libfido2: updated to 1.17.0
1.17.0 (2026-04-15)
** Added CTAP 2.3 support.
** Restrict webauthn.dll search paths; YSA-2026-01.
** Support application-managed PIN/UV Auth tokens.
** Support 64-byte hmac-secret salts when using windows://hello.
** Fixed a U2F transaction handling bug when a timeout had been set.
** Fixed a bug where stdin was closed on fido_nl_new failure.
** fido2-token: new -G -t mode to to retrieve a PPUAT.
** fido2-token: new -I -t mode for deciphering encrypted fields.
** fido2-cred -M: support the -t toggle argument
** Improved documentation and examples.
** Removed tools from SDK packaging on Windows.
** New API calls:
- fido_cbor_info_attfmts_len;
- fido_cbor_info_attfmts_ptr;
- fido_cbor_info_cfgcmds_len;
- fido_cbor_info_cfgcmds_ptr;
[27 lines not shown]
libgcrypt: updated to 1.12.2
Noteworthy changes in version 1.12.2 (2026-04-15)
* Bug fixes:
- Fix possible ECDH buffer overwrite with zeroes.
- Add a missing bounds check to the Dilithium context handling.
- Add point validation when using the new KEM interface.
* Other:
- Fix the dead-code of stronger_key_check for RSA.
adguardhome: updated to 0.107.74
0.107.74
Security
Frontend libraries has been updated to prevent the possibility of exploiting the vulnerability described in CVE-2026-40175.
Go version has been updated to prevent the possibility of exploiting the Go vulnerabilities fixed in 1.26.2.
Changed
Configuration changes
Fixed
Incorrect forwarding of root domain requests when domain-specific upstreams are configured
The strict SNI check setting is not persisted when the TLS configuration is changed
Status reported by the launchd service implementation in cases of scheduled service restart.
Fixed clients block/unblock when moving clients between allowed and disallowed lists.
opencl-headers: updated to 2025.07.22
2025.07.22
Synchronize with OpenCL v3.0.19 specification release.
This release includes several changes that may affect backward compatibility:
Introduction of the CL_ENABLE_BETA_EXTENSIONS to guard beta features or extensions that can be modified with backward incompatible changes. Previously unguarded extensions are now guarded.
Introduction of anonymous unions in the struct _cl_icd_dispatch structure. This may cause warnings or errors during static initialization.
textproc/xan: update to 0.57.1
Fixes
Fixing xan sort --check -n & xan dedup --check -n printed report.
Fixing xan parallel cat -nS.
Fixing CSV parsing rare edge case panics.
Fixing commands relying on zero-copy CSV parsing for performance.
Performance
Improving performance of xan flatten, xan view, xan to & xan network.
Faster xan network -f nodelist in some cases.
py-mypy: updated to 1.20.1
1.20.1
Always disable sync in SQLite cache
Temporarily skip few base64 tests
Revert dict.__or__ typeshed change
Fix narrowing for match case with variadic tuples
Avoid narrowing type[T] in type calls
Fix regression for catching empty tuple in except
Fix reachability for frozenset and dict view narrowing
Fix narrowing with chained comparison
Avoid narrowing to unreachable at module level
Allow dangerous identity comparisons to Any typed variables
--warn-unused-config should not be a strict flag
