OpenBSD/ports Pm9ZfyVdevel/clang-tools-extra Makefile, devel/py-llvmlite Makefile

by robert on ⎇
   bump REVISION after the fixes in the llvm ports
   ok sthen@
VersionDeltaFile
1.23+2-0devel/py-llvmlite/Makefile
1.49+1-1devel/clang-tools-extra/Makefile
1.31+2-0lang/zig/Makefile
1.225+2-0www/ungoogled-chromium/Makefile
1.278+1-0www/iridium/Makefile
1.901+1-0www/chromium/Makefile
+9-16 files

OpenBSD/ports jAIRHwPdevel/orc/patches patch-orc_riscv_orcriscvtarget_c

by jca on ⎇
   Fix orc riscv64-specific code paths

   orc previously failed to build because of inconsistent #ifdefs that
   exposed Linux-only calls.  While here hook up call to
   (__builtin)__clear_cache and correct default assumptions (the 'V'
   extension can't be assumed, on any OS).

   Prompted by a report from matthieu@, maintainer timeout, ok sthen@
VersionDeltaFile
1.1+67-0devel/orc/patches/patch-orc_riscv_orcriscvtarget_c
+67-01 files

OpenBSD/ports bmbUXljcad/openscad Makefile

by phessler on ⎇
   add missing build dep.  it wouldn't build without the build dep being
   available, so no need for a REVISION bump.

   noticed by myself and naddy on arm64 and amd64 bulk package builds.

   OK sthen@
VersionDeltaFile
1.61+1-0cad/openscad/Makefile
+1-01 files

OpenBSD/ports SOUnO87net/openvpn distinfo Makefile, net/openvpn/patches patch-configure

by jca on ⎇
   SECURITY update to openvpn-2.6.20

   fix race condition in TLS handshake that could lead to leaking of packet
   data from a previous handshake under specific circumstances
   (CVE-2026-40215)

   fix server ASSERT() on receiving a suitably malformed packet with
   a valid tls-crypt-v2 key (CVE-2026-35058)

   Other changes: https://github.com/OpenVPN/openvpn/blob/v2.6.20/Changes.rst
VersionDeltaFile
1.68.2.2+2-2net/openvpn/distinfo
1.135.2.3+1-1net/openvpn/Makefile
1.39.2.2+1-1net/openvpn/patches/patch-configure
+4-43 files

OpenBSD/ports l8rHdxFmeta/tor-browser Makefile, www/tor-browser Makefile.inc

by caspar on ⎇
   Tor Browser: update to 15.0.10
VersionDeltaFile
1.107.2.9+6-6www/tor-browser/browser/distinfo
1.113.2.9+2-2meta/tor-browser/Makefile
1.178.2.11+1-1www/tor-browser/browser/Makefile
1.110.2.9+1-1www/tor-browser/Makefile.inc
+10-104 files

OpenBSD/ports A4yRmltmeta/tor-browser Makefile, www/tor-browser Makefile.inc

by caspar on ⎇
   Tor Browser: update to 15.0.10

   OK naddy@
VersionDeltaFile
1.118+6-6www/tor-browser/browser/distinfo
1.124+2-2meta/tor-browser/Makefile
1.197+1-1www/tor-browser/browser/Makefile
1.121+1-1www/tor-browser/Makefile.inc
+10-104 files

OpenBSD/ports ajxZT44mail/mozilla-thunderbird distinfo Makefile

by landry on ⎇
   mail/mozilla-thunderbird: MFC update to 140.10.0

   see https://www.thunderbird.net/en-US/thunderbird/140.10.0esr/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-34/
VersionDeltaFile
1.301.2.11+2-2mail/mozilla-thunderbird/distinfo
1.513.2.12+1-1mail/mozilla-thunderbird/Makefile
+3-32 files

OpenBSD/ports ABH35LHdevel/llvm/20 Makefile, devel/llvm/20/patches patch-lld_ELF_LinkerScript_cpp

by robert on ⎇
   fix section merging for .srodata and .openbsd.randomdata

   there was a bad merge of changes and a comma was lost and with that
   section merging for .srodata and .openbsd.randomdata

   ok naddy@, sthen@
VersionDeltaFile
1.15+4-4devel/llvm/20/Makefile
1.19+4-4devel/llvm/21/Makefile
1.2+2-2devel/llvm/22/patches/patch-lld_ELF_LinkerScript_cpp
1.2+2-2devel/llvm/21/patches/patch-lld_ELF_LinkerScript_cpp
1.2+2-2devel/llvm/20/patches/patch-lld_ELF_LinkerScript_cpp
+14-145 files

OpenBSD/ports tu0rHylmail/mozilla-thunderbird distinfo Makefile, mail/thunderbird-i18n distinfo Makefile.inc

by landry on ⎇
   mail/mozilla-thunderbird: update to 140.10.0.

   see https://www.thunderbird.net/en-US/thunderbird/140.10.0esr/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-34/

   ok naddy@
VersionDeltaFile
1.296+132-132mail/thunderbird-i18n/distinfo
1.312+2-2mail/mozilla-thunderbird/distinfo
1.525+1-1mail/mozilla-thunderbird/Makefile
1.270+1-1mail/thunderbird-i18n/Makefile.inc
+136-1364 files

OpenBSD/ports BlRZ4yinet/librenms Makefile distinfo, net/librenms/patches patch-app_ConfigRepository_php patch-LibreNMS___init___py

by sthen on ⎇
   MFC update to librenms-26.4.0
VersionDeltaFile
1.212.2.2+23-17net/librenms/Makefile
1.144.2.2+4-4net/librenms/distinfo
1.2.2.2+3-3net/librenms/patches/patch-app_ConfigRepository_php
1.3.2.1+2-2net/librenms/patches/patch-LibreNMS___init___py
1.3.2.2+1-1net/librenms/patches/patch-resources_definitions_config_definitions_json
1.2.2.1+0-0net/librenms/pkg/PLIST-main
+33-277 files not shown
+33-2713 files

OpenBSD/ports KYj9wgbnet/librenms distinfo Makefile, net/librenms/pkg PLIST-main PLIST-doc

by sthen on ⎇
   update to librenms-26.4.0, ok naddy

   includes fix for cross-site scripting in alert template list, and adds
   missing escaping for a few cli commands etc

   https://github.com/librenms/librenms/releases/tag/26.4.0
VersionDeltaFile
1.2+563-278net/librenms/pkg/PLIST-main
1.152+4-4net/librenms/distinfo
1.2+7-0net/librenms/pkg/PLIST-doc
1.223+3-1net/librenms/Makefile
+577-2834 files

OpenBSD/ports Mo3fJJFaudio/csound Makefile

by rapha on ⎇
   disable pipewire

   ok naddy@
VersionDeltaFile
1.6+1-0audio/csound/Makefile
+1-01 files

OpenBSD/ports iNy1Khkwww/mozilla-firefox Makefile distinfo, www/mozilla-firefox/patches patch-security_nss_lib_nss_nss_h patch-security_manager_ssl_nsNSSCallbacks_cpp

by landry on ⎇
   www/mozilla-firefox: MFC update to 150.0.

   see https://www.firefox.com/en-US/firefox/150.0/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-30/
VersionDeltaFile
1.1.4.6+6-4www/mozilla-firefox/patches/patch-security_nss_lib_nss_nss_h
1.651.2.20+4-1www/mozilla-firefox/Makefile
1.378.2.17+2-2www/mozilla-firefox/distinfo
1.1.6.2+1-1www/mozilla-firefox/patches/patch-security_manager_ssl_nsNSSCallbacks_cpp
+13-84 files

OpenBSD/ports u6OTGzxwww/firefox-esr distinfo Makefile

by landry on ⎇
   www/firefox-esr: MFC update to 140.10.0.

   see https://www.firefox.com/en-US/firefox/140.10.0/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-32/
VersionDeltaFile
1.171.2.9+2-2www/firefox-esr/distinfo
1.258.2.9+1-1www/firefox-esr/Makefile
+3-32 files

OpenBSD/ports 9PRhrOXwww/firefox-esr distinfo Makefile, www/firefox-esr-i18n distinfo Makefile.inc

by landry on ⎇
   www/firefox-esr: update to 140.10.0.

   see https://www.firefox.com/en-US/firefox/140.10.0/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-32/

   ok naddy@
VersionDeltaFile
1.177+162-162www/firefox-esr-i18n/distinfo
1.180+4-4www/firefox-esr/distinfo
1.270+2-3www/firefox-esr/Makefile
1.189+1-1www/firefox-esr-i18n/Makefile.inc
+169-1704 files

OpenBSD/ports DF4cLYswww/firefox-i18n distinfo Makefile.inc, www/mozilla-firefox Makefile distinfo

by landry on ⎇
   www/mozilla-firefox: update to 150.0.

   see https://www.firefox.com/en-US/firefox/150.0/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-30/

   - disable PGO again, fixes wasm crashes seen with element-web (cf #2030583)
   - will need to move to llvm 21 or patch llvm 19 to reenable PGO
   - add workaround to avoid fetching some pip wheels during configure
     (#2026497), another workaround would be to move to ./mach configure ?

   ok naddy@
VersionDeltaFile
1.384+164-164www/firefox-i18n/distinfo
1.680+4-4www/mozilla-firefox/Makefile
1.2+4-4www/mozilla-firefox/patches/patch-widget_NativeKeyToDOMCodeName_inc
1.397+2-4www/mozilla-firefox/distinfo
1.339+1-1www/firefox-i18n/Makefile.inc
+175-1775 files

OpenBSD/ports B9odY8Vdevel/opendht Makefile

by sthen on ⎇
   avoid picking up doxygen during build, to avoid build failure with dpb junking
   requested by naddy
VersionDeltaFile
1.2+2-5devel/opendht/Makefile
+2-51 files

OpenBSD/ports aviuzeNsysutils/rclone distinfo Makefile

by bket on ⎇
   Update to rclone-1.73.5

   CVE-2026-41176
   rc: add AuthRequired to options/set to prevent auth bypass
   rc: snapshot NoAuth at startup to prevent runtime auth bypass

   CVE-2026-41179
   operations: add AuthRequired to operations/fsinfo to prevent backend
   creation

   Changelog: https://rclone.org/changelog/#v1-73-5-2026-04-19

   OK sthen@
VersionDeltaFile
1.64+4-4sysutils/rclone/distinfo
1.74+1-1sysutils/rclone/Makefile
+5-52 files

OpenBSD/ports P8tI8U4graphics/lcms2 Makefile distinfo

by volker on ⎇
   graphics/lcms2: Update to 2.19rc2

   Fixes several issues, for reference see
   https://marc.info/?l=oss-security&m=177646929211758&w=2

   pointed out by and ok tb@, ok naddy@
VersionDeltaFile
1.29+6-3graphics/lcms2/Makefile
1.15+2-2graphics/lcms2/distinfo
+8-52 files

OpenBSD/ports XvX9o9Hnet/gelatod distinfo Makefile

by kn on ⎇
   update to gelatod-1.7;  same fix as 029_v6daemons;  OK naddy
VersionDeltaFile
1.6+2-2net/gelatod/distinfo
1.12+1-1net/gelatod/Makefile
+3-32 files

OpenBSD/ports TZauOB1geo/mapserver distinfo Makefile

by landry on ⎇
   geo/mapserver: security update to 8.6.2.

   see https://mapserver.org/development/changelog/changelog-8-6.html#changelog-8-6
   fixes https://github.com/MapServer/MapServer/security/advisories/GHSA-4g9f-ph64-hg2x

   ok naddy@
VersionDeltaFile
1.44+2-2geo/mapserver/distinfo
1.111+1-1geo/mapserver/Makefile
+3-32 files

OpenBSD/ports M5qz8yKx11/gtk+4 distinfo Makefile

by ajacoutot on ⎇
   Update to gtk+4-4.22.3.

   ok naddy@
VersionDeltaFile
1.69+2-2x11/gtk+4/distinfo
1.124+1-1x11/gtk+4/Makefile
+3-32 files

OpenBSD/ports k5A4rZksysutils/btop Makefile, sysutils/btop/patches patch-src_openbsd_btop_collect.cpp

by bcook on ⎇
   Patch btop to report active CPU usage correctly

   from upstream https://github.com/aristocratos/btop/pull/1587

   This also allows building on spark64 with gcc 15.
VersionDeltaFile
1.1+86-0sysutils/btop/patches/patch-src_openbsd_btop_collect.cpp
1.9+3-1sysutils/btop/Makefile
+89-12 files

OpenBSD/ports XyvLVE0shells/elvish distinfo modules.inc, shells/elvish/pkg PLIST

by volker on ⎇
   shells/elvish: Update to 0.21.0

   The current version in ports is broken/non-functional.

   approved by naddy@
VersionDeltaFile
1.5+64-22shells/elvish/distinfo
1.2+20-8shells/elvish/modules.inc
1.11+2-6shells/elvish/Makefile
1.4+1-3shells/elvish/pkg/PLIST
+87-394 files

OpenBSD/ports xABnlUagraphics/png distinfo Makefile

by matthieu on ⎇
   Update to png 1.6.58. ok deraadt@, naddy@.
   Fixes a regression introduced in 1.6.56
VersionDeltaFile
1.72.2.7+2-2graphics/png/distinfo
1.143.2.7+1-1graphics/png/Makefile
+3-32 files

OpenBSD/ports 5DNHSSdgraphics/png distinfo Makefile

by matthieu on ⎇
   Update to png 1.6.58. ok deraadt@, naddy@.
   Fixes a regression introduced in 1.6.56
   xenocara will be updated after unlock as it's not affected.
VersionDeltaFile
1.79+2-2graphics/png/distinfo
1.150+1-1graphics/png/Makefile
+3-32 files

OpenBSD/ports 1bm4blXdevel/ruby-rb_sys Makefile, devel/ruby-rb_sys/patches patch-lib_rb_sys_mkmf_rb

by jeremy on ⎇
   Stop cleaning gem artifacts

   Bulk builds have seen occasional failures building
   textproc/ruby-commonmarker, which is the only reverse dependency. I'm
   not positive the cleaning of gem artifacts is the cause of the failure,
   though I suspect it is.

   Discussed with naddy@
VersionDeltaFile
1.1+15-0devel/ruby-rb_sys/patches/patch-lib_rb_sys_mkmf_rb
1.2+1-0devel/ruby-rb_sys/Makefile
+16-02 files

OpenBSD/ports zvxtHgigames/godot/pack3 distinfo Makefile, games/godot/pack3/patches patch-platform_linuxbsd_wayland_display_server_wayland_cpp patch-platform_linuxbsd_os_linuxbsd_cpp

by thfr on ⎇
   Update godot/pack3 to latest release 4.6.2, a stable maintenance
   release. No known incompatibilities. Tested with Road to Vostok.
VersionDeltaFile
1.2+2-2games/godot/pack3/distinfo
1.3+1-2games/godot/pack3/Makefile
1.2+1-1games/godot/pack3/patches/patch-platform_linuxbsd_wayland_display_server_wayland_cpp
1.2+1-1games/godot/pack3/pkg/PLIST-main
1.2+1-1games/godot/pack3/patches/patch-platform_linuxbsd_os_linuxbsd_cpp
1.2+1-0games/godot/pack3/pkg/PLIST-editor
+7-76 files

OpenBSD/ports 8e0LBL5games/luanti Makefile distinfo, games/luanti/patches patch-src_CMakeLists_txt

by thfr on ⎇
   MFC: luanti 5.15.2 (security update)
   From maintainer izzy Meyer
VersionDeltaFile
1.2.2.1+24-675games/luanti/pkg/PLIST
1.3.2.1+1-6games/luanti/Makefile
1.2.2.1+2-2games/luanti/distinfo
1.3.2.1+1-1games/luanti/patches/patch-src_CMakeLists_txt
+28-6844 files

OpenBSD/ports OIebBCwsysutils/exfetch Makefile distinfo, sysutils/exfetch/patches patch-Makefile

by thfr on ⎇
   Update to exfetch 1.6. From author & maintainer izzy Meyer - thanks!
VersionDeltaFile
1.8+3-2sysutils/exfetch/Makefile
1.7+2-2sysutils/exfetch/distinfo
1.4+0-0sysutils/exfetch/patches/patch-Makefile
+5-43 files