FreeBSD/ports 7bb022ewww/phpmyfaq pkg-plist distinfo

www/phpmyfaq: Update to 4.1.6

MFH:            2026Q3
Security:       0a0aca9f-8290-11f1-a93b-50ebf6bdf8e9
(cherry picked from commit aaf3fb3de888a9aa61483037e9e4ac18f2ad5b1c)
DeltaFile
+7,951-5www/phpmyfaq/pkg-plist
+3-3www/phpmyfaq/distinfo
+1-1www/phpmyfaq/Makefile
+7,955-93 files

FreeBSD/ports 606075cnet-mgmt/monitoring-plugins distinfo Makefile, net-mgmt/monitoring-plugins/files extra-patch-dig-to-drill.diff patch-plugins_check__http.c

net-mgmt/monitoring-plugins: Update to 3.0.1

*) Security: fix a potential local privilege escalation in check_icmp,
   which might be possible if check_icmp runs with setuid (the default)
*) Change: check_nt, check_ntp, check_nwstat and check_overcr were
   removed upstream; check_ntp is replaced by check_ntp_time and
   check_ntp_peer
*) Change: check_http is deprecated in favor of check_curl
*) Change: check_snmp now uses net-snmp natively instead of executing
   snmpget
*) Change: generalized, mostly multi-line output for many plugins
*) Fix: check_curl now populates the DNS cache when the hostname is
   resolved locally

Release Notes:
https://github.com/monitoring-plugins/monitoring-plugins/releases/tag/v3.0.1

PR:             296451


    [3 lines not shown]
DeltaFile
+12-10net-mgmt/monitoring-plugins/files/extra-patch-dig-to-drill.diff
+0-17net-mgmt/monitoring-plugins/files/patch-plugins_check__http.c
+3-3net-mgmt/monitoring-plugins/distinfo
+2-3net-mgmt/monitoring-plugins/Makefile
+0-4net-mgmt/monitoring-plugins/pkg-plist
+17-375 files

FreeBSD/ports 1cf9c83net-mgmt/monitoring-plugins distinfo Makefile, net-mgmt/monitoring-plugins/files extra-patch-dig-to-drill.diff patch-plugins_check__http.c

net-mgmt/monitoring-plugins: Update to 3.0.1

*) Security: fix a potential local privilege escalation in check_icmp,
   which might be possible if check_icmp runs with setuid (the default)
*) Change: check_nt, check_ntp, check_nwstat and check_overcr were
   removed upstream; check_ntp is replaced by check_ntp_time and
   check_ntp_peer
*) Change: check_http is deprecated in favor of check_curl
*) Change: check_snmp now uses net-snmp natively instead of executing
   snmpget
*) Change: generalized, mostly multi-line output for many plugins
*) Fix: check_curl now populates the DNS cache when the hostname is
   resolved locally

Release Notes:
https://github.com/monitoring-plugins/monitoring-plugins/releases/tag/v3.0.1

PR:             296451

Sponsored by:   Netzkommune GmbH
DeltaFile
+12-10net-mgmt/monitoring-plugins/files/extra-patch-dig-to-drill.diff
+0-17net-mgmt/monitoring-plugins/files/patch-plugins_check__http.c
+3-3net-mgmt/monitoring-plugins/distinfo
+2-3net-mgmt/monitoring-plugins/Makefile
+0-4net-mgmt/monitoring-plugins/pkg-plist
+17-375 files

FreeBSD/ports aaf3fb3www/phpmyfaq pkg-plist distinfo

www/phpmyfaq: Update to 4.1.6

MFH:            2026Q3
Security:       0a0aca9f-8290-11f1-a93b-50ebf6bdf8e9
DeltaFile
+7,951-5www/phpmyfaq/pkg-plist
+3-3www/phpmyfaq/distinfo
+1-1www/phpmyfaq/Makefile
+7,955-93 files

FreeBSD/ports 56361a1security/vuxml/vuln 2026.xml

security/vuxml: Add phpmyfaq vulnerabilities
DeltaFile
+45-0security/vuxml/vuln/2026.xml
+45-01 files

FreeBSD/ports bfaec29sysutils/webmin distinfo Makefile

sysutils/webmin: Update to 2.652
DeltaFile
+3-3sysutils/webmin/distinfo
+1-1sysutils/webmin/Makefile
+4-42 files

FreeBSD/ports ba7239cnet/cliproxyapi distinfo Makefile

net/cliproxyapi: Update to 7.2.83
DeltaFile
+5-5net/cliproxyapi/distinfo
+1-1net/cliproxyapi/Makefile
+6-62 files

FreeBSD/ports 5807196multimedia/shaka-packager distinfo Makefile

multimedia/shaka-packager: Update to 3.9.2
DeltaFile
+3-3multimedia/shaka-packager/distinfo
+1-1multimedia/shaka-packager/Makefile
+4-42 files

NetBSD/src W0Pmnefdoc 3RDPARTY CHANGES

   Note tzdata2026c update (via 2026cgtz)
VersionDeltaFile
1.2233+2-2doc/3RDPARTY
1.3281+2-1doc/CHANGES
+4-32 files

NetBSD/src AoJd5apexternal/public-domain/tz/dist africa northamerica

   Merge tzdata2026c
VersionDeltaFile
1.4+32-159external/public-domain/tz/dist/africa
1.7+107-14external/public-domain/tz/dist/northamerica
1.8+70-7external/public-domain/tz/dist/NEWS
1.6+17-28external/public-domain/tz/dist/Makefile
1.6+14-7external/public-domain/tz/dist/europe
1.6+9-9external/public-domain/tz/dist/theory.html
+249-2248 files not shown
+268-24014 files

NetBSD/src 6VfipQNexternal/public-domain/tz/dist africa northamerica

   Import tzdata2026c from locally built tzdata2026cgtz.tar.gz

   The real tzdata2026cgtz.tar.gz is not yet available (Europe in July!)
   so I made a version which I think should be it.   If there happen to
   be any material differences when the real one appears, I will do an
   update.  Any irrelevant differences can just wait until next time.

   Summary of changes in tzdata2026c (2026-07-08 10:23:58 -0700):
     * Alberta’s 2026-03-08 spring forward was its last foreseeable clock
       change, as it moved to permanent -06 thereafter.
     * Although another TZDB release will likely be needed soon because
       Northwest Territories will likely follow Alberta, the legal
       formalities have not yet taken place.
     * Morocco plans to move back to permanent UTC, without daylight
       saving time transitions, on 2026-09-20 at 02:00.
     * Changes to commentary.
VersionDeltaFile
1.1.1.38+32-159external/public-domain/tz/dist/africa
1.1.1.42+107-14external/public-domain/tz/dist/northamerica
1.1.1.52+70-7external/public-domain/tz/dist/NEWS
1.1.1.44+17-28external/public-domain/tz/dist/Makefile
1.1.1.45+14-7external/public-domain/tz/dist/europe
1.1.1.24+9-9external/public-domain/tz/dist/theory.html
+249-2248 files not shown
+271-24314 files

LLVM/project 8c2d7ccmlir/include/mlir/IR SymbolInterfaces.td, mlir/lib/IR SymbolTable.cpp

[mlir][IR] Add SymbolUserTypeInterface (#198435)

This change adds SymbolUserTypeInterface, analogous to
SymbolUserAttrInterface, and extends SymbolTable verification to check
participating types.

Verification visits the types owned by an operation, (operand/result
types, block argument types, attribute-contained types, nested type
parameters) and checks each distinct type at most once, interrupting on
the first failure. Deduplication spans the whole symbol-table walk, so a
type used by multiple operations is checked only once.

Attribute (SymbolUserAttrInterface) verification also gets deduped the
same way.

Assisted-by: Codex (OpenAI)
Assisted-by: Claude (Anthropic)
DeltaFile
+95-0mlir/test/IR/test-verifiers-symbol-user-type.mlir
+57-0mlir/lib/IR/SymbolTable.cpp
+27-18utils/bazel/llvm-project-overlay/mlir/BUILD.bazel
+20-1mlir/include/mlir/IR/SymbolInterfaces.td
+13-0mlir/test/lib/Dialect/Test/TestTypes.cpp
+9-0mlir/test/lib/Dialect/Test/TestTypeDefs.td
+221-193 files not shown
+225-199 files

NetBSD/src MOyL8wFexternal/public-domain/tz tzdata2netbsd

   tzdata2netbsd - minor updates

   Add a few \n's missing from printf's that rarely (if ever) get used.
   Add a new message before comparing files, so if there are differences
   it is clear which file the differences are in.  When doing that, ignore
   any patch remnant files that might have been left around by accident.
VersionDeltaFile
1.21+9-5external/public-domain/tz/tzdata2netbsd
+9-51 files

FreeBSD/ports 67a1d57security/modsecurity3-nginx distinfo Makefile, www/nginx distinfo

www/nginx: Update to 1.30.4

Changes:

*) Security: heap buffer overflow when using the map directive with
   regex matching (CVE-2026-42533)
*) Security: uninitialized memory access when using unnamed regex
   captures with the "slice" directive or background cache update
   (CVE-2026-60005)
*) Security: use-after-free when processing a specially crafted
   proxied backend response with the ngx_http_ssi_filter_module
   (CVE-2026-56434)

Release Notes:  https://nginx.org/en/CHANGES-1.30
Security:       56feeac6-8263-11f1-92ba-bc24110523fe
Security:       CVE-2026-42533
Security:       CVE-2026-56434
Security:       CVE-2026-60005


    [5 lines not shown]
DeltaFile
+5-5www/nginx-acme/distinfo
+3-3www/nginx-module-lua/distinfo
+3-3www/nginx/distinfo
+3-3security/modsecurity3-nginx/distinfo
+2-2security/modsecurity3-nginx/Makefile
+2-1www/nginx-module-lua/Makefile
+18-174 files not shown
+22-2110 files

FreeBSD/ports 3883a50www/nginx-devel distinfo Makefile

www/nginx-devel: Update to 1.31.3

Changes:

*) Security: heap buffer overflow when using the map directive with
   regex matching (CVE-2026-42533)
*) Security: uninitialized memory access when using unnamed regex
   captures with the "slice" directive or background cache update
   (CVE-2026-60005)
*) Security: use-after-free when processing a specially crafted
   proxied backend response with the ngx_http_ssi_filter_module
   (CVE-2026-56434)
*) Change: the size of headers and trailers in HTTP/2 responses in
   the ngx_http_proxy_v2_module and ngx_http_grpc_module is now
   limited with "proxy_buffer_size" and "grpc_buffer_size"
*) Feature: the "xml_external_entities" directive in the
   ngx_http_xslt_filter_module; loading of external entities is now
   disabled by default


    [11 lines not shown]
DeltaFile
+3-3www/nginx-devel/distinfo
+1-1www/nginx-devel/Makefile
+1-1www/nginx-devel/version.mk
+5-53 files

FreeBSD/ports 96b7b9bsecurity/modsecurity3-nginx distinfo Makefile, www/nginx distinfo

www/nginx: Update to 1.30.4

Changes:

*) Security: heap buffer overflow when using the map directive with
   regex matching (CVE-2026-42533)
*) Security: uninitialized memory access when using unnamed regex
   captures with the "slice" directive or background cache update
   (CVE-2026-60005)
*) Security: use-after-free when processing a specially crafted
   proxied backend response with the ngx_http_ssi_filter_module
   (CVE-2026-56434)

Release Notes:  https://nginx.org/en/CHANGES-1.30
Security:       56feeac6-8263-11f1-92ba-bc24110523fe
Security:       CVE-2026-42533
Security:       CVE-2026-56434
Security:       CVE-2026-60005


    [3 lines not shown]
DeltaFile
+5-5www/nginx-acme/distinfo
+3-3www/nginx-module-lua/distinfo
+3-3security/modsecurity3-nginx/distinfo
+3-3www/nginx/distinfo
+2-2security/modsecurity3-nginx/Makefile
+2-1www/nginx-module-lua/Makefile
+18-174 files not shown
+22-2110 files

FreeBSD/ports 957241fwww/nginx-devel distinfo Makefile

www/nginx-devel: Update to 1.31.3

Changes:

*) Security: heap buffer overflow when using the map directive with
   regex matching (CVE-2026-42533)
*) Security: uninitialized memory access when using unnamed regex
   captures with the "slice" directive or background cache update
   (CVE-2026-60005)
*) Security: use-after-free when processing a specially crafted
   proxied backend response with the ngx_http_ssi_filter_module
   (CVE-2026-56434)
*) Change: the size of headers and trailers in HTTP/2 responses in
   the ngx_http_proxy_v2_module and ngx_http_grpc_module is now
   limited with "proxy_buffer_size" and "grpc_buffer_size"
*) Feature: the "xml_external_entities" directive in the
   ngx_http_xslt_filter_module; loading of external entities is now
   disabled by default


    [9 lines not shown]
DeltaFile
+3-3www/nginx-devel/distinfo
+1-1www/nginx-devel/Makefile
+1-1www/nginx-devel/version.mk
+5-53 files

OpenBSD/src vTAb00Gsys/dev/ic qwx.c qwxvar.h

   replace qwx virtual interface list with a single interface structure

   Fixes use of stale pointers on the vif list which caused crashes.
   We do not support multiple interfaces per driver in our net80211 stack,
   so this list inherited from Linux was pointless for us anyway.

   Tested by ajacoutot, phessler, kettenis, gnezdo, krw, and myself.

   ok phessler@ kettenis@ gnezdo@
VersionDeltaFile
1.138+60-139sys/dev/ic/qwx.c
1.38+2-7sys/dev/ic/qwxvar.h
+62-1462 files

NetBSD/pkgsrc-wip 4658039emacs-git distinfo, emacs-git/patches patch-Makefile.in

emacs-git: remove again, seems merged
DeltaFile
+0-61emacs-git/patches/patch-Makefile.in
+0-3emacs-git/distinfo
+0-642 files

FreeBSD/src 506e3e3sys/netinet tcp_input.c

tcp: Align PRR implementation with RFC 9937

- Early return when no new data is delivered
- Switching from PRR-CRB to PRR-SSRB only when both SND.UNA advances and no further loss is indicated.
- Accounting for sequence ranges SACKed before entering recovery in RecoverFS calculation.
- Force a fast retransmit upon entering recovery when prr_out is 0 AND SndCnt is 0.
- Set cwnd to ssthresh post recovery.

Obtained from: mohnishhemanthkumar_gmail.com
Reviewed by: rscheff, tuexen
Differential Revision: https://reviews.freebsd.org/D56535
MFC after: 3 months
DeltaFile
+23-21sys/netinet/tcp_input.c
+23-211 files

NetBSD/pkgsrc-wip 68e8423emacs-git distinfo, emacs-git/patches patch-Makefile.in

emacs-git: restore still needed patch
DeltaFile
+61-0emacs-git/patches/patch-Makefile.in
+3-0emacs-git/distinfo
+64-02 files

NetBSD/pkgsrc cXTQuJudoc CHANGES-2026

   Note PKGREVISION updates of gcc12 and gcc12-libs.
VersionDeltaFile
1.4529+3-1doc/CHANGES-2026
+3-11 files

NetBSD/pkgsrc-wip d00b227emacs-git distinfo, emacs-git/patches patch-lib_getopt1.c patch-lib_getopt-pfx-ext.h

emacs-git: patches have been merged, remove them
DeltaFile
+0-36emacs-git/patches/patch-lib_getopt1.c
+0-14emacs-git/patches/patch-lib_getopt-pfx-ext.h
+0-4emacs-git/distinfo
+0-543 files

NetBSD/pkgsrc CvBXdPslang/gcc12 Makefile distinfo, lang/gcc12-libs Makefile

   lang/gcc12: pull over the changes to rs6000/netbsd.h from our in-tree gcc.

   This is so that this builds and runs on powerpc/11.0*.

   The most important fix is that on powerpc, -msecure-plt is enabled by
   default, so that resulting executables can be run with PAX_MPROTECT active.
   Otherwise, we end up with executables with sections which have both
   "write" and "execute" turned on, which PAX_MPROTECT rejects.

   Fixes PR#60439.

   Bump PKGREVISION for both gcc12 and gcc12-libs, to adhere to rules in comments.
VersionDeltaFile
1.1+100-0lang/gcc12/patches/patch-gcc_config_rs6000_netbsd.h
1.15+2-2lang/gcc12/Makefile
1.13+2-2lang/gcc12-libs/Makefile
1.18+2-1lang/gcc12/distinfo
+106-54 files

NetBSD/src m6xeKvxusr.bin/ftp fetch.c

   base64_encode(): avoid reading off end of clear

   Don't read clear[i+2] without bounds checking,
   which can occur when (len % 3) == 1.

   Issue reported in private email by "Acts1631",
   and confirmed with gcc15 asan and a test harness.
VersionDeltaFile
1.248+12-9usr.bin/ftp/fetch.c
+12-91 files

LLVM/project ccd0e98lldb/source/Plugins/SymbolFile/NativePDB UdtRecordCompleter.cpp, lldb/test/API/lang/cpp/enum-limits TestCPPEnumLimits.py main.cpp

[lldb][NativePDB] Fix width and signedness of enum constants (#210338)

Enumerator values aren't always encoded in the correct bit width and
signedness. This happens with both MSVC and Clang.

On MSVC, unsigned 64bit enumerators can be encoded as signed. For
example `ULONGLONG_MAX` will be encoded as `-1`.
Clang/LLVM will always encode the values as unsigned.

Example: https://godbolt.org/z/96YjGW48W.

I fixed this by setting the expected width and signedness when creating
the enumerator constant. We can't use a shell test like for the other
PDB tests, because no output shows the enum values.
DeltaFile
+91-0lldb/test/API/lang/cpp/enum-limits/TestCPPEnumLimits.py
+48-0lldb/test/API/lang/cpp/enum-limits/main.cpp
+17-1lldb/source/Plugins/SymbolFile/NativePDB/UdtRecordCompleter.cpp
+3-0lldb/test/API/lang/cpp/enum-limits/Makefile
+159-14 files

NetBSD/pkgsrc mJNhJMEdoc CHANGES-2026

   doc: Updated devel/py-lupa to 2.8nb1
VersionDeltaFile
1.4528+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc Y3CxgUwdevel/py-lupa Makefile PLIST

   py-lupa: fix build on NetBSD

   needs gmake for included luajit; add it to PLIST

   Bump PKGREVISION.
VersionDeltaFile
1.23+3-2devel/py-lupa/Makefile
1.6+3-1devel/py-lupa/PLIST
+6-32 files

NetBSD/pkgsrc hPi6jLmdoc CHANGES-2026

   doc: Updated devel/p5-Data-Alias to 1.30
VersionDeltaFile
1.4527+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc Hcb4Q8bdevel/p5-Data-Alias distinfo Makefile

   p5-Data-Alias: update to 1.30.

   1.30  2026-03-11  XMATH
       - Use isGV_with_GP_on when available. (RT 173582)

   1.29  2026-02-02  XMATH
       - Fix compatibility with perl 5.43.8  (contributed by mauke)
VersionDeltaFile
1.16+4-4devel/p5-Data-Alias/distinfo
1.36+3-4devel/p5-Data-Alias/Makefile
+7-82 files