Removed rpms
============

 - libgcrypt20-32bit
 - libopenssl1_1-32bit
 - libudev1-32bit
 - libxml2-2-32bit
 - samba-client-32bit
 - samba-client-libs-32bit
 - qemu-seabios
 - libblkid1-32bit
 - libbpf0
 - libmount1-32bit
 - libnettle8-32bit
 - libopeniscsiusr0_2_0
 - libuuid1-32bit
 - libz1-32bit

Added rpms
==========

 - arping2
 - flatpak-remote-flathub
 - libblkid1-32bit
 - libmount1-32bit
 - libnettle8-32bit
 - libuuid1-32bit
 - libz1-32bit
 - jq
 - libbpf1
 - libgcrypt20-32bit
 - libjq1
 - libnet9
 - libonig4
 - libopeniscsiusr0
 - libopenssl1_1-32bit
 - libudev1-32bit
 - libxml2-2-32bit
 - man-pages-ru
 - poppler-data
 - qemu-seabios
 - samba-client-32bit
 - samba-client-libs-32bit
 - wireplumber-lang

Package Source Changes
======================

MozillaFirefox
+- Firefox Extended Support Release 102.7.0 ESR
+  Placeholder changelog-entry (bsc#1207119)
+
-  Placeholder changelog-entry (bsc#1206242)
+  * Fixed: Various stability, functionality, and security fixes.
+  MFSA 2022-52 (bsc#1206242)
+  * CVE-2022-46880 (bmo#1749292)
+    Use-after-free in WebGL
+  * CVE-2022-46872 (bmo#1799156)
+    Arbitrary file read from a compromised content process
+  * CVE-2022-46881 (bmo#1770930)
+    Memory corruption in WebGL
+  * CVE-2022-46874 (bmo#1746139)
+    Drag and Dropped Filenames could have been truncated to
+    malicious extensions
+  * CVE-2022-46875 (bmo#1786188)
+    Download Protections were bypassed by .atloc and .ftploc
+    files on Mac OS
+  * CVE-2022-46882 (bmo#1789371)
+    Use-after-free in WebGL
+  * CVE-2022-46878 (bmo#1782219, bmo#1797370, bmo#1797685,
+    bmo#1801102, bmo#1801315, bmo#1802395)
+    Memory safety bugs fixed in Firefox 108 and Firefox ESR 102.6
bind
+- Update to release 9.16.35
+  Bug Fixes:
+  * A crash was fixed that happened when a dnssec-policy zone that
+    used NSEC3 was reconfigured to enable inline-signing.
+  * In certain resolution scenarios, quotas could be erroneously
+    reached for servers, including any configured forwarders,
+    resulting in SERVFAIL answers being sent to clients.
+  * rpz-ip rules in response-policy zones could be ineffective in
+    some cases if a query had the CD (Checking Disabled) bit set to
+    1.
+  * Previously, if Internet connectivity issues were experienced
+    during the initial startup of named, a BIND resolver with
+    dnssec-validation set to auto could enter into a state where it
+    would not recover without stopping named, manually deleting the
+    managed-keys.bind and managed-keys.bind.jnl files, and starting
+    named again.
+  * The statistics counter representing the current number of
+    clients awaiting recursive resolution results (RecursClients)
+    could overflow in certain resolution scenarios.
+  * Previously, BIND failed to start on Solaris-based systems with
+    hundreds of CPUs.
+  * When a DNS resource record’s TTL value was equal to the
+    resolver’s configured prefetch “eligibility” value, the record
+    was erroneously not treated as eligible for prefetching.
+  [jsc#SLE-24600]
+
+- Update to release 9.16.34
+  New Features:
+  * Support for parsing and validating the dohpath service
+    parameter in SVCB records was added.
+  * named now logs the supported cryptographic algorithms during
+    startup and in the output of named -V.
+  Bug Fixes:
+  * Changing just the TSIG key names for primaries in catalog
+    zones’ member zones was not effective. This has been fixed.
+  Known Issues:
+  * Upgrading from BIND 9.16.32 or any older version may require a
+    manual configuration change. The following configurations are
+    affected:
+  - type primary zones configured with dnssec-policy but without
+    either allow-update or update-policy,
+  - type secondary zones configured with dnssec-policy.
+    In these cases please add inline-signing yes; to the individual
+    zone configuration(s). Without applying this change, named will
+    fail to start. For more details, see
+    https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-signing
+  [jsc#SLE-24600]
+
bubblewrap
+- update to v0.7.0:
+  * --size option controls the size of a subsequent --tmpfs (#509)
+  * Better error messages if a mount operation fails (#472)
+  * Better error message if creating the new user namespace fails with
+    ENOSPC (#487)
+  * When building as a Meson subproject, a RUNPATH can be set on the
+    executable to make it easier to bundle its libcap dependency
+  * Fix test failures when running as uid 0 but with limited capabilities
+    (#510)
+  * Use POSIX command -v in preference to non-standard which (#527)
+  * Fix a copy/paste error in --help (#531)
+
+- Update to version 0.6.2:
+  + New features in Meson build:
+  - Auto-detect whether the man page can be generated.
+  - -Dbwrapdir=... changes the installation directory (useful
+    when being used as a subproject).
+  - -Dtests=false disables unit tests.
+  + Bug fixes:
+  - Add --add-seccomp-fd to shell completions
+  - Document --add-seccomp-fd, --json-status-fd and --share-net
+    in the man page
+  - Add attributes to silence various compiler warnings
+  - Allow compilation of tests with musl on mips architectures
+  - Allow compilation with older glibc
+  - Disable sanitizers for a test helper whose seccomp profile
+    breaks the instrumentation
+  - Disable AddressSanitizer leak detection where it interferes
+    with unit testing
+
+- Update to 0.6.1:
+  - Add a release checklist
+  - completions: Make zsh completion non-executable
+  The Autotools build system installed it with 0644 permissions because
+  it's listed as DATA, but the Meson build system installs executable
+  files as executable by default.
+  zsh completions don't need to be executable to work, and this one doesn't
+  have the `#!` marker that should start an executable script.
+- update to 0.6.0:
+  - meson: Improve compatibility with Meson 0.49
+  That version doesn't allow more than two arguments for define_variable.
+  - Disable test-specifying-pidns.sh under 'meson dist' while I investigate
+  This test is hanging when run under 'meson dist' for some reason, but
+  not when run under 'meson test', and not locally, only in the Github
+  Workflow-based CI. Disable it for now.
+  - meson: Actually build and run the tests
+  - tests: Fix compiler warnings for unused arguments
+  - meson: Run test scripts from $srcdir
+  - meson: Make G_TEST_SRCDIR, G_TEST_BUILDDIR match Autotools
+  - meson: Run the Python test script with Python, not bash
+  The python build option can be used to swap to a different interpreter,
+  for environments like the Steam Runtime where the python3 executable in
+  the PATH is extremely old but there is a better interpreter available.
+  This is treated as non-optional, because Meson is written in Python,
+  so the situation where there is no Python interpreter at build-time
+  shouldn't arise.
+  - meson: Build the try-syscall helper
+  - meson: Build tests with equivalent of -I$(top_srcdir) -I$(top_builddir)
+  - meson.build: Remove unnecessary check for sh
+  - Add a Meson build system
+  This allows bwrap to be built as a subproject in larger Meson projects.
+  When built as a subproject, we install into the --libexecdir and
+  require a program prefix to be specified: for example, Flatpak would use
+  program_prefix=flatpak- to get /usr/libexec/flatpak-bwrap. Verified to
+  be backwards-compatible as far as Meson 0.49.0 (Debian 9 backports).
+  Loosely based on previous work by Jussi Pakkanen (see #133).
+  Differences between the Autotools and Meson builds:
+  The Meson build requires a version of libcap that has pkg-config
+  metadata (introduced in libcap 2.23, in 2013).
+  The Meson build has no equivalent of --with-priv-mode=setuid. On
+  distributions like Debian <= 10 and RHEL <= 7 that require a setuid bwrap
+  executable, the sysadmin or distribution packaging will need to set the
+  correct permissions on the bwrap executable; Debian already did this via
+  packaging rather than the upstream build system.
+  The Meson build supports being used as a subproject, and there is CI
+  for this. It automatically disables shell completions and man pages,
+  moves the bubblewrap executable to ${libexecdir}, and renames the
+  bubblewrap executable according to a program_prefix option that the
+  caller must specify (for example, Flatpak would use
+  - Dprogram_prefix=flatpak- to get /usr/libexec/flatpak-bwrap). See the
+  tests/use-as-subproject/ directory for an example.
+  - Use HEAD to refer to other projects' default branches in documentation
+  This makes the URL independent of the name they have chosen for their
+  default branches.
+  - workflows: Update for rename of default branch to main
+  - tests: Exercise seccomp filters
+  - Allow loading more than one seccomp program
+  This will allow Flatpak to combine an allow-list (default-deny) of
+  known system calls with a deny-list (default-allow) of system calls
+  that are undesired.
+  Resolves: https://github.com/containers/bubblewrap/issues/453
+  - Generalize linked lists of LockFile and SetupOp
+  I'm about to add a third linked list, for seccomp programs, which would
+  seem like too much duplication.
+  - Handle argc == 0 better
+  Unfortunately it's possible for argc to be 0, so error out pretty early
+  on in that case. I don't think this is a security issue in this case.
+  - Fix typo
+  - Remove trailing whitespace
+  - Fix spelling
+  - bash: Fix shellcheck warnings
+  - bash: Invoke bash using /usr/bin/env
+  - bubblewrap: Avoid a -Wjump-misses-init false-positive
+  When building with -Wjump-misses-init as part of a larger project, gcc
+  reports that we jump past initialization of cover_proc_dirs. This is
+  technically true, but we only use this variable in the case where it's
+  initialized, so that's harmless.
+  However, we can avoid this altogether by making the array static and
+  constant, which allows it to be moved from initialized data to read-only
+  data.
+  - bind-mount: Be more const-correct
+  When compiled with -Wwrite-strings as part of a larger project, gcc and
+  clang both warn that we're assigning a string constant to a mutable
+  struct member. There's actually no reason why it should be mutable, so
+  make it const.
+  - die_with_error: Save errno sooner
+  We need to save errno immediately, otherwise it could be overwritten
+  by a failing library call somewhere in the implementation of fprintf.
+  - main: Warn when non-repeatable options are repeated
+  A user might reasonably expect that `bwrap --seccomp 3 --seccomp 4 ...`
+  would load seccomp programs from both fds 3 and 4, but in fact it only
+  loads the program from fd 4.
+  Helps: https://github.com/containers/bubblewrap/issues/453
+  Resolves: https://github.com/containers/bubblewrap/issues/454
+  - utils: Add warn()
+  - Add SPDX-License-Identifier for files that already specify license
+  This is a step towards REUSE compliance. Third-party files that we do
+  not otherwise edit (git.mk, m4/attributes.m4) are excluded here.
+  - tests: Use preferred spelling for SPDX license identifiers
+  - Remove obsolete .travis.yml
+  We no longer use Travis-CI.
+  - Remove obsolete papr CI
+  We no longer use this.
+
+- Update to version 0.5.0:
+  + New features:
+  - --chmod changes permissions
+  - --clearenv unsets every environment variable (except PWD)
+  - --perms sets permissions for one subsequent --bind-data,
+  - -dir, --file, --ro-bind-data or --tmpfs
+  + Other enhancements:
+  - Better diagnostics when a --bind or other bind-mount fails
+  - zsh tab-completion
+  - Better test coverage
+  + Bug fixes:
+  - Use Python 3 for tests and examples
+  - Mount points for non-directories are created with permissions
+  - r--r--r-- instead of -rw-rw-rw-
+  - Don't remount items in /proc read-only if already EROFS,
+    required to run under Docker
+  - Allow mounting an non-directory over an existing
+    non-directory, e.g. --bind "$XDG_RUNTIME_DIR/my-log-socket"
+    /dev/log
+  - Silence kernel messages for our bind-mounts
+  - Make sure pkg-config is checked for, regardless of build
+    options
+  - Improve ability to bind-mount directories on case-insensitive
+    filesystems
+  - Fix -Wshadow warnings
+  - Fix deprecation warnings with newer SELinux
+- Add new subpackage bubblewrap-zsh-completion
+
chromium
+- Chromium 109.0.5414.119 (boo#1207512):
+  * CVE-2023-0471: Use after free in WebTransport
+  * CVE-2023-0472: Use after free in WebRTC
+  * CVE-2023-0473: Type Confusion in ServiceWorker API
+  * CVE-2023-0474: Use after free in GuestView
+  * Various fixes from internal audits, fuzzing and other
+    initiatives
+
+- Added patches:
+  * chromium-icu72-1.patch: ensure TextCodecCJK doesn't conflict
+    with system icu (bsc#1207147)
+  * chromium-icu72-2.patch: align default characters for old icu
+    with that of ICU 72
+  * chromium-icu72-3.patch: make V8 aware of space in ICU 72 time
+    format
+
dracut
+- Update to version 055+suse.343.g0113f4b9:
+  A series of changes for the NVMeoF boot feature (jsc#PED-1449):
+  * fix(dracut.spec): require jq for nvmf
+  * fix(suse/dracut.spec): require program for duplicate IP address detection
+  * fix(iscsi): install 8021q module unconditionally
+  * fix(nvmf): install 8021q module unconditionally
+  * feat(nvmf): enable module if NBFT exists
+  * feat(nvmf): add NBFT connect support, and fix configuration priority
+  * feat(nvmf): add code for parsing the NBFT
+  * fix(dracut.spec): require libopenssl1_1-hmac for dracut-fips (bsc#1206439)
+
ffmpeg-4
+- Add ffmpeg-CVE-2022-3341.patch: Backport from upstream to fix
+  null pointer dereference in decode_main_header() in
+  libavformat/nutdec.c (bsc#1206778).
+
flatpak
+- Fix the "Requires" version of bubblewrap to be the same as
+  "BuildRequires" (>= 0.5.0).
+- Use a macro to define the versions required of bubblewrap,
+  ostree and xdg_dbus_proxy to avoid having the same issue in
+  the future again.
+
+- Update to version 1.14.1:
+  + New features: Add a httpbackend variable to flatpak.pc,
+    allowing dependent projects like GNOME Software to detect
+    whether they are compatible with libflatpak.
+  + Bugs fixed:
+  - Terminate the flatpak-session-helper and flatpak-portal
+    services when the session ends, so that applications will not
+    inherit outdated Wayland and X11 socket addresses.
+  - When using fish shell, don't overwrite a previously-set
+    XDG_DATA_DIRS.
+  - Don't try to enable HTTP 2 if linked to a libcurl version
+    that doesn't support it.
+  - Stop systemd reporting the session-helper as failed when
+    terminated by a signal.
+  - Fix a warning when listing a document with no permissions.
+  - Fix compilation with GLib 2.66.x (as used in Debian 11).
+  - Fix compilation with GLib 2.58.x (as used in Debian 10).
+  - Fix a compiler warning on 32-bit architectures.
+  - If an app update is blocked by parental controls policies,
+    clean up the temporary deploy directory.
+  - Fix Autotools build with versions of gpgme that no longer
+    provide gpgme-config(1).
+  - When building with Autotools, be more consistent about
+    applying compiler warning flags.
+  - Unset $TEMP, $TEMPDIR and $TMP for apps, the same as $TMPDIR.
+  - Treat /efi the same as /boot/efi.
+  - Make generated files more reproducible.
+  + Updated translations.
+
+- Add and recommend a package flatpak-remote-flathub which adds
+  the Flathub repository (boo#1186315)
+
+- Drop pkgconfig(libsoup-2.4) BuildRequires: rely on the curl
+  backend. Following this, pass --with-curl to configure.
+- Add pkgconfig(libxml-2.0) BuildRequires, exsisting dependency,
+  previously pulled in by libsoup.
+
+- Update to version 1.14.0:
+  + Improved support for sideloading.
+  + Allow sub-sandboxes to own MPRIS names on the session bus.
+  + Commands that accept "--user" will now also take "-u" as an alias
+    for that.
+  + The CLI now properly informs the user of which apps are
+    (indirectly) using end-of-life runtime extensions in end-of-life
+    info messages.
+  + The CLI now takes into account operations in the pending
+    transaction when printing end-of-life messages.
+  + The uninstall command now asks for confirmation before removing
+    in-use runtimes or runtime extensions.
+  + A "--socket=gpg-agent" option is now recognized by "flatpak run"
+    and related commands.
+  + Curl supported as default HTTP backend.
+  + Uses Fuse 3.
+  + Implement support for rewriting dynamic launchers when an app
+    is renamed.
+  + Add --include-sdk/debug options to install command to install
+    SDK/debuginfo along with a ref.
+  + defense in depth against arbitrary file deletion by
+    flatpak-system-helper when using very old libostree
+    (boo#1202639).
+  + Updated translations.
+- Replace pkgconfig(fuse) BuildRequires with pkgconfig(fuse3):
+  Follow upstreams port to fuse3.
+- Add pkgconfig(libcurl) BuildRequires: enable the new HTTP
+  backend.
+- Drop gtk-doc BuildRequires and no longer pass --enable-gtk-doc to
+  configure: no longer supported.
+- Drop libtool BuildRequires: no need to bootstrap the tarball.
+- Replace pkgconfig(appstream-glib) BuildRequires with
+  pkgconfig(appstream): match what configure checks for.
+- Add pkgconfig(gdk-pixbuf-2.0): verified dependency that was
+  implicitly included by appstream-glib before.
+
+- variant-schema-compiler requires the Python module pyparsing
+
+- Correct Supplements for flatpak-zsh-completion boo#1201113
+- package LICENSE file in every package
+- make flatpak-zsh-completion and system-user-flatpak noarch
+- add update-system-flatpaks timer that updates installed flatpaks
+  daily if enabled
+
+- Update to version 1.12.7:
+  + allow networked access to X11 and PulseAudio services if that
+    is configured, and the application has network access
+  + Absolute paths in WAYLAND_DISPLAY now work
+  + Allow apps that were built with Flatpak 1.13.x to export
+    AppStream metadata in share/metainfo
+  + Most commands now work if /var/lib/flatpak exists but
+    /var/lib/flatpak/repo does not, and will automatically populate
+    the repo directory if possible
+  + Consistently pass relative subpaths to libostree, working
+    around a bug in libostree < 2021.6 when used with GLib >= 2.71
+  + Fix some memory leaks in GVariant data processing
+
+- Update to version 1.12.6:
+  + Fix a bug that sometimes caused repo corruption in case
+    downloads are interrupted or canceled, necessitating a
+    "flatpak repair" to recover
+  + More reliably detect the GTK theme
+  + Fix history command unit test in some edge cases
+  + Updated translations.
+
freerdp
+- Drop -DBUILTIN_CHANNELS=OFF option (bsc#1205446)
+  * Fix missing symbols issue for builtin channels
+- Drop freerdp-builtin-channels-off-link-fix.diff
+  * No longer needed as -DBUILTIN_CHANNELS=OFF has been dropped
+
gnutls
+- FIPS: Change all the 140-2 references to FIPS 140-3 in order to
+  account for the new FIPS certification [bsc#1207346]
+  * Add gnutls-FIPS-140-3-references.patch
+
+- FIPS: GnuTLS DH/ECDH PCT public key regeneration [bsc#1207183]
+  * Add gnutls-FIPS-PCT-DH.patch gnutls-FIPS-PCT-ECDH.patch
+
lapack
+- Consolidate dummy links for update-alternatives bringing them
+  in sync with openblas. Add alternatives for lapacke.
+
-- Update to 3.5.0
-  * Added Hermitian LDLT factorization routines with rook pivoting
-    algorithm
-  * 2-by-1 CSD to be used for tall and skinny matrix with orthonormal
-    columns
-  * New stopping criteria for balancing
-  * New complex division algorithm
-  * Various improvements
-- No longer removing files due to license reasons as one file is
-  no longer part of Lapack and the others have been replaced by
-  new ones under the normal LAPACK license
-
libXpm
+- U_regression2-bug1207029_1207030_1207031.patch
+  * second regression fix: Use gzip -d instead of gunzip
+
+- U_regression-bug1207029_1207030_1207031.patch
+  * regression fix for above patches
+
+- U_0000-Update-README-for-gitlab-migration.patch
+  * needed by U_0001-configure-add-disable-open-zfile-instead-of-requirin.patch
+- U_0001-configure-add-disable-open-zfile-instead-of-requirin.patch
+  * needed by U_0005-Fix-CVE-2022-4883-compression-commands-depend-on-PAT.patch
+- U_0002-Fix-CVE-2022-46285-Infinite-loop-on-unclosed-comment.patch
+  * libXpm: Infinite loop on unclosed comments (CVE-2022-46285,
+    bsc#1207029)
+- U_0004-Fix-CVE-2022-44617-Runaway-loop-with-width-of-0-and-.patch
+  * libXpm: Runaway loop on width of 0 and enormous height
+    (CVE-2022-44617, bsc#1207030)
+- U_0005-Fix-CVE-2022-4883-compression-commands-depend-on-PAT.patch
+  * libXpm: compression commands depend on $PATH (CVE-2022-4883,
+    bsc#1207031)
+
-- libXpm 3.5.9
-  * This minor maintenance release provides a large collection of
-    build configuration improvements and other janitorial
-    cleanups.
-
-- libXpm 3.5.8
-- bumped version number to 7.5
-
-- add baselibs.conf as a source
-
-- revert static library and .la file removal
-  for SUSE versions <= 11.1.
-
-- remove static libraries and "la" files
-- run ldconfig in postun
-
libbpf
+- Remove requirement of linux-glibc-devel >= 5.16 for devel package
+
+- update to v1.1.0:
+  User space-side features and APIs:
+  * user-space ring buffer (BPF_MAP_TYPE_USER_RINGBUF) support;
+  * new documentation page listing all recognized SEC() definitions;
+  * BTF dedup improvements:
+  * unambiguous fwd declaration resolution for structs and unions;
+  * better handling of some corner cases with identical structs and arrays;
+  * mixed enum and enum64 forward declaration resolution logic;
+  * bpf_{link,btf,pro,mapg}_get_fd_by_id_opts() and bpf_get_fd_by_id_opts()
+    APIs;
+  * libbpf supports loading raw BTF for BPF CO-RE from known search paths;
+  * support for new cgroup local storage (BPF_MAP_TYPE_CGRP_STORAGE);
+  * libbpf will only add BPF_F_MMAPABLE flag for data maps with global
+    (i.e., non-static) vars;
+  * latest Linux UAPI headers with lots of changes synced into
+    include/uapi/linux.
+  BPF-side features and APIs;
+  * BPF_PROG2() macro added that supports struct-by-value arguments;
+  * new BPF helpers:
+  * bpf_user_ringbuf_drain();
+  * cgrp_storage_get() and cgrp_storage_delete().
+  Bug fixes
+  * better handling of padding corner cases;
+  * btf__align_of() determines packed structs better now;
+  * improved handling of enums of non-standard sizes;
+  * USDT spec parsing improvements;
+  * overflow handling fixes for ringbufs;
+  * Makefile fixes to support cross-compilation for 32-bit targets;
+  * fix crash if SEC("freplace") programs don't have attach_prog_fd set;
+  * better handling of file existence checks when running as non-root with
+    enhanced capabilities;
+  * a bunch of small fixes:
+  * ELF handling improvements;
+  * fix memory leak in USDT argument parsing logic;
+  * fix NULL dereferences in few corner cases;
+  * improved netlink attribute iteration handling.
+- drop libbpf-Use-elf_getshdrnum-instead-of-e_shnum.patch,
+  libbpf-Fix-use-after-free-in-btf_dump_name_dups.patch,
+  libbpf-Fix-memory-leak-in-parse_usdt_arg.patch
+  libbpf-Fix-null-pointer-dereference-in-find_prog_by_.patch (upstream)
+
+- Fix out-of-bound heap write (boo#1194248 boo#1194249 CVE-2021-45940 CVE-2021-45941)
+  + libbpf-Use-elf_getshdrnum-instead-of-e_shnum.patch
+- Fix use-after-free in btf_dump_name_dups (boo#1204391 CVE-2022-3534)
+  + libbpf-Fix-use-after-free-in-btf_dump_name_dups.patch
+- Fix memory leak in parse_usdt_arg() (boo#1204393 CVE-2022-3533)
+  + libbpf-Fix-memory-leak-in-parse_usdt_arg.patch
+- Fix null pointer dereference in find_prog_by_sec_insn() (boo#1204502 CVE-2022-3606)
+  + libbpf-Fix-null-pointer-dereference-in-find_prog_by_.patch
+
+- update to 1.0.1:
+  * fix inadvertently changed struct bpf_object_open_opts memory layout;
+  * fix btf.h header relying on struct enum64 type defined in kernel UAPI headers;
+  * fix NULL pointer exception in API btf_dump__dump_type_data;
+  * remove struct btf_map_def accidentally left in bpf_helpers.h header.
+  * All deprecated APIs and features removed!
+  * support for syscall-specific kprobe/kretprobe
+    (SEC("ksyscall/<syscall_name>") and SEC("kretsyscall/<syscall_name>"));
+  * support for sleepable uprobe BPF programs (SEC("uprobe.s"));
+  * support for per-cgroup LSM BPF programs (SEC("lsm_cgroup"));
+  * support for new BPF CO-RE relocation TYPE_MATCHES;
+  * bpf_prog_load() and bpf_map_create() are now smarter about handling program
+    and map name on old kernels (it will be ignored if kernel doesn't support
+    names);
+  * BTF_KIND_ENUM64 support;
+  * increase tracing attachment (kprobe/uprobe/tracepoint) robustness by using
+    tracefs or debugfs, whichever is mounted;
+  * new APIs for converting BPF enums to their string representation:
+  * libbpf_bpf_prog_type_str();
+  * libbpf_bpf_map_type_str();
+  * libbpf_bpf_link_type_str();
+  * libbpf_bpf_attach_type_str();
+  * bpf_program__set_autoattach() and bpf_program__autoattach() to allow opting
+    out from auto-attaching of BPF program by BPF skeleton;
+  * perf_buffer__buffer() API to give access to underlying per-CPU buffer for BPF ringbuf;
+  * bpf_obj_get_opts() API for more flexible fetching of BPF kernel objects' information.
+- see https://github.com/libbpf/libbpf/releases/tag/v1.0.0 for detailed changelog
+
+- Update to release 0.8.1:
+  * make shared xsk creation network namespace aware
+
+- Update to release 0.8.0
+  * New features and APIs:
+  - support auto-resolution of binaries and shared libraries from PATH, if necessary;
+  - support attaching by function names (only by IP was supported before);
+  - support attaching to USDTs (SEC("usdt/...") and
+    bpf_program__attach_usdt()) with initially supported architectures:
+    x86-64 (amd64); x86 (i386); s390x; ARM64 (aarch64); RISC V (riscv);
+  - improved BPF verifier log reporting for CO-RE relocation failures (no
+    more obscure "invalid func unknown#195896080" errors);
+  - auto-adjust BPF ringbuf size according to host kernel's page size requirements;
+  - high-level BPF map APIs: bpf_map__lookup_elem(), bpf_map__update_elem(),
+    etc that validate key/value buffer sizes;
+  - bpf_link_create() can create all bpf_link-based (including raw_tp,
+    fentry/fexit, etc), falling back to bpf_raw_tracepoint_open() on old
+    kernels transparently;
+  - support opting out from auto-loading BPF programs declaratively with
+    SEC("?...");
+  - support opting out from auto-creation of declarative BPF maps with
+    bpf_map__set_autocreate();
+  - support multi-kprobes (SEC("kprobe.multi/...") and
+    bpf_program__attach_kprobe_multi_opts());
+  - support target-less SEC() programs (e.g., SEC("kprobe"), SEC("tp"), etc);
+  - support BPF sub-skeletons for "incomplete" BPF object files (requires
+    matching bpftool to generate .subskel.h);
+  - BPF cookie support for fentry/fexit/fmod_ret BPF programs
+    (bpf_program__attach_trace_opts());
+  - support for custom SEC() handlers (libbpf_register_prog_handler()).
+  * BPF-side API
+  - BPF-side USDT APIs. See new usdt.bpf.h header:
+  * BPF_USDT() program wrapper macro; bpf_usdt_arg(), bpf_usdt_arg_cnt(),
+  * bpf_usdt_cookie() helpers;
+  - new bpf_core_field_offset() CO-RE helper and support
+    bpf_core_field_size(type, field) forms;
+  - barrier() and barrier_var() macros for improving BPF code generation;
+  - __kptr and __kptr_ref tags added;
+  - ARC architecture support in bpf_tracing.h header;
+  - new BPF helpers:
+  * bpf_skb_set_tstamp();
+  * bpf_ima_file_hash();
+  * bpf_kptr_xchg();
+  * bpf_map_lookup_percpu_elem().
+  * Bug fixes
+  - netlink bug fixes;
+  - libbpf.pc fixes to support patch releases properly;
+  - BPF_MAP_TYPE_PERF_EVENT_ARRAY map auto-pinning fix;
+  - minor CO-RE fixes and improvements for some corner cases;
+  - various other small fixes and improvements.
+
+- Enable building and packaging of static library.
+  Explicitly enable fat LTO objects.
+
+- Python is not used during build; remove it and help break
+  a cycle.
+
+- Update to release 0.7.0
+  * legacy BPF map definitions (using struct bpf_map_def) are
+    deprecated when LIBBPF_STRICT_MAP_DEFINITIONS is passed to
+    libbpf_set_strict_mode(). Please use BTF-defined map
+    definitions.
+  * ability to control and capture BPF verifier log output on
+    per-object and per-program level
+  * CO-RE support and other improvements for "light skeleton"
+  * improved compilation when system BTF UAPI headers are outdated
+
+- Update to release 0.6.1
+  * Introduce legacy kprobe events support
+  * Add legacy uprobe attaching support
+  * Support uniform BTF-defined key/value specification across
+    all BPF maps
+  * Support kernel module function calls
+  * Support detecting and attaching of writable tracepoint
+    program
+  * Add bloom filter map implementation
+  * Add typeless and weak ksym support to gen_loader
+  * Add RISC-V (RV64) support to bpf_tracing.h
+  * Deprecate AF_XDP support
+  * Support BTF_KIND_TYPE_TAG
+
libnvme
+- Use symbol version LIBNVME_1_2_1 for nbft support options
+  * 0001-libnvme-use-LIBNVME_1_2_1-version-for-nbft-commands.patch
+  * added %test section in spec file to run unit tests
+
+- Update to version 1.2+1.g41e1016:
+  * Add support for booting from NVMe-oF/TCP according to NVM Express
+  Boot Specification v1.0 (jsc#PED-1449)
+  * Add support for "nvme show-nbft" and "nvme connect-nbft" subcommands
+
libostree
-- Add libostree-CVE-2014-9862.patch: fix arbitrary write on heap
-  (boo#1201770 CVE-2014-9862).
+- Update to version 2022.7:
+  + Add API for idempotent delete operations on kernel arguments
+  + Add API for and for handling unshare() to manipulate
+    (otherwise) read-only sysroot
+  + small memory leak fixes.
+  + retry HTTP requests after receiving HTTP 500 errors
+  + avoid rebuilding SELinux policy when creating a first
+    deployment
+
+- Update to version 2022.6:
+  + Finalize-staged now better supports automounted partitions and
+    skips waiting for termination signal.
+  + A file descriptor leak has been fixed in the commit logic.
+  + Add basic support for handling overlayfs whiteouts on checkout
+    through a new --process-passthrough-whiteouts flag.
+  + Ostree rev-parse command gained a new --single flag to better
+    support repositories containing exactly one commit.
+- Drop ostree-glibc_2.36.patch: Fixed upstream.
+
+- Use curl as http backend, stop depending on soup2:
+  Drop pkgconfig(libsoup-2.4) and add pkgconfig(libcurl)
+  BuildRequires, and pass with-curl=yes and --with-soup=no to
+  configure.
+
+- fix build with glibc 2.36 (boo#1202300) ostree-glibc_2.36.patch
+
+- update to 2022.5:
+  + Greatly improved performance for ostree prune on large repositories
+  + Support for in-place kargs changes
+  + includes a fix for ed25519: Invalid out of bound reads
+    Did not affect previous openSUSE packages [boo#1201800]
+- includes changes from 2022.4:
+  + A new repository option bls-append-except-default intended to
+    help with enabling GRUB password locking
+  + Further fixes for s390x SE
+  + Several API additions and fixes to the Rust bindings
+- includes changes from 2022.3:
+  + GLib requirement to 2.66
+  + documentation for using IMA with ostree
+  + A few static analyzer fixes
+  + refcounting fix in OstreeRepoAutoTransaction
+  + close longstanding conflict between ostree and per-machine
+    SELinux policy customizations
+  + ostree learned how to use bubblewrap to create a container
+    targeting the pending deployment to re-build the policy if
+    necessary
+- includes changes from 2022.2:
+  + improve reliability of pulls with static deltas
+  + new ostree prune --commit-only
+- includes changes from 2022.1:
+  + add transparent support for external sub-commands on the ostree
+    binary. Custom binaries present in PATH in the form of
+    ostree-<subcmd> will be now used as a fallback for sub-
+    commands that are not natively implemented.
+  + address some static analysis warnings
+  + The git submodule for bsdiff has been updated to latest
+    upstream revision, picking up additional bound-checks and
+    fixing CVE-2014-9862 boo#1201770
+- enable ed25519 support with libsodium, introduced with 2020.4
+- switch to upstream tarball
+
+- fix packaging warnings from missing systemd service macros
+  for pre/post/preun/postun scripts for ostree-finalize-staged
+
+- fix incorrect preun scriptlet leading to ostree-remount.service
+  message upon package removal boo#1036208
libvirt
+- Update to libvirt 9.0.0
+  - jsc#PED-620
+  - Many incremental improvements and bug fixes, see
+    https://libvirt.org/news.html#v9-0-0-2023-01-16
+  - Added patches:
+    ef482951-apparmor-Allow-umount-dev.patch,
+    d6a8b9ee-qemu-Fix-managed-no-when-creating-ethdev.patch
+
+- Fix lxc container initialization with systemd and hybrid cgroups
+  suse-fix-lxc-container-init.patch
+  boo#1183247
+
man-pages-ja
+- Update to release 20220815
+  * Improved manual pages
+
manpages-l10n
+- Update to version 4.17.0:
+  * Updated many translations.
+  * Swedish is now actively maintained.
+  * New language: Russian.
+
mlocate
+- Pass "--shell=/bin/sh" to "su" when running the "updatedb"
+  command so that we don't depend on the "${RUN_UPDATEDB_AS}"
+  user's login shell. Since that user is "nobody" by default, the
+  login shell will oftentimes be "/bin/false". [jsc#PED-1717]
+
mozilla-nss
+- Add upstream patch nss-fix-bmo1774654.patch to fix CVE-2022-3479
+  (bsc#1204272)
+
+- update to NSS 3.79.3 (bsc#1207038)
+  * Bug 1803453 - Set CKA_NSS_SERVER_DISTRUST_AFTER and
+    CKA_NSS_EMAIL_DISTRUST_AFTER for 3 TrustCor Root Certificates
+    (CVE-2022-23491)
+
nvme-cli
+- Add %check section in spec file to run unit tests
+
+- Update to version 2.2.1+3.gd028407:
+  * Add support for booting from NVMe-oF/TCP according to NVM Express
+  Boot Specification v1.0 (jsc#PED-1449)
+  * Add support for "nvme show-nbft" and "nvme connect-nbft" subcommands
+
open-iscsi
+- Updated SPEC file dependencies for libopeniscsiusr to avoid
+  conflicting package installation.
+
+- Moving DB files from /etc/iscsi/* to /var/lib/iscsi/* for
+  SLE-15-SP5 and forward, as is done in Tumbleweed.
+- Added /etc/iscsi/README.DB-files-moved, and added SPEC file
+  changes to support this, including a post-install script to
+  move the DB files, only installed if DB files are moved.
+- Renamed shared library from libopeniscsiusr0_2_0 to
+  libopeniscsiusr0, to correctly match SONAME in library.
+
+- Updated to latest upstream. Changes:
+  * iscsid/iscsiuio: fix OOM adjustment (github issue #377)
+
+- Update to upstream version 2.1.8, which includes some bug fixes,
+  and adds the ability to build using meson. The SPEC file was
+  updated to use meson.
+  Also, some files have moved:
+  * the "lock" file has moved from /etc/iscsi to /var/lock/iscsi
+  * the "database files" have moved from /etc/iscsi to
+    /var/lib/iscsi
+
openblas:pthreads
+- Fix aarch64 builds with GCC < 9 (i.e. Leap/SLE 15.x), disable
+  NEOVERSEN2 target. See gh#xianyi/OpenBLAS#3874.
+
+- Update to v0.3.21:
+  * general:
+  - Updated the included LAPACK to Reference-LAPACK release 3.10.1
+  - when no Fortran compiler is available, OpenBLAS builds will now automatically
+  - function LAPACKE_lsame is now annotated with the GCC attribute "const" to aid static analyzers
+  - added USE_TLS to the list of options reported by the openblas_get_config() function
+  - added SYMBOLPREFIX/SYMBOLSUFFIX handling for LAPACK 3.10.0 functions added in 0.3.20
+  - reverted OpenMP threadpool behaviour in the exec_blas call to its state before 0.3.11, that is
+    the threadpool will no longer grow or shrink on demand as the overhead for this is too big at least with
+    GNU OpenMP. The adaptive behaviour introduced in 0.3.11 can still be requested at runtime by setting
+    the environment variable OMP_ADAPTIVE
+  - worked around spurious STFSM/CTFSM errors reported by the LAPACK testsuite
+  * x86_64:
+  - fixed determination of compiler support for AVX512 and removed the 0.3.19
+  - workaround for building SKYLAKEX kernels on Sandybridge hardware
+  - fixed compilation for the SKYLAKEX target with gcc 6
+  - fixed compilation of the SkyLakeX small matrix GEMM kernels with LLVM or ICC
+  - added support for the Zhaoxin/Centaur KH40000 cpu
+  - fixed a potential crash in the ZSYMV kernel used for all targets except generic
+  * POWER:
+  - worked around an overflow error in the POWER6 DNRM2 kernel
+  - fixed compilation on PPC440
+  - fixed a performance regression in the level1 BLAS on POWER10
+  - fixed the POWER10 ZGEMM kernel
+  - fixed singlethreaded builds for POWER10
+  - fixed compilation of the POWER10 DGEMV kernel with older gcc versions
+  - enabled compilation of the BFLOAT16 kernels by default
+  - enabled the small matrix kernels by default for DYNAMIC_ARCH builds
+  - added a workaround for a miscompilation of the CDOT and ZDOT kernels by GCC 12
+- Obsolete:
+  * Define-sbgemm_r-to-fix-DYNAMIC_ARCH-builds.patch
+  * Remove-extraneous-and-wrong-definition-of-sbgemm_r-on-x86_64.patch
+  * Do-not-include-symbols-defined-in-driver-others-parameter.c-in-DYNAMIC_BUILD.patch
+  * Utilize-compiler-AVX512-capability-info-from-c_check-when-building-getarch.patch
+  * Revert-AVX512-capability-check-from-PR-1980-moved-to-build.patch
+  * Fix-checks-for-AVX512-and-atomics.patch
+  * Use-CC-and-full-command-line-instead-of-hard-coding-gcc-for-AVX512-checking.patch
+- Updated/renamed:
+  * openblas-noexecstack.patch to Link-library-with-z-noexecstack.patch
+  * openblas-s390.patch to Handle-s390-correctly.patch
+- Added (see https://github.com/xianyi/OpenBLAS/issues/3738):
+  * remove-spurious-loops.patch
+  * Use-blasint-for-INTERFACE64-compatibility.patch
+
+- The toolchain and 'make' in TW have been updated to handle parallel
+  makes spawned by gcc (for LTO optimization) properly. Thus, remove
+  restrictions.
+- Disable lto when linking test programs to speeds up building.
+
+- Dynamically generate baselibs.conf for openblas flavors; this
+  will fix the unresolvables down the chain for arpack-ng 32-bit
+  bi-arch packages.
+
-- Build PPC64LE libraries with the lastest gcc available to
+- Build PPC64LE libraries with the latest gcc available to
pipewire
+- Add patch from upstream to avoid division by 0 and other issues
+  with invalid values (glfo#pipewire/pipewire#2953):
+  * 0001-alsa-guard-against-some-invalid-values.patch
+- Add patch from upstream to fix causing an overflow resulting in
+  choppy sound in some cases (glfo#pipewire/pipewire#2680):
+  * 0001-spa-Fix-audioconvert-overflow-when-scaling.patch
+
+- Add patch from upstream to fix a crash on arm:
+  * 0001-cpu-arm-Fix-incorrect-free.patch
+
+- Update to version 0.3.64:
+  * Highlights
+  - Clear old buffer memory on ports to fix some SIGBUS errors.
+  - It is now possible to assign custom port names to the ports
+    from an adapter. This feature is helpful to those who use a
+    multichannel interface with long-term connections. This way
+    they can label each port with its designation, such as an
+    instrument name or anything else to be displayed in a
+    patchbay or DAW.
+  - Fix some issues with node suspend and quantum and rate
+    calculations.
+  - Fix some regressions in pulse-tunnel and RTP-source adaptive
+    resampling that could cause synchronization problems.
+  - UCM devices now also have a Pro Audio profile.
+  - NODE_TARGET (with the object.id) is now deprecated, use
+    TARGET_OBJECT (with the object.serial, which is not reused
+    and can avoid races).
+  * PipeWire
+  - Clear all peer input port buffers when suspending. This fixes
+    some SIGBUS errors when some plugins were using old memory.
+    (glfo#pipewire/pipewire#2914)
+  - Fix a case where nodes that were not supposed to be
+    suspended, were kept suspended on a rate change.
+    (glfo#pipewire/pipewire#2929)
+  - Fix an error in the quantum and rate calculations that could
+    cause nodes to run with wrong quantum and rates when multiple
+    rates were allowed. (glfo#pipewire/pipewire#2925)
+  * Tools
+  - pw-dump will now sort dictionaries to make it easier to
+    compare different outputs.
+  - Improve output of pw-reserve.
+  - pw-loopback uses TARGET_OBJECT so you will need to use the
+    serial id (or better the name) as the target instead of the
+    object id.
+  * modules
+  - The filter-chain modules has seen some cleanups, refactoring
+    and optimizations in the various DSP functions.
+  - The ROC module now supports setting a custom samplerate.
+  - ROC 0.2.X is now required.
+  - The pulse tunnel and RTP source were not updating the rate
+    field correctly which could cause synchronization problems.
+    (glfo#pipewire/pipewire#2891)
+  - The filter-chain now supports an arbitrary number of control
+    properties. (glfo#pipewire/pipewire#2933)
+  - It is now possible to assign custom port names to the ports
+    from an adapter with the PW_KEY_NODE_CHANNELNAMES.
+  - Support was added for capture and playback props in
+    echo-cancel. (glfo#pipewire/pipewire#2939)
+  * SPA
+  - The ACP code now has an option to set the probe samplerate.
+    (glfo#pipewire/pipewire#1599)
+  - UCM devices now also have a Pro Audio profile.
+  - Filtering of Step ranges is now implemented.
+  * Pulse-Server
+  - The channel-map is now set correctly on the echo-cancel
+    module.
+  - source_master and sink_master are now correctly handled in
+    module echo-cancel.
+  - Fix a regression in DRAIN where resuming after a DRAIN would
+    fail. This caused problems for espeak.
+    (glfo#pipewire/pipewire#2928)
+  - TARGET_OBJECT is now used to make it possible to use the
+    indexes as a target.
+  - ladspa-source and remap-source can now also link to monitors.
+  * ALSA
+  - The ALSA plugin now handles the target.object correctly when
+    set to -1. (glfo#pipewire/pipewire#2893)
+  * V4L2
+  - The v4l2 replacement library now also follows symlinks.
+  - Support for getting and setting controls was added.
+  - Support for G_PARM was added.
+  - The environment variable PIPEWIRE_V4L2_TARGET can be used to
+    force an application onto a specific camera.
+  * Bluetooth
+  - Fix compilation without ldac_abr.
+  - Fix a missing brace in CIND reply. This could cause some
+    devices to fail.
+  - Fix configuration of the initial latency.
+  * GStreamer
+  - The device provider now supports setting an fd so that it can
+    connect to PipeWire sessions from the portal.
+  - DMABuf support was re-enabled in gstpipewiresrc.
+- Rebase reduce-meson-dependency.patch.
+- Remove patches from upstream
+  * 0001-pulse-server-add-channel-map-in-echo-cancel-module.patch
+  * 0003-bluez5-backend-native-fix-missing-brace-in-CIND-reply.patch
+  * 0001-alsa-dont-set--1-as-node.target.patch
+  * 0001-modules-fix-rate-update.patch
+  * 0001-alsa-fix-memory-leak-of-properties.patch
+  * 0001-module-rt-fix-warning-when-xdg-desktop-portal-isnt-running.patch
+  * 0001-midifile-error-won-invalid-track-size.patch
+  * 0001-impl-node-move-2-state-variables-to-private.patch
+  * 0001-context-rename-a-method.patch
+  * 0002-impl-node-restore-running-state-after-reconfigure.patch
+  * 0001-context-keep-per-node-quantum-and-rate-settings.patch
+  * 0001-fix-use_buffers-checks.patch
+  * 0001-pulse-server-clear-the-drained-state-correctly.patch
+
+- Add several patches from upstream to fix several issues
+  (glfo#pipewire/pipewire#2925, glfo#pipewire/pipewire#2928,
+  glfo#pipewire/pipewire#2929):
+  * 0001-module-rt-fix-warning-when-xdg-desktop-portal-isnt-running.patch
+  * 0001-midifile-error-won-invalid-track-size.patch
+  * 0001-impl-node-move-2-state-variables-to-private.patch
+  * 0001-context-rename-a-method.patch
+  * 0002-impl-node-restore-running-state-after-reconfigure.patch
+  * 0001-context-keep-per-node-quantum-and-rate-settings.patch
+  * 0001-fix-use_buffers-checks.patch
+  * 0001-pulse-server-clear-the-drained-state-correctly.patch
+
+- Disable ffmpeg support, only needed for pw-play and pw-record.
+  Break a circular dependency with ffmpeg-5. Do this via disabling
+  pkgconfig(libavcodec), pkgconfig(libavfilter) and
+  pkgconfig(libavformat) BuildRequires as well as passing
+  ffmpeg=disabled to meson.
+
+- Add patch from upstream to fix pulse tunnel getting out of
+  sync/overruns (glfo#pipewire/pipewire#2891):
+  * 0001-modules-fix-rate-update.patch
+- Add patch from upstream to fix memory leak of properties:
+  * 0001-alsa-fix-memory-leak-of-properties.patch
+
+- Ship only X11 bell module in module-x11 sub-package
+
+- Split the X11 bell implementation into a separate package
+  (overlaps with implementations in e.g. Marco).
+- Add patch from upstream to fix a Bluetooth regression
+  (glfo#pipewire/pipewire#2898):
+  * 0003-bluez5-backend-native-fix-missing-brace-in-CIND-reply.patch
+
+- Add patch from upstream to remember last routing after a reboot
+  (glfo#pipewire/pipewire#2893):
+  * 0001-alsa-dont-set--1-as-node.target.patch
+
+- Update to version 0.3.63:
+  * Highlights
+  - Fix a critical bug that causes audio distortion in some cases
+    when using AVX2.
+  - Fix a crash in mpv caused by deinit of PipeWire.
+  - Resample the convolver IR to match the graph samplerate for
+    better results.
+  - Many more small bugfixes and improvements.
+  * PipeWire
+  - Fix a segfault in the PipeWire deinit code triggered by mpv
+    in some cases.
+  - Fix docs about SPA_PLUGIN_DIR.
+  - Always dlclose by default (even under valgrind). Add an
+    option with PIPEWIRE_DLCLOSE to select alternative behaviour.
+  - Improve PIPEWIRE_DEBUG category handling.
+  * modules
+  - Resample the IR for the convolver when the IR samplerate and
+    graph rate don't match.
+  * SPA
+  - Handle spurious reads from timerfd gracefully.
+  - Fix potential stack-use-after-scope when starting Audacity.
+  - Fix distorted audio when using AVX2.
+  - Remove fallback to default channel map in channelmix.
+  - Improve sorting of MIDI events, use the same order as Ardour.
+  - Enable LFE downmixing by default.
+  - Make IEC958/AC3 and IEC958/DTS work better by enforcing a
+    fixed minimal buffering for the encoder to avoid stuttering.
+  * Pulse-Server
+  - Add a new pulse.cmd config section to execute pulse commands,
+    currently only for loading modules. This removes the
+    dependency on pactl.
+  - Improve debug of messages.
+- Rebase reduce-meson-dependency.patch.
+- Add patch to add channel-map in the echo-cancel module:
+  * 0001-pulse-server-add-channel-map-in-echo-cancel-module.patch
+
+- Refresh reduce-meson-dependency.patch
+
+- Update to version 0.3.62:
+  * Highlights
+  - A regression in screensharing was fixed. It was caused by a race when
+    activating links and driver nodes.
+  - Video transform metadata was added so that cameras and screen sharing
+    can report the video orientation and transformations.
+  - Support for the PulseAudio module-gsettings was added to make paprefs
+    work.
+  - Support for bluetooth offloading was added. This allows for the bluetooth
+    reception, decoding and playback to happen completely in hardware.
+    This also requires some support in WirePlumber.
+  - Many bugfixes and improvements.
+  * PipeWire
+  - More work on stopping nodes in a more controlled way.
+  - Fix a race in starting nodes and drivers. In some cases the driver
+    node would already be started while the link to the peer node was not
+    ready yet. This caused regressions in screen sharing. The driver is
+    now only started after all the followers and links completed.
+  - Fix a case where a slow capture stream would not recycle buffers
+    anymore and stall. (glfo#pipewire/pipewire#2874)
+  - Fix a subtle bug in pw_loop_invoke that could cause callbacks to be
+    delayed and cause crashes in some cases.
+  - Fix a case where IPC was done from the data-thread and could cause
+    crashes.
+  * Tools
+  - Silence some expected errors in the pw-top output.
+  * modules
+  - The filter-chain has seen some optimizations in the copy plugin and
+    the convolver.
+  - The zeroconf plugin will now only unpublish services from the server
+    that was removed.
+  - Fix a potential crash when stopping pw-loopback.
+  - Some harmless errors were turned into info messages.
+  - Fix some cases where pw_stream methods were called from the data-thread
+    that could cause segfaults. (glfo#pipewire/pipewire#2633)
+  * SPA
+  - There is now a video transform metadata that indicates how a video
+    frame was transformed (rotated/flipped). libcamera and the GStreamer
+    elements now have support for this metadata.
+  - The SPA volume plugin is now disabled from the default build.
+  - Handle missing control info in libcamera.
+  - Handle errors from loop better, don't call the callbacks on errors.
+  - Somewhat improve performance in some audioconvert AVX2 code for format
+    conversion.
+  - Fix PortConfig and EnumPortConfig params in audioconvert and
+    audioadapter to reflect what is actually going on instead of using
+    hardcoded values.
+  - Pass ignore-dB property correctly in all cases.
+  - Probing is now done in 48KHz again. (glfo#pipewire/pipewire#2857)
+  * Pulse-server
+  - IPv4 addresses are now added first to the list and exposed first with
+    zeroconf discover.
+  - module-gsettings was added to make paprefs work.
+  - The pulse.idle.timeout option was disabled by default and only enabled
+    for selected apps (speech-dispatcher) because it caused some problems
+    for other apps. (glfo#pipewire/pipewire#2880)
+  * JACK
+  - Only process valid ports. Could fix some crashes. (glfo#pipewire/pipewire#2863)
+  * Bluetooth
+  - Support was added for offloading bluetooth handling. Some hardware can
+    receive, decode and play the bluetooth audio directly in hardware.
+
+- Drop dependency on SDL2; this leads to a build cycle with SDL2
+  itself, and is only needed for pipewire example code anyway.
+
+- Update to version 0.3.61:
+  * Highlights
+  - Fix a bug in audioadapter that could cause crashes when
+    switching bluetooth profiles.
+  - Fix sound in QEMU, deadbeef and openal again.
+  - libcamera plugin fixes, dynamic add and remove should now
+    work with the next wireplumber version.
+  - Fix a regression in pw-midiplay where the first buffer would
+    not play and some events would be missing.
+  - The network module now doesn't export other network sources
+    anymore.
+  - pulse-server now detects clients that keep underrunning for a
+    long time and will pause them to save power.
+  - Many more bugfixes and improvements.
+  * PipeWire
+  - Optimise away some useless graph recalculations.
+  - Increase alternative sample rates from 16 to 32.
+  - Silence some module loading errors when the error can be
+    ignored.
+  - Fix initial buffer requested size for pw-stream when
+    operating in async mode. This also indirectly fixes the first
+    buffer in pw-midiplay.
+  * Modules
+  - Set the network property on pulse-tunnel streams so that they
+    are not exported anymore.
+  - Filter-chain has optimized mix functions now.
+  * SPA
+  - Handle some errors in libcamera better.
+  - Fix libcamera remove events. Fix the id allocation for
+    devices.
+  - Fix a bug in audioadapter where it would not renegotiate
+    after a port reconfiguration, leading to crashes, especially
+    when automatically switching profiles in bluetooth.
+  - Do ALSA probing in 44100Hz again. Some devices seem to fail
+    otherwise for some unknown reason.
+  - Force playback start when the ALSA buffer is full. This fixes
+    sound in QEMU.
+  - Support Digital 5.1 AC3 for Asus Xonar SE.
+  - Improve format renegotiation in audioadapter. This makes the
+    ALSA plugin work again for deadbeef.
+  - Fix latency reporting on adapter DSP ports.
+  * pulse-server
+  - Fix a bug where openal based applications would hang.
+  - Improve zeroconf publish. Only publish on the address of the
+    first running server. This avoids duplicate entries for IPv4
+    and IPv6.
+    Add support for republish entries when new servers are
+    started.
+  - Add a pulse.idle.timeout option (default to 5 seconds) to
+    pause streams that have been underrunning for this amount of
+    time. Badly behaving clients will then not keep the graph and
+    device busy so that devices can be suspended to save battery.
+    This should give better default behaviour with
+    speech-dispatcher.
+  * JACK
+  - Add an option to configure the filter character.
+  - Fix connect_callbacks. It was only called once for output
+    ports.
+  - Add option to set node.passive on jack clients. Make some
+    quirks for qsynth to make it suspend and fade out better.
+- Rebase reduce-meson-dependency.patch.
+- Drop patches already included upstream:
+  * 0001-audioadapter-perform-setup-again-after-a-PortConfig.patch
+  * 0001-pulse-server-also-advance-read-pointer-in-underrun.patch
+  * 0002-audioconvert-redo-setup-when-format-changes.patch
+  * 0003-acp-do-probing-in-44100Hz-again.patch
+  * 0004-alsa-force-playback-start-when-buffer-is-full.patch
+
+- Add patch from upstream that fixes audio in qemu where the buffer
+  is very small (glfo#pipewire/pipewire#2830):
+  * 0004-alsa-force-playback-start-when-buffer-is-full.patch
+
+- Add more patches from upstream to perform setup in more cases:
+  * 0001-audioadapter-perform-setup-again-after-a-PortConfig.patch
+  * 0002-audioconvert-redo-setup-when-format-changes.patch
+- Renumber patch 0001-acp-do-probing-in-44100Hz-again.patch to
+  * 0003-acp-do-probing-in-44100Hz-again.patch
+
+- Add patch from upstream to fix some devices that don't seem to
+  work in 48000Hz:
+  * 0001-acp-do-probing-in-44100Hz-again.patch
+- Require pulseaudio-utils from pipewire-pulseaudio to have pactl
+  available to load modules.
+
+- Update to version 0.3.60:
+  * Highlights
+  - The filter-chain now handles errors better and has fixes for
+    many crasher bugs.
+  - A new RTP module was added with a sender and receiver.
+    It uses SAP to announce and consume RTP streams and is
+    compatible with the PulseAudio RTP modules.
+  - Many small bluetooth improvements and fixes.
+  - The alsa plugin will now only start playback when there is
+    data. This results in better synch and lower latency between
+    capture and playback.
+  - The v4l2 and libcamera plugins have seen a lot of
+    improvements. They support control properties now. Also
+    pw-v4l2 has seen many improvements and mostly passes the
+    v4l2-compliance test now.
+  - Many more bugfixes and improvements.
+  * PipeWire
+  - Code cleanups, compiler warning fixes.
+  - Add some extra checks to avoid scheduling an inactive node.
+  - Rework the sequence of events to start and stop nodes.
+  - Improve param enumeration.
+  - An option was added to give priority to the Buffer params of
+    the consumer. This makes it possible to use the default
+    values of the consumer (instead of the producer) when
+    capturing from a source.
+  - The graph rate selection was improved to pick a rate closest
+    to the requested one (instead of picking the default).
+  * Modules
+  - Fix some crashes in filter-chain.
+  - X11 Bell module will now be loaded by default when available.
+  - A new RTP module was added with a sender and receiver. It
+    uses SAP to announce and consume RTP streams and is
+    compatible with the PulseAudio RTP modules.
+  - Improve RAOP compatibility.
+  - The echo-cancel module now uses the resampler prefill option
+    to align input and output samples without buffering. Better
+    latency control when starting and stopping has been
+    implemented.
+  - The pulse tunnel will now write aligned samples to pulseaudio
+    even when the ringbuffer wraps around. This fixes playback
+    issues with multichannel sinks.
+  - Add a delay option to module-loopback using a ringbuffer.
+  - Implement echo-cancel params.
+  - The filter-chain module has better error reporting.
+  - The LADSPA search path was extended with some more common
+    paths.
+  - The echo-cancel input can now also be a monitor of a sink.
+    This improves compatibility with some proton games that
+    expect a real sink instead of a virtual one.
+  * Tools
+  - Better error reporting in pw-link.
+  - pw-top now also shows IEC958 passthrough formats and
+    JPEG/H264 video formats.
+  - pw-top refreshes the screen faster.
+  - pw-top now prints the state of the node and shows less info
+    for inactive nodes.
+  - pw-dump now uses the new seq field in the spa_param_info to
+    discard old param updates and avoid duplicate params in the
+    output.
+  * Bluetooth
+  - Add ModemManager support in the native backend.
+  - Clean up GetManagedObjects handling.
+  - Handle QoS from the endpoints in the codec.
+  - Increase the socket buffer to have more control over the rate
+    and QoS.
+  - Simplify the packet flushing code.
+  - Stop processing nodes before destroying them.
+  - Fix timers when a source switches drivers.
+  - Codecs can now share endpoints. This reduces the amount of
+    endpoints and avoids problems with devices that can't handle
+    a large amount of codec endpoints.
+  - Report batery status to UPower for HFP AG.
+  - Fix bitpool increase.
+  * SPA
+  - The audioresampler now avoids clicks and pops between
+    activating and deactivating the adaptive resampler when used
+    by the stream API.
+  - Use default locale to parse float parameters.
+  - The upmix functions now have SSE optimisations.
+  - Avoid recalculating the complete channelmix setup when only
+    the volume changes.
+  - The alsa plugin will now only start playback when there is
+    data. This results in better synch and lower latency between
+    capture and playback.
+  - The ALSA MIDI sequencer will now pull data from the graph
+    even when it did not output anything. Fixes some graph stalls
+    with the sequencer in some cases.
+  - v4l2 and libcamera sources now recycle buffers when nothing
+    is consuming them. This avoids stalling the graph.
+  - libcamera now suggests a more appropriate frame size than the
+    smallest poster frame.
+  - Improve state changes in audioconvert.
+  - A new seq field was added to spa_param_info to keep track of
+    pending param updates.
+  - Support speaker output only on RealTek ALC4080.
+  - The v4l2 source now supports setting controls.
+  - The libcamera plugin now supports enumerating and setting
+    controls.
+  - A new unit test for 6.1 channel mapping was added.
+    More debug info was added to audioconvert for the channel
+    matrix.
+  - Audioconvert will now also upmix a rear-center channel when
+    needed.
+  * pulse-server
+  - Add support for the RTP send and recv modules with the new
+    native RTP module.
+  - Add option to set latency for pulse-tunnel streams and
+    module-zeroconf-discover.
+  - The socket will now be given the same permissions as what
+    pulseaudio did (0777).
+  - Implement module-loopback latency_msec correctly with the new
+    delay parameter.
+  - sysfs.path is now filled with the same data as pulseaudio.
+  - The manager now uses the new seq field in the spa_param_info.
+  - Fix a bug where in some cases the read pointer would get out
+    of synch and cause too large requests.
+  * ALSA
+  - The alsa plugin now reuses the stream in prepare which
+    results in better performance.
+  - Some deadlocks have been fixed in the ALSA plugin.
+  - The ALSA plugin reports more accurate timing information in
+    some cases.
+  * V4l2
+  - The v4l2 compatibility layer has received a lot of updates.
+  - Improved node names and format enumeration.
+  - Support for multiple /dev/videoX devices, each mapped to a
+    unique PipeWire node.
+  - Passes the v4l2-compliance test now with both the v4l2 and
+    libcamera backend in PipeWire.
+  - Improved mmap support for inline buffer memory.
+    This makes it possible to consume PipeWire streams.
+  - Negotiation works more reliably now.
+  * JACK
+  - Implement jack_acquire_real_time_scheduling() and
+    jack_drop_real_time_scheduling() by keeping the thread utils
+    in a global state.
+  - Fix jack_client_thread_id() to return NULL when the client is
+    not active, just like jack1 and jack2.
+  - An option was added to let the jack_set_buffer_size()
+    function update the global metadata. A quirk was added so
+    that jack_bufsize uses this new feature to make the buffer
+    size settings persistent and global, just like jack.
+  - jack_port_register() and jack_port_unregister() can be called
+    on an active client so make this thread safe.
+- Rebase reduce-meson-dependency.patch.
+- Drop patches already included upstream:
+  * 0001-filter-chain-iterate-the-port-correctly.patch
+  * 0002-spa-support-the-speakers-output-only-case-in-report_.patch
+- Add patch to make Telegram playback work again:
+  * 0001-pulse-server-also-advance-read-pointer-in-underrun.patch
+
+- Fix regression with Dell WD15 Dock and others (bsc#1204719):
+  0002-spa-support-the-speakers-output-only-case-in-report_.patch
+
+- Add 0001-filter-chain-iterate-the-port-correctly.patch: Fix
+  filter-chain convolver segfault at start.
+
+- Update to version 0.3.59:
+  * Highlights
+  - Fix possible wrong samplerate in loopback streams after
+    suspend and rate switch.
+  - module-filter-chain can now adapt to the graph samplerate.
+  - Fix some potential stuttering and crackling in pulse-server.
+  - Add Bluetooth LE support. This requires experimental kernel
+    and bluez support.
+  - The ALSA plugin has more options to control the buffer size.
+    This can be used to work around high latency in
+    davinci resolve.
+  - Many bugfixes and improvements.
+  * PipeWire
+  - Add audio capture example with volume meter.
+  - Fix a case where a rate switch would not suspend all the
+    nodes of the driver first. This could cause wrong samplerates
+    in streams.
+  - Fix a case where a node would be Paused while still added to
+    the graph, causing potential crashes.
+  * Modules
+  - module-filter-chain and module-loopback now use the
+    resample.prefill option to avoid buffering extra samples and
+    causing unwanted latency when resampling is activated.
+  - module-filter-chain can now adapt to the graph samplerate.
+  - Improve module-raop to support the ALAC codec as raw PCM.
+  - Improve RTSP parsing to improve compatibility.
+  * Tools
+  - Fix 100% CPU in pw-cli monitor mode.
+  - spa-acp-tool can now be exited with ctrl-D.
+  * SPA
+  - Various libcamera fixes and improvements.
+  - Set stride on audioconvert output buffers.
+  - Make sure we always place the last requested size from the
+    resampler on the buffers in pw-stream.
+  - Add resample.prefill option in the resampler to fill the
+    history with 0 so that we don't have smaller buffers at the
+    start.
+  - Make sure that when an overflow corrupts a POD, that it will
+    always stay corrupted.
+  - Rate limit some ALSA warnings and reduce some unwanted
+    warnings.
+  - Don't recalculate the audioconverter state for each
+    pause/play.
+  - Fix some POD parsing inconsistencies and potential overflows.
+  - Add support for Asus Xonar SE.
+  - Fix Flush command handling. It should not stop playback.
+  - Refactor the peaks function and add some unit tests and
+    optimisations.
+  - The channelmix has an optimized nXm converter and new
+    unit tests.
+  - Normalisation in the channelmixer was fixed.
+  * pulse-server
+  - The requested latency of record streams was reduced to fix
+    some stuttering in Teamspeak.
+  - Tweak the max amount of bytes sent to a client.
+  - Improve maxlength calculations, this fixes some crackling
+    noise with high samplerate and channel counts in some
+    players (audacious).
+  * Bluetooth
+  - Merge Bluetooth LE support.
+  - Make sure we are backward compatible with WirePlumber.
+  - Fix some HFP and HSP AT command parsing.
+  - Use HFP by default over HSP.
+  * ALSA
+  - Increase max number of periods.
+  - The parameters handling was improved. There is now an option
+    to set the buffer-bytes of the ALSA plugin.
+  - PIPEWIRE_ALSA can now be used as an environment variable to
+    restrict the plugin formats and buffer size.
+- Rebase reduce-meson-dependency.patch.
+
+- Update to version 0.3.58:
+  * Highlights
+  - Fix a regression that could cause audio crackling.
+  - Fix a regression in RTKit because rlimit was not set
+    correctly.
+  - JAVA sound applications will now alsa work with the
+    pulseaudio-alsa plugin.
+  - pw-top will now show the negotiated formats of devices
+    and streams.
+  - Fix some potential crashes when starting streams.
+  - The ALSA plugin has had improved timing reporting and poll
+    descriptor handling that should improve compatibility.
+  - Many more improvements and bugfixes.
+  * PipeWire
+  - Avoid scheduling nodes before they are added to the graph.
+    This could avoid some crashes when scheduling nodes that
+    were not completely started yet. (#2677)
+  * Tools
+  - pw-top now also shows the negotiated formats of streams and
+    devices. (#2566)
+  - pw-top prints microseconds as "us" now to avoid unicode
+    problems.
+  * Modules
+  - Fix compilation with newer lv2.
+  - Fix setting realtime priority with RTKit, it was not setting
+    rlimit correctly and RTKit would refuse to change the
+    priority.
+  - Fix some playback problems with RAOP sink. (#2673)
+  - Filter chain will now warn when a non-existing control
+    property is used in the config file. (#2685)
+  - Filter chain can now handle control port names with ":"
+    in the name. (#2685)
+  - The echo-cancel module and interface now has
+    activate/deactivate functions to make it possible for plugins
+    to reset their state.
+  * SPA
+  - Make sure audioconvert uses the given channelmap and channels
+    for the volumes, even when not negotiated yet. This makes it
+    possible to change the volume before the node has been
+    negotiated.
+  - Refactor the peaks resampler. Fix an error in the SSE code.
+  - Fix DSD min/max rates, avoid exposing impossible rates.
+  - Set monitor port buffer size correctly. This could cause some
+    crackling and hickups. (#2677)
+  - Make ALSA sequencer port names unique.
+  * Pulse-server
+  - Rework the capture buffer attributes to better match
+    pulseaudio. This fixes a regression where opening pavucontrol
+    could cause crackling. (#2671)
+  - Implement TRIGGER and PREBUF methods.
+  - Handle clients that send more than the requested amount of
+    data. PipeWire will now also keep this as extra buffered data
+    like PulseAudio. This fixes JAVA sound applications when they
+    are running on top of the PulseAudio ALSA plugin.
+    (#2626,#2674)
+  - Update the requested amount of bytes more like PulseAudio.
+    Fixes stuttering after resume with the GStreamer pulseaudio
+    sink. (#2680)
+  * ALSA Plugin
+  - More debug info was added. The time reporting was improved.
+  - The poll descriptor handling was improved, avoiding some
+    spurious wakeups. (#1697)
+
+- Update to version 0.3.57:
+  * Highlights
+  - Support masking of conf.d/ files.
+  - Use org.freedesktop.portal.Realtime when available. This does
+    the correct PID/TID mappings to make realtime also work from
+    flatpaks.
+  - Fix rate adjustement logic in pulse-tunnel. This would cause
+    increasing delays and hickups when using tunnels.
+  - Add OPUS as a new vendor codec. Add OPUS-A2DP spec.
+    PipeWire can now send and reveive OPUS data over bluetooth.
+  - An AAC decoder was added so that PipeWire can now also
+    function as an A2DP AAC receiver.
+  - Fix some issues where the wrong samplerate was used.
+  - Fix rate match for sources. This fixes an error where
+    follower sources would generate many resync warnings.
+  - Many more bugfixes and improvements.
+  * PipeWire
+  - Support masking of conf.d/ files.
+  - Add some more debug info to memfd.
+  - Improve data-loop invoke method. Also flush pending items.
+  - Add a filter-chain systemd service file than can be used to
+    start custom filters placed in
+    ~/.conf/pipewire/filter-chain.d/
+  - Improve triggered timestamps for remote nodes.
+  - Fix some potential cross compilation problems due to wrong
+    host_machine.
+  - Check return values of pw_getrandom().
+  * Tools
+  - Updates to pw-cli manpages.
+  - Remove the pw-cli dump command. It is mostly implemented as
+    part of wpctl status, pw-dump, pw-link, pw-top and others.
+  - Clean up resource in pw-cat correctly on errors.
+  * Modules
+  - Fix compilation of AVB on big-endian.
+    Enable AVB only on Linux.
+  - Use org.freedesktop.portal.Realtime when available. This does
+    the correct PID/TID mappings to make realtime also work from
+    flatpaks.
+  - Fix compilation of ROC module when headers are missing.
+  - Improve some error cleanup paths in protocol-native. Improve
+    connect and disconnect.
+  - Fix a potential crash in FFT unload in filter-chain.
+  - Implement PIPEWIRE_NOTIFICATION_FD for notification when the
+    socket is ready.
+  - Try to use rtkit if set_nice() fails.
+  - Fix rate adjustement logic in pulse-tunnel. This would cause
+    increasing delays and hickups when using tunnels.
+  - Handle disconnect in pulse-tunnel.
+  * Bluetooth
+  - Add OPUS as a new vendor codec. Add OPUS-A2DP spec.
+    PipeWire can now send and reveive OPUS data over bluetooth.
+  - An AAC decoder was added so that PipeWire can now also
+    function as an A2DP AAC receiver.
+  * SPA
+  - Tweak the resampler window function some more.
+  - Improve format convert performance in some fallback cases.
+  - Fix rounding in format conversion on ARM NEON.
+  - Fix libcamera build error.
+  - Fix some issues where the wrong samplerate was used.
+  - Don't wait for more samples that can fit in the ringbuffer
+    in ALSA.
+  - Improve buffer size handling in audioconvert, scale the
+    buffers based on the rate conversion and make things work
+    with really large rate conversions as well.
+  - Add more and better debug for ALSA devices.
+  - Improve channel mix: Filter FC and LFE when copying from a
+    different layout. Implement STEREO from FC. Avoid generating
+    REAR from FC in PSD mode.
+  - Fix rate match for sources. This fixes an error where
+    follower sources would generate many resynch warnings.
+  - Improve ALSA format negotiation. If the ALSA node is not
+    running and there was a previously configured format, close
+    and reopen the device to enumerate and accept all possible
+    formats again.
+  * ALSA
+  - The alsa plugin will now also save the volumes set with the
+    control API. This saves the volumes set with alsa-mixer, for
+    example.
+  * Pulse-server
+  - Flatpak apps with devices=all (Zoom) will now be granted
+    Manager permissions.
+  - Small tweaks to the amount of data sent to clients to work
+    around an issue in freerdp.
+  * JACK
+  - Clean up the transport correctly when closing a client.
+  - Match context properties in addition to node properties for
+    the jack client rules.
+  - Make sure to return an error when disconnected from the
+    server.
+  - Fix thread cast problem in jack_client_thread_id().
+  - Increase jack_client_name_size() length and make sure we have
+    space for the \0 byte.
+  - JACK clients from the same application will be added to the
+    same group so that they share the quantum and rate.
+- Rebase reduce-meson-dependency.patch.
+- Drop patches already included upstream:
+  * 0001-avb-fix-compilation-on-big-endian.patch
+  * 0002-avb-fix-compilation-on-big-endian.patch
+  * 0003-avb-fix-compilation-on-big-endian.patch
+
+- Recommend pipewire-alsa (instead of alsa-plugins-pulse) from
+  pipewire-pulseaudio (boo#1201409)
+
+- Update to version 0.3.56:
+  * Highlights
+  - A critical bug that could crash JACK applications was fixed.
+  - Some more regressions in audiomixer were fixed. This should
+    fix crackling and stuttering in some cases as well as some
+    channel mapping regressions.
+  - A bug in the alsa plugin was fixed that could cause
+    stuttering in VMs.
+  - Bluetooth sources should have improved latency and rate
+    control.
+  - Many more bugfixes and improvements.
+  * Modules
+  - An experimental AVB module was added. It can expose PipeWire
+    as an AVB entity and initiate (broken) streaming between
+    entities.
+  - module-loopback now handles the cases where the input and
+    output channels are different without crashing or producing
+    silence.
+  - The filter-chain module now correctly calculates the output
+    size without crashing in some cases. It also skips invalid
+    ports instead of crashing.
+  - Handle and report pthread errors better.
+  * SPA
+  - The resampler qualities were tweaked a little.
+  - A bug that would sometimes cut off the last part of a buffer
+    was fixed in the alsa plugin. This could cause broken audio
+    in VMs.
+  - Access to the alsa mixer and devices is now checked more
+    thoroughly.
+  - The spa-resample tool can now also handle large downsampling
+    rates without crashing.
+  - Audioconverter now uses rounding for float to int
+    conversions, which reduces distortions. Compilation of the C
+    subroutines was separated and uses its own optimisation flags
+    now.
+  - Noise shaping was improved in audioconvert. A new Wannamaker
+    3 tap shaper was added.
+  - Audioconvert now uses a pattern for generating keep alive
+    noise. This should have much less energy and be even more
+    inaudible.
+  - A channel mapping bug was fixed in audioconvert.
+  - The dsp audio mixer would sometimes not mix enough and cause
+    dropouts.
+  * JACK
+  - A critical bug in the mixer was fixed. It would cause most
+    JACK applications to segfault at start-up.
+  * Bluetooth
+  - A new rate control algorithm was implemented for the sources.
+  - The media role on HSP/HFP streams is now fixed.
+  * Pulse Server
+  - Add the resampler delay to delay reporting as well.
+- Rebase reduce-meson-dependency.patch.
+- Drop patches already included upstream:
+  * 0001-jack-only-mix-when-we-have-input-to-mix.patch
+  * 0002-spa-alsa-udev-Check-accessibility-of-pcm-devices-as-well.patch
+- Add patches from upstream to fix compilation on big endian:
+  * 0001-avb-fix-compilation-on-big-endian.patch
+  * 0002-avb-fix-compilation-on-big-endian.patch
+  * 0003-avb-fix-compilation-on-big-endian.patch
+
+- Add patch to fix audio after tty switching (boo#1201349):
+  * 0002-spa-alsa-udev-Check-accessibility-of-pcm-devices-as-well.patch
+
+- Update to version 0.3.55:
+  * Highlights
+  - Fix some more critical bugs in the new audioconvert and the
+    queueing in pw-stream that causes stuttering and hickups.
+  - HFP hardware volumes are now saved and restored.
+  - Format conversions and mixing was improved.
+  - Small bug fixes and improvements.
+  * PipeWire
+  - The queueing in pw-stream was improved with support for
+    buffer prefetch in asynchronous mode.
+  - Add a pw-filter unit test.
+  * tools
+  - pw-midiplay should now work again after improvements in
+    pw-stream.
+  * modules
+  - The RAOP module was improved to support auth_setup.
+  - The RAOP module should now handle timing packets better.
+  - Add some more filter-chain examples.
+  - The filter-chain now has a separate config file with the
+    boilerplate settings. The examples are now just config
+    snippets that can be dropped in .conf.d/ directories, such as
+    the filter-chain.conf.d/ one.
+  - Start suggesting to use target.object instead of node.target
+    in docs and examples.
+  * SPA
+  - Use the cosh window again for the resampler. It should now
+    give better resampler quality.
+  - Rework the mixer functions. They were rewritten for higher
+    precision and better performance. Add unit tests and
+    benchmarks.
+  - Improve format conversion for 32bits for avoid errors in
+    clang because of undefined behaviour at extreme ranges.
+  - Fix a bug in audioconvert where it would not consume the
+    right amount of samples when the resampler was disabled.
+    This could cause skipping and hickups.
+  - Fix bug in audioconvert where it would try to convert the
+    input samples multiple times, causing strange artefacts when
+    upmixing.
+  - Be more strict about valid JSON floats.
+  - device.vendor.id and device.product.id should now always show
+    up in 0xXXXX format and should not be converted to floats in
+    pw-dump anymore.
+  - Add triangular dither, add unit tests for noise generation,
+    add some more optimisations.
+  * Bluetooth
+  - HFP and A2DP now expose different routes and thus can have
+    different volumes.
+  - HW Volumes for HFP are now synchronised better.
+    Volume changes from HW buttons are now also saved.
+- Rebase reduce-meson-dependency.patch.
+- Add 0001-jack-only-mix-when-we-have-input-to-mix.patch: Fix an
+  Ardour start-up crash.
+
+- Update to version 0.3.54:
+  * Highlights
+  - Some critical bugs in the new audioconvert were fixed. The
+    old adapter had internal buffering that was abused in some
+    places.
+  - The bluetooth sources were rewritten using a ringbuffer to
+    make them more reliable to jitter and remove old audioconvert
+    behaviour.
+  - Many improvements to the audio converter.
+  - Native DSD128 and up is now supported by pw-dsdplay.
+  * tools
+  - Support DSD128 to DSD512 as well by scaling the amount of
+    samples to read per time slice.
+  * SPA
+  - Format conversion is now generated with macros to remove
+    duplication of code.
+  - 24bits conversions were rewritten to use the generic
+    conversion functions.
+  - Temporary buffers in audioconvert are now made large enough
+    in all cases.
+  - Fix draining in audioconvert. This fixes speaker-test.
+  - Fix the channel remapping.
+  - Audio conversion constants were tweaked to handle the maximum
+    ranges and provide lossless conversion between 24bits and
+    floats.
+  - Vector code and C code are aligned and the unit tests are
+    activated again. A new lossless conversion test was added.
+  - Fix an underrun case where the adapter would not ask for more
+    data.
+  - Fix PROP_INFO for audioconvert.
+  - Use the blackman window again for the resampler, the cosh
+    window has some bugs that can cause distortion in some cases.
+  - Add more unit tests for audioconvert. Add end-to-end
+    conversion tests.
+  - Don't leak memory in format converter.
+  * pulse-server
+  - Card properties are now also added to sinks and sources,
+    just like in pulseaudio.
+  - Increase the maxlength size to at least 4 times the fragsize
+    to avoid xruns.
+  - Fix a race when setting default devices.
+  * Bluetooth
+  - The source was rewritten to use a ringbuffer. This avoids
+    regressions caused by audioconvert.
+- Drop patches already included upstream:
+  * 0001-audioconvert-ensure-temp-buffers-are-large-enough.patch
+- Rebase reduce-meson-dependency.patch.
+
+- Add a patch from upstream to fix segmentation faults in MPV:
+  * 0001-audioconvert-ensure-temp-buffers-are-large-enough.patch
+
+- Update to version 0.3.53:
+  * Highlights
+  - The 44.1KHz samplerate was removed again from the defaults,
+    it caused all kinds of problems with various hardware.
+  - The ALSA plugin should now be able to deal with unsupported
+    samplerates and fall back to the nearest supported one.
+  - The audioconvert plugin was rewritten to be more maintainable
+    and quicker. It also gained support for control ports and
+    dithering with optional noise shaping.
+  - An impossible buffering situation is avoided in pulse-server
+    that would cause some applications (sunshine, ...) to
+    stutter.
+  * PipeWire
+  - 44.1KHz was removed from the allowed rates again. It caused
+    all kinds of regressions due to driver bugs and timing issues
+    on HDMI.
+  * modules
+  - filter-chain now does some more error checking and reporting
+    to avoid some crashes.
+  - filter-chain now supports more channel layouts for input and
+    output that does not need to match the plugin layout.
+  - Format parsing is now more consistent in the modules.
+  * Tools
+  - pw-cli can now also work without readline support.
+  - pw-cat can now also read multichannel ulaw/alaw/u8/s8.
+  * SPA
+  - The audioconvert plugin was rewritten. This should make it
+    more maintainable. It also fixed some issues such as CPU
+    spikes in some cases and crashes in others. The old plugins
+    were removed, for a code reduction of some 6000 lines.
+  - The audioconvert plugin now supports control ports, which can
+    be enabled on nodes in the session manager. This makes it
+    possible to control audioconvert properties using timed
+    events or midi.
+  - NoteOn 0-velocity MIDI events are no longer filtered out.
+    This is a valid event, nodes that can't deal with it should
+    fix it up themselves. The JACK layer still filters out these
+    events by default but this can now be configured with a
+    per-client property.
+  - The running status on midi events is now disabled to match
+    what JACK does.
+  - The ALSA plugin will now deal with driver bugs when a driver
+    announces support for a samplerate but then refuses to use it
+    later.
+  - The ALSA plugin has been optimized a little for sample IO.
+  - V4L2 now doesn't error when there are no controls.
+  - Error handling was improved in the audio converter.
+  - The audioconvert plugin now supports rectangular dithering
+    and noise shaping.
+  - The audioconvert plugin can now insert additional inaudible
+    noise that can be used to keep some amplifiers alive.
+  - The audioconvert format conversion was changed so that it now
+    produces the full 32 bits range in the C fallback conversion
+    code as well.
+  - The resampler window function was changed to a cosh() window
+    function.
+  - Vendor and device id are now in hex.
+  * pulse-server
+  - Tweak the record buffer attributes some more and make sure
+    we don't end up in impossible buffering situations.
+    Fixes an issue with distorted sound in sunshine.
+  - Fix a potential crash when updating the client property list.
+  - Some properties on cards were aligned with pulseaudio.
+- Drop patches already included upstream:
+  * 0001-settings-remove-44.1KHz-from-allowed-rates-again.patch
+- Rebase reduce-meson-dependency.patch.
+
+- Add patch from upstream to remove 44.1kHz from allowed rates.
+  This reverts the new behaviour in 0.3.52 which is causing
+  problems to too many people (boo#1200760):
+  * 0001-settings-remove-44.1KHz-from-allowed-rates-again.patch
+
+- Update to version 0.3.52:
+  * Highlights
+  - Add 44.1KHz to allowed samplerates. The server can now switch
+    by default between 48KHz and 44.1KHz.
+  - Streams now allocate less resources.
+  - Fix some bugs that could make the server crash.
+  - Bluetooth now supports the LC3plus vendor codec.
+  - Many bugfixes and improvements.
+  * PipeWire
+  - Add 44.1KHz to allowed samplerates.
+  - Avoid setting the locale.
+  - Avoid use-after-free when destroying a node from
+    spa-node-factory.
+  - Avoid using reallocarray when not available.
+  - Set port alias is not otherwise set.
+  * Modules
+  - Improve filter-chain parsing and error reporting. Handle
+    empty nodes.
+  - Handle destroy of globals and factory in most modules.
+  - Add refcounts to client and resources to handle destroy of
+    the protocol.
+  - Handle global node.name in filter-chain and loopback again,
+    use it to construct unique stream names.
+  - Avoid a wrapped pw-node in the adapter. This reduces
+    resources allocated for streams.
+  - Fix a crash when module-x11-bell was unloaded.
+  - Add a new module-pipe-tunnel that can write/read data from a
+    UNIX pipe.
+  * Tools
+  - Fix DSD playback again in pw-cat.
+  - Add -n option to pw-loopback to set node names.
+  - Add -P option to pw-cat to pass properties to the stream.
+  - Support stdin/stdout in pw-cat.
+  - pw-dump now also dumps object removal when monitoring
+  * SPA
+  - Avoid duplicate param results in pw-dump for ports.
+  - Avoid endless loops in audioconvert for badly behaving
+    clients.
+  - Scale max-error in alsa based on quantum and avoid logging a
+    warning when starting.
+  - Improve debug of failed format conversion.
+  - Handle offset in the audio dsp mixer inputs and clamp to the
+    maximum buffer size.
+  - Add option to disable locale support for JSON number
+    conversion.
+  - Add support for Astro A20 Gen2.
+  - Fix some of the test sources, the flags were not set
+    correctly.
+  - Add camera location as property in libcamera and let the
+    session manager generate a localised description.
+  - Fix some crashes due to wrong vargar types in v4l2 controls.
+  - Improve ALSA resync behaviour.
+  - Add support for Komplete Audio 6 MK2.
+  - Improve loop cancel while iterating.
+  - Try not to mix surround channels and AUX channels. Make card
+    with many ports look better when not using the Pro Audio
+    profile.
+  - Vulkan filters were added.
+  * Bluetooth
+  - Add LC3plus vendor codec.
+  - Handle unsupported indicators better.
+  - Ensure multiple devices on an adapter use different codecs
+    because one endpoint can only be used by one device at a time.
+  - Fix bitpool control as a follower.
+  - Handle bluetooth errors better.
+  - Speed up bluetooth connection by only waiting for the profiles
+    supported by the adapter.
+  - The dummy AVRCP player is disabled by default because it seems
+    to break more devices than it fixes.
+  * pulse-server
+  - Add initial stream latency property so that devices can be
+    started with a resonably accurate latency.
+  - Fix ringbuffer underrun case.
+  - module-native-protocol-tcp now has a auth-anonymous option to
+    give full access to the clients.
+  - Report a node as being moved when it is still moving. This
+    improves compatibility with pasystray.
+  - Avoid overallocating message memory.
+  - Don't export NETWORK nodes in zeroconf.
+  - Fix stride for TrueHD and DTSHD passthrough.
+  - Make sure we don't send too small audio fragments. Fixes
+    capture from multiple tabs in Chromium.
+  - Rework module handling some more.
+  - Use the new native module-pipe-tunnel for pipe-sink and
+    pipe-source.
+  - Implement the STREAM_MOVED message when a stream got moved.
+  - Fix a potential segfault when stopping the server and a TCP
+    module as still loaded.
+  * ALSA
+  - Add support for updating sw_params at runtime, mostly the
+    min-avail param.
+  - Capture and playback nodes are now assumed to use a different
+    clock and will activate the adaptive resampler when linked.
+    This assumption is removed in Pro Audio mode. This provide a
+    better experience out of the box with most devices.
+  * JACK
+  - Fix setting properties with PIPEWIRE_PROPS again.
+  - Don't use 64 bits atomic operations for sync_timeout.
+  - Cleanup in error cases was improved, avoiding some crashes.
+  * GStreamer
+  - Fix pipewiresink in mode=provide.
+  - Share memory into a new buffer in pipewiresrc to avoid buffer
+    corruption.
+  - Fixes to the source and fd use.
+  - It is now possible to set client properties as well.
+- Rebase reduce-meson-dependency.patch.
+
+- Update to version 0.3.51:
+  * Highlights
+  - Improve graph reconfiguration.
+  - Extra configuration options for streams and filters with
+    config rules and environment variable.
+  - Improve module-pulse-tunnel latency, stability and error
+    recovery.
+  - pw-top, pw-cli and pw-link improvements.
+  - Fix a channelmixer upmixing clipping issue.
+  - The ROC module has seen many improvements.
+  - Many more bugfixes and improvements.
+  * PipeWire
+  - The graph reconfiguration code was reworked:
+  * Moved nodes will update the new driver quantum correctly.
+  * Inactive nodes are ignored more.
+  * Nodes that require a driver are now not scheduled anymore
+    when they are passive (unused).
+  * Improved performance, the graph is reconfigured with a
+    minimal amount of changes.
+  - Method and event argument names were improved.
+  - A linker garbage collection problem was fixed.
+  - Properties on threads are now implemented. Use common code to
+    set thread name and add an option to set stack-size.
+  - Streams and filters always want a driver now. This makes it
+    possible to just link a playback stream to a capture stream
+    without a driver and have it work.
+  - Streams and filters can now also have rules in the config
+    file.
+  - Streams, filters, JACK, ALSA and v4l2 now support
+    PIPEWIRE_PROPS environment variable to override node
+    properties.
+  - Add config section extensions. This provides a way for modules
+    to have specific config to override the default config.
+  - Handle realloc errors better.
+  - Improve stream and filter property updates.
+  * Modules
+  - The pulse-tunnel modules has improved latency management and
+    should now work a lot better.
+  - Module-loopback, module-echo-cancel, module-filter-chain
+    unload the module when a stream is destroyed.
+  - Biquads in filter-chain now can have more gain (5->20 dB).
+  - Filter-chain now has a builtin delay line filter.
+  - Filter-chain can now parse the config key correctly in all
+    cases.
+  - The ROC sink and source saw many improvements. roc-source is
+    now a stream by default that connects to the default sink.
+    Both modules will try to set a graph rate. Both modules have
+    an option to select the FEC mode.
+    The ROC source has lower latency now.
+  - Handle realloc errors better.
+  * tools
+  - pw-cat does not have --list-targets anymore, use one of the
+    more advanced and less buggy tools such as wpctl or pw-cli to
+    list sinks and sources.
+  - pw-top has seen many improvements.
+  * It now has some timeouts to reset the node values to their
+    default state when unused.
+  * The man page was improved.
+  * Invalid timings and errors are displayed in a better way.
+  - pw-cli and pw-link can now create links between all ports of
+    given nodes.
+  - pw-cat can now save to other file formats than wav, based on
+    the extension of the filename.
+  * SPA
+  - The resampler now uses a different internal method for
+    draining. It can now also handle 0 size buffers as input
+    without draining.
+  - The channelmixer now uses the front channel averages for FC
+    and LFE.
+    This avoids clipping and results in much better upmixing.
+  - ALSA should now work again on 32 bits. (#2271)
+  - The JSON parser now converts escaped unicode correctly to UTF8.
+  * bluetooth
+  - Codec switch improvements when the device is disconnected.
+  * pulse-server
+  - There is a new module-roc-sink-input module, the PulseAudio
+    equivalent.
+  - The ROC source and sink-input module now have a much lower
+    latency.
+  - The ROC module now has an option to select FEC mode.
+  - Playback and record rate adjustements should work now.
+  * JACK
+  - Remove some useless pthread attributes. This makes JACK work
+    in QEMU with sandboxing enabled.
+  - The buffer_size callback is now only called when something has
+    changed since the last process() callback or get_buffer_size()
+    method. This fixes a GStreamer issue and is more in line with
+    what JACK does.
+  - Fix a potential deadlock when the process thread is doing IPC
+    and the IPC thread is blocking on the data thread.
+  - Allocation errors in metadata are handled better.
+- Rebase reduce-meson-dependency.patch.
+
+- Update to version 0.3.50:
+  * Highlights
+  - pw-stream can now report more timing information and can
+    suggest the optimal number of samples to queue for playback.
+  - pw-dot now works again.
+  - module-pulse-tunnel latency was improved.
+  - Wine applications using the JACK backend should no longer
+    crash.
+  - The channelmixer defaults are improved and the muffled sound
+    when playing back 5.1 and 7.1 material has been fixed.
+  - Many fixes and improvements.
+  * PipeWire
+  - pw-stream now places a suggested amount of samples in the
+    pw-buffer for playback. This allows you to remove some places
+    where spa_io_rate_match was needed to get this information.
+  - pw-stream has new API to request a timing update. New fields
+    are added in the timing info, such as number of buffered
+    samples in the resampler and the number of queued and
+    dequeued buffers.
+  - pw-stream has support for double controls now. More controls
+    are exposed such as the Rate control to do adaptive
+    resampling.
+  - The thread-utils object was moved to the context to avoid
+    some concurrent use cases that caused crashes.
+  - Deactivating an exported node/stream will now remove the node
+    from the data-thread immediately so that the process function
+    will not be called anymore and resources can be safely freed.
+    This could fix some of the last remaining crashes when
+    streams are stopped.
+  - PipeWire will now fail to load a module that tries to
+    register the same export type twice instead of silently doing
+    the wrong thing.
+  * Modules
+  - Many modules now use the NODE_WANT_DRIVER instead of the
+    pipewire.dummy NODE_GROUP property. This makes it possible to
+    use them with any other driver and can avoid resampling in
+    some cases.
+  - module-pulse-tunnel now uses an adaptive resampler to keep
+    the latency under control. Latency should be much better than
+    before and stay constant even when there are network delays.
+  - There is now an option for packages to disable building the
+    RTKit module, which is still built by default for backwards
+    compatibility reasons.
+  - A leak was fixed in filter-chain.
+  - Module node names are now made more unique with the pid.
+  * tools
+  - pw-cat verbose output has been improved.
+  - pw-link now has a man page.
+  - pw-reserve now has an -r option to make it issue a
+    RequestRelease command on the owner of the device. This makes
+    it possible to ask WirePlumber to close and release a device.
+  - Fix pw-dot again. It didn't work anymore because of stray
+    done events that were emitted to notify the client of object
+    serials.
+  * SPA
+  - The channelmixer now has PSD upmixing enabled again. We used
+    the simple upmixing in the previous release but that just
+    sounds too awful to be a good default.
+  - The channelmixer will not upmix FC and LFE anymore when
+    upmixing is explicitly disabled.
+  - The channelmixer will only lowpass filter FC and LFE channels
+    when they were upmixed.
+  - The defaults of the channelmixer were tweaked a little. There
+    is now a little bit more bass in the LFE channel and more
+    high fequencies in the FC channel when upmixing. Also the
+    channel widening has been disabled by default.
+  - Locale independent float parsing now uses a more portable
+    solution with uselocale.
+  - ALSA will now only allocate a buffer size big enough to hold
+    4 times the quantum limit instead of as large as possible.
+  * pulse-server
+  - Internal cleanups in handling of modules.
+  - A quirk to force s16 sample formats for teams-insider has
+    been added.
+  * JACK
+  - The data-loop is now started in activate and stopped in
+    deactivate.
+    This makes the data-loop respect any custom thread functions
+    you configure. This also makes Wine apps using the JACK
+    backend work.
+  - Port sorting was improved/fixed.
+- Rebase reduce-meson-dependency.patch.
+- Require RealtimeKit.
+
poppler
+- Add patch to reduce the boost dependencies (which isn't really
+  needed) so we can build poppler 23.01.0 in SLE-15-SP4/SP5:
+  * reduce-boost-required-version.patch
+
+- update to 23.01.0:
+  core:
+  * PDFDoc::sign: Fix crash if font can't be found
+  * PDFDoc::sign: Try Arial to sign if Helvetica isn't found
+  * FoFiType1::parse: Be more flexible parsing the encoding content. Issue #1324
+  * Gfx::opBeginMarkedContent: Support Span with Name. Issue #1327
+  * Splash: Avoid color issues due to implicit rounding
+  * Splash: Fix crash on malformed file.
+  * CairoOutputDev: Ignore text rendering mode for type3 fonts
+  * Remove unused FoFiType1::load function
+  build system:
+  * Increase minimum required versions of several dependencies
+  * Improve include path handling
+  qt6:
+  * Use less deprecated functions
+
poppler:qt5
+- Add patch to reduce the boost dependencies (which isn't really
+  needed) so we can build poppler 23.01.0 in SLE-15-SP4/SP5:
+  * reduce-boost-required-version.patch
+
+- update to 23.01.0:
+  core:
+  * PDFDoc::sign: Fix crash if font can't be found
+  * PDFDoc::sign: Try Arial to sign if Helvetica isn't found
+  * FoFiType1::parse: Be more flexible parsing the encoding content. Issue #1324
+  * Gfx::opBeginMarkedContent: Support Span with Name. Issue #1327
+  * Splash: Avoid color issues due to implicit rounding
+  * Splash: Fix crash on malformed file.
+  * CairoOutputDev: Ignore text rendering mode for type3 fonts
+  * Remove unused FoFiType1::load function
+  build system:
+  * Increase minimum required versions of several dependencies
+  * Improve include path handling
+  qt6:
+  * Use less deprecated functions
+
procps
+- Extend patch procps-3.3.17-library-bsc1181475.patch (bsc#1206412)
+- Make sure that correct library version is installed (bsc#1206412)
+
python-certifi
+- remove all TrustCor CAs, as TrustCor issued multiple man-in-the-middle
+  certs (bsc#1206212 CVE-2022-23491)
+  - TrustCor RootCert CA-1
+  - TrustCor RootCert CA-2
+  - TrustCor ECA-1
+- Add removeTrustCor.patch
+
python-libvirt-python
+- Update to 9.0.0
+  - Add all new APIs and constants in libvirt 9.0.0
+  - jsc#PED-620
+
python-py
+- Remove all traces of py._path.svn{url,wc}. (bsc#1204364, CVE-2022-42969)
+- Add patch remove-svn-remants.patch to help with that goal.
+- Refresh pr_222.patch as needed for above.
+
python-setuptools
+- Add CVE-2022-40897-ReDos.patch to fix Regular Expression Denial of Service
+  (ReDoS) in package_index.py.
+  bsc#1206667
+
qemu
+- Fixes jsc#PED-1716
+  * Patches added:
+  configure-Add-Wno-gnu-variable-sized-typ.patch
+  s390x-pci-add-routine-to-get-host-functi.patch
+  s390x-pci-don-t-fence-interpreted-device.patch
+  s390x-pci-enable-adapter-event-notificat.patch
+  s390x-pci-enable-for-load-store-interpre.patch
+  s390x-pci-let-intercept-devices-have-sep.patch
+  s390x-pci-reflect-proper-maxstbl-for-gro.patch
+  Update-linux-headers-to-v6.0-rc4.patch
+
systemd
+- Make sure that /lib/udev exists and is a symlink to /usr/lib/udev when the
+  testsuite is run.
+
+- Import commit 1bfa716e7fb6d7169cece864e75dfe9e52914c99 (merge of v249.14)
+  For a complete list of changes, visit:
+  https://github.com/openSUSE/systemd/compare/540e0bd5374f9f42f1e645eb15971431ebb4b8c8...1bfa716e7fb6d7169cece864e75dfe9e52914c99
+- Rebase 1001-udev-use-lock-when-selecting-the-highest-priority-de.patch
+
+- Don't overwrite /etc/pam.d/systemd-user on update (bsc#1207264)
+  Regression introduced when systemd was forked for 15.4.
+
+- Ship systemd-pstore with udev (jsc#PED-2663)
+
+- Import commit 540e0bd5374f9f42f1e645eb15971431ebb4b8c8
+  29fb8a2dd0 core/unit: try to submit stop_when_unneeded queue on removing dependencies
+  bd63eab381 core/device: start units specified in SYSTEMD_WANTS if it is not running
+  e0898fa873 coredump: do not allow user to access coredumps with changed uid/gid/capabilities (bsc#1205000 CVE-2022-4415)
+  119424f96e coredump: adjust whitespace
+  3833d5a408 coredump: drop an unused variable
+  36728edcfd coredump: Fix format string type mismatch
+  34f6867a8a analyze: use DumpUnitsMatchingPatternsByFileDescriptor
+  e67a7087ec manager: add DumpUnitsMatchingPatternsByFileDescriptor()
+  feb8f2a983 manager: rename dbus method
+  98fed27339 analyze: extend the dump command to accept patterns
+  a06d9470af man: document the Dump() calls of the PID 1 D-Bus interface, and what they are
+  79eb37a5e0 cryptsetup: retry TPM2 unseal operation if it fails with TPM2_RC_PCR_CHANGED (bsc#1204944)
+- Drop 5000-coredump-Fix-format-string-type-mismatch.patch
+    5001-coredump-drop-an-unused-variable.patch
+    5002-coredump-adjust-whitespace.patch
+    5003-coredump-do-not-allow-user-to-access-coredumps-with-.patch
+  They have been merged into SUSE/v249 branch.
+
tar
+- Fix hang when unpacking test tarball, bsc#1202436
+  * bsc1202436.patch
+
virtualbox
-- Update 15.5 build after kernel update. boo#1207395.
+- VirtualBox 7.0.6 (released January 17 2023)
+  This is a maintenance release. The following items were fixed and/or added: [1]
+- VMM: Fixed guru running the FreeBSD loader on older Intel CPUs without unrestricted guest support (bug #21332)
+- GUI: Fixed virtual machines grouping when VM was created or modified in command line (bugs #11500, #20933)
+- GUI: Introduced generic changes in settings dialogs
+- VirtioNet: Fixed broken network after loading saved state (bug #21172)
+- Storage: Added support for increasing the size of the following VMDK image variants: monolithicFlat, monolithicSparse, twoGbMaxExtentSparse, twoGbMaxExtentFlat
+- VBoxManage: Added missing --directory switch for guestcontrol mktemp command
+- Mouse Integration: Guest was provided with extended host mouse state (bug #21139)
+- DnD: Introduced generic improvements
+- Guest Control: Fixed handling creation mode for temporary directories (bug #21394)
+- Linux Host and Guest: Added initial support for building UEK7 kernel on Oracle Linux 8
+- Linux Host and Guest: Added initial support for RHEL 9.1 kernel
+- Linux Guest Additions: Added initial support for kernel 6.2 for vboxvideo
+- Audio: The "--audio" option in VBoxManage is now marked as deprecated; please use "--audio-driver" and "--audio-enabled" instead. This will allow more flexibility when changing the driver and/or controlling the audio functionality
+  Additionally, it fixes 6 CVE's: [2]
+  CVE-2023-21886 	Oracle VM VirtualBox 	Core 	Multiple 	Yes 	8.1 	Network 	High 	None 	None 	Un-
+  changed 	High 	High 	High 	Prior to 6.1.42, prior to 7.0.6
+  CVE-2023-21898 	Oracle VM VirtualBox 	Core 	None 	No 	5.5 	Local 	Low 	Low 	None 	Un-
+  changed 	None 	None 	High 	Prior to 6.1.42, prior to 7.0.6 	See Note 1
+  CVE-2023-21899 	Oracle VM VirtualBox 	Core 	None 	No 	5.5 	Local 	Low 	Low 	None 	Un-
+  changed 	None 	None 	High 	Prior to 6.1.42, prior to 7.0.6 	See Note 1
+  CVE-2023-21884 	Oracle VM VirtualBox 	Core 	None 	No 	4.4 	Local 	Low 	High 	None 	Un-
+  changed 	None 	None 	High 	Prior to 6.1.42, prior to 7.0.6
+  CVE-2023-21885 	Oracle VM VirtualBox 	Core 	None 	No 	3.8 	Local 	Low 	Low 	None 	Changed 	Low 	None 	None 	Prior to 6.1.42, prior to 7.0.6 	See Note 2
+  CVE-2023-21889 	Oracle VM VirtualBox 	Core 	None 	No 	3.8 	Local 	Low 	Low 	None 	Changed 	Low 	None 	None 	Prior to 6.1.42, prior to 7.0.6
+  Note 1: Applies to VirtualBox VMs running Windows 7 and later.
+  Note 2: Applies to Windows only.
+  Links:
+  [1] https://www.virtualbox.org/wiki/Changelog-7.0#v6
+  [2] https://www.oracle.com/security-alerts/cpujan2023.html#AppendixOVIR
+
+- unify buildrequires to libopenssl-devel to handle openssl 3 transition
virtualbox:kmp
-- Update 15.5 build after kernel update. boo#1207395.
+- VirtualBox 7.0.6 (released January 17 2023)
+  This is a maintenance release. The following items were fixed and/or added: [1]
+- VMM: Fixed guru running the FreeBSD loader on older Intel CPUs without unrestricted guest support (bug #21332)
+- GUI: Fixed virtual machines grouping when VM was created or modified in command line (bugs #11500, #20933)
+- GUI: Introduced generic changes in settings dialogs
+- VirtioNet: Fixed broken network after loading saved state (bug #21172)
+- Storage: Added support for increasing the size of the following VMDK image variants: monolithicFlat, monolithicSparse, twoGbMaxExtentSparse, twoGbMaxExtentFlat
+- VBoxManage: Added missing --directory switch for guestcontrol mktemp command
+- Mouse Integration: Guest was provided with extended host mouse state (bug #21139)
+- DnD: Introduced generic improvements
+- Guest Control: Fixed handling creation mode for temporary directories (bug #21394)
+- Linux Host and Guest: Added initial support for building UEK7 kernel on Oracle Linux 8
+- Linux Host and Guest: Added initial support for RHEL 9.1 kernel
+- Linux Guest Additions: Added initial support for kernel 6.2 for vboxvideo
+- Audio: The "--audio" option in VBoxManage is now marked as deprecated; please use "--audio-driver" and "--audio-enabled" instead. This will allow more flexibility when changing the driver and/or controlling the audio functionality
+  Additionally, it fixes 6 CVE's: [2]
+  CVE-2023-21886 	Oracle VM VirtualBox 	Core 	Multiple 	Yes 	8.1 	Network 	High 	None 	None 	Un-
+  changed 	High 	High 	High 	Prior to 6.1.42, prior to 7.0.6
+  CVE-2023-21898 	Oracle VM VirtualBox 	Core 	None 	No 	5.5 	Local 	Low 	Low 	None 	Un-
+  changed 	None 	None 	High 	Prior to 6.1.42, prior to 7.0.6 	See Note 1
+  CVE-2023-21899 	Oracle VM VirtualBox 	Core 	None 	No 	5.5 	Local 	Low 	Low 	None 	Un-
+  changed 	None 	None 	High 	Prior to 6.1.42, prior to 7.0.6 	See Note 1
+  CVE-2023-21884 	Oracle VM VirtualBox 	Core 	None 	No 	4.4 	Local 	Low 	High 	None 	Un-
+  changed 	None 	None 	High 	Prior to 6.1.42, prior to 7.0.6
+  CVE-2023-21885 	Oracle VM VirtualBox 	Core 	None 	No 	3.8 	Local 	Low 	Low 	None 	Changed 	Low 	None 	None 	Prior to 6.1.42, prior to 7.0.6 	See Note 2
+  CVE-2023-21889 	Oracle VM VirtualBox 	Core 	None 	No 	3.8 	Local 	Low 	Low 	None 	Changed 	Low 	None 	None 	Prior to 6.1.42, prior to 7.0.6
+  Note 1: Applies to VirtualBox VMs running Windows 7 and later.
+  Note 2: Applies to Windows only.
+  Links:
+  [1] https://www.virtualbox.org/wiki/Changelog-7.0#v6
+  [2] https://www.oracle.com/security-alerts/cpujan2023.html#AppendixOVIR
+
+- unify buildrequires to libopenssl-devel to handle openssl 3 transition
wireplumber
-- Work around the bug in systemd scripts that didn't set the
-  default enable state for the wireplumber user service when
-  installing wireplumber. The bug (boo#1200485) was fixed but
-  that's only for new installations while this workaround will
-  fix current installations (boo#1202008).
+- Backport the workaround from SLE/Leap for the bug in systemd
+  scripts that didn't set the default enable state for the
+  wireplumber user service when installing wireplumber. The bug
+  (boo#1200485) was fixed but that's only for new installations
+  while this workaround will fix old installations (boo#1202008).
+  This is used to automatically fix installations of
+  SLE 15 SP4/Leap 15.4 that were not updated during it's lifetime
+  and upgrade directly to SP5/15.5 .
+
+- Add upstream patches to fix glfo#pipewire/pipewire#2214 and to
+  handle better non-null terminated strings:
+  * 0001-alsa-monitor-handle-snd_aloop-devices-better.patch
+  * 0001-spa-json-make-sure-we-only-add-encoded-string-data.patch
+  * 0001-m-lua-scripting-ignore-string-integer-table-keys-when-constructing-a-JSON-Array-Object.patch
+
+- Update to version 0.4.13:
+  * Additions
+  - Add bluetooth SCO (HSP/HFP) hardware offload support,
+    together with an example script that enables this
+    functionality on the PinePhone.
+  - Encoded audio (mp3, aac, etc...) can now be passed through,
+    if this mode is supported by both the application and the
+    device.
+  - The v4l2 monitor now also respects the ``node.disabled`` and
+    ``device.disabled`` properties inside rules.
+  - Add "Firefox Developer Edition" to the list of applications
+    that are allowed to trigger a bluetooth profile auto-switch.
+  - Add support in the portal access script to allow newly
+    plugged cameras to be immediately visible to the portal
+    applications.
+  * Fixes
+  - Work around an issue that would prevent streams from properly
+    linking when using effects software like EasyEffects and
+    JamesDSP.
+  - Fix destroying pavucontrol-qt monitor streams after the node
+    that was being monitored is destroyed.
+  - Fix a crash in the alsa.lua monitor that could happen when a
+    disabled device was removed and re-added.
+  - Fix a rare crash in the metadata object.
+  - Fix a bug where a restored node target would override the
+    node target set by the application on the node's properties.
+  * Packaging
+  - Add build options to compile wireplumber's library, daemon
+    and tools independently.
+  - Add a build option to disable unit tests that require the
+    dbus daemon.
+  - Stop using fakesink/fakesrc in the unit tests to be able to
+    run them on default pipewire installations. Compiling the spa
+    ``test`` plugin is no longer necessary.
+  - Add pkg-config and header information in the gir file.
+- Rebase reduce-meson-required-version.patch
+- Drop patches already upstream:
+  * 0001-alsa.lua-remove-the-disabled-entities-from-the-names-table.patch
+  * 0001-policy-node-wait-for-unactivated-links-instead-of-removing.patch
+
+- Add patch from upstream to work around a problem when a link is
+  not activated:
+  * 0001-policy-node-wait-for-unactivated-links-instead-of-removing.patch
+- Add patch from upstream to fix handling null devices which result
+  in lua exceptions:
+  * 0001-alsa.lua-remove-the-disabled-entities-from-the-names-table.patch
+
+- Update to version 0.4.12:
+  * Changes
+  - WirePlumber now maintains a stack of previously configured
+    default nodes and prioritises to one of those when the
+    actively configured default node becomes unavailable, before
+    calculating the next default using priorities.
+  - Updated bluetooth scripts to support the name changes that
+    happened in PipeWire 0.3.59 and also support the experimental
+    Bluetooth LE functionality.
+  - Changed the naming of bluetooth nodes to not include the
+    profile in it; this allows maintaining existing links when
+    switching between a2dp and hfp.
+  - The default volume for new outputs has changed to be 40% in
+    cubic scale (= -24 dB) instead of linear
+    (= 74% cubic / -8 dB) that it was before.
+  - The default volume for new inputs has changed to be 100%
+    rather than following the default for outputs.
+  - Added ``--version`` flag on the wireplumber executable.
+  - Added ``--limit`` flag on ``wpctl set-volume`` to limit the
+    higher volume that can be set (useful when incrementing
+    volume with a keyboard shortcut that calls into wpctl).
+  - The properties of the alsa midi node can now be set in the
+    config files.
+  * Fixes
+  - Fixed a crash in lua code that would happen when running in a
+    VM.
+  - Fixed a crash that would happen when re-connecting to D-Bus.
+  - Fixed a mistake in the code that would cause device
+    reservation not to work properly.
+  - Fixed ``wpctl clear-default`` to accept 0 as a valid setting ID.
+  - Fixed the logic of choosing the best profile after the active
+    profile of a device becomes unavailable
+  - Fixed a regression that would cause PulseAudio "corked"
+    streams to not properly link and cause busy loops.
+  - Fixed an issue parsing spa-json objects that have a nested
+    object as the value of their last property.
+- Rebase reduce-meson-required-version.patch
+- Drop patches already upstream:
+  * fix-alsa.patch
+  * 0001-dbus-fix-crash-when-trying-to-reconnect.patch
+  * 398.patch
+
+- Add 398.patch -- policy-node: fix potential rescan loop to
+  prevent high cpu usage (glfo#pipewire/wireplumber#152); patch
+  taken from upstream merge request.
+
+- Add patch to fix crash on session end:
+  * 0001-dbus-fix-crash-when-trying-to-reconnect.patch
+
+- Add patch to fix alsa device creation:
+  * fix-alsa.patch
+
+- Update to version 0.4.11:
+  * Changes
+  - The libcamera monitor is now enabled by default, so if the
+    libcamera source is enabled in PipeWire, cameras discovered
+    with the libcamera API will be  available out of the box.
+    This is safe to use alongside V4L2, as long as the user does
+    not try to use the same camera over different APIs at the
+    same time.
+  - Libcamera and V4L2 nodes now get assigned a
+    `priority.session` number; V4L2 nodes get a higher priority
+    by default, so the default camera is going to be /dev/video0
+    over V4L2, unless changed with `wpctl`.
+  - Libcamera nodes now get a user-friendly description based on
+    their location (e.g. built-in front camera). Additionally,
+    V4L2 nodes now have a "(V4L2)" string appended to their
+    description in order to be distinguished from the libcamera
+    ones.
+  - 50-alsa-config.lua now has a section where you can set
+    properties that will only be applied if WirePlumber is
+    running in a virtual machine. By default it now sets
+    `api.alsa.period-size = 256` and `api.alsa.headroom = 8192`.
+  * Fixes
+  - The "enabled" properties in the config files are now "true"
+    by default when they are not defined. This fixes backwards
+    compatibility with older configuration files.
+  - Fixed device name deduplication in the alsa monitor, when
+    device reservation is enabled.
+  - Reverted a previous fix that makes it possible again to get
+    a glitch when changing default nodes while also changing the
+    profile (GNOME Settings).
+    The fix was causing other problems and the issue will be
+    addressed differently in the future.
+  - Fixed an issue that would prevent applications from being
+    moved to a recently plugged USB headset.
+  - Fixed an issue where wireplumber would automatically link
+    control ports, if they are enabled, to audio ports,
+    effectively breaking audio.
+  - The policy now always considers the profile of a device that
+    was previously selected by the user, if it is available, when
+    deciding which profile to activate.
+  - A few documentation fixes.
+  * Tools
+  - wpctl now has a `get-volume` command for easier scripting of
+    volume controls.
+  - wpctl now supports relative steps and percentage-based steps
+    in `set-volume`.
+  - wpctl now also prints link states.
+  - wpctl can now `inspect` metadata objects without showing
+    critical warnings.
+  * Library
+  - A new WpDBus API was added to maintain a single D-Bus
+    connection among modules that need one.
+  - WpCore now has a method to get the virtual machine type, if
+    WirePlumber is running in a virtual machine.
+  - WpSpaDevice now has a
+    `wp_spa_device_new_managed_object_iterator()` method.
+  - WpSpaJson now has a `wp_spa_json_to_string()` method that
+    returns a newly allocated string with the correct size of the string token.
+  - WpLink now has a `WP_LINK_FEATURE_ESTABLISHED` that allows
+    the caller to wait until the link is in the PAUSED or ACTIVE
+    state. This transparently now enables watching links for
+    negotiation or allocation errors and failing gracefully
+    instead of keeping dead link objects around.
+  * Misc
+  - The Lua subproject was bumped to version 5.4.4.
+- Rebase reduce-meson-required-version.patch
+
+- Update to version 0.4.10:
+  * Changes
+  - Add i18n support to be able to translate some user-visible
+    strings.
+  - wpctl now supports using
+    @DEFAULT_{AUDIO_,VIDEO_,}{SINK,SOURCE}@ as ID, almost like
+    pactl. Additionally, it supports a --pid flag for changing
+    volume and mute state by specifying a process ID, applying
+    the state to all nodes of a specific client process.
+  - The Lua engine now supports loading Lua libraries. These can
+    be placed either in the standard Lua libraries path or in
+    the "lib" subdirectory of WirePlumber's "scripts" directory
+    and can be loaded with ``require()``
+  - The Lua engine's sandbox has been relaxed to allow more
+    functionality in scripts (the debug & coroutine libraries
+    and some other previously disabled functions)
+  - Lua scripts are now wrapped in special WpPlugin objects,
+    allowing them to load asynchronously and declare when they
+    have finished their loading
+  - Add a new script that provides the same functionality as
+    module-fallback-sink from PipeWire, but also takes endpoints
+    into account and can be customised more easily. Disabled by
+    default for now to avoid conflicts.
+  * Policy
+  - Add an optional experimental feature that allows filter-like
+    streams (like echo-cancel or filter-node) to match the
+    channel layout of the device they connect to, on both sides
+    of the filter; that means that if, for instance, a sink has
+    6 channels and the echo-cancel's source stream is linked to
+    that sink, then the virtual sink presented by echo-cancel
+    will also be configured to the same 6 channels layout. This
+    feature needs to be explicitly enabled in the configuration
+    ("filter.forward-format")
+  - filter-like streams (filter-chain and such) no longer follow
+    the default sink when it changes, like in PulseAudio.
+  * Fixes
+  - The suspend-node script now also suspends nodes that go into
+    the "error" state, allowing them to recover from errors
+    without having to restart WirePlumber.
+  - Fix a crash in mixer-api when setting volume with
+    channelVolumes.
+  - logind module now watches only for user state changes,
+    avoiding errors when machined is not running.
+  * Misc
+  - The configuration files now have comments mentioning which
+    options need to be disabled in order to run WirePlumber
+    without D-Bus.
+  - The configuration files now have properties to
+    enable/disable the monitors and other sections, so that it
+    is possible to disable them by dropping in a file that just
+    sets the relevant property to false.
+  - setlocale() is now called directly instead of relying on
+    pw_init().
+  - WpSpaJson received some fixes and is now used internally to
+    parse configuration files.
+  - More applications were added to the bluetooth auto-switch
+    applications whitelist.
+- Add a new wireplumber-lang package.
+- Drop patches already upstream:
+  * 0001-scripts-policy-device-profile-clear-tables-when-devices-removed.patch
+  * 0001-src-setlocale-in-main-for-tools-and-the-daemon.patch
+- Rebase reduce-meson-required-version.patch
xdg-dbus-proxy
+- BuildRequire dbus-1 in SLE-15 where the dbus-1 package is not
+  splitted to generate a dbus-1-daemon package.
+
+- Update to version 0.1.4:
+  + Add a Meson build system, with support for being used as a
+    subproject. The original Autotools build system remains
+    available for now, but might be removed in future.
+  + Fix movement through multiline auth messages.
+  + Fix an unintended fallthrough if the message bus replies to
+    Hello() with a non-REPLY such as an ERROR.
+  + Fix compiler warnings.
+  + Update AX_CODE_COVERAGE from autoconf-archive.
+  + Bundle a copy of AX_CHECK_GNU_MAKE from autoconf-archive,
+    required by AX_CODE_COVERAGE.
+- Switch to meson buildsystem, add meson BuildRequires and replace
+  autotools macros with meson ones.
+- Add dbus-1-daemon BuildRequires and check section: Run meson_test
+  macro during build.
+
+- Update to version 0.1.3:
+  + Silence compiler warnings.
+  + Fix build with musl.
+
xdg-desktop-portal
+- Update to version 1.16.0:
+  + Introduce a new background monitoring service. This allows
+    desktop environments to list applications that are running in
+    background, that is, sandboxed applications running without a
+    visible window. Desktop environments can display these
+    background running applications in their interfaces, and allow
+    users to control their execution.
+  + Introduce the Global Shortcuts portal. This portal allows
+    applications to register and receive keyboard shortcuts even
+    when they're not focused. This was a highly requested feature,
+    especially on Wayland desktops. There are improvements to come,
+    but portal backends can now implement this new portal.
+  + Various CI improvements.
+  + Updated translations.
+
+- Update to version 1.15.0:
+  + Add Meson build files. For now, both Autotools and Meson are
+    available in the source tree.
+  + Make the Screenshot portal request permission to take
+    screenshots. Frontends that implement the version 2 of
+    org.freedesktop.portal.impl.Screenshot portal can now be aware
+    that the screenshot permission was granted through the new
+    'permission_store_checked' option, and skip any kind of dialog
+    when that is the case.
+  + Stop sending the app id quoted in the Background portal.
+  + Fix a bug in cgroup name parsing.
+  + Various fixes to the Realtime portal.
+  + Updated translations.
+
+- Update to version 1.14.6:
+  + realtime:
+  - Remap thread ids.
+  - Use correct types.
+
+- Update to version 1.14.5:
+  + realtime: Fix realtime: fix priority type in
+    MakeThreadHighPriority.
+
+- update to 1.14.4:
+  + fix regression introduced in 1.14.0 which caused invalid
+    autostart files to be generated
+
+- update to 1.14.3:
+  + remote-desktop: Fix a memory corruption that was causing
+    segfaults
+
+- Update to version 1.14.2:
+  + Fix a frequent crash with WebKit processes.
+  + Fix a bug in parsing the app ID from the cgroup on KDE.
+  + Documentation improvements.
+  + Updated translations.
+
+- Update /usr/bin/fusermount requires to /usr/bin/fusermount3: the
+  code has been changed to call fusermount3 as  part of version
+  1.14.0: document-portal: Move to the libfuse3 API (boo#1197567).
+
+- Update to version 1.14.1:
+  + Fix an issue in 1.14.0 where xdg-desktop-portal.service
+    starting before graphical-session-pre.target would cause the
+    GNOME session to deadlock by moving code to a new libexec
+    binary which handles deleting or migrating .desktop files (and
+    icons) from the dynamic launcher portal for apps which have
+    been uninstalled or renamed.
+  + Fix some bugs in the aforementioned launcher migration
+    implementation, "xdg-desktop-portal-rewrite-launchers".
+  + Fix build without libsystemd.
+
+- Update to version 1.14.0:
+  + Add a new "dynamic launcher" portal, which can install .desktop
+    files and accompanying icons after user confirmation.
+  + Rework handling of empty app IDs: In case an empty string app
+    ID is stored in the permission store, this permission is now
+    shared only by apps whose app ID couldn't be determined, rather
+    than all unsandboxed apps.
+  + Use libsystemd (when available) to try to determine the app ID
+    of unsandboxed processes. This is useful since some portals
+    otherwise can't be used by host apps.
+  + Make x-d-p start on session start, which is needed for the
+    dynamic launcher portal to handle rewriting launchers for apps
+    that have been renamed.
+  + Bring back the copy of Flatpak's icon-validator, which was
+    dropped many releases ago.
+  + Icon validation is now required for the notification and
+    dynamic launcher portals (previously it was only done if the
+    "flatpak-validate-icon" binary could be found).
+  + document-portal: Move to the libfuse3 API
+  + document-portal: Use renameat2 sys call
+  + document-portal: Use mutex to fix concurrency bug
+  + realtime: Fix error code paths
+  + realtime: Fix MakeThreadHighPriorityWithPID method
+  + screencast: Fix an error when restoring streams
+  + ci: Various improvements
+  + Documentation improvements
+  + Updated translations.
+- Replace BuildRequires: pkgconfig(fuse) with pkgconfig(fuse3)
+  since document-portal moved to use it.
+- Add BuildRequires: pkgconfig(libsystemd) and
+  pkgconfig(gdk-pixbuf-2.0) which are now used.
+
+- Pass --docdir=%%{_defaultdocdir}/%%{name}/ to configure, install
+  docs in standard distro docs dir, and move to devel sub-package,
+  as it is developer documentation.
+
+- update to version 1.12.1:
+  + Fix a crash in the device portal
+- includes changes from 1.12.0:
+  + Place portals in the systemd session.slice
+  + settings: Add color-scheme key
+  + open-uri: Avoid a sync call to org.freedesktop.FileManager
+  + screncast: Allow restoring previous sessions
+  + Add a portal for requesting realtime permissions
+  + ci: Many improvements
+  + Publish the docs from a ci job
+  + Translation updates
+
xdg-desktop-portal-gtk
-- Add xdg-desktop-portal-gtk-idle-timeout.patch: Make the process
-  exit after one second unless it has active sessions (bsc#1179465).
+- Update to version 1.14.1:
+  + printing,
+  - wallpaper: Fix some memory leaks.
+  - Consistently include .desktop in the fallback app name.
+  + screencast: Fall back to desktop ID if we don't know the app
+    name.
+  + appchooser: Fix a use-after-free.
+  + wallpaper: Handle errors storing images in the cache.
+  + email: Fix a crash if no addresses are provided.
+  + notification: Fix notifications for apps with no ID not
+    appearing.
+  + screenshot: Report whether PickColor is implemented, if
+    possible.
+
+- Update to version 1.14.0:
+  + Add an implementation of the dynamic launcher portal
+  + notification: Fix activation of default action with target
+  + Updated translations.
+
+- Update to version 1.12.0:
+  + settings: Provide org.freedesktop.appearance.color-scheme key
+  + settings: Handle org.gnome.desktop.a11y.interface schema
+  + notification: Handle actions with targets properly
+  + Enable settings and appchooser portals by default
+  + Translation updates
xdg-user-dirs-gtk
+- Update to version 0.11:
+  + Updated translations.
+
-- Added support for translation-update-upstream (FATE#301344).
-
xdg-utils
+- xdg-open: convert usage of obsolete egrep to grep -E
+  add xdg-utils-egrep.patch, boo#1203092
+
+- Update to version 1.1.3+20210805:
+  * xdg-email fails on kde with desktop files #187
+- switch to obs_scm
+
zlib
+- Update to 1.13:
+  * Fix configure issue that discarded provided CC definition
+  * Correct incorrect inputs provided to the CRC functions
+  * Repair prototypes and exporting of new CRC functions
+  * Fix inflateBack to detect invalid input with distances too far
+  * Have infback() deliver all of the available output up to any error
+  * Fix a bug when getting a gzip header extra field with inflate()
+  * Fix bug in block type selection when Z_FIXED used
+  * Tighten deflateBound bounds
+  * Remove deleted assembler code references
+  * Various portability and appearance improvements
+- Added patches:
+  * zlib-1.2.13-IBM-Z-hw-accelerated-deflate-s390x.patch
+  * zlib-1.2.13-fix-bug-deflateBound.patch
+  * zlib-1.2.13-optimized-s390.patch
+- Refreshed patches:
+  * zlib-1.2.12-add-optimized-slide_hash-for-power.patch
+  * zlib-1.2.12-add-vectorized-longest_match-for-power.patch
+  * zlib-1.2.12-s390-vectorize-crc32.patch
+- Removed patches:
+  * zlib-1.2.12-fix-configure.patch
+  * zlib-1.2.12-IBM-Z-hw-accelerated-deflate-s390x.patch
+  * zlib-1.2.12-optimized-crc32-power8.patch
+  * zlib-1.2.12-correct-inputs-provided-to-crc-func.patch
+  * zlib-1.2.12-fix-CVE-2022-37434.patch
+  * zlib-1.2.11-optimized-s390.patch
+
+- build zlib with optflags again
+