286332 – lang/erlang{,-java,-wx,-runtime25,-runtime26,-runtime27}: Update to latest OTP

Bug 286332 - lang/erlang{,-java,-wx,-runtime25,-runtime26,-runtime27}: Update to latest OTP

Summary: lang/erlang{,-java,-wx,-runtime25,-runtime26,-runtime27}: Update to latest OTP

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Many People
Assignee:	Vladimir Druzenko

URL:
Keywords:

Depends on:
Blocks:

Reported:	2025-04-25 02:00 UTC by fsbruva
Modified:	2025-05-17 00:06 UTC (History)
CC List:	2 users (show)

See Also:

Flags:	vvd: maintainer-feedback- vvd: merge-quarterly+

Attachments
Patch for erlang, -wx and -java (4.14 KB, patch) 2025-04-25 02:03 UTC, fsbruva	no flags	Details \| Diff
Patch for erlang-runtime25 (4.45 KB, patch) 2025-04-25 02:03 UTC, fsbruva	no flags	Details \| Diff
Patch for erlang-runtime26 (4.45 KB, patch) 2025-04-25 02:04 UTC, fsbruva	no flags	Details \| Diff
Patch for erlang-runtime27 (4.46 KB, patch) 2025-04-25 02:04 UTC, fsbruva	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description fsbruva 2025-04-25 02:00:14 UTC

The subject ports are all marked vulnerable to CVE-2025-32433. This series of patches upgrades them to the latest released (and not vulnerable) versions.

Comment 1 fsbruva 2025-04-25 02:03:16 UTC

Created attachment 259844 [details]
Patch for erlang, -wx and -java

Comment 2 fsbruva 2025-04-25 02:03:45 UTC

Created attachment 259845 [details]
Patch for erlang-runtime25

Comment 3 fsbruva 2025-04-25 02:04:09 UTC

Created attachment 259846 [details]
Patch for erlang-runtime26

Comment 4 fsbruva 2025-04-25 02:04:37 UTC

Created attachment 259847 [details]
Patch for erlang-runtime27

Comment 5 fsbruva 2025-05-15 00:51:26 UTC

Ping?

Comment 6 Vladimir Druzenko freebsd_committer

2025-05-16 16:24:27 UTC

Maintainer timeout 3 weeks.

Comment 7 Vladimir Druzenko freebsd_committer

2025-05-16 22:44:00 UTC

For all versions:
CVE-2024-53846 (except lang/erlang{,-java,-wx})
CVE-2025-26618
CVE-2025-30211
CVE-2025-32433
CVE-2025-46712

Changelogs 27.x:
https://github.com/erlang/otp/releases/tag/OTP-27.1.3
https://github.com/erlang/otp/releases/tag/OTP-27.2
https://github.com/erlang/otp/releases/tag/OTP-27.2.1
https://github.com/erlang/otp/releases/tag/OTP-27.2.2
https://github.com/erlang/otp/releases/tag/OTP-27.2.3
https://github.com/erlang/otp/releases/tag/OTP-27.2.4
https://github.com/erlang/otp/releases/tag/OTP-27.3
https://github.com/erlang/otp/releases/tag/OTP-27.3.1
https://github.com/erlang/otp/releases/tag/OTP-27.3.2
https://github.com/erlang/otp/releases/tag/OTP-27.3.3
https://github.com/erlang/otp/releases/tag/OTP-27.3.4

Changelogs 26.x (lang/erlang-runtime26):
https://github.com/erlang/otp/releases/tag/OTP-26.2.5.5
https://github.com/erlang/otp/releases/tag/OTP-26.2.5.6
(lang/erlang{,-java,-wx}):
https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

Changelogs 25.x:
https://github.com/erlang/otp/releases/tag/OTP-25.3.2.16
https://github.com/erlang/otp/releases/tag/OTP-25.3.2.17
https://github.com/erlang/otp/releases/tag/OTP-25.3.2.18
https://github.com/erlang/otp/releases/tag/OTP-25.3.2.19
https://github.com/erlang/otp/releases/tag/OTP-25.3.2.20
https://github.com/erlang/otp/releases/tag/OTP-25.3.2.21

Comment 8 Vladimir Druzenko freebsd_committer

2025-05-16 23:59:22 UTC

Versions updated to more recent with one more CVE fixed.

Comment 9 commit-hook freebsd_committer

2025-05-17 00:01:16 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=1f7d1b334bdd292436b349f2353630785ab40151

commit 1f7d1b334bdd292436b349f2353630785ab40151
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:56:15 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-16 23:56:15 +0000

    lang/erlang-runtime27: 27.1.2 => 27.3.4

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-27.1.3
    https://github.com/erlang/otp/releases/tag/OTP-27.2
    https://github.com/erlang/otp/releases/tag/OTP-27.2.1
    https://github.com/erlang/otp/releases/tag/OTP-27.2.2
    https://github.com/erlang/otp/releases/tag/OTP-27.2.3
    https://github.com/erlang/otp/releases/tag/OTP-27.2.4
    https://github.com/erlang/otp/releases/tag/OTP-27.3
    https://github.com/erlang/otp/releases/tag/OTP-27.3.1
    https://github.com/erlang/otp/releases/tag/OTP-27.3.2
    https://github.com/erlang/otp/releases/tag/OTP-27.3.3
    https://github.com/erlang/otp/releases/tag/OTP-27.3.4

    Refresh patches.
    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2024-53846
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

 lang/erlang-runtime27/Makefile                                  | 5 ++---
 lang/erlang-runtime27/distinfo                                  | 6 +++---
 lang/erlang-runtime27/files/patch-Makefile.in                   | 6 +++---
 lang/erlang-runtime27/files/patch-erts_etc_unix_run__erl.c      | 8 ++++----
 lang/erlang-runtime27/files/patch-lib_crypto_c__src_Makefile.in | 4 ++--
 lang/erlang-runtime27/files/patch-lib_stdlib_src_calendar.erl   | 4 ++--
 6 files changed, 16 insertions(+), 17 deletions(-)

Comment 10 commit-hook freebsd_committer

2025-05-17 00:01:17 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=bde71c97b5ff3a42bb326c1c04170e5b4119404b

commit bde71c97b5ff3a42bb326c1c04170e5b4119404b
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:52:23 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-16 23:52:23 +0000

    lang/erlang-runtime26: 26.2.5.4 => 26.2.5.12

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.5
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.6
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

    Refresh patches.
    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2024-53846
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

 lang/erlang-runtime26/Makefile                                  | 5 ++---
 lang/erlang-runtime26/distinfo                                  | 6 +++---
 lang/erlang-runtime26/files/patch-Makefile.in                   | 6 +++---
 lang/erlang-runtime26/files/patch-erts_etc_unix_run__erl.c      | 8 ++++----
 lang/erlang-runtime26/files/patch-lib_crypto_c__src_Makefile.in | 4 ++--
 lang/erlang-runtime26/files/patch-lib_stdlib_src_calendar.erl   | 4 ++--
 6 files changed, 16 insertions(+), 17 deletions(-)

Comment 11 commit-hook freebsd_committer

2025-05-17 00:01:18 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=b1024b31d10f5a27669b88a2fb940284e92081c1

commit b1024b31d10f5a27669b88a2fb940284e92081c1
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:39:58 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-16 23:39:58 +0000

    lang/erlang: 26.2.5.6 => 26.2.5.12

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

 lang/erlang-wx/Makefile | 2 +-
 lang/erlang-wx/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

Comment 12 commit-hook freebsd_committer

2025-05-17 00:01:19 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=169c288b4e770ba6a82c01d0f71286ebbe142663

commit 169c288b4e770ba6a82c01d0f71286ebbe142663
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:32:34 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-16 23:35:59 +0000

    lang/erlang: 26.2.5.6 => 26.2.5.12

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

    Refresh patches.
    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

 lang/erlang/Makefile                                  | 4 ++--
 lang/erlang/distinfo                                  | 6 +++---
 lang/erlang/files/patch-lib_crypto_c__src_Makefile.in | 4 ++--
 3 files changed, 7 insertions(+), 7 deletions(-)

Comment 13 commit-hook freebsd_committer

2025-05-17 00:01:20 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=44a4b47e7b4923b4c6094e096212ee876ef18386

commit 44a4b47e7b4923b4c6094e096212ee876ef18386
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:46:33 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-16 23:46:33 +0000

    lang/erlang-runtime25: 25.3.2.15 => 25.3.2.21

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.16
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.17
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.18
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.19
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.20
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.21

    Refresh patches.
    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2024-53846
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

 lang/erlang-runtime25/Makefile                                  | 5 ++---
 lang/erlang-runtime25/distinfo                                  | 6 +++---
 lang/erlang-runtime25/files/patch-Makefile.in                   | 6 +++---
 lang/erlang-runtime25/files/patch-erts_etc_unix_run__erl.c      | 8 ++++----
 lang/erlang-runtime25/files/patch-lib_crypto_c__src_Makefile.in | 4 ++--
 lang/erlang-runtime25/files/patch-lib_stdlib_src_calendar.erl   | 4 ++--
 6 files changed, 16 insertions(+), 17 deletions(-)

Comment 14 commit-hook freebsd_committer

2025-05-17 00:01:22 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=94d4ff3c5b75f0c6eef53042220f02e9518c70fa

commit 94d4ff3c5b75f0c6eef53042220f02e9518c70fa
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:38:21 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-16 23:38:21 +0000

    lang/erlang-java: 26.2.5.6 => 26.2.5.12

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

 lang/erlang-java/Makefile | 15 +++++++--------
 lang/erlang-java/distinfo |  6 +++---
 2 files changed, 10 insertions(+), 11 deletions(-)

Comment 15 commit-hook freebsd_committer

2025-05-17 00:05:23 UTC

A commit in branch 2025Q2 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=adcd34671e72dec71bf86b28734d4d295ffef1df

commit adcd34671e72dec71bf86b28734d4d295ffef1df
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:56:15 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-17 00:04:40 +0000

    lang/erlang-runtime27: 27.1.2 => 27.3.4

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-27.1.3
    https://github.com/erlang/otp/releases/tag/OTP-27.2
    https://github.com/erlang/otp/releases/tag/OTP-27.2.1
    https://github.com/erlang/otp/releases/tag/OTP-27.2.2
    https://github.com/erlang/otp/releases/tag/OTP-27.2.3
    https://github.com/erlang/otp/releases/tag/OTP-27.2.4
    https://github.com/erlang/otp/releases/tag/OTP-27.3
    https://github.com/erlang/otp/releases/tag/OTP-27.3.1
    https://github.com/erlang/otp/releases/tag/OTP-27.3.2
    https://github.com/erlang/otp/releases/tag/OTP-27.3.3
    https://github.com/erlang/otp/releases/tag/OTP-27.3.4

    Refresh patches.
    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2024-53846
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

    (cherry picked from commit 1f7d1b334bdd292436b349f2353630785ab40151)

 lang/erlang-runtime27/Makefile                                  | 5 ++---
 lang/erlang-runtime27/distinfo                                  | 6 +++---
 lang/erlang-runtime27/files/patch-Makefile.in                   | 6 +++---
 lang/erlang-runtime27/files/patch-erts_etc_unix_run__erl.c      | 8 ++++----
 lang/erlang-runtime27/files/patch-lib_crypto_c__src_Makefile.in | 4 ++--
 lang/erlang-runtime27/files/patch-lib_stdlib_src_calendar.erl   | 4 ++--
 6 files changed, 16 insertions(+), 17 deletions(-)

Comment 16 commit-hook freebsd_committer

2025-05-17 00:05:24 UTC

A commit in branch 2025Q2 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=86ff349b938ff51ef93c44ce5e4198e8a458f369

commit 86ff349b938ff51ef93c44ce5e4198e8a458f369
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:32:34 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-17 00:02:41 +0000

    lang/erlang: 26.2.5.6 => 26.2.5.12

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

    Refresh patches.
    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

    (cherry picked from commit 169c288b4e770ba6a82c01d0f71286ebbe142663)

 lang/erlang/Makefile                                  | 4 ++--
 lang/erlang/distinfo                                  | 6 +++---
 lang/erlang/files/patch-lib_crypto_c__src_Makefile.in | 4 ++--
 3 files changed, 7 insertions(+), 7 deletions(-)

Comment 17 commit-hook freebsd_committer

2025-05-17 00:05:25 UTC

A commit in branch 2025Q2 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=3a9e2d744d2009c30bb0e1f3c5c50a8c2737ea8a

commit 3a9e2d744d2009c30bb0e1f3c5c50a8c2737ea8a
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:39:58 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-17 00:03:32 +0000

    lang/erlang-wx: 26.2.5.6 => 26.2.5.12

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

    (cherry picked from commit b1024b31d10f5a27669b88a2fb940284e92081c1)

 lang/erlang-wx/Makefile | 2 +-
 lang/erlang-wx/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

Comment 18 commit-hook freebsd_committer

2025-05-17 00:05:26 UTC

A commit in branch 2025Q2 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=eb0840f506bab4878ccb9094e37715a9b9f2180d

commit eb0840f506bab4878ccb9094e37715a9b9f2180d
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:46:33 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-17 00:04:10 +0000

    lang/erlang-runtime25: 25.3.2.15 => 25.3.2.21

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.16
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.17
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.18
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.19
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.20
    https://github.com/erlang/otp/releases/tag/OTP-25.3.2.21

    Refresh patches.
    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2024-53846
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

    (cherry picked from commit 44a4b47e7b4923b4c6094e096212ee876ef18386)

 lang/erlang-runtime25/Makefile                                  | 5 ++---
 lang/erlang-runtime25/distinfo                                  | 6 +++---
 lang/erlang-runtime25/files/patch-Makefile.in                   | 6 +++---
 lang/erlang-runtime25/files/patch-erts_etc_unix_run__erl.c      | 8 ++++----
 lang/erlang-runtime25/files/patch-lib_crypto_c__src_Makefile.in | 4 ++--
 lang/erlang-runtime25/files/patch-lib_stdlib_src_calendar.erl   | 4 ++--
 6 files changed, 16 insertions(+), 17 deletions(-)

Comment 19 commit-hook freebsd_committer

2025-05-17 00:05:27 UTC

A commit in branch 2025Q2 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=da3006eaf14fe16b1951a150943e100f774a263c

commit da3006eaf14fe16b1951a150943e100f774a263c
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:52:23 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-17 00:04:32 +0000

    lang/erlang-runtime26: 26.2.5.4 => 26.2.5.12

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.5
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.6
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

    Refresh patches.
    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2024-53846
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

    (cherry picked from commit bde71c97b5ff3a42bb326c1c04170e5b4119404b)

 lang/erlang-runtime26/Makefile                                  | 5 ++---
 lang/erlang-runtime26/distinfo                                  | 6 +++---
 lang/erlang-runtime26/files/patch-Makefile.in                   | 6 +++---
 lang/erlang-runtime26/files/patch-erts_etc_unix_run__erl.c      | 8 ++++----
 lang/erlang-runtime26/files/patch-lib_crypto_c__src_Makefile.in | 4 ++--
 lang/erlang-runtime26/files/patch-lib_stdlib_src_calendar.erl   | 4 ++--
 6 files changed, 16 insertions(+), 17 deletions(-)

Comment 20 commit-hook freebsd_committer

2025-05-17 00:05:28 UTC

A commit in branch 2025Q2 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=604efd5560a1613149abe50fbb4d494cd55f24af

commit 604efd5560a1613149abe50fbb4d494cd55f24af
Author:     Vladimir Druzenko <vvd@FreeBSD.org>
AuthorDate: 2025-05-16 23:38:21 +0000
Commit:     Vladimir Druzenko <vvd@FreeBSD.org>
CommitDate: 2025-05-17 00:02:48 +0000

    lang/erlang-java: 26.2.5.6 => 26.2.5.12

    Changelogs:
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.7
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.8
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.9
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.10
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.11
    https://github.com/erlang/otp/releases/tag/OTP-26.2.5.12

    Pet portclippy.

    PR:             286332
    Approved by:    erlang (maintainer, timeout > 3 weeks)
    Security:       CVE-2025-26618
    Security:       CVE-2025-30211
    Security:       CVE-2025-32433
    Security:       CVE-2025-46712
    MFH:            2025Q2

    (cherry picked from commit 94d4ff3c5b75f0c6eef53042220f02e9518c70fa)

 lang/erlang-java/Makefile | 15 +++++++--------
 lang/erlang-java/distinfo |  6 +++---
 2 files changed, 10 insertions(+), 11 deletions(-)

Comment 21 Vladimir Druzenko freebsd_committer

2025-05-17 00:06:40 UTC

Thanks.