OpenBSD/ports LSuYmFsmail/rspamd Makefile distinfo, mail/rspamd/patches patch-CMakeLists_txt

   backout to rspamd 3.14.3 for now, I'm hitting some fairly heavy FD leak
   on the milter socket on my postfix+rspamd setup (noticed when it hit 4k
   FDs and bumped into limits) and not in a good position to attempt debug
   atm.
VersionDeltaFile
1.68+0-17mail/rspamd/pkg/PLIST
1.158+3-1mail/rspamd/Makefile
1.87+2-2mail/rspamd/distinfo
1.42+2-2mail/rspamd/patches/patch-CMakeLists_txt
+7-224 files

OpenBSD/src Kbl4sKGusr.bin/awk b.c

   Prevent integer overflow in regex repetition count

   Limit the repetition count to 255 like POSIX does.  Also avoid a
   crash when the repetition is the first atom parsed.

   From Renaud Allard.
VersionDeltaFile
1.56+7-1usr.bin/awk/b.c
+7-11 files

OpenBSD/ports fY1p8uysysutils/moor distinfo modules.inc

   sysutils/moor: Update to 2.12.0

   From Maintainer Lydia Sobot, thanks
VersionDeltaFile
1.4+6-4sysutils/moor/distinfo
1.3+2-1sysutils/moor/modules.inc
1.4+1-1sysutils/moor/Makefile
+9-63 files

OpenBSD/src VG7zBlxusr.sbin/relayd relay.c

   relay_tls_ctx_create: plug tls_cfg leak

   If the second tls_cfg_new() call fails, the tls_cfg is leaked.

   From Jan Schreiber
VersionDeltaFile
1.263+2-2usr.sbin/relayd/relay.c
+2-21 files

OpenBSD/ports ksKaBpPmail/roundcubemail distinfo

   sync distinfo
VersionDeltaFile
1.95.2.5+2-0mail/roundcubemail/distinfo
+2-01 files

OpenBSD/src OI12oM5usr.sbin/relayd relay_http.c

   relayd: error check bsearch in relay_httperror_byid()

   If relay_httperror_byid() is passed a HTTP error code not in the table
   this would result in a NULL deref. The intent is that the code fall back
   to "Unknown error" on NULL return.

   From Jan Schreiber
VersionDeltaFile
1.96+5-4usr.sbin/relayd/relay_http.c
+5-41 files

OpenBSD/src YsYulcsusr.sbin/relayd relay_http.c

   relayd: fix NULL check for strdup()

   Due to a copy-paste error, relay_lookup_query() would check the wrong kv
   member for NULL.

   From Jan Schreiber
VersionDeltaFile
1.95+2-2usr.sbin/relayd/relay_http.c
+2-21 files

OpenBSD/src VLtXNF5regress/sys/netinet/tcpstate tcp_sack.py pf.conf

   Add regress test for TCP Selective ACK packets.
VersionDeltaFile
1.1+125-0regress/sys/netinet/tcpstate/tcp_sack.py
1.2+3-1regress/sys/netinet/tcpstate/pf.conf
1.7+2-2regress/sys/netinet/tcpstate/Makefile
1.7+1-1regress/sys/netinet/tcpstate/tcp_established.py
+131-44 files

OpenBSD/src NUWbVRPsys/dev/pci if_iwx.c

   sys/iwx: align antenna patterns and STBC with iwlwifi

   Follow iwlwifi for antenna pattern and STBC advertisement. Advertise RX
   antenna pattern only when RX is effectively 1x1; advertise HT and VHT
   STBC unconditionally, and VHT TX antenna pattern only when TX is
   effectively 1x1, and program the firmware TLC STBC flag when the peer
   advertises RX STBC and the device has more than one valid TX antenna.

   OK: stsp@
VersionDeltaFile
1.228+53-3sys/dev/pci/if_iwx.c
+53-31 files

OpenBSD/ports gRCYK26textproc/p5-XML-Parser distinfo Makefile

   update p5-XML-Parser to 2.55
VersionDeltaFile
1.16+2-2textproc/p5-XML-Parser/distinfo
1.41+1-1textproc/p5-XML-Parser/Makefile
+3-32 files

OpenBSD/ports DnGYeAxnet/tdesktop distinfo Makefile

   update to tdesktop 6.7.1
VersionDeltaFile
1.159+2-2net/tdesktop/distinfo
1.214+1-2net/tdesktop/Makefile
+3-42 files

OpenBSD/src cD2xxpausr.bin/tmux cmd-list-keys.c

   Do not leak command in list-keys, reported by tb@. Also tidy up some
   function names while here.
VersionDeltaFile
1.74+15-13usr.bin/tmux/cmd-list-keys.c
+15-131 files

OpenBSD/ports aXHRrBmsysutils/just distinfo crates.inc

   sysutils/just: upgrade to v1.48.1.
VersionDeltaFile
1.5+194-144sysutils/just/distinfo
1.5+96-71sysutils/just/crates.inc
1.6+1-1sysutils/just/Makefile
+291-2163 files

OpenBSD/src ZCRa9RAusr.bin/tmux format-draw.c format.c

   Do not leak trimmed string when expanding, found by ossfuzz.
VersionDeltaFile
1.31+2-2usr.bin/tmux/format-draw.c
1.352+3-1usr.bin/tmux/format.c
+5-32 files

OpenBSD/src IgMOGzcusr.bin/tmux format.c

   Use INT_MIN + 1 as strtonum lower limits in formats so -ve works, found
   by ossfuzz.
VersionDeltaFile
1.351+8-6usr.bin/tmux/format.c
+8-61 files

OpenBSD/ports AbYb6YInet/isc-bind distinfo Makefile

   update to isc-bind-9.20.22
VersionDeltaFile
1.138.2.8+2-2net/isc-bind/distinfo
1.207.2.8+1-1net/isc-bind/Makefile
+3-32 files

OpenBSD/ports iKJZeV4net/isc-bind distinfo Makefile

   update to isc-bind-9.20.22
VersionDeltaFile
1.146+2-2net/isc-bind/distinfo
1.217+1-1net/isc-bind/Makefile
+3-32 files

OpenBSD/ports jrqmgpJdevel/llvm/22 distinfo Makefile, devel/llvm/22/patches patch-llvm_lib_Target_AArch64_AArch64FrameLowering_cpp patch-lld_ELF_Driver_cpp

   update to 22.1.2
VersionDeltaFile
1.2+2-2devel/llvm/22/patches/patch-llvm_lib_Target_AArch64_AArch64FrameLowering_cpp
1.3+2-2devel/llvm/22/distinfo
1.4+1-1devel/llvm/22/Makefile
1.2+1-1devel/llvm/22/patches/patch-lld_ELF_Driver_cpp
+6-64 files

OpenBSD/src 5ZOKRPKusr.bin/tmux cmd.c

   Limit argc to between 0 and 1000 to prevent fatal from MSG_COMMAND, from
   Michal Majchrowicz.
VersionDeltaFile
1.182+3-1usr.bin/tmux/cmd.c
+3-11 files

OpenBSD/src 5YTIMBpusr.bin/tmux regsub.c

   Handle empty regular expression in substitution, found by ossfuzz.
VersionDeltaFile
1.7+3-1usr.bin/tmux/regsub.c
+3-11 files

OpenBSD/src t9nStaHusr.bin/tmux window-copy.c format.c

   Check for \0 after skipping # not before in format_expand1, from ossfuzz.
VersionDeltaFile
1.393+6-5usr.bin/tmux/window-copy.c
1.350+2-2usr.bin/tmux/format.c
+8-72 files

OpenBSD/ports VCt5HG8www/iridium/patches patch-chrome_browser_about_flags_cc patch-third_party_blink_renderer_platform_runtime_enabled_features_json5

   update to 2026.04.146.5
VersionDeltaFile
1.72+55-55www/iridium/patches/patch-chrome_browser_about_flags_cc
1.39+10-10www/iridium/patches/patch-third_party_blink_renderer_platform_runtime_enabled_features_json5
1.56+3-3www/iridium/patches/patch-chrome_common_chrome_features_cc
1.6+3-3www/iridium/patches/patch-chrome_browser_ui_tabs_public_tab_features_h
1.11+2-2www/iridium/patches/patch-chrome_browser_ui_tabs_tab_features_cc
1.25+2-2www/iridium/patches/patch-chrome_browser_ui_views_user_education_browser_user_education_service_cc
+75-7510 files not shown
+89-8916 files

OpenBSD/src RRat9wwusr.bin/tmux sort.c

   Fix NULL dereference in sort.c, from Dane Jensen.
VersionDeltaFile
1.4+2-1usr.bin/tmux/sort.c
+2-11 files

OpenBSD/ports RBMPAY5graphics/jpeg distinfo Makefile, graphics/jpeg/patches patch-CMakeLists_txt

   update to jpeg-3.1.4.1

   thanks to matthieu@ for armv7 and macppc tests (and Jan Stary who started
   on this too but matthieu beat him to it)
VersionDeltaFile
1.36+2-2graphics/jpeg/distinfo
1.89+1-1graphics/jpeg/Makefile
1.18+1-1graphics/jpeg/patches/patch-CMakeLists_txt
+4-43 files

OpenBSD/src ctTky5fregress/usr.bin/ssh percent.sh

   adapt to username validity check change
VersionDeltaFile
1.23+3-3regress/usr.bin/ssh/percent.sh
+3-31 files

OpenBSD/src 8kBgXMRusr.bin/ssh version.h

   openssh-10.3
VersionDeltaFile
1.108+2-2usr.bin/ssh/version.h
+2-21 files

OpenBSD/src tQF0BsWusr.bin/ssh ssh.c

   move username validity check for usernames specified on the
   commandline to earlier in main(), specifically before some
   contexts where a username with shell characters might be
   expanded by a %u directive in ssh_config.

   We continue to recommend against using untrusted input on
   the SSH commandline. Mitigations like this are not 100%
   guarantees of safety because we can't control every
   combination of user shell and configuration where they are
   used.

   Reported by Florian Kohnhäuser
VersionDeltaFile
1.630+8-1usr.bin/ssh/ssh.c
+8-11 files

OpenBSD/src DEXSQKzusr.bin/ssh sshconnect2.c auth2-pubkeyfile.c

   correctly match ECDSA signature algorithms against algorithm
   allowlists: HostKeyAlgorithms, PubkeyAcceptedAlgorithms and
   HostbasedAcceptedAlgorithms.

   Previously, if any ECDSA type (say "ecdsa-sha2-nistp521") was
   present in one of these lists, then all ECDSA algorithms would
   be permitted.

   Reported by Christos Papakonstantinou of Cantina and Spearbit.
VersionDeltaFile
1.385+18-10usr.bin/ssh/sshconnect2.c
1.8+15-11usr.bin/ssh/auth2-pubkeyfile.c
1.126+5-4usr.bin/ssh/auth2-pubkey.c
1.57+5-4usr.bin/ssh/auth2-hostbased.c
+43-294 files

OpenBSD/src 04OjIgrusr.bin/ssh scp.c

   when downloading files as root in legacy (-O) mode and without the
   -p (preserve modes) flag set, clear setuid/setgid bits from
   downloaded files as one might expect.

   AFAIK this bug dates back to the original Berkeley rcp program.

   Reported by Christos Papakonstantinou of Cantina and Spearbit.
VersionDeltaFile
1.273+4-2usr.bin/ssh/scp.c
+4-21 files

OpenBSD/src i4JTEwsusr.bin/ssh mux.c

   add missing askpass check when using ControlMaster=ask/autoask
   and "ssh -O proxy ..."; reported by Michalis Vasileiadis
VersionDeltaFile
1.113+11-1usr.bin/ssh/mux.c
+11-11 files