OpenBSD - FreshBSD

OpenBSD/src C5RMoqI — usr.bin/ssh ssh-keysign.c

2026-03-19 02:36:28 UTC by djm on ⎇

HEAD

   repair ssh-keysign after pledge changes;
   spotted/tested by naddy@ ok deraadt@

Version	Delta		File
1.80	+4	-4	usr.bin/ssh/ssh-keysign.c
	+4	-4	1 files

OpenBSD/ports HDr5EHT — www/yt-dlp Makefile distinfo

2026-03-19 01:33:35 UTC by lraab on ⎇

HEAD

   www/yt-dlp: update to 2026.03.17

Version	Delta		File
1.77	+2	-2	www/yt-dlp/Makefile
1.69	+2	-2	www/yt-dlp/distinfo
	+4	-4	2 files

OpenBSD/ports 5DLalMD — www/py-yt-dlp-ejs distinfo Makefile

2026-03-19 01:32:51 UTC by lraab on ⎇

HEAD

   www/py-yt-dlp-ejs: update to 0.8.0

Version	Delta		File
1.5	+2	-2	www/py-yt-dlp-ejs/distinfo
1.6	+1	-1	www/py-yt-dlp-ejs/Makefile
	+3	-3	2 files

OpenBSD/ports cSr4c9u — net/py-pf Makefile, net/py-pf/patches patch-pf__struct_py

2026-03-18 22:58:29 UTC by sthen on ⎇

HEAD

   struct pf_queue_bwspec changed 'absolute' to uint64_t in pfvar.h 1.541

Version	Delta		File
1.7	+8	-8	net/py-pf/patches/patch-pf__struct_py
1.19	+2	-2	net/py-pf/Makefile
	+10	-10	2 files

OpenBSD/src N7BE39O — usr.bin/openssl speed.c

2026-03-18 21:50:24 UTC by kenjiro on ⎇

HEAD

   openssl speed: add benchmarking support for ML-KEM

   Add support for benchmarking ML-KEM key encapsulation mechanisms to
   openssl speed.  The following operations are measured:

   - key generation
   - encapsulation
   - decapsulation

   Two parameter sets are supported:

     mlkem768
     mlkem1024

   The benchmark can be invoked using the following options:

     mlkem       run all ML-KEM benchmarks
     mlkem768    run ML-KEM-768 benchmarks
     mlkem1024   run ML-KEM-1024 benchmarks

    [6 lines not shown]

Version	Delta		File
1.51	+179	-2	usr.bin/openssl/speed.c
	+179	-2	1 files

OpenBSD/src fEnV2hw — lib/libcrypto cert.pem

2026-03-18 21:50:06 UTC by sthen on ⎇

HEAD

   sync with Mozilla root CA store, ok tb@

   - remove CommScope CA (they requested it themselves;
   https://bugzilla.mozilla.org/show_bug.cgi?id=1994866)

   - add new cert:
   /C=HU/L=Budapest/O=Microsec Ltd./2.5.4.97=VATHU-23584497/CN=e-Szigno TLS Root CA 2023

Version	Delta		File
1.34	+41	-173	lib/libcrypto/cert.pem
	+41	-173	1 files

OpenBSD/ports fJfY9kA — www/webkitgtk4 distinfo Makefile, www/webkitgtk4/patches patch-Source_WebCore_platform_graphics_gbm_MemoryMappedGPUBuffer_cpp

2026-03-18 20:09:40 UTC by ajacoutot on ⎇

HEAD

   Update to webkitgtk{41,60}-2.52.0.

Version	Delta		File
1.10	+1	-8	www/webkitgtk4/pkg/PFRAG.webkitgtk60
1.4	+2	-2	www/webkitgtk4/patches/patch-Source_WebCore_platform_graphics_gbm_MemoryMappedGPUBuffer_cpp
1.143	+2	-2	www/webkitgtk4/distinfo
1.254	+1	-1	www/webkitgtk4/Makefile
1.37	+0	-1	www/webkitgtk4/pkg/PLIST
1.9	+1	-0	www/webkitgtk4/pkg/PFRAG.no-webkitgtk60
	+7	-14	6 files

OpenBSD/ports PFUZcdO — textproc/xmlwf distinfo Makefile

2026-03-18 19:03:54 UTC by bluhm on ⎇

HEAD

   update xmlwf to expat 2.7.5

Version	Delta		File
1.13	+4	-4	textproc/xmlwf/distinfo
1.21	+1	-1	textproc/xmlwf/Makefile
	+5	-5	2 files

OpenBSD/ports pKuYz4F — textproc/libxml Makefile, textproc/libxml/pkg PLIST

2026-03-18 18:11:58 UTC by sthen on ⎇

HEAD

   the "@pkgpath textproc/libxml,-python" marker by itself isn't enough to merge
   any (now removed) py3-libxml-* packages into libxml, so python 3.12 -> 3.13
   updates (i.e. openbsd 7.8 -> -current) were still failing. Add an @conflict
   as well to force the old package to be removed.

Version	Delta		File
1.246	+1	-0	textproc/libxml/Makefile
1.44	+1	-0	textproc/libxml/pkg/PLIST
	+2	-0	2 files

OpenBSD/ports NbefjUe — print/ghostscript/gnu distinfo Makefile, print/ghostscript/gnu/patches patch-configure

2026-03-18 16:43:26 UTC by volker on ⎇

HEAD

   print/ghostscript/gnu: Update to 10.07.0

   ok (with tweaks) sthen@

Version	Delta		File
1.32	+2	-2	print/ghostscript/gnu/distinfo
1.12	+2	-2	print/ghostscript/gnu/patches/patch-configure
1.140	+1	-1	print/ghostscript/gnu/Makefile
	+5	-5	3 files

OpenBSD/ports hcd2oeO — comms/rtl_433 Makefile

2026-03-18 15:54:31 UTC by kmos on ⎇

HEAD

   cc1: error: unrecognized command line option "-Wvla"

   base-gcc doesn't have -Wvla. Move to ports-gcc to fix build on sparc64

Version	Delta		File
1.2	+4	-0	comms/rtl_433/Makefile
	+4	-0	1 files

OpenBSD/ports cHH9jWs — graphics/vulkan-tools distinfo Makefile

2026-03-18 15:42:48 UTC by thfr on ⎇

HEAD

   missed to include vulkan-tools in the vulkan update, spotted by volker@

Version	Delta		File
1.20	+2	-2	graphics/vulkan-tools/distinfo
1.29	+1	-1	graphics/vulkan-tools/Makefile
	+3	-3	2 files

OpenBSD/ports MrUjMsz — devel/intellij Makefile distinfo

2026-03-18 15:41:27 UTC by kirill on ⎇

HEAD

   devel/intellij: update to 2025.3.4

Version	Delta		File
1.116	+2	-3	devel/intellij/Makefile
1.82	+2	-2	devel/intellij/distinfo
	+4	-5	2 files

OpenBSD/src kBaRI1R — usr.sbin/bgpd session_bgp.c

2026-03-18 15:16:29 UTC by sthen on ⎇

HEAD

   remove extra spaces in logs, ok claudio

Version	Delta		File
1.7	+7	-7	usr.sbin/bgpd/session_bgp.c
	+7	-7	1 files

OpenBSD/ports gznhQc2 — mail/roundcubemail distinfo Makefile, mail/roundcubemail/pkg PLIST-main

2026-03-18 15:16:02 UTC by sthen on ⎇

OPENBSD_7_8

   update to roundcubemail-1.6.14
   various security fixes, https://github.com/roundcube/roundcubemail/releases/tag/1.6.14

Version	Delta		File
1.7.4.2	+27	-0	mail/roundcubemail/pkg/PLIST-main
1.95.2.3	+2	-2	mail/roundcubemail/distinfo
1.191.2.3	+1	-2	mail/roundcubemail/Makefile
	+30	-4	3 files

OpenBSD/ports XUqwT5r — mail/roundcubemail distinfo Makefile, mail/roundcubemail/pkg PLIST

2026-03-18 15:15:12 UTC by sthen on ⎇

HEAD

   update to roundcubemail-1.6.14
   various security fixes, https://github.com/roundcube/roundcubemail/releases/tag/1.6.14

Version	Delta		File
1.75	+27	-0	mail/roundcubemail/pkg/PLIST
1.99	+2	-2	mail/roundcubemail/distinfo
1.195	+1	-1	mail/roundcubemail/Makefile
	+30	-3	3 files

OpenBSD/ports RBA1Xi9 — security Makefile

2026-03-18 15:08:34 UTC by sthen on ⎇

HEAD

   py-omemo-dr was not linked to the build properly

Version	Delta		File
1.777	+1	-0	security/Makefile
	+1	-0	1 files

OpenBSD/ports A47rToq — security/py-omemo-dr Makefile

2026-03-18 15:08:02 UTC by tb on ⎇

HEAD

   py-omemo-dr: bump after HOMEPAGE change for pypi

Version	Delta		File
1.7	+1	-1	security/py-omemo-dr/Makefile
	+1	-1	1 files

OpenBSD/src OikH7Ah — usr.sbin/bgpd util.c

2026-03-18 15:00:20 UTC by sthen on ⎇

HEAD

   typo: Extended Nexhop Encoding (Nexthop)

Version	Delta		File
1.99	+2	-2	usr.sbin/bgpd/util.c
	+2	-2	1 files

OpenBSD/src IsJBD0i — usr.bin/calendar calendar.c

2026-03-18 14:40:01 UTC by bluhm on ⎇

OPENBSD_7_7

   /dev/null is no longer implicitly permitted by some pledges, so explicitly
   unveil it. fixes calendar -a. ok deraadt
   calendar also needs to unveil cpp / sendmail, I forgot to make install
   when I was testing :(  from James J. Lippard
   sendmail/cpp only need "x" no "rx" unveil; ok deraadt
   from sthen@

   this is errata/7.7/029_calendar.patch.sig

Version	Delta		File
1.37.28.2	+7	-1	usr.bin/calendar/calendar.c
	+7	-1	1 files

OpenBSD/src XoMavKm — usr.bin/calendar calendar.c

2026-03-18 14:39:46 UTC by bluhm on ⎇

OPENBSD_7_8

   /dev/null is no longer implicitly permitted by some pledges, so explicitly
   unveil it. fixes calendar -a. ok deraadt
   calendar also needs to unveil cpp / sendmail, I forgot to make install
   when I was testing :(  from James J. Lippard
   sendmail/cpp only need "x" no "rx" unveil; ok deraadt
   from sthen@

   this is errata/7.8/023_calendar.patch.sig

Version	Delta		File
1.37.26.2	+7	-1	usr.bin/calendar/calendar.c
	+7	-1	1 files

OpenBSD/ports FlTXxie — www/nghttp2 distinfo Makefile

2026-03-18 14:22:09 UTC by sthen on ⎇

OPENBSD_7_8

   update to nghttp2-1.68.1
   https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6

Version	Delta		File
1.68.2.1	+2	-2	www/nghttp2/distinfo
1.77.2.1	+1	-1	www/nghttp2/Makefile
	+3	-3	2 files

OpenBSD/ports TjzGXGk — www/nghttp2 distinfo Makefile

2026-03-18 14:21:55 UTC by sthen on ⎇

HEAD

   update to nghttp2-1.68.1
   https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6

Version	Delta		File
1.70	+2	-2	www/nghttp2/distinfo
1.79	+1	-1	www/nghttp2/Makefile
	+3	-3	2 files

OpenBSD/ports hPkQLJF — net/stayrtr distinfo Makefile

2026-03-18 14:20:15 UTC by sthen on ⎇

HEAD

   update to stayrtr-0.6.4

Version	Delta		File
1.7	+2	-2	net/stayrtr/distinfo
1.10	+1	-1	net/stayrtr/Makefile
	+3	-3	2 files

OpenBSD/ports EajEamU — books/JLS distinfo Makefile

2026-03-18 12:13:25 UTC by ian on ⎇

HEAD

   Oof, JLS 25 is latest.

Version	Delta		File
1.9	+2	-2	books/JLS/distinfo
1.14	+1	-1	books/JLS/Makefile
	+3	-3	2 files

OpenBSD/ports uYTh2Ov — books/JLS distinfo Makefile

2026-03-18 12:12:15 UTC by ian on ⎇

HEAD

   Update JLS to JDK24.

Version	Delta		File
1.8	+2	-2	books/JLS/distinfo
1.13	+1	-1	books/JLS/Makefile
	+3	-3	2 files

OpenBSD/ports mooRiKL — textproc/asciidoctor distinfo Makefile

2026-03-18 12:08:40 UTC by ian on ⎇

HEAD

   Minor bump asciidoctor 2.0.23 -> 2.0.26

Version	Delta		File
1.5	+2	-2	textproc/asciidoctor/distinfo
1.13	+1	-1	textproc/asciidoctor/Makefile
	+3	-3	2 files

OpenBSD/src r6NHhMT — lib/libexpat Changes, lib/libexpat/lib xmlparse.c expat_external.h

2026-03-18 11:50:19 UTC by bluhm on ⎇

HEAD

   Update libexpat to version 2.7.5.

   Relevant for OpenBSD are security fixes #1158 #1161 #1162 #1163,
   other changes #1156 #1153.  Library bump is not necessary.
   CVE-2026-32776 CVE-2026-32777 CVE-2026-32778

   tested and OK tb@

Version	Delta		File
1.46	+54	-11	lib/libexpat/lib/xmlparse.c
1.34	+53	-12	lib/libexpat/Changes
1.10	+31	-1	lib/libexpat/tests/misc_tests.c
1.9	+27	-3	lib/libexpat/tests/basic_tests.c
1.3	+27	-0	lib/libexpat/tests/nsalloc_tests.c
1.11	+1	-1	lib/libexpat/lib/expat_external.h
	+193	-28	6 files not shown
	+199	-34	12 files

OpenBSD/ports O9NgN55 — lang/python/3 Makefile, lang/python/3/files CHANGES.OpenBSD

2026-03-18 11:15:32 UTC by sthen on ⎇

OPENBSD_7_8

   update to python-3.12.13 and patch for recent security fixes.
   backports from tb, .ok tb@ kmos@

   https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/
   Reject control characters in 'http.cookies.Morsel.update' (CVE-2026-3644)

   https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/
   Fix C stack overflow (CVE-2026-4224) when an Expat parser with a registered
   'ElementDeclHandler' parses inline DTD containing deeply nested content model.

Version	Delta		File
1.2.2.1	+23	-35	lang/python/3/patches/patch-Modules_pyexpat_c
1.1.2.1	+15	-21	lang/python/3/patches/patch-Lib_test_test_pyexpat_py
1.1.2.1	+15	-16	lang/python/3/patches/patch-Lib_test_test_http_cookies_py
1.1.2.1	+12	-10	lang/python/3/patches/patch-Lib_http_cookies_py
1.15.2.1	+4	-1	lang/python/3/Makefile
1.2.4.1	+4	-0	lang/python/3/files/CHANGES.OpenBSD
	+73	-83	2 files not shown
	+76	-86	8 files

OpenBSD/ports b7cKapb — lang/python/3 Makefile, lang/python/3/patches patch-Lib_test_test_http_cookies_py patch-Lib_http_cookies_py

2026-03-18 11:14:47 UTC by sthen on ⎇

HEAD

   update to python-3.13.12 and patch for recent security fixes. ok tb@ kmos@

   https://mail.python.org/archives/list/security-announce@python.org/thread/H6CADMBCDRFGWCMOXWUIHFJNV43GABJ7/
   Reject control characters in 'http.cookies.Morsel.update' (CVE-2026-3644)

   https://mail.python.org/archives/list/security-announce@python.org/thread/5M7CGUW3XBRY7II4DK43KF7NQQ3TPZ6R/
   Fix C stack overflow (CVE-2026-4224) when an Expat parser with a registered
   'ElementDeclHandler' parses inline DTD containing deeply nested content model.

Version	Delta		File
1.1	+79	-0	lang/python/3/patches/patch-Lib_test_test_http_cookies_py
1.1	+71	-0	lang/python/3/patches/patch-Lib_http_cookies_py
1.2	+65	-1	lang/python/3/patches/patch-Modules_pyexpat_c
1.1	+47	-0	lang/python/3/patches/patch-Lib_test_test_pyexpat_py
1.11	+17	-0	lang/python/3/pkg/PLIST-tests
1.23	+1	-5	lang/python/3/Makefile
	+280	-6	3 files not shown
	+288	-8	9 files