BSD Commit Log Search

x11-wm/icewm: update IceWM to the latest version 3.9.0

The highlight of this release is support for themed cursors to
gdk-pixbuf without requiring libXpm and using Xcursor files as
an alternative to XPM cursors.

Via:    https://www.opennet.ru/opennews/art.shtml?num=63805

IPv6: fix off-by-one in pltime and vltime expiration checks

Previously, the macros used '>' instead of '>=' when comparing elapsed
time against the preferred and valid lifetimes. This caused any deprecated
address to become usable again for one extra second after receiving each
Router Advertisement. In that short window, the address could be
selected as a source for outgoing connections.

Update the checks to use '>=' so that addresses are deprecated or
invalid when their lifetime expires.

PR:             289177
Reported by:    Dmitry Nexus <fbsd.4f6a at nexus tel>
Reviewed by:    zlei
Submitted by:   Marek Zarychta
MFC after:      1 week
Differential Revision:  https://reviews.freebsd.org/D52323

security/vuxml: Document CUPS vulnerabilities

CVE-2025-58060 cups: Authentication bypass with AuthType Negotiate
CVE-2025-58364 cups: Remote DoS via null dereference

print/cups: Update to 2.4.14

PR:             289626
Security:       CVE-2025-58060
Security:       CVE-2025-58364

bhyve: assign a valid INTPIN to NVIDIA GPUs

When passing an NVIDIA GPU to a Linux VM, the GPU driver refuses to work and
complains about a missing IRQ:

[ 77.208984] NVRM: Can't find an IRQ for your NVIDIA card!
[ 77.212697] NVRM: Please check your BIOS settings.
[ 77.212699] NVRM: [Plug & Play OS] should be set to NO
[ 77.212700] NVRM: [Assign IRQ to VGA] should be set to YES
[ 77.212702] nvidia: probe of 0000:00:07.0 failed with error -1

By setting a valid INTPIN in the PCI config space those error messages
disappear. Additionally, tools like nvidia-smi are able to detect the GPU and
the GPU driver seems to work properly.

Note that bhyve still doesn't support legacy interrupts. So, the guest
shouldn't try to use it even though we're assigning an INTPIN.

Reviewed by:            jhb

    [4 lines not shown]

security/gopass: Update to 1.15.17

ChangeLog: https://github.com/gopasspw/gopass/releases/tag/v1.15.17

net/keycloak: update to 26.3.4

PR:             289621

MFH: www/dokuwiki: Update to 2025-05-14b

Fix XSS vulnerability in search.

ChangeLog:      https://www.dokuwiki.org/changes#release_2025-05-14_librarian
PR:             ports/289424
(cherry picked from commit 2bf2af33a80ad2326c9ccfc672b9a08389b2fe9f)

www/dokuwiki: Update to 2025-05-14b

Fix XSS vulnerability in search.

ChangeLog:      https://www.dokuwiki.org/changes#release_2025-05-14_librarian
PR:             ports/289424
MFH:            2025Q3

www/py-user_agent: unbreak the ports tree

databases/mongosh: update to 2.5.5

Changelog: https://github.com/mongodb-js/mongosh/releases

PR:             288152
Reported by:    Fabien Amelinck <fabien.amelinck+freebsd at advens.fr> (maintainer)

(cherry picked from commit 625fc0d99b160518f23f2f0455d435a1d9ff36f2)

sysutils/mkr: update to 0.62.1

Changelog: https://github.com/mackerelio/mkr/blob/v0.62.1/CHANGELOG.md

Reported by:    portscout

devel/py-python-dbusmock: update to 0.37.0

Changelog: https://github.com/martinpitt/python-dbusmock/releases/tag/0.37.0

Reported by:    portscout

devel/p5-Data-Censor: New port

Data::Censor is a perl module to censor sensitive stuff in a data structure.

www/p5-Dancer2: Update to 2.0.0

kern/kern_event.c: properly spell COMPAT_FREEBSD32

PR:     289504

(cherry picked from commit cab4cf201acf76b415a8f1a59ea4eeeb14b4636c)

geom: only set TDP_GEOM for user threads

PR:     289204

(cherry picked from commit b0474e14895908f45c64158b0e558236923b8eb2)

kern_thr_exit(): clear kASTs in advance

PR:     289204

(cherry picked from commit f51d7d5139a76d225c9f537bd948525ababdef0c)

kern/kern_event.c: properly spell COMPAT_FREEBSD32

PR:     289504

(cherry picked from commit cab4cf201acf76b415a8f1a59ea4eeeb14b4636c)

kern_thr_exit(): clear kASTs in advance

PR:     289204

(cherry picked from commit f51d7d5139a76d225c9f537bd948525ababdef0c)

geom: only set TDP_GEOM for user threads

PR:     289204

(cherry picked from commit b0474e14895908f45c64158b0e558236923b8eb2)

lang/ruby34: Update to 3.4.6

ReleaseNotes:   https://www.ruby-lang.org/en/news/2025/09/16/ruby-3-4-6-released/

release: Fix typo in powerpc mkisoimages.sh

"[ n foo ]" is an error and should have been "[ -n foo ]".

Fortunately the only ill effect was to result in garbage in /tmp/ when
creating powerpc ISO images.

Fixes:  6c3e01bf8578 ("release: Randomize powerpc boot block file name")
MFC after:      3 days
Sponsored by:   https://www.patreon.com/cperciva

release: Pass ABI to running pkgbase-stage on dvd

I did this for disc1 but forgot to amend the dvd invocation.

Fixes:  340e68fd7c0d ("release: Pass ABI to pkgbase-stage.lua")
MFC after:      3 days
Sponsored by:   https://www.patreon.com/cperciva

nvidia-drm-{61,66}-kmod-devel: Update distinfo after drm-{61,66}-kmod updates

Like the commit to `nvidia-drm-{61,66}-kmod, this should have been part
of the update commits, sorry.

Sponsored by:   The FreeBSD Foundation

www/py-user_agent: update to 0.1.14

- update to latest version
- actualize homepage and package description

editors/emacs-devel: Update to 2025-09-15 snapshot

Commit log:     https://github.com/emacs-mirror/emacs/compare/1ba75cc6fc5...d6a7b0cd33c
Sponsored by:   The FreeBSD Foundation

libc++: silence -Wnontrivial-memaccess warning with newer clang

Apply part of LLVM commit 71315698c91d0cda054b903da0594ca6f072c350 to
silence the -Wnontrivial-memaccess warning that is triggered any time
this function is instantiated by user code. This fixes another
buildworld failure with Clang HEAD.

Original commit message:
[clang] Warn about memset/memcpy to NonTriviallyCopyable types (#111434)
This implements a warning that's similar to what GCC does in that
context: both memcpy and memset require their first and second operand
to be trivially copyable, let's warn if that's not the case.

Reviewed by:    emaste, dim
MFC after:      1 week
Differential Revision: https://reviews.freebsd.org/D52534

libc++: Fix deprecation warnings with latest clang

Latest clang has become more strict in diagnosing deprecated decls, so
pull in LLVM commit 9feac2cbd0d80927ce9a8b4c3e810d2b81802d55.

Original commit message:
[libc++] Improve deprecated diagnostic guards.

Recent Clang-21 builds improved the deprecated diagnotics. This
uncovered missing guards in libc++ internally.

Reviewed by:    dim
MFC after:      1 week
Differential Revision: https://reviews.freebsd.org/D52531

libc++: avoid use of deprecated __reference_binds_to_temporary

This was removed in upstream libc++ in commit
437ad06f762ab07d89badecdd20627db200b98d3, but as this does not apply
cleanly to the current repository, I am applying the equivalent change
in a minimally invasive way. This is needed to build with latest clang
HEAD as of today.

Reviewed by:    dim
MFC after:      1 week
Differential Revision: https://reviews.freebsd.org/D52530