devel/py-Js2Py: Apply upstream patch for Python 3.12 support
Co-authored-by: Michael Osipov <michaelo at FreeBSD.org>
PR: 289085
MFH: 2026Q1
(cherry picked from commit 37e1f72f44e412445a2e97bc85e159b218390243)
sys/netinet6: switch net.inet6.ip6.use_stableaddr to on by default
This change switches to using RFC 7217 algorithm as the default to
generate SLAAC addresses for IPv6 interfaces configured with
accept_rtadv.
Reviewed by: pouria, glebius, zlei
Approved by: zlei
Relnotes: yes
Differential Revision: https://reviews.freebsd.org/D55138
amd64/conf: Remove a config committed by accident
Reported by: kib, kp
Fixes: 350ba9672a7f ("unix: Set O_RESOLVE_BENEATH on fds transferred between jails")
(cherry picked from commit 3ef39f58e5d63a78fd1c37e6c62d599bc68d5e1e)
[TargetLowering] Avoid creating a VTList until we know we need it. NFC (#180599)
Since I was in the area, also use SDValue::getValue() to shorten getting
result 1.
ifconfig.8: Start new sentence on new line
This change was forgotten by me in the previous commit to this file.
Reported by: kib
Approved by: implicit (change omitted from previous commit)
Fixes: 31ec8b6407fdd5a87d70265762457c67ce618283
[Hexagon] Fix encoding of packets with fixups followed by alignment (#179168)
When a packet containing extended immediates and new-value compare-jump
instructions with fixups was followed by a .p2align directive, we would
incorrectly add nops to the packet. After reshuffling, the fixup offsets
would become invalid, causing corrupted encodings.
Fixes round-trip assembly for patterns like:
{
r18 = ##65536
if (!cmp.gtu(r1,r18.new)) jump:t .L1
}
.p2align 4
ObsoleteFiles.inc: remove stale allwinner pages
These were moved out of man/man4/arm into man/man4. Add entries to catch
the stale copies.
Fixes: 15c79c6fa608 ("man4: move allwinner pages and logic to a standard place")
py-pikepdf: updated to 10.3.0
v10.3.0
- Fixed UnicodeDecodeError when listing keys of a dictionary containing invalid
UTF-8. Thanks @qooxzuub. :issue:`696`
- Fixed an issue where opening a PDF with duplicate form field names would cause a
crash. Accessing a duplicate field by name now returns a proxy list of all matching
fields. Thanks @qooxzuub. :issue:`697`
- Added `.values()` accessor to `Object` for iterating over dictionary values. Thanks @qooxzuub.:issue:`699,697`
- Added `.copy()` and `.update()` methods to `Dictionary`. Thanks @qooxzuub.:issue:`700`
- Improved `Object.copy` implementation and added type stubs. Thanks @qooxzuub.:issue:`702`
- Fixed missing return in `SimpleFont._encode_diffmap()`. Thanks @lachlan.charlick :issue:`706`
- Improved error messages for invalid dictionary access. Thanks @qooxzuub.:issue:`701`
- Lazy load lxml and Pillow to improve import time. Thanks @qooxzuub. :issue:`704`
- Improved `atomic_overwrite` robustness for restricted directories and special files. :issue:`695`
status/2025q4/freebsd-foundation.adoc: Add link to Sylve entry
While here, fix additional unordered items in project list.
Sponsored by: The FreeBSD Foundation
py-debugpy: updated to 1.8.20
1.8.20
Fixes for:
annotate in 3.14 causing exceptions:
Enhancements:
Use remote_exec if available: c7e86a1
Support more architectures: 1bbecdf
py-dnsdiag: updated to 2.9.3
2.9.3
This release focuses on bug fixes for traceroute functionality and improved
user experience with better DNSSEC information display and command-line
parameter validation.
databases/mysql84-{server|client}: Update to 8.4.8
Bugs Fixed
InnoDB: Under certain circumstances, when using the que_eval_sql
interface, a race condition could occur. (Bug #118705, Bug #38310595)
Running SET PERSIST on a system variable after an upgrade can result
in duplicate variable entries across different sections in
mysqld-auto.cnf. (Bug #38680162)
Binary log purged before persisted binlog_expire_* options were
loaded. (Bug #38554467)
When 2 of 6 instances in a geographically dispersed InnoDB Cluster
lost connectivity, the primary server became unresponsive, causing the
COMMIT and INSERT operations to become unresponsive as well. (Bug
mysqldump's --order-by-primary option sorted data by every index on
[14 lines not shown]
gnutls: updated to 3.8.12
Version 3.8.12 (released 2026-02-09)
** libgnutls: Fix NULL pointer dereference in PSK binder verification
A TLS 1.3 resumption attempt with an invalid PSK binder value in ClientHello
could lead to a denial of service attack via crashing the server.
The updated code guards against the problematic dereference.
Reported by Jaehun Lee.
[Fixes: GNUTLS-SA-2026-02-09-1, CVSS: high] [CVE-2026-1584]
** libgnutls: Fix name constraint processing performance issue
Verifying certificates with pathological amounts of name constraints
could lead to a denial of service attack via resource exhaustion.
Reworked processing algorithms exhibit better performance characteristics.
Reported by Tim Scheckenbach.
[Fixes: GNUTLS-SA-2026-02-09-2, CVSS: medium] [CVE-2025-14831]
** libgnutls: Fix multiple unexploitable overflows
[16 lines not shown]