OpenBSD/src A9xxEr9usr.bin/ssh authfile.c

   prefer fstat to stat when it's trivial to do so
VersionDeltaFile
1.152+2-2usr.bin/ssh/authfile.c
+2-21 files

OpenBSD/src uu2Yw7fusr.bin/ssh auth2-gss.c

   unused variables
VersionDeltaFile
1.42+1-3usr.bin/ssh/auth2-gss.c
+1-31 files

OpenBSD/src RxAXLAEusr.bin/ssh servconf.c servconf.h

   fix GSSAPI option names, that I somehow screwed up while refactoring
   servconf.c bz3974 patch from Colin Watson
VersionDeltaFile
1.451+9-9usr.bin/ssh/servconf.c
1.179+9-9usr.bin/ssh/servconf.h
+18-182 files

OpenBSD/src S2wrnPpgnu/usr.bin/perl/cpan/Socket Socket.pm Socket.xs, gnu/usr.bin/perl/cpan/Socket/t sockaddr.t

   Update Socket to 2.041

   CVE-2026-12087:
    Socket versions before 2.041 for Perl have an out-of-bounds heap read

   From security.metacpan.org
VersionDeltaFile
1.8+77-26gnu/usr.bin/perl/cpan/Socket/Socket.pm
1.8+70-33gnu/usr.bin/perl/cpan/Socket/Socket.xs
1.2+71-6gnu/usr.bin/perl/cpan/Socket/t/sockaddr.t
+218-653 files

OpenBSD/ports oRdbsp4www/hugo distinfo modules.inc

   www/hugo: update to 0.164.0
VersionDeltaFile
1.99+78-98www/hugo/distinfo
1.61+23-28www/hugo/modules.inc
1.107+1-1www/hugo/Makefile
+102-1273 files

OpenBSD/ports xjWg5cqgraphics/p5-Imager Makefile distinfo

   update p5-Imager to 1.032
   CVE-2026-13708 CVE-2026-13705 CVE-2026-8454
VersionDeltaFile
1.56+23-21graphics/p5-Imager/Makefile
1.20+2-2graphics/p5-Imager/distinfo
+25-232 files

OpenBSD/ports 7yiX0Wwsysutils/exfetch Makefile distinfo

   sysutils/exfetch: update to 1.7

   from izzy Meyer (maintainer)
VersionDeltaFile
1.9+8-5sysutils/exfetch/Makefile
1.8+4-2sysutils/exfetch/distinfo
+12-72 files

OpenBSD/src 8ndBGEPusr.bin/tmux layout.c options.c

   Could of minor tidy ups.
VersionDeltaFile
1.90+2-6usr.bin/tmux/layout.c
1.89+2-2usr.bin/tmux/options.c
+4-82 files

OpenBSD/ports Zh8XwyNsecurity/p5-Crypt-DSA distinfo Makefile

   update p5-Crypt-DSA to 1.24
VersionDeltaFile
1.8+2-2security/p5-Crypt-DSA/distinfo
1.21+1-2security/p5-Crypt-DSA/Makefile
+3-42 files

OpenBSD/ports zDgXrcrshells/fish/main/patches patch-fish_Cargo_toml patch-fluent-ftl-tools_Cargo_toml

   shells/fish: Forgot to cvs-add the patches
VersionDeltaFile
1.1+32-0shells/fish/main/patches/patch-fish_Cargo_toml
1.1+14-0shells/fish/main/patches/patch-fluent-ftl-tools_Cargo_toml
1.8+0-0shells/fish/main/patches/patch-Cargo_toml
+46-03 files

OpenBSD/ports xJVVN8Tsecurity/p5-IO-Socket-SSL distinfo Makefile, security/p5-IO-Socket-SSL/patches patch-t_memleak_bad_handshake_t

   update p5-IO-Socket-SSL to 2.099
VersionDeltaFile
1.133+2-2security/p5-IO-Socket-SSL/distinfo
1.150+1-1security/p5-IO-Socket-SSL/Makefile
1.2+0-0security/p5-IO-Socket-SSL/patches/patch-t_memleak_bad_handshake_t
+3-33 files

OpenBSD/ports hY2RPYxgraphics/stable-diffusion.cpp distinfo Makefile, graphics/stable-diffusion.cpp/patches patch-CMakeLists_txt

   graphics/stable-diffusion.cpp: Update to 0.0.765
VersionDeltaFile
1.6+4-4graphics/stable-diffusion.cpp/distinfo
1.6+8-0graphics/stable-diffusion.cpp/pkg/PLIST
1.9+2-3graphics/stable-diffusion.cpp/Makefile
1.6+1-1graphics/stable-diffusion.cpp/patches/patch-CMakeLists_txt
+15-84 files

OpenBSD/ports uhhPITRshells/fish/main distinfo crates.inc, shells/fish/main/patches patch-Cargo_toml

   shells/fish: Update to 4.8.0

   ok Florian Viehweger (Maintainer)
VersionDeltaFile
1.11+0-1,385shells/fish/main/pkg/PLIST
1.13+172-78shells/fish/main/distinfo
1.10+83-38shells/fish/main/crates.inc
1.14+12-3shells/fish/main/Makefile
1.7+0-12shells/fish/main/patches/patch-Cargo_toml
+267-1,5165 files

OpenBSD/ports 4pECbHptextproc/miller distinfo Makefile

   Update miller to 6.20.2.
VersionDeltaFile
1.21+2-2textproc/miller/distinfo
1.25+1-1textproc/miller/Makefile
+3-32 files

OpenBSD/src a1bjMfmusr.bin/tmux screen-write.c

   When sync is enabled, we need to mark the whole scroll region dirty if
   there has been any scrolling. GitHub issue 5330.
VersionDeltaFile
1.282+5-1usr.bin/tmux/screen-write.c
+5-11 files

OpenBSD/ports PmTqeKLaudio/libxmp distinfo Makefile

   Update libxmp to 4.7.1.
VersionDeltaFile
1.21+2-2audio/libxmp/distinfo
1.28+1-1audio/libxmp/Makefile
+3-32 files

OpenBSD/src Onn9QJRusr.bin/tmux window-customize.c cmd-set-option.c

   Add a key to change an array key in customize mode.
VersionDeltaFile
1.30+87-2usr.bin/tmux/window-customize.c
1.144+3-3usr.bin/tmux/cmd-set-option.c
1.401+3-1usr.bin/tmux/format.c
1.88+2-2usr.bin/tmux/options.c
+95-84 files

OpenBSD/src 6GQA27eusr.bin/tmux options.c window-customize.c

   Change array item keys to be strings instead of numbers which are
   painful to work with.
VersionDeltaFile
1.87+161-46usr.bin/tmux/options.c
1.29+57-49usr.bin/tmux/window-customize.c
1.72+19-17usr.bin/tmux/cmd-show-options.c
1.400+17-16usr.bin/tmux/format.c
1.143+18-13usr.bin/tmux/cmd-set-option.c
1.1391+15-13usr.bin/tmux/tmux.h
+287-1545 files not shown
+314-18011 files

OpenBSD/ports QySi1xwdatabases/sqlports Makefile, databases/sqlports/files/scripts show-reverse-deps

   in show-reverse-deps, use --list when running sqlite3, so that fancy
   line-drawing characters are not used when output is to the console.
   ok espie
VersionDeltaFile
1.12+2-2databases/sqlports/files/scripts/show-reverse-deps
1.154+1-1databases/sqlports/Makefile
+3-32 files

OpenBSD/ports SpAjWFJsecurity/p5-Crypt-DSA distinfo Makefile

   update to p5-Crypt-DSA-1.22
VersionDeltaFile
1.5.6.2+2-2security/p5-Crypt-DSA/distinfo
1.18.6.2+1-1security/p5-Crypt-DSA/Makefile
+3-32 files

OpenBSD/ports fUiXqmhsecurity/p5-Crypt-DSA distinfo Makefile

   update to p5-Crypt-DSA-1.22, fixes key generation issue with previous
   versions:

   "Crypt::DSA::Util::makerandom forces the high bit of every value it
   returns to obtain an exactly N-bit integer for prime search. The
   signing nonce and the private key are drawn from makerandom. Because
   the high bit is always set, the result is not uniform: its top bit is
   fixed, producing insecure values."

   Keys used to sign with an affected version should be considered
   compromised and new keys should be generated.
VersionDeltaFile
1.7+2-2security/p5-Crypt-DSA/distinfo
1.20+1-1security/p5-Crypt-DSA/Makefile
+3-32 files

OpenBSD/src fovRhD0sbin/iked vroute.c

   iked: Wrong data structure zeroized

   The parameter int mask was confused with the local variable struct
   sockaddr_in mask4.  bzero(3) was applied to mask instead of mask4.

   ok markus@
VersionDeltaFile
1.22+2-2sbin/iked/vroute.c
+2-21 files

OpenBSD/ports rjEhrhGdevel/objfw distinfo Makefile

   update to objfw-1.5.7, from Jonathan Schleifer (maintainer)
VersionDeltaFile
1.11+2-2devel/objfw/distinfo
1.15+1-2devel/objfw/Makefile
+3-42 files

OpenBSD/ports H2hBbWElang/php/8.3 Makefile distinfo

   update to php-8.3.32
VersionDeltaFile
1.56.2.2+2-2lang/php/8.3/Makefile
1.30.2.2+2-2lang/php/8.3/distinfo
+4-42 files

OpenBSD/ports WJmMLQSlang/php/8.3 Makefile distinfo

   update to php-8.3.32
VersionDeltaFile
1.62+2-3lang/php/8.3/Makefile
1.32+2-2lang/php/8.3/distinfo
+4-52 files

OpenBSD/ports 5Swmpjgnet/p5-Zonemaster/engine Makefile distinfo

   update to p5-Zonemaster-engine-9.0.0
VersionDeltaFile
1.25+3-2net/p5-Zonemaster/engine/Makefile
1.18+2-2net/p5-Zonemaster/engine/distinfo
+5-42 files

OpenBSD/ports 70o5Hkrnet/p5-Zonemaster/cli Makefile distinfo

   update to zonemaster-8.0.2
VersionDeltaFile
1.23+6-6net/p5-Zonemaster/cli/Makefile
1.16+2-2net/p5-Zonemaster/cli/distinfo
+8-82 files

OpenBSD/src 07jJDJqusr.bin/tmux monitor.c

   NOJOBS is a flag, use correct argument.
VersionDeltaFile
1.4+2-2usr.bin/tmux/monitor.c
+2-21 files

OpenBSD/src Bf7GxsBusr.bin/tmux mode-tree.c

   Check for width/height 0, based on change from Uzair Aftab.
VersionDeltaFile
1.99+6-4usr.bin/tmux/mode-tree.c
+6-41 files

OpenBSD/ports hL0dK5Jmail/getmail Makefile distinfo, mail/getmail/patches patch-getmails patch-getmail_fetch

   update to getmail-6.20.0, from Martin Ziemer (maintainer)
VersionDeltaFile
1.119+2-2mail/getmail/Makefile
1.96+2-2mail/getmail/distinfo
1.5+1-1mail/getmail/patches/patch-getmails
1.2+0-0mail/getmail/patches/patch-getmail_fetch
+5-54 files