NetBSD/pkgsrc bwCspAmdoc CHANGES-2026

   doc: Updated textproc/p5-ack to 3.10.0
VersionDeltaFile
1.4358+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc PHghJU5textproc/p5-ack Makefile distinfo

   p5-ack: update to 3.10.0.

   v3.10.0     Sun Jun  7 11:50:37 CDT 2026
   ========================================
   [SECURITY]
   CVE-2026-49147: filename ANSI escape sequences
   CVE-2026-49146: project .ackrc -A -B -C memory exhaustion
   CVE-2026-49145: project .ackrc --follow / --files-from file exfiltration

   [FIXES]
   Fixed a bug where types set in the .ackrc could not be overridden from the
   command line. Thanks, Dmitri Vereshchagin. (GH #393)


   v3.9.0      Mon May 26 15:02:57 CDT 2025
   ========================================
   The --not option can be used with either --and or --or.

   The -g option can now use any of the boolean options, --and, --or or --not.

    [39 lines not shown]
VersionDeltaFile
1.44+4-4textproc/p5-ack/Makefile
1.22+4-4textproc/p5-ack/distinfo
+8-82 files

NetBSD/pkgsrc 55Sl6KJdoc CHANGES-2026

   doc: Updated textproc/p5-YAML-PP to 0.41.0
VersionDeltaFile
1.4357+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc 5YTNk31textproc/p5-YAML-PP Makefile distinfo

   p5-YAML-PP: update to 0.41.0.

   v0.41.0 2026-06-17 22:01:34+02:00

       - tests: replace Test::Warn with Test::Warnings (PR #59, @haarg)
       - Fix test suite tag data

   v0.40.0 2026-04-24 16:51:28+02:00

       - Security: Limit default allowed maximum nesting level.
         Set it via new option 'max_depth'.

   v0.39.0 2025-02-10 00:01:45+01:00

       - Allow unknown tags again, reverting the previous change in v0.38.1 which
         only was supposed to be a dev release
       - Add new option require_footer

   v0.38.1 2025-01-25 00:30:13+01:00

    [17 lines not shown]
VersionDeltaFile
1.17+4-5textproc/p5-YAML-PP/Makefile
1.10+4-4textproc/p5-YAML-PP/distinfo
+8-92 files

NetBSD/pkgsrc fJUr9Smdoc CHANGES-2026

   Updated www/freenginx-devel to 1.31.3
VersionDeltaFile
1.4356+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc Hl5Hjdqwww/freenginx-devel Makefile distinfo, www/freenginx-devel/patches extra-patch-ndk_set_var.c

   www/freenginx-devel: update from 1.31.2 to 1.31.3

   Sponsored by:        tipi.work

   <ChangeLog>

   *) Feature: additional checks are now used during variable substitution,
      including during execution of the ngx_http_rewrite_module directives,
      to prevent buffer overruns in case of errors in the code.

   *) Bugfix: if the "auth_request_set" directive or regular expression
      named captures were used to change prefix variables, such as
      "$http_...", corresponding variables became empty in other parts of
      the configuration.

   *) Bugfix: changing the $limit_rate and $args variables with the
      "auth_request_set" directive or regular expression named captures
      worked incorrectly.


    [23 lines not shown]
VersionDeltaFile
1.1+31-0www/freenginx-devel/patches/extra-patch-ndk_set_var.c
1.18+5-3www/freenginx-devel/Makefile
1.16+4-4www/freenginx-devel/distinfo
+40-73 files

NetBSD/pkgsrc U52f65kdoc CHANGES-2026

   Updated www/freenginx to 1.30.1nb1
VersionDeltaFile
1.4355+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc if3WeiPwww/freenginx distinfo options.mk, www/freenginx/patches extra-patch-njs-quickjs extra-patch-auto-quickjs

   www/freenginx: third-party modules management (+)

   Update cache_purge module and njs modules to their recent versions (merge
   changes from www/freenginx-devel).

   Bump PKGREVISION.

   Sponsored by:        tipi.work
VersionDeltaFile
1.1+28-0www/freenginx/patches/extra-patch-njs-quickjs
1.9+7-7www/freenginx/distinfo
1.7+3-3www/freenginx/options.mk
1.10+3-2www/freenginx/Makefile
1.4+0-0www/freenginx/patches/extra-patch-auto-quickjs
+41-125 files

NetBSD/pkgsrc OoMTzBbdoc CHANGES-2026

   doc: Updated lang/go126 to 1.26.5
VersionDeltaFile
1.4354+3-1doc/CHANGES-2026
+3-11 files

NetBSD/pkgsrc cDbYxmIaudio/sptui Makefile, audio/ymuse Makefile

   Revbump all Go packages after go126 update
VersionDeltaFile
1.25+2-2audio/sptui/Makefile
1.49+2-2audio/ymuse/Makefile
1.103+2-2chat/coyim/Makefile
1.62+2-2chat/gomuks/Makefile
1.91+2-2chat/matterircd/Makefile
1.27+2-2chat/neonmodem/Makefile
+12-12202 files not shown
+416-390208 files

NetBSD/pkgsrc IrSh8cMlang/go version.mk, lang/go125 distinfo PLIST

   go: update to 1.26.5 and 1.25.12 (security)

   These releases include 2 security fixes following the security policy:

   -   os: Root escape via symlink plus trailing slash

       On Unix systems, opening a file in an os.Root improperly
       followed symlinks to locations outside of the Root when
       the final path component of the a path is a symbolic link
       and the path ends in /.

       For example, root.Open("symlink/") would open "symlink" even when
       "symlink" is a symbolic link pointing outside of the root.

       On Unix, openat(fd, path, O_NOFOLLOW) will follow symlinks
       in path when path ends in a /. Root failed to account for
       this behavior, permitting paths with a trailing / to escape.
       It now properly sanitizes the path parameter provided to openat.


    [18 lines not shown]
VersionDeltaFile
1.14+4-4lang/go125/distinfo
1.6+4-4lang/go126/distinfo
1.251+3-3lang/go/version.mk
1.6+4-0lang/go126/PLIST
1.9+3-0lang/go125/PLIST
+18-115 files

NetBSD/pkgsrc BAboSRHdoc CHANGES-2026

   Updated lang/nodejs, devel/py-mocket
VersionDeltaFile
1.4353+3-1doc/CHANGES-2026
+3-11 files

NetBSD/pkgsrc Fkyq9jAdevel/py-mocket distinfo Makefile

   py-mocket: updated to 3.14.2

   3.14.2

   tests: add tests for hexdump and hexload, including ValueError on invalid hex
   Better can_handle_fun documentation
   Raise an error when both can_handle_fun and match_querystring are used
VersionDeltaFile
1.18+4-4devel/py-mocket/distinfo
1.18+2-2devel/py-mocket/Makefile
+6-62 files

NetBSD/pkgsrc LAmnwo0lang/nodejs distinfo Makefile

   nodejs: updated to 26.5.0

   26.5.0

   Notable changes

   - (SEMVER-MINOR) buffer: implement blob.textStream() (Matthew Aitken)
   - (SEMVER-MINOR) esm: add --experimental-import-text flag (Efe)
   - (SEMVER-MINOR) perf_hooks: sample delay per event loop iteration (Pablo Erhard)
   - (SEMVER-MINOR) stream: expose ReadableStreamTee (Matteo Collina)
   - (SEMVER-MINOR) tls: report negotiated TLS groups (Filip Skokan)
VersionDeltaFile
1.324+4-4lang/nodejs/distinfo
1.356+2-2lang/nodejs/Makefile
+6-62 files

NetBSD/pkgsrc AGg5W2Osysutils/qemu-guest-agent Makefile

   make this compile for and work on i386 (actually, i586 and up) 32bit VMs.
VersionDeltaFile
1.11+3-1sysutils/qemu-guest-agent/Makefile
+3-11 files

NetBSD/pkgsrc rQiRUaxdoc CHANGES-2026

   doc: Updated games/ajbsp to 1.05
VersionDeltaFile
1.4352+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc 5kLHll6games/ajbsp Makefile distinfo, games/ajbsp/patches patch-Makefile

   games/ajbsp: Update to 1.05

   * support UDMF maps, creating XGL3 nodes
   * better ability to embed as a library
   * lots of code improvements, require C++11 now
   * a facility for source ports: XWA files
VersionDeltaFile
1.3+12-35games/ajbsp/patches/patch-Makefile
1.4+7-5games/ajbsp/Makefile
1.5+5-5games/ajbsp/distinfo
+24-453 files

NetBSD/pkgsrc j8HSCeKdoc CHANGES-2026

   doc: Updated x11/mlterm to 3.9.5
VersionDeltaFile
1.4351+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc DxBEvvqx11/mlterm distinfo Makefile, x11/mlterm/patches patch-uitoolkit_ui__display.h patch-uitoolkit_xlib_ui__display.c

   mlterm: update to 3.9.5

   pkgsrc changes:
   - remove obsolete MESSAGE

   Upstream changes:
    https://github.com/arakiken/mlterm/blob/3.9.5/doc/en/ReleaseNote

   * Support text-input-unstable-v3.
   * Support SGR Mouse Pixel Mode.
   * Support libvte-2.91-gtk4 compatible library. (Experimental)
   * Support DRCSMMv3. (https://github.com/kmiya-culti/RLogin/issues/152)
   * Support selecting regions in pictures with the mouse.
     (https://github.com/arakiken/mlterm/issues/151)
   * Support kmsdrm in mlterm-sdl2.
     (Inspired by https://github.com/chu-hai/mlterm/tree/sdl2_kmsdrm)
   * Add --adc/use_arabic_dynamic_comb option.
     (https://github.com/arakiken/mlterm/issues/136)
   * Add --crsz/cursor_size option to mlterm-fb.

    [25 lines not shown]
VersionDeltaFile
1.104+4-7x11/mlterm/distinfo
1.213+2-3x11/mlterm/Makefile
1.3+1-1x11/mlterm/MESSAGE
1.2+1-1x11/mlterm/patches/patch-uitoolkit_ui__display.h
1.2+1-1x11/mlterm/patches/patch-uitoolkit_xlib_ui__display.c
1.4+1-1x11/mlterm/patches/patch-uitoolkit_xlib_ui__window.c
+10-146 files

NetBSD/pkgsrc MSkpQl8doc CHANGES-2026

   doc: Updated www/chromium to 150.0.7871.100
VersionDeltaFile
1.4350+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc TrothZVwww/chromium distinfo, www/chromium/patches patch-base_files_file__path__watcher__kqueue.cc patch-third__party_vulkan-loader_src_loader_loader__environment.c

   chromium: update to 150.0.7871.100

   This update doesn't include security fixes.
   A full list of changes in this build is available in
   https://chromium.googlesource.com/chromium/src/+log/150.0.7871.47..150.0.7871.101?pretty=fuller&n=10000
VersionDeltaFile
1.50+1,628-1,621www/chromium/distinfo
1.3+45-16www/chromium/patches/patch-base_files_file__path__watcher__kqueue.cc
1.1+44-0www/chromium/patches/patch-third__party_vulkan-loader_src_loader_loader__environment.c
1.1+25-0www/chromium/patches/patch-third__party_vulkan-loader_src_loader_vk__loader__platform.h
1.1+24-0www/chromium/patches/patch-third__party_vulkan-loader_src_BUILD.gn
1.1+21-0www/chromium/patches/patch-third__party_nasm_output_outieee.c
+1,787-1,6371,620 files not shown
+3,450-3,2681,626 files

NetBSD/pkgsrc CMgz4AKdoc CHANGES-2026

   doc: Updated www/davical to 1.1.13
VersionDeltaFile
1.4349+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc o1wFAXRwww/davical PLIST Makefile

   www/davical : Update to v1.1.13

   From upstream's changelog:

     [ Andrew Ruthven ]

     * New upstream release (Closes: #1040996, #1054143)

     [ Florian Schlichting ]

     * Acknowledge NMUs by David Pr�vot - thank you! (closes: #1121419)
     * Depend on AWL 0.65
     * Update copyright years
     * Drop redundant "Priority: optional" and "Rules-Requires-Root: no" fields
       in debian/control
     * Update Doxyfile using "doxygen -u"
     * Add graphviz to Build-Depends, our doxygen config needs "dot"
     * Update debian/watch to version 5 (Gitlab template)
     * Declare compliance with Debian Policy 4.7.4

    [2 lines not shown]
VersionDeltaFile
1.14+16-116www/davical/PLIST
1.54+4-4www/davical/Makefile
1.25+4-4www/davical/distinfo
1.3+3-3www/davical/options.mk
+27-1274 files

NetBSD/pkgsrc LfptfKwdoc CHANGES-2026

   doc: Updated news/canlock-hp to 3.3.3
VersionDeltaFile
1.4348+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc o0b54LFnews/canlock-hp distinfo Makefile

   news/canlock-hp: Update to 3.3.3

   - Replace CC0 license with NLPL license for documentation files because
     Fedora project does not accept CC0 for documentation (reported by
     Dominik 'Rathann' Mierzejewski)
VersionDeltaFile
1.13+4-4news/canlock-hp/distinfo
1.14+2-2news/canlock-hp/Makefile
+6-62 files

NetBSD/pkgsrc UMH7jtydoc CHANGES-2026

   doc: Updated news/libcanlock to 3.3.3
VersionDeltaFile
1.4347+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc cU8KvBGnews/libcanlock distinfo Makefile

   news/libcanlock: Update to 3.3.3

   - Replace CC0 license with NLPL license for documentation files because
     Fedora project does not accept CC0 for documentation (reported by
     Dominik 'Rathann' Mierzejewski)
VersionDeltaFile
1.14+4-4news/libcanlock/distinfo
1.15+2-2news/libcanlock/Makefile
+6-62 files

NetBSD/pkgsrc 624unHKdevel/php-libawl distinfo Makefile, devel/php-libawl/patches patch-inc_AWLUtilities.php.in

   devel/php-libawl : Update to official release 0.65

   Since we are already at 0.65, just bump PKGREVISION.

   From upstream's changelog:

   2026-03-24 Florian Schlichting <fsfs at debian.org>

        * update AWLUtilities.php.in to match what we have in AWLUtilities.php
        * acknowledge Debian NMU 0.64-1.1
        * release awl 0.65

   2024-07-23 Rene Kudlek <rene.kudlek at iserv.eu>
        * Don't use PHP 7.0 features
        * Perform null check on timezone_identifiers_list_cache in AWLUtilities
VersionDeltaFile
1.21+4-5devel/php-libawl/distinfo
1.23+3-3devel/php-libawl/Makefile
1.2+1-1devel/php-libawl/patches/patch-inc_AWLUtilities.php.in
+8-93 files

NetBSD/pkgsrc A0UB82gdoc CHANGES-2026

   Updated audio/libdiscid, multimedia/libva
VersionDeltaFile
1.4346+3-1doc/CHANGES-2026
+3-11 files

NetBSD/pkgsrc hWnbGMrmultimedia/libva distinfo Makefile, multimedia/libva/patches patch-va_va__internal.h

   libva: updated to 2.24.1

   2.24.1
   va: include <unistd.h> for getuid/getgid in secure_getenv fallback
VersionDeltaFile
1.30+4-5multimedia/libva/distinfo
1.41+2-2multimedia/libva/Makefile
1.2+1-1multimedia/libva/patches/patch-va_va__internal.h
+7-83 files