Changelog for liblzma5-5.2.3-150023.66.x86_64.rpm :

* Thu Apr 07 2022 danilo.spinellaAATTsuse.com- Fix ZDI-CAN-16587 Fix escaping of malicious filenames (ZDI-CAN-16587 bsc#1198062 CVE-2022-1271)
* bsc1198062.patch
* Tue May 21 2019 kstreitovaAATTsuse.com- add SUSE-Public-Domain licence as some parts of xz utils (liblzma, xz, xzdec, lzmadec, documentation, translated messages, tests, debug, extra directory) are in public domain licence [bsc#1135709]
* Mon Mar 19 2018 kukukAATTsuse.de- Use %license instead of %doc [bsc#1082318]
* Mon Jul 10 2017 jengelhAATTinai.de- % needs to be encoded in description; adjust weird indent there as well. Expand LZMA in summaries.
* Fri Jun 30 2017 olafAATTaepfle.de- Really use the selfdefined CFLAGS during build to fix build
* Sun Jun 25 2017 astiegerAATTsuse.com- fix CentOS/RHEL builds after clean-up
* Wed Jun 21 2017 mpluskalAATTsuse.com- Simplify spec file conditions- Clenup profiled building- Use full lists of files
* Tue Feb 21 2017 adrianAATTsuse.de- enable static package by default. Needed for AppImageKit
* Sat Dec 31 2016 astiegerAATTsuse.com- xz 5.2.3:
* xz: always close a file before trying to delete it to avoid problems on some operating system and file system combinations.
* C99/C11 conformance fixes to liblzma. The issues affected at least some builds using link-time optimizations.
* Fixed bugs in the rarely-used function lzma_index_dup().
* Use of external SHA-256 code is now disabled by default. It can still be enabled by passing --enable-external-sha256
* Changed CPU core count detection to use sched_getaffinity() on GNU/Linux and GNU/kFreeBSD.
* Fixes to the build-system
* Sun Mar 13 2016 mpluskalAATTsuse.com- Install xznew with correct permissions (boo#970842)