten reautoconfig a bit that is only reconfigure trees with
+  changed ac files
+
+- Help asymptote with libOSMesa AND libglapi
+
+- Add patch source-patgen.dif to enhance upper size limit of
+  arrays in patgen as mentioned at texlive@tug.org
+
+- Switch over to TeXLive 2018 final 20180414
+
+- Add patch source-dvipdfm-x.dif to fix XeTeX bug #151
+
+- Add patches
+  * source-m-tx-0.63a-buffer-overflow.dif
+  * source-synctex-bump-soname.dif as the API had changed and the
+    major version 1 does not fix anymore
+  * source-fix-synctex-missing-header-install.dif
+  * source-lua-poppler0640.dif
+  * source-synctex-bump-soname.dif
+
+- Skip patch source-lcdf-typetools.dif as now upstream (boo#1087075)
-- Add patch source-lcdf-typetools.dif to help gcc8 (boo#1087075)
+- First initial snapshot of TeXLive pre 2018
+- Port patches
+  * biber-certs.dif
+  * source-64.dif
+  * source-a2ping.dif
+  * source-configure.dif
+  * source-dviutils.dif
+  * source-overflow.dif
+  * source-warns.dif
+  * source.dif
+- Removed patches now upstream
+  * texlive-20170524-source-poppler059-1.patch
+  * source-poppler-0.59.1.dif
+  * source-luatex.dif
+  * source-maxpath.dif
+  * biber-perl-5.30.dif
texlive-specs-n
--  Extend patch latexdiff_perl.dif to fix boo#1118796 yet an other
-  unescaped left brace with perl
+- Also add some obsoletes
-- Port back changes for bsd_glob of latexmk(.pl) (boo#1094731)
+- Backport TeXLive 2021, full python3 support and no poppler anymore
+- Add missed package splits for bsc#1196711
+- Skip patch latexmk_perl.dif as this is upstream in TL 2021 (bsc#1094731)
+- Ignore patch latexdiff_perl.dif for bsc#1118796 as this is
+  already part of upstream TeXLive 2021
+- Ignore patch fancyhdr_newtoks.dif for bsc#1190640 as this is
+  already part of upstream TeXLive 2021
+
+- Extend patch texlive-scripts_scripts.dif
+  * boo#1193473 -- /etc/cron.daily/suse-texlive from texlive causes warnings
+    OK make them silent
+
+- Do not touch shebang with patch latexdiff_p2top3.dif
+
+- Add the patches to convert python2 helper scripts to python3
+  * ejpecp_p2top3.dif
+  * enctex_p2top3.dif
+  * latexdiff_p2top3.dif
+  * newcommand_p2top3.dif
+  * punknova_p2top3.dif
+
+- Add patch seminar_latex20200202.dif and patch prosper_utf8.dif
+  * Avoid latin1 characters and the caused warning about broken
+    enconding in the typeouts of prosper file
+  * Set lowest release of the LaTeX engine for seminar class
+    (boo#1185941)
+
+- Move python detection and correction to python3
+
+- Change to using systemd-sysusers
+
+- Reenable pygmentex as now with python3
+
+- Remove patch de-macro_p2top3.dif now upstream
+- Port patches
+  * kpathsea_cnf.dif
+  * latexmk_conf.dif
+  * lilyglyphs_p2top3.dif (now only shebang corrected)
+  * luatex_cnf.dif
+  * luaotfload_varfonts.dif
+  * musixtex_various.dif
+  * texdoc_cnf.dif
+  * texlive-scripts_scripts.dif
+
+- Update to TeXLive 2021
+
+- Rename patch lilyglyphs-8ffa820e4.dif to lilyglyphs_p2top3.dif
+- Add patch de-macro_p2top3.dif
+  * Re-enable texlive-de-macro as required by extra binary package
+
+- Reenable package lilyglyphs by adding patch lilyglyphs-8ffa820e4.dif
+  from upstream repository
+
+- Skip packages which are based on python2
+
+- Fix the fix for boo#1046104 reported by boo#1181691
+  * Increase dict size which holds the font description
+    to fit with added descriptions of PostScript Type 1
+
+- Enhance latexmk configuration, that is add a systemwide
+  configuration below /etc/texmf/latexmk/ as latexmk.conf (boo#1180789)
+  For this add patch latexmk_conf.dif
+
+- Enhance spec file generator to find missing .so man page
+  links for better dependency resolution (bsc#1171682)
+
+- Modify patch texdoc_cnf.dif to ignore tlpkg/texlive.tlpdb as
+  kpathsea uses the ls-R files as well
+
+- Correct obsoletes for new packages
+
+- Scan *.def files as well for RequirePackage
+
+- Add Requires to tex(epstopdf-base.sty) to fix package split
+  of texlive-epstopdf
+
+- Skip *-dev packages from file dependendcy scanner as otherwise
+  we see doubling name space for some style files like amsmath.sty
+
+- Add patch pythontex_p2top3.dif and a removes file to fully
+  switch pythontex packages of TeXLive to python3
+
+- Update to TeXLive 2020
+  * Port patches
+    kpathsea_cnf.dif
+    latexpand_perl.dif
+    luaotfload_varfonts.dif
+    luatex_cnf.dif
+    musixtex_various.dif
+  * Delete patches not needed anymore as files have moved
+    tetex_scripts.dif
+  * Delete patche updmap-map_roboto.dif as fixed upstream
+  * Add new patches to catch moved files
+    texlive-scripts-extra_scripts.dif
+    texlive-scripts_scripts.dif
+  * Add new patch xetex_conf.dif to fit FHS location
+  * Remove TeXLive installer files breaking rpm database
+    texlive-scripts.removes
+
+- Enhance spec file generator to catch more required style files
+  e.g. readarray.sty for verbatimbox.sty as reported in boo#1155752
+
+- Correct path in patch updmap-map_roboto.dif
+
+- Add updmap-map_roboto.dif to update encoding mappings (boo#1143065)
+
+- Add <texmf-dist>/scripts/texdoc/Data.tlpdb.lua (boo#1146028)
+
+- Remove (texlive-)axessibility package as it has a nofree license:
+  Creative Commons Attribution-NonCommercial 4.0 License
+
+- Redo spec file generation to get the various scriplets back
+
+- Correct /etc/texmf/web2c/texmf.cnf (boo#1136314)
+
+- Update to TeXLive 2019
+- Modify patches
+  * kpathsea_cnf.dif
+  * latex2man_tmphandling.dif
+  * latexpand_perl.dif
+  * luaotfload_varfonts.dif
+  * luatex_cnf.dif
+  * musixtex_various.dif
+  * tetex_scripts.dif
+  * texdoc_cnf.dif
+- Drop obsolate patches
+  * tex4ht_env.dif
+  * texdraw_info.dif
+- Patch bbold_bbold11.dif move from texlive-specs-c.spec to
+  texlive-specs-b.spec
+- Patch context_fourier-map.dif move from texlive-specs-f.spec to
+  texlive-specs-e.spec
+- Will fix Bug boo#1131436:
+  texlive-fontawesome5 does not update updmap on install/uninstall
+
+- In texlive-ukrhyph-doc use en_GB instead of en_UK (boo#1123654)
+
+- Map many Language Description Files (ldf) to know hypen-packages (boo#1099475)
+
+- In case of having OpenType and/or TrueType fonts around do disable
+  the PostScript Type fonts for fontconfig (boo#1102986)
+
+- Update tetex_scripts.dif as also updmap.pl should use /usr/share/texmf
+  to find the perl TeXLive modules as well
+
+- Port *all* changes for texlive scripts from source.dif to texconfig_scripts.dif
+
+- Update tetex_scripts.dif as there is no /usr/share/texmf-dist here
+
+- Refresh stix.tar.xz to get missed fd files
+
+- Reorder requirements due rename texconfig to tetex
+
+- Respect rename of texconfig to tetex
+
+- Rename patch texconfig_scripts.dif to tetex_scripts.dif
+
+- Remove patch latexdiff_perl.dif now upstream
+
+- Remove patch algorithm2e_umlauts.dif now upstream
+
+- Switch over to TeXLive 2018 final 20180414
+
+- First initial snapshot of TeXLive pre 2018
-- Make sure texconfig/update is run only once per transaction
-
-- Be aware that blanks may occure around RequirePackage (bnc#872559)
-
-- Remove superfluous xfs dependcies
-
-- Make Lua(La)TeX knowing about varfonts from mktex.cnf (bnc#847102)
-
-- Be aware that texlive scripts are now in the packages them self
-
-- Change /bin/env to /usr/bin/env in latexdiff tool below doc
-
-- Be aware that the package texlive-ascii-font is the former
-  texlive-ascii
-
-- Do not override TEXMFLOCAL with TEXMFMAIN as this is now TEXMFDIST
-
-- Drop dependency freeglut-devel of texlive-asymptote (bnc#833498)
-
-- Make sure that TEXMFMAIN is /usr/share/texmf now
-- Replace texmf.cnf if really required that is do not install
-  as .rpmnew but move the old to .rpmold
-
-- Move leipzig.tex from doc/latex/leipzig/leipzig.tex to
-  tex/latex/leipzig/leipzig.tex
-
-- Update to TeXLive 2013 (timestamp 20130620)
-  + Distribution layout: the top-level texmf/ directory has been
-    merged into texmf-dist/, for simplicity. Both the TEXMFMAIN
-    and TEXMFDIST Kpathsea variables now point to texmf-dist.
-  + Many small language collections have been merged together,
-    to simplify installation.
-  + MetaPost: native support for PNG output and floating-point
-    (IEEE double) has been added.
-  + LuaTEX: updated to Lua 5.2, and includes a new library
-    (pdfscanner) to process external PDF page content, among
-    much else (see its web pages).
-  + XeTEX (also see its web pages for more):
-    The HarfBuzz library now used for font layout instead of ICU.
-    Graphite2 and HarfBuzz are used instead of SilGraphite for Graphite layout.
-    On Macs, Core Text is used instead of the (deprecated) ATSUI.
-    Prefer TrueType/OpenType fonts to Type1 when the names are the same.
-    Fix occasional mismatch in font finding between XeTEX and xdvipdfmx.
-    Support OpenType math cut-ins.
-  + xdvi: now uses FreeType instead of t1lib for rendering.
-  + microtype.sty: some support for XeTEX (protrusion) and LuaTEX
-    (protrusion, font expansion, tracking), among other enhancements.
-- Update biblatex-biber to 1.7
-- Udpate biblatex of TeXLive 2013 to 2.7a
-
-- Let texlive-arev require tex(mdacmr.fd) (bnc#819867)
-- Avoid line break in patch pgf_plain.dif (bnc#823273)
-
-- As lcdf-typetools does not support kpathsea nor search below
-  texmf tree build the texlive-lcdftypetools(-bin) packages again
-  and let them conflict with the lcdf-typetools package.
-
-- Asymptote binaries may have the same version as the format files
-  of the asymptote package it self (bnc#813032)
-
-- Change Obsoletes from < 2012+subversion to <= 2011 (bnc#811162)
-- Let mathdesign require tex(texnansi.enc) (bnc#808731)
-- Let biber-bin require perl(Text::BibTeX) (bnc#811258)
-- Do not require xfs as we do not use xfs at all, otherwise we
-  have to add some more lua code in the %post scriptlet.
-
-- Avoid doubling mktex.opt content with excessive patch which had
-  lead that the original content overrides the new one (bnc#801727)
-
-- Work around missing support of %posttrans scriptlets in libzypp
-  due missing rpm option for not to execute those scriptlets (bnc#773575)
-
-- Add require texlive-metapost for texlive-dvips
-- Add some more requires for latex-bin
-- Add require pdftex.def for texlive-pdftex
-- Do not reqiure package pgfmath in pgffor.sty (bnc#783252)
-
-- Use disturl for rpmbuild runs
-- Aggregate licenses for meta spec file automatically
-
-- license update: GPL-2.0+ and LPPL-1.3c and GPL-3.0+ and MPL-1.1 and
-  LPPL-1.0 and OFL-1.1 and Apache-2.0
-  Aggregate licenses for spec file without subpackages
-
-- Change font config semantic as the font directories below
-  /usr/share/fonts will be always found by freetype
-
-- Source validator does not like not applied patches
-
-- Correct path in pgf patch
-
-- Make the sub packagers texlive-spec-{a..z} valid for source
-  validator
-
-- Add patch to make pgf work with plain TeX (bnc#746719)
-
-- Make jadetex format build in posttrans scriptlet
-
-- Add some missed files
-- Break cycle between latex and latex-bin
-
-- move lgrenc.dfu from doc to tex tree
-
-- Avoid dependency loops between kpathsea, tetex, and texconfig
-  with the main package texlive as otherwise the three packages
-  will be isntalled before texlive
-
-- Make sure that posttrans scriptlets will execute update script
-
-- Re-run generator script to add missed docfiles
-
-- Avoid failing scriptlets due slice split
-
-- Modify the runtime Makefile to allow to build slices from the
-  2236 spec files may help to speed up the serial checks and
-  serial rpmlint run
-
-- Do not forget requirements of texlive-latex-bin
-
-- Add some minimal requirements for texlive-tex, texlive-latex,
-  texlive-luatex, and texlive-texinfo
-
-- Fix wrong placement of tex files
-- Xecyr has only win executables
-
-- Simplify dependency chain(s)
-- Allow pure source packages (knuth, latex-tds, ...)
-- Allow empty packages (hyphen, bibtexu, ...) for dependencies
-
-- Make RPMlint happy
-
-- Make main spec file run several rpmbuild processes in parallel
-
-- Update to frozen/final 2012 (timestamp 20120611)
-
-- Avoid source url for all tar balls as our checkin script can not
-  handle snapshots nor is knowing about the infrastructure of the
-  upstream TeXLive server
-
-- Do not forget the sub package like doc and fonts
-
-- Suppress leading dot in build release number
-
-- Change version/release scheme
-- Avoid to list optional loaded but not existing files as required
-
-- Add fix for latex2man insecure tmp file handling (bnc#758046)
-
-- Avoid making delcmdchanges.bash to be a text file
-
-- If MT_FEATURES includes varfonts and system default is not
-  writable choose $HOME/.cache/texmf/fonts
-
-- Make rpm lint happy
-
-- Initial packaging of TeXLive using package database texlive.tlpdb
-  that is we have now a lot small packages around
-
tigervnc
+- U_0003-Update-Surface_X11.cxx.patch
+  * Fix to render properly considering endianness.
+  * bsc#1197119
+
tk
-- bsc#1181840: Same fix as for tkConfig.sh is needed for tk.pc.
+- New version 8.6.12:
+  * (bug)[7beaed] ttk::bindMouseWheel syntax error
+  * (new) support 4 new keycodes: CodeInput, SingleCandidate,
+    MultipleCandidate, PreviousCandidate
+  * (new) Portable keycodes: OE, oe, Ydiaeresis
+  * (bug)[9e1312] <Enter> to parent after child destroyed
+  * (bug)[d3cd4c] more robust notebook processing
+  * (bug)[234ee4] crash in [clipboard get] invalid encoding
+  * (bug)[be9cad] Poor trace housekeeping -> tkwait segfault
+  * (bug)[9b6065] restore Tcl [update], see window-2.12
+  * (bug)[34db75,ea876b] cursor motion in peer text
+  * (bug)[c97464] memleak in TkpDrawAngledChars
+  * (bug)[171ba7] crash when grab and focus are not coordinated
+  * crash due to failed transient record housekeeping
+  * (bug)[099109] segfault reusing a container toplevel
+  * (bug)[4efbfe] static package init order in wish
+  * (bug)[033886] Win: hang in font loading
+  * (bug)[8ebed3] multi-thread safety in Xft use
+  * (new)[TIP 608] New virtual event <<TkWorldChanged>>
-- bsc#1179615: TK_LIBS in tkConfig.sh possibly breaks build on
-  newer service packs and is not needed for linking to a dynamic
-  libtk anyway, so make it empty.
+- Update to version 8.6.11.1 (still presenting itself as 8.6.11)
+  * Fixed issue in bindMouseWheel
+
+- Version 8.6.11:
+  * Fix TkKeyEvent platform variations
+  * ttk respect -cursor option
+  * MouseWheel for ttk::scrollbar
+  * fix fontconfig crash when no font installed
+  * fix tearoff menu redraw artifacts
+  * stop crash w/Noto Color Emoji font
+  * fix crash of angled text w/o Xft
+  * fix crash when active button is destroyed
+  * disfavor Master/Slave terminology
+  * many more bug fixes.
+
+- Fix manpage symlink for wish8.6.
+
+- Fix build with RPM 4.16: error: bare words are no longer
+  supported, please use "...":  lib64 == lib64.
+
+- Version 8.6.10:
+  * (bug)[0a9c91] crash in text-11a.22
+  * (bug)[9705d1] crash activating "Alt" theme
+  * (bug)[e3b954] cursor offset at full screen display
+  * (bug)[18a4ba] cross-platform [winfo containing]
+  * (build) 'None', 'ControlMask' symbol conflicts
+  * (bug)[509caf] [treeview tag configure] regression
+  * (bug)[3003895] [scale] res rounds and -from
+  * (new)[TIP 533] [$mb post x y idx]
+  * (bug)[1529659] embed toplevel blocks outer menu
+  * (bug)[8814bd] crash in [NSMenu size]
+  * (bug)[1951ab] Prevent transient window cycles (crashed on Aqua)
+  * ** POTENTIAL INCOMPATIBILITY ***
+  * (bug)[4da219] Incomplete read of multi-image GIF
+  * (new)[TIP 535] Precision of ::scale widget tick mark values
+  * ** POTENTIAL INCOMPATIBILITY ***
+  * (bug)[da3914] [$treeview identify element] failure
+  * (bug)[897ffe] Prevent cross-manager loops of geom management
+  * (bug)[368fa4] Prevent toggle of hidden treeview indicators
+  * (bug)[928652] Apply TIP 533 for ttk::menubutton
+  * (bug)[1001070] X-platform rework of label options -highlight*
+  * (bug)[6286fd] checkbutton handling of -selectcolor
+  * (bug) Ttk scrolling bugs, see tests treeview-9.1, entry-3.[3-6]
+  * (new)[TIP 541] [combobox current] support "end" index
+  * (bug)[2a6c62] <<TreeviewSelect>> trigger on item delete
+  * (bug)[75b8fb] Crash with some [event generate]d <ButtonRelease>
+  * (bug)[5ddeca] Stop app switching exposing withdrawn windows as zombies
+  * (new) Refactor all MouseWheel bindings
+  * ** POTENTIAL INCOMPATIBILITY ***
+  * (bug)[c8ccd1] up array key in [text] takes to index 1.0
+  * (new)[TIP 532] Tk event loop rewrite to prevent ring overflow
+  * ** POTENTIAL INCOMPATIBILITY ***
+  * (bug)[2834776] Stop disabled spinbox from generating
+    <<Increment>> & <<Decrement>>
+  * (bug)[a01b6f7] Workaround XWayland bug reporting screen width
+  * (bug)[b82bd4] Fix [style configure -compound]
+  * (bug)[69b48f] failing test textTag-18.1
+  * (bug)[c4abd2] panic in stackorder command
+  * (bug)[53d280] [wm iconphoto] crash on empty image
+  * [90d555] workaround NSFontManager bad selections
+  * (new) Partial Emoji support in text displays
+- tk-8.5.12-fix-xft.patch is not needed anymore.
+
+- Use FAT LTO objects in order to provide proper static
+  library (boo#1138797).
+
+- Version 8.6.9:
+  * (platform) stop using -lieee, removed from glibc-2.27
+    (bsc#1179615, bsc#1181840).
+  * (bug)[aa7679] crash using window after master destroyed
+  * (bug)[925262] New option -state for ttk::scale
+  * (bug)[fa8de7] Crash [ttk::checkbutton .x -variable {}]
+  * (bug)[382712] Crash in [event generate . <KeyPress>]
+  * (bug)[657c38] Crash in menu destroy with checkbutton entry
+  * (bug)[de156e] Deny PRIMARY selection access in safe interps
+  * (bug)[b68710] Fixes in [text] bindings
+  * (bug)[e20d5c] Stop failures of textTag-18.1
+  * (bug)[5d991b] Fortify var traces against deleted vars
+  * (bug)[1821174] Stop RenderBadPicture X error
+  * (bug)[502e74] Stop X errors on untrusted connections
+  * (bug)[71b131] Regression in Tk_DrawChars()
+  * (bug)[59fccb] menu flaws when empty menubar clicked
+  * (bug)[7423f9] improved legacy support for [tk_setPalette]
+  * (bug)[de01e2] Crash in [$text replace]
+  * (bug)[135696] Crash in [wm transient]
+  * (bug)[309b42] Improve ttk high-contrast-mode support
+  * (bug)[fabed1] GIF photo support for "deferred clear code"
+  * (bug)[3441086] error message in layout-2
+  * (bug)[05bd7f] vista theme for combobox
+  * (bug)[382712] crash in KeyPress event handling
+  * (bug)[6fcaaa] insertion cursor visibility in ttk::entry
+  * (bug)[822923] cascade menu indicator color
+  * (bug)[9658bc] borderwidth calculations on menu items
+  * (bug)[ca403f] treeview border drawing
+  * (bug)[4b555a] hang in [$text search -all]
+  * (bug)[6b22d4] [treeview] binding fix
+
+- Update tkcon.tcl to CVS revision 1.124:
+  * Use -underline clearly to disambiguate from new 8.6.6 option
+  - underlinefg
+  * prevent file edit from undoing loading of file
+
+- add explicit buildrequire on fontconfig-devel
+
+- Version 8.6.8:
+  * (bug)[f1a3ca] Memory leak in [text] B-tree
+  * (bug)[ee40fd] Report [console] init errors
+  * (bug)[3295446] Improve history visibility in [console]
+  * (bug)canvas closed polylines fully honor -joinstyle
+  * (bug)[cc42cc] out of mem crash in tests imgPhoto-18.*
+  * (bug)[3406785] fix coords rounding when drawing canvas items
+  * (bug)[8277e1] linux fontchooser sync with available fonts
+  * (bug)[5239fd] Segfault copying a photo image to itself
+  * (bug)[514ff6] canvas rotated text overlap detection
+  * (bug)[1e0db2] canvas rchars artifacts
+  * (bug)[d9fdfa] display of Long non-wrapped lines in text
+  * (bug)[dd9667] text anchor not set
+  * (bug)[bb6b40] ::tk::AmpMenuArgs and 'entryconf'
+  * (bug)[55b95f] Crash [scale] with a bignum value
+  * (bug)[ce62c8] text-37.1 fails
+  * (bug)[0ef1c5] OS X - tests menu-22.[345] hang
+  * (bug) display of embedded toplevels
+  * (bug)[73ba07] Correct property type for MULTIPLE conversion
+  * (bug) Memory leak in tkImgPhoto.c.
+  * (bug) Defeat zombie toplevels
+  * (bug) [wm withdraw] on Window and Dock menus
+  * (new)[TIP 477] nmake build system reform
+
+- Sync SLE12 with Factory to fix a bug in Itcl that was affecting
+  iwidgets (bsc#903017).
-- Update to 8.6.2:
-  * Ocaml trouble with Tk and tailcall splice.
-  * Accept [image create -format PNG] (upper case).
-  * fix png wrong component indices
-  * PNG parser accept uppercase -format
-  * fix double free of a TkFont
-  * support PPM maxval up to 65535
-  * fix multi-interp font teardown double free
-  * fix option file \n syntax support
-  * X: correct fontconfig dependence
-  * fix @TK_LIBS@ in pkgconfig
-  * fix autoscroll initiation
-
-- Add tk-fix-pkgconfig-file.patch to fix undefined linker flag
-  (@TK_LIBS@) in tk.pc pkgconfig file; patch sent upstream, see
-  https://core.tcl.tk/tcl/tktview?name=5bcb5026ad51abb7 .
-
update-alternatives
+- break bash <-> update-alternatives cycle by coolo's rewrite
+  of %post in lua [bsc#1195654]
+
-- Use SUSE not SuSE.
-
-- add dpkg-ppc64le.diff (adds ppc64le architecture)
-
-- Add dpkg-sparc.diff to unbreak compilation on sparcv9 build
-
-- update to 1.16.10
-  * Fix update-alternatives test suite to behave correctly on non-Debian
-  binary paths. Known to be affecting at least Gentoo and Mac OS X.
-  * Do not leak subcall command arguments in update-alternatives.
-  * Fix segfault on update-alternatives when passing --slave without any
-  action at all. lp#1037431
-
-- update to 1.16.8
-
-- update to 1.16.7
-  * Print master and slave alternarive link names in update-alternatives
-  - -query and always print alternative link in --config. Closes: #679010
-  * Check parsed integers for invalid or no digit errors in
-  update-alternatives. Check all parsed integers for out of range
-  errors. On "update-alternatives --install" only warn for now on
-  out of range priorities and clamp the values
-
-- fix the reworked patch
-
-- update to 1.16.3
-- reworked patch
-
-- update to 1.15.8.12
-  * no changes, just keep in sync with deb
-
-- update to 1.15.8.11
-- remove unused tarballs and patches
-
-- Remove redundant tags/sections from specfile
-  (cf. packaging guidelines)
-- Use %_smp_mflags for parallel build
-
-- update to 1.15.8.10 - bug fix release
-- build it in the same source tree as package deb
-
-- update to 1.15.8.5
-  * update-alternatives is now implemented in C
-- fix bnc#647151 - update-alternatives: false claim in the description
-  * removed jpackage only part, as it's now don't have any sense
-
-- fix bnc#669716 - update-alternatives corrupt
-  the pack/unpack removal code broke the java update-alternatives file
-
util-linux
+- Extend cache in uuid_generate_time_generic() (bsc#1194642#c51,
+  util-linux-libuuid-extend-cache.patch).
+
util-linux-systemd
+- Extend cache in uuid_generate_time_generic() (bsc#1194642#c51,
+  util-linux-libuuid-extend-cache.patch).
+
virt-manager
+- bsc#1196202 - virt-install crashes on a time-of-check time-of-use
+  (TOCTOU) race condition
+  Resolved by upgrade to version 4.0.0 (jsc#SLE-18261)
+  virt-manager-4.0.0.tar.gz
+- Other features and bug fixes (bsc#1027942)
+  virt-install –os-variant/–osinfo is now a hard requirement for most cases
+  Add ‘Enable shared memory’ UI checkbox (Lin Ma)
+  add UI preference to default to UEFI for new VMs (Charles Arnold)
+  Add virtiofs filesystem driver UI option
+  Fill in all –cputune, –cpu, –shmem, –input, and –boot suboptions (Hugues Fafard)
+  virt-* mdev improvements (Shalini Chellathurai Saroja)
+  bhyve improvments (Roman Bogorodskiy)
+  Revive network portgroup UI
+  enable a TPM by default when UEFI is used (Daniel P. Berrangé)
+  Use cpu host-passthrough by default on qemu x86
+  use virtio-gpu video for most modern distros
+  Default to extra pcie root ports for q35
+  set discard=unmap by default for sparse disks and block devices
+  We now require xorissofs for –location ISO
+  We now use setuptools rather than just plain distutils
+- Add virtman-revert-use-of-AyatanaAppIndicator3.patch
+- Drop the following patches
+  0e15cd51-virt-manager-enable-MDEV-support.patch
+  143c6bef-virtinst-fix-error-message-format-string.patch
+  4d0e3232-virtinst-Fix-TOCTOU-in-domain-enumeration.patch
+  8bb64ad5-console-Dont-block-console-reconnect-for-non-error.patch
+  9363e1e6-virt-xml-add-support-for-mediated-devices.patch
+  965480e8-virt-install-add-mediated-device.patch
+  9d4002ee-tests-verify-MDEV-support.patch
+  cf93e2db-console-fix-error-with-old-pygobject.patch
+  d3c627f1-volumeupload-Use-1MiB-read-size.patch
+  d9b5090e-Fix-forgetting-password-from-keyring.patch
+  e7222b50-addstorage-Dont-pass-None-to-widget.set_active.patch
+  f87e96d3-hostdev-use-method-get_mdev_uuid.patch
+  fe8722e7-createnet-Remove-some-unnecessary-max_length-annotations.patch
+  virtinst-graphics-add-check-for-qemu-modules-in-spice-graphic.patch
+  virtman-add-firmware-preferences.patch
+  virtman-legacy-bios-support.patch
+  virtman-show-no-firmware-for-xenpv.patch
+
+- Add dependency in spec file for python3-gobject-Gdk (bsc#1191705)
+  virt-manager.spec
+
+- bsc#1191356 - virt-manager should not depend on gtk4
+  Modified files:
+    virt-manager.spec
+    virtman-dont-specify-gtksource-version.patch
+    virtman-dont-specify-vte-version.patch
+
wavpack
+- security update
+- added patches
+  fix CVE-2021-44269 [bsc#1197020], out of bounds read in processing .wav file
+  + wavpack-CVE-2021-44269.patch
+
-- add libtool as buildrequire to avoid implicit dependency
-
wireless-tools
+- Fix URLs (wireless-tools home page has been migrated to github.io)
+
+- install modprobe.conf files in %_modprobedir (bsc#1196275, jsc#SLE-20639)
+
+- Convert wireless-tools.changes to proper UTF-8 format: new
+  version of RPM are getting strict in interpreting files.
+
-- license update: GPL-2.0
-  See line 22 of ifrename.c
-
-- Remove redundant tags/sections from specfile
-
-- update to 30.pre9:
-  o Create iwlib-private.h to minimise namespace pollution [iwlib]
-  o More fix to the 64->32bit band-aid for encode [iwlib]
-  o Update udev rule to remove a warning [19-udev-ifrename.rules]
-    (from Ritesh Raj Sarraf <rrs@researchut.com> and Guus Sliepen)
-  o Propagate error codes out of main for get [iwconfig/iwlist/iwspy]
-  (From Guus Sliepen <guus@debian.org>)
-  o Remove spurious commands from Czech iwconfig manpage.
-
-- fixed typo in specfile; shall be /etc/modprobe.d/50-iwlagn.conf
-
-- added iwlagn.modprobe with option to enable 11n connections
-  options iwlagn 11n_disable=0
-
-- iwl3945.modprobe added, bnc #556665
-
-- remove inline hacking from iwlib.h, it breaks C++
-  usage of iwlib.h
-
-- enable parallel build
-
-- fix build with --as-needed
-- fix -devel package dependencies
-
-- use find_lang macro
-
-- Remove requires on libiw-devel, all dependend packages have been
-  checked and adjusted to use libiw-devel in BuildRequires
-  themselves.
-
-- disable as-needed for this package as it fails to build with it
-
-- Remove ipw2100.modprobe, the associate parameter already defaults
-  to 0 since 2.6.30
-- Update ipw2200.modprobe, the associate parameter already defaults
-  to 0 since 2.6.30
-
-- Split libiw30 and libiw-devel out of wireless-tools
-
-- Update install_acx100_firmware and install_intersil_firmware
-  (bnc#486195)
-- Update to 30pre8, changes:
-  o Workaround kernel bug when getting ESSID [iwlib/iwconfig/iwgetid]
-  o Enable scan buffer to grow up to 65535 instead of 32768 [iwlist]
-  o Return a proper error if scan result exceed buffer max [iwlist]
-  o Do above two fixes for the simple scan API [iwlib]
-  o Spelling and typos in [iwconfig.8]
-
-- renamed modprobe configs to /etc/modprobe.d/50-*.conf
-  (required by new module-init-tools).
-
xorg-x11-server
+- U_glamor-Make-pixmap-exportable-from-gbm_bo_from_pixma.patch
+  * avoid consequently failing page flip (boo#1197269)
+
+- u_sync-pci-ids-with-Mesa-21.2.4.patch
+  * sync pci ids with Mesa 21.2.4 (related to boo#1197046)
+
+- U_0002-DRI2-Add-another-Coffeelake-PCI-ID.patch
+  U_0003-dri2-Sync-i965_pci_ids.h-from-mesa.patch
+  U_0004-dri2-Set-fallback-driver-names-for-Intel-and-AMD-chi.patch
+  U_0005-dri2-Sync-i965_pci_ids.h-from-mesa-iris_pci_ids.h.patch
+  * sync GL driver PCI IDs with Mesa (boo#1197046)
+
xscreensaver
+- update to 6.03:
+  * New hacks squirtorus, mapscroller
+  * sphereeversion now has corrugation-mode, and can evert the Earth
+  * glplanet is higher resolution, and displays time zones
+  * glslideshow displays relative pathnames again
+  * X11: fixed sonar failing to ping on some Linux systems
+  * X11: Touch-screens work
+  * X11: Hold down Backspace to clear the whole password field (bsc#1196593)
+- drop xscreensaver-6.02-marbling-std-c.patch
+
yast2
+- Extend the Package module to force using PackageSystem or
+  PackageAI without having the mode into account.
+- AutoYaST: properly detect whether firewalld, bind and
+  yast2-dns-server packages are installed when cloning a system
+  (bsc#1196963).
+- 4.4.47
+
yast2-country
+- Fixed French (Canada) keyboard layout (bsc#1196891):
+  Use "ca", not "ca-fr-legacy"
+- 4.4.12
+
yast2-installation
+- Do not stop xvnc.socket but run the YaST2-Second-Stage and
+  YaST2-Firsboot services before it in order to prevent early
+  vnc connections (bsc#1197265)
+-4.4.50
+
+- Run the YaST2-Second-Stage and YaST2-Firsboot services after
+  purge-kernels to prevent a zypper lock error message
+  (bsc#1196431).
+- 4.4.49
+
+- Prevent getty auto-generation because it makes xvnc to fail when
+  it is started in YaST second stage (bsc#1196614).
+- 4.4.48
+
yast2-network
+- Display the network configuration in the AutoYaST user interface
+  (see bsc#1197019).
+- 4.4.45
+
yast2-packager
+- Read the products from libzypp in installed system, fixes crash
+  during online migration (related to jsc#SLE-17309)
+- 4.4.26
+
+- do not keep file handle to repo metadata open accidentally (bsc#1196061)
+- 4.4.25
+
yast2-security
+- Always check for the package in the underlying system when
+  trying to detect if running on systemd (bsc#1196963).
+- 4.4.13
+
yast2-trans
+- Update to version 84.87.20220313.3dfcfc0d1f:
+  * Translated using Weblate (Hindi)
+  * Translated using Weblate (Polish)
+  * New POT for text domain 'base'.
+  * Translated using Weblate (Hindi)
+  * Translated using Weblate (Hindi)
+  * Translated using Weblate (Hindi)
+  * Translated using Weblate (Hindi)
+  * Translated using Weblate (Hindi)
+  * Translated using Weblate (Hindi)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * Translated using Weblate (Indonesian)
+  * New POT for text domain 'packager'.
+  * New POT for text domain 'autoinst'.
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Chinese (Taiwan) (zh_TW))
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Italian)
+  * Translated using Weblate (Indonesian)
+