- science/hypre 2.33.0
Scalable Linear Solvers and Multigrid Methods
- science/serac g20220823_6
High order nonlinear thermomechanical simulation code
science/hypre: update 2.32.0 → 2.33.0
Reported by: portscout
6e2d048b
01:56 Yuri Victorovich (yuri)
audio/synthv1-lv2: update 1.3.0 → 1.3.1
9288a0d |
01:56 Yuri Victorovich (yuri)
audio/samplv1-lv2: update 1.3.0 → 1.3.1
6f0194b |
01:56 Yuri Victorovich (yuri)
audio/padthv1-lv2: update 1.3.0 → 1.3.1
4924acf |
01:56 Yuri Victorovich (yuri)
audio/drumkv1-lv2: update 1.3.0 → 1.3.1
4d9832e |
01:56 Yuri Victorovich (yuri) 
- cad/veryl 0.15.0
Veryl: A modern Hardware Description Language (HDL)
cad/veryl: update 0.14.1 → 0.15.0
Reported by: portscout
07c3824 |
01:56 Yuri Victorovich (yuri)
x11-toolkits/kddockwidgets: update 2.2.1 → 2.2.3
Reported by: portscout
cbb61d4 |
01:56 Yuri Victorovich (yuri)
sysutils/mise: update 2025.3.11 → 2025.4.0
Reported by: portscout
0ff1028 |
01:56 Yuri Victorovich (yuri)
security/rpm-sequoia: update 1.7.0 → 1.8.0
Reported by: portscout
f03850c |
01:56 Yuri Victorovich (yuri) 
- science/mctc-lib 0.4.0
Computation tool chain library to work with molecular structure data
science/mctc-lib: update 0.3.2 → 0.4.0
Reported by: portscout
b9f7d47 |
01:56 Yuri Victorovich (yuri)
textproc/jnv: update 0.5.0 → 0.6.0
Reported by: portscout
8b3f041 |
Thursday, 3 Apr 2025
|
23:23 Palle Girgensohn (girgen)
databases/postgresql-libpqxx: Update to 7.10.1
Release notes: https://github.com/jtv/libpqxx/releases/tag/7.10.1
a531435 |
22:54 Nuno Teixeira (eduardo)
security/s2n-tls: Update to 1.5.16
ChangeLog: https://github.com/aws/s2n-tls/releases/tag/v1.5.16
d8ddccd |
22:46 Nuno Teixeira (eduardo)
devel/aws-crt-cpp: Update to 0.32.3
ChangeLog: https://github.com/awslabs/aws-crt-cpp/releases/tag/v0.32.3
f865f1d |
21:31 Vladimir Druzenko (vvd) Author: Martin Filla 2025Q2
- www/librewolf 137.0
Custom version of Firefox, focused on privacy, security and freedom
www/librewolf: Update pkg-message: Librewolf moved profile to
${HOME}/.mozilla/librewolf
PR: 285864 285866
MFH: 2025Q2
(cherry picked from commit 1cd6a1d5b0a426c54911c596bf5e28fcdebe9e03)
9eb86f5 |
21:28 Vladimir Druzenko (vvd) Author: Martin Filla
- www/librewolf 137.0
Custom version of Firefox, focused on privacy, security and freedom
www/librewolf: Update pkg-message: Librewolf moved profile to
${HOME}/.mozilla/librewolf
PR: 285864 285866
MFH: 2025Q2
1cd6a1d |
21:24 Renato Botelho (garga) Author: Denny Page
net-mgmt/andwatch: Mark as broken on FreeBSD 13
Does not build
PR: 285764
Reported by: Chad Jacob Milios <milios@ccsys.com>
6e430e5 |
21:17 Jake Freeland (jfree)
audio/spotify-player: Remove invalid option
Lyric support in spotify-player is now always enabled. There is no
longer a cargo feature flag to toggle it. As a result, the LYRICS
option can be removed.
See the following commit for details:
https://github.com/aome510/spotify-player/commit/7abf1b3dfff67afec7159cc385756334180fcbb0
bc61b17 |
19:50 Christoph Moench-Tegeder (cmt)
net-mgmt/check_ssl_cert: update to 2.89.0
Release Notes:
https://github.com/matteocorti/check_ssl_cert/releases/tag/v2.89.0
d9da877 |
19:46 Thierry Thomas (thierry)
math/R-cran-XLConnect: upgrade to 1.2.0
Release notes at https://cran.r-project.org/web/packages/XLConnect/NEWS
89d531c |
19:46 Thierry Thomas (thierry)
textproc/apache-poi: upgrade to 5.4.0
Changelog at https://poi.apache.org/changes.html#5.4.0
Also add some missing dependencies.
828250a |
19:46 Thierry Thomas (thierry)
textproc/apache-xmlbeans: upgrade to 5.3.0
Release notes at https://xmlbeans.apache.org/status.html
ed4f506 |
19:46 Thierry Thomas (thierry)
graphics/batik: upgrade to 1.18
Releases notes at https://xmlgraphics.apache.org/batik/#News
91f0a3c |
19:46 Thierry Thomas (thierry)
security/xml-security: upgrade to 3.0.5
Don’t build the jars but use pre-built ones from Maven repository.
PR: 285854
Approved by: ale (maintainer)
cc64095 |
19:46 Thierry Thomas (thierry)
java/apache-commons-codec: upgrade to 1.18.0
Releases notes at https://commons.apache.org/proper/commons-codec/changes.html
PR: 285835
Approved by: ale (maintainer)
4f14274 |
19:46 Thierry Thomas (thierry)
print/pdfbox: upgrade to 3.0.4 and install pdfbox-app
Release notes at
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12310760&version=12354996
PR: 285834
Approved by: ale (maintainer)
0ffae6d |
19:37 Jake Freeland (jfree)
audio/spotify-player: Update 0.17.1 -> 0.20.4
* Add STREAMING and FUZZY_SEARCH options.
* Remove CLIPBOARD option.
* Add llvm to USES list since build depends on libclang
Changelog: https://github.com/aome510/spotify-player/releases/tag/v0.20.4
e912eab |
17:24 Brooks Davis (brooks)
devel/llvm20: 20.1.2 release
See the annoucment for a list of changes:
https://discourse.llvm.org/t/llvm-20-1-2-released/85654
Sponsored by: DARPA, AFRL
ed3db30 |
16:30 Ronald Klop (ronald)
databases/mongodb-tools: use go 1.23
By reading some of the fixed issues in the last release I found
that the go version was bumped upstream.
Although it builds and runs fine I let the port follow.
Add a pre-configure check that the port uses the same go version
as is mentioned in go.mod.
ba9303f |
16:26 Nuno Teixeira (eduardo) 
- devel/aws-c-s3 0.7.15
C99 library implementation for communicating with the S3 service
devel/aws-c-s3: Update to 0.7.15
ChangeLog: https://github.com/awslabs/aws-c-s3/releases/tag/v0.7.15
038ad5e |
16:05 Jan Beich (jbeich) 2025Q2
deskutils/xdg-desktop-portal: add missing dependency after 689ee986fad8
meson.build:115:18: ERROR: Dependency "gstreamer-pbutils-1.0" not found, tried
pkgconfig
Found via multimedia/pipewire built with GSTREAMER option disabled.
See also https://github.com/flatpak/xdg-desktop-portal/commit/284279b35a28
(cherry picked from commit 72cdf9326eb207987f940350c804700a3de75afe)
71a4587 |
16:04 Jan Beich (jbeich)
deskutils/xdg-desktop-portal: add missing dependency after 689ee986fad8
meson.build:115:18: ERROR: Dependency "gstreamer-pbutils-1.0" not found, tried
pkgconfig
Found via multimedia/pipewire built with GSTREAMER option disabled.
See also https://github.com/flatpak/xdg-desktop-portal/commit/284279b35a28
72cdf93 |
16:04 Fernando Apesteguía (fernape)
security/vuxml: Mozilla multiple vulnerabilities
* CVE-2025-1931
* CVE-2025-1933
* CVE-2025-1934
* CVE-2025-1935
* CVE-2025-1937
* CVE-2025-1938
* CVE-2025-1943
14b335c |
15:59 Dave Cottlehuber (dch) 
- devel/buildkite-cli 3.7.1
CLI tool for Buildkite
devel/buildkite-cli: new port - helper tool for buildkite CI users
Differential Revision: https://reviews.freebsd.org/D49635
ced8bcd
15:10 Gleb Popov (arrowd) Author: Älven
- devel/pcsc-lite 2.3.3,2
Middleware library to access a smart card using SCard API (PC/SC)
devel/pcsc-lite: Update to 2.3.3
PR: 285857
9ce815f |
14:40 Wen Heping (wen) 2025Q2
www/py-django50: Update to 5.0.14
(cherry picked from commit ffb637987bc5795a05b6fa39b75702a7a401ed0f)
ab47260 |
14:40 Wen Heping (wen) 2025Q2
www/py-django51: Update to 5.1.8
(cherry picked from commit 2b19360a2f6a371af559a00e135da58bd0f67b8d)
2b05aab |
14:38 Wen Heping (wen)
www/py-django50: Update to 5.0.14
ffb6379 |
14:38 Wen Heping (wen)
www/py-django51: Update to 5.1.8
2b19360 |
14:15 Nuno Teixeira (eduardo) Author: Jonathan Chen
devel/pycharm-ce: Update to 2024.3.5
ChangeLog:
https://youtrack.jetbrains.com/articles/PY-A-233538353/PyCharm-2024.3.5-243.26053.29-build-Release-Notes
PR: 285641
466dde7 |
12:07 Muhammad Moinur Rahman (bofh)
misc/freebsd-release-manifests: Update version 20250402=>20250403
- Remove EOL 14.0-RELEASE manifests
Approved by: re (implicit)
4a0ff4e |
12:07 Muhammad Moinur Rahman (bofh)
textproc/groonga: Update version 15.0.0=>15.0.1
Changelog: https://groonga.org/docs/news/15.html#release-15-0-1
f759350 |
12:07 Muhammad Moinur Rahman (bofh) 
- textproc/vale 3.11.0
Command-line tool that brings editorial style guide to life
textproc/vale: Update version 3.10.0=>3.11.0
Changelog: https://github.com/errata-ai/vale/releases/tag/v3.11.0
40e7ef7 |
12:07 Muhammad Moinur Rahman (bofh)
net/google-cloud-sdk: Update version 516.0.0=>517.0.0
ef0e5f7 |
12:07 Muhammad Moinur Rahman (bofh)
graphics/acidwarp-sdl: Mark DEPRECATED
- Unmaintained as last release was in 2022
- Set EXPIRATION_DATE 2025-05-03
If someone needs this port feel free to undeprecate and takeover
maintainership.
0b1aa9e |
12:07 Muhammad Moinur Rahman (bofh)
databases/freetds-devel: Update version 1.4.435=>1.4.437
82f24f1 |
12:07 Muhammad Moinur Rahman (bofh) 
- java/visualvm 2.1.6
GUI tool combining CLI JDK tools and profiling capabilities
java/visualvm: Update version 2.1.5=>2.1.6
Changelog: https://github.com/oracle/visualvm/releases/tag/2.1.6
f03a246 |
12:06 TAKATSU Tomonari (tota)
converters/R-cran-RJSONIO: Update to 1.3-1.11
Reported by: portscout
2b1e945 |
12:02 Max Brazhnikov (makc) 
- audio/plasma6-kpipewire 6.3.4
Components relating to Flatpak 'pipewire' use in Plasma
- audio/plasma6-ocean-sound-theme 6.3.4
Ocean Sound Theme for Plasma
- audio/plasma6-oxygen-sounds 6.3.4
Oxygen Sound Theme
- audio/plasma6-plasma-pa 6.3.4
Plasma applet for audio volume management using PulseAudio
- deskutils/plasma6-milou 6.3.4
Dedicated search application built on top of Baloo
- deskutils/plasma6-sddm-kcm 6.3.4
Configuration module for SDDM
- deskutils/plasma6-xdg-desktop-portal-kde 6.3.4
Backend implementation for xdg-desktop-portal that is using Qt/KDE
- devel/plasma6-kwrited 6.3.4
Listen to traditional system notifications
- devel/plasma6-plasma-sdk 6.3.4
Applications useful for Plasma development
- devel/plasma6-plasma5support 6.3.4
Support components for porting from KF5/Qt5 to KF6/Qt6
(Only the first 10 of 51 items in this commit are shown above. )
KDE: Update Plasma to 6.3.4
Announcement: https://kde.org/announcements/plasma/6/6.3.4/
x11/plasma6-plasma-workspace:
- Add upstream patch to fix regression in Plasma notifications.
92288bf
11:59 Fernando Apesteguía (fernape)
security/vuxml: Add mongodb multiple vulnerabilities
* CVE-2022-3085
* CVE-2025-3083
* CVE-2025-3084
5cf8618 |
10:38 Gleb Popov (arrowd) 
- devel/glib20 2.82.4,2
Some useful routines of C programming (current stable version)
devel/glib20: Fix plist for !amd64 arches
Reported by: fluffy
8523402 |
10:28 Ruslan Makhmatkhanov (rm) 
- devel/py-blist 1.3.6_2
Drop-in list replacement with better performance for large lists
devel/py-blist: set to expire
The project is abandoned upstream, with plenty of unresolved issues and PR's at
project's github. Last activity dates 11 years ago. Has no consumers in ports
tree and fails to build with pythons>3.9
fabefb3 |
10:26 Zsolt Udvari (uzsolt)
devel/R-cran-pkgbuild: Update to 1.4.7
Changelog:
https://cran.r-project.org/web/packages/pkgbuild/news/news.html
b6e7a20 |
09:38 Lev A. Serebryakov (lev)
devel/libopencm3: Adapt to latest toolchain
cb66575 |
09:17 Ronald Klop (ronald)
databases/mongodb-tools: 100.12.0
"This version adds support for MongoDB Server 8.1, along with security updates
and bug fixes."
Changes:
https://github.com/mongodb/mongo-tools/blob/master/CHANGELOG.md#100120
Security: CVE-2025-30204 jwt/v5@v5.2.1
Security: CVE-2025-22870 net@v0.34.0
Security: CVE-2025-22869 crypto@v0.32.0
86738ed |
07:46 Gleb Popov (arrowd)
UPDATING: Add entry regarding glib20 update
2b0da95 |
07:46 Gleb Popov (arrowd) 
- devel/glibd 2.4.3_2
D language bindings for the GLib Utility Library
devel/glibd: Fix build with new devel/glib20
b4cd432 |
07:46 Gleb Popov (arrowd) Author: Charlie Li
- devel/glib20 2.82.4,2
Some useful routines of C programming (current stable version)
devel/glib20 and devel/gobject-introspection: update to 2.82.4 and 1.82.0
Changelogs:
- https://gitlab.gnome.org/GNOME/glib/-/blob/glib-2-82/NEWS
- https://gitlab.gnome.org/GNOME/gobject-introspection/-/blob/gnome-47/NEWS
PR: 281083
Reviewed by: jhale, fluffy
Differential Revision: https://reviews.freebsd.org/D47139
Exp-run by: antoine
Co-authored-by: arrowd
7b58244
06:14 Gleb Popov (arrowd) 
- misc/hwdata 0.394,1
Database of IDs used in PCI, PNP and USB devices
misc/hwdata: Update to 0.394
Reported by: portscout!
1ead69b |
06:11 Kirill Ponomarev (krion) 
- converters/cl-babel-sbcl 0.5.0.24_4,1
Charset encoding/decoding library written in Common Lisp
- devel/cl-alexandria-sbcl 1.4_6,1
Collection of portable public domain utilities for Common Lisp
- devel/cl-infix-sbcl 19960628_99
Lisp macro to read math statements in infix notation
- devel/cl-port-sbcl 2002.10.02.1_97
Cross-Lisp portability package
- devel/cl-split-sequence-sbcl 2.0.1.3_4,1
Partitioning Common Lisp sequences
- devel/cl-trivial-features-sbcl 1.0.4_4,1
Ensures consistent *FEATURES* in Common Lisp
- devel/cl-trivial-gray-streams-sbcl 20240217_4
Thin compatibility layer for Gray streams
- math/maxima 5.47.0_23
Symbolic mathematics program
- security/cl-md5-sbcl 2.0.5_4
Native MD5 implementation in Common Lisp
- textproc/cl-ppcre-sbcl 2.1.2_13
Portable Perl-Compatible Regular Expression for Common Lisp
(Only the first 10 of 13 items in this commit are shown above. )
*/*: Bump PORTREVISION on *-sbcl ports after lang/sbcl upgrade.
a1a368f
06:10 Kirill Ponomarev (krion) 
- lang/sbcl 2.5.3,1
Common Lisp development system derived from the CMU CL system
lang/sbcl: Update to 2.5.3
8f3ee12 |
05:23 Vladimir Druzenko (vvd) Author: Norbert Grundmann
java/eclipse: Update 4.34 => 4.35
New and Noteworthy:
https://eclipse.dev/eclipse/news/4.35/
PR: 285839
70d68db |
03:14 Yuri Victorovich (yuri) Author: j.david.lists@gmail.com
devel/bazel: Fix build
PR: 278246
Reported by: kib
Approved by: vishwin (maintainer's timeout; 68 days)
984f80b |
02:19 Nuno Teixeira (eduardo) 2025Q2
- www/bluefish 2.2.17
HTML editor designed for the experienced web designer
www/bluefish: Update to 2.2.17
- Drop GTK2
- Use gettext-tools instead of gettext
- Pet portfmt
ChangeLog:
https://sourceforge.net/p/bluefish/code/HEAD/tree/tags/bluefish_2_2_17/ChangeLog
MFH: 2025Q1 (code cleanup fixes)
(cherry picked from commit 8a8817af183dacddd00dc44f21eb0e54ee788dad)
362a4ce |
02:13 Wen Heping (wen) Author: Jesús Daniel Colmenares Oviedo
sysutils/littlejet: Update to 0.2.0
PR: 285750
Reported by: Jesús Daniel Colmenares Oviedo <DtxdF@disroot.org> (maintainer)
a46812b |
02:13 Wen Heping (wen)
www/tikiwiki: Update to 28.3
b579590 |
01:36 Jose Alonso Cardenas Marquez (acm) 
- security/wazuh-agent 4.11.2
Security tool to monitor and check logs and intrusions (agent)
- security/wazuh-dashboard 4.11.2
Web user interface for data visualization and analysis
- security/wazuh-indexer 4.11.2
A highly scalable, full-text search and analytics engine
- security/wazuh-manager 4.11.2
Security tool to monitor and check logs and intrusions (manager)
security/wazuh-*: Update to 4.11.2
ChangeLog at:
https://documentation.wazuh.com/current/release-notes/release-4-11-2.html
Sponsored by: Entersekt
f2cf9cc
00:54 Jan Beich (jbeich) 2025Q2
graphics/mesa-devel: update to 25.0.b.2650
Changes: https://gitlab.freedesktop.org/mesa/mesa/-/compare/5d6d167a7c2...ee0ee2a3174
(cherry picked from commit 77b5c19d0e50688303b1c007367f45ce2252905b)
359bbf7 |
00:53 Jan Beich (jbeich) 2025Q2
games/veloren-weekly: update to s20250402
Changes: https://gitlab.com/veloren/veloren/-/compare/45bb4a719...bfdb7e605
(cherry picked from commit 9520d2188a49664562ddfb46b7f4a8c93908b9f3)
bf7efff |
00:53 Jan Beich (jbeich) 2025Q2
devel/spirv-llvm-translator: update to
20.1.1/19.1.6/18.1.11/1[4-7].0.11/1[13].0.2
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v11.0.2
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v13.0.2
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v14.0.11
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v15.0.11
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v16.0.11
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v17.0.11
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v18.1.11
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v19.1.6
Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v20.1.1
Reported by: GitHub (watch releases)
(cherry picked from commit 25b4315d0cc15d4106ddfd6e6b00fed37f720693)
b71f771 |
00:51 Jan Beich (jbeich)
games/veloren-weekly: update to s20250402
Changes: https://gitlab.com/veloren/veloren/-/compare/45bb4a719...bfdb7e605
9520d21 |
00:51 Jan Beich (jbeich)
graphics/mesa-devel: update to 25.0.b.2650
Changes: https://gitlab.freedesktop.org/mesa/mesa/-/compare/5d6d167a7c2...ee0ee2a3174
77b5c19 |
Wednesday, 2 Apr 2025
|
23:47 Wen Heping (wen) 
- www/py-django52 5.2
High-level Python Web Framework
www/py-django52: New port, copied from www/py-django51
Django is a high-level Python Web framework that encourages rapid development
and clean, pragmatic design.
Developed and used over the past two years by a fast-moving online-news
operation, Django was designed from scratch to handle two challenges: the
intensive deadlines of a newsroom and the stringent requirements of experienced
Web developers. It has convenient niceties for developing content-management
systems, but it's an excellent tool for building any Web site.
e9dda11
23:13 Lev A. Serebryakov (lev)
devel/gcc-arm-embedded: Fix stupid mistake in pkg-plist
Last second change in pkg-plist ruined it.
7c1a3764 |
21:58 Max Brazhnikov (makc) 
- sysutils/plasma6-discover 6.3.3_1
Plasma package management tools
- x11/kf6-frameworkintegration 6.12.0_1
Integration of Qt application with KDE workspaces
*/*: chase removal of flavors from appstream-qt and packagekit-qt
ddc0b36
21:58 Max Brazhnikov (makc)
MOVED: Unflavorize ports-mgmt/packagekit-qt
d0c400f |
21:58 Max Brazhnikov (makc)
ports-mgmt/packagekit-qt: Unflavorize
Qt5 flavor is not used anymore.
1bae3bc |
21:58 Max Brazhnikov (makc)
MOVED: Unflavorize devel/appstream-qt
fe71b1e |
21:58 Max Brazhnikov (makc)
devel/appstream-qt: Unflavorize
Qt5 flavor is not used anymore.
e9141a1 |
21:55 Christoph Moench-Tegeder (cmt)
devel/gcc-arm-embedded: fix pkg-plist
an extra '%' (percent) had crept into some lines
Approved by: just-fix-it
72a37f5 |
21:00 Nuno Teixeira (eduardo) 
- www/bluefish 2.2.17
HTML editor designed for the experienced web designer
www/bluefish: Update to 2.2.17
- Drop GTK2
- Use gettext-tools instead of gettext
- Pet portfmt
ChangeLog:
https://sourceforge.net/p/bluefish/code/HEAD/tree/tags/bluefish_2_2_17/ChangeLog
MFH: 2025Q1 (code cleanup fixes)
8a8817a |
20:49 Palle Girgensohn (girgen)
sysutils/fluent-bit: Update to 4.0.0
Release notes: https://github.com/fluent/fluent-bit/releases/tag/v4.0.0
0808f6f |
20:29 Vladimir Druzenko (vvd) Author: Sergei Vyshenski
devel/p5-DateTime-TimeZone: Update 2.64 => 2.65
ChangeLog:
2.65 2025-03-25
- This release is based on version 2025b of the Olson database.
This release includes contemporary changes for Chile.
https://metacpan.org/release/DROLSKY/DateTime-TimeZone-2.65/source/Changes
PR: 285698
1ad52c8 |
20:11 Sergey A. Osokin (osa)
devel/opentelemetry-cpp: update from 1.19.0 to 1.20.0
https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.19.0...v1.20.0
da7fff3 |
20:09 Lev A. Serebryakov (lev)
devel/lm4tools: Update to latest commit.
No functional changes, but maintainer e-mail was updated.
0024df1 |
20:05 Lev A. Serebryakov (lev) 
- devel/py3c 1.4
Py3c helps you port C extensions to Python 3
devel/py3c: Update to latest version 1.4
c52c43d |
19:44 Lev A. Serebryakov (lev) 
- www/neon 0.34.0
HTTP and WebDAV client library for Unix systems
www/neon: Update to latest version 0.34.0
Update library to latest release.
72f3c13 |
19:34 Matthias Andree (mandree) 2025Q2
security/openvpn: security update to 2.6.14
"Fix possible ASSERT() on OpenVPN servers using --tls-crypt-v2
Security scope: OpenVPN servers between 2.6.1 and 2.6.13 using
--tls-crypt-v2 can be made to abort with an ASSERT() message by sending
a particular combination of authenticated and malformed packets.
To trigger the bug, a valid tls-crypt-v2 client key is needed, or
network observation of a handshake with a valid tls-crypt-v2 client key
No crypto integrity is violated, no data is leaked, and no remote code
execution is possible.
This bug does not affect OpenVPN clients."
clean up CONFLICTS_INSTALL
ChangeLog: https://github.com/OpenVPN/openvpn/blob/v2.6.14/Changes.rst#overview-of-changes-in-2614
Security: 2cad4541-0f5b-11f0-89f8-411aefea0df9
Security: CVE-2025-2704
MFH: 2025Q2
(cherry picked from commit 70a3176764f09cfeb26bc8d4c9463e7497a299c0)
(cherry picked from commit e20a69e3dce88c98be4aa4354c94ffa21bca0b17)
4c75982 |
19:34 Matthias Andree (mandree) Author: Gert Doering 2025Q2
security/openvpn-devel: upgrade port to git commit b75849ba36 (2025-04-02)
Fixes CVE-2025-2704 (servers using --tls-crypt-v2 can be made to ASSERT()
by sending a particular sequence of authenticated and malformed packets).
New feature: Multisocket support (listening to multiple sockets, UDP and
TCP, in one server) - with a number of minor bug fixes to that.
New feature: --override-username (see manpage for details)
Other minor features, polishing and bugfixes.
Security: 2cad4541-0f5b-11f0-89f8-411aefea0df9
Security: CVE-2025-2704
MFH: 2025Q2
(cherry picked from commit a73af948cdbfea8096fcaff9819227be822a9530)
68b6c92 |
19:33 Matthias Andree (mandree)
security/openvpn: clean up CONFLICTS_INSTALL
e20a69e |
19:31 Matthias Andree (mandree)
security/openvpn: security update to 2.6.14
"Fix possible ASSERT() on OpenVPN servers using --tls-crypt-v2
Security scope: OpenVPN servers between 2.6.1 and 2.6.13 using
--tls-crypt-v2 can be made to abort with an ASSERT() message by sending
a particular combination of authenticated and malformed packets.
To trigger the bug, a valid tls-crypt-v2 client key is needed, or
network observation of a handshake with a valid tls-crypt-v2 client key
No crypto integrity is violated, no data is leaked, and no remote code
execution is possible.
This bug does not affect OpenVPN clients."
ChangeLog: https://github.com/OpenVPN/openvpn/blob/v2.6.14/Changes.rst#overview-of-changes-in-2614
Security: 2cad4541-0f5b-11f0-89f8-411aefea0df9
Security: CVE-2025-2704
MFH: 2025Q2
70a3176 |
19:31 Matthias Andree (mandree) Author: Gert Doering
security/openvpn-devel: upgrade port to git commit b75849ba36 (2025-04-02)
Fixes CVE-2025-2704 (servers using --tls-crypt-v2 can be made to ASSERT()
by sending a particular sequence of authenticated and malformed packets).
New feature: Multisocket support (listening to multiple sockets, UDP and
TCP, in one server) - with a number of minor bug fixes to that.
New feature: --override-username (see manpage for details)
Other minor features, polishing and bugfixes.
Security: 2cad4541-0f5b-11f0-89f8-411aefea0df9
Security: CVE-2025-2704
MFH: 2025Q2
a73af94 |
19:22 Matthias Andree (mandree)
security/vuxml: add openvpn<2.6.14 server DoS vuln
Security: 2cad4541-0f5b-11f0-89f8-411aefea0df9
Security: CVE-2025-2704
e1b5c97 |
19:02 Lev A. Serebryakov (lev)
security/pam_pwdfile: Update to latest version 2.0
PR: 285688
Reported by: ykla <yklaxds@gmail.com>
88ae750 |
19:01 Muhammad Moinur Rahman (bofh)
misc/freebsd-release-manifests: Update version 20250307=>20250402
- Cleanup 13.2-RELEASE
- Sort pkg-plist
Approved by: re (implicit)
b1c6038 |
18:18 Lev A. Serebryakov (lev)
devel/msp430-debug-stack: Fix build with latest Boost
Adopt sources to new boost::asio API.
PR: 284822
Reported by: ice@extreme.hu
e090c46b |
17:41 Lev A. Serebryakov (lev)
devel/stlink: Update to latest version 1.8.0
Update to new latest release.
39dcba8 |
17:36 Bernard Spil (brnrd)
www/nextcloud-appointments: Update to 2.4.3
ec22b4e |
17:36 Bernard Spil (brnrd)
mail/nextcloud-mail: Update to 4.3.5
e51b6b7 |
17:20 Olivier Cochard (olivier)
x11-wm/piewm: add LICENSE
The code contains multiple licenses, but they all belong to the MIT/X11 family.
PR: 279111
Reported by: Chris Hutchinson
Approved by: david@catwhisker.org (maintainer)
8a7be43 | | | | | | | |