FreeBSD/ports 9702ad1security/vuxml/vuln 2026.xml

by Thomas Zander (riggs) on ⎇
security/vuxml: Document multiple vulnerabilities in traefik
DeltaFile
+30-0security/vuxml/vuln/2026.xml
+30-01 files

FreeBSD/ports 24ec212devel/py-types-jsonschema Makefile distinfo, devel/py-types-jsonschema/files patch-pyproject.toml

by Matthew Seaman (matthew) on ⎇
devel/py-types-jsonschema: update to 4.26.0.20260325

Following upstream changes, switch to PEP517 build with the default
setuptools.  Apply even more workarounds for the elderl version of
setuptools in ports.

Changes:        https://github.com/typeshed-internal/stub_uploader/blob/main/data/changelogs/jsonschema.md
Reported by:    replogy
DeltaFile
+11-4devel/py-types-jsonschema/files/patch-pyproject.toml
+5-2devel/py-types-jsonschema/Makefile
+3-3devel/py-types-jsonschema/distinfo
+19-93 files

FreeBSD/ports 310ddc0irc/weechat distinfo Makefile, irc/weechat/files patch-CMakeLists.txt patch-src_core_CMakeLists.txt

by Bernard Spil (brnrd) on ⎇
irc/weechat: Update to 4.9.0
DeltaFile
+33-7irc/weechat/files/patch-CMakeLists.txt
+0-23irc/weechat/files/patch-src_core_CMakeLists.txt
+3-3irc/weechat/distinfo
+1-1irc/weechat/Makefile
+37-344 files

FreeBSD/ports 1c5e093security/vuxml/vuln 2026.xml

by Bernard Spil (brnrd) on ⎇
security/vuxml: Document Roundcube vulnerability
DeltaFile
+28-0security/vuxml/vuln/2026.xml
+28-01 files

FreeBSD/ports 3d519bascience/tblite pkg-plist distinfo

by Yuri Victorovich (yuri) on ⎇
science/tblite: update 0.5.0 → 0.5.0.10
DeltaFile
+0-9science/tblite/pkg-plist
+3-3science/tblite/distinfo
+2-2science/tblite/Makefile
+5-143 files

FreeBSD/ports 62485ebscience/dftd4 distinfo pkg-plist, science/py-dftd4 distinfo Makefile

by Yuri Victorovich (yuri) on ⎇
science/{,py-}dftd4: update 3.7.0 → 4.1.0
DeltaFile
+3-3science/py-dftd4/distinfo
+3-3science/dftd4/distinfo
+2-3science/dftd4/pkg-plist
+3-2science/dftd4/Makefile
+2-1science/py-dftd4/Makefile
+1-1science/py-qcengine/Makefile
+14-136 files

FreeBSD/ports 2c2f8c2devel/amber distinfo Makefile

by Yuri Victorovich (yuri) on ⎇
devel/amber: update 0.6.0 → 0.6.1
DeltaFile
+211-167devel/amber/distinfo
+105-84devel/amber/Makefile
+316-2512 files

FreeBSD/ports f24524cscience/multicharge Makefile pkg-plist

by Yuri Victorovich (yuri) on ⎇
science/multicharge: update 0.4.0 → 0.5.0
DeltaFile
+8-2science/multicharge/Makefile
+7-2science/multicharge/pkg-plist
+5-3science/multicharge/distinfo
+20-73 files

FreeBSD/ports 2992112devel/cocogitto distinfo Makefile

by Yuri Victorovich (yuri) on ⎇
devel/cocogitto: update 6.5.0 → 7.0.0
DeltaFile
+235-215devel/cocogitto/distinfo
+123-108devel/cocogitto/Makefile
+358-3232 files

FreeBSD/ports d22842fdatabases/powa-web distinfo Makefile

by Palle Girgensohn (girgen) on ⎇
databases/powa-web: Update to 5.1.4

Release notes:  https://github.com/powa-team/powa-web/releases/tag/5.1.4
DeltaFile
+3-3databases/powa-web/distinfo
+1-1databases/powa-web/Makefile
+4-42 files

FreeBSD/src 7d1285esys/amd64/amd64 exec_machdep.c

by Konstantin Belousov (kib) on ⎇
amd64 sendsig(): explicitly copy registers from trapframe to ucontext

With the IDT event delivery, previously reserved fields in tf_cs and
tf_ss are guaranteed to be zero. With FRED, these fields are not zero,
which affects the values copied to userspace.

Reviewed by:    markj
Sponsored by:   The FreeBSD Foundation
MFC after:      1 week
Differential revision:  https://reviews.freebsd.org/D56141
DeltaFile
+28-1sys/amd64/amd64/exec_machdep.c
+28-11 files

FreeBSD/ports 934b671devel/gitaly distinfo, net/gitlab-agent distinfo

by Matthias Fechner (mfechner) on ⎇
www/gitlab: security and patch update to 18.10.1

Changes:        https://about.gitlab.com/releases/2026/03/25/patch-release-gitlab-18-10-1-released/
Security:       b933083e-2b2e-11f1-b60a-2cf05da270f3
DeltaFile
+13-13devel/gitaly/distinfo
+6-6www/gitlab/distinfo
+5-5www/gitlab-pages/distinfo
+5-5www/gitlab-workhorse/distinfo
+5-5net/gitlab-agent/distinfo
+1-1www/gitlab/Makefile.common
+35-356 files

FreeBSD/ports 7b92e8fnet/traefik distinfo Makefile

by Thomas Zander (riggs) on ⎇
net/traefik: Update to upstream release 3.6.12

Details:
- Bugfix release, see
  https://github.com/traefik/traefik/releases/tag/v3.6.12
- Includes security fixes:
  - BasicAuth/DigestAuth Identity Spoofing via Non-Canonical headerField
  - Update dependency for a previously vulnerable gRPC-go implementation

MFH:            2026Q1
Security:       CVE-2026-33433
                CVE-2026-33186
(cherry picked from commit 3c1a911846043a4d046d8a985393fa04273f52ce)
DeltaFile
+3-3net/traefik/distinfo
+1-1net/traefik/Makefile
+4-42 files

FreeBSD/ports 3c1a911net/traefik distinfo Makefile

by Thomas Zander (riggs) on ⎇
net/traefik: Update to upstream release 3.6.12

Details:
- Bugfix release, see
  https://github.com/traefik/traefik/releases/tag/v3.6.12
- Includes security fixes:
  - BasicAuth/DigestAuth Identity Spoofing via Non-Canonical headerField
  - Update dependency for a previously vulnerable gRPC-go implementation

MFH:            2026Q1
Security:       CVE-2026-33433
                CVE-2026-33186
DeltaFile
+3-3net/traefik/distinfo
+1-1net/traefik/Makefile
+4-42 files

FreeBSD/ports 2b44550mail/sendmail-devel Makefile, mail/sendmail-devel/files patch-blacklist_client.h patch-blocklist.c

by Dirk Meyer (dinoex) on ⎇
mail/sendmail-devel: Use blocklist

renamed option BLACKLISTD to BLOCKLISTD
PR: 294095
DeltaFile
+0-60mail/sendmail-devel/files/patch-blacklist_client.h
+60-0mail/sendmail-devel/files/patch-blocklist.c
+60-0mail/sendmail-devel/files/patch-blocklist_client.h
+0-60mail/sendmail-devel/files/patch-blacklist.c
+25-6mail/sendmail-devel/Makefile
+13-13mail/sendmail-devel/files/patch-srvrsmtp.c
+158-1399 files not shown
+191-15915 files

FreeBSD/ports ff6c9f9x11-toolkits/gtk30 distinfo Makefile

by Olivier Duchateau via Gleb Popov (arrowd) on ⎇
x11-toolkits/gtk30: update to 3.24.52

PR:             294005
DeltaFile
+3-3x11-toolkits/gtk30/distinfo
+2-2x11-toolkits/gtk30/Makefile
+5-52 files

FreeBSD/ports 61f6338mail/sendmail Makefile, mail/sendmail/files patch-blacklist.c patch-blocklist_client.h

by Dirk Meyer (dinoex) on ⎇
mail/sendmail: Use blocklist

renamed option BLACKLISTD to BLOCKLISTD
PR: 294094
DeltaFile
+0-60mail/sendmail/files/patch-blacklist.c
+60-0mail/sendmail/files/patch-blocklist_client.h
+60-0mail/sendmail/files/patch-blocklist.c
+0-60mail/sendmail/files/patch-blacklist_client.h
+25-7mail/sendmail/Makefile
+13-13mail/sendmail/files/patch-srvrsmtp.c
+158-1409 files not shown
+183-16415 files

FreeBSD/ports 1a06b83x11-wm/mango distinfo Makefile, x11-wm/mango/files pkg-message.in

by Nicola Vitale (nivit) on ⎇
x11-wm/mango: Update to 0.12.8

- Fix project name in pkg-descr and pkg-message  after it was renamed
  upstream ( https://cgit.freebsd.org/ports/commit/?id=f74d5e15 ).

ChangeLog:      https://github.com/mangowm/mango/releases/tag/0.12.8
Reported by:    DreamMaoMao <notifications at github.com>
DeltaFile
+3-3x11-wm/mango/distinfo
+1-1x11-wm/mango/Makefile
+1-1x11-wm/mango/files/pkg-message.in
+1-1x11-wm/mango/pkg-descr
+6-64 files

FreeBSD/ports 1a13219audio/py-pyradio distinfo Makefile

by Nicola Vitale (nivit) on ⎇
audio/py-pyradio: Update to 0.9.3.11.29

ChangeLog:      https://github.com/coderholic/pyradio/releases/tag/0.9.3.11.29
Reported by:    Spiros Georgaras <notifications at github.com>
DeltaFile
+3-3audio/py-pyradio/distinfo
+1-1audio/py-pyradio/Makefile
+4-42 files

FreeBSD/ports 176b5c9security/vuxml/vuln 2026.xml

by Matthias Fechner (mfechner) on ⎇
security/vuxml: document gitlab vulnerabilities
DeltaFile
+51-0security/vuxml/vuln/2026.xml
+51-01 files

FreeBSD/ports da5a426science/phonopy distinfo Makefile, science/py-phonopy Makefile distinfo

by Yuri Victorovich (yuri) on ⎇
science/{,py-}phonopy: update 3.0.1 → 3.4.0
DeltaFile
+8-1science/py-phonopy/Makefile
+3-3science/phonopy/distinfo
+3-3science/py-phonopy/distinfo
+1-1science/phonopy/Makefile
+15-84 files

FreeBSD/ports 71ac25btextproc/cpp-peglib distinfo Makefile

by Yuri Victorovich (yuri) on ⎇
textproc/cpp-peglib: update 1.10.1 → 1.10.2
DeltaFile
+3-3textproc/cpp-peglib/distinfo
+2-2textproc/cpp-peglib/Makefile
+5-52 files

FreeBSD/ports ad8a777multimedia Makefile, multimedia/termusic distinfo Makefile

by Yuri Victorovich (yuri) on ⎇
multimedia/termusic: New port: Music Player TUI
DeltaFile
+1,307-0multimedia/termusic/distinfo
+692-0multimedia/termusic/Makefile
+11-0multimedia/termusic/pkg-descr
+1-0multimedia/Makefile
+2,011-04 files

FreeBSD/ports f799474www/cpp-httplib Makefile distinfo

by Yuri Victorovich (yuri) on ⎇
www/cpp-httplib: update 0.37.2 → 0.40.0
DeltaFile
+7-1www/cpp-httplib/Makefile
+3-3www/cpp-httplib/distinfo
+10-42 files

FreeBSD/ports 0d3f05bdeskutils/skim distinfo Makefile

by Yuri Victorovich (yuri) on ⎇
deskutils/skim: update 4.0.0 → 4.0.1
DeltaFile
+87-91deskutils/skim/distinfo
+43-45deskutils/skim/Makefile
+130-1362 files

FreeBSD/ports 165c6e6textproc/jsongrep distinfo Makefile

by Yuri Victorovich (yuri) on ⎇
textproc/jsongrep: update 0.7.0 → 0.8.0
DeltaFile
+99-25textproc/jsongrep/distinfo
+50-13textproc/jsongrep/Makefile
+149-382 files

FreeBSD/src 6904270usr.sbin/syslogd syslogd.c, usr.sbin/syslogd/tests syslogd_test.sh

by tzyt via Enji Cooper (ngie) on ⎇
syslogd: Fix ereregex property filters and add test

This change fixes Bug 293879, where ereregex filters in syslogd
did not handle alternation correctly.

The issue appears to come from mixing up two different kinds of
flags: syslogd's internal serialized filter flags in
usr.sbin/syslogd/syslogd.h, and the regex compilation flags from
include/regex.h. ereregex was storing REG_EXTENDED in cmp_flags,
even though cmp_flags is meant to carry syslogd's own FILT_FLAG_*
values for configuration serialization and reconstruction.

REG_EXTENDED has the same bit value as FILT_FLAG_EXCLUDE, so the
filter could be reconstructed with the wrong semantics.

The fix stores FILT_FLAG_EXTENDED instead, allowing syslogd to
correctly REG_EXTENDED when compiling the regex.

A test was also added for both ereregex and !ereregex filters.

    [7 lines not shown]
DeltaFile
+22-0usr.sbin/syslogd/tests/syslogd_test.sh
+1-1usr.sbin/syslogd/syslogd.c
+23-12 files

FreeBSD/ports 70c8688security/nmap/files patch-libdnet-stripped_configure patch-nping_Crypto.cc

by Cy Schubert (cy) on ⎇
security/nmap: Update to 7.99
DeltaFile
+0-29security/nmap/files/patch-libdnet-stripped_configure
+0-13security/nmap/files/patch-nping_Crypto.cc
+0-13security/nmap/files/patch-nse__openssl.cc
+0-13security/nmap/files/patch-nse__ssl__cert.cc
+0-11security/nmap/files/patch-libdnet-stripped_src_intf.c
+3-3security/nmap/files/patch-liblua_Makefile
+3-822 files not shown
+7-878 files

FreeBSD/ports 79b10aesecurity/nmap-devel Makefile distinfo

by Cy Schubert (cy) on ⎇
security/nmap-devel: Update to the latest GH commit
DeltaFile
+3-4security/nmap-devel/Makefile
+3-3security/nmap-devel/distinfo
+6-72 files

FreeBSD/src e7de7fesys/dev/usb usbdevs

by Abdelkader Boudih via Adrian Chadd (adrian) on ⎇
usbdevs: Add USB device IDs for Nuand bladeRF SDR

Add vendor and product IDs for bladeRF family of USB software defined radios manufactured by Nuand LLC.

Reviewed by:    imp, adrian
Differential Revision:  https://reviews.freebsd.org/D54733
DeltaFile
+7-0sys/dev/usb/usbdevs
+7-01 files