FreeBSD/ports f875594security/stunnel distinfo Makefile

security/stunnel: Update to 5.78
DeltaFile
+3-3security/stunnel/distinfo
+1-1security/stunnel/Makefile
+4-42 files

FreeBSD/ports a32e4absysutils/nut Makefile, sysutils/nut/files patch-configure patch-configure.ac

sysutils/nut: Replace ./configure.ac patch with ./configure

Replace ./configure.ac patch with a ./configure patch. We do not use
autoconf.sh with the non-devel port. Therefore backport configure.ac
to ./configure. This addresses missing nut group configuration on
FreeBSD 13.5.

PR:     294350
Fixes:  64fec1e56b44
DeltaFile
+41-0sysutils/nut/files/patch-configure
+0-34sysutils/nut/files/patch-configure.ac
+1-0sysutils/nut/Makefile
+42-343 files

FreeBSD/ports 8c267bdgraphics/openexr Makefile distinfo, graphics/openexr-website-docs Makefile distinfo

graphics/openexr*: Security update to 3.4.9

Addresses several security vulnerabilities

Changelog:
https://github.com/AcademySoftwareFoundation/openexr/blob/v3.4.9/CHANGES.md#version-349-april--3-2026

PR:             294197
Security:       CVE-2026-34589, CVE-2026-34588, CVE-2026-34380,
                CVE-2026-34379, CVE-2026-34378,
                adb096d4-2e72-11f1-acc1-339a1a6999b0
(cherry picked from commit ff3b84dc9b80acb9e6a7a86b837898d4e7687580)
DeltaFile
+6-5graphics/openexr/Makefile
+3-3graphics/openexr-website-docs/Makefile
+3-3graphics/openexr-website-docs/distinfo
+3-3graphics/openexr/distinfo
+15-144 files

FreeBSD/ports 8d37932www/gohugo distinfo Makefile

www/gohugo: Update to 0.161.1

ChangeLog: https://github.com/gohugoio/hugo/releases/tag/v0.160.1

 * Fix panic when passthrough elements are used in headings
 * Fix panic on edit of legacy mapped template names that's also a valid path in the new setup
 * Fix RenderShortcodes leaking context markers when indented
 * Strip nested page context markers from standalone RenderShortcodes
 * Rename deprecated cascade._target to cascade.target in tests
 * Fix auto-creation of root sections in multilingual sites
 * readme: Fix links

Approved by:    doceng@ (implicit)
DeltaFile
+5-5www/gohugo/distinfo
+1-1www/gohugo/Makefile
+6-62 files

FreeBSD/ports 51342bbdevel/arduino-irremote distinfo Makefile

devel/arduino-irremote: Update to 4.7.1

Changes since 4.7.0:

 - Changed wrong &Serial to aSerial at 2 places.

Reported by:    github
DeltaFile
+3-3devel/arduino-irremote/distinfo
+1-1devel/arduino-irremote/Makefile
+4-42 files

FreeBSD/ports 65b43c6ports-mgmt/appstream-generator Makefile pkg-plist, ports-mgmt/appstream-generator/files patch-contrib_setup_build__js.sh

ports-mgmt/appstream-generator: Install JavaScript assets
DeltaFile
+18-2ports-mgmt/appstream-generator/Makefile
+19-0ports-mgmt/appstream-generator/pkg-plist
+16-0ports-mgmt/appstream-generator/files/patch-contrib_setup_build__js.sh
+3-1ports-mgmt/appstream-generator/distinfo
+56-34 files

FreeBSD/ports d15be6bnet-im/nchat distinfo Makefile

net-im/nchat: update: 5.13.17 -> 5.14.44

ChangeLog:      https://github.com/d99kris/nchat/compare/v5.13.17...v5.14.44

Sponsored by:   tipi.work
DeltaFile
+3-3net-im/nchat/distinfo
+1-1net-im/nchat/Makefile
+4-42 files

FreeBSD/ports 82ed253games/openbve distinfo pkg-plist

games/openbve: update OpenBVE to version 1.12.1.3

Reported by:    portscout
DeltaFile
+3-3games/openbve/distinfo
+3-0games/openbve/pkg-plist
+1-1games/openbve/Makefile
+7-43 files

FreeBSD/ports 547f637ports-mgmt/appstream-generator Makefile, ports-mgmt/appstream-generator/files patch-backend patch-src_backends_freebsd_fbsdpkgindex.cpp

ports-mgmt/appstream-generator: Pull more patches from upstream
DeltaFile
+96-0ports-mgmt/appstream-generator/files/patch-backend
+0-11ports-mgmt/appstream-generator/files/patch-src_backends_freebsd_fbsdpkgindex.cpp
+0-11ports-mgmt/appstream-generator/files/patch-src_backends_freebsd_fbsdpkg.cpp
+1-1ports-mgmt/appstream-generator/Makefile
+97-234 files

FreeBSD/ports 12c4babx11-toolkits/gtk40 distinfo Makefile

x11-toolkits/gtk40: update to 4.20.4

PR:             294204
DeltaFile
+3-3x11-toolkits/gtk40/distinfo
+2-3x11-toolkits/gtk40/Makefile
+5-62 files

FreeBSD/ports b1d03d5security/boringssl distinfo Makefile, security/boringssl/files patch-CMakeLists.txt

security/boringssl: update to the recent snapshot

Sponsored by:   tipi.work
DeltaFile
+15-17security/boringssl/distinfo
+7-11security/boringssl/Makefile
+3-3security/boringssl/files/patch-CMakeLists.txt
+25-313 files

FreeBSD/ports 1155482dns/aardvark-dns distinfo Makefile

dns/aardvark-dns: update: 1.17.0 -> 1.17.1

ChangeLog:      https://github.com/containers/aardvark-dns/compare/v1.17.0...v1.17.1

Sponsored by:   tipi.work
DeltaFile
+3-3dns/aardvark-dns/distinfo
+1-2dns/aardvark-dns/Makefile
+4-52 files

FreeBSD/ports cee37a2graphics/embree pkg-plist Makefile

graphics/embree: update Intel Embree to version 4.4.1

Manpages were renamed upstream for consistency (section
3 is for library calls, section 4 is for special devices).

Test coverage numbers are the same as were previously:

  Tests passed: 7423
  Tests failed: 1803
  Tests failed and ignored: 48

Reported by:    portscout
DeltaFile
+149-127graphics/embree/pkg-plist
+2-4graphics/embree/Makefile
+3-3graphics/embree/distinfo
+154-1343 files

FreeBSD/ports c20098cnet/rustconn distinfo Makefile.crates

net/rustconn: Update to 0.10.13

ChangeLog:      https://github.com/totoshko88/RustConn/releases/tag/v0.10.13
Reported by:    "github-actions[bot]" <notifications at github.com>
DeltaFile
+7-7net/rustconn/distinfo
+2-2net/rustconn/Makefile.crates
+1-1net/rustconn/Makefile
+10-103 files

FreeBSD/ports 11d6404mail/postfix Makefile, mail/postfix/files extra-patch-blocklistd

mail/postfix: Use BLOCKLIST instead of BLACKLIST

- Starting from FreeBSD version 1500000, prefer the new blocklist
  nomenclature.
- Enable TLSRPT by default

PR:             294083
DeltaFile
+163-0mail/postfix/files/extra-patch-blocklistd
+18-7mail/postfix/Makefile
+181-72 files

FreeBSD/ports 773044amail/postfix-current Makefile distinfo, mail/postfix-current/files extra-patch-blocklistd extra-patch-blacklistd

mail/postfix-current: Update to 3.12-20260403

- Update to 3.12-20260403
- Use BLOCKLIST instead of BLACKLIST
- Enable TLSRPT by default

PR:             294084
DeltaFile
+164-0mail/postfix-current/files/extra-patch-blocklistd
+19-8mail/postfix-current/Makefile
+4-4mail/postfix-current/files/extra-patch-blacklistd
+3-3mail/postfix-current/distinfo
+190-154 files

FreeBSD/ports 496bc1flang/rhino Makefile, lang/rhino/files patch-build.properties

lang/rhino: fix build with jdk11+

unpin openjdk8

PR:     294332
Approved-by:    maintainer (Nicola Vitale)
DeltaFile
+13-0lang/rhino/files/patch-build.properties
+1-2lang/rhino/Makefile
+14-22 files

FreeBSD/ports 1d8282cdatabases/sabiql distinfo Makefile.crates, databases/sabiql/files patch-src_infra_adapters_folder__opener.rs patch-src_infra_export_dot.rs

databases/sabiql: Update to 1.10.0

- Remove all patches (now included upstream)

ChangeLog:      https://github.com/riii111/sabiql/releases/tag/v1.10.0
Reported by:    riii111 <notifications at github.com>
DeltaFile
+99-99databases/sabiql/distinfo
+48-48databases/sabiql/Makefile.crates
+0-16databases/sabiql/files/patch-src_infra_adapters_folder__opener.rs
+0-11databases/sabiql/files/patch-src_infra_export_dot.rs
+1-1databases/sabiql/Makefile
+148-1755 files

FreeBSD/ports 0ee513csysutils/mdfried distinfo Makefile

sysutils/mdfried: Update to 0.19.0

Reported by:    Benjamin Grosse <notifications at github.com>
DeltaFile
+3-3sysutils/mdfried/distinfo
+1-1sysutils/mdfried/Makefile
+4-42 files

FreeBSD/ports 79be224Mk/Uses vala.mk, lang/vala distinfo

lang/vala: update to 0.56.19

PR:             294205
DeltaFile
+3-3lang/vala/distinfo
+1-1Mk/Uses/vala.mk
+4-42 files

FreeBSD/ports 7347c88sysutils/rustic distinfo Makefile.crates

sysutils/rustic: Update to 0.11.2

ChangeLog:      https://github.com/rustic-rs/rustic/releases/tag/v0.11.2
Reported by:    "github-actions[bot]" <notifications at github.com>
DeltaFile
+221-291sysutils/rustic/distinfo
+109-144sysutils/rustic/Makefile.crates
+2-2sysutils/rustic/Makefile
+332-4373 files

FreeBSD/ports 27f5eadx11/swayimg Makefile distinfo

x11/swayimg: update to 5.2

Changes:        https://github.com/artemsen/swayimg/releases/tag/v5.0
Changes:        https://github.com/artemsen/swayimg/releases/tag/v5.1
Changes:        https://github.com/artemsen/swayimg/releases/tag/v5.2
Reported by:    GitHub (watch releases)
DeltaFile
+16-17x11/swayimg/Makefile
+3-3x11/swayimg/distinfo
+19-202 files

FreeBSD/ports b313943security/wolfssl Makefile, security/wolfssl/files patch-configure.ac patch-cmake_config.in

security/wolfssl: Fix 32-bit builds.

Add upstream patch for the fix, until changes are merged and
a new release is made.

PR:             294287
Reported by:    Robert Clausecker <fuz at FreeBSD.org>
Reviewed by:    Robert Clausecker <fuz at FreeBSD.org>
Tested by:      Robert Clausecker <fuz at FreeBSD.org>

(cherry picked from commit 8318a3cd1c5262d51c70240d97798cce3c1a3bd6)
DeltaFile
+16-0security/wolfssl/files/patch-configure.ac
+15-0security/wolfssl/files/patch-cmake_config.in
+15-0security/wolfssl/files/patch-cmake_options.h.in
+2-1security/wolfssl/Makefile
+48-14 files

FreeBSD/ports bf8e91asecurity/vuxml/vuln 2026.xml

security/vuxml: Add Mozilla vulnerabilities

 * CVE-2026-5732:       NVD assessment not yet provided
 * CVE-2026-5733:       NVD assessment not yet provided
 * CVE-2026-5734:       Base Score:  9.8 CRITICAL
                        Vector:  CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
 * CVE-2026-5734:       Base Score:  9.8 CRITICAL
                        Vector:  CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
DeltaFile
+150-0security/vuxml/vuln/2026.xml
+150-01 files

FreeBSD/ports b7042a0net-im/gajim Makefile distinfo

net-im/gajim: update to 2.4.5; sort depends
DeltaFile
+6-6net-im/gajim/Makefile
+3-3net-im/gajim/distinfo
+9-92 files

FreeBSD/ports 8318a3csecurity/wolfssl Makefile, security/wolfssl/files patch-configure.ac patch-cmake_options.h.in

security/wolfssl: Fix 32-bit builds.

Add upstream patch for the fix, until changes are merged and
a new release is made.

PR:             294287
Reported by:    Robert Clausecker <fuz at FreeBSD.org>
Reviewed by:    Robert Clausecker <fuz at FreeBSD.org>
Tested by:      Robert Clausecker <fuz at FreeBSD.org>
DeltaFile
+16-0security/wolfssl/files/patch-configure.ac
+15-0security/wolfssl/files/patch-cmake_options.h.in
+15-0security/wolfssl/files/patch-cmake_config.in
+2-1security/wolfssl/Makefile
+48-14 files

FreeBSD/ports 9d8a393sysutils/grub2-bhyve Makefile, sysutils/grub2-bhyve/files patch-ext2.c

sysutils/grub2-bhyve: Add support for additional EXT4 incompatible features

Handle the following EXT4 incompatible features:

EXT4_FEATURE_INCOMPAT_MMP (Multi-Mount Protection)
Prevents multiple read-write mounts of the same filesystem.
Since grub2-bhyve mounts filesystems read-only, it is safe to ignore.

EXT4_FEATURE_INCOMPAT_CSUM_SEED
Allows tools such as tune2fs to change the UUID on a mounted
metadata-checksummed filesystem. Safe to ignore because the
driver does not perform checksum verification.

EXT4_FEATURE_INCOMPAT_LARGEDIR
Enables directories larger than 2GB and 3-level htrees.
Safe to ignore because the GRUB ext2 driver does not implement
DIR_INDEX.

This patch mirrors upstream behavior. It unblocks booting from

    [5 lines not shown]
DeltaFile
+42-0sysutils/grub2-bhyve/files/patch-ext2.c
+1-1sysutils/grub2-bhyve/Makefile
+43-12 files

FreeBSD/ports da2d5e2databases/py-sqlmodel Makefile distinfo

databases/py-sqlmodel: Update to 0.0.38

Changelog: https://github.com/fastapi/sqlmodel/blob/0.0.38/docs/release-notes.md

Reported by:    portscout
DeltaFile
+5-5databases/py-sqlmodel/Makefile
+3-3databases/py-sqlmodel/distinfo
+8-82 files

FreeBSD/ports 4ef829fwww/py-google-api-python-client distinfo Makefile

www/py-google-api-python-client: Update to 2.194.0

ChangeLog:      https://github.com/googleapis/google-api-python-client/releases/tag/v2.194.0
Reported by:    "release-please[bot]" <notifications at github.com>
DeltaFile
+3-3www/py-google-api-python-client/distinfo
+1-1www/py-google-api-python-client/Makefile
+4-42 files

FreeBSD/ports d68297cMk bsd.default-versions.mk

Mk/bsd.default-versions.mk: stick to OpenJDK 11 on powerpc too

Newer versions require too big stack to build natively.
DeltaFile
+1-1Mk/bsd.default-versions.mk
+1-11 files