FreeBSD/ports bf8e91asecurity/vuxml/vuln 2026.xml

security/vuxml: Add Mozilla vulnerabilities

 * CVE-2026-5732:       NVD assessment not yet provided
 * CVE-2026-5733:       NVD assessment not yet provided
 * CVE-2026-5734:       Base Score:  9.8 CRITICAL
                        Vector:  CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
 * CVE-2026-5734:       Base Score:  9.8 CRITICAL
                        Vector:  CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
DeltaFile
+150-0security/vuxml/vuln/2026.xml
+150-01 files

FreeBSD/ports b7042a0net-im/gajim Makefile distinfo

net-im/gajim: update to 2.4.5; sort depends
DeltaFile
+6-6net-im/gajim/Makefile
+3-3net-im/gajim/distinfo
+9-92 files

FreeBSD/ports 8318a3csecurity/wolfssl Makefile, security/wolfssl/files patch-configure.ac patch-cmake_options.h.in

security/wolfssl: Fix 32-bit builds.

Add upstream patch for the fix, until changes are merged and
a new release is made.

PR:             294287
Reported by:    Robert Clausecker <fuz at FreeBSD.org>
Reviewed by:    Robert Clausecker <fuz at FreeBSD.org>
Tested by:      Robert Clausecker <fuz at FreeBSD.org>
DeltaFile
+16-0security/wolfssl/files/patch-configure.ac
+15-0security/wolfssl/files/patch-cmake_options.h.in
+15-0security/wolfssl/files/patch-cmake_config.in
+2-1security/wolfssl/Makefile
+48-14 files

FreeBSD/ports 9d8a393sysutils/grub2-bhyve Makefile, sysutils/grub2-bhyve/files patch-ext2.c

sysutils/grub2-bhyve: Add support for additional EXT4 incompatible features

Handle the following EXT4 incompatible features:

EXT4_FEATURE_INCOMPAT_MMP (Multi-Mount Protection)
Prevents multiple read-write mounts of the same filesystem.
Since grub2-bhyve mounts filesystems read-only, it is safe to ignore.

EXT4_FEATURE_INCOMPAT_CSUM_SEED
Allows tools such as tune2fs to change the UUID on a mounted
metadata-checksummed filesystem. Safe to ignore because the
driver does not perform checksum verification.

EXT4_FEATURE_INCOMPAT_LARGEDIR
Enables directories larger than 2GB and 3-level htrees.
Safe to ignore because the GRUB ext2 driver does not implement
DIR_INDEX.

This patch mirrors upstream behavior. It unblocks booting from

    [5 lines not shown]
DeltaFile
+42-0sysutils/grub2-bhyve/files/patch-ext2.c
+1-1sysutils/grub2-bhyve/Makefile
+43-12 files

FreeBSD/ports da2d5e2databases/py-sqlmodel Makefile distinfo

databases/py-sqlmodel: Update to 0.0.38

Changelog: https://github.com/fastapi/sqlmodel/blob/0.0.38/docs/release-notes.md

Reported by:    portscout
DeltaFile
+5-5databases/py-sqlmodel/Makefile
+3-3databases/py-sqlmodel/distinfo
+8-82 files

FreeBSD/ports 4ef829fwww/py-google-api-python-client distinfo Makefile

www/py-google-api-python-client: Update to 2.194.0

ChangeLog:      https://github.com/googleapis/google-api-python-client/releases/tag/v2.194.0
Reported by:    "release-please[bot]" <notifications at github.com>
DeltaFile
+3-3www/py-google-api-python-client/distinfo
+1-1www/py-google-api-python-client/Makefile
+4-42 files

FreeBSD/ports d68297cMk bsd.default-versions.mk

Mk/bsd.default-versions.mk: stick to OpenJDK 11 on powerpc too

Newer versions require too big stack to build natively.
DeltaFile
+1-1Mk/bsd.default-versions.mk
+1-11 files

FreeBSD/ports 2f16e2fsysutils/beats8 Makefile, sysutils/beats91 Makefile

sysutils/beats*: Mark as not for arch i386

MFH:    2026Q2
(cherry picked from commit 3d572ac39d0f36d654c2d5e6f1db8ac7077331ec)
DeltaFile
+2-0sysutils/beats8/Makefile
+2-0sysutils/beats91/Makefile
+2-0sysutils/beats92/Makefile
+2-0sysutils/beats93/Makefile
+8-04 files

FreeBSD/ports 821f1e0java/java3d/files patch-freebsd patch-j3d-core_src_native_ogl_build-freebsd.xml

java/java3d: split combined patches

Redo make makepatch to have "modern" port patches.
No functional change intended.

Approved-by:    no maintainer
DeltaFile
+0-176java/java3d/files/patch-freebsd
+77-0java/java3d/files/patch-j3d-core_src_native_ogl_build-freebsd.xml
+0-50java/java3d/files/patch-ImageComponentState.java
+49-0java/java3d/files/patch-j3d-core-utils_src_classes_share_com_sun_j3d_utils_scenegraph_io_state_javax_media_j3d_ImageComponentState.java
+48-0java/java3d/files/patch-j3d-core_src_native_build.xml
+28-0java/java3d/files/patch-j3d-core_build.xml
+202-2261 files not shown
+221-2267 files

FreeBSD/ports cf5a0fclang/python-doc-html distinfo, lang/python313 pkg-plist distinfo

lang/python313: update to 3.13.13

Changelog: https://docs.python.org/3.13/whatsnew/changelog.html#python-3-13-13-final
DeltaFile
+9-5lang/python313/pkg-plist
+3-7lang/python313/distinfo
+5-5lang/python-doc-html/distinfo
+0-3lang/python313/Makefile
+1-1lang/python313/Makefile.version
+18-215 files

FreeBSD/ports 26ef693net-mgmt/kf6-networkmanager-qt Makefile

net-mgmt/kf6-networkmanager-qt: Clean up port

- Drop License block, kf6 ports share LICENSE via Uses/kde.mk
- Add missing dependencies
- Remove unused dependencies
DeltaFile
+5-16net-mgmt/kf6-networkmanager-qt/Makefile
+5-161 files

FreeBSD/ports 068d0dfdatabases/cego distinfo Makefile, devel/lfcbase distinfo Makefile

devel/lfcbase,databases/cego: 1.23.3 -> 1.23.5, 2.54.16 -> 2.54.23

lfcbase:
- Improved error message for File::open with strerror details added
- In File::operator = and File:operator +=, after file copy operation,
  source file descriptor was not closed.
  This might lead to file descriptor leaks.

cego:
- Many fixes for crash recovery and startup, write logs, etc.
DeltaFile
+3-3devel/lfcbase/distinfo
+3-3databases/cego/distinfo
+1-1devel/lfcbase/Makefile
+1-1databases/cego/Makefile
+8-84 files

FreeBSD/ports 86aef58www/deno/files patch-cargo-crates_libuv-sys-lite

www/deno: proper fix for llvm22 binding problem

This was fixed with bindgen > 0.70.1 (I don't kwown the exact version)

PR:             293587
Tested by:      Philippe Michel, Oleg Sidorkin
Fixes:          e330aefa238248ff5ab18671061c4f8221f9f188
DeltaFile
+34-7,399www/deno/files/patch-cargo-crates_libuv-sys-lite
+34-7,3991 files

FreeBSD/ports 512b85dtextproc/oyo distinfo Makefile.crates

textproc/oyo: Update to 0.1.30

ChangeLog:

  - https://github.com/ahkohd/oyo/releases/tag/v0.1.25
  - https://github.com/ahkohd/oyo/releases/tag/v0.1.26
  - https://github.com/ahkohd/oyo/releases/tag/v0.1.27
  - https://github.com/ahkohd/oyo/releases/tag/v0.1.28
  - https://github.com/ahkohd/oyo/releases/tag/v0.1.29
  - https://github.com/ahkohd/oyo/releases/tag/v0.1.30

Reported by:    portscout!
DeltaFile
+133-147textproc/oyo/distinfo
+66-73textproc/oyo/Makefile.crates
+4-3textproc/oyo/Makefile
+203-2233 files

FreeBSD/ports b327765audio/pt2-clone distinfo Makefile

audio/pt2-clone: Update to 1.87
DeltaFile
+3-3audio/pt2-clone/distinfo
+1-1audio/pt2-clone/Makefile
+4-42 files

FreeBSD/ports 46a9025security/vuxml/vuln 2026.xml

security/vuxml: Update URL in latest OpenSSL vulns
DeltaFile
+2-2security/vuxml/vuln/2026.xml
+2-21 files

FreeBSD/ports 725535cjava/jcalendar Makefile, java/jcalendar/files patch-build.xml

java/jcalendar: unpin openjdk8

Builds fine with modern JDK.

Approved-by:    no maintainer
DeltaFile
+10-0java/jcalendar/files/patch-build.xml
+1-2java/jcalendar/Makefile
+11-22 files

FreeBSD/ports 6a6eca9java/jgraphx Makefile, java/jgraphx/files patch-build.xml

java/jgraphx: unpin openjdk8

Builds fine with modern JDK.
Dependency math/scilab uses openjdk8 so this needs to generate
Java 8 compatible class files.

Approved-by:    no maintainer
DeltaFile
+30-0java/jgraphx/files/patch-build.xml
+1-2java/jgraphx/Makefile
+31-22 files

FreeBSD/ports ac3df5cdevel/gitaly distinfo, net/gitlab-agent distinfo

www/gitlab: security and patch update to 18.10.3

Changes:        https://about.gitlab.com/releases/2026/04/08/patch-release-gitlab-18-10-3-released/
Security:       099d4998-33cc-11f1-a7d1-2cf05da270f3
DeltaFile
+13-13devel/gitaly/distinfo
+6-6www/gitlab/distinfo
+5-5www/gitlab-pages/distinfo
+5-5www/gitlab-workhorse/distinfo
+5-5net/gitlab-agent/distinfo
+1-1www/gitlab/Makefile.common
+35-356 files

FreeBSD/ports a6b92casysutils/go-ntfy distinfo Makefile

sysutils/go-ntfy: Update to 2.21.0

ChangeLogs:

- https://github.com/binwiederhier/ntfy/releases/tag/v2.20.1
- https://github.com/binwiederhier/ntfy/releases/tag/v2.21.0
DeltaFile
+7-7sysutils/go-ntfy/distinfo
+2-2sysutils/go-ntfy/Makefile
+9-92 files

FreeBSD/ports 2092162audio/ft2-clone distinfo Makefile

audio/ft2-clone: Update to 2.14
DeltaFile
+3-3audio/ft2-clone/distinfo
+1-1audio/ft2-clone/Makefile
+4-42 files

FreeBSD/ports f47fb0cnet/krakend-ce distinfo Makefile

net/krakend-ce: Update 2.13.3 => 2.13.4

Approved by:            db@, yuri@ (Mentors, implicit)
DeltaFile
+5-5net/krakend-ce/distinfo
+1-1net/krakend-ce/Makefile
+6-62 files

FreeBSD/ports 3577d03security/vuxml/vuln 2026.xml

security/vuxml: document gitlab vulnerabilities
DeltaFile
+51-0security/vuxml/vuln/2026.xml
+51-01 files

FreeBSD/ports d4a4f6dfilesystems/ltfs distinfo Makefile

filesystems/ltfs: Update to 2.4.8.3
DeltaFile
+5-3filesystems/ltfs/distinfo
+4-3filesystems/ltfs/Makefile
+9-62 files

FreeBSD/ports f1a045edatabases/timescaledb distinfo pkg-plist

databases/timescaledb: Update to 2.26.2
DeltaFile
+3-3databases/timescaledb/distinfo
+3-0databases/timescaledb/pkg-plist
+1-1databases/timescaledb/Makefile
+7-43 files

FreeBSD/ports 986e813sysutils/screen-devel distinfo

sysutils/screen-devel: Update distfile

When unpacking the tarballs there is no material difference between the
old and the new files. Additionally, there is no difference when
comparing the two tarballs after unzipping the .gz files. One must
conclude the files are compressed differently as the new .gz file is 4K
smaller then the previous file.

(cherry picked from commit 7fd033436f0ef341f70e8592fa741d5b92b27fd9)
DeltaFile
+3-3sysutils/screen-devel/distinfo
+3-31 files

FreeBSD/ports 396cd62x11/cde Makefile, x11/cde-devel Makefile

x11/cde*: Work around bus errors and looping CDE apps

-O2 optimization is too aggressive for CDE. Scaling it back to -O
eliminates bus errors on some systems and dtcalc looping with the
error, *** M .LE. T IN CALL TO MPCHK.

Reported by:    Jeremy Doolin <jrdoolin at pm.me>

(cherry picked from commit fa43a93555ef08544bc2139af3411e00797c70dd)
DeltaFile
+2-1x11/cde-devel/Makefile
+2-1x11/cde/Makefile
+4-22 files

FreeBSD/ports 7fd0334sysutils/screen-devel distinfo

sysutils/screen-devel: Update distfile

When unpacking the tarballs there is no material difference between the
old and the new files. Additionally, there is no difference when
comparing the two tarballs after unzipping the .gz files. One must
conclude the files are compressed differently as the new .gz file is 4K
smaller then the previous file.

MFH:    2026Q2
DeltaFile
+3-3sysutils/screen-devel/distinfo
+3-31 files

FreeBSD/ports eb713afgames/veloren-weekly distinfo Makefile

games/veloren-weekly: update to s20260408

Changes:        https://gitlab.com/veloren/veloren/-/compare/1c0a37f006...308212a458
(cherry picked from commit d2205e2f43af61c3c16a911da92e69728a089ec9)
DeltaFile
+3-3games/veloren-weekly/distinfo
+2-2games/veloren-weekly/Makefile
+5-52 files

FreeBSD/ports 380934cdevel/xdg-dbus-proxy distinfo Makefile

devel/xdg-dbus-proxy: update to 0.1.7

Changes:        https://github.com/flatpak/xdg-dbus-proxy/releases/tag/0.1.7
Reported by:    GitHub (watch releases)

(cherry picked from commit db7a86a296ae21881efff528f8a62d3fc8d123be)
DeltaFile
+3-3devel/xdg-dbus-proxy/distinfo
+1-1devel/xdg-dbus-proxy/Makefile
+4-42 files