SUSE-RU-2025:20027-1: important: Recommended update for suseconnect-ng, zypp-plugin, libsolv, zypper, libzypp
SLE-UPDATES
null at suse.de
Wed Jun 4 09:11:08 UTC 2025
# Recommended update for suseconnect-ng, zypp-plugin, libsolv, zypper, libzypp
Announcement ID: SUSE-RU-2025:20027-1
Release Date: 2025-02-03T08:51:00Z
Rating: important
References:
* bsc#1007273
* bsc#1175678
* bsc#1218171
* bsc#1219004
* bsc#1221525
* bsc#1221963
* bsc#1222086
* bsc#1222398
* bsc#1223094
* bsc#1223107
* bsc#1223430
* bsc#1223766
* bsc#1224771
* bsc#1225267
* bsc#1226014
* bsc#1226030
* bsc#1226128
* bsc#1226493
* bsc#1227205
* bsc#1227625
* bsc#1227793
* bsc#1228138
* bsc#1228206
* bsc#1228208
* bsc#1228420
* bsc#1228647
* bsc#1228787
* bsc#1229014
* bsc#1230229
* bsc#1230267
* bsc#1230912
* bsc#1231043
* bsc#222971
* jsc#OBS-301
* jsc#PED-7982
* jsc#PED-8014
* jsc#PED-8018
* jsc#PED-8153
Affected Products:
* SUSE Linux Micro 6.0
An update that contains five features and has 33 fixes can now be installed.
## Description:
This update for suseconnect-ng, zypp-plugin, libsolv, zypper, libzypp fixes the
following issues:
libsolv version 0.7.30:
* removed dependency on external find program in the repo2solv tool
* bindings: fix return value of repodata.add_solv()
* new SOLVER_FLAG_FOCUS_NEW flag
* add a conflict to older libsolv-tools to libsolv-tools-base
* report unsupported compression in solv_xfopen() with errno
* fix return value of repodata.add_solv() in the bindings
* fix SHA-224 oid in solv_pgpvrfy
* improve updating of installed multiversion packages
* fix decision introspection going into an endless loop in some cases
* added experimental lua bindings
* split libsolv-tools into libsolv-tools-base [jsc#PED-8153]
* removed dependency on external find program in the repo2solv tool
* bindings: fix return value of repodata.add_solv()
* new SOLVER_FLAG_FOCUS_NEW flag
* add a conflict to older libsolv-tools to libsolv-tools-base
* report unsupported compression in solv_xfopen() with errno
* fix return value of repodata.add_solv() in the bindings
* fix SHA-224 oid in solv_pgpvrfy
* improve updating of installed multiversion packages
* fix decision introspection going into an endless loop in some cases
* added experimental lua bindings
* split libsolv-tools into libsolv-tools-base [jsc#PED-8153]
libzypp update to 17.35.12:
* PluginFrame: Send unescaped colons in header values (bsc#1231043) According
to the STOMP protocol it would be correct to escape a colon in a header-
value, but it breaks plugin receivers which do not expect this. The first
colon separates header-name from header-value, so escaping in the header-
value is not needed anyway. Escaping in the header-value affects especially
the urlresolver plugins. The input URL is passed in a header, but sent back
as raw data in the frames body. If the plugin receiver does not correctly
unescape the URL we may get back a "https\c//" which is not usable.
* Do not ignore return value of std::remove_if in MediaSyncFacade (fixes #579)
* Fix hang in curl code with no network connection (bsc#1230912)
* Deprecate librpmDb::db_const_iterator default ctor (bsc#1230267) It's
preferred to explicitly tell the root directory of the system whose database
you want to query.
* API refactoring. Prevent zypper from using now private libzypp symbols
(bsc#1230267)
* Conflicts: zypper <= 1.14.76
* single_rpmtrans: fix installation of .src.rpms (bsc#1228647)
* Make sure not to statically linked installed tools (bsc#1228787)
* MediaPluginType must be resolved to a valid MediaHandler (bsc#1228208)
* Export CredentialManager for legacy YAST versions (bsc#1228420)
* Export asSolvable for YAST (bsc#1228420)
* Fix 4 typos in zypp.conf.
* Fix typo in the geoip update pipeline (bsc#1228206)
* Export RepoVariablesStringReplacer for yast2 (bsc#1228138)
* Translation: updated .pot file.
* Conflict with python zypp-plugin < 0.6.4 (bsc#1227793) Older zypp-plugins
reject stomp headers including a '-'. Like the 'content-length' header we
may send.
* Fix int overflow in Provider (fixes #559) This patch fixes an issue in
safe_strtonum which caused timestamps to overflow in the Provider message
parser.
* Fix error reporting on repoindex.xml parse error (bsc#1227625)
* Keep UrlResolverPlugin API public (fixes #560)
* Blacklist /snap executables for 'zypper ps' (bsc#1226014)
* Fix handling of buddies when applying locks (bsc#1225267) Buddy pairs (like
-release package and product) internally share the same status object. When
applying locks from query results the locked bit must be set if either item
is locked.
* Install zypp/APIConfig.h legacy include (fixes #557)
* Update soname due to RepoManager refactoring and cleanup.
* Workaround broken libsolv-tools-base requirements (fixes
openSUSE/zypper#551)
* Strip ssl_clientkey from repo urls (bsc#1226030)
* Remove protobuf build dependency.
* Lazily attach medium during refresh workflows (bsc#1223094)
* Refactor RepoManager and add Service workflows.
* zypp-tui: Make sure translated texts use the correct textdomain (fixes #551)
* Skip libproxy1 requires for tumbleweed.
* don't require libproxy1 on tumbleweed, it is optional now
* Fix versioning scheme
* add one more missing export for libyui-qt-pkg
* Revert eintrSafeCall behavior to setting errno to 0.
* fix up requires_eq usage for libsolv-tools-base
* add one more missing export for PackageKit
* switch to reduced size libsolv-tools-base (jsc#PED-8153)
* Fixed check for outdated repo metadata as non-root user (bsc#1222086)
* Add ZYPP_API for exported functions and switch to visibility=hidden
(jsc#PED-8153)
* Dynamically resolve libproxy (jsc#PED-8153)
* Fix download from gpgkey URL (bsc#1223430, fixes openSUSE/zypper#546)
* Don't try to refresh volatile media as long as raw metadata are present
(bsc#1223094)
* Fix creation of sibling cache dirs with too restrictive mode (bsc#1222398)
Some install workflows in YAST may lead to too restrictive (0700) raw cache
directories in case of newly created repos. Later commands running with user
privileges may not be able to access these repos.
* Update RepoStatus fromCookieFile according to the files mtime (bsc#1222086)
* TmpFile: Don't call chmod if makeSibling failed.
* Fixup New VendorSupportOption flag VendorSupportSuperseded (jsc#OBS-301,
jsc#PED-8014) Fixed the name of the keyword to "support_superseded" as it
was agreed on in jsc#OBS-301.
* Add resolver option 'removeUnneeded' to file weak remove jobs for unneeded
packages (bsc#1175678)
* Add resolver option 'removeOrphaned' for distupgrade (bsc#1221525)
* New VendorSupportOption flag VendorSupportSuperseded (jsc#OBS-301,
jsc#PED-8014)
* Tests: fix vsftpd.conf where SUSE and Fedora use different defaults (fixes
#522)
* Add default stripe minimum (#529)
* Don't expose std::optional where YAST/PK explicitly use c++11.
* Digest: Avoid using the deprecated OPENSSL_config.
* ProblemSolution::skipsPatchesOnly overload to handout the patches.
* Remove https->http redirection exceptions for download.opensuse.org.
suseconnect-ng updated to 1.12:
- Set the filesystem root on zypper when given (bsc#1230229,bsc#1229014)
- Added uname as collector
- Added SAP workload detection
- Added detection of container runtimes
- Multiple fixes on ARM64 detection
- Use `read_values` for the CPU collector on Z
- Fixed data collection for ppc64le
- Grab the home directory from /etc/passwd if needed (bsc#1226128)
- Build zypper-migration and zypper-packages-search as standalone
binaries rather then one single binary
- Add --gpg-auto-import-keys flag before action in zypper command (bsc#1219004)
- Include /etc/products.d in directories whose content are backed
up and restored if a zypper-migration rollback happens. (bsc#1219004)
- Add the ability to upload the system uptime logs, produced by the
suse-uptime-tracker daemon, to SCC/RMT as part of keepalive report.
(jsc#PED-7982) (jsc#PED-8018)
- Add support for third party packages in SUSEConnect
- Refactor existing system information collection implementation
- Fix certificate import for Yast when using a registration proxy with
self-signed SSL certificate (bsc#1223107)
zypp-plugin updated to 0.6.4:
* Fix stomp header regex to include '-' (bsc#1227793)
zypper updated to 1.14.77:
* API refactoring. Prevent zypper from using now private libzypp symbols
(bsc#1230267)
* BuildRequires: libzypp-devel >= 17.35.10.
* Fix wrong numbers used in CommitSummary skipped/failed messages.
* Show rpm install size before installing (bsc#1224771) If filesystem
snapshots are taken before the installation (e.g. by snapper) no disk space
is freed by removing old packages. In this case the install size of all
packages is a hint how much additional disk space is needed by the new
packages static content.
* Fix readline setup to handle Ctrl-C and Ctrl-D corrrectly (bsc#1227205)
* Let_readline_abort_on_Ctrl-C (bsc#1226493)
* packages: add '\--system' to show @System packages (bsc#222971)
* Fixed check for outdated repo metadata as non-root user (bsc#1222086)
* BuildRequires: libzypp-devel >= 17.33.0.
* Delay zypp lock until command options are parsed (bsc#1223766)
* Unify message format(fixes #485)
* switch cmake build type to RelWithDebInfo
* modernize spec file (remove Authors section, use proper macros, remove
redundant clean section, don't mark man pages as doc)
* switch to -O2 -fvisibility=hidden -fpie:
* PIC is not needed as no shared lib is built
* fstack-protector-strong is default on modern dists and would be downgraded by fstack-protector
* default visibility hidden allows better optimisation
* O2 is reducing inlining bloat -> 18% reduced binary size
* remove procps requires (was only for ZMD which is dropped) (jsc#PED-8153)
* Do not try to refresh repo metadata as non-root user (bsc#1222086) Instead
show refresh stats and hint how to update them.
* man: Explain how to protect orphaned packages by collecting them in a
plaindir repo.
* packages: Add --autoinstalled and --userinstalled options to list them.
* Don't print 'reboot required' message if download-only or dry-run (fixes
#529) Instead point out that a reboot would be required if the option was
not used.
* Resepect zypper.conf option `showAlias` search commands (bsc#1221963)
Repository::asUserString (or Repository::label) respects the zypper.conf
option, while name/alias return the property.
* dup: New option --remove-orphaned to remove all orphaned packages in dup
(bsc#1221525)
* info,summary: Support VendorSupportOption flag VendorSupportSuperseded
(jsc#OBS-301, jsc#PED-8014)
* BuildRequires: libzypp-devel >= 17.32.0. API cleanup and changes for
VendorSupportSuperseded.
* Show active dry-run/download-only at the commit propmpt.
* patch: Add --skip-not-applicable-patches option (closes #514)
* Fix printing detailed solver problem description. The problem description()
is one rule out possibly many in completeProblemInfo() the solver has chosen
to represent the problem. So either description or completeProblemInfo
should be printed, but not both.
* Fix bash-completion to work with right adjusted numbers in the 1st column
too (closes #505)
* Set libzypp shutdown request signal on Ctrl+C (fixes #522)
* lr REPO: In the detailed view show all baseurls not just the first one
(bsc#1218171)
## Special Instructions and Notes:
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Micro 6.0
zypper in -t patch SUSE-SLE-Micro-6.0-82=1
## Package List:
* SUSE Linux Micro 6.0 (aarch64 s390x x86_64)
* libsolv-tools-debuginfo-0.7.30-1.1
* libzypp-debugsource-17.35.12-1.1
* libsolv-tools-0.7.30-1.1
* suseconnect-ng-1.12.0-1.1
* zypper-1.14.77-1.1
* libsolv-tools-base-0.7.30-1.1
* libzypp-17.35.12-1.1
* zypper-debuginfo-1.14.77-1.1
* libzypp-debuginfo-17.35.12-1.1
* libsolv-tools-base-debuginfo-0.7.30-1.1
* libsolv-debugsource-0.7.30-1.1
* zypper-debugsource-1.14.77-1.1
* SUSE Linux Micro 6.0 (noarch)
* zypper-needs-restarting-1.14.77-1.1
* python311-zypp-plugin-0.6.4-1.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1007273
* https://bugzilla.suse.com/show_bug.cgi?id=1175678
* https://bugzilla.suse.com/show_bug.cgi?id=1218171
* https://bugzilla.suse.com/show_bug.cgi?id=1219004
* https://bugzilla.suse.com/show_bug.cgi?id=1221525
* https://bugzilla.suse.com/show_bug.cgi?id=1221963
* https://bugzilla.suse.com/show_bug.cgi?id=1222086
* https://bugzilla.suse.com/show_bug.cgi?id=1222398
* https://bugzilla.suse.com/show_bug.cgi?id=1223094
* https://bugzilla.suse.com/show_bug.cgi?id=1223107
* https://bugzilla.suse.com/show_bug.cgi?id=1223430
* https://bugzilla.suse.com/show_bug.cgi?id=1223766
* https://bugzilla.suse.com/show_bug.cgi?id=1224771
* https://bugzilla.suse.com/show_bug.cgi?id=1225267
* https://bugzilla.suse.com/show_bug.cgi?id=1226014
* https://bugzilla.suse.com/show_bug.cgi?id=1226030
* https://bugzilla.suse.com/show_bug.cgi?id=1226128
* https://bugzilla.suse.com/show_bug.cgi?id=1226493
* https://bugzilla.suse.com/show_bug.cgi?id=1227205
* https://bugzilla.suse.com/show_bug.cgi?id=1227625
* https://bugzilla.suse.com/show_bug.cgi?id=1227793
* https://bugzilla.suse.com/show_bug.cgi?id=1228138
* https://bugzilla.suse.com/show_bug.cgi?id=1228206
* https://bugzilla.suse.com/show_bug.cgi?id=1228208
* https://bugzilla.suse.com/show_bug.cgi?id=1228420
* https://bugzilla.suse.com/show_bug.cgi?id=1228647
* https://bugzilla.suse.com/show_bug.cgi?id=1228787
* https://bugzilla.suse.com/show_bug.cgi?id=1229014
* https://bugzilla.suse.com/show_bug.cgi?id=1230229
* https://bugzilla.suse.com/show_bug.cgi?id=1230267
* https://bugzilla.suse.com/show_bug.cgi?id=1230912
* https://bugzilla.suse.com/show_bug.cgi?id=1231043
* https://bugzilla.suse.com/show_bug.cgi?id=222971
* https://jira.suse.com/browse/OBS-301
* https://jira.suse.com/browse/PED-7982
* https://jira.suse.com/browse/PED-8014
* https://jira.suse.com/browse/PED-8018
* https://jira.suse.com/browse/PED-8153
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20250604/988ba63b/attachment-0001.htm>
More information about the sle-updates
mailing list