BSD Commit Log Search

   sysutils/firmware/qwz: update to 20260309

   OK: kettenis@, phessler@

   archivers/xz: update to 5.8.3

   Includes a fix for
   CVE-2026-34743: Buffer overflow in lzma_index_append()

   Update py-python-discovery 1.1.2 -> 1.2.1
   Changelogs: https://github.com/tox-dev/python-discovery/releases

   Update ansible 13.4.0 -> 13.5.0
   Changelog: https://github.com/ansible-community/ansible-build-data/blob/13.5.0/13/CHANGELOG-v13.md#v13-5-0

   Update ansible-core -> 2.20.3 -> 2.20.4
   Changelog: https://github.com/ansible/ansible/blob/stable-2.20/changelogs/CHANGELOG-v2.20.rst#v2-20-4

   Update py-identify 2.6.17 -> 2.6.18

   p5-Crypt-OpenSSL-RSA no longer supports PKCS #1 v1.5 padding.
   p5-Crypt-LE has to replace it with PSS padding.

   Fix leap year detection.

   Found and initial diff from Alvar Penning, shorter diff from me (I
   guess it's a matter of taste).

   ok jca@, who would do it the same way.

   update p5-IO-Tty to 1.25
   fixes tests of devel/p5-IPC-Run
   improve detection of openpty and strlcpy with gcc
   take maintainer

   If a fd satisfies both POLLIN and POLLOUT in the same cycle, but the
   POLLIN resulted in a file close, the POLLOUT runs incorrectly which
   matters in the TLS context which attempts to read after free.
   from James J. Lippard
   ok millert

   backout to rspamd 3.14.3 for now, I'm hitting some fairly heavy FD leak
   on the milter socket on my postfix+rspamd setup (noticed when it hit 4k
   FDs and bumped into limits) and not in a good position to attempt debug
   atm.

   Prevent integer overflow in regex repetition count

   Limit the repetition count to 255 like POSIX does.  Also avoid a
   crash when the repetition is the first atom parsed.

   From Renaud Allard.

   sysutils/moor: Update to 2.12.0

   From Maintainer Lydia Sobot, thanks

   relay_tls_ctx_create: plug tls_cfg leak

   If the second tls_cfg_new() call fails, the tls_cfg is leaked.

   From Jan Schreiber

   sync distinfo

   relayd: error check bsearch in relay_httperror_byid()

   If relay_httperror_byid() is passed a HTTP error code not in the table
   this would result in a NULL deref. The intent is that the code fall back
   to "Unknown error" on NULL return.

   From Jan Schreiber

   relayd: fix NULL check for strdup()

   Due to a copy-paste error, relay_lookup_query() would check the wrong kv
   member for NULL.

   From Jan Schreiber

   Add regress test for TCP Selective ACK packets.

   sys/iwx: align antenna patterns and STBC with iwlwifi

   Follow iwlwifi for antenna pattern and STBC advertisement. Advertise RX
   antenna pattern only when RX is effectively 1x1; advertise HT and VHT
   STBC unconditionally, and VHT TX antenna pattern only when TX is
   effectively 1x1, and program the firmware TLC STBC flag when the peer
   advertises RX STBC and the device has more than one valid TX antenna.

   OK: stsp@

   update p5-XML-Parser to 2.55

   update to tdesktop 6.7.1

   Do not leak command in list-keys, reported by tb@. Also tidy up some
   function names while here.

   sysutils/just: upgrade to v1.48.1.

   Do not leak trimmed string when expanding, found by ossfuzz.

   Use INT_MIN + 1 as strtonum lower limits in formats so -ve works, found
   by ossfuzz.

   update to isc-bind-9.20.22

   update to isc-bind-9.20.22

   update to 22.1.2

   Limit argc to between 0 and 1000 to prevent fatal from MSG_COMMAND, from
   Michal Majchrowicz.

   Handle empty regular expression in substitution, found by ossfuzz.