Update devel/objfw to 1.5.4
ObjFW 1.5.3 -> ObjFW 1.5.4, 2026-05-23
* Fixes a buffer overflow caused by integer promotion rules in
OFBMPImageFormatHandler and OFQOIImageFormatHandler.
geography/proj: Force use of pkgsrc nlohmann-json
Upstream has a very outdated vendored copy. Add a build define to ask
for it to be used as a dependency ("external" in upstream parlance).
Add a command to remove the vendored copy, to guard against accidental
use. Leave it commented out because of upstream problems (with
links).
Rototill the comments surrounding build and test depends.
Despite the diff size, this change should have effect on the resulting
binary.
www/anubis: Update to 1.25.0
Changelog:
1.25.0:
Add iplist2rule tool that lets admins turn an IP address blocklist into an Anubis ruleset.
Add Polish locale (#1292)
Fix honeypot and imprint links missing BASE_PREFIX when deployed behind a path prefix (#1402)
Add ANEXIA Sponsor logo to docs (#1409)
Improve idle performance in memory storage
Add HAProxy Configurations to Docs (#1424)
What's Changed
build(deps): bump the github-actions group with 4 updates by @dependabot[bot] in #1355
feat(localization): add Polish language translation by @btomaev in #1363
docs(known-instances): Alphabetical order + Add Valve Corporation by @p0008874 in #1352
test: basic nginx smoke test by @Xe in #1365
build(deps): bump the github-actions group with 3 updates by @dependabot[bot] in #1369
build(deps-dev): bump esbuild from 0.27.1 to 0.27.2 in the npm group by @dependabot[bot] in #1368
[31 lines not shown]
py-pdf: updated to 6.12.1
6.12.1
Security (SEC)
- Limit input size and element count for XMP metadata
Robustness (ROB)
- Prevent cyclic parent hierarchies for inherited dictionaries
- Deal with invalid first code in LZW decoder
libgit2: updated to 1.9.4
v1.9.4
This release includes a few small but important bugfixes.
* cmake: separate generated headers from translated headers
* Avoid uninitialized variable warnings in gcc
* fix: Recognize relative worktrees extension
* fix(sha256): thread-safety bug in builtin SHA-256
tailscale: update to 1.98.3
Fixed an issue on Linux where netfilter rules could be applied
inconsistently after a netfilter mode change failed has been
resolved. Connmark and CGNAT rules are applied after the active
netfilter mode is successfully updated, matching the behavior of
other netfilter paths.
(textproc/R-yaml) Updated 2.3.10 to 2.3.12, fixed against R-4.6.0
# yaml 2.3.12
* Fixes for C API compliance.
* Switched from `CHANGELOG` to `NEWS.md`.
(math/R-fastmatch) Updated 1.1.6 to 1.1.8, fix build against R-4.6.0
NEWS for fastmatch
--------------------
1.1-8 2025-01-18
o fix protection bug in safe mode
o remove index slicing since we don't pass the index
1.1-7 2025-01-17
o adjust to API changes up to R 4.6.0
o add .SAFE argument to ctapply() which determines whether the
index and value vectors are cached between calls to FUN
(.SAFE=FALSE) or if a clean set of vectors is allocated for
each call (.SAFE=TRUE). The latter is now the default, because
cached vectors may not be assigned and thus are only safe to
[18 lines not shown]
(graphics/R-Cairo) Updated 1.6.2 to 1.7.0
NEWS/Changelog
1.7-0 (2025-10-29)
o add support for all R graphics device features up to
GE API 16 (R 4.5.0). This includes fill patterns, masks
(GE 13) and groups (GE 14). Thanks to Paul Murrell!
o removed gdd_get_version C API and CAIROGD_VER.
This means that it no longer needs mkdist and can be
directly created with R CMD build.
o restore the use of WIN32 API to find fonts for
cairographics > 1.16 (where avaiable) since it was
removed in those versions. (#50)
1.6-5 (2025-08-20)
[20 lines not shown]
