security/wolfssl: Update to 5.9.1
Changes since 5.9.0:
To download the release bundle of wolfSSL visit the download page at
www.wolfssl.com/download/
PR stands for Pull Request, and PR references a GitHub pull request
number where the code change was added.
NOTE: --enable-heapmath is deprecated.
NOTE: MD5 is now disabled by default.
Vulnerabilities
* [Critical CVE-2026-5194] Missing hash/digest size and OID checks
allow digests smaller than allowed by FIPS 186-4 or 186-5, or
smaller than appropriate for the relevant key type, to be accepted
by signature verification functions. Affects ECDSA/ECC, DSA, ML-DSA,
[246 lines not shown]
audio/fasttracker2: Update to 2.15
Changes since 2.14:
v2.15 - 09.04.2026
* BPM and voice/channel pitches are now tuned to better match original
FT2.08/FT2.09 with an SB16 sound card at max audio output rate (44000Hz).
* Added a new "Precise BPM" option in Config -> Audio for users who prefer
precise BPM over FT2 accuracy.
* Updated the help text to better reflect the (default) FT2 BPM mode.
* It is now possible to select a rate below 44100Hz when rendering a song
to WAV.
v2.14 - 05.04.2026
* The volume and panning envelopes now behave exactly like FT2 in special
cases.
* Various audio changes to better match FT2 behavior.
* New higher-quality FT2 logo in the about screen.
py-bpytop: Move the package to the correct name for python packages.
While here also
- Make package depend on wheel for building.
- Patch pyproject.toml for the correct poetry backend.
p5-XML-Parser: update to 2.57.
2.57 2026-04-07 (by Todd Rinaldo)
Fixes:
- PR #235 GH #234 Fix PE parsing regression that broke XML::Twig DTD
round-tripping: defer parameter entity parsing activation to when a
declaration handler is registered, preventing PE references from
being consumed by the empty sub-parser instead of reaching the
Default handler
- PR #232 GH #47 Add regression tests for post-root character data
routing and add ppport.h for XS backward compatibility macros
- PR #229 Add NULL check after XML_ParserCreate_MM to prevent
segfault on memory allocation failure
- PR #225 Replace deprecated indirect object syntax in
LWPExternEnt.pl (new URI(...) -> URI->new(...), etc.) for forward
compatibility with Perl 5.36+ where 'use v5.36' disables the
indirect feature. Also add 'use strict' to the file
[23 lines not shown]
p5-Image-ExifTool: update to 13.55.
Apr. 7, 2026 - Version 13.55 (production release)
- Added a few new Windows LNK GUID values
- Extract more unknown information from QuickTime metadata tracks
- Improved config_files/local_time.config to preserve sub seconds
- Improved lens identification logic for Canon cameras in the case where the
maker notes are missing
Apr. 1, 2026 - Version 13.54
- Security update
- Added a new PentaxModelID
- Decode timed GPS from another DJI model
- Decode more information from Apple live photo videos
- Updated DICOM tags to 2026b specification
- Patched to fix failed tests on Windows (was a bug in the tests)
- Patched to allow spaces in Windows title strings
[42 lines not shown]
Call fpu_init() at the beginning of cpu_startup(), like the other
m68k ports now do, and use the probed FPU information rather than
flags from the loader.
mle: update to 1.8.1
### changed
- improve perf of mark functions
- change syntax shortcut from `-y-` to `-yy`
- avoid zeroing the viewport when paging less than screen height
### added
- include cosmopolitan libc build
- add `cmd_split_adjust`
- add uninstall make target
- display error on buffer open failure
- add `cmd_print_macro`
- add isearch conveniences
- add `cmd_replace_all`
- parameterize page up and down
- add `cmd_macro_apply_last`
### fixed
[19 lines not shown]
G/C the patchable PCR value and associated shenanigans and just do what
the other 68060 systems so: enable superscalar issue right before
enabling the caches.
Add a small optimisation for a pmap_remove_all pmap and skip activation
in pmap_activate as it's (supposed to be) deferred until the subsequent
pmap_update.
