The place for ports
www/chromium: update to 142.0.7444.175<br />
<br />
switch to the -lite upstream tarball to save space<br />
<br />
Security: https://vuxml.freebsd.org/freebsd/ca5d4e87-c465-11f0-b3f7-a8a1599412c6.html
audio/mac: Update to 11.86<br />
<br />
https://www.monkeysaudio.com/versionhistory.html
devel/R-cran-S7: Update to 0.2.1<br />
<br />
Changelog: https://cran.r-project.org/web/packages/S7/news/news.html
devel/efivar: Fix rpath to load libefivar.so from the correct path<br />
<br />
PR: 291053<br />
Approved by: decke (maintainer)<br />
Sponsored by: The FreeBSD Foundation
devel/jenkins: Update to 2.537<br />
<br />
Sponsored by: The FreeBSD Foundation
devel/transient: Update to 0.11.0<br />
<br />
ChangeLog: https://github.com/magit/transient/blob/v0.11.0/CHANGELOG
misc/freebsd-release-manifests: Add 15.0-RC2 MANIFEST files<br />
<br />
Approved by: re (implicit)<br />
Sponsored by: https://www.patreon.com/cperciva
filesystems/openzfs: update to 2.3.5<br />
<br />
Changelog: https://github.com/openzfs/zfs/releases/tag/zfs-2.3.5
filesystems/openzfs-kmod: update to 2.3.5<br />
<br />
Changelog: https://github.com/openzfs/zfs/releases/tag/zfs-2.3.5
www/wp-cli: New port: Command line interface for WordPress<br />
<br />
WP-CLI is the command-line interface for WordPress.<br />
You can update plugins, configure multisite installations and much more,<br />
without using a web browser.<br />
<br />
Co-authored-by: Vladimir Druzenko <vvd@FreeBSD.org><br />
Co-authored-by: takefu@airport.fm<br />
Co-authored-by: avkarenow@o2.pl<br />
<br />
PR: 257679
devel/oci-cli: Update 3.68.1 => 3.71.0<br />
<br />
Changelogs:<br />
https://github.com/oracle/oci-cli/releases/tag/v3.69.0<br />
https://github.com/oracle/oci-cli/releases/tag/v3.70.0<br />
https://github.com/oracle/oci-cli/releases/tag/v3.70.1<br />
https://github.com/oracle/oci-cli/releases/tag/v3.71.0<br />
<br />
PR: 291073
devel/py-oci: Update 2.161.1 => 2.164.0<br />
<br />
Changelog:<br />
https://github.com/oracle/oci-python-sdk/releases/tag/v2.162.0<br />
https://github.com/oracle/oci-python-sdk/releases/tag/v2.163.0<br />
https://github.com/oracle/oci-python-sdk/releases/tag/v2.163.1<br />
https://github.com/oracle/oci-python-sdk/releases/tag/v2.164.0<br />
<br />
PR: 291073
sysutils/kopia: Update to 0.22.0<br />
<br />
ChangeLog: https://github.com/kopia/kopia/releases/tag/v0.22.0
devel/R-cran-future: Update to 1.68.0<br />
<br />
- Use only RUN_DEPENDS since port doesn't compile<br />
<br />
ChangeLog: https://cran.r-project.org/web/packages/future/news/news.html
devel/R-cran-TH.data: Update to 1.1-5<br />
<br />
ChangeLog: https://github.com/cran/TH.data/compare/1.1-4...1.1-5
dns/blocky: Update to 0.28.2<br />
<br />
ChangeLog: https://github.com/0xERR0R/blocky/releases/tag/v0.28.2<br />
MFH: 2025Q4
deskutils/pinot: upgrade to v1.23<br />
<br />
Fix for Curl 8.16.
devel/wasm-server-runner: fix build on powerpc64le<br />
<br />
/wrkdirs/usr/ports/devel/wasm-server-runner/work/wasm-server-runner-1.0.0/cargo-crates/aws-lc-sys-0.27.1/aws-lc/crypto/fipsmodule/cpucap/cpu_ppc64le.c:72:28: error: call to undeclared function 'getauxval'; ISO C99 and later do not support implicit function declarations [-Wimplicit-function-declaration]<br />
[ 32%] Building C object aws-lc/crypto/CMakeFiles/crypto_objects.dir/ec_extra/ec_derive.c.o<br />
[ 32%] Building C object aws-lc/crypto/CMakeFiles/crypto_objects.dir/ec_extra/hash_to_curve.c.o<br />
72 | OPENSSL_ppc64le_hwcap2 = getauxval(AT_HWCAP2);<br />
| ^
graphics/libskiasharp: fix build on powerpc64le<br />
<br />
../src/opts/SkRasterPipeline_opts.h:3304:1: error: 'musttail' attribute for this call is impossible because indirect calls can not be tail called on PPC
lang/spidermonkey102: deprecate and expire EOY
lang/erlang-runtime2[27]: move couchdb3 comment<br />
<br />
...to erlang-runtime27, couchdb3 no longer uses 22.
security/kanidm: Upgrade to 1.8.0<br />
<br />
- Add kanidmd_config parameter to rc script.<br />
- Fix server flavor.<br />
- Fix missing Web UI.<br />
- Improve pkg-descr (also fixes warning in portlint).<br />
<br />
ChangeLogs:<br />
<br />
- https://github.com/kanidm/kanidm/releases/tag/v1.7.4<br />
- https://github.com/kanidm/kanidm/releases/tag/v1.8.0<br />
<br />
PR: 290372<br />
Reported by: brad@facefault.org<br />
Approved by: bofh@freebsd.org (maintainer-timeout)
lang/spidermonkey91: Remove expired port<br />
<br />
lang/spidermonkey91 has no users in the ports tree, so let's remove<br />
before someone adds a museum software port that depends on it.<br />
<br />
We have more than enough newer versions available to start new projects.
databases/pecl-redis: Update 6.2.0 => 6.3.0, add default options zstd and lz4<br />
<br />
Changelog:<br />
https://pecl.php.net/package-info.php?package=redis&version=6.3.0<br />
https://github.com/phpredis/phpredis/releases/tag/6.3.0<br />
<br />
PR: 290853<br />
Approved by: Mateusz Wiącek <wiacek.m@witia.com.pl> (maintainer)
www/firefox: update to 145.0.1<br />
<br />
Release Notes:<br />
https://www.firefox.com/en-US/firefox/145.0.1/releasenotes/
security/nss: update to 3.118.1<br />
<br />
Release Notes:<br />
https://groups.google.com/a/mozilla.org/g/dev-tech-crypto/c/fYE17ts2diI<br />
https://groups.google.com/a/mozilla.org/g/dev-tech-crypto/c/6sTmNA3ELk8
lang/spidermonkey140: add
security/headscale: Update 0.27.0 => 0.27.1<br />
<br />
Changelog:<br />
https://github.com/juanfont/headscale/releases/tag/v0.27.1<br />
<br />
- Replace PORTVERSION with DISTVERSION.<br />
- Paramitrize USE_RC_SUBR.<br />
- Reduce MKDIR calls.<br />
- Use ${ETCDIR} instead of ${PREFIX}/etc/${PORTNAME}.<br />
<br />
PR: 291006
dns/aardvark-dns: slightly improve the port<br />
<br />
Bump PORTREVISION.<br />
<br />
Reported by: diizzy, gleb
mail/fetchmail: update to 6.6.1<br />
<br />
Translation updates by:<br />
* sr: Мирослав Николић [Miroslav Nikolić, Serbian]<br />
* es: Cristian Othón Martínez Vera [Spanish]<br />
<br />
PR: 290987<br />
Approved by: Corey Halpin (maintainer)<br />
<br />
(reinstated from commit 685e0668a312ae1fbc44aa1635b182c0659718c6,<br />
which got reverted due to missing approval)
KDE: Update KDE Plasma to 6.5.3<br />
<br />
Announcement: https://kde.org/announcements/plasma/6/6.5.3/
security/vault-medusa: New Port: Medusa: export secrets from Vault or OpenBao<br />
<br />
PR: 281865
sysutils/py-salt-tower: New Port - external pillar for SaltStack piller composition<br />
<br />
PR: 281933
www/bareos-webui: Fix distinfo<br />
<br />
PR: 291072<br />
Reported by: Trond.Endrestol __at__ ximalas.info
net/dhcpcd: bump port revision
print/hplip(-plugin): Update to 3.25.8
net/dhcpcd: ensure we recv for real after a successful recv MSG_PEEk<br />
<br />
PR: 291081
multimedia/librespot: update to 8.0.0<br />
<br />
Changes: https://github.com/librespot-org/librespot/releases/tag/v0.8.0<br />
<br />
PR: 291035
science/mbdyn: Fix build<br />
<br />
Reported by: fallout
audio/odin2-synthesizer: Fix compilation by adding mixxing xorg dependencies<br />
<br />
Reported by: fallout
textproc/R-cran-readr: Update to 2.1.6<br />
<br />
Reported by: portscout
dns/aardvark-dns: add new port<br />
<br />
Authoritative dns server for A/AAAA container records. Forwards other<br />
request to host's /etc/resolv.conf. It's mostly intended to be used<br />
with netavark which launch it automatically if both are installed.<br />
<br />
Sponsored by: tipi.work
misc/py-napari: update 0.6.4 → 0.6.6
graphics/py-napari-console: update 0.1.3 → 0.1.4
games/powder-toy-devel: update snapshot-389 → snapshot-391
games/hyperrogue: update 13.1f → 13.1g
textproc/difftastic: update 0.65.0 → 0.67.0
textproc/uncrustify: update 0.81.0 → 0.82.0
net-mgmt/telegraf: Update to 1.36.4<br />
<br />
Release notes: https://github.com/influxdata/telegraf/releases/tag/v1.36.4
misc/qman: Update to 1.5.1<br />
<br />
Changelog: https://github.com/plp13/qman/releases/tag/v1.5.1<br />
<br />
Reported by: GitHub (watch releases)
textproc/lowdown: update to 2.0.4
security/certmonger: samba version neutrality<br />
<br />
Allow Certmonger to be installed alongside samba420 if that's<br />
the default
security/vuxml: add www/*chromium < 142.0.7444.175<br />
<br />
Obtained from: https://chromereleases.googleblog.com/2025/11/stable-channel-update-for-desktop_17.html
graphics/libimagequant: Update to 4.4.1<br />
<br />
Changelog: https://github.com/ImageOptim/libimagequant/blob/4.4.1/CHANGELOG<br />
<br />
Reported by: portscout
misc/py-litellm-proxy-extras: Update to 0.4.5<br />
<br />
Reported by: portscout
misc/py-litellm: Update to 1.80.0<br />
<br />
Changelog: https://github.com/BerriAI/litellm/releases<br />
<br />
Reported by: Repology
devel/libphonenumber: Update to 9.0.18
audio/mac: Update to 11.85<br />
<br />
https://www.monkeysaudio.com/versionhistory.html
math/qalculate-gtk: Update to 5.8.2<br />
<br />
https://github.com/Qalculate/qalculate-gtk/releases/tag/v5.8.2
math/libqalculate: Update to 5.8.2<br />
<br />
https://github.com/Qalculate/libqalculate/releases/tag/v5.8.2
math/qalculate-qt: Update to 5.8.2<br />
<br />
https://github.com/Qalculate/qalculate-qt/releases/tag/v5.8.2
sysutils/py-python-bareos: Update to 24.0.7
security/rubygem-webauthn: udpate to 3.4.3<br />
<br />
Changes: https://github.com/cedarcode/webauthn-ruby/blob/master/CHANGELOG.md
security/rubygem-safety_net_attestation: update to 0.5.0<br />
<br />
Changes: https://github.com/cedarcode/safety_net_attestation/blob/master/CHANGELOG.md
lang/ldc: Fix build on 16-CURRENT<br />
<br />
PR: 289699<br />
Reported by: Trond.Endrestol __at__ ximalas.info
lang/fpc*: Fix build cleaning env before sub-gmake<br />
<br />
Arguments passed to make for the top level port build for lang/fpc<br />
can be consumed by gmake used to build the actual upstream project<br />
(vs the ports infrastructure 'make' operations).<br />
<br />
For instance, make -DNO_DEPENDS stage will pass<br />
"MAKEFLAGS= -D NO_DEPENDS ..." in the environment<br />
to the gmake invocation. gmake chokes on that with the following:<br />
<br />
: invalid option -- D<br />
<br />
A fix for that is to clear the environment as with the ports<br />
572f2361692640bc27729191b1267aa3fcc354a7 commit that added SETENVI<br />
and WRK_ENV.<br />
<br />
PR: 291061<br />
Reported by: jcfyecrayz __at__ liamekaens.com
sysutils/bareos-*: Update to 24.0.7<br />
<br />
ChangeLog at: https://github.com/bareos/bareos/releases/tag/Release%2F24.0.7<br />
PR: 285213 290167<br />
Reported by: ohartmann __at__ walstatt.org<br />
Reported by: stewart+FreeBSD-BugZilla __at__ arnos-vale.net<br />
Reported by: vrurg __at__ lflat.org<br />
Reported by: fluffy
telegram-desktop/Makefile: update 6.3.0 -> 6.3.1
net-im/tg_owt: update to the recent snapshot
textproc/R-cran-stringr: Update to 1.6.0<br />
<br />
Add testing dependencies and TESTING_UNSAFE.<br />
Switch WWW to canonical form.<br />
<br />
Changelog: https://cran.r-project.org/web/packages/stringr/news/news.html
x11/hyprls: Update to 0.10.0<br />
<br />
Changelog: https://github.com/hyprland-community/hyprls/releases/tag/v0.10.0<br />
<br />
Reported by: GitHub (watch releases)
devel/hyprlang: Update to 0.6.6<br />
<br />
Changelog:<br />
- https://github.com/hyprwm/hyprlang/releases/tag/v0.6.5<br />
- https://github.com/hyprwm/hyprlang/releases/tag/v0.6.6<br />
<br />
Reported by: GitHub (watch releases)
net/mvfst: update 2025.11.10.00 → 2025.11.17.00
net/fb303: update 2025.11.10.00 → 2025.11.17.00
devel/fatal: update 2025.11.10.00 → 2025.11.17.00
www/proxygen: update 2025.11.10.00 → 2025.11.17.00
devel/fbthrift: update 2025.11.10.00 → 2025.11.17.00
net/wangle: update 2025.11.10.00 → 2025.11.17.00
security/fizz: update 2025.11.10.00 → 2025.11.17.00
devel/folly: update 2025.11.10.00 → 2025.11.17.00
graphics/mesa-devel: update to 25.3.b.1296<br />
<br />
Changes: https://gitlab.freedesktop.org/mesa/mesa/-/compare/8c427aae924...ad25196d356
graphics/drm_info: update to 2.9.0<br />
<br />
Changes: https://gitlab.freedesktop.org/emersion/drm_info/-/tags/v2.9.0<br />
Reported by: GitLab (notify releases)
multimedia/svt-av1-hdr: update to 3.1.2<br />
<br />
Changes: https://github.com/juliobbv-p/svt-av1-hdr/compare/v3.1.0...v3.1.2<br />
Reported by: portscout
emulators/rpcs3: respect USES=llvm when multiple are installed<br />
<br />
Avoid auto-detecting LLVM version which may be too old for build or<br />
cause mismatch with LIB_DEPENDS.<br />
<br />
PR: 285437
lang/ruby40: Update to 4.0.0-preview2<br />
<br />
ReleaseNotes: https://www.ruby-lang.org/en/news/2025/11/17/ruby-4-0-0-preview2-released/
lang/ruby40: Rename from lang/ruby35<br />
<br />
Upstrem changed version of master branch in their repository from 3.5<br />
to 4.0.
security/vuxml: add pkcs11-helper < 1.31.0 parser buffer overflow
mail/fetchmail: Revert "update to 6.6.1"<br />
<br />
This reverts commit 685e0668a312ae1fbc44aa1635b182c0659718c6,<br />
which does not yet have maintainer approval and escaped - sorry.
mail/fetchmail: update to 6.6.1<br />
<br />
Translation updates by:<br />
* sr: Мирослав Николић [Miroslav Nikolić, Serbian]<br />
* es: Cristian Othón Martínez Vera [Spanish]<br />
<br />
PR: 290987<br />
Approved by: (pending)
archivers/zstd: remove lz4, fix manpages<br />
<br />
This shortens the requisite path for lang/python314,<br />
and we have a separate archivers/lz4 port.<br />
<br />
This also updates the manual pages to v1.5.7, the<br />
release tarball missed updating them, see<br />
<https://github.com/facebook/zstd/releases/tag/v1.5.7><br />
<br />
PR: 290739<br />
Approved by: maintainer timeout (sunpoet@, 15 days)
security/openvpn-devel: upgrade port to git commit d6ee27b4ff (2.7_rc2, 2025-11-17)<br />
<br />
This commit brings the port to "openvpn 2.7_rc2"<br />
<br />
Changes of interest for FreeBSD:<br />
<br />
- IPv6 address parsing: fix buffer overread on invalid input<br />
(CVE-2025-12106)<br />
- HMAC verification check: fix incorrect memcmp() call<br />
(CVE-2025-13086)<br />
- even more type conversion related warnings have been fixed<br />
- DCO FreeBSD improvements:<br />
improving debug messages (verb 6)<br />
implement client-side counter handling<br />
repair --inactive (and document shortcomings)<br />
repair handling of DCO disconnection notifications in --client mode<br />
- improve cmocka unit test assert() handling<br />
- PUSH_UPDATE server: fix reporting of client IPs in ``status`` output<br />
after pushing a new IPv4/IPv6 address to client<br />
- AEAD cipher safety margins: fix calculation of AEAD blocks in use<br />
(old code would undercount blocks)<br />
- fix invalid pointer creation / memory overread in tls_pre_decrypt<br />
- deprecate ``--opt-verify`` (change into no-op + warning)<br />
<br />
-- additions by mandree@ --<br />
Security: 50a0c266-c3ff-11f0-b513-0da7be77c170<br />
Security: CVE-2025-12106<br />
Security: 17a40d76-c3fd-11f0-b513-0da7be77c170<br />
Security: CVE-2025-13086<br />
MFH: 2025Q4
security/openvpn: security update to 2.6.16<br />
<br />
Changelog: https://github.com/OpenVPN/openvpn/blob/v2.6.16/Changes.rst#overview-of-changes-in-2616<br />
MFH: 2025Q4<br />
Security: 17a40d76-c3fd-11f0-b513-0da7be77c170<br />
Security: CVE-2025-13086
security/vuxml: add two OpenVPN CVEs<br />
<br />
Security: 50a0c266-c3ff-11f0-b513-0da7be77c170<br />
Security: CVE-2025-12106<br />
Security: 17a40d76-c3fd-11f0-b513-0da7be77c170<br />
Security: CVE-2025-13086
www/rubygem-turbo-rails: Update RUN_DEPENDS: use Rails 8.1<br />
<br />
- Bump PORTREVISION for dependency change
www/rubygem-tailwindcss-rails: Update RUN_DEPENDS: use Rails 8.1<br />
<br />
- Bump PORTREVISION for dependency change
www/rubygem-stimulus-rails: Update RUN_DEPENDS: use Rails 8.1<br />
<br />
- Bump PORTREVISION for dependency change
www/rubygem-propshaft: Update RUN_DEPENDS: use Rails 8.1<br />
<br />
- Bump PORTREVISION for dependency change
www/rubygem-kamal: Update RUN_DEPENDS: use Rails 8.1<br />
<br />
- Bump PORTREVISION for dependency change
www/rubygem-jsbundling-rails: Update RUN_DEPENDS: use Rails 8.1<br />
<br />
- Bump PORTREVISION for dependency change
www/rubygem-importmap-rails: Update RUN_DEPENDS: use Rails 8.1<br />
<br />
- Bump PORTREVISION for dependency change