FreeBSD/ports 4a2ef95lang/python310 distinfo Makefile

lang/python310: pull in upstream commits addressing vuxml entries

Security: cf75f572-378a-11f1-a119-e36228bfe7d4
Security: b8e9f33c-375d-11f1-a119-e36228bfe7d4

Event: BSDCan 2026
DeltaFile
+7-3lang/python310/distinfo
+4-2lang/python310/Makefile
+11-52 files

FreeBSD/ports 71c9ccflang/python311 distinfo Makefile

lang/python311: pull in upstream commits addressing vuxml entries

Security: cf75f572-378a-11f1-a119-e36228bfe7d4
Security: b8e9f33c-375d-11f1-a119-e36228bfe7d4

Event: BSDCan 2026
DeltaFile
+5-1lang/python311/distinfo
+4-2lang/python311/Makefile
+9-32 files

FreeBSD/ports 18013e1security/vuxml/vuln 2026.xml

security/vuxml: fix lang/python311 version typo

Event: BSDCan 2026
DeltaFile
+1-1security/vuxml/vuln/2026.xml
+1-11 files

FreeBSD/ports d77fc69security/vuxml/vuln 2026.xml

security/vuxml: update python entries with upstream commits

Event: BSDCan 2026
DeltaFile
+17-9security/vuxml/vuln/2026.xml
+17-91 files

FreeBSD/src 59bd484sys/compat/linux linux_socket.c linux_socket.h

linux: implement SO_PASSRIGHTS

We have a native version now, plumb it through to the Linuxolator.

Reviewed by:    glebius, markj
Differential Revision:  https://reviews.freebsd.org/D57427
DeltaFile
+2-0sys/compat/linux/linux_socket.c
+1-0sys/compat/linux/linux_socket.h
+3-02 files

FreeBSD/src 2f363fetests/sys/kern unix_passfd_test.c

tests: unix: pull a recvfd_payload_cmsg out of recvfd_payload

This is almost a trivial factoring, but it's still a bit of boilerplate
that we don't care to rewrite- the SO_PASSRIGHTS test will still receive
some data, so the iovec construction still saves us a few lines.

Reviewed by:    markj
Differential Revision:  https://reviews.freebsd.org/D57544
DeltaFile
+16-8tests/sys/kern/unix_passfd_test.c
+16-81 files

FreeBSD/src c08a86etests/sys/kern unix_passfd_test.c

tests: unix: add SCM_RIGHTS tests for SO_PASSRIGHTS

We test both the standard case where we want to reject any SCM_RIGHTS
message, as well as the case where the kernel discards the unwanted file
upon receipt.

Reviewed by:    glebius (previous version), markj
Differential Revision:  https://reviews.freebsd.org/D57426
DeltaFile
+150-0tests/sys/kern/unix_passfd_test.c
+150-01 files

FreeBSD/src 0ae7df3sys/kern uipc_socket.c

sockets: plumb SO_PASSRIGHTS into *sockopt(2)

This is a little different than the others in that it's not valid for
anything but unix(4) sockets.  New cases were added that jump into the
more standard case out of a light preference for not taking advantage of
case FALLTHROUGH with the additional logic- it doesn't scale very well
for new cases added that might be slightly special, so we might as well
just add the labels up-front.

Reviewed by:    glebius, markj
Differential Revision:  https://reviews.freebsd.org/D57424
DeltaFile
+18-0sys/kern/uipc_socket.c
+18-01 files

FreeBSD/src 8a3d283sys/kern uipc_socket.c

socket: remove tautological condition in so_unsplice()

so2rele was introduced in 1000cc4a0d3 and it was necessary there, but
the cleanup in a837d1fe49e0255 rendered it redundant if our own KASSERT
is to be believed: we've asserted that `so2->so_splice_back == sp` and
`sp` has been dereferenced above, so there's no condition left where
we shouldn't release the socket reference at the end.  Indeed, the
change in so_splice() to NULL out sp->dst removes that possible state of
a partially constructed splice: if sp->dst is set, it has been ref'd.

Reviewed by:    gallatin, markj
Differential Revision:  https://reviews.freebsd.org/D57558
DeltaFile
+2-4sys/kern/uipc_socket.c
+2-41 files

FreeBSD/src 9b16399lib/libsys send.2 getsockopt.2, share/man/man4 unix.4

unix: implement basic SO_PASSRIGHTS functionality

With exception to sockopt functionality, implement the so_options flag
in unix(4) itself.  The general argument for the flag is that SCM_RIGHTS
can be used maliciously for, e.g., a DoS that the receiving side can't
avoid if it is expecting other control messages.

This option gives the receiver a way to disable SCM_RIGHTS on the
sender-side, surfacing an EPERM to them instead.  This seems to match
the semantics that Linux offers.

If an SCM_RIGHTS was already sent before we disabled SO_PASSRIGHTS, then
a subsequent recvmsg(2) will silently discard any in-flight files.  This
has the downside of punting a file with the potential to hang over to
the deferred-close task, but perhaps usage of the option would
discourage folks from attempting to take advantage of that possibility
anyways.

Various manpages updated to describe the new behavior.

    [10 lines not shown]
DeltaFile
+47-15sys/kern/uipc_usrreq.c
+12-2lib/libsys/send.2
+12-1share/man/man4/unix.4
+2-1lib/libsys/getsockopt.2
+1-0sys/sys/socket.h
+74-195 files

FreeBSD/ports bafaefdtextproc/typst distinfo Makefile.crates

textproc/typst: Update to 0.15.0
DeltaFile
+265-255textproc/typst/distinfo
+131-126textproc/typst/Makefile.crates
+1-2textproc/typst/Makefile
+397-3833 files

LLVM/project d131e00clang/test/CodeGen ubsan-aggregate-null-align-bounds.c

Strengthen handler-call-only checks against extra handler calls
DeltaFile
+8-0clang/test/CodeGen/ubsan-aggregate-null-align-bounds.c
+8-01 files

OpenBSD/src OQ1IItpsys/dev/pv hvs.c

   Add PREREAD|PREWRITE dma map sync before command submission, required for
   bounce buffers to work.

   tested by and ok sthen@
VersionDeltaFile
1.37+3-0sys/dev/pv/hvs.c
+3-01 files

FreeNAS/freenas e4049cdsrc/middlewared/middlewared/plugins network.py, src/middlewared/middlewared/plugins/certificate __init__.py

enforce method docstrings begin with capital letter and end with period
DeltaFile
+26-6src/middlewared/middlewared/pytest/unit/api/test_api_structure.py
+15-15src/middlewared/middlewared/plugins/network.py
+12-17src/middlewared/middlewared/plugins/vm/__init__.py
+4-20src/middlewared/middlewared/plugins/fc/fc_host.py
+7-16src/middlewared/middlewared/plugins/certificate/__init__.py
+10-8src/middlewared/middlewared/plugins/pool_/snapshot.py
+74-8241 files not shown
+175-24147 files

LLVM/project 54ce8fcllvm/test/CodeGen/AMDGPU fptrunc.ll

[AMDGPU][NFC] Pre-commit test for fabs/fneg fold into fptrunc source modifiers (#204666)
DeltaFile
+1,191-0llvm/test/CodeGen/AMDGPU/fptrunc.ll
+1,191-01 files

LLVM/project 17308a9orc-rt/lib/executor Session.cpp, orc-rt/unittests SessionTest.cpp

[orc-rt] Fix assertion, add fail-to-connect unit test. (#204720)

If a ControllerAccess object's connect method calls notifyDisconnected
then by the time we return to Connect we may have completed the detach,
in which case TargetState will be None, and CurrentState will be >=
Detached. This case was not covered by the assert after the return from
connect, leading to assertions when connect failed.

This commit relaxes the assertion to include the case above, and adds a
unit test to cover it.
DeltaFile
+25-3orc-rt/unittests/SessionTest.cpp
+4-4orc-rt/lib/executor/Session.cpp
+29-72 files

FreeBSD/ports 7d280a0finance/odoo pkg-plist distinfo

finance/odoo: Update to 19.0.20260618
DeltaFile
+4,511-269finance/odoo/pkg-plist
+3-3finance/odoo/distinfo
+2-3finance/odoo/Makefile
+4,516-2753 files

FreeBSD/ports 19f090dfinance/odoo17 pkg-plist Makefile

finance/odoo17: Update to 17.0.20260618
DeltaFile
+4,198-73finance/odoo17/pkg-plist
+3-4finance/odoo17/Makefile
+3-3finance/odoo17/distinfo
+4,204-803 files

FreeBSD/ports fb65c9afinance/odoo18 pkg-plist distinfo

finance/odoo18: Update to 18.0.20260618
DeltaFile
+2,235-94finance/odoo18/pkg-plist
+3-3finance/odoo18/distinfo
+2-3finance/odoo18/Makefile
+2,240-1003 files

FreeBSD/ports ccb53dffinance/odoo16 pkg-plist distinfo

finance/odoo16: Update to 16.0.20260618
DeltaFile
+196-3finance/odoo16/pkg-plist
+3-3finance/odoo16/distinfo
+2-3finance/odoo16/Makefile
+201-93 files

LLVM/project 4da60b8llvm/lib/Transforms/Utils LowerCommentStringPass.cpp

[NFC] LowerCommentStringPass: remove unused #include (#204719)

This pass was added in a64928f267f3aeeb3571bfc7de92c432126d74e9 but does
not actually use PassBuilder
DeltaFile
+0-1llvm/lib/Transforms/Utils/LowerCommentStringPass.cpp
+0-11 files

FreeBSD/ports a0bd772misc/py-litellm distinfo Makefile

misc/py-litellm: Update to 1.89.2

Changelog: https://github.com/BerriAI/litellm/releases/tag/v1.89.2

Reported by:    portscout
DeltaFile
+3-3misc/py-litellm/distinfo
+1-1misc/py-litellm/Makefile
+4-42 files

LLVM/project 4a1d8bbllvm/test/CodeGen/AMDGPU llvm.amdgcn.load.async.to.lds.ll llvm.amdgcn.load.to.lds.ll

[AMDGPU][NFC]: Pre-commit load.async.to.lds.ll test (#204695)
DeltaFile
+117-0llvm/test/CodeGen/AMDGPU/llvm.amdgcn.load.async.to.lds.ll
+0-37llvm/test/CodeGen/AMDGPU/llvm.amdgcn.load.to.lds.ll
+117-372 files

FreeBSD/ports f094cb3textproc/xan distinfo Makefile.crates

textproc/xan: Update to 0.59.0

Changelog: https://github.com/medialab/xan/blob/0.59.0/CHANGELOG.md

Reported by:    GitHub (watch releases)
DeltaFile
+159-125textproc/xan/distinfo
+78-61textproc/xan/Makefile.crates
+1-2textproc/xan/Makefile
+238-1883 files

FreeBSD/ports ec6b356graphics/nvidia-drm-515-kmod distinfo, graphics/nvidia-drm-61-kmod distinfo

x11/nvidia-driver, x11/nvidia-kmod, x11/linux-nvidia-libs, graphics/nvidia-drm*-kmod, x11/nvidia-settings, x11/nvidia-xconfig: Update to 595.84

Update to latest Production Branch of drivers 595.84:
https://www.nvidia.com/en-us/drivers/details/272967/

Linux counterparts for x11/linux-nvidia-libs:
https://www.nvidia.com/en-us/drivers/details/272964/

PR:             296137
Differential Revision:  https://reviews.freebsd.org/D57655
DeltaFile
+3-3x11/nvidia-xconfig/distinfo
+3-3graphics/nvidia-drm-515-kmod/distinfo
+3-3graphics/nvidia-drm-61-kmod/distinfo
+3-3graphics/nvidia-drm-612-kmod/distinfo
+3-3graphics/nvidia-drm-66-kmod/distinfo
+3-3graphics/nvidia-drm-latest-kmod/distinfo
+18-1810 files not shown
+34-3416 files

FreeBSD/ports 6ecda35security/veracrypt pkg-plist Makefile, security/veracrypt/files patch-src_Makefile

security/veracrypt: Update to 1.26.29

ChangeLog at:   https://github.com/veracrypt/VeraCrypt/releases/tag/VeraCrypt_1.26.29
DeltaFile
+11-10security/veracrypt/pkg-plist
+5-5security/veracrypt/files/patch-src_Makefile
+6-4security/veracrypt/Makefile
+3-3security/veracrypt/distinfo
+25-224 files

LLVM/project 9fc458allvm/lib/Target/BPF BPFAsmPrinter.cpp, llvm/test/CodeGen/BPF jump_table_func_ptr_array.ll

[BPF] Fix erroneous removal of non-jump-table globals (#204594)

Jump tables are supported only for cpu v4. After lowering them into
.jumptables entries, BPFAsmPrinter::doFinalization() removes the private
constant arrays that backed the jump tables. But the below 'for' loop is
actually a no-op.

    for (unsigned i = 1, e = CA->getNumOperands(); i != e; ++i) {
      if (!dyn_cast<BlockAddress>(CA->getOperand(i)))
        continue;
    }
    Targets.push_back(&Global);

With current implementation, 'Global' will be added to 'Targets' and
later in doFinalization(), 'Global' will be removed. But it is possible
in 'Global' there exists non BlockAddress which are used in later code.
This will cause the problem like:
  error: Undefined temporary symbol .L__const.select_fn.fns


    [24 lines not shown]
DeltaFile
+41-0llvm/test/CodeGen/BPF/jump_table_func_ptr_array.ll
+3-4llvm/lib/Target/BPF/BPFAsmPrinter.cpp
+44-42 files

FreeBSD/ports 3e8ffbegames/etlegacy distinfo pkg-plist, games/etlegacy/files patch-cmake_ETLVersion.cmake patch-src_qcommon_q__platform.h

games/etlegacy: Update to 2.84.0
DeltaFile
+20-13games/etlegacy/files/patch-cmake_ETLVersion.cmake
+0-23games/etlegacy/files/patch-src_qcommon_q__platform.h
+7-7games/etlegacy/distinfo
+0-11games/etlegacy/files/patch-src_renderercommon_tr__font.c
+11-0games/etlegacy/files/patch-cmake_ETLPLatform.cmake
+8-1games/etlegacy/pkg-plist
+46-551 files not shown
+48-617 files

FreeBSD/ports b981e5bdevel Makefile, devel/p5-CLI-Simple Makefile pkg-plist

devel/p5-CLI-Simple: Add port: Minimalist object oriented base class for CLI applications

Tired of writing the same 'ol boilerplate code for command line scripts?
Want a standard, simple way to create a Perl script that takes options
and commands? CLI::Simple makes it easy to create scripts that take
options, commands and arguments.

CLI::Simple is designed around the modulino pattern - Perl modules that
can be executed directly as scripts.

WWW: https://metacpan.org/pod/CLI::Simple

PR:             295931
Reported by:    Einar Bjarni Halldórsson <einar at isnic.is> (new maintainer)
DeltaFile
+39-0devel/p5-CLI-Simple/Makefile
+15-0devel/p5-CLI-Simple/pkg-plist
+7-0devel/p5-CLI-Simple/pkg-descr
+3-0devel/p5-CLI-Simple/distinfo
+1-0devel/Makefile
+65-05 files

FreeBSD/ports 7e8590carchivers/R-cran-zip distinfo Makefile

archivers/R-cran-zip: Update to 3.0.0
DeltaFile
+3-3archivers/R-cran-zip/distinfo
+3-1archivers/R-cran-zip/Makefile
+6-42 files