Packages changed:
  gnome-shell-extension-desktop-icons
  gpgme
  gpgmeqt
  grub2
  hivex (1.3.20 -> 1.3.21)
  mariadb-connector-c (3.1.13 -> 3.2.3)
  publicsuffix (20210707 -> 20210804)
  python-kiwi (9.23.43 -> 9.23.49)
  python-pexpect
  python-tornado5
  python-tornado6
  xorg-x11-fonts
  xorg-x11-fonts-converted
  yast2-storage-ng (4.4.6 -> 4.4.7)

=== Details ===

==== gnome-shell-extension-desktop-icons ====

- Add desktop-icons-show-iso-file-icon.patch: Show ISO file icon as
  default icon.
  (bsc#1183504 glgo#GNOME/World/ShellExtensions/desktop-icons!196)

==== gpgme ====
Subpackages: libgpgme11 libgpgmepp6

- Fix build with glibc 2.34: [bsc#1189089]
  * Use glibc's closefrom.
  * Add gpgme-use-glibc-closefrom.patch

==== gpgmeqt ====

- Fix build with glibc 2.34: [bsc#1189089]
  * Use glibc's closefrom.
  * Add gpgme-use-glibc-closefrom.patch

==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen

- Replace grub2-use-stat-instead-of-udevadm-for-partition-lookup.patch and
  fix-grub2-use-stat-instead-of-udevadm-for-partition-lookup-with-new-glibc.patch
  with upstream backport:
  0001-osdep-Introduce-include-grub-osdep-major.h-and-use-i.patch and
  0002-osdep-linux-hostdisk-Use-stat-instead-of-udevadm-for.patch.

==== hivex ====
Version update (1.3.20 -> 1.3.21)
Subpackages: libhivex0 perl-Win-Hivex

- bsc#1189060 - VUL-0: CVE-2021-3622: hivex: hivex: stack overflow
  due to recursive call of _get_children. Update to version 1.3.21
  hivex-1.3.21.tar.gz
  hivex-1.3.21.tar.gz.sig

==== mariadb-connector-c ====
Version update (3.1.13 -> 3.2.3)

- Update to 3.2.3:
  * release notes and changelog:
    https://mariadb.com/kb/en/library/mariadb-connector-c-323-release-notes
    https://mariadb.com/kb/en/library/mariadb-connector-c-323-changelog
    https://mariadb.com/kb/en/library/mariadb-connector-c-322-release-notes
    https://mariadb.com/kb/en/library/mariadb-connector-c-322-changelog
    https://mariadb.com/kb/en/library/mariadb-connector-c-320-release-notes
    https://mariadb.com/kb/en/library/mariadb-connector-c-320-changelog
- Refresh private_library.patch

==== publicsuffix ====
Version update (20210707 -> 20210804)

- Update to version 20210804 (bsc#1189124):
  * Add elementor.cloud and elementor.cool (#1386)
  * add eero ddns domains (#1359)
  * add Adobe Project Helix domains to the list (#1378)
  * util: gTLD data autopull updates for 2021-07-24T15:13:29 UTC (#1384)
  * Add Spreadshop hosting domains: myspreadshop.com plus country-specific (#1368)
  * Add Supabase domains (#1363)
  * Add YunoHost DynDns domains: ynh.fr (#1380)
  * Update public_suffix_list.dat (#1376)
  * add new domains for thingdust AG (#1361)
  * Update public_suffix_list.dat (#1381)
  * Adding sellfy.store pages which render user generated content (#1379)
  * Add itcouldbewor.se to public suffix list (#1375)
  * Adding bitbucket.io pages which render user generated content (#1374)
  * Add rs.ba suffix (#1367)
  * Add tuleap-partners.com (#1360)
  * Add drr.ac and ju.mp (#1355)
  * Add cdn.prod.atlassian-dev.net (#1357)
  * Remove uwu.nu (#1377)
  * util: gTLD data autopull updates for 2021-07-22T15:14:11 UTC (#1382)

==== python-kiwi ====
Version update (9.23.43 -> 9.23.49)

- Bump version: 9.23.48 ? 9.23.49
- Fixed fstab entry for swap on LVM
  If an LVM setup is used together with a swapspace the
  swap is created as a volume in the volume group. The
  required fstab entry to activate swap was not using
  the LVM exposed device but the UUID of the low level
  block layer. This low level device is not created
  by udev because LVM takes over precedence in this
  case.
- Bump version: 9.23.47 ? 9.23.48
- Fixed LVM get_volumes
  Due to the change on the temporary directory yet another
  error in the volume manager classes for LVM got exposed.
- Bump version: 9.23.46 ? 9.23.47
- Fixed LVM/btrfs volume based image builds
  Due to the change on the temporary directory an error
  in the volume manager classes for LVM and btrfs was
  exposed. There was code which uses a sub-part of the
  volume mount point directory which is a tempdir based
  directory name. The sub-part was choosen by an index
  based path split which worked for /tmp but no longer for
  /var/tmp. With tempdir now being also a commandline
  option this code has to become more robust.
- Bump version: 9.23.45 ? 9.23.46
- Do not expose the delete feature in Temporary
  We do not want to expose the ability to create temporary
  data that doesn't get auto deleted at the end of its
  scope
- Refactor recovery archive creation
  The creation of the recovery archive was based on a tempfile
  which then gets moved to the final target file. This is bad
  because if causes the tempfile cleanup to raise an exception
  unless you specify delete=False. Creating a tempfile with
  delete=False however, negates the reason for creating self
  managed temporary data. Thus this code was refactored to
  create the recovery archive file at its final destination
  from the beginning on
- Moving temp data handling to its own namespace
  Moving use of mkdtemp, NamedTemporaryFile and TemporaryDirectory
  into its own class called Temporary: By default all temporary
  data is created below /var/tmp but can be changed via the
  global commandline option --temp-dir. This Fixes #1870
- Bump version: 9.23.44 ? 9.23.45
- Handle UnicodeDecode errors more gracefully
  If the Codec.decode() method cannot encode the given data to utf-8
  an Encoding exception is raised which causes kiwi to raise a
  KiwiDecodingError. That way to handle the error causes an image
  build to fail. However, this sort of error for example happens if
  the .changes file of a package contains invalid characters. From
  a user perspective this cannot be fixed and you cannot build the
  image because of a stupid character error in a .changes file
  outside your control. Because of this reason this commit handles
  the decode error case differently and applies the 'replace'
  strategy on error. The characters in questions gets replaced and
  the rest of the data which can be decoded is returned.
- Install mypy library stubs for mock
- Added documentation for oem-skip-verify element
- Increase size of efi fat image
  For ISO images an embedded efi fat image is needed to boot.
  As consequence of adding the mok manager it can happen that
  the size of the efi fat image is too small. With this commit
  the size is increased to prevent an out of space issue
- Bump version: 9.23.43 ? 9.23.44
- Add tests for baseVagrantSetup
- Set the directory permissions of /home/vagrant/.ssh to 0700 in baseVagrantSetup
- Don't modify main sshd_config file via baseVagrantSetup
  In Tumbleweed we switched from shipping sshd's config file in /etc to /usr/etc,
  but baseVagrantSetup was not respecting that.
  So instead of modifying the main config file, we instead create a custom file in
  /etc/ssh/sshd_config.d/ with our custom setting which is much more robust
  accross distributions. However, if /etc/ssh/sshd_config.d/ does not exist, then
  we fall back to adding our settings to /etc/ssh/sshd_config.
- Fixed LUKS keyfile permission bits
  LUKS keyfile should use 0600 file permission flags
- Fixed secure boot fallback setup
  Make sure MokManager gets copied. The name and location of
  the mok manager is distribution specific in the same way as
  the shim loader. Thus we need to apply a similar concept
  for looking it up. This Fixes bsc#1187515
- Improve live image integration test
  Build one live image for Standard EFI+BIOS boot and
  another variant that support SecureBoot+BIOS boot

==== python-pexpect ====

- Remove executable flag from examples/*.py: since we already patch
  out the shebangs, they are not directly startable anyway
  (boo#1189065).

==== python-tornado5 ====

- Dedup and remove exec bits from demos: fix boo#1189066
- Add python-tornado5-rpmlintrc for empty JS resource in demo

==== python-tornado6 ====

- Remove exec bits from demos: fix boo#1189066
- Add python-tornado6-rpmlintrc for empty JS resource in demo

==== xorg-x11-fonts ====
Subpackages: xorg-x11-fonts-core xorg-x11-fonts-legacy

- Convert the helv*.otb and cour*.otb files in a different way,
  generating all available font sizes as fonts files named
  * -75-dpi-converted and *-100dpi-converted and having the same
  font name for 75 and 100 dpi converted fonts (fixes boo#1174895).
- As part of the above fix, don't remove the "Regular" suffix from
  the full name of fonts in convertfont.py

==== xorg-x11-fonts-converted ====

- Convert the helv*.otb and cour*.otb files in a different way,
  generating all available font sizes as fonts files named
  * -75-dpi-converted and *-100dpi-converted and having the same
  font name for 75 and 100 dpi converted fonts (fixes boo#1174895).
- As part of the above fix, don't remove the "Regular" suffix from
  the full name of fonts in convertfont.py

==== yast2-storage-ng ====
Version update (4.4.6 -> 4.4.7)

- Improve detection of devices that contain an installation
  repository (bsc#1185694).
- 4.4.7