devel/erlang-cache_tab: Update to 1.0.33
# Version 1.0.33
* Updating p1_utils to version 1.0.28.
* Fix warnings reported by dialyzer
# Version 1.0.32
* Updating p1_utils to version 1.0.27.
go: update to 1.25.7 and 1.24.13
These releases include 2 security fixes following the security policy:
- cmd/cgo: remove user-content from doc strings in cgo ASTs
A discrepancy between how Go and C/C++ comments
were parsed allowed for code smuggling into the
resulting cgo binary.
To prevent this behavior, the cgo compiler
will no longer parse user-provided doc
comments.
Thank you to RyotaK (https://ryotak.net) of
GMO Flatt Security Inc. for reporting this issue.
This is CVE-2025-61732 and https://go.dev/issue/76697.
[30 lines not shown]
go126: update to 1.26 RC 3.
This release includes 1 security fix following the security policy:
crypto/tls: unexpected session resumption when using Config.GetConfigForClient
Config.GetConfigForClient is documented to use the original Config's session
ticket keys unless explicitly overridden. This can cause unexpected behavior if
the returned Config modifies authentication parameters, like ClientCAs: a
connection initially established with the parent (or a sibling) Config can be
resumed, bypassing the modified authentication requirements.
If ClientAuth is VerifyClientCertIfGiven or RequireAndVerifyClientCert (on the
server) or InsecureSkipVerify is false (on the client), crypto/tls now checks
that the root of the previously-verified chain is still in ClientCAs/RootCAs
when resuming a connection.
Go 1.26 Release Candidate 2, Go 1.25.6, and Go 1.24.12 had fixed a similar issue
related to session ticket keys being implicitly shared by Config.Clone. Since
[11 lines not shown]
chat/ejabberd: Update to 25.10
Upstream NEWS:
* 25.10
Release Highlights:
Added more Ad-Hoc Commands from XEP-0133
Updated support for XEP-0317 Hats
If you are upgrading from a previous version, there are no mandatory changes in SQL schemas, configuration, API commands or hooks.
Other contents:
New option archive_muc_as_mucsub in mod_mam
Removed support for Erlang/OTP older than 25.0
Support for the new Erlang maybe expression
Rename New SQL schema to Multihost, and Default to Singlehost
Handle cases where we have a gap in the sensors configured/present with
a map of envsys sensor to chip sensor.
Use a variable to hold the register number instead of passing a constant
to the iic routines.
Reduce the amount of patching conditions in autoconf.c by moving the
machine model checks to ofw_patch.c. We now have one patch routine for
i2c buses and another for i2c devices.
Consolidate the patching checks for parent bus type into a single check.
Remove the "multi_read" property for V210, V240 and V440 - no longer needed
because the pcfiic driver was fixed.
While here, add a "fan_mask" property for the V240, which has only 3 fans
in the first group of 4.
chat/ejabberd: Update to 25.08
This release seems to have an issue with the http upload module.
Commenting it out avoided it, and it's likely fixed in future versions
anyway. Given that I don't hear from anyone else using ejabberd, I'm
going to assume that's ok, vs the impending federation problems.
See also:
https://letsencrypt.org/2025/05/14/ending-tls-client-authenticationhttps://blog.prosody.im/2026-letsencrypt-changes/
This update should in theory cause ejabberd to accept s2s TLS
connections where the peer is, unsurprisingly, using a server
certificate.
Tested on NetBSD 9 amd64.
Upstream NEWS:
[17 lines not shown]
auctex: add emacs30 to EMACS_VERSIONS_ACCEPTED
Rev 1.75 to Makefile limited to supported emacs versions 26+
using a list in EMACS_VERSIONS_ACCEPTED. The default emacs
is now emacs30 which is greater than 26+. Add emacs30 to
EMACS_VERSIONS_ACCEPTED list (prev highest value was emacs29).
xv: add missing buildlink ref to x11/libXrandr
Rev 1.3 of patches/patch-xv.h pulled in support for XrandR from
forked upstream but did not add a buildlink dependency to x11/libXrandr.
This caused the build to fail with "No such file or directory"
when trying to include X11/extensions/Xrandr.h. Resolve by
including missing buildlink file.
ettercap: updated to 0.8.4
0.8.4
!! Fix curl version detection for curl version > 7
!! Proper unloading for all plugins
!! Fixing some memory leaks
!! Fix issue when de- and re-activating dns_spoof plugin
!! Fix segmentation fault when stopping isolate plugin
!! Handle pre-defined target host list when used in silent mode
!! Fix support when used with network sub-interfaces
!! Globals are properly freed before exit
!! OpenSSL access to opaque data
!! Match cmake minimum version requirement - fixes 1278 (Gentoo bug: 955891)
!! Fix fingerprint composition
!! Default connection buffer size increased from 10KByte to 10MByte
!! /etc/ettercap is now by default /usr/local/etc/ettercap under non-Linux OS
!! Fix build issue on FreeBSD
!! Fix redirect rule (de-)installation for port 8080 on FreeBSD
[9 lines not shown]
mail/ruby-mime-types-data: update to 3.2026.0203
3.2026.0203 (2026-02-03)
* Updated registry entries from the IANA media registry and provisional
media registry and the Apache Tika media registry as of the release date.
ccid: updated to 1.7.1
1.7.1 - 4 February 2026, Ludovic Rousseau
- Add support of
- ACS APG8201-B2
- BUDGET E-ID BUD001
- CHERRY Smart Board 1150
- CryptnoxCR CryptnoxCR
- Diebold Nixdorf PN7362au CCID
- FT BioPass FIDO2 Pro
- Nitrokey Nitrokey Passkey
- Add SCARD_CTL_CODE(3601): USB path of the reader
- Some other minor improvements
Allow scaling of the media size (-m arg)
Note that we cannot use gpt_size_get() as that needs gpt->secsz
to have been set already (ie: can only be used after gpt_open)
and treats unscaled numbers as multiples of sectors, whereas the
-m arg has always been a byte size.
For gpt_human_get() or simply using dehumanize_number() we
would need to handle 's' and 'b' suffixes by hand anyway, so it
is simpler to simply to the whole thing longhand in this case.
This also allows (with some hackery) for the media size to be
set as some number of sectors, when we do not yet know the
sector size - it gets corrected later once the sector size has
been determined.
