OpenBSD/src 1nK6734usr.sbin/rpki-client filemode.c

   Add missing spl_free() in the proc_parser_file() spaghetti

   OK tb@
VersionDeltaFile
1.85+2-1usr.sbin/rpki-client/filemode.c
+2-11 files

OpenBSD/src N2N0wDyusr.sbin/rpki-client ccr.c

   ccr: use uint32_t and %u for AS numbers

   ok claudio
VersionDeltaFile
1.40+15-15usr.sbin/rpki-client/ccr.c
+15-151 files

OpenBSD/src 2IEHwepusr.sbin/rpki-client tak.c

   Tak files should use RTYPE_TAK not RTYPE_SPL.

   OK tb@
VersionDeltaFile
1.32+2-2usr.sbin/rpki-client/tak.c
+2-21 files

OpenBSD/src UphZKvlusr.sbin/rpki-client output-json.c print.c

   ASnum are unsigned 32bit values. Use %u to print them not %d.

   Also use json_do_uint() just to be consistent. The json encoder operates
   with 64bit values so it does not matter there as much as it does for printf.

   With and OK tb@
VersionDeltaFile
1.61+6-6usr.sbin/rpki-client/output-json.c
1.79+6-6usr.sbin/rpki-client/print.c
1.36+2-2usr.sbin/rpki-client/output-bgpd.c
1.27+2-2usr.sbin/rpki-client/output-bird.c
+16-164 files

OpenBSD/ports fet0OnZdevel/kdevelop/pkg PLIST, editors/calligra/pkg PLIST

   Update KDE Gear to 26.04.3

   https://kde.org/announcements/gear/26.04.3/
VersionDeltaFile
1.59+0-65devel/kdevelop/pkg/PLIST
1.26+0-48x11/kde-applications/step/pkg/PLIST
1.37+0-40editors/calligra/pkg/PLIST
1.35+11-8x11/kde-applications/krfb/Makefile
1.9+17-0x11/kde-applications/falkon/pkg/PLIST
1.47+2-11x11/kde-applications/kate/pkg/PLIST
+30-172264 files not shown
+457-647270 files

OpenBSD/ports a2zsoc4www/mozilla-firefox distinfo Makefile

   www/mozilla-firefox: MFC update to 152.0.5.

   see https://www.firefox.com/en-US/firefox/152.0.5/releasenotes/
VersionDeltaFile
1.397.2.10+2-2www/mozilla-firefox/distinfo
1.680.2.12+1-2www/mozilla-firefox/Makefile
+3-42 files

OpenBSD/ports RgzYtEcwww/firefox-i18n distinfo Makefile.inc, www/mozilla-firefox distinfo Makefile

   www/mozilla-firefox: update to 152.0.5.

   see https://www.firefox.com/en-US/firefox/152.0.5/releasenotes/
VersionDeltaFile
1.397+164-164www/firefox-i18n/distinfo
1.411+4-4www/mozilla-firefox/distinfo
1.697+2-3www/mozilla-firefox/Makefile
1.352+1-1www/firefox-i18n/Makefile.inc
+171-1724 files

OpenBSD/ports 8yhNDvQx11/fltk Makefile distinfo, x11/fltk/patches patch-configure_ac

   update to fltk-1.3.11
   (1.4.x is listed as stable upstream now, but needs more work in dependent ports)
VersionDeltaFile
1.63+3-5x11/fltk/Makefile
1.16+2-2x11/fltk/distinfo
1.2+2-2x11/fltk/patches/patch-configure_ac
+7-93 files

OpenBSD/src TTVDPpCusr.bin/tmux tmux.1 key-bindings.c

   Fix . and ; bindings, reported by tb.
VersionDeltaFile
1.1127+2-5usr.bin/tmux/tmux.1
1.186+3-3usr.bin/tmux/key-bindings.c
+5-82 files

OpenBSD/src liGAeqRsys/arch/arm64/arm64 machdep.c, sys/arch/arm64/include cpu.h

   Implement the machdep.led_blink sysctl on arm64 and riscv64 and add support
   for it to gpioleds(4).  Enable gpioleds(4) on riscv64.
VersionDeltaFile
1.100+62-1sys/arch/arm64/arm64/machdep.c
1.45+62-1sys/arch/riscv64/riscv64/machdep.c
1.5+37-5sys/dev/fdt/gpioleds.c
1.28+12-2sys/arch/riscv64/include/cpu.h
1.56+12-2sys/arch/arm64/include/cpu.h
1.65+2-1sys/arch/riscv64/conf/GENERIC
+187-126 files

OpenBSD/ports ZXi7xk1x11/ede/desktop/patches patch-configure, x11/ede/lib/patches patch-configure

   fix fltk version checks
VersionDeltaFile
1.4+12-2x11/ede/desktop/patches/patch-configure
1.4+12-2x11/ede/lib/patches/patch-configure
+24-42 files

OpenBSD/src BnSIwcoetc/examples login_ldap.conf

   - fix syntax in example login_ldap.conf file, it had :\ on a line
   presumably when converted from getcap in the ports version

   - switch to a more unix-y sample filter, and add a commented-out example
   for ActiveDirectory

   based on a diff from Chaz Kettleson which was ok with tweaks by claudio@,
   and incorporating feedback from Andrew Daugherity
VersionDeltaFile
1.2+6-3etc/examples/login_ldap.conf
+6-31 files

OpenBSD/src FTEEAO3usr.bin/tmux key-bindings.c menu.c

   Add C-b g , and C-b g . for move and resize menus, also add to pane menu
   (and fix to make them work).
VersionDeltaFile
1.185+30-1usr.bin/tmux/key-bindings.c
1.68+16-3usr.bin/tmux/menu.c
1.51+9-1usr.bin/tmux/cmd-display-menu.c
1.1126+5-2usr.bin/tmux/tmux.1
1.1393+4-1usr.bin/tmux/tmux.h
+64-85 files

OpenBSD/ports ohNXHSJsysutils/exoscale-cli distinfo Makefile

   Update to exoscale-cli-1.95.5.
VersionDeltaFile
1.152+2-2sysutils/exoscale-cli/distinfo
1.155+1-1sysutils/exoscale-cli/Makefile
+3-32 files

OpenBSD/src xkBCNzhusr.bin/tmux layout.c tmux.h

   Add a layout_geometry container struct, from Dane Jensen.
VersionDeltaFile
1.91+138-138usr.bin/tmux/layout.c
1.1392+21-22usr.bin/tmux/tmux.h
1.66+20-20usr.bin/tmux/cmd-resize-pane.c
1.36+20-20usr.bin/tmux/layout-custom.c
1.68+18-16usr.bin/tmux/cmd-join-pane.c
1.38+9-9usr.bin/tmux/layout-set.c
+226-2253 files not shown
+243-2449 files

OpenBSD/src M2d1M79usr.bin/tmux key-bindings.c window.c

   Set initial scrollbar state, from Michael Grant.
VersionDeltaFile
1.184+2-2usr.bin/tmux/key-bindings.c
1.357+3-1usr.bin/tmux/window.c
+5-32 files

OpenBSD/src 5wfF932usr.bin/tmux key-bindings.c tmux.1

   Restore { and } to swap-pane and for floating panes and use a separate
   key table accessed by g (short for "gove and/or gesize") for floating
   panes. So "C-b g Up" moves the pane to top-centre, "C-b g M-Up" moves
   and resizes it. This means we not only do not lose the surprisingly
   popular { and } bindings, but we can have more than four keys for moving
   and resizing panes.
VersionDeltaFile
1.183+22-5usr.bin/tmux/key-bindings.c
1.1125+8-8usr.bin/tmux/tmux.1
+30-132 files

OpenBSD/ports IgzpSgYsecurity/qtpass distinfo Makefile

   update qtpass to 1.7.0

   Changes since 1.4.0:
   https://github.com/IJHack/QtPass/releases/tag/v1.7.0
   https://github.com/IJHack/QtPass/releases/tag/v1.6.0
   https://github.com/IJHack/QtPass/releases/tag/v1.5.1
   https://github.com/IJHack/QtPass/releases/tag/v1.5.0
VersionDeltaFile
1.3+2-2security/qtpass/distinfo
1.5+1-1security/qtpass/Makefile
+3-32 files

OpenBSD/src o5k1buHsys/net pipex.c

   don't assume an ipv4 header is always 20 bytes.

   as reported by SecBuddyF, Tencent KeenLab:

   > OpenBSD's pipex PPTP GRE packet handling uses a fixed GRE/IP header
   > length check before later reading the GRE header at an offset derived
   > from the actual IPv4 header length.
   >
   > When IPv4 options are present, the dynamic IPv4 header length can
   > be larger than 20 bytes. A short GRE packet can therefore pass the
   > fixed 28-byte PIPEX_IPGRE_HDRLEN check while still being too short
   > for the later m_copydata(m0, hlen, sizeof(gre), &gre) read.
   >
   > This can trigger:
   >
   >   panic: m_copydata: null mbuf
   >
   > The issue is remotely triggerable when GRE and pipex are enabled
   > and inbound IPv4 GRE packets with IP options are allowed to reach

    [8 lines not shown]
VersionDeltaFile
1.163+26-8sys/net/pipex.c
+26-81 files

OpenBSD/src A9xxEr9usr.bin/ssh authfile.c

   prefer fstat to stat when it's trivial to do so
VersionDeltaFile
1.152+2-2usr.bin/ssh/authfile.c
+2-21 files

OpenBSD/src uu2Yw7fusr.bin/ssh auth2-gss.c

   unused variables
VersionDeltaFile
1.42+1-3usr.bin/ssh/auth2-gss.c
+1-31 files

OpenBSD/src RxAXLAEusr.bin/ssh servconf.c servconf.h

   fix GSSAPI option names, that I somehow screwed up while refactoring
   servconf.c bz3974 patch from Colin Watson
VersionDeltaFile
1.451+9-9usr.bin/ssh/servconf.c
1.179+9-9usr.bin/ssh/servconf.h
+18-182 files

OpenBSD/src S2wrnPpgnu/usr.bin/perl/cpan/Socket Socket.pm Socket.xs, gnu/usr.bin/perl/cpan/Socket/t sockaddr.t

   Update Socket to 2.041

   CVE-2026-12087:
    Socket versions before 2.041 for Perl have an out-of-bounds heap read

   From security.metacpan.org
VersionDeltaFile
1.8+77-26gnu/usr.bin/perl/cpan/Socket/Socket.pm
1.8+70-33gnu/usr.bin/perl/cpan/Socket/Socket.xs
1.2+71-6gnu/usr.bin/perl/cpan/Socket/t/sockaddr.t
+218-653 files

OpenBSD/ports oRdbsp4www/hugo distinfo modules.inc

   www/hugo: update to 0.164.0
VersionDeltaFile
1.99+78-98www/hugo/distinfo
1.61+23-28www/hugo/modules.inc
1.107+1-1www/hugo/Makefile
+102-1273 files

OpenBSD/ports xjWg5cqgraphics/p5-Imager Makefile distinfo

   update p5-Imager to 1.032
   CVE-2026-13708 CVE-2026-13705 CVE-2026-8454
VersionDeltaFile
1.56+23-21graphics/p5-Imager/Makefile
1.20+2-2graphics/p5-Imager/distinfo
+25-232 files

OpenBSD/ports 7yiX0Wwsysutils/exfetch Makefile distinfo

   sysutils/exfetch: update to 1.7

   from izzy Meyer (maintainer)
VersionDeltaFile
1.9+8-5sysutils/exfetch/Makefile
1.8+4-2sysutils/exfetch/distinfo
+12-72 files

OpenBSD/src 8ndBGEPusr.bin/tmux layout.c options.c

   Could of minor tidy ups.
VersionDeltaFile
1.90+2-6usr.bin/tmux/layout.c
1.89+2-2usr.bin/tmux/options.c
+4-82 files

OpenBSD/ports Zh8XwyNsecurity/p5-Crypt-DSA distinfo Makefile

   update p5-Crypt-DSA to 1.24
VersionDeltaFile
1.8+2-2security/p5-Crypt-DSA/distinfo
1.21+1-2security/p5-Crypt-DSA/Makefile
+3-42 files

OpenBSD/ports zDgXrcrshells/fish/main/patches patch-fish_Cargo_toml patch-fluent-ftl-tools_Cargo_toml

   shells/fish: Forgot to cvs-add the patches
VersionDeltaFile
1.1+32-0shells/fish/main/patches/patch-fish_Cargo_toml
1.1+14-0shells/fish/main/patches/patch-fluent-ftl-tools_Cargo_toml
1.8+0-0shells/fish/main/patches/patch-Cargo_toml
+46-03 files

OpenBSD/ports xJVVN8Tsecurity/p5-IO-Socket-SSL distinfo Makefile, security/p5-IO-Socket-SSL/patches patch-t_memleak_bad_handshake_t

   update p5-IO-Socket-SSL to 2.099
VersionDeltaFile
1.133+2-2security/p5-IO-Socket-SSL/distinfo
1.150+1-1security/p5-IO-Socket-SSL/Makefile
1.2+0-0security/p5-IO-Socket-SSL/patches/patch-t_memleak_bad_handshake_t
+3-33 files