OpenBSD/xenocara o0YPvu4app/xterm util.c fontutils.c

by matthieu on ⎇
   Update to xterm 410. Tested by kirill@ and naddy@
VersionDeltaFile
1.51+142-85app/xterm/util.c
1.47+65-59app/xterm/fontutils.c
1.41+99-19app/xterm/screen.c
1.62+82-31app/xterm/charproc.c
1.60+87-3app/xterm/xterm.log.html
1.19+67-4app/xterm/linedata.c
+542-20150 files not shown
+1,161-50256 files

OpenBSD/ports GzgPtwCnet/blaeu distinfo Makefile

by denis on ⎇
   update to v2.2.1
VersionDeltaFile
1.10+2-2net/blaeu/distinfo
1.23+1-1net/blaeu/Makefile
+3-32 files

OpenBSD/ports yUw6j7jx11/gedit/gedit-plugins distinfo Makefile, x11/gedit/gedit-plugins/pkg PLIST

by ajacoutot on ⎇
   Update to gedit-plugins-50.0.
VersionDeltaFile
1.4+5-0x11/gedit/gedit-plugins/pkg/PLIST
1.9+2-2x11/gedit/gedit-plugins/distinfo
1.14+1-2x11/gedit/gedit-plugins/Makefile
+8-43 files

OpenBSD/ports dyQlDUUx11/gedit/gedit distinfo Makefile, x11/gedit/gedit/pkg PLIST

by ajacoutot on ⎇
   Update to gedit-50.0.
VersionDeltaFile
1.8+57-19x11/gedit/gedit/pkg/PLIST
1.8+2-2x11/gedit/gedit/distinfo
1.11+1-1x11/gedit/gedit/Makefile
+60-223 files

OpenBSD/ports J3XEFLDx11/gnome/quadrapassel Makefile distinfo, x11/gnome/quadrapassel/patches patch-src_quadrapassel_vala patch-meson_build

by ajacoutot on ⎇
   Update to quadrapassel-50.1.
VersionDeltaFile
1.8+91-25x11/gnome/quadrapassel/patches/patch-src_quadrapassel_vala
1.2+1-8x11/gnome/quadrapassel/pkg/DESCR
1.39+5-4x11/gnome/quadrapassel/Makefile
1.21+2-2x11/gnome/quadrapassel/distinfo
1.6+2-2x11/gnome/quadrapassel/patches/patch-meson_build
1.6+1-1x11/gnome/quadrapassel/patches/patch-src_meson_build
+102-421 files not shown
+103-427 files

OpenBSD/ports giY3KZlx11/gnome/orca Makefile distinfo, x11/gnome/orca/patches patch-src_orca_debugging_tools_manager_py

by ajacoutot on ⎇
   Update to orca-50.1.2.
VersionDeltaFile
1.59+110-111x11/gnome/orca/pkg/PLIST
1.166+5-3x11/gnome/orca/Makefile
1.102+2-2x11/gnome/orca/distinfo
1.3+1-1x11/gnome/orca/patches/patch-src_orca_debugging_tools_manager_py
+118-1174 files

OpenBSD/ports xctwpZCx11/gnome/ghex distinfo Makefile, x11/gnome/ghex/pkg PLIST

by ajacoutot on ⎇
   Update to ghex-50.1.
VersionDeltaFile
1.31+31-0x11/gnome/ghex/pkg/PLIST
1.43+2-2x11/gnome/ghex/distinfo
1.109+2-2x11/gnome/ghex/Makefile
+35-43 files

OpenBSD/ports rzRhsEssysutils/terraform distinfo Makefile

by ajacoutot on ⎇
   Update to terraform-1.15.3.
VersionDeltaFile
1.139+2-2sysutils/terraform/distinfo
1.154+1-1sysutils/terraform/Makefile
+3-32 files

OpenBSD/ports E4pkBMPsysutils/coreutils distinfo Makefile, sysutils/coreutils/patches patch-Makefile_in

by sthen on ⎇
   update to coreutils-9.11
VersionDeltaFile
1.19+2-2sysutils/coreutils/distinfo
1.36+1-1sysutils/coreutils/Makefile
1.19+1-1sysutils/coreutils/patches/patch-Makefile_in
+4-43 files

OpenBSD/ports MGKgSWHsysutils/gemini-cli distinfo Makefile, sysutils/gemini-cli/pkg PLIST

by ajacoutot on ⎇
   Update to gemini-cli-0.42.0.
VersionDeltaFile
1.22+55-60sysutils/gemini-cli/pkg/PLIST
1.23+2-2sysutils/gemini-cli/distinfo
1.25+1-1sysutils/gemini-cli/Makefile
+58-633 files

OpenBSD/ports xqv5K3wtextproc/libxml++50 distinfo Makefile

by ajacoutot on ⎇
   Update to libxml++50-5.6.1.
VersionDeltaFile
1.10+2-2textproc/libxml++50/distinfo
1.13+1-1textproc/libxml++50/Makefile
+3-32 files

OpenBSD/ports VdTf9oxnet/netatalk3 distinfo Makefile

by ajacoutot on ⎇
   Update to netatalk-4.4.3.
VersionDeltaFile
1.44+2-2net/netatalk3/distinfo
1.74+1-1net/netatalk3/Makefile
+3-32 files

OpenBSD/ports NF0l6DYdevel/py-wcwidth distinfo Makefile, devel/py-wcwidth/pkg PLIST

by sthen on ⎇
   update to py3-wcwidth-0.7.0
VersionDeltaFile
1.13+24-0devel/py-wcwidth/pkg/PLIST
1.19+2-2devel/py-wcwidth/distinfo
1.32+1-1devel/py-wcwidth/Makefile
+27-33 files

OpenBSD/ports ztl1Xbvdevel/py-tempora Makefile distinfo

by sthen on ⎇
   update to py3-tempora-5.9.0
VersionDeltaFile
1.25+7-3devel/py-tempora/Makefile
1.9+2-2devel/py-tempora/distinfo
+9-52 files

OpenBSD/ports RvhPkUcdevel/py-test-rerunfailures distinfo Makefile

by sthen on ⎇
   update to py3-test-rerunfailures-16.2
VersionDeltaFile
1.2+2-2devel/py-test-rerunfailures/distinfo
1.2+1-1devel/py-test-rerunfailures/Makefile
+3-32 files

OpenBSD/ports uk9yPuXdevel/py-uharfbuzz distinfo Makefile

by sthen on ⎇
   update to py3-uharfbuzz-0.54.1
VersionDeltaFile
1.3+2-2devel/py-uharfbuzz/distinfo
1.3+1-1devel/py-uharfbuzz/Makefile
+3-32 files

OpenBSD/ports TpWWpAndevel/py-virtualenv distinfo Makefile, devel/py-virtualenv/pkg PLIST

by sthen on ⎇
   update to py3-virtualenv-21.3.3
VersionDeltaFile
1.63+7-0devel/py-virtualenv/pkg/PLIST
1.62+2-2devel/py-virtualenv/distinfo
1.96+1-1devel/py-virtualenv/Makefile
+10-33 files

OpenBSD/ports P2q5TCNdevel/py-wrapt distinfo Makefile

by sthen on ⎇
   update to py3-wrapt-2.1.2
VersionDeltaFile
1.12+2-2devel/py-wrapt/distinfo
1.29+2-1devel/py-wrapt/Makefile
+4-32 files

OpenBSD/ports cdiS4CGwww/py-mako distinfo Makefile

by sthen on ⎇
   update to py3-mako-1.3.12
VersionDeltaFile
1.21+2-2www/py-mako/distinfo
1.47+1-2www/py-mako/Makefile
+3-42 files

OpenBSD/ports 4v9SanVwww/py-requests distinfo Makefile

by sthen on ⎇
   update to py3-requests-2.34.1
VersionDeltaFile
1.44+2-2www/py-requests/distinfo
1.74+1-1www/py-requests/Makefile
+3-32 files

OpenBSD/ports UgDuOOHwww/nginx distinfo Makefile

by robert on ⎇
   security update to 1.30.1;

   - HTTP/2 request injection vulnerability in the ngx_http_proxy_module
     (CVE-2026-42926)
   - buffer overflow vulnerability in the ngx_http_rewrite_module
     (CVE-2026-42945)
   - buffer overread vulnerability in the ngx_http_scgi_module and ngx_http_uwsgi_module
     (CVE-2026-42946)
   - buffer overread vulnerability in the ngx_http_charset_module
     (CVE-2026-42934)
   - address spoofing vulnerability in HTTP/3
     (CVE-2026-40460)
   - use-after-free vulnerability in OCSP requests to resolver
     (CVE-2026-40701)
VersionDeltaFile
1.98+2-2www/nginx/distinfo
1.203+1-1www/nginx/Makefile
+3-32 files

OpenBSD/ports C30Jsussysutils/ssh-copy-id Makefile distinfo

by dgl on ⎇
   Update ssh-copy-id to the version from portable OpenSSH 10.3p1

   ok sthen@ & maintainer via Mastodon (email was bouncing)
VersionDeltaFile
1.6+2-2sysutils/ssh-copy-id/Makefile
1.3+2-2sysutils/ssh-copy-id/distinfo
+4-42 files

OpenBSD/src nW8TkQQsbin/dhcpleased engine.c

by dgl on ⎇
   dhcpleased: Make sure to use VIS_NL with stravis()

   Various DHCP fields could include newlines, these were written to the lease file as-is. Nothing in base reads them, but it could confuse other tools.

   ok florian@
VersionDeltaFile
1.64+4-4sbin/dhcpleased/engine.c
+4-41 files

OpenBSD/src yC3jVgBsbin/dhcpleased dhcpleased.c dhcpleased.h

by dgl on ⎇
   dhcpleased: Change rdns_count to size_t

   Potentially on a 32-bit platform a crafted imsg could make the engine read 4 bytes of stack.

   ok florian@
VersionDeltaFile
1.43+4-4sbin/dhcpleased/dhcpleased.c
1.20+2-2sbin/dhcpleased/dhcpleased.h
+6-62 files

OpenBSD/src 9Qsmuvssbin/dhcpleased engine.c

by dgl on ⎇
   dhcpleased: Validate size of imsg_dhcp.len

   If the frontend manages to write something bad to imsg (bypassing the frontend's validation), where imsg_dhcp.len is > sizeof(imsg_dhcp.packet) it is possible for an OOB read to be forced in the engine. Make this fatal.

   ok florian@
VersionDeltaFile
1.63+4-2sbin/dhcpleased/engine.c
+4-21 files

OpenBSD/src SPnmCYZsbin/dhcpleased engine.c

by dgl on ⎇
   dhcpleased: Ensure imsg is zeroed in send_routes_withdraw.

   ok florian@
VersionDeltaFile
1.62+2-1sbin/dhcpleased/engine.c
+2-11 files

OpenBSD/src LvjNDn4sys/arch/amd64/amd64 cpu.c, sys/arch/amd64/include specialreg.h

by jsg on ⎇
   mitigate AMD Zen-2 operation cache corruption

   On Zen 2, the operation cache can be used to change instructions
   of a different privilege level.
   https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7052.html

   The mitigation is setting a chicken bit in an MSR.  This is not documented
   publicly, even in the security bulletin.  The value comes from a patch
   submitted to Linux by AMD employees.

   ok deraadt@ brynet@
VersionDeltaFile
1.680+7-1sys/arch/i386/i386/machdep.c
1.206+7-1sys/arch/amd64/amd64/cpu.c
1.123+4-1sys/arch/amd64/include/specialreg.h
1.87+4-1sys/arch/i386/include/specialreg.h
+22-44 files

OpenBSD/ports qLpwEUmwww/trac Makefile distinfo

by sthen on ⎇
   update trac to a snapshot from the 1.6-stable branch, fixes with py314
VersionDeltaFile
1.95+6-5www/trac/Makefile
1.45+2-2www/trac/distinfo
+8-72 files

OpenBSD/ports S3novh4graphics/inkscape/patches patch-src_extension_internal_pdfinput_poppler-cairo-font-engine_cpp

by kili on ⎇
   Prepare for poppler-26.05.
VersionDeltaFile
1.7+41-58graphics/inkscape/patches/patch-src_extension_internal_pdfinput_poppler-cairo-font-engine_cpp
+41-581 files

OpenBSD/ports ERUqooRprint/scribus/patches patch-scribus_plugins_import_pdf_slaoutput_cpp patch-scribus_plugins_import_pdf_importpdfconfig_h

by kili on ⎇
   Prepare for poppler-26.05.
VersionDeltaFile
1.27+20-337print/scribus/patches/patch-scribus_plugins_import_pdf_slaoutput_cpp
1.7+8-8print/scribus/patches/patch-scribus_plugins_import_pdf_importpdfconfig_h
1.3+1-1print/scribus/patches/patch-CMakeLists_Dependencies_cmake
1.5+1-1print/scribus/patches/patch-scribus_CMakeLists_txt
+30-3474 files