BSD Commit Log Search

   greed: add upstream bug report URL

   doc: Updated games/greed to 5.1

   greed: update to 5.1.

   5.1: 2026-05-21::
     Move code to crossterm to avoid a dependency on srtty(1).

   doc/TODO: + llvm-22.1.6 [wip].

   doc: Updated time/R-tzdb to 0.5.0

   (time/R-tzdb) Updated 0.4.0 to 0.5.0, fix build against R-4.6.0

   # tzdb 0.5.0

   * Updated the time zone database to 2025a (#37).

   * Updated the embedded date library
     (SHA 32ecb2ad24699963f6c58d74d74bcd8bf7e830a9) (#36, #40).

   * cpp11 >=0.5.2 is now required.

   * R >=4.0.0 is now required. This is consistent with the standards of the
     tidyverse.

   doc: Updated math/R-proxy to 0.4.29

   (math/R-proxy) Updated 0.4.27 to 0.4.29, explicit NEWS.md unknown

   firefox: 150.0.x requires nss>=3.122.2

   doc: Updated www/firefox140-l10n to 140.11.0

   firefox140-l10n: update to 140.11

   doc: Updated www/firefox140 to 140.11.0

   firefox140: update to 140.11

   Mozilla Foundation Security Advisory 2026-48
   Security Vulnerabilities fixed in Firefox ESR 140.11

   Announced
       May 19, 2026
   Impact
       high
   Products
       Firefox ESR
   Fixed in

           Firefox ESR 140.11

   #CVE-2026-8946: Incorrect boundary conditions in the Audio/Video: Web Codecs component

   Reporter
       zx

    [221 lines not shown]

   doc: Updated mail/postfix to 3.11.3nb1

   postfix: suggest sasl option

   This only allows the cyrus-sasl functionality in postfix.  It still
   needs to be administratively enabled in postfix, with Cyrus SASL
   mechanisms installed seperately.

   doc: update for tickets 7125, 7126

   Pullup ticket #7126 - requested by taca
   net/rsync: Security fix

   Revisions pulled up:
   - net/rsync/Makefile                                            1.133
   - net/rsync/distinfo                                            1.66

   ---
      Module Name:      pkgsrc
      Committed By:     adam
      Date:             Thu May 21 09:13:07 UTC 2026

      Modified Files:
        pkgsrc/net/rsync: Makefile distinfo

      Log Message:
      rsync: updated to 3.4.3

      rsync 3.4.3 (20 May 2026)

    [144 lines not shown]

   Updated textproc/py-types-docutils, devel/py-types-gdb, time/py-types-python-dateutil, devel/py-types-setuptools, devel/py-types-toml, textproc/py-types-yaml

   Pullup ticket #7125 - requested by taca
   net/unbound: Security fix

   Revisions pulled up:
   - net/unbound/Makefile                                          1.134-1.135
   - net/unbound/distinfo                                          1.90-1.91
   - net/unbound/patches/patch-configure                           1.7-1.8

   ---
      Module Name:      pkgsrc
      Committed By:     adam
      Date:             Mon May 11 15:49:04 UTC 2026

      Modified Files:
        pkgsrc/net/unbound: Makefile distinfo
        pkgsrc/net/unbound/patches: patch-configure

      Log Message:
      unbound: updated to 1.25.0

    [46 lines not shown]

   py-types-yaml: updated to 6.0.12.20260518

   6.0.12.20260518
   Upgrade black to 26.5.0

   py-types-toml: updated to 0.10.8.20260518

   0.10.8.20260518
   Upgrade black to 26.5.0

   py-types-setuptools: updated to 82.0.0.20260518

   82.0.0.20260518
   Upgrade black to 26.5.0

   py-types-python-dateutil: updated to 2.9.0.20260518

   2.9.0.20260518
   Upgrade black to 26.5.0

   py-types-gdb: updated to 16.3.0.20260518

   16.3.0.20260518
   Upgrade black to 26.5.0

   py-types-docutils: updated to 0.22.3.20260518

   0.22.3.20260518
   Upgrade black to 26.5.0

   doc: Updated chat/toxic to 0.16.2

   toxic: update to 0.16.2

   - Added network profiling support
   - Notifications now have a configurable cooldown via the config file
   - Some alerts are no longer double counted in the status bar
   - Fix possible null pointer dereference during video call activation
   - Fix memory leak after live config reload
   - Fix possible pointer use after free if live config reload failed
   - Live config changes to mplex auto-away now work as intended
   - The chat window now stays scrolled to the bottom when the peer
     list is enabled or disabled in groups/conferences
   - File transfer status bar is no longer broken for the sending client
   - Fatal error messages are now always printed to stderr even if
     /dev/tty cannot be opened
   - Fix bug causing audio/video calls to fail after shuffling the
     internal friend list indices via deleting and adding friends
   - Fixed nanosleep implementation which improves performance
     drastically on some systems

   ruby40: Remove unused patches, pointed out by taca in ticket #7124

   Updated devel/py-uv[-build]

   py-uv py-uv-build: updated to 0.11.15

   0.11.15

   Security

   Fix a TAR parser differential, see GHSA-3cv2-h65g-fgmm
   Enforce that entry points cannot escape in the scripts directory, see GHSA-4gg8-gxpx-9rph

   Enhancements

   Add TOML v1.1 -> v1.0 backwards compatibility for source distributions
   Add support for Azure request signing
   Apply stricter validation to all wheel filename segments
   Reject empty strings as an invalid package name
   Use structured errors for signing authentication failures

   Preview


    [23 lines not shown]