upgrade to ircii-20260115.
major changes include:
- fix ICB on newer linux systems
- fix some memory leaks
- make rand() default initialisation less obvious
- new --with-default-ssl to configure
- fix some issues in choosing the window a message belongs to
- fix hang in /window create
- fix problem in dcc_chatpeers_func() with no peers
- updates for the manual
mk: get rid of two more unconditional forks
Assume that CVS users know about 'update -d' by now and do not have
empty patches/ directories lying around. Worst case if they don't:
they end up with an unnecessary 'patch' tool dependency, which is
installed by default on NetBSD.
Assume that LOCALPATCHES users do not have empty directories lying
around. Worst case: see above.
py-openapi-core: updated to 0.22.0
0.22.0
Features
Typed style deserializers (casting is part of style deserializing)
Urlencoded deserializer schema matching type coercion
Fixes
BooleanCaster consistent boolean values fix
Error with multiple schemas in urlencoded request body
Backward incpomatibilities
style_deserializers_factory and media_tyles_deserialization_factory defaults to None in configuration and protocols
CastError inherits from DeserializeError
StyleDeserializersFactory requires schema_caster_factory
removed style_deserialization_factory and media_tyles_deserialization_factory objects
py-trove-classifiers: updated to 2026.1.14.14
2026.1.14.14
Update __init__.py to add Cygwin as a classifier
Add "Environment :: Cygwin (MS Windows)" as a classifier as some modules, such as mine, work on Windows but only via the Cygwin POSIX layer (www.cygwin.com)
emulators/vice: fix package build (PLIST)
If the option vice-x64 was not enabled, x64 is installed as a link to x64sc,
so it should be unconditional in the PLIST.
No version bump: without the option (default), the package was broken.
If you had set the option, there is no change.
go: update to 1.24.12, 1.25.6 (security)
These releases include 6 security fixes following the security policy:
- archive/zip: denial of service when parsing arbitrary ZIP archives
archive/zip used a super-linear file name indexing algorithm that is
invoked the first time a file in an archive is opened. This can lead
to a denial of service when consuming a maliciously constructed ZIP
archive.
Thanks to Thanks to Jakub Ciolek for reporting this issue.
This is CVE-2025-61728 and Go issue https://go.dev/issue/77102.
- net/http: memory exhaustion in Request.ParseForm
When parsing a URL-encoded form net/http may allocate an unexpected
amount of memory when provided a large number of key-value pairs.
[98 lines not shown]
lazygit: updated to 0.58.1
0.58.1
Enhancements
Update search position (match x of y) when changing the selection in a list view
Fixes
When doing ctrl-f, and the resulting commit is not visible, scroll it into view
Fix pasting multi-line text into the commit description
Fix keypad keys, and pasting emojis in Windows Terminal
Don't log the "git ls-remote" call when opening a PR
Fix rendering artefacts after double-width characters (e.g. "⚠️") on some terminals
dnsmasq: updated to 2.92
version 2.92
Redesign the interaction between DNSSEC validation and per-domain
servers, specified as --server=/<domain>/<ip-address>. This should
just work in all cases now. If the normal chain-of-trust exists into
the delegated domain then whether the domain is signed or not, DNSSEC
validation will function normally. In the case the delegated domain
is an "overlay" on top of the global DNS and no NS and/or DS records
exist connecting it to the global dns, then if the domain is
unsigned the situation will be handled by synthesising a
proof-of-non-existence-of-DS for the domain and queries will be
answered unvalidated; this action will be logged. A signed domain
without chain-of-trust can be validated if a suitable trust-anchor
is provided using --trust-anchor. This change should be backwards
compatible for all existing working configurations; it extends the
space of possible configurations which are functional.
Fix a couple of problems with DNSSEC validation and DNAME. One
[60 lines not shown]
