BSD Commit Log Search

editors/vim: Update to 9.2.0461

net-mgmt/nagios4: Update 4.5.11 => 4.5.12

Changelog:
- Fix vulnerabilities in CSRF cookie (Thanks SeungMyung Lee) (Emmett
  Kapsner)
- Fix runcmd compile error by replacing maxfd macro with a static
  variable (Leon Adomaitis)
https://www.nagios.org/projects/nagios-core/4x/

PR:             295118
Sponsored by:   UNIS Labs
MFH:            2026Q2

(cherry picked from commit 8665ef45d3ab45220480eb00d733859873a042dc)

net-mgmt/nagios4: Update 4.5.11 => 4.5.12

Changelog:
- Fix vulnerabilities in CSRF cookie (Thanks SeungMyung Lee) (Emmett
  Kapsner)
- Fix runcmd compile error by replacing maxfd macro with a static
  variable (Leon Adomaitis)
https://www.nagios.org/projects/nagios-core/4x/

PR:             295118
Sponsored by:   UNIS Labs
MFH:            2026Q2

various: Bump ports for Go 1.26.3

various: Bump ports for Go 1.25.10

lang/go126: Update to 1.26.3

Changes:
  go1.26.3 (released 2026-05-07) includes security fixes to the go
  command, the pack tool, and the html/template, net, net/http,
  net/http/httputil, net/mail, and syscall packages, as well as bug
  fixes to the go command, the go fix command, the compiler, the
  linker, the runtime, and the crypto/fips140, crypto/tls, go/types,
  and os packages.

PR:             295109
(cherry picked from commit a1a9e8436588ae8f6cafd9b0706604da9c0820ce)

lang/go125: Update to 1.25.10

Changes:
  go1.25.10 (released 2026-05-07) includes security fixes to the go
  command, the pack tool, and the html/template, net, net/http,
  net/http/httputil, net/mail, and syscall packages, as well as bug
  fixes to the go command, the compiler, the linker, the runtime, and
  the crypto/fips140, go/types, and os packages.
(cherry picked from commit 0e58c00532afef4be3831374ccccd07bf428543c)

various: Bump ports for Go 1.25.10

various: Bump ports for Go 1.26.3

www/freenginx-devel: update: 1.30.0 -> 1.31.0

Sponsored by:   tipi.work

<ChangeLog>

*) Change: now the "try_files" directive can be used with arguments
   starting with the request URI inside a location given by a regular
   expression, along with the "alias" directive.

*) Bugfix: the "try_files" directive might work incorrectly when used
   with the "alias" directive.

*) Bugfix: a segmentation fault might occur in a worker process if the
   "try_files" and "proxy_pass" directives were used together.

*) Bugfix: the "proxy_pass" directive without a URI part might use the
   original request URI after the URI was changed by the "try_files"
   directive.

    [7 lines not shown]

www/freenginx-acme: update: 0.4.0 -> 0.4.1

ChangeLog:      https://github.com/nginx/nginx-acme/compare/v0.4.0...v0.4.1

Sponsored by:   tipi.work

www/dooble: Fix build on 16-CURRENT

In file included from Source/dooble_charts_file.cc:30:
In file included from /usr/local/include/qt6/QtQml/QJSEngine:1:
In file included from /usr/local/include/qt6/QtQml/qjsengine.h:12:
/usr/local/include/qt6/QtCore/qtimezone.h:85:9: error: '= delete' with a message is a C++2c extension [-Werror,-Wc++26-extensions]
   85 |         "Would be treated as int offsetSeconds. "
      |         ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   86 |         "Use QTimeZone::UTC or QTimeZone::LocalTime instead.");
      |         ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
/usr/local/include/qt6/QtCore/qcompilerdetection.h:1041:49: note: expanded from macro 'Q_DECL_EQ_DELETE_X'
 1041 | #    define Q_DECL_EQ_DELETE_X(reason) = delete(reason)
      |                                                 ^~~~~~

PR:             295116
Reported by:    pkg-fallout
Sponsored by:   UNIS Labs
MFH:            2026Q2

(cherry picked from commit ce86bc65f1a6f19fb2861f03f1c902efd45f067c)

www/dooble: Fix build on 16-CURRENT

In file included from Source/dooble_charts_file.cc:30:
In file included from /usr/local/include/qt6/QtQml/QJSEngine:1:
In file included from /usr/local/include/qt6/QtQml/qjsengine.h:12:
/usr/local/include/qt6/QtCore/qtimezone.h:85:9: error: '= delete' with a message is a C++2c extension [-Werror,-Wc++26-extensions]
   85 |         "Would be treated as int offsetSeconds. "
      |         ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
   86 |         "Use QTimeZone::UTC or QTimeZone::LocalTime instead.");
      |         ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
/usr/local/include/qt6/QtCore/qcompilerdetection.h:1041:49: note: expanded from macro 'Q_DECL_EQ_DELETE_X'
 1041 | #    define Q_DECL_EQ_DELETE_X(reason) = delete(reason)
      |                                                 ^~~~~~

PR:             295116
Reported by:    pkg-fallout
Sponsored by:   UNIS Labs
MFH:            2026Q2

lang/go126: Update to 1.26.3

Changes:
  go1.26.3 (released 2026-05-07) includes security fixes to the go
  command, the pack tool, and the html/template, net, net/http,
  net/http/httputil, net/mail, and syscall packages, as well as bug
  fixes to the go command, the go fix command, the compiler, the
  linker, the runtime, and the crypto/fips140, crypto/tls, go/types,
  and os packages.

PR:             295109

lang/go125: Update to 1.25.10

Changes:
  go1.25.10 (released 2026-05-07) includes security fixes to the go
  command, the pack tool, and the html/template, net, net/http,
  net/http/httputil, net/mail, and syscall packages, as well as bug
  fixes to the go command, the compiler, the linker, the runtime, and
  the crypto/fips140, go/types, and os packages.

databases/R-cran-RSQLite: Update from 2.4.0 to 2.4.6

This update fixes a build failure with math/R 4.6.0.  R 4.6.0 switched
the default C++ standard to C++20.  This exposed an issue in the plogr
dependency (plog/Record.h).  Upstream resolves this in 2.4.6 by removing
the plogr dependency entirely.  The bundled SQLite was also updated from
3.50.0 to 3.51.2.

Release notes:  https://github.com/r-dbi/RSQLite/releases/tag/v2.4.6
Differential Revision:  https://reviews.freebsd.org/D56194

devel/R-cran-checkmate: Update to 2.3.4 and add TEST_DEPENDS

Version 2.3.2 failed to build against math/R 4.6.0 because it was
calling Rf_isFrame, a non-API function that was removed in R 4.6.0.
Version 2.3.3 fixed this by dropping usage of isFrame(), and version
2.3.4 removed further deprecated calls to internal R functions.

Release notes:  https://github.com/mllg/checkmate/releases/tag/v2.3.3
                https://github.com/mllg/checkmate/releases/tag/v2.3.4
PR:             294423
Approved by:    maintainer timeout, implicit build fix
Differential Revision:  https://reviews.freebsd.org/D56193

science/py-abipy: update 0.9.8 → 1.0.0

misc/ollama: update 0.23.1 → 0.23.2

science/py-pymatgen: Fix dependency

math/cadabra2: update 2.5.8 → 2.5.14.p1

misc/github-copilot-cli: update 1.0.43 → 1.0.44

net/traefik: Update to upstream release 3.6.16

Details:
- Bugfix release, see
  https://github.com/traefik/traefik/releases/tag/v3.6.16

MFH:            2026Q2
(cherry picked from commit ded1bd1c63fedb9b59cc1bdf84143b5a0404ce48)

www/ulfius: Fix build on i386

(cherry picked from commit c721aff9fb4d57bc5fa19bd2da6332e5a49eb302)

math/octave-forge-nan: Update to 3.7.2.

graphics/R-cran-GDD: Fix build against math/R 4.6.0

R 4.6.0 removed the declaration of Rf_gsetVar from its installed
headers.  Add a patch to replace the call to gsetVar() in GDD.c with
Rf_setVar(), making the implicit assignment to R_GlobalEnv explicit.

Sponsored by:   The FreeBSD Foundation
Differential Revision:  https://reviews.freebsd.org/D56905

net/nats-server: Update to 2.14.0

devel/tinycbor: Fix test with Qt6 installed

PR:             294263
Reported by:    diizzy

x11/wapanel: Mark BROKEN and set EXPIRATION_DATE to 2026-06-30

graphics/rubygem-gruff: Update to 0.31.0

Changes:        https://github.com/topfunky/gruff/blob/master/CHANGELOG.md