Packages changed:
  alsa-plugins
  ell (0.54 -> 0.55)
  gstreamer (1.20.4 -> 1.20.5)
  gstreamer-plugins-bad (1.20.4 -> 1.20.5)
  gstreamer-plugins-base (1.20.4 -> 1.20.5)
  gstreamer-plugins-good (1.20.4 -> 1.20.5)
  opencc (1.1.4 -> 1.1.6)
  pam-full-src
  permissions (1599_20220912 -> 1599_20221220)
  python-httpcore (0.15.0 -> 0.16.3)
  samba (4.17.3+git.283.2157972742b -> 4.17.4+git.300.305b22bfce)
  tcl

=== Details ===

==== alsa-plugins ====
Subpackages: alsa-plugins-speexrate alsa-plugins-upmix

- Replace pkgconfig(libavresample) with pkgconfig(libswresample)
  BuildRequires as rate-lav was ported to use the latter.

==== ell ====
Version update (0.54 -> 0.55)

- update to 0.55:
  * Fix issue with DHCP and blocked unicast requests.

==== gstreamer ====
Version update (1.20.4 -> 1.20.5)
Subpackages: gstreamer-lang libgstreamer-1_0-0 typelib-1_0-Gst-1_0

- update to 1.20.5:
  + This release only contains bugfixes and it should be safe to
    upgrade from 1.20.x.
  + systemclock waiting fixes for certain 32-bit platforms/libcs
  + alphacombine: robustness improvements for corner case scenarios
  + avfvideosrc: Report latency when doing screen capture
  + d3d11videosink: various thread-safety and stability fixes
  + decklink: fix performance issue when HDMI signal has been lost
    for a long time
  + flacparse: Fix handling of headers advertising 32 bits per
    sample
  + mpegts: Handle when iconv doesn't support ISO 6937 (e.g. musl
    libc)
  + opengl: fix automatic dispmanx detection for rpi4 and fix usage
    of eglCreate/DestroyImage
  + opusdec: Various channel-related fixes
  + textrender: event handling fixes, esp. for GAP event
  + subparse: Fix non-closed tag handling
  + videoscale: fix handling of unknown buffer metas
  + videosink: reverse playback handling fixes
  + qtmux: Prefill mode fixes, especially for raw audio
  + multiudpsink: allow binding to IPv6 address
  + rtspsrc:
  - Fix usage of IPv6 connections in SETUP
  - Only EOS on timeout if all streams are timed out/EOS
  + splitmuxsrc: fix playback stall if there are unlinked pads
  + v4l2: Fix SIGSEGV on state change during format changes
  + wavparse robustness fixes
  + Fix static linking on macOS (opengl, vulkan)
  + gstreamer-vaapi: fix headless build against mesa >= 22.3.0
  + GStreamer Editing Services library: Fix build with tools
    disabled
  + webrtc example/demo fixes
  + unit test fixes for aesdec and rtpjitterbuffer
  + Cerbero: Fix ios cross-compile with cmake on M1; some recipe
    updates and other build fixes
  + Miscellaneous bug fixes, memory leak fixes, and other stability
    and reliability improvements
  + Performance improvements
  + Changes in gstreamer base package:
  - allocator: Copy allocator name in gst_allocator_register()
  - concat: Properly propagate EOS seqnum
  - fakesrc: avoid time overflow with datarate
  - Fix build of 1.20 branch with Meson 0.64.1 for those who have
    hotdoc installed on their system.
  - gst-inspect: Don't leak list
  - meson: fix check for pthread_setname_np()
  - miniobject: support higher refcount values
  - pads: Fix non-serialized sticky event push, e.g. instant
    change rate events
  - padtemplate: Fix annotations
  - systemclock: Use futex_time64 syscall on x32 and other
    platforms that always...
  - -Wimplicit-function-declaration in pthread_setname_np check
    (missing GNUSOURCE)

==== gstreamer-plugins-bad ====
Version update (1.20.4 -> 1.20.5)
Subpackages: gstreamer-plugins-bad-lang libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0

- Update to version 1.20.5:
  + aesdec:
  - Fix padding removal for per-buffer-padding=FALSE
  - Fix test failing in gst-plugins-bad
  + alphacombine: Add missing query handler for gaps
  + avfdeviceprovider: do not leak the properties
  + avfvideosrc: Report latency when doing screen capture
  + d3d11screencapturesrc: Specify PAR 1/1 to template caps
  + d3d11videosink:
  - Fixing focus lost on desktop layout change
  - Call ShowWindow() from window thread
  - Fix deadlock when parent window is busy
  - Always clear back buffer on resize
  + decklink: reset calculation of time_mapping to fix clipping
    HDMI video
  + directshow: Fix build error with glib 2.75 and newer
  + dvbsubenc:
  - Forward GAP events as-is if we wouldn't produce an end packet
  - Write Display Definition Segment if a non-default
    width/height is used
  + h265decoder: Do not abort when failed to prepare ref pic set
  + h264parser: Fix a typo in pred_weight_table parsing.
  + mediafoundation, d3d11: Fix memory leak and make leak tracer
    happy
  + mpegts:
  - Handle when iconv doesn't support ISO 6937 (e.g. musl libc)
  - Check continuity counter on section streams
  + mpegtsdemux: Always clear packetizer on DISCONT push mode
  + srt: various fixes - improve stats and error handling
  + rtmp2: Improve error messages
  + rtmp2sink: Correctly return GST_FLOW_ERROR on error
  + vulkan: Fix static linking on macOS
  + webrtcbin: also add rtcp-fb ccm fir for video mlines by default
  + webrtc/nice: fix small leak of split strings

==== gstreamer-plugins-base ====
Version update (1.20.4 -> 1.20.5)
Subpackages: gstreamer-plugins-base-lang libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstTag-1_0

- Update to version 1.20.5:
  + audioconvert, audioresample, audiofilter: fix divide by 0 for
    input buffer without caps
  + cdparanoia: Ignore compiler warning coming from the cdparanoia
    header
  + oggdemux, parsebin: More leak fixes
  + opengl:
  - Fix automatic dispmanx detection for rpi4
  - Fix usage of eglCreate/DestroyImage
  - Fix static linking on macOS
  + Bump core requirement in 1.20 branch to 1.20.4
  + oggdemux: Don't leak incoming EOS event
  + opusdec: Various channel-related fixes
  + subparse: Fix non-closed tag handling.
  + textrender:
  - Don't blindly forward all events and don't blindly forward
    all events
  - Negotiate caps on a GAP event if none were negotiated yet
  + timeoverlay: fix pad leak
  + videodecoder: Only post latency message if it changed
  + videoscale: buffer meta handling fixes (NULL-terminate array of
    valid meta tags)
  + videosink: Don't return unknown end-time from get_times()

==== gstreamer-plugins-good ====
Version update (1.20.4 -> 1.20.5)
Subpackages: gstreamer-plugins-good-gtk gstreamer-plugins-good-lang

- Update to version 1.20.5:
  + flacparse: Fix handling of headers advertising 32bps
  + multiudpsink: allow binding to IPv6 address
  + oss4: Fix debug category initialization
  + qt5:
  - Deactivate context if fill_info fails
  - Initialize GError properly in gst_qt_get_gl_wrapcontext()
  + qtdemux:
  - Check return value from gst_structure_get in PIFF box
  - Use unsigned int types to store result of QT_UINT32
  - Prefill mode fixes
  + rtpjitterbuffer tests: Cast drop-messages-interval type
    properly (fixing it on 32-bit architectures)
  + rtspsrc:
  - Don't replace 404 errors with "no auth protocol found"
  - Fix seek event leaks
  - Fix usage of IPv6 connections in SETUP
  - Only EOS on timeout if all streams are timed out/EOS
  + splitmuxsrc: don't queue data on unlinked pads
  + v4l2: Fix SIGSEGV on 'change state' during 'format change'
  + v4l2videodec: Fix activation of internal pool
  + wavparse:
  - Avoid occasional crash due to referencing freed buffer.
  - Fix crash that occurs in push mode when header chunks are
    corrupted in certain ways.

==== opencc ====
Version update (1.1.4 -> 1.1.6)
Subpackages: libopencc1_1 opencc-data

- update to 1.1.6:
  * FTBFS for MacOS w/ Python 3.11
  * Support Python 3.11
  * Automatically name SO files
  * Add support for Apple silicon build tag
  * other minor fixes

==== pam-full-src ====

- Also obsolete pam_unix-32bit to have clean upgrade path.
- Merge pam_unix back into pam, seperate package not needed anymore
- Update pam-git.diff to current upstream
  - pam_env: Use vendor specific pam_env.conf and environment as fallback
  - pam_shells: Use the vendor directory
  obsoletes pam_env_econf.patch
- Refresh docbook5.patch

==== permissions ====
Version update (1599_20220912 -> 1599_20221220)
Subpackages: chkstat permissions-config

- Update to version 20221220:
  * profiles: remove outdated kdesud, apptainer entries

==== python-httpcore ====
Version update (0.15.0 -> 0.16.3)

- Update to 0.16.3
  * Allow ws and wss schemes. Allows us to properly support
    websocket upgrade connections. (#625)
  * Forwarding HTTP proxies use a connection-per-remote-host.
    Required by some proxy implementations. (#637)
  * Don't raise RuntimeError when closing a connection pool with
    active connections. Removes some error cases when cancellations
    are used. (#631)
  * Lazy import anyio, so that it's no longer a hard dependancy,
    and isn't imported if unused. (#639)
- Add httpcore-allow-deprecationwarnings-test.patch
  gh#encode/httpcore#511, gh#agronholm/anyio#470
- update to 0.16.2:
  * Revert 'Fix async cancellation behaviour', which introduced race conditions
  * Raise RuntimeError if attempting to us UNIX domain sockets on Windows
  * Fix HTTP/1.1 interim informational responses, such as "100 Continue"
  * Support HTTP/1.1 informational responses.
  * Fix async cancellation behaviour.
  * Support h11 0.14

==== samba ====
Version update (4.17.3+git.283.2157972742b -> 4.17.4+git.300.305b22bfce)
Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3

- Update to 4.17.4
  * CVE-2022-44640 Upstream Heimdal free of user-controlled
    pointer in FAST; (bsc#14929);
  * CVE-2021-20251 Bad password count not incremented atomically;
    (bsc#14611);
  * CVE-2022-42898 krb5_pac_parse() buffer parsing vulnerability;
    (bsc#15203);
  * CVE-2022-37966 rc4-hmac Kerberos session keys issued to
    modern servers; (bso#15237);
  * CVE-2022-37967 Kerberos constrained delegation ticket forgery
    possible against Samba AD DC; (bso#15231);
  * CVE-2022-38023 RC4/HMAC-MD5 NetLogon Secure Channel is weak
    and should be avoided; (bso#15240);
  * pam_winbind uses time_t and pointers assuming they are of the
    same size; (bso#15224);
  * Heimdal session key selection in AS-REQ examines wrong entry;
    (bso#15219);
  * filter-subunit is inefficient with large numbers of
    knownfails; (bso#15258);
  * smbd allows setting FILE_ATTRIBUTE_TEMPORARY on directories;
    (bso#15252);
  * The KDC logic arround msDs-supportedEncryptionTypes differs
    from Windows; (bso#13135);
  * libnet: change_password() doesn't work with
    dcerpc_samr_ChangePasswordUser4(); (bso#15206);
  * Heimdal session key selection in AS-REQ examines wrong entry;
    (bso#15219);
  * Memory leak in snprintf replacement functions; (bso#15230);
  * RODC doesn't reset badPwdCount reliable via an RWDC
    (CVE-2021-20251 regression); (bso#15253);
  * Prevent EBADF errors with vfs_glusterfs; (bso#15198);
  * %U for include directive doesn't work for share listing
    (netshareenum); (bso#15243);
  * Stack smashing in net offlinejoin requestodj; (bso#15257);
  * Windows 11 22H2 and Samba-AD 4.15 Kerberos login issue;
    (bso#15197);
  * Heimdal session key selection in AS-REQ examines wrong entry;
    (bso#15219);
- Remove deprecated if-{down,up} scripts; (bsc#1206444);
- Adjust the systemd drop-in file for named service; (bsc#1201689);
  * Paths are additive so do not repeat paths from named.service
  * Prefix the samba DLZ directory with "-" to ignore this path
    if it does not exists
- Migration PAM settings to /usr/etc: Saving user changed
  configuration files in /etc and restoring them while an RPM
  update.

==== tcl ====

- bsc#1206623, tcl-string-compare.patch: Fix a bug in string
  comparison on big endian that made test string-2.20.1 fail.