nono: update to 1.8.1.
1.8.1 (2026/06/25)
vm(Update): "Rewrite whole SSG(YM2149). Implement envelope and noise."
vm(Fix): "Fix some tone pitches on SSG(YM2149)."
vm(New): "Support SSG(YM2149) even on LUNA-88K."
vm(Fix): "Fix an issue where the time display would become incorrect after 115 days since ver 1.8.0."
host(New): "Add PulseAudio to host sound driver. It can be enabled by configure --enable-pulseaudio."
host(Update): "Sound latency may be improved."
GUI(Update): "Show spectrum analyzer on the sound monitor."
resterm: Update to v0.44.2
v0.44.2
Dedicated test results block in the status bar
Script/assertion test results now render as their
own segment in the status bar instead of being appended
to the response status text.
New status bar block - test outcomes (@assert and script tests)
get a dedicated, separately styled segment in the left status sections,
colored by level (pass = success, fail = warn, error = error).
The main response status (e.g. 200 OK (200)) stays the same but is no
longer suffixed with - X 1 test(s) failed.
Summaries - the block shows V tests passed, X N test(s) failed (with correct singular/plural) or ! test error.
HTTP and gRPC - the test block is populated for both HTTP and gRPC responses.
Header icon - the test error icon in the response header changed from /!\ to !
We have SSL trust anchors in base, so make use of them when downloading
additional items after basic installation is done (even if the installer
used does not come with its own certs, so we can not verify trust
for set download).
powerdns: Update to 5.1.2
Released: 25th of June 2026
This is release 5.1.2 of the Authoritative Server. It contains a security fix only.
Please review the Upgrade Notes before upgrading from versions < 5.1.x.
Bug Fixes
Fix PowerDNS Security Advisory 2026-07 for PowerDNS Authoritative Server
dnsdist: Update to 2.0.7
Released: 25th of June 2026
Bug Fixes
CVE-2026-42005: An attacker can send a web request that causes unlimited memory allocation in the internal web server,
leading to a denial of service. The internal web server is disabled by default.
CVE-2026-40210: An out-of-bounds read might happen when SetMacAddrAction is used,
potentially resulting in uninitialized memory being sent over the network or a crash.
CVE-2026-40209: An attacker might be able to cause outgoing TCP connections to backend to be
stuck until a timeout occurs instead of being released immediately by sending IXFR queries.
This could be used to cause a denial of service if there is a limit to the number of
concurrent connections to this backend, or if the process runs out of file descriptors.
CVE-2026-42004: An attacker can send a crafted EDNS OPT record that will be ignored by
DNSdist�s filtering rules, but will be rewritten as a valid OPT record when EDNS Client
Subnet is inserted, causing the backend to see the EDNS option(s) that DNSdist did not filter.
[11 lines not shown]
When compiled with SMALLPROG (i.e. as part of a crunched ramdisk userland)
ftp(1) does not support https - so remove that option from sysinst and
only offer http in that case.
Should fix PR 60359.
Pull up the following revisions, requested by martin in ticket #327:
src/usr.sbin/sysinst/util.c 1.81
src/usr.sbin/sysinst/arch/evbarm/md.c 1.24
src/usr.sbin/sysinst/arch/evbarm/md.h 1.10
PR 60360: make the default /boot partition on evbarm 64MB if we need
the dtb set (the newer dtb files overflow the old 32mb default).
In ACPI environments where we do not need dtb installed, do not select
the set by default.
acpi(4): Leave Hyper-V rndsource attached.
This way, it will be reported through rndctl(8) rather than only by
grepping through dmesg, and rndctl(8) can control it, e.g. if it
turns out something is wrong with that but not with RDSEED on the
same virtual CPU, you can use `rndctl -Ed "Hyper-V OEM0"' to discount
it and the system will gather fresh samples from RDSEED instead.
The same problem could in principle happen with other removable
rndsources like ualea(4), and we don't really have a good way to deal
with that -- either to configure the system up front to discount a
hot-pluggable rndsource that hasn't yet been plugged in, or to
retroactively discount a removable rndsource that was already
removed. But this one isn't hot-pluggable or removable, so keeping
it around is enough to sidestep this problem.
textproc/rucola: update to 0.10.0
Release Notes
Added a diary option by GitHub user robin-thoene
Added a configuration option to enable the daily diary.
Added a keybinding that creates a diary note and opens it in the editor or display screen.
Added a configuration option to determine the format of the title of the diary note.
Added a configuration option to set the initial content of the diary note.
Added an option to copy (i.e. duplicate) notes in the select and display screen
If a note is copied and its filename contains a valid date string (e.g. %F), it will be replaced by chrono during the copy.
Otherwise, copy_ will be prepended to the new file name.
This can be used to create templates for e.g. monthly or weekly notes and quickly copy them, in addition to the daily note system outlined above.
py-sybil: updated to 10.1.0
10.1.0 (13 Jun 2026)
- Ignore trailing whitespace in doctest output by default, see
:data:`~sybil.evaluators.doctest.KEEP_TRAILING_WHITESPACE` if you need whitespace sensitivity.
- Make :func:`~sybil.testing.run_pytest` runs immune to ambient color environment variables.
py-vcs-versioning: updated to 2.2.0
2.2.0 (2026-06-24)
Added
- Restore Python 3.8 and 3.9 support, re-enabling use as a build dependency for projects like scikit-build that still support these versions.
Miscellaneous
- Move PKG-INFO discovery tests to setuptools-scm where the entry points are registered.
fuse-emulator: updated to 1.9.0
1.9.0
* New features:
* Add NTSC TV and replace the PAL TV filters (derived from
snes_ntsc by Shay Green)
* Emulation core improvements:
* Tape traps: set the pulse level correctly after loading a ROM
block.
* TZX handling: don't ignore the embedded pause at the end of a
block.
* Release pressed keys after snapshot restore.
* UI improvements:
* GTK3: stop forcing X11 over Wayland (Alberto Garcia).
* SDL2: use layout-aware key mapping in keyboard handling
(Fredrick Meunier).
[36 lines not shown]
libspectrum: updated to 1.6.2
1.6.2
* Fix TZX pulse handling by starting blocks with the pulse level set to
low by default.
* Improve tape block handling by adding CONCAT block support to block
descriptions and edge generation, and fixing related memory leaks in
CONCAT, PULS and PZXT block handling (Fredrick Meunier).
* Various minor bug fixes/improvements:
* Split TZX PULSE_SEQUENCE blocks when needed to keep single-repeat
pulse counts within format limits (Fredrick Meunier).
* Fix error-path memory handling in CSW, SZX and RZX readers
(Fredrick Meunier).
* Improve TZX/PZX string and write handling, including bulk string
writes and simpler NUL-terminated string parsing (Fredrick
Meunier).
[7 lines not shown]
py-hypothesis: updated to 6.155.7
6.155.7 - 2026-06-21
This patch fixes a thread-safety bug where concurrent use of the same strategy instance could error in rare cases.
6.155.6 - 2026-06-19
This patch replaces some internal %-style string formatting with f-strings. There is no user-visible change.
6.155.5 - 2026-06-18
dates() now raises InvalidArgument if a datetime is passed as min_value or max_value. Because datetime is a subclass of date, such bounds were previously accepted and then failed with a confusing TypeError while generating examples.
6.155.4 - 2026-06-18
This patch removes a stray print() which fired whenever a dates() filter was rewritten.
