OpenBSD/ports 6uIWjwParchivers/makeself distinfo Makefile, archivers/makeself/patches patch-makeself_sh

by kirill on ⎇
   archivers/makeself: update to 2.7.1

   Update diff from Andrew Kloet
VersionDeltaFile
1.11+2-2archivers/makeself/distinfo
1.5+1-1archivers/makeself/patches/patch-makeself_sh
1.24+1-1archivers/makeself/Makefile
+4-43 files

OpenBSD/ports HG4lh3mgraphics/cxx-rust-cssparser Makefile

by rsadowski on ⎇
   Add missing dependency on devel/kf6/extra-cmake-modules

   Spotted by naddy
VersionDeltaFile
1.2+3-1graphics/cxx-rust-cssparser/Makefile
+3-11 files

OpenBSD/src bRtmJBvusr.bin/tmux grid.c

by nicm on ⎇
   Change a malloc to calloc.
VersionDeltaFile
1.152+2-13usr.bin/tmux/grid.c
+2-131 files

OpenBSD/src n8KWL4Slib/libc/hidden string.h wchar.h, lib/libc/include namespace.h

by kettenis on ⎇
   LLVM now emits calls to strlen(3) and wcslen(3).  Redirect those calls to
   our hidden aliases to prevent unnecessary PLT entries (like we already do
   for memmove(3), memcpy(4) and memset(3)).

   ok deraadt@
VersionDeltaFile
1.18+5-1lib/libc/include/namespace.h
1.10+2-2lib/libc/string/strlen.c
1.5+2-2lib/libc/string/wcslen.c
1.7+2-2lib/libc/hidden/string.h
1.7+2-2lib/libc/hidden/wchar.h
1.90+2-1libexec/ld.so/Makefile
+15-106 files

OpenBSD/ports KXv4guUtextproc/simdutf Makefile distinfo, textproc/simdutf/pkg PFRAG.tools

by volker on ⎇
   textproc/simdutf: Update to 9.0.0

   additional tests and feedback from tb, thanks
VersionDeltaFile
1.8+3-3textproc/simdutf/Makefile
1.7+2-2textproc/simdutf/distinfo
1.2+4-0textproc/simdutf/pkg/PFRAG.tools
+9-53 files

OpenBSD/src u5xUngAlibexec/login_ldap aldap.c, usr.bin/ldap aldap.c

by jan on ⎇
   login_ldap(8)/ldap(1): fix endless loop

   Goto fail on closed socket and check for evbuffer_add(3) errors, too.

   Original bug was reported by Matthias Pitzl.

   On Tue, Jun 30, 2026 at 11:35:32AM +0200, Martijn van Duren wrote:
   > Could you also make sure other aldap.c users get the fix?

   OK martijn@
VersionDeltaFile
1.3+4-4libexec/login_ldap/aldap.c
1.11+4-4usr.bin/ldap/aldap.c
+8-82 files

OpenBSD/ports vUFCdELlang/node distinfo Makefile, lang/node/patches patch-include_node_common_gypi patch-common_gypi

by volker on ⎇
   lang/node: Update to 24.18.0

   Fixes (by way of 24.17.0):
   CVE-2026-48618 tls: normalize hostname for server identity checks
   CVE-2026-48933 crypto: guard WebCrypto cipher output length
   CVE-2026-48615 lib,test: redact proxy credentials in tunnel errors
   CVE-2026-48619 http2: cap originSet size to prevent unbounded memory growth
   CVE-2026-48928 tls: fix case-sensitive SNI context matching
   CVE-2026-48930 dns,net: reject hostnames with embedded NUL bytes
   CVE-2026-48934 tls: bind reusable sessions to authenticated host
   CVE-2026-48937 deps: fix integration issues with the latest nghttp2
   CVE-2026-48617 permission: handle process.chdir on writereport
   CVE-2026-48931 http: fix response queue poisoning in http.Agent
   CVE-2026-48935 permission: disable FileHandle utimes with permission model
VersionDeltaFile
1.72+213-11lang/node/pkg/PLIST
1.99+4-4lang/node/distinfo
1.15+4-4lang/node/patches/patch-include_node_common_gypi
1.41+4-4lang/node/patches/patch-common_gypi
1.169+1-2lang/node/Makefile
1.18+1-1lang/node/patches/patch-lib_net_js
+227-262 files not shown
+229-288 files

OpenBSD/src viNVE6Kusr.sbin/ypldap aldap.c

by jan on ⎇
   ypldap(8): fix endless loop

   Goto fail on closed socket and check for evbuffer_add(3) errors, too.

   OK martijn@
VersionDeltaFile
1.50+4-4usr.sbin/ypldap/aldap.c
+4-41 files

OpenBSD/ports XA7ns7Dx11/oxygen-icons Makefile

by rsadowski on ⎇
   Add missing build dependency on devel/kf6/extra-cmake-modules

   Spotted by aja
VersionDeltaFile
1.2+2-3x11/oxygen-icons/Makefile
+2-31 files

OpenBSD/ports gahR1D2cad/libspnav Makefile

by tb on ⎇
   libspnav: set NO_TEST=yes
VersionDeltaFile
1.2+2-0cad/libspnav/Makefile
+2-01 files

OpenBSD/ports Z1MSxaxdevel/esbuild distinfo Makefile

by volker on ⎇
   devel/esbuild: Update to 0.28.1

   From Maintainer Igor Zornik, thanks
VersionDeltaFile
1.20+2-2devel/esbuild/distinfo
1.21+1-1devel/esbuild/Makefile
+3-32 files

OpenBSD/ports kZRMPAJlang/elixir distinfo Makefile

by volker on ⎇
   lang/elixir: Update to 1.20.2
VersionDeltaFile
1.77+2-2lang/elixir/distinfo
1.90+1-1lang/elixir/Makefile
+3-32 files

OpenBSD/ports X5A52rCsysutils/moor distinfo Makefile

by volker on ⎇
   sysutils/moor: Update to 2.15.1

   From Maintainer Lydia Sobot, thanks
VersionDeltaFile
1.10+2-2sysutils/moor/distinfo
1.10+1-1sysutils/moor/Makefile
+3-32 files

OpenBSD/src cBBSbWJsys/arch/arm64/dev aplns.c, sys/dev/ic nvme.c

by jcs on ⎇
   partially revert previous to return to 64-byte submission queue
   entries by default, only applying 128-byte entries on APPLE_NVME3
   (T2) where we know it's needed

   the previous change broke APPLE_NVME2 which advertises 128 bytes but
   needs 64

   ok dlg
VersionDeltaFile
1.129+3-7sys/dev/ic/nvme.c
1.15+7-1sys/dev/pci/nvme_pci.c
1.19+1-2sys/arch/arm64/dev/aplns.c
+11-103 files

OpenBSD/src o3Ez8Wvlib/libc/sys pledge.2

by deraadt on ⎇
   Yet another AI assisted report has triggered on the belief that
   kill(2) against 0 (for pgrp) should not be permitted by pledge "proc".
   Nothing validates this premise.  Blocking process group kills would
   break substantial amounts of software in dangeous ways, as it creates
   fragile invarient conditions.  We previously tried to block this belief
   with kern_pledge.c:1.357 by subtly adding "/pgrp" in a comment, but that
   was not effective so try adding "kill(2) may still operate on the
   process group with pid 0." to the manual page.  This is annoying
   because the pledge manual page usually describes what is blocked
   (resulting in process killing) rather than specifically listing
   what allowed.
   Discussed with Ivan Arce
VersionDeltaFile
1.86+5-3lib/libc/sys/pledge.2
+5-31 files

OpenBSD/ports DIfNOC0wayland/cagebreak Makefile distinfo

by jca on ⎇
   Minor update to cagebreak-3.2.1

   Now uses wlroots-0.20
VersionDeltaFile
1.4+3-3wayland/cagebreak/Makefile
1.2+2-2wayland/cagebreak/distinfo
+5-52 files

OpenBSD/ports M3cfwa0audio/umurmur Makefile

by sthen on ⎇
   there are no tests, but running them doesn't produce a failure,
   so drop NO_TEST
VersionDeltaFile
1.35+0-2audio/umurmur/Makefile
+0-21 files

OpenBSD/ports Qn4t7yDaudio/umurmur Makefile distinfo, audio/umurmur/patches patch-CMakeLists_txt patch-umurmur_conf_example

by sthen on ⎇
   update to umurmur-0.3.1, from Andrew Kloet
VersionDeltaFile
1.34+1-5audio/umurmur/Makefile
1.14+2-2audio/umurmur/distinfo
1.6+2-2audio/umurmur/patches/patch-CMakeLists_txt
1.7+1-1audio/umurmur/patches/patch-umurmur_conf_example
1.7+1-1audio/umurmur/patches/patch-src_config_h_in
1.4+0-0audio/umurmur/patches/patch-src_CMakeLists_txt
+7-113 files not shown
+7-119 files

OpenBSD/ports tkYxJFVnet/icecast Makefile distinfo, net/icecast/patches patch-conf_icecast_xml_in patch-conf_icecast_minimal_xml_in

by jca on ⎇
   Update to icecast-2.5.0

   Long awaited, many changes in the release notes at
   https://icecast.org/news/icecast-release-2_5_0/

   "looks good" sthen@, positive test report from Andrew Kloet
VersionDeltaFile
1.18+99-44net/icecast/pkg/PLIST
1.11+19-12net/icecast/patches/patch-conf_icecast_xml_in
1.76+7-9net/icecast/Makefile
1.5+8-7net/icecast/patches/patch-conf_icecast_minimal_xml_in
1.11+2-2net/icecast/patches/patch-conf_Makefile_in
1.18+2-2net/icecast/distinfo
+137-764 files not shown
+137-7610 files

OpenBSD/ports VG8SIMjsecurity/rust-openssl-tests distinfo Makefile, security/rust-openssl-tests/pkg PLIST

by tb on ⎇
   Update to rust-openssl-tests 20260630
VersionDeltaFile
1.152+11-0security/rust-openssl-tests/pkg/PLIST
1.211+4-4security/rust-openssl-tests/distinfo
1.219+2-2security/rust-openssl-tests/Makefile
1.173+1-1security/rust-openssl-tests/crates.inc
+18-74 files

OpenBSD/ports W8Tm2z7games/nethack Makefile

by sthen on ⎇
   add 5.0
VersionDeltaFile
1.73+2-0games/nethack/Makefile
+2-01 files

OpenBSD/ports T9dUvhWdevel Makefile

by jca on ⎇
   +libigloo
VersionDeltaFile
1.2591+1-0devel/Makefile
+1-01 files

OpenBSD/ports qx1yZjCgames/nethack/5.0 Makefile, games/nethack/5.0/files openbsd

by sthen on ⎇🏷
   import ports/games/nethack/5.0, from espie, reusing old gid from 3.6 as
   he suggested
VersionDeltaFile
1.1+63-0games/nethack/5.0/Makefile
1.1+45-0games/nethack/5.0/patches/patch-sys_unix_Makefile_top
1.1+43-0games/nethack/5.0/files/openbsd
1.1+38-0games/nethack/5.0/pkg/PLIST
1.1+17-0games/nethack/5.0/patches/patch-sys_unix_mkmkfile_sh
1.1+16-0games/nethack/5.0/patches/patch-src_files_c
+222-014 files not shown
+239-020 files

OpenBSD/ports lyUWjRasysutils/exoscale-cli distinfo Makefile

by ajacoutot on ⎇
   Update to exoscale-cli-1.95.4.
VersionDeltaFile
1.151+2-2sysutils/exoscale-cli/distinfo
1.154+1-1sysutils/exoscale-cli/Makefile
+3-32 files

OpenBSD/ports NNt8FvVdevel/libigloo Makefile distinfo, devel/libigloo/pkg PLIST DESCR

by jca on ⎇🏷
   Import libigloo, needed for icecast-2.5.0

   libigloo is a generic C framework. It is developed and used by the
   Icecast project.

   ok sthen@
VersionDeltaFile
1.1+24-0devel/libigloo/Makefile
1.1+21-0devel/libigloo/pkg/PLIST
1.1+2-0devel/libigloo/distinfo
1.1+2-0devel/libigloo/pkg/DESCR
1.1.1.1+0-0devel/libigloo/distinfo
1.1.1.1+0-0devel/libigloo/pkg/DESCR
+49-02 files not shown
+49-08 files

OpenBSD/ports 8oCMyfXaudio/openal Makefile, geo/gdal Makefile

by jca on ⎇
   clang-scan-deps moved to base, drop lang/clang module

   amd64/arm64/i386 snaps now have said tool, make sure you use a recent
   enough snap.  Tested by tb & me, ok tb@
VersionDeltaFile
1.215+0-6print/poppler/Makefile
1.77+0-6audio/openal/Makefile
1.25+0-5multimedia/mlt7/Makefile
1.176+1-2geo/gdal/Makefile
+1-194 files

OpenBSD/ports eWfhcWewww/mozilla-firefox distinfo Makefile

by landry on ⎇
   www/mozilla-firefox: MFC update to 152.0.4.

   see https://www.firefox.com/en-US/firefox/152.0.4/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-62/
VersionDeltaFile
1.397.2.9+2-2www/mozilla-firefox/distinfo
1.680.2.10+1-1www/mozilla-firefox/Makefile
+3-32 files

OpenBSD/ports Ca2pGnOwww/firefox-i18n distinfo Makefile.inc, www/mozilla-firefox distinfo Makefile

by landry on ⎇
   www/mozilla-firefox: update to 152.0.4.

   see https://www.firefox.com/en-US/firefox/152.0.4/releasenotes/
   fixes https://www.mozilla.org/en-US/security/advisories/mfsa2026-62/
VersionDeltaFile
1.396+164-164www/firefox-i18n/distinfo
1.410+4-4www/mozilla-firefox/distinfo
1.695+2-2www/mozilla-firefox/Makefile
1.351+1-1www/firefox-i18n/Makefile.inc
+171-1714 files

OpenBSD/src JaSuZmdsys/isofs/cd9660 cd9660_node.c, sys/isofs/udf udf_vnops.c

by kirill on ⎇
   sys: check vnode identity after vget

   Several vnode lookup paths keep a vnode pointer from a filesystem hash,
   node tree, or alias list, then call vget() after dropping or lacking the
   lookup side protection. If the vnode is recycled while vget() waits, the
   pointer can still name a valid struct vnode, but no longer the object
   found by the lookup.

   Record v_id before vget() and retry the lookup if the id changes after
   the vnode is locked. This matches the existing namecache pattern and
   turns stale vnode hits into lookup retries instead of returning the
   wrong object.

   OK: claudio@
VersionDeltaFile
1.68+13-4sys/ntfs/ntfs_vfsops.c
1.32+3-12sys/ufs/ufs/ufs_ihash.c
1.76+11-3sys/isofs/udf/udf_vnops.c
1.69+8-2sys/msdosfs/msdosfs_denode.c
1.39+7-1sys/isofs/cd9660/cd9660_node.c
1.335+7-1sys/kern/vfs_subr.c
+49-232 files not shown
+63-258 files

OpenBSD/src V1Nnygcusr.sbin/vmd proc.c vmd.c

by dv on ⎇
   vmd(8): remove extraneous control socket objects.

   Vestiges of the past.

   ok hshoexer@
VersionDeltaFile
1.37+1-8usr.sbin/vmd/proc.c
1.175+1-5usr.sbin/vmd/vmd.c
1.31+1-2usr.sbin/vmd/proc.h
+3-153 files