OpenBSD/ports LPQNJxXsysutils/ttyplot Makefile, sysutils/ttyplot/patches patch-ttyplot_c

by matthieu on ⎇
   Fix ttypplot by moving pledge() call after open(/dev/tty).
   Add 'use pledge()' marker to Makefile while there.
   ok tb@, fcambus@, naddy@
VersionDeltaFile
1.5+23-0sysutils/ttyplot/patches/patch-ttyplot_c
1.19+2-0sysutils/ttyplot/Makefile
+25-02 files

OpenBSD/ports 18LVwphlang/gawk Makefile

by naddy on ⎇
   lang/gawk: do not pick up gettext-tools in configure

   configure picks up xgettext and it is then used during the build, but
   to no effect.

   Reported by jca@
VersionDeltaFile
1.47+4-0lang/gawk/Makefile
+4-01 files

OpenBSD/ports qCx39Nrnet/ejabberd Makefile

by kirill on ⎇
   net/ejabberd: prevent linking agains wayland/libei instead erlang's libei.a
VersionDeltaFile
1.67+6-3net/ejabberd/Makefile
+6-31 files

OpenBSD/ports gMgkciomath/libqalculate Makefile

by kmos on ⎇
   Now that ports-gcc is gcc 15, this is no longer BROKEN on sparc64

   Remove BROKEN-sparc64

   ok naddy
VersionDeltaFile
1.45+0-2math/libqalculate/Makefile
+0-21 files

OpenBSD/ports gZgScSEaudio/ncmpc Makefile

by kmos on ⎇
   span.h is provided by GCC 15.

   Drop BROKEN-sparc64

   ok naddy
VersionDeltaFile
1.67+0-2audio/ncmpc/Makefile
+0-21 files

OpenBSD/ports Pm9ZfyVdevel/clang-tools-extra Makefile, devel/py-llvmlite Makefile

by robert on ⎇
   bump REVISION after the fixes in the llvm ports
   ok sthen@
VersionDeltaFile
1.31+2-0lang/zig/Makefile
1.49+1-1devel/clang-tools-extra/Makefile
1.225+2-0www/ungoogled-chromium/Makefile
1.23+2-0devel/py-llvmlite/Makefile
1.901+1-0www/chromium/Makefile
1.278+1-0www/iridium/Makefile
+9-16 files

OpenBSD/ports jAIRHwPdevel/orc/patches patch-orc_riscv_orcriscvtarget_c

by jca on ⎇
   Fix orc riscv64-specific code paths

   orc previously failed to build because of inconsistent #ifdefs that
   exposed Linux-only calls.  While here hook up call to
   (__builtin)__clear_cache and correct default assumptions (the 'V'
   extension can't be assumed, on any OS).

   Prompted by a report from matthieu@, maintainer timeout, ok sthen@
VersionDeltaFile
1.1+67-0devel/orc/patches/patch-orc_riscv_orcriscvtarget_c
+67-01 files

OpenBSD/ports bmbUXljcad/openscad Makefile

by phessler on ⎇
   add missing build dep.  it wouldn't build without the build dep being
   available, so no need for a REVISION bump.

   noticed by myself and naddy on arm64 and amd64 bulk package builds.

   OK sthen@
VersionDeltaFile
1.61+1-0cad/openscad/Makefile
+1-01 files

OpenBSD/ports SOUnO87net/openvpn distinfo Makefile, net/openvpn/patches patch-configure

by jca on ⎇
   SECURITY update to openvpn-2.6.20

   fix race condition in TLS handshake that could lead to leaking of packet
   data from a previous handshake under specific circumstances
   (CVE-2026-40215)

   fix server ASSERT() on receiving a suitably malformed packet with
   a valid tls-crypt-v2 key (CVE-2026-35058)

   Other changes: https://github.com/OpenVPN/openvpn/blob/v2.6.20/Changes.rst
VersionDeltaFile
1.68.2.2+2-2net/openvpn/distinfo
1.39.2.2+1-1net/openvpn/patches/patch-configure
1.135.2.3+1-1net/openvpn/Makefile
+4-43 files

OpenBSD/ports l8rHdxFmeta/tor-browser Makefile, www/tor-browser Makefile.inc

by caspar on ⎇
   Tor Browser: update to 15.0.10
VersionDeltaFile
1.107.2.9+6-6www/tor-browser/browser/distinfo
1.113.2.9+2-2meta/tor-browser/Makefile
1.110.2.9+1-1www/tor-browser/Makefile.inc
1.178.2.11+1-1www/tor-browser/browser/Makefile
+10-104 files

OpenBSD/ports A4yRmltmeta/tor-browser Makefile, www/tor-browser Makefile.inc

by caspar on ⎇
   Tor Browser: update to 15.0.10

   OK naddy@
VersionDeltaFile
1.118+6-6www/tor-browser/browser/distinfo
1.124+2-2meta/tor-browser/Makefile
1.121+1-1www/tor-browser/Makefile.inc
1.197+1-1www/tor-browser/browser/Makefile
+10-104 files

OpenBSD/ports ajxZT44mail/mozilla-thunderbird distinfo Makefile

by landry on ⎇
   mail/mozilla-thunderbird: MFC update to 140.10.0

   see https://www.thunderbird.net/en-US/thunderbird/140.10.0esr/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-34/
VersionDeltaFile
1.301.2.11+2-2mail/mozilla-thunderbird/distinfo
1.513.2.12+1-1mail/mozilla-thunderbird/Makefile
+3-32 files

OpenBSD/ports ABH35LHdevel/llvm/20 Makefile, devel/llvm/20/patches patch-lld_ELF_LinkerScript_cpp

by robert on ⎇
   fix section merging for .srodata and .openbsd.randomdata

   there was a bad merge of changes and a comma was lost and with that
   section merging for .srodata and .openbsd.randomdata

   ok naddy@, sthen@
VersionDeltaFile
1.19+4-4devel/llvm/21/Makefile
1.15+4-4devel/llvm/20/Makefile
1.2+2-2devel/llvm/20/patches/patch-lld_ELF_LinkerScript_cpp
1.2+2-2devel/llvm/21/patches/patch-lld_ELF_LinkerScript_cpp
1.2+2-2devel/llvm/22/patches/patch-lld_ELF_LinkerScript_cpp
+14-145 files

OpenBSD/ports tu0rHylmail/mozilla-thunderbird distinfo Makefile, mail/thunderbird-i18n distinfo Makefile.inc

by landry on ⎇
   mail/mozilla-thunderbird: update to 140.10.0.

   see https://www.thunderbird.net/en-US/thunderbird/140.10.0esr/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-34/

   ok naddy@
VersionDeltaFile
1.296+132-132mail/thunderbird-i18n/distinfo
1.312+2-2mail/mozilla-thunderbird/distinfo
1.525+1-1mail/mozilla-thunderbird/Makefile
1.270+1-1mail/thunderbird-i18n/Makefile.inc
+136-1364 files

OpenBSD/ports BlRZ4yinet/librenms Makefile distinfo, net/librenms/patches patch-app_ConfigRepository_php patch-LibreNMS___init___py

by sthen on ⎇
   MFC update to librenms-26.4.0
VersionDeltaFile
1.212.2.2+23-17net/librenms/Makefile
1.144.2.2+4-4net/librenms/distinfo
1.2.2.2+3-3net/librenms/patches/patch-app_ConfigRepository_php
1.3.2.1+2-2net/librenms/patches/patch-LibreNMS___init___py
1.3.2.2+1-1net/librenms/patches/patch-resources_definitions_config_definitions_json
1.1.4.1+0-0net/librenms/pkg/README-main
+33-277 files not shown
+33-2713 files

OpenBSD/ports KYj9wgbnet/librenms distinfo Makefile, net/librenms/pkg PLIST-main PLIST-doc

by sthen on ⎇
   update to librenms-26.4.0, ok naddy

   includes fix for cross-site scripting in alert template list, and adds
   missing escaping for a few cli commands etc

   https://github.com/librenms/librenms/releases/tag/26.4.0
VersionDeltaFile
1.2+563-278net/librenms/pkg/PLIST-main
1.152+4-4net/librenms/distinfo
1.2+7-0net/librenms/pkg/PLIST-doc
1.223+3-1net/librenms/Makefile
+577-2834 files

OpenBSD/ports Mo3fJJFaudio/csound Makefile

by rapha on ⎇
   disable pipewire

   ok naddy@
VersionDeltaFile
1.6+1-0audio/csound/Makefile
+1-01 files

OpenBSD/ports iNy1Khkwww/mozilla-firefox Makefile distinfo, www/mozilla-firefox/patches patch-security_nss_lib_nss_nss_h patch-security_manager_ssl_nsNSSCallbacks_cpp

by landry on ⎇
   www/mozilla-firefox: MFC update to 150.0.

   see https://www.firefox.com/en-US/firefox/150.0/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-30/
VersionDeltaFile
1.1.4.6+6-4www/mozilla-firefox/patches/patch-security_nss_lib_nss_nss_h
1.651.2.20+4-1www/mozilla-firefox/Makefile
1.378.2.17+2-2www/mozilla-firefox/distinfo
1.1.6.2+1-1www/mozilla-firefox/patches/patch-security_manager_ssl_nsNSSCallbacks_cpp
+13-84 files

OpenBSD/ports u6OTGzxwww/firefox-esr distinfo Makefile

by landry on ⎇
   www/firefox-esr: MFC update to 140.10.0.

   see https://www.firefox.com/en-US/firefox/140.10.0/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-32/
VersionDeltaFile
1.171.2.9+2-2www/firefox-esr/distinfo
1.258.2.9+1-1www/firefox-esr/Makefile
+3-32 files

OpenBSD/ports 9PRhrOXwww/firefox-esr distinfo Makefile, www/firefox-esr-i18n distinfo Makefile.inc

by landry on ⎇
   www/firefox-esr: update to 140.10.0.

   see https://www.firefox.com/en-US/firefox/140.10.0/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-32/

   ok naddy@
VersionDeltaFile
1.177+162-162www/firefox-esr-i18n/distinfo
1.180+4-4www/firefox-esr/distinfo
1.270+2-3www/firefox-esr/Makefile
1.189+1-1www/firefox-esr-i18n/Makefile.inc
+169-1704 files

OpenBSD/ports DF4cLYswww/firefox-i18n distinfo Makefile.inc, www/mozilla-firefox Makefile distinfo

by landry on ⎇
   www/mozilla-firefox: update to 150.0.

   see https://www.firefox.com/en-US/firefox/150.0/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-30/

   - disable PGO again, fixes wasm crashes seen with element-web (cf #2030583)
   - will need to move to llvm 21 or patch llvm 19 to reenable PGO
   - add workaround to avoid fetching some pip wheels during configure
     (#2026497), another workaround would be to move to ./mach configure ?

   ok naddy@
VersionDeltaFile
1.384+164-164www/firefox-i18n/distinfo
1.2+4-4www/mozilla-firefox/patches/patch-widget_NativeKeyToDOMCodeName_inc
1.680+4-4www/mozilla-firefox/Makefile
1.397+2-4www/mozilla-firefox/distinfo
1.339+1-1www/firefox-i18n/Makefile.inc
+175-1775 files

OpenBSD/ports B9odY8Vdevel/opendht Makefile

by sthen on ⎇
   avoid picking up doxygen during build, to avoid build failure with dpb junking
   requested by naddy
VersionDeltaFile
1.2+2-5devel/opendht/Makefile
+2-51 files

OpenBSD/ports aviuzeNsysutils/rclone distinfo Makefile

by bket on ⎇
   Update to rclone-1.73.5

   CVE-2026-41176
   rc: add AuthRequired to options/set to prevent auth bypass
   rc: snapshot NoAuth at startup to prevent runtime auth bypass

   CVE-2026-41179
   operations: add AuthRequired to operations/fsinfo to prevent backend
   creation

   Changelog: https://rclone.org/changelog/#v1-73-5-2026-04-19

   OK sthen@
VersionDeltaFile
1.64+4-4sysutils/rclone/distinfo
1.74+1-1sysutils/rclone/Makefile
+5-52 files

OpenBSD/ports P8tI8U4graphics/lcms2 Makefile distinfo

by volker on ⎇
   graphics/lcms2: Update to 2.19rc2

   Fixes several issues, for reference see
   https://marc.info/?l=oss-security&m=177646929211758&w=2

   pointed out by and ok tb@, ok naddy@
VersionDeltaFile
1.29+6-3graphics/lcms2/Makefile
1.15+2-2graphics/lcms2/distinfo
+8-52 files

OpenBSD/ports XvX9o9Hnet/gelatod distinfo Makefile

by kn on ⎇
   update to gelatod-1.7;  same fix as 029_v6daemons;  OK naddy
VersionDeltaFile
1.6+2-2net/gelatod/distinfo
1.12+1-1net/gelatod/Makefile
+3-32 files

OpenBSD/ports TZauOB1geo/mapserver distinfo Makefile

by landry on ⎇
   geo/mapserver: security update to 8.6.2.

   see https://mapserver.org/development/changelog/changelog-8-6.html#changelog-8-6
   fixes https://github.com/MapServer/MapServer/security/advisories/GHSA-4g9f-ph64-hg2x

   ok naddy@
VersionDeltaFile
1.44+2-2geo/mapserver/distinfo
1.111+1-1geo/mapserver/Makefile
+3-32 files

OpenBSD/ports M5qz8yKx11/gtk+4 distinfo Makefile

by ajacoutot on ⎇
   Update to gtk+4-4.22.3.

   ok naddy@
VersionDeltaFile
1.69+2-2x11/gtk+4/distinfo
1.124+1-1x11/gtk+4/Makefile
+3-32 files

OpenBSD/ports k5A4rZksysutils/btop Makefile, sysutils/btop/patches patch-src_openbsd_btop_collect.cpp

by bcook on ⎇
   Patch btop to report active CPU usage correctly

   from upstream https://github.com/aristocratos/btop/pull/1587

   This also allows building on spark64 with gcc 15.
VersionDeltaFile
1.1+86-0sysutils/btop/patches/patch-src_openbsd_btop_collect.cpp
1.9+3-1sysutils/btop/Makefile
+89-12 files

OpenBSD/ports XyvLVE0shells/elvish distinfo modules.inc, shells/elvish/pkg PLIST

by volker on ⎇
   shells/elvish: Update to 0.21.0

   The current version in ports is broken/non-functional.

   approved by naddy@
VersionDeltaFile
1.5+64-22shells/elvish/distinfo
1.2+20-8shells/elvish/modules.inc
1.11+2-6shells/elvish/Makefile
1.4+1-3shells/elvish/pkg/PLIST
+87-394 files

OpenBSD/ports xABnlUagraphics/png distinfo Makefile

by matthieu on ⎇
   Update to png 1.6.58. ok deraadt@, naddy@.
   Fixes a regression introduced in 1.6.56
VersionDeltaFile
1.72.2.7+2-2graphics/png/distinfo
1.143.2.7+1-1graphics/png/Makefile
+3-32 files