BSD Commit Log Search

devel/cbmc: update to 6.9.0

Reported by:    lwhsu

devel/py-uv-build: update 0.11.22 → 0.11.23

misc/lean-ctx: update 3.8.9 → 3.8.11

devel/{,py-}uv: update 0.11.22 → 0.11.23

lang/typstyle: update 0.14.4 → 0.15.0

x11/mate-terminal: switch to GitHub release asset

Minor versions of 1.28.x are no longer published to the MATE mirror
and are only available on GitHub.

devel/avr-gdb: upgrade to GDB 17.2

The old version was pretty outdated, and could not cope with
modern DWARF information.

games/rare: Update to 1.12.0.155

Changelogs:     https://github.com/RareDevs/Rare/releases/tag/1.12.0.155
                https://github.com/RareDevs/Rare/releases/tag/1.12.0.154
                https://github.com/RareDevs/Rare/releases/tag/1.12.0.116
                https://github.com/RareDevs/Rare/releases/tag/1.12.0.102
                https://github.com/RareDevs/Rare/releases/tag/1.12.0.99
                https://github.com/RareDevs/Rare/releases/tag/1.12.0.89
                https://github.com/RareDevs/Rare/releases/tag/1.12.0.70
                https://github.com/RareDevs/Rare/releases/tag/1.12.0.55
                https://github.com/RareDevs/Rare/releases/tag/1.12.0.13

PR:             295549
Approved by:    arrowd (co-mentor)

mail/py-imap-tools: Update to 1.13.0

net-im/ejabberd: Remove unneeded dependency on jQuery

devel/{ice37,php-ice37,py-ice37}: Update to 3.7.11

cad/OrcaSlicer: Fix multiple wx assertion issues

PR:             294281
Approved by:    makc (mentor)

Since our x11-toolkits/wxgtk* builds are assert-enabled we have to fix
the problems that upstream didn't address.

In addition, reformat the Makefile to improve readability.

www/py-dj52-django-auditlog: Add back DEPRECATED

www/py-dj52-django-allauth: Add back DEPRECATED

devel/py-dateparser: Update to 1.4.1

misc/gnu-watch: Update to 4.0.6

dns/dnsmasq-devel: update to 2.93, add EXPIRATION_DATE

Move users of this -devel to the formal release of this v2.93
development effort, and set the port to expire with the EOL of this
quarterly branch.

The dns/dnsmasq on quarterly should remain at 2.92rel2 for now according
to usual maintenance practice on the quarterly ports branch, but we want
to provide the bugfixes made during the release testing, see below,
and keep disruptions minimal for users of the quarterly branch.

Users should plan ahead to migrate to dns/dnsmasq
when 2026Q3 will be branched in July 2026. Configuration files including
rc.conf settings are compatible between dnsmasq-devel and dnsmasq.

(As direct commit to 2026Q2, port to be removed in main branch.)

Changes in 2.93 release since 2.93rc1, from upstream Git repository:
* 3ff66da 2026-06-02 | Fix two typos in v2.93 CHANGELOG (tag: v2.93) [Matthias Andree]

    [19 lines not shown]

graphics/fig2sxd: Update to 0.24

graphics/kquickimageeditor: Update to 0.6.2

editors/komodo-edit: Rename binary to avoid clash with deskutils/komodo

PR:             295504
Submitted by:   Chris Petrik
Apprroved by:   maintainer timeout

audio/amarok: Update to 3.3.3

Announcement: https://blogs.kde.org/2026/06/17/amarok-3.3.3-released/

audio/cantata: Update to 3.5.0

Release notes: https://github.com/nullobsi/cantata/releases/tag/v3.5.0

textproc/py-sphinx-material: supports Python up to 3.11

- Do not try to build it with Python ≥ 3.12;

- Mark deprecated (no ports dependent upon this port any more,
  and upstream dev is suspended).

See https://github.com/bashtage/sphinx-material/issues/141 .

graphics/openexr*: security update to 3.4.13

Changelog:      https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v3.4.13
MFH:            2026Q2
PR:             296159

Security:       CVE-2026-55373
OpenEXRUtil SampleCountChannel endEdit() can loop forever on UINT_MAX sample counts

Security:       CVE-2026-55371
OpenEXRCore exr_attr_set_bytes() accepts NULL type_hint with positive hint_length

Security:       CVE-2026-55059
OpenEXRUtil SampleCountChannel row setter heap out-of-bounds

Security:       CVE-2026-54920
Integer Overflow and Use of Uninitialized Pointer leading to Invalid Delete in OpenEXRUtil Image Resize

Security:       CVE-2026-53532

    [5 lines not shown]

graphics/openexr*: security update to 3.4.13

Changelog:      https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v3.4.13
MFH:            2026Q2
PR:             296159

Security:       CVE-2026-55373
OpenEXRUtil SampleCountChannel endEdit() can loop forever on UINT_MAX sample counts

Security:       CVE-2026-55371
OpenEXRCore exr_attr_set_bytes() accepts NULL type_hint with positive hint_length

Security:       CVE-2026-55059
OpenEXRUtil SampleCountChannel row setter heap out-of-bounds

Security:       CVE-2026-54920
Integer Overflow and Use of Uninitialized Pointer leading to Invalid Delete in OpenEXRUtil Image Resize

Security:       CVE-2026-53532

    [3 lines not shown]

security/lego: Update to 5.2.2

Changelog: https://github.com/go-acme/lego/releases/tag/v5.2.2

PR:             295898

multimedia/vapoursynth: Clarify build requirements on amd64

Vapoursynth is computational heavy so clarify why build might fail on
amd64.

Reported by:    vvd

textproc/stardict-dict-fa_IR: Unbreak after removal of russian/stardict-mueller7

Add bits port used from russian/stardict-mueller7

Reported by:    anotine

devel/py-ty: Update to 0.0.51

Changelog: https://github.com/astral-sh/ty/blob/0.0.51/CHANGELOG.md

Reported by:    Repology

security/vuxml: Unbreak 'validate' target

73ebb85ec34a introduced basic CVE ID checking, which is fantastic. It
kind of broke the 'validate' target for a sane VuXML DB, though.

This fixes the 'validate' target keeping to the orginal idea and with
pretty-print as an added bonus.