6 files changed, 44 insertions, 25 deletions

diff --git a/security/dropbear/Makefile b/security/dropbear/Makefile
index 86a98ed52493..f50c85c497e5 100644
--- a/security/dropbear/Makefile
+++ b/security/dropbear/Makefile
@@ -1,5 +1,5 @@
 PORTNAME=	dropbear
-PORTVERSION=	2025.88
+PORTVERSION=	2025.89
 CATEGORIES=	security
 MASTER_SITES=	https://matt.ucc.asn.au/dropbear/releases/
 
diff --git a/security/dropbear/distinfo b/security/dropbear/distinfo
index 8eccf5f9f7b0..1e6d4cc015c9 100644
--- a/security/dropbear/distinfo
+++ b/security/dropbear/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1746647982
-SHA256 (dropbear-2025.88.tar.bz2) = 783f50ea27b17c16da89578fafdb6decfa44bb8f6590e5698a4e4d3672dc53d4
-SIZE (dropbear-2025.88.tar.bz2) = 2370480
+TIMESTAMP = 1766232681
+SHA256 (dropbear-2025.89.tar.bz2) = 0d1f7ca711cfc336dc8a85e672cab9cfd8223a02fe2da0a4a7aeb58c9e113634
+SIZE (dropbear-2025.89.tar.bz2) = 2374006
diff --git a/security/sudo-rs/Makefile b/security/sudo-rs/Makefile
index 637f8e629d02..f2e47b79adaf 100644
--- a/security/sudo-rs/Makefile
+++ b/security/sudo-rs/Makefile
@@ -1,7 +1,6 @@
 PORTNAME=	sudo-rs
 DISTVERSIONPREFIX=	v
-DISTVERSION=	0.2.10
-PORTREVISION=	1
+DISTVERSION=	0.2.11
 CATEGORIES=	security
 
 MAINTAINER=	marc@trifectatech.org
diff --git a/security/sudo-rs/Makefile.crates b/security/sudo-rs/Makefile.crates
index c52921cef59a..fef210c65c89 100644
--- a/security/sudo-rs/Makefile.crates
+++ b/security/sudo-rs/Makefile.crates
@@ -1,6 +1,2 @@
-CARGO_CRATES=	diff-0.1.13 \
-		glob-0.3.3 \
-		libc-0.2.177 \
-		log-0.4.28 \
-		pretty_assertions-1.4.1 \
-		yansi-1.0.1
+CARGO_CRATES=	glob-0.3.3 \
+		libc-0.2.178
diff --git a/security/sudo-rs/distinfo b/security/sudo-rs/distinfo
index 3da488e01e77..b973a423a8fb 100644
--- a/security/sudo-rs/distinfo
+++ b/security/sudo-rs/distinfo
@@ -1,15 +1,7 @@
-TIMESTAMP = 1762849173
-SHA256 (rust/crates/diff-0.1.13.crate) = 56254986775e3233ffa9c4d7d3faaf6d36a2c09d30b20687e9f88bc8bafc16c8
-SIZE (rust/crates/diff-0.1.13.crate) = 46216
+TIMESTAMP = 1766104087
 SHA256 (rust/crates/glob-0.3.3.crate) = 0cc23270f6e1808e30a928bdc84dea0b9b4136a8bc82338574f23baf47bbd280
 SIZE (rust/crates/glob-0.3.3.crate) = 22861
-SHA256 (rust/crates/libc-0.2.177.crate) = 2874a2af47a2325c2001a6e6fad9b16a53b802102b528163885171cf92b15976
-SIZE (rust/crates/libc-0.2.177.crate) = 792045
-SHA256 (rust/crates/log-0.4.28.crate) = 34080505efa8e45a4b816c349525ebe327ceaa8559756f0356cba97ef3bf7432
-SIZE (rust/crates/log-0.4.28.crate) = 51131
-SHA256 (rust/crates/pretty_assertions-1.4.1.crate) = 3ae130e2f271fbc2ac3a40fb1d07180839cdbbe443c7a27e1e3c13c5cac0116d
-SIZE (rust/crates/pretty_assertions-1.4.1.crate) = 78952
-SHA256 (rust/crates/yansi-1.0.1.crate) = cfe53a6657fd280eaa890a3bc59152892ffa3e30101319d168b781ed6529b049
-SIZE (rust/crates/yansi-1.0.1.crate) = 75497
-SHA256 (trifectatechfoundation-sudo-rs-v0.2.10_GH0.tar.gz) = c0f65665145da9aebc664013c426bff4eb55a1eb893ed0416e65de312b4a71e9
-SIZE (trifectatechfoundation-sudo-rs-v0.2.10_GH0.tar.gz) = 1173064
+SHA256 (rust/crates/libc-0.2.178.crate) = 37c93d8daa9d8a012fd8ab92f088405fb202ea0b6ab73ee2482ae66af4f42091
+SIZE (rust/crates/libc-0.2.178.crate) = 783720
+SHA256 (trifectatechfoundation-sudo-rs-v0.2.11_GH0.tar.gz) = 86b839e1e4d73d44cedc8d38038c482852c12201fc1a415341d5f8ec3e10f7ae
+SIZE (trifectatechfoundation-sudo-rs-v0.2.11_GH0.tar.gz) = 1183217
diff --git a/security/vuxml/vuln/2025.xml b/security/vuxml/vuln/2025.xml
index 3fa157e87559..ed5ff59c6426 100644
--- a/security/vuxml/vuln/2025.xml
+++ b/security/vuxml/vuln/2025.xml
@@ -1,3 +1,35 @@
+  <vuln vid="c1613867-df16-11f0-8870-b42e991fc52e">
+    <topic>MongoDB -- Improper Handling of Length Parameter Inconsistency</topic>
+    <affects>
+    <package>
+	<name>mongodb80</name>
+	<range><lt>8.2.3</lt></range>
+    </package>
+    <package>
+	<name>mongodb70</name>
+	<range><lt>7.0.28</lt></range>
+    </package>
+    </affects>
+    <description>
+	<body xmlns="http://www.w3.org/1999/xhtml">
+	<p>https://jira.mongodb.org/browse/SERVER-115508 reports:</p>
+	<blockquote cite="https://jira.mongodb.org/browse/SERVER-115508">
+	<p>Mismatched length fields in Zlib compressed protocol
+	headers may allow a read of uninitialized heap memory by an
+	unauthenticated client.</p>
+	</blockquote>
+	</body>
+    </description>
+    <references>
+      <cvename>CVE-2025-14847</cvename>
+      <url>https://cveawg.mitre.org/api/cve/CVE-2025-14847</url>
+    </references>
+    <dates>
+      <discovery>2025-12-19</discovery>
+      <entry>2025-12-22</entry>
+    </dates>
+  </vuln>
+
   <vuln vid="dc7e30db-de67-11f0-b893-5404a68ad561">
     <topic>traefik -- Inverted TLS Verification Logic in Kubernetes NGINX Provider</topic>
     <affects>