Packages changed: ImageMagick (7.1.1.9 -> 7.1.1.10) MozillaFirefox (113.0.1 -> 113.0.2) freetype2 gnutls highway libqt5-qtbase (5.15.9+kde151 -> 5.15.9+kde154) libreoffice (7.5.3.1 -> 7.5.3.2) libstorage-ng (4.5.109 -> 4.5.110) openSUSE-build-key python-Twisted shim-leap xen (4.17.1_02 -> 4.17.1_04) === Details === ==== ImageMagick ==== Version update (7.1.1.9 -> 7.1.1.10) Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.1.10 * fixes CVE-2023-2157 [bsc#1211601] https://github.com/ImageMagick/Website/blob/main/ChangeLog.md#711-10---2023-05-21 ==== MozillaFirefox ==== Version update (113.0.1 -> 113.0.2) Subpackages: MozillaFirefox-translations-common - Mozilla Firefox 113.0.2 (boo#1211696) * Fixed: Fixed a bug which could cause Firefox to freeze on some pages when loading them with the Developer Tools Web Console open (bmo#1828026) * Fixed: Fixed a bug which would cause the bookmarks and history sidebars to not properly react to the browser window being vertically resized (bmo#1831535) ==== freetype2 ==== - Do not limit ftdump conflict to < version-release, but only to version. Ftdump is built in a second build flavor and as such the release counters are not guaranteed to be in sync. ==== gnutls ==== - FIPS: Skip the fixed HMAC verification for nettle, hogweed and gmp libraries. These calculated HMACs change for every build of each of these packages, we only have to verify that for gnutls. * Add gnutls-FIPS-HMAC-nettle-hogweed-gmp.patch [bsc#1211476] - FIPS: Merge libgnutls30-hmac package into the library [bsc#1185116] ==== highway ==== - Update memory limiter from 900 to 1400/process. ==== libqt5-qtbase ==== Version update (5.15.9+kde151 -> 5.15.9+kde154) Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Update to version 5.15.9+kde154: * Hsts: match header names case insensitively (CVE-2023-32762) * Fix specific overflow in qtextlayout (CVE-2023-32763) * QDnsLookup/Unix: make sure we don't overflow the buffer ==== libreoffice ==== Version update (7.5.3.1 -> 7.5.3.2) Subpackages: libreoffice-base libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Update to 7.5.3.2: https://wiki.documentfoundation.org/Releases/7.5.3/RC2 - Refresh patches: * 0002-Revert-Require-HarfBuzz-5.1.0.patch * bsc1200085.patch - Fix bsc#1200085 - LO-L3: FILEOPEN PPTX: extra paragraph after some 2-line text with link * bsc1200085.patch ==== libstorage-ng ==== Version update (4.5.109 -> 4.5.110) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Georgian) (bsc#1149754) - 4.5.110 ==== openSUSE-build-key ==== - Added a new 4096 openSUSE container key - build-container-202304-d684afec-64390cff.asc - build-container-202304-d684afec-64390cff.pem - Removed and obsoleted old 2048 build key of Tumbleweed - gpg-pubkey-3dbdc284-53674dd4.asc ==== python-Twisted ==== Subpackages: python310-Twisted python310-Twisted-tls - Switch documentation to be within the main package. ==== shim-leap ==== - Remove the sym-links in /usr/lib64/efi for the newer distro versions since we don't use them anymore ==== xen ==== Version update (4.17.1_02 -> 4.17.1_04) - bsc#1211433 - VUL-0: CVE-2022-42336: xen: Mishandling of guest SSBD selection on AMD hardware (XSA-431) 64639e84-amd-fix-legacy-setting-of-SSBD-on-AMD-Family-17h.patch