Updated textproc/py-pygments, net/py-prometheus_client

(adam)

py-prometheus_client: updated to 0.19.0

0.19.0

[FEATURE] support HTTPS/TLS in start_http_server.
[BUGFIX] fix: error in determining timestamp less than.

(adam)

py-pygments: updated to 2.17.2

Version 2.17.2
* Fix a packaging issue on macOS

(adam)

Note pullup tickets #6820, #6821 and #6823

(bsiegert)

Pullup ticket #6823 - requested by bouyer
sysutils/xenkernel415: security fix
sysutils/xentools415: security fix

Revisions pulled up:
- sysutils/xenkernel415/Makefile                                1.12
- sysutils/xenkernel415/distinfo                                1.11
- sysutils/xenkernel415/patches/patch-XSA439                    1.1
- sysutils/xenkernel415/patches/patch-XSA442                    1.1
- sysutils/xenkernel415/patches/patch-XSA444                    1.1
- sysutils/xenkernel415/patches/patch-XSA445                    1.1
- sysutils/xenkernel415/patches/patch-XSA446                    1.1
- sysutils/xentools415/Makefile                                1.28
- sysutils/xentools415/PLIST                                    1.4
- sysutils/xentools415/distinfo                                1.14
- sysutils/xentools415/patches/patch-XSA440                    1.1
- sysutils/xentools415/patches/patch-XSA443                    1.1

---
  Module Name: pkgsrc
  Committed By: bouyer
  Date: Wed Nov 15 15:59:36 UTC 2023

  Modified Files:
  pkgsrc/sysutils/xenkernel415: Makefile distinfo
  pkgsrc/sysutils/xentools415: Makefile PLIST distinfo
  Added Files:
  pkgsrc/sysutils/xenkernel415/patches: patch-XSA439 patch-XSA442
      patch-XSA444 patch-XSA445 patch-XSA446
  pkgsrc/sysutils/xentools415/patches: patch-XSA440 patch-XSA443

  Log Message:
  xen*415: apply upstream patches for Xen Security Advisory
  XSA-439, XSA-440, XSA-442, XSA-443, XSA-444, XSA-445, XSA-446
  bump PKGREVISIONs

(bsiegert)

Pullup ticket #6821 - requested by nia
devel/poco: build fix

Revisions pulled up:
- devel/poco/distinfo                                          1.18
- devel/poco/patches/patch-Crypto_src_RSACipherImpl.cpp        1.1

---
  Module Name: pkgsrc
  Committed By: nia
  Date: Thu Nov  9 19:16:20 UTC 2023

  Modified Files:
  pkgsrc/devel/poco: distinfo
  Added Files:
  pkgsrc/devel/poco/patches: patch-Crypto_src_RSACipherImpl.cpp

  Log Message:
  poco: OpenSSL 3.x fix

(bsiegert)

Pullup ticket #6820 - requested by abs
www/arcticfox: security and build fixes

Revisions pulled up:
- www/arcticfox/Makefile                                        1.37
- www/arcticfox/distinfo                                        1.11
- www/arcticfox/patches/patch-gfx_skia_skia_src_gpu_GrAutoLocaleSetter.h deleted

---
  Module Name:    pkgsrc
  Committed By:  abs
  Date:          Fri Nov  3 23:41:19 UTC 2023

  Modified Files:
          pkgsrc/www/arcticfox: Makefile distinfo
  Removed Files:
          pkgsrc/www/arcticfox/patches:
              patch-gfx_skia_skia_src_gpu_GrAutoLocaleSetter.h

  Log Message:
  Updated www/arcticfox to 43.0

  Lots of fixes, but some highlights

  - PowerPC is now working and usable again
  - many JavaScript enhancement and fixes
  - specific fixes for NetBSD imported
  - WebExtensions and wasm improvements
  - many security fixes
  - build system fixes, less messing around with compiler flags
    needed, with gcc (even recent version) "--enable-optimize" shall
    work
  - developer tools updates

(bsiegert)

apache24: let apache default to a full dependency

If this is too much for some packages, they can set the depmethod to build.

(wiz)

libfishsound: flac is a full dependency when the option is turned on

(wiz)

doc: Updated net/lagrange to 1.17.4

(yhardy)

net/lagrange: update to lagrange-1.17.4

== Release notes

== 1.17.4
* Removed automatic horizontal scrolling of wide preformatted blocks.
  Instead, hold down the Shift key to scroll horizontally with the
  mouse wheel.
* Fixed an event processing issue where some events were not handled
  as expected, for instance when opening a link into split view the
  opened link was not highlighted.
* Fixed links not reacting to mouse hover after jumping to a heading
  from the Outline.
* Fixed input prompt behaving strangely after changing font size.
  (Lines are now forced to rewrap after changing the font.)
* Fixed mouse cursor not changing its shape in all open windows.
* Updated UI translations.

== 1.17.3
* Fixed activating a pinned identity when opening a bookmark via the
  Bookmarks menu.
* Fixed initial scope of a created identity when using the default
  selection.
* Fixed issues with dropdown menus when the menu appears as a popup
  window.
* Fixed clearing the pinned identity of a bookmark.

== 1.17.2
* Tabs opened in background are immediately added to the URL history.
* Mouse wheel direction switches back to vertical when a wide block
  has been scrolled all the way.
* Fixed current text selection extending during scrolling even after
  mouse button has been released.
* Fixed drag-to-select with the mouse being too sensitive to mouse
  movement.
* Fixed the numbered links key (default: Alt/Option) while navigating
  to new pages. It is no longer necessary to release and press the
  key again on the new page.
* Fixed long bookmark titles making the Bookmarks menu too wide.
* ANSI Cursor Forward control sequence ("CSI n C") is converted to a
  series of spaces, but only in preformatted text.
* Fixed parsing of ANSI SGR sequences with many attributes
  concatenated (e.g., 0;1;40;30).
* Fixed inline image loading indicator overdrawing itself, becoming
  unreadable.
* Windows: Installer restarts the app after updating, and there is a
  checkbox for launching the app if it wasn't running. The
  uninstaller is now signed, too.
* Updated UI translations.

== 1.17.1
* Added "Vibrant Light" color theme.
* Improved readability of "Colorful Light" headings.
* Tuned autoscrolling when selecting text to avoid accidental
  scrolling.
* Preformatted blocks no longer switch to a smaller font to fit to
  the page.
* Mouse wheel scrolls a wide preformatted block when hovering over
  the block, instead of scrolling vertically. You can hold the Shift
  key to swap the scroll direction.
* Fixed horizontal scrolling issues with preformatted blocks: only
  scroll if needed, allow scrolling anywhere on the block and not
  just on non-empty text lines, and when scrolling disallow swipe
  navigation over the area.
* Fixed visual artifacts around and next to preformatted blocks
(e.g., streaking).
* Fixed potential crash after (un)folding a preformatted block.
* Fixed links being non-clickable after searching text on a page has
  scrolled the view.
* Fixed scroll position being reset when reloading the page.
* Fixed initial size of the upload dialog when font size has been
  changed.
* Fixed "View as Plain Text" context menu item after reloading a page.
* Strip any null characters from the page source during whitespace
  normalization.

== 1.17
Caps Lock is no longer treated as a modifier key in keybindings. Use
`--capslock` to enable it.

New features:
* The Bookmarks menu lists all of your bookmarks and folders.
* Snippets: A collection of short text segments that can be pasted
  into any input field via the context menu. For example, useful for
  your gemlog header/footer and other often-repeated parts.
* Snippets can be managed in Preferences > Snippets and created by
  right-clicking on links or selected text on a page.
* Custom search queries: Snippets whose name starts with a bang
  (e.g., "!w") can be invoked in the URL field to make customized
  queries. The snippet content should be a Gemini search URL, for
  example: "gemini://gemi.dev/cgi-bin/wp.cgi/search".
* Quick lookup shows matching snippets as a new type of search result.
* Keyboard shortcut Shift+1/⇧1 for conveniently making a snippet
  query.
* Input prompts, upload dialogs, and bookmark editors can be resized
  by dragging the left or right edge.
* Text zooming in the upload text editor.
* Gemtext syntax highlighting in the upload dialog.
* Recently submitted input prompt contents are saved persistently and
  can be restored via the Ellipsis utility menu in the prompt dialog.
* You can force the input prompt to appear before a certain URL is
  requested so you can enter a query string. This is useful for
  avoiding an extra request when it is known that a URL will require
  input (e.g., search engine, game input).
* When importing links as bookmarks, you can optionally create
  subfolders from headings. You can also choose a destination folder
  for the imported bookmarks.
* Quickly add/move a bookmark into a folder with the navbar bookmark
  button context menu.
* User-selectable feed refresh interval. Previously the interval been
  hardcoded to four hours. (Based on a patch by Michael Nordmeyer.)
* Setting to never/always collapse preformatted blocks, disabling the
  ability to toggle the folding.
* "Fold All" and "Unfold All" in Bookmarks sidebar context menu.
* "Search" context menu item on selected text to make a search query
  with it.
* "Use as Search URL" in link context menu.
* "Mark All Links as Visited" in the Tools submenu.
* Option `--capslock`: enable Caps Lock as a modifier in keybindings.
* Option `--theme` (`-t`): change UI color theme of open Lagrange
  windows. Can be used in scripts to switch the theme automatically
  (for example, see the `darkman` utility; thanks to Jason McBrayer
  for suggesting this).
* Support for the Nex protocol
  (nex://nightfall.city/nex/info/specification.txt).
* Keyboard shortcut for deleting bookmarks (Backspace). Useful when
  the Bookmarks list has input focus.
* macOS: System UI accent color can be chosen as the accent color.

Changes and enhancements:
* Menus can have submenus. Several of the old menus were reorganized
  accordingly. For example, the page context menu has a Tools submenu
  for translation, Titan uploads, etc.
* Show unsupported media types as plain text if the content is valid
  UTF-8 encoded text.
* The page scrolls while selecting text near top/bottom.
* Display a logo graphic in empty windows/tabs as a placeholder.
* Visualize input focus in lists by drawing a focus rectangle around
  the current item.
* Menu separators are taller and more distinct for a clearer item
  separation.
* Adjusted colors of the Import Identity dialog.
* Auto-hide sidebars when resizing a window/split if the document area
  would become narrower than the sidebar.
* Tuned theme color palette and improved background colors of
  "Colorful Light".
* Newly created client certificates have a default expiration date in
  the year 9999, which means they won't expire. One can still also
  set a specific date as before.
* Periodically save UI state (including each tab's navigation history)
  to prevent data loss in case the app crashes. These runtime saves do
  not include any cached page content. The full cache is still saved
  as before when quitting the app.

Fixes:
* Potential crash at shutdown when a feed update is ongoing.
* Problems with window refresh when multiple windows are open. For
  example, the cursor not blinking in input fields.
* Incorrect name displayed in page banner when URL query string
  contains a tilde name.
* Fixed navbar spinner animation going too fast when both sides of a
  split view are being loaded.
* Glitches during swipe navigation (touch screens, macOS trackpad).
  Behavior is more robust at ends of history and when content is not
  immediately available in cache.
* Fixed opening of context menus via keyboard (incorrect click
  position).
* Fixed a text rendering issue where glyphs were incorrect when
  preceded by a Narrow No-Break Space.

== 1.16.7
* Workaround for window refresh potentially getting stuck while
  receiving a streaming response. (Limit update frequency.)
* Don't navigate back when stopping a streaming request.

== 1.16.6
* Fixed crash on gemini://sdf.org/ where the contents of a link line
  would fail to be recognized as valid characters.
* Fixed splitting a long wrapped line in input fields where part of
  the text would remain on the preceding line. (Mixup between byte
  and character index.)

== 1.16.5
* "New Tab" (Ctrl+T) and the tab bar [+] button append the tab to the
  right edge. Previously it was inserted next to the active tab.
* Flatpak: Fixed crash when opening Preferences.

== 1.16.4
* Context/button menus use a popup window if they would otherwise
  have to scroll (e.g., "Dark theme:" in Preferences and "Folder:"
  in the bookmark editor).
* Improved tab closing order: close all sibling tabs opened from an
  origin tab before switching back to the origin tab.
* Center a short title under the icon in the page margin.
* Fixed navbar URL text selection when opening new tabs (keep all
  selected).
* Fixed too much empty space in the input prompt layout.
* Fixed input field not being updated after cutting text.
* Fixed stuck mouse button when opening a context menu while
  performing a drag.
* Fixed incorrect mouse button state and other potential incorrect
  behavior after resizing the window.
* macOS: Fixed drag operation getting stuck if a context menu is
  opened during the drag.
* macOS: Fixed a few cases of potential window freezing during swipe
  navigation.
* Windows: Updated SDL to 2.26.5.
* Linux: The x86_64 AppImage now uses SDL 2.26.5 built from source,
  fixing issues with window and popup behavior.
* TUI: Fixed build error.

== 1.16.3
* Remove whitespace from ends of a URL pasted into an input field.
* Fixed links whose label is a single Emoji sometimes not appearing.
* Fixed zooming not affecting unfocused windows right away.
* Fixed current zoom level not being applied to newly created windows.
* Fixed updating of selected text range in navbar URL when changing
  tabs.
* Fixed mouse wheel scrolling not working in unfocused windows.
* macOS: Fixed an issue where the input focus is given to the wrong
  window when the application comes to the foreground.

== 1.16.2
* Set input focus to navbar URL field when opening an empty window.
* The navbar URL field only omits the "gemini:" scheme when the text
  actually doesn't fit horizontally, and only when the field is
  inactive.
* Fixed problems with handling URLs in input fields. For example,
  copying the URL to the clipboard sometimes had unexpected or
  incorrect results.
* Updated UI translations.

== 1.16.1
* Fixed handling of the AltGr key during text input (again).
* Updated UI translations.

== 1.16
New features:
* Input prompt font size can be changed with the Zoom In/Out/Reset
  keys.
* Preferences: Option for silently following scheme-changing
  redirects (Network tab; default: no).

Changes and enhancements:
* Tab creation and closing follows common browser conventions: new
  tabs are opened next to the most recently opened tab, so they
  retain the correct left-to-right order.
* Preferences: Moved cache/memory size settings to Content tab.
* Page title in margin omits prefix Emoji if it matches the bookmark
  icon.
* Adjusted word-wrapping to break at a period inside a word (e.g.,
  domain names).
* If the page is missing a level 1 heading, use the first content
  line as the title.

Fixes:
* Fixed tab order getting reversed when restoring tabs at launch.
* Fixed order of opened tabs when using "Open in New Tabs" on a
  bookmark folder.
* Fixed input focus going to the wrong split when pressing Ctrl+L
  with an Upload dialog open.
* Fixed text fields becoming nonresponsive when multiple fields are
  active.
* Fixed input query dialogs not being hidden when the tab changes.
* Fixed incorrect parsing of "hostname:port" in URL field (without
  `//` or `gemini://`).
* Fixed potential crash when switching between cached pages while
  navigating in history.
* Fixed potential crash when closing split view during a scrolling
  animation.

== 1.15.9
* Added new UI translation: Basque (euskara).
* Improved opening and closing of tabs. New tabs now open to the
  right of the current tab.
* Allow scaling up small images up to 2x size.
* Fixed possible crash when closing tabs.
* Fixed crashes on Wayland due to use of X11-specific code.
* Updated UI translations.

(yhardy)

Updated net/qbittorrent, devel/py-wcwidth

(adam)

py-wcwidth: updated to 0.2.12

0.2.12 re-release to remove .pyi file misplaced in wheel file

(adam)

qbittorrent: updated to 4.6.1

v4.6.1
- FEATURE: Add option to enable previous Add new torrent dialog behavior (glassez)
- BUGFIX: Prevent crash due to race condition when adding magnet link (glassez)
- BUGFIX: Fix Enter key behavior when add new torrent (glassez)
- BUGFIX: Add missing main window icon (iomezk)
- BUGFIX: Update size of selected files when selection is changed (glassez)
- BUGFIX: Correctly handle changing save path of torrent w/o metadata (glassez)
- BUGFIX: Use appropriate icon for "moving" torrents in transfer list (xavier2k6)
- WEBUI: Drop WebUI default credentials (glassez)
- WEBUI: Add I2P settings to WebUI (thalieht)
- WEBUI: Fix duplicate scrollbar on Transfer List (AgentConDier)
- WEBUI: Fix .torrent file upload on iPadOS (Vitaly Cheptsov)
- WEBUI: Fix incorrect subcategory sorting (Bartu ��zen)
- WEBUI: Correctly set save path in RSS rules (glassez)
- WEBUI: Allow to request torrents count via WebAPI (glassez)
- WEBUI: Improve performance of getting torrent numbers via WebAPI (Chocobo1)
- WEBUI: Improve free disk space checking for WebAPI (glassez)
- WINDOWS: NSIS: Fixed typo in the installer's hungarian translation (MartinKing01)
- LINUX: Fix invisible tray icon with Qt5 in Linux (thalieht)
- MACOS: Remove "Physical memory (RAM) usage limit" option (Chocobo1)

(adam)

py-numpy: Fix PLIST for Python 3.12

* Python 3.12 has no distutils anymore.

(ryoon)

doc: Updated mail/thunderbird102-l10n to 102.15.1

(ryoon)

thunderbird102-l10n: Update to 102.15.1

* Sync with mail/thunderbird102-102.15.1.

(ryoon)

doc: Updated mail/thunderbird102 to 102.15.1

(ryoon)

thunderbird102: Update to 102.15.1

* Use thunderbird102 as PKGBASE not to conflict with mail/thunderbird.
* Disable wasm sandboxing to avoid compile error.
* Fix build with new icu.

Changelog:
102.15.1:
Fixes

fixed
Security fixes

Mozilla Foundation Security Advisory 2023-40
#CVE-2023-4863: Heap buffer overflow in libwebp

(ryoon)

doc: Updated mail/thunderbird-l10n to 115.4.3

(ryoon)

thunderbird-l10n: Update to 115.4.3

* Sync with mail/thunderbird-115.4.3.

(ryoon)

doc: Updated mail/thunderbird to 115.4.3

(ryoon)

thunderbird: Update to 115.4.3

* Use internal icu to fix the runtime errors in calendar.

Changelog:
115.4.3:
Fixes

fixed
Forwarding multiple messages as attachments failed

fixed
Message list scrolling fixes

fixed
Some text remained incorrectly visible in the message list when using "Grouped
By" sorting

fixed
Subject lines were excessively indented in "Grouped by" views

fixed
"Open Message in Conversation" was incorrectly enabled for selections of
multiple messages

fixed
States of collapsed and expanded threads were not maintained when switching
folders

fixed
Pressing "n" to move to the next unread message on an unread, collapsed thread
opened the thread and selected the second message instead of the first

fixed
Search Folders dialog improvements

fixed
"Read Messages" button in Account Central did not retrieve mail from POP
accounts

fixed
Events canceled by the organizer were incorrectly sent cancelation message

115.4.2:
Fixes

fixed
No messages or calendar items were displayed on startup

fixed
Toolbar & Folder View widget fixes

fixed
Insert image dialog was not properly sized on some localized builds

fixed
The "unencrypted subject" icon was always briefly displayed when replying to a
message

fixed
RSS feeds with lengthy attachment filenames cut off visible content

fixed
RSS feeds with no favicon displayed default icon in the folder color

fixed
NNTP messages that were previously downloaded were not displayed if the server
went offline

fixed
Vcard photos were not imported when using opening the file with Thunderbird

fixed
Publishing calendars to invalid URLs did not display a helpful error

fixed
Publishing calendar events via authenticated WebDAV failed

fixed
Converting a message to an event failed when the message pane was not displayed

fixed
Redirect dialog displayed for WebDAV calendars was too small

fixed
Visual and Theme improvements

115.4.1:
What's New

new
"Manage Newsgroups Subscription" now displayed on Account Central when using
newsgroups

Fixes

fixed
Manually configured authentication methods on accounts did not always persist

fixed
"Send Autocrypt key in header" preference was available on accounts with no
encryption key

fixed
SHA-1 certificates were not accepted in Thunderbird 115; acceptance of SHA-1
messages can now be enabled via optional preference

fixed
Various Flatpak enhancements

fixed
Opening folder in new tab by clicking scroll wheel/middle mouse button did not
work in Folder Pane

fixed
Message list did not automatically scroll to new messages when switching
folders

fixed
"Move/Copy to again" was sometimes displayed in the folder context menu when it
should not have been

fixed
Multiple message drafts or message templates could not be opened simultaneously
for editing

fixed
Tools > Filters dialog did not open in Unified Folder view if no messages were
selected

fixed
Printing dialog could be opened, even with no messages selected

fixed
"From" address was editable when creating a new message from a template if the
account identity contained Unicode characters

fixed
Opening a saved .eml file in compose window did not preserve message subject
from file

fixed
Replying to some plaintext messages with desired quote selected in original
message did not preserve formatting of quote

fixed
"Edit as New", "Reply", and "Redirect" could not be used on multiple messages
simultaneously

fixed
"Reply to List" option was always enabled, even with no list to reply to

fixed
"Archive" button in message pane was enabled on messages that could not be
archived

fixed
"Followup-To" label was incorrectly labeled as "Newsgroups"

fixed
"Save image as" option did not work for RSS feed items displayed as a webpage

fixed
OTR verification dialog was blank, preventing verification of OTR chat sessions

fixed
Calendar event import failed for some ICS files

fixed
Permission description strings were missing from Add-Ons Manager

fixed
Various visual fixes

fixed
Security fixes

Security fixes:
Mozilla Foundation Security Advisory 2023-47
#CVE-2023-5721: Queued up rendering could have allowed websites to clickjack
#CVE-2023-5732: Address bar spoofing via bidirectional characters
#CVE-2023-5724: Large WebGL draw could have led to a crash
#CVE-2023-5725: WebExtensions could open arbitrary URLs
#CVE-2023-5726: Full screen notification obscured by file open dialog on macOS
#CVE-2023-5727: Download Protections were bypassed by .msix, .msixbundle,
.appx, and .appxbundle files on Windows
#CVE-2023-5728: Improper object tracking during GC in the JavaScript engine
could have led to a crash.
#CVE-2023-5730: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and
Thunderbird 115.4.1

115.3.3:
Fixes

fixed
Modifier keys did not work as expected when dragging a message over the folder
tree on macOS

fixed
"Folder Location" toolbar button did not work for local folders

fixed
"Copy to again" option disappeared from context menu after copying to Gmail
folder with non-ASCII name

fixed
Default reply identity did not use "Delivered-To" address when catch-all was
active

fixed
"View Headers All" did not work when selected in standalone message window

fixed
Viewing the mail filter log displayed an error if no log file was present

115.3.2:
Fixes

fixed
"Open in conversation" did not open messages in a thread view

fixed
News messsage with non-ASCII author name were incorrectly canceled

fixed
Localized "Re: " prefix was not stripped from news messages

fixed
Thunderbird attempted to load accounts missing server hostname, causing blank
3-pane window

fixed
Permission description strings were missing from Add-Ons Manager

fixed
Card View displayed incorrect recipient name for mail and news accounts,
depending on folder

fixed
Spell check dictionary dialog sometimes pushed Close button out of view

fixed
Importing calendars from iCal files did not work under certain circumstances

fixed
Calendar invitations were not sent to event participants, only organizer

fixed
Calendar alarm dialogs with lengthy descriptions pushed buttons out of view

fixed
Various visual fixes

115.3.1:
Fixes

fixed
In Unified Folders view, some folders had incorrect unified folder parent

fixed
"Edit message as new" did not restore encrypted subject from selected message

fixed
Importing some CalDAV calendars with yearly recurrence events caused
Thunderbird to freeze

fixed
Security fixes

Mozilla Foundation Security Advisory 2023-44
#CVE-2023-5217: Heap buffer overflow in libvpx

115.3.0:
Fixes

fixed
Thunderbird could not import profiles with hostname ending in dot (".")

fixed
Message header was occasionally missing in message preview

fixed
Setting an existing folder's type flag did not add descendant folders to the
Unified Folders view

fixed
Thunderbird did not always delete all temporary mail files, sometimes
preventing messages from being sent

fixed
Status bar in Message Compose window could not be hidden

fixed
Message header was intermittently missing from message preview

fixed
OAuth2 did not work on some profiles created in Thunderbird 102.6.1 or earlier

fixed
In Vertical View, decrypted subject lines were displayed as ellipsis ("...") in
message list

fixed
Condensed address preference (mail.showCondensedAddresses) did not show
condensed addresses in message list

fixed
Spam folder could not be assigned non-ASCII names with IMAP UTF-8 enabled

fixed
Message header was not displayed until images finished loading, causing
noticeable delay for messages containing large images

fixed
Large SVG favicons did not display on RSS feeds

fixed
Context menu items did not display a hover background color

fixed
Security fixes

Mozilla Foundation Security Advisory 2023-43
#CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1
#CVE-2023-5169: Out-of-bounds write in PathOps
#CVE-2023-5171: Use-after-free in Ion Compiler
#CVE-2023-5174: Double-free in process spawning on Windows
#CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3, and
Thunderbird 115.3

115.2.3:
Changes

changed
Card view and vertical layout are now default for new profiles

Fixes

fixed
Go > Folder menu was disabled

fixed
"Tools" menu was blank when opened from compose window on macOS

fixed
Deleting an attachment from a message on an IMAP server corrupted the local
copy when configured with "mark as deleted"

fixed
Manually entered passwords were not remembered for OAuth-authenticated accounts
such as Yahoo mail

fixed
Quick Filter's "Keep filters applied" did not persist after restarting
Thunderbird

fixed
Top-level Quick Filter settings did not persist after restart

fixed
Notifications for new messages with non-ASCII characters in the subject were
garbled

fixed
"Mark Thread As Read" did not work when some messages in thread were already
read

fixed
New Groups tab in NNTP subscribe dialog id not work as expected

fixed
Negative values were allowed in "Share for files larger than" field

fixed
Thunderbird sometimes crashed when deleting a parent folder with subfolders

fixed
"Send Message Error" appeared intermittently while Thunderbird was idle

fixed
Focused but not selected messages were missing visual indication of focus in
card view

fixed
Notification dot did not disappear from taskbar icon on Windows after messages
had already been read

fixed
Multiple selected messages could not be opened simultaneously if selection
included more than 19 messages

fixed
Email replies received via BCC incorrectly populated From field with default
identity

fixed
User was not always notified of message send failures in outbox

fixed
Tag dialog did not close properly after editing tag

fixed
Newsgroup field in compose window did not autocomplete with suggested newsgroup
names

fixed
Canceling newsgroup messages did not check if sender matched user's own
identity

fixed
Event dialog with several invitees expanded beyond screen height

fixed
Message check boxes were partially obstructed in message list

115.4.3:
Fixes

fixed
Forwarding multiple messages as attachments failed

fixed
Message list scrolling fixes

fixed
Some text remained incorrectly visible in the message list when using "Grouped
By" sorting

fixed
Subject lines were excessively indented in "Grouped by" views

fixed
"Open Message in Conversation" was incorrectly enabled for selections of
multiple messages

fixed
States of collapsed and expanded threads were not maintained when switching
folders

fixed
Pressing "n" to move to the next unread message on an unread, collapsed thread
opened the thread and selected the second message instead of the first

fixed
Search Folders dialog improvements

fixed
"Read Messages" button in Account Central did not retrieve mail from POP
accounts

fixed
Events canceled by the organizer were incorrectly sent cancelation message

115.4.2:
Fixes

fixed
No messages or calendar items were displayed on startup

fixed
Toolbar & Folder View widget fixes

fixed
Insert image dialog was not properly sized on some localized builds

fixed
The "unencrypted subject" icon was always briefly displayed when replying to a
message

fixed
RSS feeds with lengthy attachment filenames cut off visible content

fixed
RSS feeds with no favicon displayed default icon in the folder color

fixed
NNTP messages that were previously downloaded were not displayed if the server
went offline

fixed
Vcard photos were not imported when using opening the file with Thunderbird

fixed
Publishing calendars to invalid URLs did not display a helpful error

fixed
Publishing calendar events via authenticated WebDAV failed

fixed
Converting a message to an event failed when the message pane was not displayed

fixed
Redirect dialog displayed for WebDAV calendars was too small

fixed
Visual and Theme improvements

115.4.1:
What's New

new
"Manage Newsgroups Subscription" now displayed on Account Central when using
newsgroups

Fixes

fixed
Manually configured authentication methods on accounts did not always persist

fixed
"Send Autocrypt key in header" preference was available on accounts with no
encryption key

fixed
SHA-1 certificates were not accepted in Thunderbird 115; acceptance of SHA-1
messages can now be enabled via optional preference

fixed
Various Flatpak enhancements

fixed
Opening folder in new tab by clicking scroll wheel/middle mouse button did not
work in Folder Pane

fixed
Message list did not automatically scroll to new messages when switching
folders

fixed
"Move/Copy to again" was sometimes displayed in the folder context menu when it
should not have been

fixed
Multiple message drafts or message templates could not be opened simultaneously
for editing

fixed
Tools > Filters dialog did not open in Unified Folder view if no messages were
selected

fixed
Printing dialog could be opened, even with no messages selected

fixed
"From" address was editable when creating a new message from a template if the
account identity contained Unicode characters

fixed
Opening a saved .eml file in compose window did not preserve message subject
from file

fixed
Replying to some plaintext messages with desired quote selected in original
message did not preserve formatting of quote

fixed
"Edit as New", "Reply", and "Redirect" could not be used on multiple messages
simultaneously

fixed
"Reply to List" option was always enabled, even with no list to reply to

fixed
"Archive" button in message pane was enabled on messages that could not be
archived

fixed
"Followup-To" label was incorrectly labeled as "Newsgroups"

fixed
"Save image as" option did not work for RSS feed items displayed as a webpage

fixed
OTR verification dialog was blank, preventing verification of OTR chat sessions

fixed
Calendar event import failed for some ICS files

fixed
Permission description strings were missing from Add-Ons Manager

fixed
Various visual fixes

fixed
Security fixes

Security fixes:
Mozilla Foundation Security Advisory 2023-47
#CVE-2023-5721: Queued up rendering could have allowed websites to clickjack
#CVE-2023-5732: Address bar spoofing via bidirectional characters
#CVE-2023-5724: Large WebGL draw could have led to a crash
#CVE-2023-5725: WebExtensions could open arbitrary URLs
#CVE-2023-5726: Full screen notification obscured by file open dialog on macOS
#CVE-2023-5727: Download Protections were bypassed by .msix, .msixbundle,
.appx, and .appxbundle files on Windows
#CVE-2023-5728: Improper object tracking during GC in the JavaScript engine
could have led to a crash.
#CVE-2023-5730: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4, and
Thunderbird 115.4.1

115.3.3:
Fixes

fixed
Modifier keys did not work as expected when dragging a message over the folder
tree on macOS

fixed
"Folder Location" toolbar button did not work for local folders

fixed
"Copy to again" option disappeared from context menu after copying to Gmail
folder with non-ASCII name

fixed
Default reply identity did not use "Delivered-To" address when catch-all was
active

fixed
"View Headers All" did not work when selected in standalone message window

fixed
Viewing the mail filter log displayed an error if no log file was present

115.3.2:
Fixes

fixed
"Open in conversation" did not open messages in a thread view

fixed
News messsage with non-ASCII author name were incorrectly canceled

fixed
Localized "Re: " prefix was not stripped from news messages

fixed
Thunderbird attempted to load accounts missing server hostname, causing blank
3-pane window

fixed
Permission description strings were missing from Add-Ons Manager

fixed
Card View displayed incorrect recipient name for mail and news accounts,
depending on folder

fixed
Spell check dictionary dialog sometimes pushed Close button out of view

fixed
Importing calendars from iCal files did not work under certain circumstances

fixed
Calendar invitations were not sent to event participants, only organizer

fixed
Calendar alarm dialogs with lengthy descriptions pushed buttons out of view

fixed
Various visual fixes

115.3.1:
Fixes

fixed
In Unified Folders view, some folders had incorrect unified folder parent

fixed
"Edit message as new" did not restore encrypted subject from selected message

fixed
Importing some CalDAV calendars with yearly recurrence events caused
Thunderbird to freeze

fixed
Security fixes

Mozilla Foundation Security Advisory 2023-44
#CVE-2023-5217: Heap buffer overflow in libvpx

115.3.0:
Fixes

fixed
Thunderbird could not import profiles with hostname ending in dot (".")

fixed
Message header was occasionally missing in message preview

fixed
Setting an existing folder's type flag did not add descendant folders to the
Unified Folders view

fixed
Thunderbird did not always delete all temporary mail files, sometimes
preventing messages from being sent

fixed
Status bar in Message Compose window could not be hidden

fixed
Message header was intermittently missing from message preview

fixed
OAuth2 did not work on some profiles created in Thunderbird 102.6.1 or earlier

fixed
In Vertical View, decrypted subject lines were displayed as ellipsis ("...") in
message list

fixed
Condensed address preference (mail.showCondensedAddresses) did not show
condensed addresses in message list

fixed
Spam folder could not be assigned non-ASCII names with IMAP UTF-8 enabled

fixed
Message header was not displayed until images finished loading, causing
noticeable delay for messages containing large images

fixed
Large SVG favicons did not display on RSS feeds

fixed
Context menu items did not display a hover background color

fixed
Security fixes

Mozilla Foundation Security Advisory 2023-43
#CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1
#CVE-2023-5169: Out-of-bounds write in PathOps
#CVE-2023-5171: Use-after-free in Ion Compiler
#CVE-2023-5174: Double-free in process spawning on Windows
#CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox ESR 115.3, and
Thunderbird 115.3

115.2.3:
Changes

changed
Card view and vertical layout are now default for new profiles

Fixes

fixed
Go > Folder menu was disabled

fixed
"Tools" menu was blank when opened from compose window on macOS

fixed
Deleting an attachment from a message on an IMAP server corrupted the local
copy when configured with "mark as deleted"

fixed
Manually entered passwords were not remembered for OAuth-authenticated accounts
such as Yahoo mail

fixed
Quick Filter's "Keep filters applied" did not persist after restarting
Thunderbird

fixed
Top-level Quick Filter settings did not persist after restart

fixed
Notifications for new messages with non-ASCII characters in the subject were
garbled

fixed
"Mark Thread As Read" did not work when some messages in thread were already
read

fixed
New Groups tab in NNTP subscribe dialog id not work as expected

fixed
Negative values were allowed in "Share for files larger than" field

fixed
Thunderbird sometimes crashed when deleting a parent folder with subfolders

fixed
"Send Message Error" appeared intermittently while Thunderbird was idle

fixed
Focused but not selected messages were missing visual indication of focus in
card view

fixed
Notification dot did not disappear from taskbar icon on Windows after messages
had already been read

fixed
Multiple selected messages could not be opened simultaneously if selection
included more than 19 messages

fixed
Email replies received via BCC incorrectly populated From field with default
identity

fixed
User was not always notified of message send failures in outbox

fixed
Tag dialog did not close properly after editing tag

fixed
Newsgroup field in compose window did not autocomplete with suggested newsgroup
names

fixed
Canceling newsgroup messages did not check if sender matched user's own
identity

fixed
Event dialog with several invitees expanded beyond screen height

fixed
Message check boxes were partially obstructed in message list

115.2.0:
What's New

new
Thunderbird MSIX packages are now published on archive.mozilla.org

Changes

changed
Size, Unread, and Total columns are now right-aligned

changed
Newsgroup names in message list header are now abbreviated

Fixes

fixed
Message compose window did not apply theme colors to menus

fixed
Reading the second new message in a folder cleared the unread indicator of all
other new messages

fixed
Displayed counts of unread or flagged messages could become out-of-sync

fixed
Deleting a message from the context menu with messages sorted in chronological
order and smooth scroll enabled caused message list to scroll to top

fixed
Repeatedly switching accounts in Subscribe dialog caused tree view to stop
updating

fixed
"Ignore thread" caused message cards to display incorrectly in message list

fixed
Creating tags from unified toolbar failed

fixed
Cross-folder navigation using F and N did not work

fixed
Account Manager did not resize to fit content, causing "Close" button to become
hidden outside bounds of dialog when too many accounts were listed

fixed
Remote content exceptions could not be added in Settings

fixed
Newsgroup list file did not get updated after adding a new NNTP server

fixed
"Download all headers" option in NNTP "Download Headers" dialog was incorrectly
selected by default

fixed
"Convert to event/task" was missing from mail context menu

fixed
Events and tasks were not shown in some cases despite being present on remote
server

fixed
Various visual and UX improvements

fixed
Security fixes

Mozilla Foundation Security Advisory 2023-38
#CVE-2023-4573: Memory corruption in IPC CanvasTranslator
#CVE-2023-4574: Memory corruption in IPC ColorPickerShownCallback
#CVE-2023-4575: Memory corruption in IPC FilePickerShownCallback
#CVE-2023-4576: Integer Overflow in RecordedSourceSurfaceCreation
#CVE-2023-4577: Memory corruption in JIT UpdateRegExpStatics
#CVE-2023-4051: Full screen notification obscured by file open dialog
#CVE-2023-4578: Error reporting methods in SpiderMonkey could have triggered an
Out of Memory Exception
#CVE-2023-4053: Full screen notification obscured by external program
#CVE-2023-4580: Push notifications saved to disk unencrypted
#CVE-2023-4581: XLL file extensions were downloadable without warnings
#CVE-2023-4582: Buffer Overflow in WebGL glGetProgramiv
#CVE-2023-4583: Browsing Context potentially not cleared when closing Private
Window
#CVE-2023-4584: Memory safety bugs fixed in Firefox 117, Firefox ESR 102.15,
Firefox ESR 115.2, Thunderbird 102.15, and Thunderbird 115.2
#CVE-2023-4585: Memory safety bugs fixed in Firefox 117, Firefox ESR 115.2, and
Thunderbird 115.2

(ryoon)

Updated devel/git, multimedia/libde265

(adam)

libde265: updated to 1.0.14

v1.0.14 - build fix

This fixes build-time SSE detection when using the CMake build system.
No other changes than that. You don't need to update if you are using the autotools build system.

v1.0.13 - maintenance release
This release fixes among other smaller issues the following crashes:

* SEGV:occured in function main at dec265.cc
* Memory allocation failed in function main at dec265.cc
* Buffer over-read causes segmentation fault in pic_parameter_set::dump
* Potential segmentation fault due to incorrect realloc in CABAC_encoder_bitstream::check_size_and_resize (unused function)
* SEGV in libde265 in slice_segment_header::dump_slice_segment_header
* Libde265 v1.0.12 was discovered that requested allocation size exceeds maximum supported size of 0x10000000000
* heap-buffer-overflow in derive_spatial_luma_vector_prediction(...)

(adam)

git: updated to 2.43.0

Git v2.43 Release Notes
=======================

Backward Compatibility Notes

* The "--rfc" option of "git format-patch" used to be a valid way to
  override an earlier "--subject-prefix=<something>" on the command
  line and replace it with "[RFC PATCH]", but from this release, it
  merely prefixes the string "RFC " in front of the given subject
  prefix.  If you are negatively affected by this change, please use
  "--subject-prefix=PATCH --rfc" as a replacement.

* In Git 2.42, "git rev-list --stdin" learned to take non-revisions
  (like "--not") from the standard input, but the way such a "--not" was
  handled was quite confusing, which has been rethought.  The updated
  rule is that "--not" given from the command line only affects revs
  given from the command line that comes but not revs read from the
  standard input, and "--not" read from the standard input affects
  revs given from the standard input and not revs given from the
  command line.

UI, Workflows & Features

* A message written in olden time prevented a branch from getting
  checked out, saying it is already checked out elsewhere. But these
  days, we treat a branch that is being bisected or rebased just like
  a branch that is checked out and protect it from getting modified
  with the same codepath.  The message has been rephrased to say that
  the branch is "in use" to avoid confusion.

* Hourly and other schedules of "git maintenance" jobs are randomly
  distributed now.

* "git cmd -h" learned to signal which options can be negated by
  listing such options like "--[no-]opt".

* The way authentication related data other than passwords (e.g.,
  oauth token and password expiration data) are stored in libsecret
  keyrings has been rethought.

* Update the libsecret and wincred credential helpers to correctly
  match which credential to erase; they erased the wrong entry in
  some cases.

* Git GUI updates.

* "git format-patch" learned a new "--description-file" option that
  lets cover letter description to be fed; this can be used on
  detached HEAD where there is no branch description available, and
  also can override the branch description if there is one.

* Use of the "--max-pack-size" option to allow multiple packfiles to
  be created is now supported even when we are sending unreachable
  objects to cruft packs.

* "git format-patch --rfc --subject-prefix=<foo>" used to ignore the
  "--subject-prefix" option and used "[RFC PATCH]"; now we will add
  "RFC" prefix to whatever subject prefix is specified.

* "git log --format" has been taught the %(decorate) placeholder for
  further customization over what the "--decorate" option offers.

* The default log message created by "git revert", when reverting a
  commit that records a revert, has been tweaked, to encourage people
  to describe complex "revert of revert of revert" situations better in
  their own words.

* The command-line completion support (in contrib/) learned to
  complete "git commit --trailer=" for possible trailer keys.

* "git update-index" learned the "--show-index-version" option to
  inspect the index format version used by the on-disk index file.

* "git diff" learned the "diff.statNameWidth" configuration variable,
  to give the default width for the name part in the "--stat" output.

* "git range-diff --notes=foo" compared "log --notes=foo --notes" of
  the two ranges, instead of using just the specified notes tree,
  which has been corrected to use only the specified notes tree.

* The command line completion script (in contrib/) can be told to
  complete aliases by including ": git <cmd> ;" in the alias to tell
  it that the alias should be completed in a similar way to how "git
  <cmd>" is completed.  The parsing code for the alias has been
  loosened to allow ';' without an extra space before it.

* "git for-each-ref" and friends learned to apply mailmap to
  authorname and other fields in a more flexible way than using
  separate placeholder letters like %a[eElL] every time we want to
  come up with small variants.

* "git repack" machinery learned to pay attention to the "--filter="
  option.

* "git repack" learned the "--max-cruft-size" option to prevent cruft
  packs from growing without bounds.

* "git merge-tree" learned to take strategy backend specific options
  via the "-X" option, like "git merge" does.

* "git log" and friends learned the "--dd" option that is a
  short-hand for "--diff-merges=first-parent -p".

* The attribute subsystem learned to honor the "attr.tree"
  configuration variable that specifies which tree to read the
  .gitattributes files from.

* "git merge-file" learns a mode to read three variants of the
  contents to be merged from blob objects.

Performance, Internal Implementation, Development Support etc.

* "git check-attr" has been taught to work better with sparse-index.

* It may be tempting to leave the help text NULL for a command line
  option that is either hidden or too obvious, but "git subcmd -h"
  and "git subcmd --help-all" would have segfaulted if done so.  Now
  the help text is truly optional.

* Tests that are known to pass with LSan are now marked as such.

* Flaky "git p4" tests, as well as "git svn" tests, are now skipped
  in the (rather expensive) sanitizer CI job.

* Tests with LSan from time to time seem to emit harmless messages
  that make our tests unnecessarily flaky; we work around it by
  filtering the uninteresting output.

* Unused parameters to functions are marked as such, and/or removed,
  in order to bring us closer to "-Wunused-parameter" clean.

* The code to keep track of existing packs in the repository while
  repacking has been refactored.

* The "streaming" interface used for bulk-checkin codepath has been
  narrowed to take only blob objects for now, with no real loss of
  functionality.

* GitHub CI workflow has learned to trigger Coverity check.

* Test coverage for trailers has been improved.

* The code to iterate over loose references has been optimized to
  reduce the number of lstat() system calls.

* The codepaths that read "chunk" formatted files have been corrected
  to pay attention to the chunk size and notice broken files.

* Replace macos-12 used at GitHub CI with macos-13.
  (merge 682a868f67 js/ci-use-macos-13 later to maint).

Fixes since v2.42
-----------------

* Overly long label names used in the sequencer machinery are now
  chopped to fit under filesystem limitation.

* Scalar updates.

* Tweak GitHub Actions CI so that pushing the same commit to multiple
  branch tips at the same time will not waste building and testing
  the same thing twice.

* The commit-graph verification code that detects a mixture of zero and
  non-zero generation numbers has been updated.

* "git diff -w --exit-code" with various options did not work
  correctly, which has been corrected.

* The "transfer.unpackLimit" configuration variable ought to be used
  as a fallback, but overrode the more specific "fetch.unpackLimit"
  and "receive.unpackLimit" configuration variables by mistake, which
  has been corrected.

* The use of API between two calls to require_clean_work_tree() from
  the sequencer code has been cleaned up for consistency.

* "git diff --no-such-option" and other corner cases around the exit
  status of the "diff" command have been corrected.

* "git for-each-ref --sort='contents:size'" sorted the refs according
  to size numerically, giving a ref that points at a blob twelve-byte
  (12) long before showing a blob hundred-byte (100) long, which has
  been corrected.

* We now limit the depth of the tree objects and maximum length of
  pathnames recorded in tree objects.
  (merge 4d5693ba05 jk/tree-name-and-depth-limit later to maint).

* Various fixes to the behavior of "rebase -i", when the command got
  interrupted by conflicting changes, have been made.

* References from a description of the `--patch` option in various
  manual pages have been simplified and improved.

* "git grep -e A --no-or -e B" is accepted, even though the negation
  of the "--or" option did not mean anything, which has been tightened.

* The completion script (in contrib/) has been taught to treat the
  "-t" option to "git checkout" and "git switch" just like the
  "--track" option, to complete remote-tracking branches.

* "git diff --no-index -R <(one) <(two)" did not work correctly,
  which has been corrected.

* "git maintenance" timers' implementation has been updated, based on
  systemd timers, to work with WSL.

* "git diff --cached" codepath did not fill the necessary stat
  information for a file when fsmonitor knows it is clean and ended
  up behaving as if it were not clean, which has been corrected.

* How "alias.foo = : git cmd ; aliased-command-string" should be
  spelled with necessary whitespace around punctuation marks to work
  has been more clearly documented (but this will be moot with newer
  versions of Git where the parsing rules have been improved).

* HTTP Header redaction code has been adjusted for a newer version of
  cURL library that shows its traces differently from earlier
  versions.

* An error message given by "git send-email", when given a malformed
  address, did not show the offending address, which has been corrected.

* UBSan options were not propagated through the test framework to git
  run via the httpd, unlike ASan options, which has been corrected.

* "checkout --merge -- path" and "update-index --unresolve path" did
  not resurrect conflicted state that was resolved to remove path,
  but now they do.
  (merge 5bdedac3c7 jc/unresolve-removal later to maint).

* The display width table for unicode characters has been updated for
  Unicode 15.1
  (merge 872976c37e bb/unicode-width-table-15 later to maint).

* Update mailmap entry for Derrick.
  (merge 6e5457d8c7 ds/mailmap-entry-update later to maint).

* In the ".gitmodules" files, submodules are keyed by their names,
  and the path to the submodule whose name is $name is specified by
  the submodule.$name.path variable.  There were a few codepaths that
  mixed the name and path up when consulting the submodule database,
  which have been corrected.  It took long for these bugs to be found
  as the name of a submodule initially is the same as its path, and
  the problem does not surface until it is moved to a different path,
  which apparently happens very rarely.

* "git diff --merge-base X other args..." insisted that X must be a
  commit and errored out when given an annotated tag that peels to a
  commit, but we only need it to be a committish.  This has been
  corrected.
  (merge 4adceb5a29 ar/diff-index-merge-base-fix later to maint).

* "git merge-tree" used to segfault when the "--attr-source"
  option is used, which has been corrected.
  (merge e95bafc52f jc/merge-ort-attr-index-fix later to maint).

* Unlike "git log --pretty=%D", "git log --pretty="%(decorate)" did
  not auto-initialize the decoration subsystem, which has been
  corrected.

* Feeding "git stash store" with a random commit that was not created
  by "git stash create" now errors out.
  (merge d9b6634589 jc/fail-stash-to-store-non-stash later to maint).

* The index file has room only for the lower 32-bit of the file size in
  the cached stat information, which means cached stat information
  will have 0 in its sd_size member for a file whose size is a multiple
  of 4GiB.  This is mistaken for a racily clean path.  Avoid it by
  storing a bogus sd_size value instead for such files.
  (merge 5143ac07b1 bc/racy-4gb-files later to maint).

* "git p4" tried to store symlinks to LFS when told, but has been
  fixed not to do so, because it does not make sense.
  (merge 10c89a02b0 mm/p4-symlink-with-lfs later to maint).

* The codepath to handle recipient addresses `git send-email
  --compose` learns from the user was completely broken, which has
  been corrected.
  (merge 3ec6167567 jk/send-email-fix-addresses-from-composed-messages later to maint).

* "cd sub && git grep -f patterns" tried to read "patterns" file at
  the top level of the working tree; it has been corrected to read
  "sub/patterns" instead.

* "git reflog expire --single-worktree" has been broken for the past
  20 months or so, which has been corrected.

* "git send-email" did not have certain pieces of data computed yet
  when it tried to validate the outgoing messages and its recipient
  addresses, which has been sorted out.

* "git bugreport" learned to complain when it received a command line
  argument that it will not use.

* The codepath to traverse the commit-graph learned to notice that a
  commit is missing (e.g., corrupt repository lost an object), even
  though it knows something about the commit (like its parents) from
  what is in commit-graph.
  (merge 7a5d604443 ps/do-not-trust-commit-graph-blindly-for-existence later to maint).

* "git rev-list --missing" did not work for missing commit objects,
  which has been corrected.

* "git rev-list --unpacked --objects" failed to exclude packed
  non-commit objects, which has been corrected.
  (merge 7b3c8e9f38 tb/rev-list-unpacked-fix later to maint).

* "To dereference" and "to peel" were sometimes used in in-code
  comments and documentation but without description in the glossary.
  (merge 893dce2ffb vd/glossary-dereference-peel later to maint).

* Other code cleanup, docfix, build fix, etc.
  (merge c2c349a15c xz/commit-title-soft-limit-doc later to maint).
  (merge 1bd809938a tb/format-pack-doc-update later to maint).
  (merge 8f81532599 an/clang-format-typofix later to maint).
  (merge 3ca86adc2d la/strvec-header-fix later to maint).
  (merge 6789275d37 jc/test-i18ngrep later to maint).
  (merge 9972cd6004 ps/leakfixes later to maint).
  (merge 46edab516b tz/send-email-helpfix later to maint).

(adam)

Updated devel/py-wcwidth, devel/py-test-xdist

(adam)

py-test-xdist: updated to 3.5.0

pytest-xdist 3.5.0 (2023-11-21)

Features

- ``--dist=loadscope`` now sorts scopes by number of tests to assign largest scopes early -- in many cases this should improve overall test session running time, as there is less chance of a large scope being left to be processed near the end of the session, leaving other workers idle.

(adam)

py-wcwidth: updated to 0.2.11

0.2.11

Include tests files in the source distribution

(adam)

py-cairo* update

(markd)

py-cairo{,-shared}: split non python version specific files
into a separate package (py-cairo-shared) and convert back to wheel.mk

(markd)

doc: Updated x11/x3270 to 4.3ga4

(rhialto)

x11/x3270: update to 4.3ga4

Some changes since 4.2ga10:

    Added support for minimum and maximum TLS protocol versions, via the
tlsMinProtocol resource, tlsMaxProtocol resource, -tlsminprotocol
command-line option and -tlsmaxprotocol command-line option.
    Added support for miscellaneous IND$FILE options via the
otherOptions keyword of the Transfer() action, the ftOtherOptions
resource, and extensions to the x3270 file transfer dialog and the c3270
interactive Transfer() action.
    Extended the cancel keyword of the Transfer() action so it will
interrupt the initial wait for an acknowledgement from the host IND$FILE
command.
    The Transfer() action now returns a summary on success or a
meaningful error message on failure.
    Added the Echo() action.
    Added support for the NEW-ENVRONMENT variables needed by the IBM
Express Logon Feature. (Feature request)

    When inserting in blank fill mode, trailing underscores are no
longer consumed, unless they are at the end of the field. (Bug report)

(rhialto)

Updated security/py-asn1, devel/py-minidump

(adam)

py-minidump: updated to 0.0.22

0.0.22

Late release with bug fixes and better windows version detection

(adam)

py-ldap3: not for Python 2.7 anymore

(adam)

py-asn1-modules: not for Python 2.7 anymore

(adam)

py-asn1: updated to 0.5.1

Revision 0.5.1, released 20-11-2023

- Added support for PyPy 3.10 and Python 3.12
- Updated RTD configuration to include a dummy index.rst
  redirecting to contents.html, ensuring compatibility with
  third-party documentation and search indexes.
- Fixed the API breakage wih decoder.decode(substrateFun=...).

  A substrateFun passed to ``decoder.decode()`` can now be either
  v0.4 Non-Streaming or v0.5 Streaming. pyasn1 will detect and
  handle both cases transparently.

  A substrateFun passed to one of the new streaming decoders is
  still expected to be v0.5 Streaming only.

(adam)

abseil: Revert last commit and use *.pc instead
As pointed out by wiz, *.pc can be used. This
makes the list useless and handling of pc files
even easier.

(nros)

doc: Updated games/eternal-lands to 1.9.6.1

(nia)

eternal-lands: update to 1.9.6.1.

Release notes:
https://www.eternal-lands.com/forum/index.php?/topic/61689-client-update-to-196/

(nia)

abseil: add pkg-config overrides and ease their maintainance
Add pkg-config overrides, add them to a separate file due
to the big amount. Also add a target that can update this
file when doing package updates.

(nros)

nlohmann-json: Optionize tests to greatly cut down on build times.

(nia)

rawtherappe: fix man page installation

Ride update

(wiz)

doc: Updated graphics/rawtherapee to 5.9

(wiz)

rawtherapee: update to 5.9.

NEW FEATURES SINCE 5.8

- The Spot Removal tool (Detail tab) was added, for removing dust specks and small objects.
- The Color Appearance & Lighting tool (Advanced tab), formerly known as CIECAM02, now includes CAM16. By taking into account the conditions of the photographed scene and the conditions under which the image is viewed, it allows you to adjust the image in a way which matches human color perception.
- The Local Adjustments tool (Local tab) was added, for performing a wide range of operations on an area of the image determined by its geometry or color.
- The Wavelet Levels tool (Advanced tab) received various improvements.
- The White Balance tool (Color tab) received a new automatic white balance method named "temperature correlation" (the old one was renamed to "RGB grey").
- The Film Negative tool (Color tab) received various improvements including support for non-raw files.
- The Preprocess White Balance tool (Raw tab) was added, allowing you to specify whether channels should be balanced automatically or whether the white balance values recorded by the camera should be used instead.
- A new Perspective Correction tool (Transform tab) was added which includes an automated perspective correction feature.
- The Main Histogram was improved with new modes: waveform, vectorscope and RGB parade.
- Improvements to the Inspect feature (File Browser tab).
- New dual-demosaicing methods in the Demosaicing tool (Raw tab).
- The Haze Removal tool (Detail tab) received a saturation adjuster.
- The RawTherapee theme was improved, including changes to make it easier to see which tools are enabled.
- The Navigator (Editor tab) can now be resized.
- The Resize tool (Transform tab) now allows to resize by the long or short edge.
- The Crop tool (Transform tab) received a "centered square" crop guide, useful when the resulting non-square image will also be used on social media which crop to a square format.
- The Pixel Shift demosaicing method (Raw tab) now allows using an average of all frames for regions with motion.
- Added or improved support for cameras, raw formats and color profiles:
    - Canon EOS 100D / Rebel SL1 / Kiss X7
    - Canon EOS 1DX Mark III
    - Canon EOS 2000D / Rebel T7 / Kiss X90
    - Canon EOS 400D DIGITAL
    - Canon EOS 5D Mark II
    - Canon EOS 5D Mark IV (DCP)
    - Canon EOS 90D (DCP)
    - Canon EOS M6 Mark II (DCP)
    - Canon EOS R (DCP)
    - Canon EOS R3, R7 and R10
    - Canon EOS R5 (DCP)
    - Canon EOS R6 (DCP)
    - Canon EOS RP
    - Canon EOS-1D Mark III
    - Canon EOS-1Ds
    - Canon EOS-1Ds Mark II
    - Canon PowerShot G1 X Mark II (DCP)
    - Canon PowerShot G9 X Mark II
    - Canon PowerShot S120 (DCP)
    - Canon PowerShot SX50 HS
    - Canon PowerShot SX70 HS
    - DJI FC3170
    - FUJIFILM X-A5 (DCP)
    - FUJIFILM X-E4
    - FUJIFILM X-H1 (DCP)
    - FUJIFILM X-PRO2
    - FUJIFILM X-PRO3 (DCP)
    - FUJIFILM X-S10
    - FUJIFILM X-T1
    - FUJIFILM X-T100
    - FUJIFILM X-T2
    - FUJIFILM X-T3 (DCP)
    - FUJIFILM X-T30
    - FUJIFILM X-T4
    - FUJIFILM X100V
    - Fujifilm GFX 100
    - Fujifilm GFX100S though lossy compression and alternative crop modes (e.g. 4:3) are not supported yet
    - Fujifilm X-A20
    - Fujifilm X-T4
    - HASSELBLAD NEX-7 (Lunar)
    - Hasselblad L1D-20c (DJI Mavic 2 Pro)
    - Improved support for the Canon CR3 raw format, added support for compressed files, affects Canon EOS M50, R, R5, R6 and 1D X Mark III, etc.
    - LEICA C-LUX
    - LEICA CAM-DC25
    - LEICA D-LUX 7
    - LEICA M8
    - LEICA V-LUX 5
    - Leica SL2-S
    - NIKON COOLPIX P1000
    - NIKON D500 (DCP)
    - NIKON D5300 (DCP)
    - NIKON D610 (DCP)
    - NIKON D7100 (DCP)
    - NIKON D7500 (DCP)
    - NIKON D800 (DCP)
    - NIKON D850 (DCP)
    - NIKON Z 6 (DCP)
    - NIKON Z 7 (DCP)
    - Nikon 1 J4
    - Nikon COOLPIX P950
    - Nikon D2Hs
    - Nikon D2Xs
    - Nikon D300s
    - Nikon D3500
    - Nikon D5100
    - Nikon D6
    - Nikon D70s
    - Nikon D780
    - Nikon D810A
    - Nikon Z 5
    - Nikon Z 50 (DCP)
    - Nikon Z 6II
    - Nikon Z 7II
    - Nikon Z fc
    - OLYMPUS E-M10 Mark IV
    - OLYMPUS E-M1 Mark III
    - OLYMPUS E-M1X
    - OLYMPUS E-M5 Mark II (DCP)
    - OLYMPUS E-M5 Mark III
    - OLYMPUS E-PL10
    - OLYMPUS E-PL9
    - OLYMPUS Stylus 1
    - OLYMPUS Stylus 1s
    - OLYMPUS TG-6
    - PENTAX K-50 (DCP)
    - PENTAX K10D
    - Panasonic DC-FZ1000M2
    - Panasonic DC-FZ80
    - Panasonic DC-FZ81
    - Panasonic DC-FZ82
    - Panasonic DC-FZ83
    - Panasonic DC-G100
    - Panasonic DC-G110
    - Panasonic DC-G90
    - Panasonic DC-G95
    - Panasonic DC-G99
    - Panasonic DC-S1H
    - Panasonic DC-S5 (DCP)
    - Panasonic DC-TZ95
    - Panasonic DC-ZS80
    - Panasonic DMC-TZ80
    - Panasonic DMC-TZ85
    - Panasonic DMC-ZS60
    - RICOH PENTAX K-1 Mark II
    - RICOH PENTAX K-3 Mark III
    - SONY ILCE-9 (DCP)
    - SONY NEX-7
    - Samsung Galaxy S7
    - Sigma fp
    - Sony DCZV1B
    - Sony DSC-HX95
    - Sony DSC-HX99
    - Sony DSC-RX0
    - Sony DSC-RX0M2
    - Sony DSC-RX100
    - Sony DSC-RX100M5A
    - Sony DSC-RX100M6
    - Sony DSC-RX100M7
    - Sony DSC-RX10M2
    - Sony DSC-RX10M3
    - Sony DSC-RX10M4
    - Sony DSC-RX1R
    - Sony ILCE-1
    - Sony ILCE-6100
    - Sony ILCE-6400 (DCP)
    - Sony ILCE-6600 (DCP)
    - Sony ILCE-7C
    - Sony ILCE-7M3
    - Sony ILCE-7M4
    - Sony ILCE-7RM4 (DCP)
    - Sony ILCE-7SM3
    - Sony ILCE-9M2
    - Sony NEX-F3
    - Sony SLT-A99V

(wiz)

mail/thunderbird: Copy icu patch from firefox

(gdt)

doc: Updated games/abbayedesmorts to 2.0.2

(nia)

abbayedesmorts: Update to 2.0.2

## [2.0.2] - 2023-10-24

Bugfix releae. Small improvements for better performance. Added bigger pngs logos for Flatpak requeriments.

(nia)

doc: Updated games/7kaa to 2.15.6

(nia)

7kaa: Update to 2.15.6

Seven Kingdoms v2.15.6

  Here it is! A release long in the making, which tackles issues with the
  AI, such as smarter management, continuing assaults, and actually going on
  sea based missions. Perhaps the AI will no longer be as easily tricked.

  There has been some more quality of code improvements and testing to
  ensure stability. Thanks to all the testers the past few weeks. Now on to
  the next round of improvements. :)

(nia)

doc: Updated sysutils/dua-cli to 2.20.3

(pin)

sysutils/dua-cli: update to 2.20.3

2.20.3 (2023-11-21)
Bug Fixes
- mark-pane now doesn't double-count sizes anymore.

(pin)

doc: Updated devel/cargo-c to 0.9.28

(pin)

devel/cargo-c: update to 0.9.28

- Add version_suffix_components setting to support non-semver compatibility
  (thank you @kpcyrd !) (see #345)
- cargo 0.75.1
- MRSV bumped to rust 1.72

(pin)

doc: Updated math/four-bar-rs to 6.0.0

(pin)

math/four-bar-rs: update to 6.0.0

- No ChangeLog provided.

(pin)

Added sysutils/xenkernel418 version 20231116
Added sysutils/xentools418 version 20231116

(bouyer)

Add xenkernel418 and xentools418

(bouyer)