==== kernel-firmware-i915 ====
Version update (20250603 -> 20250708)
- Update to version 20250708 (git commit 99d64b4f788c):
* xe: Add fan_control v203.0.0.0 for BMG
- Update to version 20250707 (git commit ba5e4e381494):
* xe: First HuC release for Pantherlake
* xe: First GuC release for Pantherlake
==== kernel-firmware-mediatek ====
Version update (20250619 -> 20250708)
- Update to version 20250708 (git commit 99d64b4f788c):
* mediatek MT7921: update bluetooth firmware to 20250625154126
- Update to version 20250707 (git commit ba5e4e381494):
* linux-firmware: update firmware for MT7921 WiFi device
==== kernel-firmware-qcom ====
Version update (20250616 -> 20250708)
- Update to version 20250708 (git commit 99d64b4f788c):
* qcom/adreno: move A610 and A702 ZAP files to Adreno driver section
* qcom: Add sdx61 Foxconn vendor firmware image file
- Update to version 20250707 (git commit ba5e4e381494):
* qcom/adreno: sort entries in WHENCE
==== passt ====
Subpackages: passt-selinux
- Fixes to spec (ref: bsc#1245074):
* Install binaries for pasta, and not symlinks
* Remove circular dependency between passt and passt-selinux
* Install missing passt-repair.pp SELinux policy module
* Install modules at the correct location .../selinux/packages/%{selinuxtype}/
* Require container-selinux for container related policies
* Single line macro to load SELinux policies for better performance
- Update to 4.22.3
* samba-tool cannot add user to group whose name is exactly 16
characters long; (bso#15854);
* Windows security hardening locks out schannel'ed netlogon dc
calls like netr_DsRGetDCName; (bso#15876);
* Startup messages of rpc deamons fills /var/log/messages;
(bso#15869);
==== ucode-amd ====
Version update (20250206 -> 20250708)
- Update to version 20250708 (git commit 99d64b4f788c):
* linux-firmware: Update AMD cpu microcode
==== xen ====
Version update (4.20.0_12 -> 4.20.1_02)
- Update to Xen 4.20.1 bug fix release (jsc#PED-8907)
* No upstream changelog found in sources or webpage
- bsc#1246112 - VUL-0: xen: More AMD transient execution attacks
(XSA-471)
Patches contained in new tarball for 4.20.1
- Drop patches contained in new tarball
67c818d4-x86-log-unhandled-mem-accesses-for-PVH-dom0.patch
67c818d5-x86-fixup-p2m-page-faults-for-PVH-dom0.patch
67c818d6-x86-PVH-dom0-correct-iomem_caps-bound.patch
67c818d7-x86-IOMMU-account-for-IOMEM-caps-when-populating.patch
67c818d8-x86-Dom0-relax-Interrupt-Address-Range.patch
67c86fc1-xl-fix-channel-configuration-setting.patch
67cb03e0-x86-vlapic-ESR-write-handling.patch
67d17edd-x86-expose-MSR_FAM10H_MMIO_CONF_BASE-on-AMD.patch
67d17ede-VT-x-PI-usage-of-msi_desc-msg-field.patch
67d2a3fe-libxl-avoid-infinite-loop-in-libxl__remove_directory.patch
67dada68-x86-mm-IS_ALIGNED-in-IS_LnE_ALIGNED.patch
67ea4268-x86-P2M-sync-fast-slow-p2m_get_page_from_gfn.patch
67ea428e-percpu-dont-init-on-resume.patch
67f8ecda-rangeset-incorrect-subtraction.patch
6800b54f-x86-HVM-update-repeat-count-upon.patch
68076044-x86emul-clip-rep-count-for-STOS.patch
6808f549-x86-Intel-work-around-MONITOR-MWAIT-errata.patch
68221f20-x86-alternative-when-feature-not-present.patch
68221f21-x86-guest-remove-Xen-hypercall_page.patch
68221f22-x86-misalign-__x86_indirect_thunk.patch
68221f23-x86-misalign-RETs-in-clear_bhb_loops.patch
68221f24-x86-stubs-introduce-place_ret.patch
68221f25-x86-build-with-Return-Thunks.patch
68221f26-x86-spec-ctrl-synthesise-ITS_NO.patch
682dff83-x86-vPCI-BAR-overlaps-with-non-holes.patch
6835a042-VMX-VMEntry-failure-on-ADL-SPR-with-shadow.patch
6835a043-x86-PV-breakpoint-reporting.patch
xsa470.patch
- bsc#1244644 - VUL-0: CVE-2025-27465: xen: x86: Incorrect stubs
exception handling for flags recovery (XSA-470)
xsa470.patch
- Upstream bug fixes (bsc#1027519)
682dff83-x86-vPCI-BAR-overlaps-with-non-holes.patch
6835a042-VMX-VMEntry-failure-on-ADL-SPR-with-shadow.patch
6835a043-x86-PV-breakpoint-reporting.patch
