szip: remove
libaec (BSD license) has replaced this (restrictive license),
upstream's homepage is gone, and the only user in pkgsrc had switched
to libaec already.
py-pyobjc: updated to 12.2.1
12.2.1
A number of test files were in a directory name
with lower-case letters where upper-case letters should have been
used. This only affects users checking out the repository on
systems with a case-sensitive filesystem.
Fix build error in the Quartz bindings when the SDK
is for macOS 15 or later and the build target is also macOS 15 or later.
Implement basic support for handling Swift classes that
have an Objective-C representation but are not subclasses of NSObject,
as used in the Network framework.
Avoid stupid macro name clash: m68k/include/reg.h defines R0 and R1
as the register offsets for returning values from functions in the.
These clash with local buffers R0 and R1 here.
Rename them to cookie_R0 and cookie_R1 to make all m68k ports build again.
autofs: rename sx lock description for am_lock
Rename am_lock description from autofslk -> autfsm.
The lock description, autofslk, is used as the description for
autofs_softc->sc_lock, which is used to protect autofs requests and the
like as opposed to am_lock which protects autofs nodes for a given
mount.
This change allows witness to distinguish different lock orders for each
lock.
Reviewed by: kib
Differential Revision: https://reviews.freebsd.org/D57972
ValueTracking: Improve frexp known range from dominating conditions
Try to restrict the known range of the exponent result of llvm.frexp
based on dominating conditions. Identify comparisons that imply the
incoming value cannot introduce an overflow in a downstream ldexp
use. This pattern appears in the implementation of some complex math
functions and allows finite only math to prune out more edge case
paths.
One attributor test for ldexp regresses due to the switch from
computeKnownBits to computeConstantRange. computeConstantRange
does not try to handle non-splat vector constants for the binary
operators.
As a side effect, this also improves knowing that ldexp can't
introduce overflow for the 0 case.
[lldb][docs] Document how to test specific layers (#205581)
This is motivated by the fact that we have the ability to test almost
any component of the debug session on its own, but it's hard to find
those tests.
If we put AI aside, you can't look for "test that lldb doesn't fault
when qProcessInfo
contains foo". Even though that is a thing we can test.
So in this change I'm adding a section to the testing docs with some
starting points that
people can search for.
It will be incomplete but we can add to it over time.
I will need someone to write the DAP part in a follow up PR, as I'm not
familiar with the layers there.
mvc: checkAndThrowValueInUse validate input token which may only contain alphanum and dashes
PR: GHSA-98h6-479q-9q3w
(cherry picked from commit d7054cef69f72588feac1091254960835be19dfe)
network time: fix stored XSS in GPS init string display
Squelch a PHP warning and change the way the default init
command string is used.
PR: GHSA-h793-67jm-j4m5
(cherry picked from commit ed04a154dc40967541be1388e9134e451be4199e)
openvpn: escape client common_name in connection-status views (stored XSS)
The OpenVPN connection-status widget and the connection-status page render
the client common_name into an HTML attribute (data-common-name /
data-common_name) without escaping the double quote, so a common_name
containing a quote breaks out of the attribute. With username-as-common-name
plus a RADIUS/LDAP backend the common_name is an attacker-chosen value.
Escape the quote before placing it in the attribute.
PR: GHSA-26cj-h9rj-g5pf
(cherry picked from commit e7b2ac8093f804bef8eb88dfa9a0d99fad00c12b)
src: configuration line injection via multiple GUI text fields
PR: GHSA-fq94-cxvc-9r7w
Co-authored-by: Franco Fichtner <franco at opnsense.org>
(cherry picked from commit 6c3be9a11699879fe50aea1c30e50de5864601d7)
py-pydantic-settings: updated to 2.14.2
2.14.2
This is a security patch release.
Prevent NestedSecretsSettingsSource from following symlinks outside secrets_dir