BSD Commit Log Search

Merge branch 'freebsd/main' into hardenedbsd/main

security/vuxml: Document TCP readTimeout bypass in traefik

net/traefik: Ensure the build uses go 1.25 or higher

editors/enter-tex: update to 3.49.0

Update to 3.49.0

  Release 3.49.0, 2026-01-03
  --------------------------

  Under the hood changes:
  * Adapt the code to the latest libgedit-gtksourceview API.

  Release 3.49.alpha2, 2025-11-17
  -------------------------------

  User-visible changes:
  * Find and Replace: add tooltips; adjust a margin.
  * Man-page: small improvements.

  Under the hood changes:
  * Find and Replace: rewrite the UI part in C in Gtex (GtexFindBar) as a first

    [27 lines not shown]

x11-toolkits/tepl6: update to 6.14.0

Update to 6.14.0

  News in 6.14.0, 2026-01-03
  --------------------------
  * Nothing new.

  News in 6.14.alpha2, 2025-11-17
  -------------------------------
  * New class: TeplStatusbar.
  * Translations updates.

  News in 6.14.alpha1, 2025-09-05
  -------------------------------
  * Add TeplCodeCommentView for the comment/uncomment feature.
  * Remove tepl_iter_*() function, moved to libgedit-gtksourceview.
  * TeplFileLoader: use libgedit-gfls.
  * Translations updates.

    [4 lines not shown]

x11-toolkits/libgedit-gtksourceview: update to 299.6.0

Update to 299.6.0

  News in 299.6.0, 2026-01-03
  ---------------------------

  Completion framework:
  * The GtkSourceCompletion class no longer implements the GtkBuildable interface.
  * GtkSourceCompletionProposal: various improvements.
  * GtkSourceCompletionItem:
    - Various improvements.
    - Remove all the properties.

  Microsoft Windows:
  * Fix compilation warnings.
  * Fix unit tests failures.

  Various gardening tasks:

    [85 lines not shown]

editors/gedit*: update to 49.0

Update to 49.0 for compatability with libgedit-gtksourceview 299.6.0.

  News in 49.0, 2026-01-03
  ------------------------

  * Metainfo data: add more infos to fix Flathub warnings.
  * Cleanup: remove BuildStream and Snap from build-aux/ (outdated).
  * Translation updates.

  News in 49.alpha2, 2025-11-17
  -----------------------------

  User-visible changes:
  * Add a max-file-size setting for document loading, fixing the common problem
    with very large files.
  * New symbolic app icon (to have a square one).
  * Statusbar: fix a bug with the language button popover.

    [52 lines not shown]

mail/mailpit: Update to 1.29.1

Merge branch 'freebsd/current/main' into hardened/current/master

Merge branch 'freebsd/main' into hardenedbsd/main

net-mgmt/zabbix74-server: Update to 7.4.7

Release notes:  https://www.zabbix.com/rn/rn7.4.7

net-mgmt/zabbix7-server: Update to 7.0.23

Release notes:  https://www.zabbix.com/rn/rn7.0.23

net-mgmt/zabbix6-server: Update to 6.0.44

Release notes:  https://www.zabbix.com/rn/rn6.0.44

security/vuxml: Add munge vulnerability

  * CVE-2026-25506

Reported by: Chris Dunlap <chris.m.dunlap at gmail.com>

security/vuxml: make newentry: Fix providers init.

An init fail shouldn't exit the script.
Initialize registered providers only.

Use successfully initialized providers only.

Keep euvd for now although it's been down for the last few days.

net/traefik: Update to upstream release 3.6.8

Details:
- Bugfix release, see
  https://github.com/traefik/traefik/releases/tag/v3.6.8
- Includes a fix for CVE-2026-25949, a potential DoS

MFH:            2026Q1
Security:       CVE-2026-25949

x11-wm/wlmaker: switch to wlroots020

x11-wm/wlmaker: update to 0.7.1

Changes:        https://github.com/phkaeser/wlmaker/releases/tag/v0.7.1
Reported by:    GitHub (watch releases)

x11-toolkits/wlroots020: update to 0.20.0.r2

Changes:        https://gitlab.freedesktop.org/wlroots/wlroots/-/releases/0.20.0-rc2
Reported by:    GitLab (notify releases)

www/chromium: update to 144.0.7559.75

Security:       https://vuxml.freebsd.org/freebsd/424d598b-09c4-11f1-85c5-a8a1599412c6.html

security/vuxml: add www/*chromium < 144.0.7559.75

Obtained from:  https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_13.html

cam/scsi: Restore scsi_start_stop() and add scsi_start_stop_pc()

Revert the argument change that broke libcam in 8c35de49 and move
power_condition support to scsi_start_stop_pc().

Reported by:            imp
Reviewed By:            #cam, imp (mentor)
Sponsored by:           Samsung Electronics
Differential Revision:  https://reviews.freebsd.org/D54822

(cherry picked from commit 8ef8c6abfadfc9eb0465ce57c6b09ca310415bdd)
Signed-off-by: Shawn Webb <shawn.webb at hardenedbsd.org>

blocklist: blacklist: Chase recent upstream changes

MFC after:      3 days

(cherry picked from commit a25b12c6ce63be1fefb31d14daca332682fd31fc)
Signed-off-by: Shawn Webb <shawn.webb at hardenedbsd.org>

net-mgmt/check_ssl_cert: update to 2.96.0

Release Notes:
  https://github.com/matteocorti/check_ssl_cert/releases/tag/v2.96.0

Vendor import of blocklist 2026-02-07 (10a907f)

Upstream hash 10a907f09f5a92068d86dcb4ef4f91d7bc10c501.

Obtained from:https://github.com/zoulasc/blocklist

(cherry picked from commit a39ba5e2935176fe982235556e46ba3f51178187)
Signed-off-by: Shawn Webb <shawn.webb at hardenedbsd.org>

netinet6: Return EAFNOSUPPORT for non-IPv6 addresses in mcast sockopts.

This is a non-functional change; it just returns the correct errno value
where IPv6 multicast socket options were passed non-AF_INET6 arguments,
in preparation for handling PR 193246 with a side-call into netinet as
xnu currently does.

Reviewed by:    glebius
Approved by:    glebius
PR:             193246 (with refinements)
Differential revision:  https://reviews.freebsd.org/D55233

x11-fonts/nerd-fonts: fix maintainer

I copied the wrong address by accident.

PR:             291929

mail/thunderbird-esr: update to 140.7.2 (rc1)

Release Notes:
  https://www.thunderbird.net/en-US/thunderbird/140.7.2esr/releasenotes/

mail/thunderbird: update to 147.0.2 (rc1)

Release Notes:
  https://www.thunderbird.net/en-US/thunderbird/147.0.2/releasenotes/

security/openssl-quictls: Remove expired port

2025-12-31 security/openssl-quictls: Upstream project has been archived, use security/quictls