HardenedBSD/ports ffb8c3esecurity/vuxml/vuln 2025.xml, sysutils/pfstat/files patch-pf.c

by HardenedBSD Sync Services on ⎇
Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+765-0textproc/py-typst/distinfo
+381-0textproc/py-typst/Makefile.crates
+5-185www/oauth2-proxy/distinfo
+5-98www/oauth2-proxy/Makefile
+94-0security/vuxml/vuln/2025.xml
+50-0sysutils/pfstat/files/patch-pf.c
+1,300-28374 files not shown
+2,008-40880 files

HardenedBSD/ports 4e0f2e4misc/qt6ct Makefile

by Jason E. Hale (jhale) on ⎇
misc/qt6ct: Remove extra '/'

There shouldn't be a '/' between ${STAGEDIR} and ${DOCSDIR}
DeltaFile
+2-2misc/qt6ct/Makefile
+2-21 files

HardenedBSD/ports c2d3b75misc/qt5ct Makefile distinfo

by Jason E. Hale (jhale) on ⎇
misc/qt5ct: Update to 1.9
DeltaFile
+8-13misc/qt5ct/Makefile
+3-3misc/qt5ct/distinfo
+1-1misc/qt5ct/pkg-plist
+12-173 files

HardenedBSD/ports c38f11adevel/ninja distinfo Makefile

by Jason E. Hale (jhale) on ⎇
devel/ninja: Update to 1.13.2

Minor bugfix release.

https://github.com/ninja-build/ninja/releases/tag/v1.13.2
DeltaFile
+3-3devel/ninja/distinfo
+1-1devel/ninja/Makefile
+4-42 files

HardenedBSD/ports d774872multimedia/qt6-multimedia/files patch-src_multimedia_pipewire_qpipewire__propertydict.cpp patch-src_multimedia_pipewire_qpipewire__support.cpp

by Jason E. Hale (jhale) on ⎇
multimedia/qt6-multimedia: Fix build on i386

Reported by:    pkg-fallout
DeltaFile
+16-0multimedia/qt6-multimedia/files/patch-src_multimedia_pipewire_qpipewire__propertydict.cpp
+16-0multimedia/qt6-multimedia/files/patch-src_multimedia_pipewire_qpipewire__support.cpp
+2-2multimedia/qt6-multimedia/files/patch-src_plugins_multimedia_ffmpeg_CMakeLists.txt
+34-23 files

HardenedBSD/ports 7223b7asecurity/vuxml/vuln 2025.xml

by Fernando Apesteguía (fernape) on ⎇
security/vuxml: Add smb4k vulnerabilities

* CVE-2025-66002
* CVE-2025-66003
DeltaFile
+39-0security/vuxml/vuln/2025.xml
+39-01 files

HardenedBSD/ports fc9271escience/afni distinfo Makefile

by Fernando Apesteguía (fernape) on ⎇
science/afni: Update to 25.3.04
DeltaFile
+3-3science/afni/distinfo
+1-1science/afni/Makefile
+4-42 files

HardenedBSD/ports 01361a0www/gohugo distinfo Makefile

by Fernando Apesteguía (fernape) on ⎇
www/gohugo: Update to 0.153.1

ChangeLog: https://github.com/gohugoio/hugo/releases/tag/v0.153.0

Bug fixes

 * Fix some outdated front matter
 * Fix server rebuilds on editing content with Chinese terms
 * Fix slow server startup of very big content trees
 * github: Fix "no space left on device" issue in CI
 * docs: Fix link to CGO wiki page
 * Fix grammatical error in styleguide.md
 * hugolib: Fix recently introduced data race
 * docshelper: Fix some YAML serialization issues with sites matrix configuration
 * resources/page: Fix slugorcontentbasename for section pages
 * all: Fix some benchmarks broken by modernize
 * all: Run modernize -fix ./...

Improvements

    [73 lines not shown]
DeltaFile
+5-5www/gohugo/distinfo
+1-2www/gohugo/Makefile
+6-72 files

HardenedBSD/ports 407f4c4devel/libphonenumber distinfo Makefile

by Jason E. Hale (jhale) on ⎇
devel/libphonenumber: Update to 9.0.21
DeltaFile
+3-3devel/libphonenumber/distinfo
+1-1devel/libphonenumber/Makefile
+4-42 files

HardenedBSD/ports d6f8b04audio/mac distinfo Makefile

by Jason E. Hale (jhale) on ⎇
audio/mac: Update to 11.90

https://www.monkeysaudio.com/versionhistory.html
DeltaFile
+3-3audio/mac/distinfo
+1-1audio/mac/Makefile
+4-42 files

HardenedBSD/ports 7ea0b0dwww/gallery-dl distinfo Makefile

by Jan Beich (jbeich) on ⎇
www/gallery-dl: update to 1.31.1

Changes:        https://github.com/mikf/gallery-dl/releases/tag/v1.31.1
Reported by:    GitHub (watch releases)
DeltaFile
+3-3www/gallery-dl/distinfo
+1-1www/gallery-dl/Makefile
+4-42 files

HardenedBSD/ports 5e9c7f7Mk/Uses pyqt.mk, devel/py-sip distinfo Makefile

by Jason E. Hale (jhale) on ⎇
devel/py-sip: Update to 6.15.1

https://python-sip.readthedocs.io/en/stable/releases.html#v6-15-1
DeltaFile
+3-13devel/py-sip/distinfo
+0-8devel/py-sip/Makefile
+1-1Mk/Uses/pyqt.mk
+4-223 files

HardenedBSD/ports 145a88bwww/oauth2-proxy distinfo Makefile, www/oauth2-proxy/files patch-go.mod

by Jesús Daniel Colmenares Oviedo (dtxdf) on ⎇
www/oauth2-proxy: Update to 7.13.0

* Take maintainership.

ChangeLogs: https://github.com/oauth2-proxy/oauth2-proxy/compare/v7.8.0...v7.13.0

PR:             291807
Approved by:    freebsd at rheinwolf.de (maintainer)
MFH:            2025Q4
Security:       CVE-2024-34156
Security:       CVE-2024-45336
Security:       CVE-2024-45341
Security:       CVE-2025-0913
Security:       CVE-2025-4673
Security:       CVE-2025-22866
Security:       CVE-2025-22870
Security:       CVE-2025-22871
Security:       CVE-2025-22872
Security:       CVE-2025-27144

    [7 lines not shown]
DeltaFile
+5-185www/oauth2-proxy/distinfo
+5-98www/oauth2-proxy/Makefile
+0-10www/oauth2-proxy/files/patch-go.mod
+10-2933 files

HardenedBSD/ports 61c62d3x11-fonts Makefile, x11-fonts/py-rendercv-fonts Makefile distinfo

by Jesús Daniel Colmenares Oviedo (dtxdf) on ⎇
x11-fonts/py-rendercv-fonts: New port: Some fonts for RenderCV

rendercv-fonts is a python package with some fonts for the rendercv
package.
DeltaFile
+21-0x11-fonts/py-rendercv-fonts/Makefile
+9-0x11-fonts/py-rendercv-fonts/files/patch-pyproject.toml
+3-0x11-fonts/py-rendercv-fonts/distinfo
+2-0x11-fonts/py-rendercv-fonts/pkg-descr
+1-0x11-fonts/Makefile
+36-05 files

HardenedBSD/ports 603ff0atextproc/py-typst distinfo Makefile.crates, textproc/py-typst/files patch-Cargo.lock patch-Cargo.toml

by Jesús Daniel Colmenares Oviedo (dtxdf) on ⎇
textproc/py-typst: New port: Python binding to typst

Python binding to typst, a new markup-based typesetting system that
is powerful and easy to learn.
DeltaFile
+765-0textproc/py-typst/distinfo
+381-0textproc/py-typst/Makefile.crates
+27-0textproc/py-typst/Makefile
+26-0textproc/py-typst/files/patch-Cargo.lock
+12-0textproc/py-typst/files/patch-Cargo.toml
+2-0textproc/py-typst/pkg-descr
+1,213-01 files not shown
+1,214-07 files

HardenedBSD/ports 9056347sysutils/py-rendercv Makefile, sysutils/py-rendercv/files patch-src_rendercv_schema_models_cv_section.py patch-src_rendercv_schema_variant__pydantic__model__generator.py

by Jesús Daniel Colmenares Oviedo (dtxdf) on ⎇
sysutils/py-rendercv: New port: Typst-based CV/resume generator

RenderCV is a python tool for creating a CV from YAML.

Write your CV or resume as YAML, then run RenderCV, and get a PDF
with perfect typography. No template wrestling. No broken layouts.
Consistent spacing, every time.
DeltaFile
+46-0sysutils/py-rendercv/files/patch-src_rendercv_schema_models_cv_section.py
+43-0sysutils/py-rendercv/Makefile
+38-0sysutils/py-rendercv/files/patch-src_rendercv_schema_variant__pydantic__model__generator.py
+23-0sysutils/py-rendercv/files/patch-src_rendercv_schema_models_design_classic__theme.py
+22-0sysutils/py-rendercv/files/patch-src_rendercv_schema_models_design_built__in__design.py
+22-0sysutils/py-rendercv/files/patch-src_rendercv_schema_models_locale_locale.py
+194-012 files not shown
+341-018 files

HardenedBSD/ports 64161a4security/vuxml/vuln 2025.xml

by Fernando Apesteguía (fernape) on ⎇
security/vuxml: Add firefox vulnerabilities

 * CVE-2025-14860
 * CVE-2025-14861
DeltaFile
+55-0security/vuxml/vuln/2025.xml
+55-01 files

HardenedBSD/ports 060b82bbiology/vsearch/files patch-src_arch.cc

by Jason W. Bacon (jwb) on ⎇
biology/vsearch: Add patch for FreeBSD 16

Resolve collision with symbol "memalignment"

Reported by:    pkg-fallout
DeltaFile
+32-0biology/vsearch/files/patch-src_arch.cc
+32-01 files

HardenedBSD/ports 4342f96textproc/libmrss Makefile distinfo

by Julian Weigt via Vladimir Druzenko (vvd) on ⎇
textproc/libmrss: Update 0.19.2 => 0.19.4, take maintainership

Changelog:
https://github.com/bakulf/libmrss/blob/0.19.4/ChangeLog

Improve port:
- Upstream moved to GitHub.
- Replace CPPFLAGS and LDFLAGS with USES+=localbase.
- Replace PORTVERSION with DISTVERSION.
- Fix warnings from portclippy.

PR:             291664
Co-authored-by: Vladimir Druzenko <vvd at FreeBSD.org>
DeltaFile
+9-11textproc/libmrss/Makefile
+3-2textproc/libmrss/distinfo
+1-1textproc/libmrss/pkg-plist
+13-143 files

HardenedBSD/ports 7d3ebf5sysutils/py-hcloud distinfo Makefile

by Matthew Seaman (matthew) on ⎇
sysutils/py-hcloud: update to 2.13.0

Changes:        https://github.com/hetznercloud/hcloud-python/blob/v2.13.0/CHANGELOG.md
Reported by:    portscout
DeltaFile
+3-3sysutils/py-hcloud/distinfo
+1-1sysutils/py-hcloud/Makefile
+4-42 files

HardenedBSD/ports 77e9827filesystems/nbt Makefile

by WHR via Vladimir Druzenko (vvd) on ⎇
filesystems/nbt: Update maintainer email address

PR:     291834
DeltaFile
+1-1filesystems/nbt/Makefile
+1-11 files

HardenedBSD/ports fb5d151graphics/qgis distinfo Makefile

by Rainer Hurling (rhurlin) on ⎇
graphics/qgis: Update to 3.44.6

Changelog:      https://github.com/qgis/QGIS/compare/final-3_44_5%5E...final-3_44_6

Reported by:    portscout, Repology
MFH:            2025Q4
DeltaFile
+3-3graphics/qgis/distinfo
+1-2graphics/qgis/Makefile
+4-52 files

HardenedBSD/ports c701d68sysutils/pfstat Makefile, sysutils/pfstat/files patch-pf.c

by Simon Wollwage via Vladimir Druzenko (vvd) on ⎇
sysutils/pfstat: Fix build on FreeBSD 15, take maintainership

pf.c:174:16: error: use of undeclared identifier 'DIOCGETSTATUS'
  174 |         if (ioctl(fd, DIOCGETSTATUS, &s)) {
      |                       ^

Improve port:
- Replace PORTVERSION with DISTVERSION.
- Remove legacy unnecessary MAKE_ARGS and REINPLACE_CMD.
- Replace REINPLACE_CMD in pf.c with CFLAGS+=-I/usr/include/net.
- Reduce number of INSTALL_* calls in do-install.

PR:             291607
MFH:            2025Q4
Co-authored-by: David Marec <david.marec at proton.me>
Co-authored-by: Vladimir Druzenko <vvd at FreeBSD.org>
DeltaFile
+50-0sysutils/pfstat/files/patch-pf.c
+11-13sysutils/pfstat/Makefile
+61-132 files

HardenedBSD/ports 614440enet/uvgrtp Makefile pkg-plist, net/uvgrtp/files patch-CMakeLists.txt patch-src_socket.hh

by Alexey Dokuchaev (danfe) on ⎇
net/uvgrtp: new port had been added (+)

Open-source C++ library for RTP/SRTP media delivery

WWW: https://ultravideo.fi/uvgrtp.html
DeltaFile
+24-0net/uvgrtp/Makefile
+20-0net/uvgrtp/files/patch-CMakeLists.txt
+19-0net/uvgrtp/pkg-plist
+12-0net/uvgrtp/files/patch-src_socket.hh
+12-0net/uvgrtp/files/patch-src_srtp_base.hh
+10-0net/uvgrtp/pkg-descr
+97-03 files not shown
+111-09 files

HardenedBSD/ports 8cc0029www/hiawatha Makefile

by Zsolt Udvari (uzsolt) on ⎇
www/hiawatha: Change maintainer

PR:             291786
DeltaFile
+1-1www/hiawatha/Makefile
+1-11 files

HardenedBSD/ports af92e9fwww/hiawatha-monitor Makefile

by Zsolt Udvari (uzsolt) on ⎇
www/hiawatha-monitor: Change maintainer

PR:             291787
DeltaFile
+1-1www/hiawatha-monitor/Makefile
+1-11 files

HardenedBSD/ports aa6c2c3graphics/R-cran-R.devices Makefile distinfo

by Zsolt Udvari (uzsolt) on ⎇
graphics/R-cran-R.devices: Update to 2.17.3

Add R-cran-R.rsp to test dependencies.

Changelog: https://cran.r-project.org/web/packages/R.devices/news/news.html
DeltaFile
+4-3graphics/R-cran-R.devices/Makefile
+3-3graphics/R-cran-R.devices/distinfo
+7-62 files

HardenedBSD/ports 30599e8dns/dnsmasq-devel/files patch-inotify, lang/php84 Makefile

by HardenedBSD Sync Services on ⎇
Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+672-284x11/xpra/pkg-plist
+8-148math/ntl/pkg-plist
+40-0dns/dnsmasq-devel/files/patch-inotify
+15-15sysutils/consul/distinfo
+11-6lang/php84/Makefile
+11-6lang/php85/Makefile
+757-45934 files not shown
+864-54340 files

HardenedBSD/ports 4fd71d6x11/xpra pkg-plist Makefile

by Gleb Popov (arrowd) on ⎇
x11/xpra: Update to 6.4

Reported by:    portscout!
DeltaFile
+672-284x11/xpra/pkg-plist
+9-5x11/xpra/Makefile
+3-3x11/xpra/distinfo
+684-2923 files

HardenedBSD/ports 6261650dns/dnsmasq-devel Makefile, dns/dnsmasq-devel/files patch-inotify

by Matthias Andree (mandree) on ⎇
dns/dnsmasq-devel: enable inotify support.

Patch submitted upstream.

I'll not enable this on the existing dns/dnsmasq port for now.

Reported by:    Felix Hanley
PR:             291624
DeltaFile
+40-0dns/dnsmasq-devel/files/patch-inotify
+3-1dns/dnsmasq-devel/Makefile
+43-12 files