Packages changed:
  SDL3 (3.4.6 -> 3.4.10)
  aspell-en (2020.12.07 -> 2026.02.25)
  djvulibre (3.5.29 -> 3.5.30)
  dos2unix (7.5.5 -> 7.5.6)
  iw
  libmd (1.1.0 -> 1.2.0)
  libunwind
  libvirt (12.3.0 -> 12.4.0)
  libxkbcommon (1.13.1 -> 1.13.2)
  llvm22 (22.1.5 -> 22.1.6)
  mariadb (11.8.7 -> 11.8.8)
  openSUSE-release (20260601 -> 20260602)
  openjph (0.27.2 -> 0.27.3)
  openssh
  python-pip (26.1.1 -> 26.1.2)
  rpcbind (1.2.8 -> 1.2.9)
  shotwell (0.32.15 -> 0.32.16)
  wireless-regdb (20260318 -> 20260530)
  xorg-x11-server
  xwayland
  zoo

=== Details ===

==== SDL3 ====
Version update (3.4.6 -> 3.4.10)

- Update to release 3.4.10
  * Allow depth texture arrays in the GPU API
  * Fixed a crash when copying to the Vulkan swapchain with the GPU
    API
  * Added controller sensor support for GameInput v3
  * Fixed Ipega controllers being ignored in keyboard mode
  * Added support for GameCube rumble when the adapter is in PC
    mode and has the latest firmware
  * Fixed rumble on the new Steam Controller
  * Added support for the GameSir Super Nova in Xbox 360 mode
  * Added support for the PDP Afterglow Wave Wireless Controller
    for Switch
  * Fixed several second hang when changing focus on X11 in some
    situations
  * Disable the X Synchronization Extension by default, can be
    enabled with SDL_HINT_VIDEO_X11_ENABLE_XSYNC_EXT
  * Fixed SDL_HINT_MOUSE_FOCUS_CLICKTHROUGH on X11
  * Fixed a rare crash on Raspberry Pi when creating a window
- Update to release 3.4.8
  * Fixed a crash when showing a dialog on Unix if zenity is not
    installed

==== aspell-en ====
Version update (2020.12.07 -> 2026.02.25)

- version update to 2026.02.25
  * see https://wordlist.aspell.net/news/

==== djvulibre ====
Version update (3.5.29 -> 3.5.30)

- version update to 3.5.30
  * fix CVE-2021-46312 [bsc#1214672]
- deleted patches
  * djvulibre-CVE-2021-46312.patch (upstreamed)

==== dos2unix ====
Version update (7.5.5 -> 7.5.6)

- update to 7.5.6:
  * Updated translations of the manual.
- new website

==== iw ====

- Add the explicit gcc and make BuildRequires

==== libmd ====
Version update (1.1.0 -> 1.2.0)

- Update to version 1.2.0:
  * build: Set TAR_OPTIONS to avoid leaking maintainer information on dist
  * build: Request tar-ustar format for distribution
  * doc: Move derived code attribution to a Comment field
  * doc: Remove redundant «Copyright ©» prefix from Copyright field in COPYING
  * build: Add Maintainer and License fields to the .pc file
  * doc: Remove «All rights reserved» from COPYING
  * build: Rename LIBMD_ABI to SOVERSION
  * build: Add a coverage regex to the CI job
  * man: Sync SHA2 changes from OpenBSD
  * Fixes: commit 4c5931f53727b1428b47b6a1c0bfdad02c46f1ca
  * build: Add a new vpath-tests CI test
  * build: Refactor autogen call into before_script
  * build: Fix out-of-tree build
  * build: Terminate lists in variables with «# EOL»
  * test: Add cases for SHA224 and SHA512-256
  * test: Add a new test_eq() helper function
  * build: Rename libmd_alias() to libmd_strong_alias()
  * build: Do not use strong aliases on macOS
  * build: Require automake 1.11
  * build: Fix configure.ac indentation
  * build: Switch to debian:latest Docker image
  * build: Fix version script linker support detection
  * doc: Move mailing list reference to the end

==== libunwind ====

- Always disable C++ exception support, which is incompatible with the
  system unwinder

==== libvirt ====
Version update (12.3.0 -> 12.4.0)
Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs

- Update to libvirt 12.4.0
  - Many incremental improvements and bug fixes, see
    https://libvirt.org/news.html#v12-4-0-2026-06-01

==== libxkbcommon ====
Version update (1.13.1 -> 1.13.2)
Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0

- Update to release 1.13.2
  * Added new keysyms: XKB_KEY_dead_apostrophe, XKB_KEY_SSHARP,
    XKB_KEY_leftsingleanglequotemark,
    XKB_KEY_rightsingleanglequotemark,
    XKB_KEY_XF86ElectronicPrivacyScreenOn,
    XKB_KEY_XF86ElectronicPrivacyScreenOff,
    XKB_KEY_XF86ActionOnSelection, XKB_KEY_XF86ContextualInsert,
    XKB_KEY_XF86ContextualQuery.
  * Changed `ISO_Group_Shift`, which is now the canonical name of
    the corresponding keysym. Previously it was `Mode_switch`,
    which refers to a core X group mechanism obsoleted by XKB.
  * Added new tool `xkbcli info` to print information about
    libxkbcommon configuration, for debugging purposes.

==== llvm22 ====
Version update (22.1.5 -> 22.1.6)

- Update to version 22.1.6.
  * This release contains bug-fixes for the LLVM 22.1.0 release.
    This release is API and ABI compatible with 22.1.0.

==== mariadb ====
Version update (11.8.7 -> 11.8.8)
Subpackages: libmariadbd19 mariadb-client mariadb-errormessages

- Update to 11.8.8:
    https://mariadb.com/docs/release-notes/community-server/11.8/11.8.8
    https://mariadb.com/docs/release-notes/community-server/changelogs/11.8/11.8.8
  * fixes for the following security vulnerabilities:
    11.8.8: CVE-2026-49261
    CVE-2026-48165 (bsc#1266814)
    CVE-2026-48163 (bsc#1266815)

==== openSUSE-release ====
Version update (20260601 -> 20260602)
Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd

- automatically generated by openSUSE-release-tools/pkglistgen

==== openjph ====
Version update (0.27.2 -> 0.27.3)

- Update to 0.27.3:
  * Changed how the QCC marker is created.
  * Add OSS fuzz corpus for ojph_compress_fuzz_target #271

==== openssh ====
Subpackages: openssh-clients openssh-common openssh-server

- Update patch to fix a possible information disclosure or denial
  of service due to uninitialized variables in gssapi patches
  (CVE-2026-3497, bsc#1259642) :
  * openssh-8.0p1-gssapi-keyex.patch
- Add patch to fix a potential issue when validating mac or ciphers
  (bsc#1264568):
  * fix-mac-validation-strsep-logic-bug.patch

==== python-pip ====
Version update (26.1.1 -> 26.1.2)
Subpackages: python311-pip python313-pip

- Update to 26.1.2 (bsc#1266669, CVE-2026-8643):
  - Reject console_scripts and gui_scripts entry points whose name
    would install a script outside the scripts directory. (#14000)
  - Fix installation incorrectly failing when the target path contains
    a doubled slash, such as with pip install --root //.... (#14001)
  - Send a consistent Accept-Encoding header to avoid a spurious Cache
    entry deserialization failed warning. (#14012)

==== rpcbind ====
Version update (1.2.8 -> 1.2.9)

- Update to rpcbind 1.2.9
  https://lore.kernel.org/linux-nfs/5cad3ab4-d24a-45fa-b1e9-d57b2c47a5e4@redhat.com/
  * A number of memory leaks fixes
  * A couple buffer overflow fixes

==== shotwell ====
Version update (0.32.15 -> 0.32.16)
Subpackages: shotwell-lang

- Update to version 0.32.16:
  + Fix crashes on invalid dimensions in export
  + Support GExiv2 0.16
  + Updated translations.

==== wireless-regdb ====
Version update (20260318 -> 20260530)

- Update to version 20260530:
  * wireless-regdb: update regulatory database based on preceding changes
  * wireless-regdb: Update regulatory rules for Sri Lanka (LK)
  * wireless-regdb: Update regulatory info for Brunei Darussalam (BN) for 2022
  * wireless-regdb: allow 320MHz channel width for Russia
  * wireless-regdb: Update 6 GHz rules for South Korea (KR)
  * wireless-regdb: Update 6 GHz rules for South Africa (ZA)
  * wireless-regdb: Fix 60 GHz power unit for Ukraine (UA)
  * wireless-regdb: Update 5/6 GHz power rules for Russia (RU)
  * wireless-regdb: Update 6 GHz rules for Hong Kong (HK)
  * wireless-regdb: Add regulatory info for CEPT countries FO, GI, IM, SM and VA listed by WiFi Alliance

==== xorg-x11-server ====
Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra

- bsc1266294_CVE-2026-XXXX1_0007-dix-increase-XLFDMAXFONTNAMELEN-to-match-libXfont2-s.patch
  * Font Alias Stack-based Buffer Overflow (ZDI-CAN-30136, bsc#1266294)
- bsc1266295_CVE-2026-XXXX2_0001-sync-fix-deletion-of-counters-and-fences.patch
  * XSYNC Use-After-Free in miSyncDestroyFence() (ZDI-CAN-30159, ZDI-CAN-30163, bsc#1266295, bsc#1266298)
- bsc1266296_CVE-2026-XXXX3_0003-xkb-reject-key-types-with-num_levels-exceeding-XkbMa.patch
  * XKB Key Types Stack-based Buffer Overflow (ZDI-CAN-30160, bsc#1266296)
- bsc1266297_CVE-2026-XXXX4_0004-xkb-clamp-nMaps-to-mapWidths-buffer-size-in-CheckKey.patch
  * XKB SetMap Request Stack-based Buffer Overflow (ZDI-CAN-30161, bsc#1266297)
- bsc1266299_CVE-2026-XXXX6_0002-sync-restart-trigger-list-iteration-in-SyncChangeCou.patch
  * XSYNC Use-After-Free in SyncChangeCounter() (ZDI-CAN-30164, bsc#1266299)
- bsc1266300_CVE-2026-XXXX7_0005-glx-fix-reversed-length-check-in-ChangeDrawableAttri.patch
  * GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write (ZDI-CAN-30165, bsc#1266300)
- bsc1266301_CVE-2026-XXXX8_0006-saver-re-fetch-screen-private-after-CheckScreenPriva.patch
  * CreateSaverWindow Use-After-Free Information Disclosure (ZDI-CAN-30168, bsc#1266301)
- bsc1266302_CVE-2026-XXXX9_0001-dri2-Use-booleans-for-fake-front-buffer-tracking-in-.patch
  bsc1266302_CVE-2026-XXXX9_0002-dri2-Deduplicate-attachments-in-do_get_buffer.patch
  * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write (CVE-2026-XXXX9, bsc#1266302)

==== xwayland ====

- bsc1266294_CVE-2026-XXXX1_0007-dix-increase-XLFDMAXFONTNAMELEN-to-match-libXfont2-s.patch
  * Font Alias Stack-based Buffer Overflow (ZDI-CAN-30136, bsc#1266294)
- bsc1266295_CVE-2026-XXXX2_0001-sync-fix-deletion-of-counters-and-fences.patch
  * XSYNC Use-After-Free in miSyncDestroyFence() (ZDI-CAN-30159, ZDI-CAN-30163, bsc#1266295, bsc#1266298)
- bsc1266296_CVE-2026-XXXX3_0003-xkb-reject-key-types-with-num_levels-exceeding-XkbMa.patch
  * XKB Key Types Stack-based Buffer Overflow (ZDI-CAN-30160, bsc#1266296)
- bsc1266297_CVE-2026-XXXX4_0004-xkb-clamp-nMaps-to-mapWidths-buffer-size-in-CheckKey.patch
  * XKB SetMap Request Stack-based Buffer Overflow (ZDI-CAN-30161, bsc#1266297)
- bsc1266299_CVE-2026-XXXX6_0002-sync-restart-trigger-list-iteration-in-SyncChangeCou.patch
  * XSYNC Use-After-Free in SyncChangeCounter() (ZDI-CAN-30164, bsc#1266299)
- bsc1266300_CVE-2026-XXXX7_0005-glx-fix-reversed-length-check-in-ChangeDrawableAttri.patch
  * GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write (ZDI-CAN-30165, bsc#1266300)
- bsc1266301_CVE-2026-XXXX8_0006-saver-re-fetch-screen-private-after-CheckScreenPriva.patch
  * CreateSaverWindow Use-After-Free Information Disclosure (ZDI-CAN-30168, bsc#1266301)

==== zoo ====

- Spec cleanup:
  * Add explicit gcc and make BuildRequires
  * Drop obsolete Group tag