Packages changed:

Packages changed:
MicroOS-release (20250220 -> 20250221)
glib2 (2.82.4 -> 2.82.5)
gpgme
grub2
kernel-firmware-amdgpu (20250206 -> 20250219)
kernel-firmware-bluetooth (20250208 -> 20250219)
kernel-firmware-mediatek (20250206 -> 20250220)
kernel-firmware-network (20250206 -> 20250219)
kernel-firmware-platform (20250206 -> 20250220)
kernel-firmware-qcom (20250206 -> 20250219)
kernel-firmware-sound (20250217 -> 20250219)
libassuan (3.0.1 -> 3.0.2)
libxml2 (2.13.5 -> 2.13.6)
lvm2
lvm2-device-mapper
ncurses (6.5.20250201 -> 6.5.20250216)
pcr-oracle
sdbootutil (1+git20250219.a796c24 -> 1+git20250221.19f7d1a)
xen
yast2 (5.0.11 -> 5.0.12)

=== Details ===

==== MicroOS-release ====
Version update (20250220 -> 20250221)
Subpackages: MicroOS-release-appliance MicroOS-release-dvd

- automatically generated by openSUSE-release-tools/pkglistgen

==== glib2 ====
Version update (2.82.4 -> 2.82.5)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0

- Update to version 2.82.5:
+ Bugs fixed:
- gosxappinfo: Correctly launch list of files
- Don't mark test setups as default in subprojects
- gdatetime: Fix integer overflow when parsing very long
ISO8601 inputs

==== gpgme ====
Subpackages: libgpgme11 libgpgmepp6 python311-gpg

- Don't own content of all common-lisp directories, just own the
directories themselves (adding %dir in front of them). Prevents
duplicate ownership of the Common Lisp files.

==== grub2 ====
Subpackages: grub2-common grub2-i386-efi grub2-i386-efi-bls grub2-i386-pc grub2-snapper-plugin grub2-x86_64-efi grub2-x86_64-efi-bls

- Fix grub-bls does not rollback via setting new default (bsc#1237198)
* 0001-bls-Accept-.conf-suffix-in-setting-default-entry.patch

==== kernel-firmware-amdgpu ====
Version update (20250206 -> 20250219)

- Update to version 20250219 (git commit 5faab136de1a):
* amdgpu: Update ISP FW for isp v4.1.1

==== kernel-firmware-bluetooth ====
Version update (20250208 -> 20250219)

- Update to version 20250219 (git commit 5faab136de1a):
* qca: update WCN3988 firmware

==== kernel-firmware-mediatek ====
Version update (20250206 -> 20250220)

- Update to version 20250220 (git commit 6cf959daab2a):
* linux-firmware: update firmware for MT7920 WiFi device

==== kernel-firmware-network ====
Version update (20250206 -> 20250219)

- Update to version 20250219 (git commit 5faab136de1a):
* linux-firmware: update firmware for en8811h 2.5G ethernet phy

==== kernel-firmware-platform ====
Version update (20250206 -> 20250220)

- Update to version 20250220 (git commit 6cf959daab2a):
* linux-firmware: Update AMD SEV firmware

==== kernel-firmware-qcom ====
Version update (20250206 -> 20250219)

- Update to version 20250219 (git commit 5faab136de1a):
* qcom: add firmware for Adreno A225

==== kernel-firmware-sound ====
Version update (20250217 -> 20250219)

- Update to version 20250219 (git commit 5faab136de1a):
* cirrus: cs35l56: Add and update firmware for Cirrus CS35L56 for two HP laptops
* cirrus: cs35l56: Add firmware for Cirrus Amps for some ASUS laptops
* cirrus: cs35l56: Add and update firmware for Cirrus CS35L56 for various Lenovo laptops
* cirrus: cs35l56: Update firmware for Cirrus Amps for some Dell laptops

==== libassuan ====
Version update (3.0.1 -> 3.0.2)

- Update to 3.0.2:
* Fix for FreeBSD to set the pid of assuan_peercred_t. [rAdfa5e6532d]
* Use socklen_t for the length of socket address. [T5924]
* Fix errno setting on Windows for assuan_sock_bind failure. [T7456]
* New assuan_sock_get_flag "w32_error" to get the actual Windows
error after a system call and not just the mapped errno. [T7456]

==== libxml2 ====
Version update (2.13.5 -> 2.13.6)
Subpackages: libxml2-2 libxml2-tools

- Update to version 2.13.6 ([bsc#1237363], [bsc#1237370], [bsc#1237418]):
+ Security:
- [CVE-2025-24928] Fix stack-buffer-overflow in
xmlSnprintfElements
- [CVE-2024-56171] Fix use-after-free after
xmlSchemaItemListAdd
- pattern: Fix compilation of explicit child axis
+ Regressions:
- xmllint: Support compressed input from stdin
- uri: Fix handling of Windows drive letters
- reader: Fix return value of xmlTextReaderReadString again
- SAX2: Fix xmlSAX2ResolveEntity if systemId is NULL
+ Portability:
- dict: Handle ENOSYS from getentropy gracefully
- Fix compilation with uclibc (Dario Binacchi)
- python: Declare init func with PyMODINIT_FUNC
- tests: Fix sanitizer version check on old Apple clang
- cmake: Work around broken sys/random.h in old macOS SDKs
+ Build:
- autotools: Set AC_CONFIG_AUX_DIR
- cmake: Always build Python module as shared library
- cmake: add missing `Bcrypt` link on Windows
- cmake: Fix compatibility in package version file
- xmlIO: Fix reading from non-regular files like pipes
- xmlreader: Fix return value of xmlTextReaderReadString
- parser: Fix loading of parameter entities in external DTDs
- parser: Fix downstream code that swaps DTDs
- parser: Fix detection of duplicate attributes
- string: Fix va_copy fallback
- xpath: Fix parsing of non-ASCII names
- Drop libxml2-support-compressed-input-from-stdin.patch: Fixed
upstream.
- Also CVE-2025-27113 was assigned to this release.

==== lvm2 ====
Subpackages: liblvm2cmd2_03

- system with LVM on iSCSI hangs on shutdown because blk-availability.service is not enabled (bsc#1236788)
* update lvm2.spec
- remove blk-availability.service from %postun
- add new Provides 'dont_stop_blk_availability_service'

==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03

- system with LVM on iSCSI hangs on shutdown because blk-availability.service is not enabled (bsc#1236788)
* update lvm2.spec
- remove blk-availability.service from %postun
- add new Provides 'dont_stop_blk_availability_service'

==== ncurses ====
Version update (6.5.20250201 -> 6.5.20250216)
Subpackages: libncurses6 ncurses-utils terminfo-base

- Add ncurses patch 20250216
+ add limit-checks in alloc_entry.c and alloc_ttype.c to avoid indexing
errors when using infocmp to compare all capabilities when processing
a malformed terminfo binary which has a valid header (testcase by
"Ekkosun").
- Add ncurses patch 20250215
+ add gzip option for suppressing filename/timestamp information to an
overlooked case (cf: 20240330).
+ correct spelling errors found with codespell.
+ fix some typos in manpages (report by Sven Joachim)
+ amend change to lib_set_term.c to work with thread configuration
(report by Rajeev Pillai, cf: 20250208).
- Add ncurses patch 20250208
+ change etip.h.in to include either/both of <new> and <exception>,
needed for another old BSD.
+ update st (report by Alexander Kashpir) -TD
+ add note for ghostty 1.1.0 -TD
+ fix a few issues found with coverity.
- Correct offset of patches
* ncurses-5.9-ibm327x.dif
* ncurses-6.4.dif
* ncurses-6.5-ghostty.dif

==== pcr-oracle ====

- Update the License tag to GPL-2.0-or-later to match the license
declaration in the source files

==== sdbootutil ====
Version update (1+git20250219.a796c24 -> 1+git20250221.19f7d1a)
Subpackages: sdbootutil-dracut-measure-pcr sdbootutil-snapper sdbootutil-tukit

- Update to version 1+git20250221.19f7d1a:
* Reformat the spec file
* Rework keyctl calls to keep the session keyring

==== xen ====

- Update to Xen 4.20.0 RC5 release
* x86/shutdown: offline APs with interrupts disabled on all CPUs
* x86/smp: perform disabling on interrupts ahead of AP shutdown
* x86/pci: disable MSI(-X) on all devices at shutdown
* x86/iommu: disable interrupts at shutdown
* x86/HVM: use XVFREE() in hvmemul_cache_destroy()
* xen/console: Fix truncation of panic() messages
* xen/memory: Make resource_max_frames() to return 0 on unknown
type
* x86/svm: Separate STI and VMRUN instructions in
svm_asm_do_resume()
* x86/MCE-telem: adjust cookie definition
- Drop patch contained in new tarball
x86-shutdown-offline-APs-with-interrupts-disabled-on-all-CPUs.patch

==== yast2 ====
Version update (5.0.11 -> 5.0.12)

- respect kernel parameter filtering from agama if found
(bsc#1237390,bsc#1234678)
- 5.0.12