FreeBSD/ports d1571demail/postfix-current distinfo Makefile, mail/postfix-current/files extra-patch-blocklistd extra-patch-blacklistd

mail/postfix-current: Update to 3.12-20260429
DeltaFile
+19-20mail/postfix-current/files/extra-patch-blocklistd
+0-19mail/postfix-current/files/extra-patch-blacklistd
+0-11mail/postfix-current/files/patch-src_util_sys__defs.h
+6-5mail/postfix-current/files/patch-conf_main.cf
+3-3mail/postfix-current/distinfo
+1-1mail/postfix-current/Makefile
+29-596 files

FreeBSD/ports e2bd784mail/neomutt distinfo Makefile

mail/neomutt: update to 20260504

Release notes:
* https://github.com/neomutt/neomutt/releases/tag/20260406
* https://github.com/neomutt/neomutt/releases/tag/20260504
DeltaFile
+3-3mail/neomutt/distinfo
+1-1mail/neomutt/Makefile
+4-42 files

FreeBSD/ports 4b266f6mail/postfix distinfo Makefile, mail/postfix/files patch-conf_main.cf patch-src_util_sys__defs.h

mail/postfix: Update to 3.11.2

- Update to 3.11.2
- Also address [1]

PR:             294462 [1]
Reported by:    des, dim, postfix release notification e-mail
DeltaFile
+5-8mail/postfix/files/patch-conf_main.cf
+0-11mail/postfix/files/patch-src_util_sys__defs.h
+3-3mail/postfix/distinfo
+2-2mail/postfix/Makefile
+10-244 files

FreeBSD/ports 36c861bdevel/libepoll-shim Makefile

devel/libepoll-shim: Mark FORTIFY_UNSAFE

PR:             292385
Reported by:    Evgenii Khramtsov <2khramtsov at gmail.com>
DeltaFile
+2-0devel/libepoll-shim/Makefile
+2-01 files

FreeBSD/ports 4b7d949emulators/Ymir distinfo Makefile, emulators/Ymir/files patch-apps_ymir-sdl3_src_app_ui_windows_about__window.cpp

emulators/Ymir: Update 0.3.0 => 0.3.1

* Upstream removed the Ymir_INCLUDE_PACKAGING build option, so the port
  removes it from CMAKE_OFF.

* Ymir documents all dependencies in its "About" window. This also
  includes the vendored miniz from the vendored libchdr dependency and
  requires the version constant from miniz.h. This library is currently
  not available as a port and the Ymir port unbundles libchdr in the
  first place, which is also configured to use the system-provided libz
  instead of miniz.
  Therefore remove all miniz references to unbreak the build.

Changelog:
https://github.com/StrikerX3/Ymir/releases/tag/v0.3.1

PR:             294992
Sponsored by:   UNIS Labs
DeltaFile
+22-4emulators/Ymir/files/patch-apps_ymir-sdl3_src_app_ui_windows_about__window.cpp
+3-3emulators/Ymir/distinfo
+2-3emulators/Ymir/Makefile
+27-103 files

FreeBSD/ports 9f7221bgraphics/exrtools pkg-plist Makefile

graphics/exrtools: Update to 0.5
DeltaFile
+20-0graphics/exrtools/pkg-plist
+14-3graphics/exrtools/Makefile
+3-2graphics/exrtools/distinfo
+37-53 files

FreeBSD/src 1b149c2usr.sbin/mixer mixer.c mixer.8, usr.sbin/mixer/tests mixer_test.sh

mixer(8): Deprecate some unintuitive control values

This is a follow-up to cc7479d7dc9b ("mixer(8): Improve mute and recsrc
controls"). These deprecated values will be completely removed on
2026-06-15.

Sponsored by:   The FreeBSD Foundation
MFC after:      1 week
Reviewed by:    0mp
Pull Request:   https://ron-dev.freebsd.org/FreeBSD/src/pulls/21

(cherry picked from commit a28bb575c89c8de62684419ece1ff5e070e4ce24)
(cherry picked from commit 54922e4ec8909829a7ca8d2158c2a514a06df094)
DeltaFile
+31-17usr.sbin/mixer/mixer.c
+9-11usr.sbin/mixer/mixer.8
+1-17usr.sbin/mixer/tests/mixer_test.sh
+41-453 files

FreeBSD/ports e3ff142x11/i3lock-color Makefile distinfo

x11/i3lock-color: Update 2.13.c.4 => 2.13.c.5, fix build

Changelog:
github.com/Raymo111/i3lock-color/releases/tag/2.13.c.5

Port changes:
* Remove unneeded GNU_CONFIGURE_MANPREFIX.
* Fix build by removing redundant STRIP_CMD.
* Switch from GCC to system clang.
* Add bash completions for bash and zsh.
* Pet portfmt.

PR:             294968
Reported by:    Dan Kotowski
Approved by:    vvd (co-mentor)
Co-authored-by: Vladimir Druzenko <vvd at FreeBSD.org>
MFH:            2026Q2

(cherry picked from commit bbdc019af2a94372d0355e17b82819fef453a112)
DeltaFile
+23-10x11/i3lock-color/Makefile
+3-3x11/i3lock-color/distinfo
+26-132 files

FreeBSD/ports bbdc019x11/i3lock-color Makefile distinfo

x11/i3lock-color: Update 2.13.c.4 => 2.13.c.5, fix build

Changelog:
github.com/Raymo111/i3lock-color/releases/tag/2.13.c.5

Port changes:
* Remove unneeded GNU_CONFIGURE_MANPREFIX.
* Fix build by removing redundant STRIP_CMD.
* Switch from GCC to system clang.
* Add bash completions for bash and zsh.
* Pet portfmt.

PR:             294968
Reported by:    Dan Kotowski
Approved by:    vvd (co-mentor)
Co-authored-by: Vladimir Druzenko <vvd at FreeBSD.org>
MFH:            2026Q2
DeltaFile
+23-10x11/i3lock-color/Makefile
+3-3x11/i3lock-color/distinfo
+26-132 files

FreeBSD/src 8acc4c1contrib/libc-vis vis.3

vis.3: Try to better describe VIS_SAFE

The current text fails to draw the reader's attention to the fact that
VIS_SAFE essentially exempts certain characters from being encoded.

While here, fix some markup nits.

MFC after:      1 week
Reviewed by:    markj
Differential Revision:  https://reviews.freebsd.org/D56716
DeltaFile
+19-13contrib/libc-vis/vis.3
+19-131 files

FreeBSD/ports ad4b544sysutils/mixer Makefile

sysutils/mixer: Retire port

There is /etc/rc.d/mixer already, and does the same thing.

PR:             294661
Sponsored by:   The FreeBSD Foundation
Approved by:    mwm at mired.org (maintainer timeout, 2 weeks), diizzy
DeltaFile
+4-0sysutils/mixer/Makefile
+4-01 files

FreeBSD/src e3fc367krb5/include autoconf.h, krb5/util/build-tools krb5-config.sh Makefile

krb5: Adjust additional version strings

Fixes:          736e411a737b

(cherry picked from commit c64ee36e5d09ecee4ce4951047014c8461734fb5)
DeltaFile
+2-2krb5/include/autoconf.h
+1-1krb5/util/build-tools/krb5-config.sh
+1-0krb5/util/build-tools/Makefile
+4-33 files

FreeBSD/src ea93554krb5 Makefile.inc

krb5: Adjust version to 1.22.2

Fixes:          736e411a737b
(cherry picked from commit 8f46ba065143d9d89968a20b23844287d54c04a2)
DeltaFile
+1-1krb5/Makefile.inc
+1-11 files

FreeBSD/src 919b107crypto/krb5 README, crypto/krb5/src configure patchlevel.h

krb5: import MIT 1.22.2

Merge commit '90c687295e2d62f9411fc5b571f5af4e8ee187a7'

(cherry picked from commit 736e411a737b9f57c1303e6d15c5afd4f63af0d3)
DeltaFile
+14-23crypto/krb5/src/lib/krb5/ccache/cc_mslsa.c
+23-1crypto/krb5/README
+10-10crypto/krb5/src/configure
+8-0crypto/krb5/src/lib/krb5/ccache/cc_file.c
+3-3crypto/krb5/src/patchlevel.h
+2-2crypto/krb5/src/man/krb5kdc.man
+60-3934 files not shown
+120-9740 files

FreeBSD/src a22ad16crypto/krb5/src/lib/gssapi/spnego negoex_util.c

krb5: Fix two NegoEx parsing vulnerabilities

Bring in upstream commit 2e75f0d93 fixing two CVEs. Upstream commit
log is:

 In parse_nego_message(), check the result of the second call to
 vector_base() before dereferencing it.  In parse_message(), check for
 a short header_len to prevent an integer underflow when calculating
 the remaining message length.

 Reported by Cem Onat Karagun.

 CVE-2026-40355:

 In MIT krb5 release 1.18 and later, if an application calls
 gss_accept_sec_context() on a system with a NegoEx mechanism
 registered in /etc/gss/mech, an unauthenticated remote attacker can
 trigger a null pointer dereference, causing the process to terminate.


    [10 lines not shown]
DeltaFile
+6-1crypto/krb5/src/lib/gssapi/spnego/negoex_util.c
+6-11 files

FreeBSD/ports 17d38f0databases/mongosh Makefile distinfo, databases/mongosh/files patch-package.json

databases/mongosh: Update 2.5.5 → 2.8.3

Changelogs:
https://github.com/mongodb-js/mongosh/releases/tag/v2.5.6
https://github.com/mongodb-js/mongosh/releases/tag/v2.5.7
https://github.com/mongodb-js/mongosh/releases/tag/v2.5.8
https://github.com/mongodb-js/mongosh/releases/tag/v2.5.9
https://github.com/mongodb-js/mongosh/releases/tag/v2.5.10
https://github.com/mongodb-js/mongosh/releases/tag/v2.6.0
https://github.com/mongodb-js/mongosh/releases/tag/v2.7.0
https://github.com/mongodb-js/mongosh/releases/tag/v2.8.1
https://github.com/mongodb-js/mongosh/releases/tag/v2.8.2
https://github.com/mongodb-js/mongosh/releases/tag/v2.8.3

While here (non-functional changes):
- Split long lines.
- Remove unused variable MPROTECT_DISABLE.
- Fix warnings from portclippy.
- Improve alignment and formatting.

    [4 lines not shown]
DeltaFile
+84-49databases/mongosh/Makefile
+0-31databases/mongosh/files/node-modules-patches/patch-node__modules_kerberos_binding.gyp
+11-11databases/mongosh/distinfo
+21-0databases/mongosh/files/node-patches/011-src_node__cjs__lexer.cc
+8-8databases/mongosh/files/patch-package.json
+13-0databases/mongosh/files/node-modules-patches/patch-packages_build_node__modules_boxednode_lib_index.js
+137-992 files not shown
+137-1208 files

FreeBSD/ports 520e2f7math/mathmod/files patch-ui__modules_mathmod.cpp

math/mathmod: fix with recent clang

Apply a patch from upstream:
https://github.com/parisolab/mathmod/commit/ddf9239f10fb0e07603297c06a23b7adeae8e323

Obtained from:  Abderrahman Taha
DeltaFile
+21-0math/mathmod/files/patch-ui__modules_mathmod.cpp
+21-01 files

FreeBSD/ports d5871afnet/dpdk pkg-plist Makefile, net/dpdk/files patch-drivers_net_intel_i40e_i40e__rxtx__vec__altivec.c patch-drivers_net_intel_common_rx__vec__ppc.h

net/dpdk: port to powerpc64le
DeltaFile
+146-0net/dpdk/files/patch-drivers_net_intel_i40e_i40e__rxtx__vec__altivec.c
+59-0net/dpdk/files/patch-drivers_net_intel_common_rx__vec__ppc.h
+17-16net/dpdk/pkg-plist
+21-5net/dpdk/Makefile
+12-0net/dpdk/files/patch-lib_eal_ppc_rte__cycles.c
+12-0net/dpdk/files/patch-lib_eal_ppc_include_rte__cycles.h
+267-216 files

FreeBSD/ports 1e979f3sysutils/btop distinfo pkg-plist

sysutils/btop: update to 1.4.7

Changelog:      https://github.com/aristocratos/btop/releases/tag/v1.4.7
DeltaFile
+3-3sysutils/btop/distinfo
+6-0sysutils/btop/pkg-plist
+1-1sysutils/btop/Makefile
+10-43 files

FreeBSD/ports d9fe892www/lighttpd Makefile, www/lighttpd/files patch-src_CMakeLists.txt

www/lighttpd: switch to mbedtls3 for MBEDTLS option

PR:     294608
Reported by:    dizzy@
DeltaFile
+32-0www/lighttpd/files/patch-src_CMakeLists.txt
+2-4www/lighttpd/Makefile
+34-42 files

FreeBSD/ports d442c49converters/simdutf Makefile

converters/simdutf: fix build on powerpc64

In file included from /wrkdirs/usr/ports/converters/simdutf/work/simdutf-8.2.0/src/simdutf.cpp:24:
In file included from /wrkdirs/usr/ports/converters/simdutf/work/simdutf-8.2.0/src/simdutf/ppc64.h:34:
/wrkdirs/usr/ports/converters/simdutf/work/simdutf-8.2.0/src/simdutf/ppc64/simd.h:22:37: fatal error: use of 'long long' with '__vector' requires VSX support (available on POWER7 or later) to be enabled
   22 | using vec_u64_t = __vector unsigned long long;
      |                                     ^
15 warnings and 1 error generated.
DeltaFile
+2-0converters/simdutf/Makefile
+2-01 files

FreeBSD/ports cfde074security/spectre-meltdown-checker distinfo Makefile

security/spectre-meltdown-checker: update to v26.33.0420460

Changelog:      https://github.com/speed47/spectre-meltdown-checker/releases/tag/v26.33.0420460
DeltaFile
+3-3security/spectre-meltdown-checker/distinfo
+1-1security/spectre-meltdown-checker/Makefile
+4-42 files

FreeBSD/doc 649a3acdocumentation/static/pgpkeys smyru.key, shared authors.adoc contrib-committers.adoc

Add new ports committer (smyru)

Steps for new committers:
1. Add myself to authors
2. Update lists of developers and contributors
3. Add a news entry
4. Add my PGP key

Reviewed by:            0mp (mentor)
Approved by:            0mp (mentor)
Differential Revision:  https://reviews.freebsd.org/D56063
DeltaFile
+35-0documentation/static/pgpkeys/smyru.key
+4-0website/data/en/news/news.toml
+4-0shared/authors.adoc
+1-0shared/contrib-committers.adoc
+0-1shared/contrib-additional.adoc
+44-15 files

FreeBSD/ports 4adc937security/aws-iam-authenticator distinfo Makefile

security/aws-iam-authenticator: Update to 0.7.14

Changelog:
https://github.com/kubernetes-sigs/aws-iam-authenticator/releases/tag/v0.7.14
DeltaFile
+5-5security/aws-iam-authenticator/distinfo
+1-1security/aws-iam-authenticator/Makefile
+6-62 files

FreeBSD/ports d10e62dwww/nginx-acme distinfo Makefile, www/nginx-devel distinfo Makefile

www/nginx-devel: Update to 1.29.8

Changes with nginx 1.29.8                                        07 Apr
2026

    *) Feature: the "max_headers" directive.
       Thanks to Maxim Dounin.

    *) Feature: OpenSSL 4.0 compatibility.

    *) Feature: now the "include" directive inside the "geo" block
supports
       wildcards.

    *) Bugfix: in processing of HTTP 103 (Early Hints) responses from a
       proxied backend.

    *) Bugfix: the $request_port and $is_request_port variables were not
       available in subrequests.

    [2 lines not shown]
DeltaFile
+3-3www/nginx-acme/distinfo
+3-3www/nginx-devel/distinfo
+1-1www/nginx-acme/Makefile
+1-1www/nginx-devel/Makefile
+1-1www/nginx-devel/version.mk
+9-95 files

FreeBSD/ports 3143752www/mod_security Makefile distinfo

www/mod_security: Update to 2.9.13

Changelog: https://github.com/owasp-modsecurity/ModSecurity/releases/tag/v2.9.13

Sponsored by:   Netzkommune GmbH
DeltaFile
+8-3www/mod_security/Makefile
+5-3www/mod_security/distinfo
+13-62 files

FreeBSD/ports deb3fcbwww/p5-JSON-API distinfo Makefile

www/p5-JSON-API: Update to 1.2.0
DeltaFile
+3-3www/p5-JSON-API/distinfo
+2-1www/p5-JSON-API/Makefile
+5-42 files

FreeBSD/ports 980dcf5net/haproxy26 distinfo Makefile

net/haproxy26: update to version 2.6.27.
DeltaFile
+3-3net/haproxy26/distinfo
+1-1net/haproxy26/Makefile
+4-42 files

FreeBSD/ports f5bc754net/haproxy24 distinfo Makefile

net/haproxy24: update to version 2.4.33.
DeltaFile
+3-3net/haproxy24/distinfo
+1-1net/haproxy24/Makefile
+4-42 files

FreeBSD/ports 85ec293net/haproxy28 distinfo Makefile

net/haproxy28: update to version 2.8.22.
DeltaFile
+3-3net/haproxy28/distinfo
+1-1net/haproxy28/Makefile
+4-42 files