libcdio-paranoia: Fix build with GCC 15 and newer.
getopt.c uses "old-style function definitions",
which are incompatible with C23 as a default language.
gnu99 is chosen for being the minimum bootstrap requirement
and safety against APIs being hidden in standards mode.
rsyslog: Build fix for recent gcc (netbsd-11 ish)
It's not just FreeBSD that needs <unistd.h> for write(2) and
close(2). The Standard demands that we must include it.
Fixes the build of rsyslog-elasticsearch with more recent GCC
versions, which don't like implicit function declarations.
furnace: Disable invalid i386 assembler.
The NetBSD toolchain does not accept this as valid i386 assembler,
so remove it, and use the portable C fallback.
pan: Requires a C++ compiler with filesystem library support.
The netbsd-9 compiler supports c++17 but does not support the
filesystem library. netbsd-9 is still technically supported. This
should help netbsd-9 pull in a newer compiler for building pan.
syncterm: Various build fixes.
Put the curses library requirements BEFORE curses.mk is included,
that way the right stuff is selected.
Update the C compiler requirement. It requires c17 (although it
compiles fine with c11 when forced to do so).
firefox140: update to 140.12
Update during freeze approved by maya@.
Mozilla Foundation Security Advisory 2026-58
Security Vulnerabilities fixed in Firefox ESR 140.12
Announced
June 16, 2026
Impact
high
Products
Firefox ESR
Fixed in
Firefox ESR 140.12
#CVE-2026-12289: Privilege escalation in the Graphics: WebRender component
[322 lines not shown]
devel/ruby-redmine60: update to 6.0.10
Redmine 6.0.10 (2026-06-15)
This release addresss multiple security vulnerabilities along with various
bug fixes and improvements.
Code cleanup/refactoring
* Defect #43985: Flaky IssuesSystemTest caused by `!page.has_css?`
* Defect #44010: Too much INFO log of asset paths when starting Rails
Documentation
* Defect #43906: Wiki help does not display localized content for locales
with a region subtag
* Patch #43896: Remove obsolete db:migrate:upgrade_plugin_migrations step
from doc/UPGRADING
* Patch #43930: Add blockquote formatting in CommonMark wiki help pages
[36 lines not shown]
devel/ruby-redmine61: update to 6.1.3
This release addresss multiple security vulnerabilities along with various
bug fixes and improvements.
Code cleanup/refactoring
* Defect #43985: Flaky IssuesSystemTest caused by `!page.has_css?`
* Defect #44010: Too much INFO log of asset paths when starting Rails
* Defect #44072:
OauthProviderSystemTest#test_application_creation_and_authorization fails
randomly
* Patch #44073: TimeEntryTest#test_should_not_accept_closed_issue fails
randomly depending on locale
Documentation
* Defect #43906: Wiki help does not display localized content for locales
with a region subtag
[65 lines not shown]
libopensync: Various build fixes.
Improve the handling of non-POSIX iconv, detect a GNU libiconv,
and fix an implicit function declaration. This is important for
NetBSD with newer GCC.
Verified to build on FreeBSD, macOS, Linux, NetBSD, OpenBSD.
plotutils: Fix build with GCC 15.
This defines its own bool type, which is incompatible
with C23 having it as a built-in keyword.
gnu99 is chosen for being the minimum bootstrap requirement
and safety against APIs being hidden in standards mode.
gsasl: update to 2.2.4.
Security fix release.
* Noteworthy changes in release 2.2.4 (2026-06-15) [stable]
** NTLM: Avoid use-of-uninitialized-value in libntlm.
The code is in the client side, and can be triggered by a malicious
server. Report and fix by zhangph <zhangph12138 at 163.com> in
<https://lists.gnu.org/archive/html/help-gsasl/2026-06/msg00000.html>.
** i18n: Updated translations.
(geography/R-osmdata) Updated 0.2.5 to 0.3.0, fix build against R 4.6.0
# osmdata 0.3.0
## Breaking changes
- Remove `magrittr` from imports. User code relaying on reexported pipe `%>%`
from `osmdata` must explicitly load it with `library(magrittr)`.
Code examples, tests and vignettes now use the pipe from base (`|>`) available since R 4.1 (#361)
- `getbb(..., format_out = "polygon")` return polygons following [https://www.ogc.org/standards/sfa/].
Polygons are defined by a list of matrices of coordinates. The first ring defines the exterior boundary, and the following rings define holes if present.
Also fix `getbb(..., format_out = "sf_polygon")` returning each (multi)polygon as a row in an `sf` object.
Before, every ring was an independent polygon, even for holes or multipolygons,
and for `format_out = "sf_polygon"`, the features were split in a list with polygons in one item and multipolygons in another (#378).
## Major changes
- Implemented `c.osmdata_sc` method to join `osmdata_sc` objects (#333)
- Depends on R >= 4.1 to use the base pipe (`|>`) in examples and vignettes (#371)
[22 lines not shown]
devel/cmocka: Don't use newfangled attribute access on gcc < 12
The usage is guarded on __has_attribute(access), but that apparently
doesn't distinguish having access none. Fix inspired by an upstream
bug report (which has a huge hex string intstead of a number in the
brave new world of gitlab), avoid attribute access on gcc <= 12.
Upstream has not acted on or commented on the bug report, file on
April 10.
Resolves failure to build on NetBSD 10, probably resolves problems on
other gcc 10 hosts, and shouldn't affect systems with gcc >= 12.
