BSD Commit Log Search

   Note update of net/bind918 to 9.18.50.

   net/bind: update to version 9.18.50.

   Pkgsrc changes:
    * None (just version + checksums)

   Upstream changes:

   Notes for BIND 9.18.50
   ----------------------

   Removed Features
   ~~~~~~~~~~~~~~~~

   - Remove ineffective TCP fallback after repeated UDP timeouts.

     When an authoritative server failed to respond to two consecutive UDP
     queries, :iscman:`named` marked the next retry as TCP but still sent
     it over UDP, producing misleading dnstap records. The ineffective
     retry path has been removed; a corrected TCP fallback will be restored

    [34 lines not shown]

   doc: Updated archivers/lhasa to 0.6.0

   lhasa: update to 0.6.0

   pkgsrc change:
   - take maintainership

   Upstream changelog:
    https://github.com/fragglet/lhasa/blob/v0.6.0/NEWS.md

   ## v0.6.0 (2026-06-17):

    * This release fixes a read overflow in the -pm2- decoder, where a
      specially-crafted -pm2- sequence could cause reads from beyond the
      end of the `copy_decode[]` array. However, it is not believed to be
      an exploitable bug so this is not a security issue. Thanks to
      Yukimura / @damseleng for reporting the bug.
    * Archived files with empty filenames are now skipped over during
      extract so that subsequent files can be extracted properly. This
      allows some files in the Aminet archive to be extracted that were
      previously only partially extracted (thanks @polluks).

    [2 lines not shown]

   doc: Updated textproc/ruby-nokogiri to 1.19.4

   ruby-nokogiri: update to 1.19.4

   Upstream changelog:
    https://github.com/sparklemotion/nokogiri/releases/tag/v1.19.4

   v1.19.4 / 2026-06-18

   Security

     * [CRuby] (Low) Fixed a possible invalid memory read when XML::Node#
       initialize_copy_with_args is called with an argument that is not a
       Node. See GHSA-g9g8-vgvw-g3vf for more information.
     * [CRuby] (Low) Fixed a possible use-after-free when an
       XML::XPathContext is used after its source document has been
       garbage collected. See GHSA-p67v-3w7g-wjg7 for more information.
     * [CRuby] (Low) Fixed a possible use-after-free during XInclude
       processing via Node#do_xinclude. See GHSA-wfpw-mmfh-qq69 for more
       information.
     * [CRuby] (Low) Fixed a possible use-after-free when Document#root=

    [21 lines not shown]

   postgis: Drop MAINTAINERship

   Upstream has suddenly become very LLM.  I'll probably still do
   updates, but I don't want to be viewed as having any responsibility
   for this.

   doc/TODO: + p5-Crypt-OpenPGP-1.21 [wiz], py-ruff-0.15.18, rumdl-0.2.19.

   textproc: Enable gemtext2html

   doc: Added textproc/gemtext2html version 0.1

   Add textproc/gemtext2html

   Gemtext2HTML is a simple ObjC library with a C interface and a command line
   utility that translates Gemtext to HTML.

   The command line utitlity acts as a filter, meaning it reads Gemtext from stdin
   and outputs HTML to stdout. This can be used to render Gemtext in Forgejo,
   including a "README.gmi" file.

   net/dnscontrol: Update to v4.42.0

   Changelog
   Major features:
   931cb38: NEW PROVIDER: WebSupport (websupport.sk) DNS provider (#4380) (@mtmn)
   Provider-specific changes:
   182888e: AZURE_DNS: Retry pending-operation conflicts (#4369) (@vatsalyagoel)
   2902072: DNSIMPLE: Update to new NS1 & NS3 nameservers (#4350) (@onlyhavecans)
   f073df4: DNSIMPLE: support init command (#4282) (@TomOnTime)
   855a01e: DOH: Fix duplicate nameservers appearing in list. (#4366) (@jfexyz)
   8bacbb3: HEDNS: Further improve authentication performance (#4359) (@rblenkinsopp)
   0e94816: HEDNS: Performance improvements (#4348) (@rblenkinsopp)
   5de73de: INWX: support init command (#4293) (@TomOnTime)
   50ca16e: PORKBUN: Fix duplicate nameservers in list. (#4367) (@jfexyz)
   e37f0d0: RWTH: Add Support for Domains with DNSSEC Disabled and Migrate to diff2 (#4180) (@psuet)
   Documentation:
   e525b91: DOCS: Homebrew install requires brew trust since Homebrew 5.1.15 (#4365) (@cafferata)
   CI/CD:
   9390084: Build(deps): Bump joi from 17.13.3 to 17.13.4 (#4377) (@dependabot[bot])

    [7 lines not shown]

   doc: Updated net/dnscontrol to 4.42.0

   wmclockmon: Include the correct header for bzero(3).

   Should help the SunOS build.

   wmii: Fix implicit declaration of kill(2).

   xdelta3: Build fix for GCC 14 / 15

   Fix the spelling of _POSIX_C_SOURCE so that gettimeofday gets
   properly declared.

   Verified to build on FreeBSD, NetBSD, macOS, Linux.

   vtwm: Various build fixes for GCC 14 & GCC 15.

   security/ipv6-toolkit: Update to v2.2

   SI6 Networks IPv6 Toolkit 2.2
      * All: Ensure consistency in version numbers across tools and documentation.
      * path6: Fix bug that prevented setting TCP flags
      * blackhole6: Fixed bug that lead to errors for paths >= 10 hops
      * blackhole6: Polished the code
        Removed unnecessary comments, and prevented some internal errors to make it
        to the tool output.
      * blackhole6: Set different default destination port numbers for TCP and UDP
        The default UDP destination port has been changed to port 53.

   SI6 Networks IPv6 Toolkit v2.1 (Jan)
      * addr6: Add support for accepting only one address per prefix
        Option '--block-dup-preflen' was added
      * scan6: Fix bug in smart scan
        There was a bug in the generation of low-byte and pattern-byte addresses.
      * scan6: Improve VMWare scans
        We have now added vSphere and ESX server entries

    [104 lines not shown]

   doc: Updated security/ipv6-toolkit to 2.2

   xgrk: Fix build with GCC 14.

   Include <string.h> for strcmp(3) and memcmp(3).

   Fix an implicit int so that this compiles with GCC 14.

   xps: Various build fixes for GCC 14.

   Include config.h before any #if checks are done, so that they actually
   pass.

   This is necessary so that stdlib.h gets correctly included, otherwise
   it implicitly declares loadavg(3) and fails to build with a modern
   compiler.

   CVE-2021-44917 in gnuplot I read as fixed in 2021, so fix is in 6.0 and newer.

   Ref. https://sourceforge.net/p/gnuplot/bugs/2474/ and 6.0's release
   date being December 2023.

   xroar: Fix build on NetBSD and SunOS with GCC 14.

   NetBSD and SunOS need _NETBSD_SOURCE and __EXTENSIONS__
   respectively to get strsep(3) defined when _POSIX_C_SOURCE
   is 200112L.

   xsqlmenu: Fix build with GCC 14.

   Fix the implicit declaration of the exit(3) function.

   vcmi: Claims to require a C++20 compiler.

   rgbds: Claims to require a C++20 compiler.

   uhd: This needs support for the C++17 filesystem API.

   The netbsd-9 system compiler has support for C++17 but lacks the file
   system API, and is still technically supported.

   zathura-cb: Claims to require a C17 compiler.

   micropython: Work around old NetBSD releases not having PTHREAD_STACK_MIN.

   souffle: This needs support for the C++17 filesystem API.

   The netbsd-9 system compiler has support for C++17 but lacks the file
   system API, and is still technically supported.