BSD Commit Log Search

   sys/powerpc64: add em* to RAMDISK

   OK: deraadt@

   update to notion-4.0.5, unbreaking build with llvm22
   ok sdk

   set DPB_PROPERTIES=parallel, postfix/stable is built 8x after openssl
   updates (dpb won't run builds for multiple flavours in parallel) so
   at least in -stable parallelising them helps.

   set DPB_PROPERTIES=parallel, postfix/stable is built 8x after openssl
   updates (dpb won't run builds for multiple flavours in parallel) so
   at least in -stable parallelising them helps.

   www/mozilla-firefox: MFC update to 151.0.4.

   see https://www.firefox.com/en-US/firefox/151.0.4/releasenotes/

   Update mattermost 11.7.1 -> 11.7.2
   Changelog: https://docs.mattermost.com/product-overview/mattermost-v11-changelog.html

   www/mozilla-firefox: update to 151.0.4.

   see https://www.firefox.com/en-US/firefox/151.0.4/releasenotes/

   update to ettercap-0.8.4.1

   switches gui mode to gtk+3 which at least works slightly, whereas the
   gtk+2 support in the previous version wasn't working at all.

   disable curses mode for now, it's extremely crashy. plaintext and gui
   do at least do _something_ partly useful.

   update to 2026.06.149

   stable: bump statically linked openssl consumers

   MFC: OpenSSL 3.5.7

   MFC: OpenSSL 4.0.1

   bump statically linked openssl consumers

   Use name as marker for failure not type (which must be set to be in the error).

   Add missing headers.

   Update to openssl 3.5.7

   Update to OpenSSL 4.0.1

   Clarify -a for kill-window, kill-session.

   Avoid freeing a caller-owned buffer in PKCS7_verify()

   If a PKCS#7 S/MIME message comes with an empty set of digestAlgorithms
   in the SignedData, PKCS7_verify() would incorrectly free a caller-owned
   buffer. Fix the freeing logic to avoid this situation.

   From Igor Ustinov via OpenSSL

   Update digikam to 9.1.0

   Add some missing bounds checks to ASN1_mbstring_copy()

   If the in string is unreasonably long, assigning strlen(in) to an int
   may overflow, so exclude this situation.

   Moreover, the code would unconditionally multiply nchar by 2 or 4,
   which could again overflow an int. Check for this situation and error
   out to avoid an out of bounds write.

   More may be needed in here, which will be revisited later.

   Based on a diff by Viktor Dukhovni via OpenSSL.

   Add -f for filter with -a to kill-pane, kill-window, kill-session.
   GitHub issue 4782.

   Avoid out-of-bounds read in CMS password-based decryption

   The RFC 3211 PWRI integrity check when unwrapping the password-derived key
   accesses seven bytes from a heap-allocated buffer. If an (invalid) block
   cipher with short blocks is in use 2 * blocksize may not be sufficient room
   for 7 bytes. In that silly case, the function performs an OOB read. Add
   length check to avoid this situation

   From Igor Ustinov via OpenSSL.

   Avoid NULL dereference in password-based CMS decryption

   The keyDerivationAlgorithm field is OPTIONAL in the ASN.1 but required
   for password-based CMS. Check that the field is present before using it
   to avoid a crash.

   From Igor Ustinov via OpenSSL

   Update ansible 13.7.0 -> 14.0.0
   Changelog: https://github.com/ansible-community/ansible-build-data/blob/14.0.0/14/CHANGELOG-v14.md

   Two fixes for RI codepoints. Firstly, do not combine more than two of
   them - previously we were ending up with four codepoints in one cell
   which tmux believed to be width 2, but terminals considered width 4.
   Secondly, invalidate cursor position before redrawing the cell when the
   second codepoint is received, terminals vary in how they manage
   backspace and cursor movement across these characters, so it is better
   to use absolute rather than relative positioning. GitHub issue 4853.

   add 'lonesome' to DPB_PROPERTIES on i386 for llvm 22 in the hope
   that it reduces or avoids out-of-memory running llvm-tblgen for
   llvm/lib/Target/AMDGPU/AMDGPUGISel.td

   missing BDEP on docbook

   update to obmenu-1.2.0

   update to monitoring-plugins-3.0.0rc4