OpenBSD/xenocara SLyFevo. MODULES 3RDPARTY

by matthieu on โŽ‡๐Ÿท
   update
VersionDeltaFile
1.557+10-10MODULES
1.463+3-33RDPARTY
+13-132 files

OpenBSD/xenocara 3dLySKBlib/libpng ANNOUNCE configure, lib/libpng/contrib/libtests pnggetset.c

by matthieu on โŽ‡๐Ÿท
   update to libpng 1.6.58. ok deraadt@
VersionDeltaFile
1.2+223-9lib/libpng/contrib/libtests/pnggetset.c
1.8+11-16lib/libpng/ANNOUNCE
1.9+12-12lib/libpng/configure
1.8+8-12lib/libpng/pngrtran.c
1.8+7-7lib/libpng/png.h
1.8+7-0lib/libpng/CHANGES
+268-5614 files not shown
+287-7720 files

OpenBSD/xenocara w8cAy9elib/libXpm/src parse.c data.c

by bluhm on โŽ‡
   Fix Out-of-bounds read. CVE-2026-4367
   from matthieu@

   this is errata/7.7/038_libxpm.patch.sig
VersionDeltaFile
1.9.2.1+3-1lib/libXpm/src/parse.c
1.6.4.1+3-0lib/libXpm/src/data.c
+6-12 files

OpenBSD/xenocara 6UdLQdDlib/libXpm/src parse.c data.c

by bluhm on โŽ‡
   Fix Out-of-bounds read. CVE-2026-4367
   from matthieu@

   this is errata/7.8/032_libxpm.patch.sig
VersionDeltaFile
1.9.10.1+3-1lib/libXpm/src/parse.c
1.6.10.1+3-0lib/libXpm/src/data.c
+6-12 files

OpenBSD/xenocara XmE5GG0lib/libXpm/src parse.c data.c

by matthieu on โŽ‡
   Fix Out-of-bounds read. CVE-2026-4367
VersionDeltaFile
1.11+3-1lib/libXpm/src/parse.c
1.7+3-0lib/libXpm/src/data.c
+6-12 files

OpenBSD/xenocara 07hkFfo. MODULES

by matthieu on โŽ‡
   update
VersionDeltaFile
1.556+2-2MODULES
+2-21 files

OpenBSD/xenocara FmMjbJlxserver/miext/sync misync.c, xserver/xkb xkb.c

by bluhm on โŽ‡
   Merge fixes from upstream for multiple Xserver issues:
   * CVE-2026-33999: XKB Integer Underflow in XkbSetCompatMap()
   * CVE-2026-34000: XKB Out-of-bounds Read in CheckSetGeom()
   * CVE-2026-34001: XSYNC Use-after-free in miSyncTriggerFence()
   * CVE-2026-34002: XKB Out-of-bounds read in CheckModifierMap()
   * CVE-2026-34003: XKB Buffer overflow in CheckKeyTypes()
   from matthieu@

   this is errata/7.7/034_xserver.patch.sig
VersionDeltaFile
1.26.2.2+79-19xserver/xkb/xkb.c
1.6.16.1+12-6xserver/miext/sync/misync.c
+91-252 files

OpenBSD/xenocara Hz2gKKixserver/miext/sync misync.c, xserver/xkb xkb.c

by bluhm on โŽ‡
   Merge fixes from upstream for multiple Xserver issues:
   * CVE-2026-33999: XKB Integer Underflow in XkbSetCompatMap()
   * CVE-2026-34000: XKB Out-of-bounds Read in CheckSetGeom()
   * CVE-2026-34001: XSYNC Use-after-free in miSyncTriggerFence()
   * CVE-2026-34002: XKB Out-of-bounds read in CheckModifierMap()
   * CVE-2026-34003: XKB Buffer overflow in CheckKeyTypes()
   from matthieu@

   this is errata/7.8/028_xserver.patch.sig
VersionDeltaFile
1.26.4.2+79-19xserver/xkb/xkb.c
1.6.24.1+12-6xserver/miext/sync/misync.c
+91-252 files

OpenBSD/xenocara PCiGqw0xserver/miext/sync misync.c, xserver/xkb xkb.c

by matthieu on โŽ‡
   Merge fixes from upstream for multiple Xserver issues:
    * CVE-2026-33999: XKB Integer Underflow in XkbSetCompatMap()
    * CVE-2026-34000: XKB Out-of-bounds Read in CheckSetGeom()
    * CVE-2026-34001: XSYNC Use-after-free in miSyncTriggerFence()
    * CVE-2026-34002: XKB Out-of-bounds read in CheckModifierMap()
    * CVE-2026-34003: XKB Buffer overflow in CheckKeyTypes()
VersionDeltaFile
1.28+79-19xserver/xkb/xkb.c
1.7+12-6xserver/miext/sync/misync.c
+91-252 files

OpenBSD/xenocara FCLxIGO. 3RDPARTY

by matthieu on โŽ‡
   update
VersionDeltaFile
1.462+3-33RDPARTY
+3-31 files

OpenBSD/xenocara wLv9OjUlib/libpng pngset.c ANNOUNCE, lib/libpng/contrib/libtests pnggetset.c

by matthieu on โŽ‡
   Update to libpng 1.6.57. ok deraadt@, naddy@, tb@

   Security fixe for CVE-2026-34757
VersionDeltaFile
1.1+648-0lib/libpng/contrib/libtests/pnggetset.c
1.3+50-4lib/libpng/pngset.c
1.7+16-36lib/libpng/ANNOUNCE
1.4+37-10lib/libpng/Makefile.in
1.7+14-14lib/libpng/pngrtran.c
1.8+12-12lib/libpng/configure
+777-7617 files not shown
+834-10423 files

OpenBSD/xenocara ADh4bjR. MODULES

by matthieu on โŽ‡
   update
VersionDeltaFile
1.555+3-3MODULES
+3-31 files

OpenBSD/xenocara lRcta87distrib/sets/lists/xbase md.amd64 md.arm64

by jsg on โŽ‡
   sync
VersionDeltaFile
1.224+0-1distrib/sets/lists/xbase/md.amd64
1.58+0-1distrib/sets/lists/xbase/md.arm64
1.106+0-1distrib/sets/lists/xbase/md.armv7
1.226+0-1distrib/sets/lists/xbase/md.i386
1.155+0-1distrib/sets/lists/xbase/md.loongson
1.212+0-1distrib/sets/lists/xbase/md.macppc
+0-64 files not shown
+0-1010 files

OpenBSD/xenocara rJElnQylib/mesa/mk/libgbm Makefile

by jsg on โŽ‡
   stop installing libgbm.a everything should be using libgbm.so
   ok tb@ matthieu@
VersionDeltaFile
1.15+6-1lib/mesa/mk/libgbm/Makefile
+6-11 files

OpenBSD/xenocara WRRLB53. 3RDPARTY

by matthieu on โŽ‡
   update
VersionDeltaFile
1.461+6-63RDPARTY
+6-61 files

OpenBSD/xenocara 0ykoLtJlib/libpng pngset.c pngread.c, lib/libpng/arm palette_neon_intrinsics.c

by matthieu on โŽ‡
   Update to libpng 1.6.56 ok tb@

   Security fixes for CVE-2026-33416 and CVE-2026-33636
VersionDeltaFile
1.2+13-103lib/libpng/contrib/oss-fuzz/libpng_transformations_fuzzer.cc
1.2+48-25lib/libpng/pngset.c
1.5+33-35lib/libpng/pngread.c
1.3+52-12lib/libpng/Makefile.in
1.2+29-32lib/libpng/arm/palette_neon_intrinsics.c
1.4+30-27lib/libpng/contrib/oss-fuzz/build.sh
+205-23469 files not shown
+657-46075 files

OpenBSD/xenocara Hp2pgtHdriver/xf86-video-amdgpu Makefile

by jsg on โŽ‡
   No need to set soname.  Wasn't set by autotools or meson builds.
VersionDeltaFile
1.2+2-2driver/xf86-video-amdgpu/Makefile
+2-21 files

OpenBSD/xenocara GXUdxZB. MODULES

by jsg on โŽ‡
   update
VersionDeltaFile
1.554+2-2MODULES
+2-21 files

OpenBSD/xenocara YbEeZHGdistrib/sets/lists/xserv md.riscv64 md.arm64

by jsg on โŽ‡
   sync
VersionDeltaFile
1.8+0-1distrib/sets/lists/xserv/md.riscv64
1.10+0-1distrib/sets/lists/xserv/md.arm64
1.92+0-1distrib/sets/lists/xserv/md.i386
1.87+0-1distrib/sets/lists/xserv/md.amd64
+0-44 files

OpenBSD/xenocara auS7nC4driver/xf86-video-amdgpu meson.build Makefile, driver/xf86-video-amdgpu/man amdgpu.man

by jsg on โŽ‡
   update to xf86-video-amdgpu 25.0.0

   tested by matthieu and myself on multiple machines
VersionDeltaFile
1.5+75-71driver/xf86-video-amdgpu/src/drmmode_display.c
1.5+54-43driver/xf86-video-amdgpu/man/amdgpu.man
1.1+92-0driver/xf86-video-amdgpu/meson.build
1.7+23-32driver/xf86-video-amdgpu/src/amdgpu_kms.c
1.1+48-0driver/xf86-video-amdgpu/Makefile
1.1+43-0driver/xf86-video-amdgpu/src/meson.build
+335-14642 files not shown
+419-17348 files

OpenBSD/xenocara L5oHUEoapp/xterm xterm.man XTerm.ad

by martijn on โŽ‡
   set metaSendsEscape by default. In UTF-8 mode the high bit would be
   interpreted in a latin-1 fashion, before being converted into its UTF-8
   equivalent, resulting in a character, instead of a Meta-combination.

   OK helg@, op@, sthen@, matthieu@
VersionDeltaFile
1.68+7-0app/xterm/xterm.man
1.24+5-0app/xterm/XTerm.ad
+12-02 files

OpenBSD/xenocara ic76o0tlib/freetype/src/truetype ttgxvar.c

by bluhm on โŽ‡
   Backport security fixes from freetype 2.14.2.
   Prevent an integer overflow leading to out-of-bounds read.
   CVE-2026-23865
   from matthieu@

   this is errata/7.7/026_freetype.patch.sig
VersionDeltaFile
1.31.2.1+2-4lib/freetype/src/truetype/ttgxvar.c
+2-41 files

OpenBSD/xenocara OWLLh37lib/freetype/src/truetype ttgxvar.c

by bluhm on โŽ‡
   Backport security fixes from freetype 2.14.2.
   Prevent an integer overflow leading to out-of-bounds read.
   CVE-2026-23865
   from matthieu@

   this is errata/7.8/020_freetype.patch.sig
VersionDeltaFile
1.31.4.1+2-4lib/freetype/src/truetype/ttgxvar.c
+2-41 files

OpenBSD/xenocara hEoLF4J. MODULES 3RDPARTY

by matthieu on โŽ‡
   update
VersionDeltaFile
1.553+6-6MODULES
1.460+3-33RDPARTY
+9-92 files

OpenBSD/xenocara FancCjMapp/xcalc config.sub config.guess

by matthieu on โŽ‡
   Update to xcalc 1.1.3
VersionDeltaFile
1.4+1,471-1,293app/xcalc/config.sub
1.4+1,028-753app/xcalc/config.guess
1.4+206-202app/xcalc/depcomp
1.4+144-259app/xcalc/missing
1.17+80-281app/xcalc/configure
1.16+149-127app/xcalc/aclocal.m4
+3,078-2,91512 files not shown
+3,800-3,24818 files

OpenBSD/xenocara Dopamkvapp/xauth depcomp missing, app/xauth/man xauth.man

by matthieu on โŽ‡
   Update to xauth 1.1.5
VersionDeltaFile
1.5+420-118app/xauth/tests/Makefile.in
1.4+206-202app/xauth/depcomp
1.4+144-259app/xauth/missing
1.21+136-103app/xauth/aclocal.m4
1.15+127-106app/xauth/Makefile.in
1.5+66-57app/xauth/man/xauth.man
+1,099-8457 files not shown
+1,350-96313 files

OpenBSD/xenocara 7Ltqo8oapp/xconsole configure config.sub

by matthieu on โŽ‡
   Update to xconsole 1.1.0
VersionDeltaFile
1.17+3,927-3,332app/xconsole/configure
1.5+1,471-1,293app/xconsole/config.sub
1.4+1,028-753app/xconsole/config.guess
1.4+216-202app/xconsole/install-sh
1.4+206-202app/xconsole/depcomp
1.4+144-259app/xconsole/missing
+6,992-6,0419 files not shown
+7,666-6,49515 files

OpenBSD/xenocara 0QgN7oOapp/xfd configure config.sub

by matthieu on โŽ‡
   Update to xfd 1.1.5
VersionDeltaFile
1.15+3,553-3,203app/xfd/configure
1.4+1,471-1,293app/xfd/config.sub
1.4+1,028-753app/xfd/config.guess
1.4+216-202app/xfd/install-sh
1.4+206-202app/xfd/depcomp
1.4+144-259app/xfd/missing
+6,618-5,91215 files not shown
+7,348-6,25221 files

OpenBSD/xenocara z8Qaedblib/freetype ChangeLog, lib/freetype/src/autofit aflatin.c afadjust.c

by matthieu on โŽ‡
   Update to freetype 2.14.2. tested by rsadowski@
   includes fix for CVE-2026-23865 (Prevent an integer overflow
   leading to out-of-bounds read)
VersionDeltaFile
1.42+3,581-0lib/freetype/ChangeLog
1.33+1,690-231lib/freetype/src/autofit/aflatin.c
1.1+1,621-0lib/freetype/src/autofit/afadjust.c
1.34+506-1,106lib/freetype/src/bdf/bdflib.c
1.42+695-900lib/freetype/src/truetype/ttinterp.c
1.2+774-386lib/freetype/src/sfnt/ttgpos.c
+8,867-2,623622 files not shown
+15,787-7,218628 files

OpenBSD/xenocara tR8z0Xushare/mk bsd.xorg.mk

by matthieu on โŽ‡
   Fix variable substitution in target install-headers-subdirs.
   There may be more than one subdir level.
   Note this target is currently unused in xenocara.
VersionDeltaFile
1.72+3-3share/mk/bsd.xorg.mk
+3-31 files