openSUSE-SU-2026:0072-1: moderate: Security update for libaec
openSUSE-SU-2026:20332-1: important: Security update for chromium
openSUSE-SU-2026:20327-1: moderate: Security update for helm
openSUSE-SU-2026:20333-1: important: Security update for python-PyPDF2
openSUSE-SU-2026:20330-1: important: Security update for python-uv
openSUSE-SU-2026:20329-1: moderate: Security update for gstreamer-rtsp-server, gstreamer-plugins-ugly, gstreamer-plugins-rs, gstreamer-plugins-libav, gstreamer-plugins-good, gstreamer-pl ...
openSUSE-SU-2026:0072-1: moderate: Security update for libaec
openSUSE Security Update: Security update for libaec
_______________________________
Announcement ID: openSUSE-SU-2026:0072-1
Rating: moderate
References: #1258965
Affected Products:
openSUSE Backports SLE-15-SP6
openSUSE Backports SLE-15-SP7
_______________________________
An update that contains security fixes can now be installed.
Description:
This update for libaec fixes the following issues:
Libaec was updated to version 1.1.6 to fix a buffer overflow [bnc#1258965].
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Backports SLE-15-SP7:
zypper in -t patch openSUSE-2026-72=1
- openSUSE Backports SLE-15-SP6:
zypper in -t patch openSUSE-2026-72=1
Package List:
- openSUSE Backports SLE-15-SP7 (aarch64 i586 ppc64le s390x x86_64):
libaec-debugsource-1.1.6-bp157.2.4.1
libaec-devel-1.1.6-bp157.2.4.1
libaec0-1.1.6-bp157.2.4.1
libaec0-debuginfo-1.1.6-bp157.2.4.1
libsz2-1.1.6-bp157.2.4.1
libsz2-debuginfo-1.1.6-bp157.2.4.1
sz2-devel-1.1.6-bp157.2.4.1
- openSUSE Backports SLE-15-SP7 (aarch64_ilp32):
libaec0-64bit-1.1.6-bp157.2.4.1
libaec0-64bit-debuginfo-1.1.6-bp157.2.4.1
libsz2-64bit-1.1.6-bp157.2.4.1
libsz2-64bit-debuginfo-1.1.6-bp157.2.4.1
- openSUSE Backports SLE-15-SP7 (x86_64):
libaec0-32bit-1.1.6-bp157.2.4.1
libaec0-32bit-debuginfo-1.1.6-bp157.2.4.1
libsz2-32bit-1.1.6-bp157.2.4.1
libsz2-32bit-debuginfo-1.1.6-bp157.2.4.1
- openSUSE Backports SLE-15-SP6 (aarch64 i586 ppc64le s390x x86_64):
libaec-devel-1.1.6-bp156.2.4.1
libaec0-1.1.6-bp156.2.4.1
libsz2-1.1.6-bp156.2.4.1
sz2-devel-1.1.6-bp156.2.4.1
- openSUSE Backports SLE-15-SP6 (aarch64_ilp32):
libaec0-64bit-1.1.6-bp156.2.4.1
libsz2-64bit-1.1.6-bp156.2.4.1
- openSUSE Backports SLE-15-SP6 (x86_64):
libaec0-32bit-1.1.6-bp156.2.4.1
libsz2-32bit-1.1.6-bp156.2.4.1
References:
https://bugzilla.suse.com/1258965
openSUSE-SU-2026:20332-1: important: Security update for chromium
openSUSE security update: security update for chromium
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20332-1
Rating: important
References:
* bsc#1259213
Cross-References:
* CVE-2026-3536
* CVE-2026-3537
* CVE-2026-3538
* CVE-2026-3539
* CVE-2026-3540
* CVE-2026-3541
* CVE-2026-3542
* CVE-2026-3543
* CVE-2026-3544
* CVE-2026-3545
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves 10 vulnerabilities and has one bug fix can now be installed.
Description:
This update for chromium fixes the following issues:
Changes in chromium:
- Chromium 145.0.7632.159 (boo#1259213)
* CVE-2026-3536: Integer overflow in ANGLE
* CVE-2026-3537: Object lifecycle issue in PowerVR
* CVE-2026-3538: Integer overflow in Skia
* CVE-2026-3539: Object lifecycle issue in DevTools
* CVE-2026-3540: Inappropriate implementation in WebAudio
* CVE-2026-3541: Inappropriate implementation in CSS
* CVE-2026-3542: Inappropriate implementation in WebAssembly
* CVE-2026-3543: Inappropriate implementation in V8
* CVE-2026-3544: Heap buffer overflow in WebCodecs
* CVE-2026-3545: Insufficient data validation in Navigation
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-packagehub-152=1
Package List:
- openSUSE Leap 16.0:
chromedriver-145.0.7632.159-bp160.1.1
chromium-145.0.7632.159-bp160.1.1
References:
* https://www.suse.com/security/cve/CVE-2026-3536.html
* https://www.suse.com/security/cve/CVE-2026-3537.html
* https://www.suse.com/security/cve/CVE-2026-3538.html
* https://www.suse.com/security/cve/CVE-2026-3539.html
* https://www.suse.com/security/cve/CVE-2026-3540.html
* https://www.suse.com/security/cve/CVE-2026-3541.html
* https://www.suse.com/security/cve/CVE-2026-3542.html
* https://www.suse.com/security/cve/CVE-2026-3543.html
* https://www.suse.com/security/cve/CVE-2026-3544.html
* https://www.suse.com/security/cve/CVE-2026-3545.html
openSUSE-SU-2026:20327-1: moderate: Security update for helm
openSUSE security update: security update for helm
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20327-1
Rating: moderate
References:
* bsc#1251442
* bsc#1251649
Cross-References:
* CVE-2025-47911
* CVE-2025-58190
CVSS scores:
* CVE-2025-47911 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-47911 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-58190 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-58190 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed.
Description:
This update for helm fixes the following issues:
- Update to version 3.19.1:
* CVE-2025-47911: golang.org/x/net/html: Fixed various algorithms with
quadratic complexity when parsing HTML documents (bsc#1251442)
* CVE-2025-58190: golang.org/x/net/html: Fixed xcessive memory
consumption by `html.ParseFragment` when processing specially
crafted input (bsc#1251649)
* jsonschema: warn and ignore unresolved URN $ref to match
v3.18.4
* Avoid "panic: interface conversion: interface {} is nil"
* Fix `helm pull` untar dir check with repo urls
* Fix deprecation warning
* Add timeout flag to repo add and update flags
- Update to version 3.19.0:
* bump version to v3.19.0
* fix: use username and password if provided
* fix(helm-lint): fmt
* fix(helm-lint): Add TLSClientConfig
* fix(helm-lint): Add HTTP/HTTPS URL support for json schema references
* chore(deps): bump the k8s-io group with 7 updates
* fix: go mod tidy for v3
* fix Chart.yaml handling
* Handle messy index files
* json schema fix
* fix: k8s version parsing to match original
* Do not explicitly set SNI in HTTPGetter
* Disabling linter due to unknown issue
* Updating link handling
* fix: user username password for login
* Update pkg/registry/transport.go
* fix: add debug logging to oci transport
* fix: legacy docker support broken for login
* fix: plugin installer test with no Internet
* Handle an empty registry config file.
* Prevent fetching newReference again as we have in calling method
* Prevent failure when resolving version tags in oras memory store
* fix(client): skipnode utilization for PreCopy
* test: Skip instead of returning early. looks more intentional
* test: tests repo stripping functionality
* test: include tests for Login based on different protocol prefixes
* fix(client): layers now returns manifest - remove duplicate from descriptors
* fix(client): return nil on non-allowed media types
* Fix 3.18.0 regression: registry login with scheme
* Update pkg/plugin/plugin.go
* Wait for Helm v4 before raising when platformCommand and Command are set
* Revert "fix (helm) : toToml` renders int as float [ backport to v3 ]"
* build(deps): bump the k8s-io group with 7 updates
* chore: update generalization warning message
* fix: move warning to top of block
* fix: govulncheck workflow
* fix: replace fmt warning with slog
* fix: add warning when ignore repo flag
* feat: add httproute from gateway-api to create chart template
- Update to version 3.18.6:
* fix(helm-lint): fmt
* fix(helm-lint): Add TLSClientConfig
* fix(helm-lint): Add HTTP/HTTPS URL support for json schema
references
- Update to version 3.18.5:
* fix Chart.yaml handling 7799b48 (Matt Farina)
* Handle messy index files dd8502f (Matt Farina)
* json schema fix cb8595b (Robert Sirchia)
- Fix shell completion dependencies
* Add BuildRequires to prevent inclusion of folders owned by shells.
* Add Requires because installing completions without appropriate
shell is questionable.
- Fix zsh completion location
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-360=1
Package List:
- openSUSE Leap 16.0:
helm-3.19.1-160000.1.1
helm-bash-completion-3.19.1-160000.1.1
helm-fish-completion-3.19.1-160000.1.1
helm-zsh-completion-3.19.1-160000.1.1
References:
* https://www.suse.com/security/cve/CVE-2025-47911.html
* https://www.suse.com/security/cve/CVE-2025-58190.html
openSUSE-SU-2026:20333-1: important: Security update for python-PyPDF2
openSUSE security update: security update for python-pypdf2
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20333-1
Rating: important
References:
* bsc#1248089
* bsc#1258691
* bsc#1258692
* bsc#1258693
* bsc#1258934
* bsc#1258940
Cross-References:
* CVE-2025-55197
* CVE-2026-27024
* CVE-2026-27025
* CVE-2026-27026
* CVE-2026-27628
* CVE-2026-27888
CVSS scores:
* CVE-2026-27888 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2026-27888 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves 6 vulnerabilities and has 6 bug fixes can now be installed.
Description:
This update for python-PyPDF2 fixes the following issues:
Changes in python-PyPDF2:
- CVE-2026-27628: Fixed infinite loop when loading circular /Prev entries in cross-reference streams (bsc#1258940)
- CVE-2026-27888: Fixed issue where manipulated FlateDecode XFA streams can exhaust RAM (bsc#1258934)
- CVE-2025-55197: Fixed denial of service via craft PDF (bsc#1248089)
- CVE-2026-27024: Fixed infinite loop when processing TreeObject (bsc#1258691)
- CVE-2026-27025: Fixed long runtimes/large memory usage for large /ToUnicode streams (bsc#1258692)
- CVE-2026-27026: Fixed long runtimes for malformed FlateDecode streams (bsc#1258693)
- Convert to pip-based build
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-packagehub-153=1
Package List:
- openSUSE Leap 16.0:
python313-PyPDF2-2.11.1-bp160.2.1
References:
* https://www.suse.com/security/cve/CVE-2025-55197.html
* https://www.suse.com/security/cve/CVE-2026-27024.html
* https://www.suse.com/security/cve/CVE-2026-27025.html
* https://www.suse.com/security/cve/CVE-2026-27026.html
* https://www.suse.com/security/cve/CVE-2026-27628.html
* https://www.suse.com/security/cve/CVE-2026-27888.html
openSUSE-SU-2026:20330-1: important: Security update for python-uv
openSUSE security update: security update for python-uv
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20330-1
Rating: important
References:
* bsc#1258993
Cross-References:
* CVE-2025-13327
CVSS scores:
* CVE-2025-13327 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-13327 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves one vulnerability and has one bug fix can now be installed.
Description:
This update for python-uv fixes the following issue:
- CVE-2025-13327: parsing differentials when processing specially crafted ZIP archives during package installation
can lead to arbitrary code execution (bsc#1258993).
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-363=1
Package List:
- openSUSE Leap 16.0:
python313-uv-0.7.18-160000.4.1
python313-uv-bash-completion-0.7.18-160000.4.1
python313-uv-fish-completion-0.7.18-160000.4.1
python313-uv-zsh-completion-0.7.18-160000.4.1
References:
* https://www.suse.com/security/cve/CVE-2025-13327.html
openSUSE-SU-2026:20329-1: moderate: Security update for gstreamer-rtsp-server, gstreamer-plugins-ugly, gstreamer-plugins-rs, gstreamer-plugins-libav, gstreamer-plugins-good, gstreamer-pl ...
openSUSE security update: security update for gstreamer-rtsp-server, gstreamer-plugins-ugly, gstreamer-plugins-rs, gstreamer-plugins-libav, gstreamer-plugins-good, gstreamer-plugins-base, gstreamer-plugins-bad, gstreamer-docs, gstreamer-devtools, gstreamer
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20329-1
Rating: moderate
References:
* bsc#1237097
* bsc#1248053
Cross-References:
* CVE-2025-55159
CVSS scores:
* CVE-2025-55159 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H
* CVE-2025-55159 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves one vulnerability and has 2 bug fixes can now be installed.
Description:
This update for gstreamer-rtsp-server, gstreamer-plugins-ugly, gstreamer-plugins-rs, gstreamer-plugins-libav, gstreamer-plugins-good, gstreamer-plugins-base, gstreamer-plugins-bad, gstreamer-docs, gstreamer-devtools, gstreamer fixes the following issues:
Changes in gstreamer-rtsp-server:
- Update to version 1.26.7:
+ Fix issues with G_DISABLE_CHECKS & G_DISABLE_ASSERT.
+ rtsp-server: tests: Switch to fixtures to ensure pool shutdown
+ rtsp-server: tests: Fix a few memory leaks
Changes in gstreamer-plugins-ugly:
- Update to version 1.26.7:
+ No changes, stable version bump only.
Changes in gstreamer-plugins-rs:
- Update to version 1.26.7+git0.6ab75814:
* tracers: Fix inverted append logic when writing log files
* threadshare:
- examples: standalone: also handle buffer lists
- Pad push_list: downgrade Pad flushing log level
- sinks: fix / handle query()
- backpressure: abort pending items on flush start
- udpsink: fix panic recalculating latency from certain
executors
- audiotestsrc:
. support more Audio formats
. use AudioInfo
. fix latency
. act as a pseudo live source by default
- runtime task: execute action in downward transition
- example cleanups
- udpsink: distinguish sync status for latency & report added
latency
- sink elements: implement `send_event`
- dataqueue elements: report min and max latency
* rtp:
- Add linear audio (L8, L16, L24) RTP payloaders / depayloaders
* rtp: basedepay: reuse last PTS, when possible
* skia: Update to skia-safe 0.89
* mp4: Update to mp4-atom 0.9
* Update dependencies
* webrtc: livekit: Drop connection lock after take()
* onvifmetadatapay: copy metadata from source buffer
* fallbacksrc: Fix custom source reuse case
* add `rust-tls-native-roots` feature to the `reqwest` dep
* rtpamrpay2:
- Actually forward the frame quality indicator
- Set frame quality indicator flag
- Add patch to fix reproducibility of package build (boo#1237097)
- Update to version 1.26.6+git20.e287e869:
* Fix some new clippy 1.90 warnings
* colordetect: Don't use deprecated color_name API
* deny: Update
* quinn: Update to web-transport-quinn 0.8
* skia: Update to skia-safe 0.88
* Update Cargo.lock
* Allow windows-sys 0.61 too
* intersink: add sync property
* meson: Fix .pc files installation and simplify build output
handling. This also fixes the .pc file install directory and
ensures that the .pc files are only installed when static
builds is enabled.
- Drop devel subpackage following upstream changes.
- Update to version 1.26.6:
+ aws: Ensure task stopping on paused-to-ready state change
+ fallbacksrc:
- Don't panic during retries if the element was shut down in
parallel
- Don't restart source if the element is just being shut down
- Fix some custom source deadlocks
- Fix sources only being restarted once
+ gtk4: Try importing dmabufs withouth DMA_DRM caps
+ inter: Give the appsrc/appsink a name that has the parent
element as prefix
+ mp4: Skip tests using x264enc if it does not exist
+ rtpgccbwe: avoid clamp() panic when min_bitrate > max_bitrate
+ rtpmp4gdepay2: allow only constantduration with neither
constantsize nor sizelength set
+ rtprecv: fix race condition on first buffer
+ speechmatics: Specify rustls as an explicit dependency
+ spotify: update to librespot 0.7
+ threadshare:
- add a blocking adapter element
- always use block_on_or_add_subtask
- audiotestsrc: fix setting samples-per-buffer...
- blocking_adapter: fix Since marker in docs
- fix resources not available when preparing asynchronously
- fix ts-inter test one_to_one_up_first
- have: have Task log its obj
- intersink: return from blocking tasks when stopping
- inter: update doc example
- runtime/pad: lower log level pushing Buffer to flushing pad
- separate blocking & throttling schedulers
- update examples
- Update to getifaddrs 0.5
- Fix macOS build post getifaddrs 0.5 update
- Bump up getiffaddrs to 0.1.5 and revert "udp: avoid
getifaddrs in android"
- Reapply "udp: avoid getifaddrs in android"
+ transcriberbin: Fix some deadlocks
+ Update dependencies
+ webrtc: Migrate to warp 0.4 and switch to tokio-rustls
+ webrtc/signalling: Fix setting of host address
+ ci: add script to check readme against plugins list
+ Fix various new clippy 1.89 warnings
+ Don't suggest running cargo cinstall after cargo cbuild
+ meson: Isolate built plugins from cargo target directory
- Update to version 1.26.5+git11.949807a4 (boo#1248053,
CVE-2025-55159):
+ rtprecv: fix race condition on first buffer
+ threadshare: intersink: return from blocking tasks when
stopping
+ threadshare: inter: store upstream latency in InterContext
+ threadshare: add a blocking adapter element
+ transcriberbin: Fix settings/state lock order violation in
set_property()
+ transcriberbin: Don't keep state locked while querying upstream
latency
+ threadshare: audiotestsrc: fix setting samples-per-buffer...
+ rtpgccbwe: avoid clamp() panic when min_bitrate > max_bitrate
+ fallbacksrc: Don't restart source if the element is just being
shut down
+ aws: Ensure task stopping on paused-to-ready state change
+ fallbacksrc: Don't panic during retries if the element was shut
down in parallel
+ Update Cargo.lock.
- Update to version 1.26.5:
+ awstranscriber2, awstranslate: Handle multiple stream-start
event
+ ceaX08overlay: support ANY caps features, allowing e.g.
memory:GLMemory if downstream supports the overlay composition
meta
+ hlsmultivariantsink: Fix master playlist version
+ rtprecv: Drop state lock before chaining RTCP packets from the
RTP chain function
+ Add rtpbin2 examples
+ rtpmp4apay2: fix payload size prefix
+ rtp: threadshare: fix some property ranges
+ mpegtslivesrc: Remove leftover debug message
+ ts-audiotestsrc fixes
+ threadshare: fix flush for ts-queue ts-proxy & ts-intersrc
+ threadshare: fix regression in ts-proxysrc
+ threadshare: improvements to some elements
+ threadshare: Enable windows Win32_Networking feature
+ threadshare: queue & proxy: fix race condition stopping
+ threadshare: Also enable windows Win32_Networking_WinSock
feature
+ tracers: pipeline-snapshot: reduce WebSocket connection log
level
+ tracers: queue-levels: add support for threadshare DataQueue
related elements
+ tracers: Update to etherparse 0.19
+ transcriberbin: Fix handling of upstream latency query
+ webrtcsink: Move videorate before videoconvert and videoscale
to avoid processing frames that would be dropped
+ Fix various new clippy 1.89 warnings
- Update to version 1.26.4:
+ aws: s3hlssink: Write to S3 on OutputStream flush
+ cea708mux: fix clipping function
+ dav1ddec: Use video decoder base class latency reporting API
+ elevenlabssynthesizer: fix running time checks
+ gopbuffer: Push GOPs in order of time on EOS
+ gtk4: Improve color-state fallbacks for unknown values
+ gtk4: Add YCbCr memory texture formats
+ gtk4: Promote set_caps debug log to info
+ hlssink3: Fix a comment typo
+ hlssink3: Use closed fragment location in playlist generation
+ livekit: add room-timeout
+ mccparse: Convert "U" to the correct byte representation
+ mp4mux: add TAI timestamp element and muxing
+ threadshare: add a ts-rtpdtmfsrc element
+ rtp: Update to rtcp-types 0.2
+ rtpsend: Don't configure a zero min RTCP interval for senders
+ rtpbin2: Fix handling of unknown PTs and don't warn about
incomplete RTP caps to allow for bundling
+ rtpbin2: Improve rtcp-mux support
+ rtpbin2: fix race condition on serialized Queries
+ rtpbin2: sync: fix race condition
+ rtprecv optimize src pad scheduling
+ rtprecv: fix SSRC collision event sent in wrong direction
+ skia: Add harfbuzz, freetype and fontconfig as dependencies in
the meson build
+ tttocea{6,7}08: Disallow pango markup from input caps
+ ts-intersrc: handle dynamic inter-ctx changes
+ threadshare: src elements: don't pause the task in downward
state transitions
+ webrtc: sink: avoid recursive locking of the session
+ webrtcsink: fix deadlock on error setting remote description
+ webrtcsink: add mitigation modes parameter and signal
+ webrtc: fix Safari addIceCandidate crash
+ webrtc-api: Set default bundle policy to max-bundle
+ WHIP client: emit shutdown after DELETE request
+ Fix various new clippy 1.88 warnings
+ Update dependencies
- Update to version 1.26.3:
+ Add new speech synthesis element around ElevenLabs API
+ cea708mux: fix another WouldOverflow case
+ cea708mux: support configuring a limit to how much data will be
pending.
+ cea708overlay: also reset the output size on flush stop
+ gcc: handle out of order packets
+ fmp4mux: Fix panic on late GOP
+ livekit: expose a connection state property
+ mp4mux: add taic box
+ mp4mux: test the trak structure
+ pcap_writer: Make target-property and pad-path properties
writable again
+ skia: Don't build skia plugin by default for now
+ threadshare: cleanups & usability improvements
+ threadshare: sync runtime with latest async-io
+ threadshare: fix kqueue reactor
+ threadshare: Update to getifaddrs 0.2
+ threadshare: add new thread-sharing inter elements
+ threadshare: add a ts-rtpdtmfsrc element
+ transcriberbin: fix naming of subtitle pads
+ tttocea708: don't panic if a new service would overflow
+ webrtc: android: Update Gradle and migrate to
FindGStreamerMobile
+ webrtc: add new examples for stream selection over data channel
+ webrtcsrc: the webrtcbin get-transceiver index is not
mlineindex
+ webrtcsrc: send CustomUpstream events over control channel ..
+ webrtcsink: Don't require encoder element for pre-encoded
streams
+ webrtcsink: Don't reject caps events if the codec_data changes
+ whip: server: pick session-id from the endpoint if specified
+ cargo: add config file to force
CARGO_NET_GIT_FETCH_WITH_CLI=true
+ Cargo.lock, deny: Update dependencies and log duplicated
targo-lexicon
+ Update windows-sys dependency from ">=0.52, =0.52,
