18:02 Mathieu Arnold (mat) 

• dns/bind-tools 9.20.7 Command line tools from BIND: delv, dig, host, nslookup...
• dns/bind9-devel 9.21.6 BIND DNS suite with updated DNSSEC and DNS64

dns/bind9-devel: update to 9.21.6

Changes:	https://downloads.isc.org/isc/bind9/9.20.7/doc/arm/html/notes.html
(cherry picked from commit 0700367e02dd09ef4d948306902f331998d35a32)

    0691928

18:02 Mathieu Arnold (mat) 

• dns/bind-tools 9.20.7 Command line tools from BIND: delv, dig, host, nslookup...
• dns/bind920 9.20.7 BIND DNS suite with updated DNSSEC and DNS64

dns/bind920: update to 9.20.7

Changes:	https://downloads.isc.org/isc/bind9/9.20.7/doc/arm/html/notes.html
(cherry picked from commit 0700366454b099407c65acac297c8bffa44a7b38)

    0691927

18:01 Mathieu Arnold (mat) 

• dns/bind918 9.18.35 BIND DNS suite with updated DNSSEC and DNS64

dns/bind918: update to 9.18.35

Changes:	https://downloads.isc.org/isc/bind9/9.18.35/doc/arm/html/notes.html
(cherry picked from commit 0700365f7cb73eeb31567256140c3ba9ecdc1dd2)

    0691926

16:50 Po-Chuan Hsieh (sunpoet) 

• www/rubygem-rack22 2.2.13,3 Rack, a modular Ruby web server interface

www/rubygem-rack22: Update to 2.2.13

Changes:	https://github.com/rack/rack/blob/2-2-stable/CHANGELOG.md
Security:	CVE-2025-27111, CVE-2025-27610
(cherry picked from commit c93c028f174c33a14835c7c58fbc1abc0dd4caae)

    f521516

16:50 Po-Chuan Hsieh (sunpoet) 

• www/rubygem-rack22 2.2.11,3 Rack, a modular Ruby web server interface

www/rubygem-rack22: Update to 2.2.11

Changes:	https://github.com/rack/rack/blob/2-2-stable/CHANGELOG.md
(cherry picked from commit 15ee8bae004f106c21e91f98af92c64c22d1b690)

    14a1c89

16:50 Po-Chuan Hsieh (sunpoet) 

• www/rubygem-rack 3.0.14,3 Rack, a modular Ruby web server interface

www/rubygem-rack: Update to 3.0.14

Changes:	https://github.com/rack/rack/releases
		https://github.com/rack/rack/blob/main/CHANGELOG.md
Security:	CVE-2025-27111, CVE-2025-27610
(cherry picked from commit 9301d1aff018e7cf5c76e3f5579be71efd068d78)

    fcad526

15:56 Po-Chuan Hsieh (sunpoet) 

• www/rubygem-rack 3.0.12,3 Rack, a modular Ruby web server interface

www/rubygem-rack: Update to 3.0.12

Changes:	https://github.com/rack/rack/releases
		https://github.com/rack/rack/blob/main/CHANGELOG.md
(cherry picked from commit 1d6c9d4766de2c0e498d8a1a686ffd0675530947)

    f8f4c95

15:54 Po-Chuan Hsieh (sunpoet) 

• security/rubygem-ruby-saml 1.18.0 SAML toolkit for Ruby on Rails

security/rubygem-ruby-saml: Update to 1.18.0

Changes:	https://github.com/SAML-Toolkits/ruby-saml/releases
Security:	CVE-2025-25291, CVE-2025-25292, CVE-2025-25293
(cherry picked from commit cf78e151d2e2404958b7e78539d9305168671be1)

    35cc934

15:54 Po-Chuan Hsieh (sunpoet) 

• textproc/tinyxml2 10.1.0,1 Small C++ XML Parser

textproc/tinyxml2: Update to 10.1.0

Changes:	https://github.com/leethomason/tinyxml2/releases
Security:	CVE-2024-50615
(cherry picked from commit e186d459f0f9b67ee4381ab66dd784fbb3d997a7)

    a5499af

08:55 Robert Nagy (rnagy) 

• www/iridium 2025.03.134 Iridium browser

www/iridium: update to 2025.03.134

(cherry picked from commit 9a673fbc1f30bb6238b520e5b8204374b97187cc)

    2ae17a8

01:11 Koichiro Iwao (meta) 

• devel/ruby-build 20250318 Compile and install different ruby versions

devel/ruby-build: Update to 20250318

Changes:	https://github.com/rbenv/ruby-build/releases/tag/v20250318
(cherry picked from commit 9bbba96ca8879c1f63633cf982eb4e208374d80e)

    eee3d2d

11:20 Christoph Moench-Tegeder (cmt) 

• mail/thunderbird 128.8.1 Mozilla Thunderbird is standalone mail and news that stands above

mail/thunderbird: update to 128.8.1 (rc1)

Release Notes (soon):
  https://www.thunderbird.net/en-US/thunderbird/128.8.1esr/releasenotes/

(cherry picked from commit a82804c87e83b01bab86c9279076239f1eac5b96)

    aedb014

18:38 Brooks Davis (brooks) 

• devel/llvm18 18.1.8_2 LLVM and Clang

devel/llvm18: backport llvm19 fixes

Pull in the patch from llvm1[567] and manually patch fold-logical.cpp
(there's nothing sensible to back port because the offending code was
rewritten in a commit that doesn't apply easily between 18 and 19.)

PR:		283966, 285195
Submitted by:	milios@ccsys.com (fixed backport patch)

(cherry picked from commit 092b9a234522e403db69de50bb04c34b6f12c709)

    48d88a1

18:38 Brooks Davis (brooks) 

• devel/llvm17 17.0.6_8 LLVM and Clang

devel/llvm17: backport flang fixes for llvm19

The FLANG option is off by default so this wasn't noted in the llvm19
import.  Backport 7bc7672925f81 from upstream LLVM.

The patches to fold-real.cpp and reduction-templates.h were hand
applied.

PR:		283966, 285195
Reported by:	ohartmann@walstatt.org
Submitted by:	milios@ccsys.com

(cherry picked from commit 62739e5a874c4114b4e049dbbd655e7f88c017a3)

    8c9c675

18:38 Brooks Davis (brooks) 

• devel/llvm16 16.0.6_11 LLVM and Clang

devel/llvm16: fix backport of llvm19 fixes

There was a missing line in the patch causing part of it to be ignored.

PR:		285195
Submitted by:	milios@ccsys.com
Fixes:		9592edb43243 devel/llvm16: backport flang fixes for llvm19

(cherry picked from commit 78af7a3a03a4a5012cf378fd8d4c08eedf99eb05)

    ade92d9

18:38 Brooks Davis (brooks) 

• devel/llvm15 15.0.7_10 LLVM and Clang

devel/llvm15: fix backport of llvm19 fixes

There was a missing line in the patch causing part of it to be ignored.

PR:		285195
Submitted by:	milios@ccsys.com
Fixes:		ce2f720d96cd devel/llvm15: backport flang fixes for llvm19

(cherry picked from commit 50eaa5a64eb72b760ae74c8254c3f23a9c534063)

    670a29d

18:38 Brooks Davis (brooks) 

• devel/llvm15 15.0.7_10 LLVM and Clang

devel/llvm15: backport flang fixes for llvm19

The FLANG option is off by default so this wasn't noted in the llvm19
import.  Backport 7bc7672925f81 from upstream LLVM.

The patches to fold-real.cpp and reduction-templates.h were hand
applied.

PR:		285195
Reported by:	milios@ccsys.com

(cherry picked from commit ce2f720d96cde31a9d6c3801a1b3dc583e1d23e3)

    86029af

18:38 Brooks Davis (brooks) 

• devel/llvm-devel 20.0.d20250103 LLVM and Clang

devel/llvm-devel: Fix !CLANG plist

llvm-debuginfo-analyzer isn't part of Clang, but was matched by the
overly broad pattern `-analyzer`.

Reported by:	jrtc27
Sponsored by:	DARPA, AFRL

(cherry picked from commit 66b3823c32b3a0a1b9afac6a830a37cb8c7760fb)

    67703ef

18:38 Brooks Davis (brooks) 

• devel/llvm18 18.1.8_2 LLVM and Clang

devel/llvm18: Fix !CLANG plist

llvm-debuginfo-analyzer isn't part of Clang, but was matched by the
overly broad pattern `-analyzer`.

Reported by:	jrtc27
Sponsored by:	DARPA, AFRL

(cherry picked from commit 460b1965554d2e5b9d6adae27f050a99698a46a0)

    2d9bf09

18:38 Brooks Davis (brooks) 

• devel/llvm17 17.0.6_8 LLVM and Clang

devel/llvm17: Fix !CLANG plist

llvm-debuginfo-analyzer isn't part of Clang, but was matched by the
overly broad pattern `-analyzer`.

Reported by:	jrtc27
Sponsored by:	DARPA, AFRL

(cherry picked from commit 11d0f00be180971e3fbad8aa5a4ec3f7f4d8ce92)

    0a48be3

18:38 Brooks Davis (brooks) 

• devel/llvm16 16.0.6_11 LLVM and Clang

devel/llvm16: Fix !CLANG plist

llvm-debuginfo-analyzer isn't part of Clang, but was matched by the
overly broad pattern `-analyzer`.

Reported by:	jrtc27
Sponsored by:	DARPA, AFRL

(cherry picked from commit d7d561d6af3d12df162c85bb5fa673b9d9bb0f43)

    d0561bf

18:38 Brooks Davis (brooks) 

• devel/llvm15 15.0.7_10 LLVM and Clang

devel/llvm15: whitespace [NFC]

(cherry picked from commit 74fd03383b13bb80ea99bcac70ea275910d4cac3)

    9dadd6e

18:38 Brooks Davis (brooks) 

• devel/llvm16 16.0.6_11 LLVM and Clang

devel/llvm16: backport flang fixes for llvm19

The FLANG option is off by default so this wasn't noted in the llvm19
import.  Backport 7bc7672925f81 from upstream LLVM.

The patches to fold-real.cpp and reduction-templates.h were hand
applied.

PR:		283966
Reported by:	ohartmann@walstatt.org

(cherry picked from commit 9592edb43243a6a2bdef59c99a69e5a309df910f)

    4a13ba0

18:38 Brooks Davis (brooks) 

• emulators/qemu-user-static 3.1.0_15 QEMU CPU Emulator (github bsd-user branch)

emulators/qemu-user-static: fix build on main

Call __sys___readlinkat() rather than the now removed __readlinkeat().
Neither are public interfaces, but __sys___readlinkat is somewhat more
so and is declared in libsys.h.

Reported by:	cperciva
MFH:		2025Q1
Sponsored by:	DARPA, AFRL

(cherry picked from commit 4afa6308d101da21a749701566c5088bc2c7041e)

    003492f

18:23 Christoph Moench-Tegeder (cmt) 

• www/firefox 136.0.2,2 Web browser based on the browser portion of Mozilla

www/firefox: update to 136.0.2 (rc1)

Release Notes (soon):
  https://www.mozilla.org/en-US/firefox/136.0.2/releasenotes/

(cherry picked from commit b77838a90e0969901fd66456219a4873da5d4714)

    378eddc

10:22 Robert Clausecker (fuz) 

• lang/spl 1.2.1_6 Shakespeare programming language

lang/spl: deprecate and expire on 2025-06-30

Dead upstream.

(cherry picked from commit 6efd1b16b45f3d848422be8ce923614924c3b785)

    7192b9f

10:22 Robert Clausecker (fuz) 

• x11-themes/wpgtk 6.7.0 Colorscheme, wallpaper and template manager

x11-themes/wpgtk: update to 6.7.0

A bug fix release.

Upstream changes:

 - remove call to deprecated reload.gtk()
 - add waybar reloading

MFH:		2025Q1
(cherry picked from commit 8e6e2b24b556227c2bfbf21646aa5dcca8240fa3)

    a539cf0

10:22 Robert Clausecker (fuz) 

• x11-fonts/iosevka-comfy 2.1.0 Iosevka Comfy - customised build of the Iosevka typeface 

x11-fonts/iosevka-comfy: mark as RESTRICTED

Upstream believes the font to not be distributable as it has the same
name as the original font it is derived from.  This violates § 3 of the
ISL Open Font License 1.1.

The renamed font is distributable and provided in x11-fonts/aporetic,
but has reduced variants.  Maintainer has requested that this port
remain for use until all variants are added.

PR:		284597
MFH:		2025Q1
(cherry picked from commit fc467fa00c914023f1c387aa3a5baea1cd6546a9)

    aeaeb7b

10:22 Robert Clausecker (fuz) 

• graphics/openpgl 0.6.0_1 Intel Open Path Guiding Library

graphics/openpgl: not for armv?

While armv7 supports NEON, this library specifically requires the
AArch64 flavour of NEON.

Approved by:	portmgr (build fix blanket)
MFH:		2025Q1

(cherry picked from commit 003810f21770d6b48a72e18cfbfed5b9b25a21ed)

    7dd5728

00:26 Jan Beich (jbeich) 

• x11-toolkits/libadwaita 1.6.5 Building blocks for modern GNOME applications

x11-toolkits/libadwaita: update to 1.6.5

Changes:	https://gitlab.gnome.org/GNOME/libadwaita/-/blob/1.6.5/NEWS
Reported by:	Repology, portscout

(cherry picked from commit deb646378a72747579dff12074e968cdbd3ec7f3)

    009e079

15:55 Robert Nagy (rnagy) 

• www/ungoogled-chromium 134.0.6998.88 Google web browser based on WebKit sans integration with Google

www/ungoogled-chromium: update to 134.0.6998.88

Security:	https://vuxml.freebsd.org/freebsd/a02a6d94-fe53-11ef-85f3-a8a1599412c6.html
(cherry picked from commit 8735b54cc2ca750ea5549c077ad89741f28c2374)

    2f76baf

12:30 Vladimir Druzenko (vvd) 

• www/tomcat101 10.1.39 Open-source Java web server by Apache, 10.1.x branch

www/tomcat101: 10.1.36 → 10.1.39

Changelogs:
https://tomcat.apache.org/tomcat-10.1-doc/changelog.html#Tomcat_10.1.39_(schultz)

MFH:	2025Q1
(cherry picked from commit 26bcbb0d7391575174d8520188f606cca0000761)

    54893ae

04:20 Yuri Victorovich (yuri) 

• misc/onnxruntime 1.18.2_1 Cross-platform, high performance ML inferencing & training accelerator

misc/onnxruntime: Broken on armv7

Reported by:	fallout

(cherry picked from commit 5b4f8cff7a82d04c33f79fde83216373f809b3b1)

    3f96c29

04:01 Yuri Victorovich (yuri) 

• devel/cargo-leptos 0.2.29_2 Build tool for Leptos

devel/cargo-leptos: Brokenn on armv7

Reported by:	fallout

(cherry picked from commit 319ed34c3508055b1eac6e5d2b3892cd5389bba8)

    9bde745

23:45 Palle Girgensohn (girgen) 

• security/opensaml 3.3.1 Open source implementation of SAML2
• security/shibboleth-sp 3.5.0_3 C++ Shibboleth Service Provider (Internet2) for Apache

security/opensaml: Update to 3.3.1

Bump dependent shibboleth-sp port.

Security:	0b43fac4-005d-11f0-a540-6cc21735f730
(cherry picked from commit fcca9459a4865777bb14a761b527d33d1bc42531)

    9c0ba34

12:44 Vladimir Druzenko (vvd)  Author: Martin Filla

• www/librewolf 136.0.1 Custom version of Firefox, focused on privacy, security and freedom

www/librewolf: Update 136.0-2 136.0.1-1

Changelog:
https://www.mozilla.org/en-US/firefox/136.0.1/releasenotes/

PR:	285360
MFH:	2025Q1
(cherry picked from commit ff2229bd6457460d77452d3f832c56b2914a8815)

    5329fd9

08:39 Jan Beich (jbeich) 

• games/veloren-weekly s20250313 Multiplayer voxel RPG written in Rust (weekly snapshot)

games/veloren-weekly: update to s20250313

Changes:	https://gitlab.com/veloren/veloren/-/compare/1a99dd269...e3f18f4ec
(cherry picked from commit 67794c33caa7ef9c72b696cec1a87ae48cb8e781)

    9d9962a

07:13 Matthias Fechner (mfechner) 

• devel/gitaly 17.9.2 Smart reverse proxy for GitLab
• net/gitlab-agent 17.9.2 GitLab kubernetes agent
• net/rubygem-gitlab-kas-grpc 17.9.2 Auto-generated gRPC client for KAS
• security/rubygem-ruby-saml-gitlab 1.18.0 SAML toolkit for Ruby on Rails
• www/gitlab 17.9.2 Web GUI for managing git repositories
• www/gitlab-pages 17.9.2 Official GitLab Pages daemon
• www/gitlab-workhorse 17.9.2 Smart reverse proxy for GitLab

www/gitlab: security and bugfix update to 17.9.2

Changes:	https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released/
Security:	a435609c-ffd5-11ef-b4e4-2cf05da270f3
(cherry picked from commit fd8d065bf288e0d18a8572aa5ea8dd4de9f48f35)

    c724de4

07:13 Matthias Fechner (mfechner) 

• security/rubygem-gitlab-secret_detection 0.20.5 Secret detector for Gitlab

security/rubygem-gitlab-secret_detection: update to 0.20.5

Changes:	https://gitlab.com/gitlab-org/security-products/secret-detection/secret-detection-service/-/blob/main/CHANGELOG.md
(cherry picked from commit bd24f66f97a73900d7f9ee68e6827ecea142ec21)

    f492303

07:13 Matthias Fechner (mfechner) 

• devel/rubygem-graphql 2.4.12 Plain-Ruby implementation of GraphQL

devel/rubygem-graphql: update to 2.4.12

Changes:	https://github.com/rmosolgo/graphql-ruby/blob/master/CHANGELOG.md
(cherry picked from commit cae19142e7633996d8d1c3843834c4dce87a9c83)

    b40efa0

07:12 Matthias Fechner (mfechner) 

• security/rubygem-gitlab-secret_detection 0.20.4 Secret detector for Gitlab

security/rubygem-gitlab-secret_detection: update to 0.20.4

Changes:	https://gitlab.com/gitlab-org/security-products/secret-detection/secret-detection-service/-/blob/main/CHANGELOG.md
(cherry picked from commit a9c21dcc514395913b45bf736661f5c0d5a047cf)

    2851bc7

07:12 Matthias Fechner (mfechner) 

• mail/rubygem-gitlab-mail_room 0.0.27 Proxy email (gmail) from IMAP to a delivery method

mail/rubygem-gitlab-mail_room: update to 0.27.0

Changes:	https://github.com/tpitale/mail_room/commits/master/
(cherry picked from commit 7c7561997967d16f4e9fcf5533c699432b39c9aa)

    d818f80

01:40 Charlie Li (vishwin) 

• devel/wasi-compiler-rt19 19.1.7 Clang builtins library for WebAssembly System Interface
• devel/wasi-libcxx19 19.1.7 C++ standard library for WebAssembly System Interface

devel/wasi-{compiler-rt,libcxx}19: sync to 19.1.7

(cherry picked from commit b2ce97c92a79fdc093a304c49dfca39f3cccf9f2)

    1974413

01:02 Adam Weinberger (adamw) 

• editors/vim 9.1.1199 Improved version of the vi editor (console flavor)

editors/vim: Update to 9.1.1198 (security)

potential data loss with zip.vim and special crafted zip files

Date: 12.03.2025
Severity: Medium
CVE: CVE-2025-29768
CWE: Improper Neutralization of Argument Delimiters in a Command ('Argument
Injection') (CWE-88)
Summary

potential data loss with zip.vim and special crafted zip files
Description

Vim is distributed with the zip.vim plugin, that allows easy editing and
viewing of zip archives.

To view and extract zip files, vim uses the unzip(1) command, usually
provided by Info-ZIP, latest version on Debian is 6.0 from April 2009.

If an attacker creates an archive which contains a file -d/tmp, and a Vim
user views such a file and tries to extract such filename from
the archive, Vim will essentially run the following unzip command:

unzip -o <archive.zip> member-filename

However, since the member-filename is called -d/tmp, this is seen by
the unzip command as an additional argument and it therefore happily
extracts the whole archive into the mentioned directory, overwriting existing
files because of the -o.

Unfortunately, the latest released unzip version does not support --
as and end-of-argument marker, so we cannot use this to mark the
beginning of the member-files for unzip. Well, apparently there exists
some 6.10 beta release, that hasn't made it to an official release
yet which supports the use of the -- marker since 2010 (but this isn't
widely known).

Therefore, Vim will try to work-around it by using the [-] glob when a
filename starts with a - to protect unzip from parsing the filename as
an argument, which is just an ugly work-around.
Impact

Impact is moderate because a user must be made to view such an archive
with Vim and then press 'x' to extract such a strange filename.

The Vim project would like to thank @Ry0taK (GMO Flatt Security Inc) and
@takumi-san-ai for reporting this issue.

MFH:		2025Q1
Security:	GHSA-693p-m996-3rmf
(cherry picked from commit f1e4dac294a4de0cd9dcf6d85d0573a70e2bc2cd)

    11f6bb7

23:58 Jan Beich (jbeich) 

• games/veloren-weekly s20250312 Multiplayer voxel RPG written in Rust (weekly snapshot)

games/veloren-weekly: update to s20250312

Changes:	https://gitlab.com/veloren/veloren/-/compare/ce0b7f06b...1a99dd269
(cherry picked from commit a5ccdaa9a803e8b236fe54f1e0c89352130b9c5c)
(cherry picked from commit 0ba3161fed90efaeea26438d6fb7815a262f392f)

    9044140

10:43 Vladimir Druzenko (vvd)  Author: Laurent Chardon

• net/openmpi 5.0.6_1 High Performance Message Passing Library

net/openmpi: Fix 16 byte atomic operations on amd64

Clang does not support 16 byte atomic operations without -mcx16 on amd64
Upstream issue: https://github.com/open-mpi/ompi/issues/13134

PR:	285341
MFH:	2025Q1
(cherry picked from commit 07722f6ed2aa26e76ae830cfc26341788f4b7195)

    da3c094

20:36 Vladimir Druzenko (vvd)  Author: Jack

• audio/audacity 3.7.2 GUI editor for digital audio waveforms

audio/audacity: Upgrade 3.7.1 → 3.7.2

Changelog:
https://support.audacityteam.org/additional-resources/changelog/audacity-3.7.2

While here pet portclippy.

PR:	285321
MFH:	2025Q1
(cherry picked from commit 8d80126a5792c5d0d92163f55b8454d475455ba2)

    7d07ea7

17:39 Christoph Moench-Tegeder (cmt) 

• www/firefox 136.0.1,2 Web browser based on the browser portion of Mozilla

www/firefox: update to 136.0.1

Release Notes:
  https://www.mozilla.org/en-US/firefox/136.0.1/releasenotes/

(cherry picked from commit 9b96b9c5658628c3226dff57676a7467ec7f771f)

    ff80fee

08:52 Robert Nagy (rnagy) 

• www/chromium 134.0.6998.88_1 Google web browser based on WebKit

www/chromium: update to 134.0.6998.88

Security:	https://vuxml.freebsd.org/freebsd/a02a6d94-fe53-11ef-85f3-a8a1599412c6.html
(cherry picked from commit 8e1d8416e8b4b3c41908018ce54de731ff9db448)

    4df8e73

00:04 Colin Percival (cperciva) 

• misc/freebsd-release-manifests 20250307 FreeBSD release manifests

misc/freebsd-release-manifests: Add 13.5-RELEASE MANIFEST files

Approved by:	re (implicit)
Sponsored by:	Amazon

(cherry picked from commit 02dd5021d6f9912e3758381b7b68a26ee70c719c)

    d06105d

09:44 Hiroki Tagato (tagattie) 

• devel/electron33 33.4.3 Build cross-platform desktop apps with JavaScript, HTML, and CSS

devel/electron33: update to 33.4.3

Changelog:
- https://github.com/electron/electron/releases/tag/v33.4.1
- https://github.com/electron/electron/releases/tag/v33.4.2
- https://github.com/electron/electron/releases/tag/v33.4.3

Reported by:	GitHub (watch releases)
MFH:		2025Q1
Security:	f4f3e001-402b-4d6d-8efa-ab11fcf8de2b
Security:	6ba9e26e-c9c6-49f7-ae43-47e5864f0b66

(cherry picked from commit 45204c90a5b707dc96a1c178d593f82cec96b2bc)

    4dd4983

09:44 Hiroki Tagato (tagattie) 

• devel/electron33 33.4.0 Build cross-platform desktop apps with JavaScript, HTML, and CSS

devel/electron33: update to 33.4.0

Changelog: https://github.com/electron/electron/releases/tag/v33.4.0

Reported by:	GitHub (watch releases)

(cherry picked from commit 8cac27191424018d59827137aa5fd86c8164ae55)

    a4f82df

07:06 Robert Nagy (rnagy) 

• www/ungoogled-chromium 134.0.6998.35 Google web browser based on WebKit sans integration with Google

www/ungoogled-chromium: update to 134.0.6998.35

Security:	https://vuxml.freebsd.org/freebsd/9c62d3f0-f997-11ef-85f3-a8a1599412c6.html
(cherry picked from commit 187fac406338225b76dde1b3f10eddfb0e34b9a9)

    b0b974f

20:05 Jan Beich (jbeich) 

• x11/nwg-look 1.0.3 GTK settings editor adapted to work in the wlroots environment

x11/nwg-look: update to 1.0.3

Changes:	https://github.com/nwg-piotr/nwg-look/releases/tag/v1.0.3
Reported by:	GitHub (watch releases)

(cherry picked from commit 1ba21b7a2959b7eea1325f387dbf2cf2adaf7330)

    0a896c2

21:30 Vladimir Druzenko (vvd)  Author: Martin Filla

• www/librewolf 136.0_1 Custom version of Firefox, focused on privacy, security and freedom

www/librewolf: Update 136.0-1 → 136.0-2

Changelog:
https://codeberg.org/librewolf/source/releases/tag/136.0-2

PR:	285258
MFH:	2025Q1
(cherry picked from commit 1c3e9c8f6c576002cad70def8632adbc92a2184e)

    ecca3fd

20:43 Vladimir Druzenko (vvd)  Author: Rafael Grether

• filesystems/s3fs 1.95 FUSE-based file system backed by Amazon S3

filesystems/s3fs: Update 1.92 → 1.95, unbreak - fix coredump

Changelogs:
https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.93
https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.94
https://github.com/s3fs-fuse/s3fs-fuse/releases/tag/v1.95

Improve port:
- remove GNU_CONFIGURE_MANPREFIX;
- pet portclippy;
- improve description.

PR:		285261 281071
Approved by:	dmgk (maintainer, timeout > 6 months, implicit - unbreak)
MFH:		2025Q1

(cherry picked from commit e26ad835aecd0ffb22bc9f3dec51e097e7138a1a)

    36ce604

14:37 Vladimir Druzenko (vvd) 

• www/librewolf 136.0 Custom version of Firefox, focused on privacy, security and freedom

www/librewolf: Switch to use the builtin icu as devel/icu is too old on 2025Q1

PR:		285169
Reported by:	cmt (via email)
Fixes:		189ac8337451 (Update 135.0.1 → 136.0)
MFH:		2025Q1

(cherry picked from commit 4288c5fbf380c14254082cb5326899f8406c3b37)

    af39d6b

13:41 Hiroki Tagato (tagattie) 

• devel/electron32 32.3.3 Build cross-platform desktop apps with JavaScript, HTML, and CSS

devel/electron32: update to 32.3.3

Changelog: https://github.com/electron/electron/releases/tag/v32.3.3

Reported by:	GitHub (watch releases)
MFH:		2025Q1
Security:	6e27040b-61b7-4989-9471-dfb10c3cd76e

(cherry picked from commit a7e584459773256a77a86470a3117da7314d5af5)

    e0c7ff6

12:23 Vladimir Druzenko (vvd)  Author: Martin Filla

• www/librewolf 136.0 Custom version of Firefox, focused on privacy, security and freedom

www/librewolf: Update 135.0.1 → 136.0

Changelog:
https://www.mozilla.org/en-US/firefox/136.0/releasenotes/

PR:	285169
MFH:	2025Q1
(cherry picked from commit 189ac8337451019f7f07f7590f971257599b9507)

    75bfa67

07:20 Jan Beich (jbeich) 

• multimedia/ab-av1 0.9.1 AV1 re-encoding using ffmpeg, svt-av1 & vmaf

multimedia/ab-av1: back to 0.9.1 to unbreak build

===>   Updating Cargo.lock
error: failed to parse manifest at
`/wrkdirs/usr/ports/multimedia/ab-av1/work/ab-av1-0.9.2/Cargo.toml`

Caused by:
  feature `edition2024` is required

  The package requires the Cargo feature called `edition2024`, but that feature
is not stabilized in this version of Cargo (1.83.0 (5ffbef321 2024-10-29)).
  Consider trying a newer version of Cargo (this may require the nightly
release).
  See
https://doc.rust-lang.org/nightly/cargo/reference/unstable.html#edition-2024 for
more information about the status of this feature.
*** Error code 101

Reported by:	pkg-fallout

This reverts commit 8855350ef13c37f868fa439caf27b16ece0132eb.

    a737e47

00:22 Jan Beich (jbeich) 

• games/veloren-weekly s20250306 Multiplayer voxel RPG written in Rust (weekly snapshot)

games/veloren-weekly: update to s20250306

Changes:	https://gitlab.com/veloren/veloren/-/compare/4061ea8c0...ce0b7f06b
(cherry picked from commit 606bcbf2b6dd0d52c24ccda726318634d111d9bb)

    cdbc81f

00:22 Jan Beich (jbeich) 

• multimedia/ab-av1 0.9.2 AV1 re-encoding using ffmpeg, svt-av1 & vmaf

multimedia/ab-av1: update to 0.9.2

Changes:	https://github.com/alexheretic/ab-av1/releases/tag/v0.9.2
Reported by:	GitHub (watch releases)

(cherry picked from commit c43c1ffb0c24d2be2773d581790b9954357aedd5)

    8855350

17:47 Michael Osipov (michaelo) 

• lang/rust 1.83.0_1 Language with a focus on memory safety and concurrency

lang/rust: Make OpenSSL use the system default truststore in Cargo

Cargo uses curl-rust and git2-rs (which uses curl-rest as well).
Unfortunately, git2-rs calls openssl_probe::init_ssl_cert_env_vars()
unconditionally which breaks the process environment by setting an invalid
value for SSL_CERT_DIR and then the system default truststore is circumvented,
resulting in certificate validation errors even if certctl(8) manages
everything nicely.

Upstream issues:
* https://github.com/alexcrichton/openssl-probe/issues/37
* https://github.com/rust-lang/git2-rs/pull/1130

Reviewed by:	jrm (mentor), mikael (rust)
MFH:		2025Q1
Differential Revision:	https://reviews.freebsd.org/D49120

(cherry picked from commit 078082660317490b1a2faf93ddce4b49c6b165dc)

    093b0eb

10:06 Vladimir Druzenko (vvd) 

• audio/lollypop 1.4.41 Play and organize your music collection

audio/lollypop: Update 1.4.16 → 1.4.41, improve port

Changelogs:
https://gitlab.gnome.org/World/lollypop/-/releases

Improve port:
 - WWW replace https://wiki.gnome.org/Apps/Lollypop with
   https://gitlab.com/lollypop-project/lollypop/ as the site has been
   "retired".
 - Sort items in USES, USE_GNOME, USE_GSTREAMER.
 - Add NO_ARCH - suggested by poudriere.
 - Pet portclippy.

The patch is based on the patch form Zoltán Király
<ports@zoltankiraly.com>.

PR:		285208
MFH:		2025Q1
(cherry picked from commit 907e7f6b1eacacbc7d427c5ff62f2143033376ad)

    5f31b91

07:32 Jan Beich (jbeich) 

• net/wlvncc s20250218 Wayland Native VNC Client

net/wlvncc: update to s20250218

Changes:	https://github.com/any1/wlvncc/compare/e2f6ab7...d37e754
PR:		285207
Reported by:	Evgenii Khramtsov

(cherry picked from commit fe60e0f1922ef4d683dda3beb0b605280ae02323)

    169d2d2

07:30 Jan Beich (jbeich)  Author: Brooks Davis

• devel/llvm19 19.1.7_1 LLVM and Clang

devel/llvm19: reenable AMDGPU and WASM on i386 by default

This is needed (among other reasons) to support wine because wine is
mostly 32-bit.

Requested by:	manu
Sponsored by:	DARPA, AFRL

(cherry picked from commit f1158a44c0539dad4b07eb1769866118585a6d75)

    92bdbb4

07:30 Jan Beich (jbeich)  Author: Brooks Davis

• devel/llvm19 19.1.7 LLVM and Clang

devel/llvm19: 19.1.7 release

See the release announcement for changes:
    https://discourse.llvm.org/t/llvm-19-1-7-released/84062

Sponsored by:	DARPA, AFRL

(cherry picked from commit e333e1ef90228d781f3386ad13b2de0f1d5efce4)

    838c041

07:29 Jan Beich (jbeich)  Author: Brooks Davis

• devel/llvm19 19.1.6_1 LLVM and Clang

devel/llvm19: Fix !CLANG plist and OPENMP

llvm-debuginfo-analyzer isn't part of Clang, but was matched by the
overly broad pattern `-analyzer`. [0]

Fix USE_LDCONFIG for OPENMP. [1]

Reported by:	jrtc27 [0], tijl [1]
Sponsored by:	DARPA, AFRL

(cherry picked from commit e08503b86df7a69d55575669966a0dae54f84e93)

    3f3a150

02:49 Wen Heping (wen) 

• www/py-django42 4.2.20 High-level Python Web Framework

www/py-django42: Update to 4.2.20

(cherry picked from commit 2899f4394ca1a8b20468138ee13d43338e857701)

    b87719d

02:49 Wen Heping (wen) 

• www/py-django42 4.2.19 High-level Python Web Framework

www/py-django42: Update to 4.2.19

(cherry picked from commit 05fd7c974544aeeb03a6661cb6df661904a30e59)

    84a7880

02:48 Wen Heping (wen) 

• www/py-django50 5.0.13 High-level Python Web Framework

www/py-django50: Update to 5.0.13

(cherry picked from commit 883a5ff552dd91ebd022adc66dca39f0aca81394)

    a7efaa6

02:48 Wen Heping (wen) 

• www/py-django50 5.0.12 High-level Python Web Framework

www/py-django50: Update to 5.0.12

(cherry picked from commit e8e252d2dc4770c220d5134d771493831eb7534e)

    95fe508

02:47 Wen Heping (wen) 

• www/py-django51 5.1.7 High-level Python Web Framework

www/py-django51: Update to 5.1.7

(cherry picked from commit 08d6f4b0d40845b474c505f206458115bcf5a8e5)

    683864e

02:47 Wen Heping (wen) 

• www/py-django51 5.1.6 High-level Python Web Framework

www/py-django51: Update to 5.1.6

(cherry picked from commit 9445b3f974d2c299fc47510eb46da1df8c2f466d)

    29ab538

19:25 Vladimir Druzenko (vvd)  Author: FiLiS

• www/gitea 1.23.5 Compact self-hosted Git service

www/gitea: Update 1.23.3 → 1.23.5 (fix security issues)

Changelogs:
https://blog.gitea.com/release-of-1.23.4/
https://blog.gitea.com/release-of-1.23.5/

PR:		285191
Approved by:	Stefan Bethke <stb@lassitu.de> (maintainer)
MFH:		2025Q1

(cherry picked from commit 5cbc9c46110d1261669de8e9ca4fddd77d9dcdb6)

    01213ea

19:20 Robert Nagy (rnagy) 

• www/chromium 134.0.6998.35 Google web browser based on WebKit

www/chromium: unbreak by adding a patch missed from the previous commit

PR:	285199
(cherry picked from commit c0821946bf4b36ec967bd15d4960d0a174dd7609)

    c611682

16:42 Vladimir Druzenko (vvd) 

• www/tomcat-devel 11.0.5 Open-source Java web server by Apache, 11.0.x branch

www/tomcat-devel: Update 11.0.4 → 11.0.5

Changelog:
https://tomcat.apache.org/tomcat-11.0-doc/changelog.html#Tomcat_11.0.5_(markt)

MFH:	2025Q1
(cherry picked from commit ec8c485c895c5e2e465183868f1be9a0c1045aac)

    0d57cfc

16:41 Vladimir Druzenko (vvd) 

• www/tomcat110 11.0.5 Open-source Java web server by Apache, 11.0.x branch

www/tomcat110: Update 11.0.4 → 11.0.5

Changelog:
https://tomcat.apache.org/tomcat-11.0-doc/changelog.html#Tomcat_11.0.5_(markt)

MFH:	2025Q1
(cherry picked from commit 5de7e074ca6cb8438c3ace0cdb4c8d607e662b09)

    f90f5d6

16:41 Vladimir Druzenko (vvd) 

• www/tomcat9 9.0.102 Open-source Java web server by Apache, 9.0.x branch

www/tomcat9: Update 9.0.100 → 9.0.102

Changelogs:
https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.102_(remm)

MFH:	2025Q1
(cherry picked from commit 67a66b196e9ee132a10d93b10c1d02840a97f953)

    d6c2467

16:41 Vladimir Druzenko (vvd) 

• www/tomcat9 9.0.100 Open-source Java web server by Apache, 9.0.x branch

www/tomcat9: Replace PORTVERSION with DISTVERSION

(cherry picked from commit 384b7b44f5fe221fcd4d1934c733b53941d29347)

    e1bb7bf

12:51 Vladimir Druzenko (vvd)  Author: Mateusz Wiącek

• databases/pecl-redis 6.1.0 Extension to access Redis

databases/pecl-redis: Update 5.3.7 → 6.1.0, take maintainership

Original author of the patch: Mark <mark@elpescador.nl>

Changelogs:
https://pecl.php.net/package-changelog.php?package=redis&release=6.1.0

While here replace PORTVERSION with DISTVERSION.

PR:		285154 282573
Approved by:	Daniel Ylitalo <daniel@blodan.se> (maintainer)

(cherry picked from commit 8c678f6b7da17ea886fc3459ac5866b695f18d73)

    909744f

09:04 Yuri Victorovich (yuri) 

• multimedia/obs-studio 31.0.0_2 Open source streaming/recording software

multimedia/obs-studio: Broken on armv7

Reported by:	fallout

(cherry picked from commit 660413f40257ca7040108678df157640c86702d8)

    319408e

07:46 Matthias Fechner (mfechner) 

• security/trivy 0.60.0 Security scanner written in go

security/trivy: update to 0.60.0

Changes:	https://github.com/aquasecurity/trivy/releases/tag/v0.60.0
(cherry picked from commit 72028a7f6bd47baf6870cd68b4a42183eb377020)

    98ec265

02:25 Vladimir Druzenko (vvd)  Author: Martin Filla

• www/waterfox 6.5.5,1 Distilled fork of Firefox

www/waterfox: Update 6.5.4 → 6.5.5

Changelog:
https://www.waterfox.net/docs/releases/6.5.5/

PR:	285170
MFH:	2025Q1
(cherry picked from commit e5055b802222dd535bb30c5a933d59dcacc3978e)

    75da061

02:25 Vladimir Druzenko (vvd)  Author: Martin Filla

• www/tor-browser 14.0.7 Tor Browser for FreeBSD

www/tor-browser: Update 14.0.6 → 14.0.7

Changelog:
https://blog.torproject.org/new-release-tor-browser-1407/

PR:	285172
MFH:	2025Q1
(cherry picked from commit ea14ebe0de5e7a6dfea688fae0006a519f20ca00)

    74a40bd

00:53 Jan Beich (jbeich) 

• games/veloren-weekly s20250305 Multiplayer voxel RPG written in Rust (weekly snapshot)

games/veloren-weekly: update to s20250305

Changes:	https://gitlab.com/veloren/veloren/-/compare/2d62499a5...4061ea8c0
(cherry picked from commit 089b931c8833589e61c4dbe0781c242b4a7ec6f9)

    46960d46

23:59 Cy Schubert (cy) 

• net/freebsd-telnetd 14.0.6 FreeBSD telnetd

net/freebsd-telnetd: Update to 14.0.6

Version 14.0.6 corrects the filename referanced in the telnetd.8
man page. The upstream commit log:

    The patname listed was the path telnetd was installed in FreeBSD
    base. Now that it is a stand-alone app, installed through FreeBSD
    ports/pkg, update the pathname.

PR:	284006
(cherry picked from commit ef2452dffb16f8637b6f9e7c55369a3effaf87af)

    ed008e8

20:11 Christoph Moench-Tegeder (cmt) 

• mail/thunderbird 128.8.0_4 Mozilla Thunderbird is standalone mail and news that stands above

mail/thunderbird: update 128.8.0 (rc5)

Release Notes:
  https://www.thunderbird.net/en-US/thunderbird/128.8.0esr/releasenotes/

(cherry picked from commit 62fee916f4d17d1d9c44eb05fb54ecc759df1be0)

    d23212c

19:45 Li-Wen Hsu (lwhsu) 

• devel/jenkins-lts 2.492.2 Open-source continuous integration server

devel/jenkins-lts: Update to 2.492.2

Security:	cb98d018-f9f5-11ef-a398-00e081b7aa2d
Sponsored by:	The FreeBSD Foundation

(cherry picked from commit 604b9a8294d71b6976a058be4642e4a399a700d3)

    f9e96d9

19:44 Li-Wen Hsu (lwhsu) 

• devel/jenkins 2.500 Open-source continuous integration server

devel/jenkins: Update to 2.500

Security:	cb98d018-f9f5-11ef-a398-00e081b7aa2d
Sponsored by:	The FreeBSD Foundation

(cherry picked from commit 2a33357067fd719ce81986bd3846080886add0d6)

    88a3f33