FreeBSD/src b72397dsys/kern sys_generic.c

kern_filewrite(): unconditionally calculate cnt, it is used by callers

Reported by:    dhw, madpilot
Tested by:      dhw
Sponsored by:   The FreeBSD Foundation
MFC after:      1 week
Fixes:  dfad790c8cca ("sendfile: stop abusing kern_writev()")
DeltaFile
+1-1sys/kern/sys_generic.c
+1-11 files

FreeBSD/ports 68f47afx11-servers/xwayland distinfo Makefile

x11-servers/xwayland: update: 24.1.12 -> 24.1.13

PR:             296613
Approved by:    x11 (arrowd, maintainer)
Security:       CVE-2026-55999

Sponsored by:   tipi.work
DeltaFile
+3-3x11-servers/xwayland/distinfo
+1-1x11-servers/xwayland/Makefile
+4-42 files

FreeBSD/ports 2f7969dx11-fonts/xlsfonts distinfo Makefile

x11-fonts/xlsfonts: update: 1.0.8 -> 1.0.9

PR:             296612
Approved by:    x11 (arrowd, maintainer)

Sponsored by:   tipi.work
DeltaFile
+3-3x11-fonts/xlsfonts/distinfo
+1-2x11-fonts/xlsfonts/Makefile
+4-52 files

FreeBSD/ports 9994722x11/xlsatoms distinfo Makefile

x11/xlsatoms: update: 1.1.4 -> 1.1.5

PR:             296611
Approved by:    x11 (arrowd, maintainer)

Sponsored by:   tipi.work
DeltaFile
+3-3x11/xlsatoms/distinfo
+1-3x11/xlsatoms/Makefile
+4-62 files

FreeBSD/ports 2b9d76esecurity/vuxml/vuln 2026.xml

security/vuxml: Document xwayland vulnerabilities
DeltaFile
+29-0security/vuxml/vuln/2026.xml
+29-01 files

FreeBSD/ports cb5a0fcscience/siesta Makefile distinfo, science/siesta/files patch-cmake_SiestaFindPackage.cmake patch-External_Lua-Engine_CMakeLists.txt

science/siesta: update 4.1.5 → 5.4.2
DeltaFile
+41-18science/siesta/Makefile
+55-0science/siesta/files/patch-cmake_SiestaFindPackage.cmake
+23-3science/siesta/distinfo
+24-0science/siesta/files/patch-External_Lua-Engine_CMakeLists.txt
+22-0science/siesta/files/patch-External_Lua-Engine_flook_Makefile
+165-215 files

FreeBSD/ports d937e88science/plumed distinfo Makefile

science/plumed: update 2.10.0 → 2.10.1
DeltaFile
+3-3science/plumed/distinfo
+1-1science/plumed/Makefile
+2-0science/plumed/pkg-plist
+6-43 files

FreeBSD/ports ef5bcf1x11/xkbutils distinfo Makefile

x11/xkbutils: update: 1.0.6 -> 1.0.7

PR:             296587
Approved by:    x11 (arrowd, maintainer)

Sponsored by:   tipi.work
DeltaFile
+3-3x11/xkbutils/distinfo
+1-3x11/xkbutils/Makefile
+4-62 files

FreeBSD/src ed7e0ebusr.sbin/bhyve snapshot.c bhyve_config.5, usr.sbin/bhyve/amd64 bhyverun_machdep.c

bhyve: allow overriding snapshot socket directory

By default bhyve(8) creates a snapshot socket in
"/var/run/bhyve/" (BHYVE_RUN_DIR).
As this is a system directory not writable by users,
this does not work when bhyve(8) is being started
as a non-root user.

Address that by allowing to override this directory.
In bhyve(8) it is done by setting 'rundir' option
with '-o rundir=<path>'.

In bhyvectl(8) it is done with '--rundir=<path>'.

MFC after:              1 month
Reviewed by:            bcr (manpages), bnovkov
Sponsored by:           The FreeBSD Foundation
Differential Revision:  https://reviews.freebsd.org/D57494
DeltaFile
+25-7usr.sbin/bhyvectl/bhyvectl.c
+10-4usr.sbin/bhyve/snapshot.c
+8-1usr.sbin/bhyve/bhyve_config.5
+7-1usr.sbin/bhyvectl/bhyvectl.8
+6-0usr.sbin/bhyve/amd64/bhyverun_machdep.c
+1-1usr.sbin/bhyve/snapshot.h
+57-141 files not shown
+58-157 files

FreeBSD/ports a6d2e68net/syncthing distinfo Makefile

net/syncthing: Update to 2.1.2

re: https://github.com/syncthing/syncthing/releases/tag/v2.1.2
DeltaFile
+3-3net/syncthing/distinfo
+1-1net/syncthing/Makefile
+4-42 files

FreeBSD/src e75fa2asys/compat/freebsd32 freebsd32_sysent.c, sys/kern init_sysent.c

Regen syscalls tables.

This catches up with 692b0ef1506ba which added CAPENABLED to
clock_nanosleep(). Curiously recent additions of the pdopenpid(2) and
pddupfd(2) were done before the cited commit, and that regen did not
included the change.

Sponsored by:   The FreeBSD Foundation
DeltaFile
+1-1sys/kern/init_sysent.c
+1-1sys/compat/freebsd32/freebsd32_sysent.c
+2-22 files

FreeBSD/ports ccdb34cnet/realtek-re-kmod distinfo Makefile

net/realtek-re-kmod: update to latest version to fix a regression
DeltaFile
+3-3net/realtek-re-kmod/distinfo
+2-1net/realtek-re-kmod/Makefile
+5-42 files

FreeBSD/ports 4c9b3e0www/freenginx-devel Makefile Makefile.extmod, www/freenginx-devel/files extra-patch-ngx_http_subs_filter_module.c

www/freenginx-devel: third-party modules management (+)

Fix and enable build for the substitution_filter module.

Bump PORTREIVISON.

Sponsored by:   tipi.work
DeltaFile
+39-0www/freenginx-devel/files/extra-patch-ngx_http_subs_filter_module.c
+1-1www/freenginx-devel/Makefile
+1-1www/freenginx-devel/Makefile.extmod
+41-23 files

FreeBSD/ports e8672adgraphics/vulkan-extension-layer distinfo Makefile

graphics/vulkan-extension-layer: update to 1.4.350.1
DeltaFile
+3-3graphics/vulkan-extension-layer/distinfo
+1-1graphics/vulkan-extension-layer/Makefile
+4-42 files

FreeBSD/ports 03ee1a8graphics/vulkan-validation-layers distinfo Makefile, graphics/vulkan-validation-layers/files patch-CMakeLists.txt

graphics/vulkan-validation-layers: update to 1.4.356
DeltaFile
+5-16graphics/vulkan-validation-layers/files/patch-CMakeLists.txt
+3-3graphics/vulkan-validation-layers/distinfo
+1-1graphics/vulkan-validation-layers/Makefile
+9-203 files

FreeBSD/ports b276f5cgraphics/vulkan-utility-libraries distinfo Makefile

graphics/vulkan-utility-libraries: update to 1.4.356
DeltaFile
+3-3graphics/vulkan-utility-libraries/distinfo
+1-1graphics/vulkan-utility-libraries/Makefile
+4-42 files

FreeBSD/ports d39ccd4graphics/vulkan-tools distinfo Makefile

graphics/vulkan-tools: update to 1.4.356
DeltaFile
+3-3graphics/vulkan-tools/distinfo
+1-1graphics/vulkan-tools/Makefile
+4-42 files

FreeBSD/ports 6b56ef5graphics/vulkan-loader distinfo Makefile

graphics/vulkan-loader: update to 1.4.356
DeltaFile
+3-3graphics/vulkan-loader/distinfo
+1-1graphics/vulkan-loader/Makefile
+4-42 files

FreeBSD/ports c675066graphics/vulkan-headers distinfo Makefile

graphics/vulkan-headers: update to 1.4.356
DeltaFile
+3-3graphics/vulkan-headers/distinfo
+1-1graphics/vulkan-headers/Makefile
+4-42 files

FreeBSD/ports 38244acdns/nsd distinfo Makefile

idns/nsd: Update 4.14.3 => 4.15.0

Release Notes:
https://community.nlnetlabs.nl/t/nsd-4-15-0-released/3423/1

PR:             296599
Sponsored by:   UNIS Labs
MFH:            2026Q2

(cherry picked from commit dd37d0cccbdca5cc3de202796c331cfeb12f291a)
DeltaFile
+3-3dns/nsd/distinfo
+1-1dns/nsd/Makefile
+4-42 files

FreeBSD/ports dd37d0cdns/nsd distinfo Makefile

idns/nsd: Update 4.14.3 => 4.15.0

Release Notes:
https://community.nlnetlabs.nl/t/nsd-4-15-0-released/3423/1

PR:             296599
Sponsored by:   UNIS Labs
MFH:            2026Q2
DeltaFile
+3-3dns/nsd/distinfo
+1-1dns/nsd/Makefile
+4-42 files

FreeBSD/ports d71fa47devel/tvision Makefile distinfo

devel/tvision: Update to 2026.05.12

ChangeLog:
  - Update the borders of framed views upon insertion or removal
  - Prevent out-of-bounds array access in TCommandSet
  - Regenerate missing scan codes in win32-input-mode
  - Fix write() usage in StderrRedirector
  - Also restore terminal state on SIGBUS and SIGPIPE

MFH:            2026Q2
(cherry picked from commit dc1d38427b6b1c8b52f84328eceac9e8776a5401)
DeltaFile
+4-2devel/tvision/Makefile
+3-3devel/tvision/distinfo
+7-52 files

FreeBSD/ports dc1d384devel/tvision Makefile distinfo

devel/tvision: Update to 2026.05.12

ChangeLog:
  - Update the borders of framed views upon insertion or removal
  - Prevent out-of-bounds array access in TCommandSet
  - Regenerate missing scan codes in win32-input-mode
  - Fix write() usage in StderrRedirector
  - Also restore terminal state on SIGBUS and SIGPIPE

MFH:            2026Q2
DeltaFile
+4-2devel/tvision/Makefile
+3-3devel/tvision/distinfo
+7-52 files

FreeBSD/ports 2c2743fsecurity/vuxml/vuln 2026.xml

security/vuxml: Document xorg-server vulnerabilities
DeltaFile
+29-0security/vuxml/vuln/2026.xml
+29-01 files

FreeBSD/ports 9a070eesecurity/mbedtls4 Makefile distinfo, security/mbedtls4/files patch-library_CMakeLists.txt

security/mbedtls4: Update 4.1.0 => 4.2.0 (fix 10 CVEs)

Changelog:
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-4.2.0

- Parametrize PKGNAMESUFFIX.
- Improve PORTSCOUT.

PR:             296595
Security:       CVE-2026-50581
Security:       CVE-2026-50640
Security:       CVE-2026-50580
Security:       CVE-2026-50586
Security:       CVE-2026-50588
Security:       CVE-2026-50579
Security:       CVE-2026-54441
Security:       CVE-2026-50585
Security:       CVE-2026-25832
Security:       CVE-2026-49300

    [4 lines not shown]
DeltaFile
+3-10security/mbedtls4/Makefile
+0-11security/mbedtls4/files/patch-library_CMakeLists.txt
+3-5security/mbedtls4/distinfo
+1-1security/mbedtls4/pkg-plist
+7-274 files

FreeBSD/ports 2162d1dsecurity/mbedtls4 Makefile distinfo, security/mbedtls4/files patch-library_CMakeLists.txt

security/mbedtls4: Update 4.1.0 => 4.2.0 (fix 10 CVEs)

Changelog:
https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-4.2.0

- Parametrize PKGNAMESUFFIX.
- Improve PORTSCOUT.

PR:             296595
Security:       CVE-2026-50581
Security:       CVE-2026-50640
Security:       CVE-2026-50580
Security:       CVE-2026-50586
Security:       CVE-2026-50588
Security:       CVE-2026-50579
Security:       CVE-2026-54441
Security:       CVE-2026-50585
Security:       CVE-2026-25832
Security:       CVE-2026-49300

    [2 lines not shown]
DeltaFile
+3-10security/mbedtls4/Makefile
+0-11security/mbedtls4/files/patch-library_CMakeLists.txt
+3-5security/mbedtls4/distinfo
+1-1security/mbedtls4/pkg-plist
+7-274 files

FreeBSD/ports 4488af5x11-servers/xorg-server distinfo, x11-servers/xorg-server/files patch-config_udev.c patch-os-utils.c

x11-servers/xorg-server: security update: 21.1.23 -> 21.1.24

Regenerate patches.

Security:       CVE-2026-55999
PR:             296589
Approved by:    x11 (arrowd, maintainer)

Sponsored by:   tipi.work
DeltaFile
+11-11x11-servers/xorg-server/files/patch-config_udev.c
+3-3x11-servers/xorg-server/files/patch-os-utils.c
+3-3x11-servers/xorg-server/distinfo
+3-3x11-servers/xorg-server/files/patch-include_meson.build
+2-2x11-servers/xorg-server/files/patch-hw_xfree86_os-support_bsd_ppc__video.c
+2-2x11-servers/xorg-server/files/patch-hw_xfree86_xorg-wrapper.c
+24-244 files not shown
+31-3210 files

FreeBSD/ports 3974194www/redmine61 Makefile

www/redmine61: Change RUN_DEPENDS from rubygem-rouge to rubygem-rouge4

- Bump PORTREVISION for dependency change
DeltaFile
+2-1www/redmine61/Makefile
+2-11 files

FreeBSD/ports e0d1541devel/py-pytest-watcher Makefile distinfo

devel/py-pytest-watcher: Update to 0.6.3

Changes:        https://github.com/olzhasar/pytest-watcher/releases
PR:             296394
Reported by:    yuri
DeltaFile
+6-3devel/py-pytest-watcher/Makefile
+3-3devel/py-pytest-watcher/distinfo
+9-62 files

FreeBSD/ports e0d34e6www/gitlab Makefile Makefile.common

www/gitlab: Update RUN_DEPENDS

- Change RUN_DEPENDS from rubygem-json to rubygem-json-gitlab
- Change RUN_DEPENDS from rubygem-nkf to rubygem-nkf-gitlab
- Change RUN_DEPENDS from rubygem-sys-filesystem to rubygem-sys-filesystem-gitlab
- Bump PORTREVISION for dependency change
DeltaFile
+3-3www/gitlab/Makefile
+1-1www/gitlab/Makefile.common
+4-42 files