BSD Commit Log Search

   net/lldpd: patch to fix endless loop on bridge interfaces

   net/lldpd: update to 1.0.21

   1.0.21 [2026-03-14 22:17:53 +0100]:

    - [25e90db27404] release: 1.0.21 (Vincent Bernat)
    - [8bee83920123] doc: be clearer about how to install on macOS (Vincent Bernat)
    - [18d8f3ef03ac] build: add a few more Docker platforms (Vincent Bernat)
    - [aa1bb6253375] build: fix hardcoded ghcr.io path (Vincent Bernat)
    - [479afbb6240d] daemon/priv: factor out check of authorized paths (Vincent Bernat)
    - [4c5dccc97efc] doc: fix libtool invocation (Vincent Bernat)
    - [5facaf317d4a] daemon: do not fallback to ioctl for wireless (Vincent Bernat)
    - [6093ce4b65bb] daemon: use /sys/class/net/.../wireless to check wireless interface (Vincent Bernat)
    - [753b81e060d3] daemon: only keep one privileged op to remove both socket and lock (Vincent Bernat)
    - [66d67e5d145b] daemon: fix arbitrary file deletion in the privileged process (Vincent Bernat)
    - [747113fa7ed1] client: fix compilation warning about unterminated strings (Vincent Bernat)
    - [bf772f3193a0] doc: add NEWS entry for latest commit (Vincent Bernat)
    - [375c60c1ffe7] interfaces: use ethtool link mode bits for accurate MAU type selection (#771) (Ciro Iriarte)
    - [dcb62ae78e89] daemon: fix path traversal vulnerability in asroot_iface_description_os() (Vincent Bernat)
    - [5e144270fde7] daemon: fix path traversal vulnerability in asroot_open() (Vincent Bernat)

    [68 lines not shown]

java/openjdk: Fix pkgsuffix for jre builds

java/openjdk25 and openjdk26 would use the same pkgsuffix when building
the jre FLAVOR, making the package names clash.

Reported by:    Antoine Brodin <antoine at freebsd.org>
Reviewed by:    fuz
Approved by:    fuz
Sponsored by:   The FreeBSD Foundation
Differential Revision:  https://reviews.freebsd.org/D56123

   doc: Updated devel/ocaml-dune-configurator to 3.22.0

   ocaml-dune-configurator: update to 3.22.0.

   See ocaml-dune.

   doc: Updated devel/ocaml-dune to 3.22.0

   ocaml-dune: update to 3.22.0.

   3.22.0 (2026-03-18)
   -------------------

   ### Fixed

   - `Dyn.to_string` now uses a smarter way to convert floats. This ensures that
     floats are printed with enough precision to round-trip and are valid OCaml
     lexemes. (#12982, fixes #12980, @Alizter)

   - Fix `dune install --prefix` failing with relative paths outside the workspace
     like `../foo` (#12993, fixes #12241, @benodiwal)

   - Place the default trace file inside the build directory at the
     workspace root, rather than relative to the current directory.
     (#13735, @vouillon)

   - Fixed interpreting relative paths in `%{bin:..}` and `%{bin-available:..}`.

    [195 lines not shown]

[Clang][NFC] Trivial relocation is no longer a c++26 feature

[MLIR][Vector] Fix crash in foldDenseElementsAttrDestInsertOp on poison index (#188508)

When a dynamic index of -1 (the kPoisonIndex sentinel) was folded into
the static position of a vector.insert op,
foldDenseElementsAttrDestInsertOp would proceed to call
calculateInsertPosition, which returned -1. The subsequent iterator
arithmetic (allValues.begin() + (-1)) was undefined behaviour, causing
an assertion in DenseElementsAttr::get.

Fix by bailing out early in foldDenseElementsAttrDestInsertOp when any
static position equals kPoisonIndex, consistent with how
InsertChainFullyInitialized already guards this case.

Fixes #188404

Assisted-by: Claude Code

devel/R-cran-tinytest: Update to 1.4.3

- Update WWW to the official CRAN page, as it provides more comprehensive
  documentation and metadata than the GitHub repository.

ChangeLog: https://cran.r-project.org/web/packages/tinytest/NEWS

math/R-cran-terra: Update to 1.9-11

Mark port as TESTING_UNSAFE

ChangeLog: https://cran.r-project.org/web/packages/terra/news/news.html

textproc/R-cran-rmarkdown: Update to 2.31

ChangeLog: https://cran.r-project.org/web/packages/rmarkdown/news/news.html

devel/aws-c-s3: Update to 0.12.0

ChangeLog: https://github.com/awslabs/aws-c-s3/releases/tag/v0.12.0

devel/aws-c-event-stream: Update to 0.7.0

ChangeLog:
        https://github.com/awslabs/aws-c-event-stream/releases/tag/v0.7.0
        https://github.com/awslabs/aws-c-event-stream/releases/tag/v0.6.1

devel/aws-crt-cpp: Update to 0.38.1

ChangeLog:
        https://github.com/awslabs/aws-crt-cpp/releases/tag/v0.38.1
        https://github.com/awslabs/aws-crt-cpp/releases/tag/v0.38.0

devel/R-cran-mlbench: Update to 2.1-8

ChangeLog: https://cran.r-project.org/web/packages/mlbench/NEWS

devel/aws-c-http: Update to 0.10.13

ChangeLog: https://github.com/awslabs/aws-c-http/releases/tag/v0.10.13

databases/sabiql: Update to 1.9.1

ChangeLog:      https://github.com/riii111/sabiql/releases/tag/v1.9.1
Reported by:    riii111 <notifications at github.com>

[Clang][NFC] Add the list of C++26 papers approved in Kona and Croydon

math/lean4: update 4.29.0-rc2 → 4.29.0

devel/py-sqlfluff: Update to 4.1.0

audio/waves: Update to 0.1.43

- Remove all patches (now included upstream)

ChangeLog:      https://github.com/llehouerou/waves/releases/tag/v0.1.43

misc/claude-code: update 2.1.84 → 2.1.86

textproc/jaq: update 2.3.0 → 3.0.0

shells/atuin: update 18.12.0 → 18.13.6

textproc/jsongrep: New port: Query language over JSON documents

sysutils/mise: update 2026.3.7 → 2026.3.17

www/py-primp: update 1.1.3 → 1.2.0

bind920: update to version 9.20.21.

Pkgsrc changes:
 * Update checksums

Upstream changes:

BIND 9.20.21
------------

Security Fixes
~~~~~~~~~~~~~~

- [CVE-2026-1519] Fix unbounded NSEC3 iterations when validating
  referrals to unsigned delegations. ``5af03a06066``

  DNSSEC-signed zones may contain high iteration-count NSEC3 records,
  which prove that certain delegations are insecure. Previously, a
  validating resolver encountering such a delegation processed these

    [52 lines not shown]

dup(2): document the handling of filedescriptor flags

Reviewed by:    markj
Sponsored by:   The FreeBSD Foundation
MFC after:      3 days
Differential revision:  https://reviews.freebsd.org/D56121