BSD Commit Log Search

java/eclipse: Update 4.37 => 4.38

News:
https://eclipse.dev/eclipse/markdown/?f=news/4.38/index.md

Release Notes:
https://eclipse.dev/eclipse/development/readme_eclipse_4.38.html

PR:     291606

net-mgmt/net-snmp: Respect LDFLAGS.

No functional change intended.

Sponsored by:   Dell
Reviewed by:    zi, vangyzen
Differential Revision: https://reviews.freebsd.org/D54183

java/autofirma: [new port]. Digital signature application

Autofirma is a java application used to sign digital documents.
It is the official application of the Spanish Government and as such it is
required to perform many online tasks with the Administration.

Reviewed by:            michaelo@
Differential Revision:  https://reviews.freebsd.org/D53807

www/gallery-dl: update to 1.31.0

Changes:        https://github.com/mikf/gallery-dl/releases/tag/v1.31.0
Reported by:    GitHub (watch releases)

www/varnish-libvmod-digest: Update to 1.0.3

- Fix Base64 decoding vulnerability

Approved by:    implicit/security
Security:       64bec4c7-d785-11f0-a1c0-0050569f0b83

security/vuxml: Document vulnerability in www/varnish-libvmod-digest

sysutils/gstat-rs: 0.1.7

The main change is to fix a math error in the kb/r and kb/w columns

https://github.com/asomers/gstat-rs/blob/master/gstat/CHANGELOG.md#017---2025-12-11

Sponsored by:   ConnectWise

devel/jenkins-lts: Update to 2.528.3

Fixes CVE-2025-67635, CVE-2025-67636, CVE-2025-67637, CVE-2025-67638,
CVE-2025-67639

PR:             291580
Security:       2956aba3-1fcb-4c39-9cea-d88a46a3bf93
MFH:            2025Q4
Sponsored by:   The FreeBSD Foundation

(cherry picked from commit 2823eb8ac233502026d5631ea782d86a722c6707)

devel/jenkins: Update to 2.541

Fixes CVE-2025-67635, CVE-2025-67636, CVE-2025-67637, CVE-2025-67638,
CVE-2025-67639

PR:             291580
Security:       2956aba3-1fcb-4c39-9cea-d88a46a3bf93
MFH:            2025Q4
Sponsored by:   The FreeBSD Foundation

(cherry picked from commit 09b4c7357cacd6dc1977230d67f04ca818a86f19)

devel/jenkins-lts: Update to 2.528.3

Fixes CVE-2025-67635, CVE-2025-67636, CVE-2025-67637, CVE-2025-67638,
CVE-2025-67639

PR:             291580
Security:       2956aba3-1fcb-4c39-9cea-d88a46a3bf93
MFH:            2025Q4
Sponsored by:   The FreeBSD Foundation

devel/jenkins: Update to 2.541

Fixes CVE-2025-67635, CVE-2025-67636, CVE-2025-67637, CVE-2025-67638,
CVE-2025-67639

PR:             291580
Security:       2956aba3-1fcb-4c39-9cea-d88a46a3bf93
MFH:            2025Q4
Sponsored by:   The FreeBSD Foundation

security/vuxml: Document Jenkins Security Advisory 2025-12-10

PR:             291580
Sponsored by:   The FreeBSD Foundation

audio/audacity: Update 3.7.6 => 3.7.7

Changelog:
- Hotfix: fixes broken waveform scrolling and selection for some users
  introduced in 3.7.6.
- Added checksum to WavPack export.
https://github.com/audacity/audacity/releases/tag/Audacity-3.7.7

PR:     291601

textproc/R-cran-yaml: Update to 2.3.12

Update test dependencies.

Changelog: https://cran.r-project.org/web/packages/yaml/news/news.html

x11-wm/plasma6-kwin: backport upstream patch to fix regression in 6.5.4

KDE BUG:        https://bugs.kde.org/513151

deskutils/fet: Update to 7.6.0

Changelog: https://lalescu.ro/liviu/fet/news.html

KDE: Update KDE Gear to 25.12.0

Announcement: https://kde.org/announcements/gear/25.12.0/

Ports changes:

deskutils/itinerary:
 - Require QCoro6

deskutils/kdeconnect-kde:
 - Regenerate patches

devel/kpublictransport:
 - Require QtLocation

editors/kate:
 - Fix shebang

math/rocs:

    [10 lines not shown]

graphics/kdegraphics-mobipocket: remove Qt5 flavor in preparation for 25.12.0 update.

25.08 was the last release with Qt5 support.

graphics/kdegraphics-mobipocket: unflavorize consumers

devel/kf5-kfilemetadata: remove broken MOBIPOCKET option

net/samba422: Set TEST_ENV with = instead of +=

"+=" may suggest that we are appending to the default value of TEST_ENV.
This is not true. Use "=" to be explicit about the intent.

java/openjdk*: Deprecate unmaintained versions

Mark OpenJDK versions no longer maintained by upstream as deprecated,
and for future removal. Keeping LTS versions, as well as the actively
maintained latest versions in the tree.

Reviewed by:    bofh (mentor), jrm
Approved by:    bofh (mentor)
MFH:            2025Q4
Sponsored by:   The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D54176

(cherry picked from commit 6a245515c7c2048e25413bd31d15e06a96319c8f)

net/samba422: Remove redundant LDAP_CONFIGURE_* variables

devel/dragon: update 1.5.5 -> 1.5.6

- change all int to unsigned, where signed is never needed

deskutils/cherrytree: update the port to version 1.6.2

Reported by:    portscout

security/vuxml: Add c-ares vulnerability

 * CVE-2025-62408

PR:             291503
Reported by:    polarian at polarian.dev

www/iridium: update to 2025.12.143.1

(cherry picked from commit 92b25f40e493e37d2068c6b9700862780f86d1c8)

www/iridium: update to 2025.12.143.1

net/bird3: Update to 3.1.5

Changelog:      https://gitlab.nic.cz/labs/bird/-/blob/release-v3.1.5/NEWS

Sponsored by:   Netflix

www/chromium: fixup patches after a bad merge from the shared bsd repo

(cherry picked from commit c895a8b3471706ebb0df0ab025e61a7665195c00)