FreeBSD/ports 140986dMk bsd.default-versions.mk

Mk/bsd.default-versions.mk: Update possible values of ruby version
DeltaFile
+1-1Mk/bsd.default-versions.mk
+1-11 files

FreeBSD/ports 90208b4Mk/Uses ruby.mk, lang/ruby40 pkg-plist distinfo

lang/ruby40: Update to 4.0.0-preview2

ReleaseNotes:   https://www.ruby-lang.org/en/news/2025/11/17/ruby-4-0-0-preview2-released/
DeltaFile
+502-469lang/ruby40/pkg-plist
+10-17lang/ruby40/files/patch-common.mk
+5-5Mk/Uses/ruby.mk
+3-3lang/ruby40/distinfo
+1-1lang/ruby40/Makefile
+521-4955 files

FreeBSD/ports 9edd05alang/ruby35 pkg-plist Makefile, lang/ruby40 pkg-plist Makefile

lang/ruby40: Rename from lang/ruby35

Upstrem changed version of master branch in their repository from 3.5
to 4.0.
DeltaFile
+14,904-0lang/ruby40/pkg-plist
+0-14,904lang/ruby35/pkg-plist
+0-207lang/ruby35/Makefile
+207-0lang/ruby40/Makefile
+52-0lang/ruby40/pkg-message
+0-52lang/ruby35/pkg-message
+15,163-15,16313 files not shown
+15,271-15,27119 files

FreeBSD/doc ce1d13edocumentation/static/pgpkeys mm.key

Update my GPG key
DeltaFile
+81-54documentation/static/pgpkeys/mm.key
+81-541 files

FreeBSD/ports 5dbb42fsecurity/pkcs11-helper/files patch-lib_pkcs11h-openssl.c

security/pkcs11-helper: restore a patch to fix build on older/alternative ssl versions.

(cherry picked from commit 4765ff401ff6c87f8a6fb812a8c1614e879f3991)
DeltaFile
+31-0security/pkcs11-helper/files/patch-lib_pkcs11h-openssl.c
+31-01 files

FreeBSD/ports 9ae0d7bsecurity/pkcs11-helper distinfo Makefile, security/pkcs11-helper/files patch-lib_pkcs11h-openssl.c

security/pkcs11-helper: update to 1.31.0 release.

(cherry picked from commit 1f67990baf40e4eddf2f6126e22670b955e9859d)
DeltaFile
+0-49security/pkcs11-helper/files/patch-lib_pkcs11h-openssl.c
+3-5security/pkcs11-helper/distinfo
+1-5security/pkcs11-helper/Makefile
+4-593 files

FreeBSD/ports 5e9ec52security/vuxml/vuln 2025.xml

security/vuxml: add pkcs11-helper < 1.31.0 parser buffer overflow
DeltaFile
+25-0security/vuxml/vuln/2025.xml
+25-01 files

FreeBSD/ports d9620a3mail/fetchmail distinfo Makefile

mail/fetchmail: Revert "update to 6.6.1"

This reverts commit 685e0668a312ae1fbc44aa1635b182c0659718c6,
which does not yet have maintainer approval and escaped - sorry.
DeltaFile
+3-3mail/fetchmail/distinfo
+1-1mail/fetchmail/Makefile
+4-42 files

FreeBSD/ports dc23badsecurity/openvpn-devel distinfo Makefile

security/openvpn-devel: upgrade port to git commit d6ee27b4ff (2.7_rc2, 2025-11-17)

This commit brings the port to "openvpn 2.7_rc2"

Changes of interest for FreeBSD:

    - IPv6 address parsing: fix buffer overread on invalid input
      (CVE-2025-12106)
    - HMAC verification check: fix incorrect memcmp() call
      (CVE-2025-13086)
    - even more type conversion related warnings have been fixed
    - DCO FreeBSD improvements:
        improving debug messages (verb 6)
        implement client-side counter handling
        repair --inactive (and document shortcomings)
        repair handling of DCO disconnection notifications in --client mode
    - improve cmocka unit test assert() handling
    - PUSH_UPDATE server: fix reporting of client IPs in ``status`` output
      after pushing a new IPv4/IPv6 address to client

    [13 lines not shown]
DeltaFile
+3-3security/openvpn-devel/distinfo
+2-2security/openvpn-devel/Makefile
+5-52 files

FreeBSD/ports b099e37security/openvpn distinfo Makefile

security/openvpn: security update to 2.6.16

Changelog:      https://github.com/OpenVPN/openvpn/blob/v2.6.16/Changes.rst#overview-of-changes-in-2616
MFH:            2025Q4
Security:       17a40d76-c3fd-11f0-b513-0da7be77c170
Security:       CVE-2025-13086
(cherry picked from commit f0181a6845139e268922d522241c161a43e229d0)
DeltaFile
+3-3security/openvpn/distinfo
+1-1security/openvpn/Makefile
+4-42 files

FreeBSD/ports 685e066mail/fetchmail distinfo Makefile

mail/fetchmail: update to 6.6.1

Translation updates by:
* sr:    Мирослав Николић [Miroslav Nikolić, Serbian]
* es:    Cristian Othón Martínez Vera [Spanish]

PR:             290987
Approved by:    (pending)
DeltaFile
+3-3mail/fetchmail/distinfo
+1-1mail/fetchmail/Makefile
+4-42 files

FreeBSD/ports 4f313c8archivers/zstd Makefile distinfo

archivers/zstd: remove lz4, fix manpages

This shortens the requisite path for lang/python314,
and we have a separate archivers/lz4 port.

This also updates the manual pages to v1.5.7, the
release tarball missed updating them, see
<https://github.com/facebook/zstd/releases/tag/v1.5.7>

PR:             290739
Approved by:    maintainer timeout (sunpoet@, 15 days)
DeltaFile
+9-2archivers/zstd/Makefile
+3-1archivers/zstd/distinfo
+12-32 files

FreeBSD/ports 2938850security/openvpn-devel distinfo Makefile

security/openvpn-devel: upgrade port to git commit d6ee27b4ff (2.7_rc2, 2025-11-17)

This commit brings the port to "openvpn 2.7_rc2"

Changes of interest for FreeBSD:

    - IPv6 address parsing: fix buffer overread on invalid input
      (CVE-2025-12106)
    - HMAC verification check: fix incorrect memcmp() call
      (CVE-2025-13086)
    - even more type conversion related warnings have been fixed
    - DCO FreeBSD improvements:
        improving debug messages (verb 6)
        implement client-side counter handling
        repair --inactive (and document shortcomings)
        repair handling of DCO disconnection notifications in --client mode
    - improve cmocka unit test assert() handling
    - PUSH_UPDATE server: fix reporting of client IPs in ``status`` output
      after pushing a new IPv4/IPv6 address to client

    [11 lines not shown]
DeltaFile
+3-3security/openvpn-devel/distinfo
+2-2security/openvpn-devel/Makefile
+5-52 files

FreeBSD/ports f0181a6security/openvpn distinfo Makefile

security/openvpn: security update to 2.6.16

Changelog:      https://github.com/OpenVPN/openvpn/blob/v2.6.16/Changes.rst#overview-of-changes-in-2616
MFH:            2025Q4
Security:       17a40d76-c3fd-11f0-b513-0da7be77c170
Security:       CVE-2025-13086
DeltaFile
+3-3security/openvpn/distinfo
+1-1security/openvpn/Makefile
+4-42 files

FreeBSD/ports d7c6210security/vuxml/vuln 2025.xml

security/vuxml: add two OpenVPN CVEs

Security: 50a0c266-c3ff-11f0-b513-0da7be77c170
Security: CVE-2025-12106
Security: 17a40d76-c3fd-11f0-b513-0da7be77c170
Security: CVE-2025-13086
DeltaFile
+64-0security/vuxml/vuln/2025.xml
+64-01 files

FreeBSD/src ff9f76asys/net if_ovpn.c

if_ovpn: use IFT_TUNNEL

IFT_ENC has special behaviour in pf we don't desire, and this also ensures that
for all interface types there is N:1:1 correspondence between if_type:dlt:header len.

Requested by:   glebius
MFC after:      1 week
DeltaFile
+1-1sys/net/if_ovpn.c
+1-11 files

FreeBSD/src 321a153usr.sbin/bhyve/amd64 xmsr.c

bhyve: Report SVM as disabled on AMD

bhyve with a Windows 2025 guest will hang/freeze with the message
    rdmsr to register 0xc0010114
on a system with an AMD Ryzen 5. Evidently, recent versions of Windows
ignore the CPUID bits and still read this MSR.

Fix is to report Secure Virtual Machine (SVM) mode as disabled in the VM CR.

PR:             288308

(cherry picked from commit 92dfc3fbcd79422a4586590edabe483f361b7e0e)
DeltaFile
+9-0usr.sbin/bhyve/amd64/xmsr.c
+9-01 files

FreeBSD/src 1b9254flib/libproc/tests Makefile

zfs: unbreak gcc builds after openzfs/zfs at e63d026b9
DeltaFile
+1-1lib/libproc/tests/Makefile
+1-11 files

FreeBSD/doc 437c6e3website/data/en/news news.toml

15.0: Announce RC1

Approved by:    re (implicit)
Sponsored by:   https://www.patreon.com/cperciva
DeltaFile
+5-0website/data/en/news/news.toml
+5-01 files

FreeBSD/ports 39621d1www/rubygem-propshaft Makefile

www/rubygem-propshaft: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+3-2www/rubygem-propshaft/Makefile
+3-21 files

FreeBSD/ports cc70f29www/rubygem-turbo-rails Makefile

www/rubygem-turbo-rails: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+3-2www/rubygem-turbo-rails/Makefile
+3-21 files

FreeBSD/ports 1df6ed6www/rubygem-stimulus-rails Makefile

www/rubygem-stimulus-rails: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+2-2www/rubygem-stimulus-rails/Makefile
+2-21 files

FreeBSD/ports 9dd0a9awww/rubygem-tailwindcss-rails Makefile

www/rubygem-tailwindcss-rails: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+2-2www/rubygem-tailwindcss-rails/Makefile
+2-21 files

FreeBSD/ports 669ae82www/rubygem-importmap-rails Makefile

www/rubygem-importmap-rails: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+4-3www/rubygem-importmap-rails/Makefile
+4-31 files

FreeBSD/ports 67e2214www/rubygem-kamal Makefile

www/rubygem-kamal: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+2-1www/rubygem-kamal/Makefile
+2-11 files

FreeBSD/ports 0127309www/rubygem-jsbundling-rails Makefile

www/rubygem-jsbundling-rails: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+2-2www/rubygem-jsbundling-rails/Makefile
+2-21 files

FreeBSD/ports 66ebbd6www/rubygem-cssbundling-rails Makefile

www/rubygem-cssbundling-rails: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+2-1www/rubygem-cssbundling-rails/Makefile
+2-11 files

FreeBSD/ports ec26de1databases/rubygem-solid_cable Makefile

databases/rubygem-solid_cable: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+5-4databases/rubygem-solid_cable/Makefile
+5-41 files

FreeBSD/ports 7111982databases/rubygem-solid_cache Makefile

databases/rubygem-solid_cache: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+4-3databases/rubygem-solid_cache/Makefile
+4-31 files

FreeBSD/ports a076618databases/rubygem-solid_queue Makefile

databases/rubygem-solid_queue: Update RUN_DEPENDS: use Rails 8.1

- Bump PORTREVISION for dependency change
DeltaFile
+4-3databases/rubygem-solid_queue/Makefile
+4-31 files