From 6f99048dccbfd04b35ded011fe52efaea659a8bc Mon Sep 17 00:00:00 2001
From: Ad Schellevis <ad@opnsense.org>
Date: Wed, 6 Mar 2024 14:12:20 +0100
Subject: [PATCH] update changelogs

---
 source/CE_releases.rst       |  2 +-
 source/releases/BE_19.7.rst  |  2 +-
 source/releases/BE_20.1.rst  |  2 +-
 source/releases/BE_20.7.rst  |  2 +-
 source/releases/BE_21.10.rst |  2 +-
 source/releases/BE_21.4.rst  |  4 ++--
 source/releases/BE_22.10.rst |  6 ++---
 source/releases/BE_22.4.rst  |  4 ++--
 source/releases/BE_23.10.rst |  2 +-
 source/releases/BE_23.4.rst  |  2 +-
 source/releases/CE_15.7.rst  |  2 +-
 source/releases/CE_16.7.rst  |  2 +-
 source/releases/CE_17.7.rst  |  2 +-
 source/releases/CE_19.7.rst  |  2 +-
 source/releases/CE_20.1.rst  |  2 +-
 source/releases/CE_20.7.rst  |  2 +-
 source/releases/CE_21.1.rst  |  4 ++--
 source/releases/CE_21.7.rst  |  6 ++---
 source/releases/CE_22.1.rst  |  4 ++--
 source/releases/CE_22.7.rst  | 10 ++++----
 source/releases/CE_23.1.rst  |  4 ++--
 source/releases/CE_23.7.rst  |  4 ++--
 source/releases/CE_24.1.rst  | 46 ++++++++++++++++++++++++++++++++++--
 23 files changed, 80 insertions(+), 38 deletions(-)

diff --git a/source/CE_releases.rst b/source/CE_releases.rst
index eb8c5264..01c99de1 100644
--- a/source/CE_releases.rst
+++ b/source/CE_releases.rst
@@ -8,7 +8,7 @@ Community Edition
     :width: 600px
     :align: center
 
-As of January 2015 there have been *276* releases leading to the latest version *24.1.2*
+As of January 2015 there have been *277* releases leading to the latest version *24.1.3*
 named "Savvy Shark".
 
 
diff --git a/source/releases/BE_19.7.rst b/source/releases/BE_19.7.rst
index 12658e37..ea1bf2a2 100644
--- a/source/releases/BE_19.7.rst
+++ b/source/releases/BE_19.7.rst
@@ -366,7 +366,7 @@ Here are the full patch notes:
 * plugins: os-theme-tukan 1.20 (contributed by Team Rebellion)
 * ports: ca_root_nss 3.46
 * ports: ldns 1.7.1 `[5] <https://raw.githubusercontent.com/NLnetLabs/ldns/release-1.7.1/Changelog>`__ 
-* ports: pcre2 10.33 `[6] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.33 `[6] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.33>`__ 
 * ports: php 7.2.22 `[7] <https://www.php.net/ChangeLog-7.php#7.2.22>`__ 
 * ports: phpseclib 2.0.21 `[8] <https://github.com/phpseclib/phpseclib/releases/tag/2.0.21>`__ 
 * ports: unbound 1.9.3 `[9] <https://nlnetlabs.nl/projects/unbound/download/#unbound-1-9-3>`__ 
diff --git a/source/releases/BE_20.1.rst b/source/releases/BE_20.1.rst
index 9b3ad262..c0edcf2b 100644
--- a/source/releases/BE_20.1.rst
+++ b/source/releases/BE_20.1.rst
@@ -163,7 +163,7 @@ Here are the full patch notes:
 * ports: dhcp6c v20200512
 * ports: hyperscan 5.2.1 `[7] <https://github.com/intel/hyperscan/releases/tag/v5.2.1>`__ 
 * ports: openldap 2.4.50 `[8] <https://www.openldap.org/software/release/changes.html>`__ 
-* ports: pcre2 10.35 `[9] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.35 `[9] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.35>`__ 
 * ports: php 7.3.18 `[10] <https://www.php.net/ChangeLog-7.php#7.3.18>`__ 
 
 
diff --git a/source/releases/BE_20.7.rst b/source/releases/BE_20.7.rst
index f388d158..6eb3f28e 100644
--- a/source/releases/BE_20.7.rst
+++ b/source/releases/BE_20.7.rst
@@ -124,7 +124,7 @@ Here are the full patch notes:
 * ports: lighttpd 1.4.56 `[7] <https://www.lighttpd.net/2020/11/29/1.4.56/>`__ 
 * ports: nss 3.60 `[8] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_60.html>`__ 
 * ports: openssl 1.1.1i `[9] <https://www.openssl.org/news/secadv/20201208.txt>`__ 
-* ports: pcre2 10.36 `[10] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.36 `[10] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.36>`__ 
 * ports: sudo 1.9.4 `[11] <https://www.sudo.ws/stable.html#1.9.4>`__ 
 * ports: sqlite 3.34.0 `[12] <https://sqlite.org/releaselog/3_34_0.html>`__ 
 * ports: unbound 1.13.0 `[13] <https://nlnetlabs.nl/projects/unbound/download/#unbound-1-13-0>`__ 
diff --git a/source/releases/BE_21.10.rst b/source/releases/BE_21.10.rst
index 28d4e04b..d6f00cdb 100644
--- a/source/releases/BE_21.10.rst
+++ b/source/releases/BE_21.10.rst
@@ -241,7 +241,7 @@ Here are the full patch notes:
 * ports: nss 3.72 `[21] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_72.html>`__ 
 * ports: openssh 8.8p1 `[22] <https://www.openssh.com/txt/release-8.8>`__ 
 * ports: openvpn 2.5.4 `[23] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25#Changesin2.5.4>`__ 
-* ports: pcre2 10.39 `[24] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.39 `[24] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.39>`__ 
 * ports: php 7.4.25 `[25] <https://www.php.net/ChangeLog-7.php#7.4.25>`__ 
 * ports: phpseclib 2.0.34 `[26] <https://github.com/phpseclib/phpseclib/releases/tag/2.0.34>`__ 
 * ports: strongswan 5.9.4 `[27] <https://github.com/strongswan/strongswan/releases/tag/5.9.4>`__ 
diff --git a/source/releases/BE_21.4.rst b/source/releases/BE_21.4.rst
index 3609d7b4..009ae3b0 100644
--- a/source/releases/BE_21.4.rst
+++ b/source/releases/BE_21.4.rst
@@ -96,11 +96,11 @@ Here are the full patch notes:
 * ports: curl 7.78.0 `[8] <https://curl.se/changes.html#7_78_0>`__ 
 * ports: filterlog adds CARP IPv6 support and moves label to previously reserved spot
 * ports: isc-dhcp 4.4.2-P1 `[9] <https://downloads.isc.org/isc/dhcp/4.4.2-P1/dhcp-4.4.2-P1-RELNOTES>`__ 
-* ports: libxml 2.9.12 `[10] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.12 `[10] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: nss 3.67 `[11] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_67.html>`__ 
 * ports: openldap 2.4.59 `[12] <https://www.openldap.org/software/release/changes.html>`__ 
 * ports: openssl 1.1.1l `[13] <https://www.openssl.org/news/openssl-1.1.1-notes.html>`__ 
-* ports: pcre2 10.37 `[14] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.37 `[14] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.37>`__ 
 * ports: phalcon 4.1.2 `[15] <https://github.com/phalcon/cphalcon/releases/tag/v4.1.2>`__ 
 * ports: php 7.4.20 `[16] <https://www.php.net/ChangeLog-7.php#7.4.20>`__ 
 * ports: sudo 1.9.7p1 `[17] <https://www.sudo.ws/stable.html#1.9.7p1>`__ 
diff --git a/source/releases/BE_22.10.rst b/source/releases/BE_22.10.rst
index 9039d8b8..0c48410a 100644
--- a/source/releases/BE_22.10.rst
+++ b/source/releases/BE_22.10.rst
@@ -156,11 +156,11 @@ Here are the full patch notes:
 * ports: dnsmasq 2.88 `[14] <https://www.thekelleys.org.uk/dnsmasq/CHANGELOG>`__ 
 * ports: expat 2.5.0 `[15] <https://github.com/libexpat/libexpat/blob/R_2_5_0/expat/Changes>`__ 
 * ports: krb5 1.20.1 `[16] <https://web.mit.edu/kerberos/krb5-1.20/>`__ 
-* ports: libxml 2.10.3 `[17] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.10.3 `[17] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: nss 3.87 `[18] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_87.html>`__ 
 * ports: openssl 1.1.1s `[19] <https://www.openssl.org/news/openssl-1.1.1-notes.html>`__ 
 * ports: openvpn 2.5.8 `[20] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25#Changesin2.5.8>`__ 
-* ports: pcre 10.42 `[21] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre 10.42 `[21] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.42>`__ 
 * ports: phalcon 5.1.4 `[22] <https://github.com/phalcon/cphalcon/releases/tag/v5.1.4>`__ 
 * ports: php 8.0.27 `[23] <https://www.php.net/ChangeLog-8.php#8.0.27>`__ 
 * ports: phpseclib 3.0.18 `[24] <https://github.com/phpseclib/phpseclib/releases/tag/3.0.18>`__ 
@@ -440,7 +440,7 @@ Here are the full patch notes:
 * ports: isc-dhcp 4.4.3P1 `[34] <https://downloads.isc.org/isc/dhcp/4.4.3-P1/dhcp-4.4.3-P1-RELNOTES>`__ 
 * ports: ldns 1.8.3 `[35] <https://raw.githubusercontent.com/NLnetLabs/ldns/1.8.3/Changelog>`__ 
 * ports: liblz4 1.9.4
-* ports: libxml 2.10.2 `[36] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.10.2 `[36] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: lighttpd 1.4.67 `[37] <https://www.lighttpd.net/2022/9/17/1.4.67/>`__ 
 * ports: nss 3.83 `[38] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_83.html>`__ 
 * ports: phalcon 5.0.3 `[39] <https://github.com/phalcon/cphalcon/releases/tag/v5.0.3>`__ 
diff --git a/source/releases/BE_22.4.rst b/source/releases/BE_22.4.rst
index 59b30bc9..93408ae3 100644
--- a/source/releases/BE_22.4.rst
+++ b/source/releases/BE_22.4.rst
@@ -199,10 +199,10 @@ Here are the full patch notes:
 * src: rc: use _pidcmd to determine pid for protect
 * ports: curl 7.83.1 `[10] <https://curl.se/changes.html#7_83_1>`__ 
 * ports: expat 2.4.8 `[11] <https://github.com/libexpat/libexpat/blob/R_2_4_8/expat/Changes>`__ 
-* ports: libxml 2.9.13 `[12] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.13 `[12] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: monit 5.32.0 `[13] <https://mmonit.com/monit/changes/>`__ 
 * ports: nss 3.78 `[14] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_78.html>`__ 
-* ports: pcre2 10.40 `[15] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.40 `[15] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.40>`__ 
 * ports: php 7.4.29 `[16] <https://www.php.net/ChangeLog-7.php#7.4.29>`__ 
 * ports: phpseclib 2.0.37 `[17] <https://github.com/phpseclib/phpseclib/releases/tag/2.0.37>`__ 
 * ports: pkg 1.17.5 `[18] <https://github.com/freebsd/freebsd-ports/commit/18793d10585f>`__ 
diff --git a/source/releases/BE_23.10.rst b/source/releases/BE_23.10.rst
index 1f74f17c..6be425d9 100644
--- a/source/releases/BE_23.10.rst
+++ b/source/releases/BE_23.10.rst
@@ -541,6 +541,7 @@ Here are the full patch notes:
 * src: rss: set pin_default_swi to 0 by default
 * src: rtsol: introduce an 'always' script
 * ports: curl 8.3.0 `[17] <https://curl.se/changes.html#8_3_0>`__ 
+* ports: dnspython 2.4.2
 * ports: filterlog fix to prevent crash on default rule number -1
 * ports: nss 3.93 `[18] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_93.html>`__ 
 * ports: openldap 2.6.6 `[19] <https://www.openldap.org/software/release/changes.html>`__ 
@@ -550,7 +551,6 @@ Here are the full patch notes:
 * ports: phalcon 5.3.1 `[23] <https://github.com/phalcon/cphalcon/releases/tag/v5.3.1>`__ 
 * ports: php 8.2.11 `[24] <https://www.php.net/ChangeLog-8.php#8.2.11>`__ 
 * ports: phpseclib 3.0.23 `[25] <https://github.com/phpseclib/phpseclib/releases/tag/3.0.23>`__ 
-* ports: py-dnspython 2.4.2
 * ports: py-duckdb 0.8.1
 * ports: py-vici 5.9.11
 * ports: sqlite 3.43.1 `[26] <https://sqlite.org/releaselog/3_43_1.html>`__ 
diff --git a/source/releases/BE_23.4.rst b/source/releases/BE_23.4.rst
index fa843b6f..ad73aea6 100644
--- a/source/releases/BE_23.4.rst
+++ b/source/releases/BE_23.4.rst
@@ -242,7 +242,7 @@ Here are the full patch notes:
 * ports: curl 8.1.1 `[10] <https://curl.se/changes.html#8_1_1>`__ 
 * ports: dhcp6c 20230530
 * ports: ifinfo now also prints interface index (contributed by Nicolas Thumann)
-* ports: libxml 2.10.4 `[11] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.10.4 `[11] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: lighttpd 1.4.71 `[12] <https://www.lighttpd.net/2023/5/27/1.4.71/>`__ 
 * ports: nss 3.89.1 `[13] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_89_1.html>`__ 
 * ports: openssh 9.3p1 `[14] <https://www.openssh.com/txt/release-9.3>`__ 
diff --git a/source/releases/CE_15.7.rst b/source/releases/CE_15.7.rst
index fee71b29..51c7d0f9 100644
--- a/source/releases/CE_15.7.rst
+++ b/source/releases/CE_15.7.rst
@@ -374,7 +374,7 @@ Here are the full patch notes:
 * ports: squid 5.3.11 `[3] <http://ftp.meisei-u.ac.jp/mirror/squid/squid-3.5-ChangeLog.txt>`__ 
 * ports: strongswan 5.3.4 `[4] <https://www.strongswan.org/blog/2015/11/16/strongswan-5.3.4-released.html>`__ 
 * ports: choparp 20150613 `[5] <https://github.com/quinot/choparp>`__ 
-* ports: libxml 2.9.3 `[6] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.3 `[6] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: pkg 1.6.2 `[7] <https://github.com/freebsd/freebsd-ports/commit/0466b08981bf9c714>`__ 
 * ports: opnsense-bootstrap, the infamous installer that works on stock FreeBSD `[8] <https://github.com/opnsense/update/commit/e3f63ecdb1149a8cc30e3>`__ 
 * intrusion detection: ignore json parse errors in eve log file
diff --git a/source/releases/CE_16.7.rst b/source/releases/CE_16.7.rst
index db683a80..c1acccfa 100644
--- a/source/releases/CE_16.7.rst
+++ b/source/releases/CE_16.7.rst
@@ -613,7 +613,7 @@ Here are the full patch notes:
 * ports: php 5.6.25 `[2] <https://php.net/ChangeLog-5.php#5.6.25>`__ 
 * ports: sqlite 3.14.1 `[3] <https://sqlite.org/releaselog/3_14_1.html>`__ 
 * ports: openvpn 2.3.12 `[4] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23#OpenVPN2.3.12>`__ 
-* ports: libxml 2.9.4 `[5] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.4 `[5] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 
 
 
diff --git a/source/releases/CE_17.7.rst b/source/releases/CE_17.7.rst
index b80136a1..d8fe8d31 100644
--- a/source/releases/CE_17.7.rst
+++ b/source/releases/CE_17.7.rst
@@ -119,7 +119,7 @@ Here are the full patch notes:
 * mvc: ignore client-side anchors in breadcrumb generation
 * ui: do not use a CSRF input element ID
 * plugins: os-freeradius 1.4.1 fixes a warning in clients (contributed by Michael Muenz)
-* ports: libxml 2.4.7 `[1] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.4.7 `[1] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: py-ipaddress 1.0.19
 
 
diff --git a/source/releases/CE_19.7.rst b/source/releases/CE_19.7.rst
index 12658e37..ea1bf2a2 100644
--- a/source/releases/CE_19.7.rst
+++ b/source/releases/CE_19.7.rst
@@ -366,7 +366,7 @@ Here are the full patch notes:
 * plugins: os-theme-tukan 1.20 (contributed by Team Rebellion)
 * ports: ca_root_nss 3.46
 * ports: ldns 1.7.1 `[5] <https://raw.githubusercontent.com/NLnetLabs/ldns/release-1.7.1/Changelog>`__ 
-* ports: pcre2 10.33 `[6] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.33 `[6] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.33>`__ 
 * ports: php 7.2.22 `[7] <https://www.php.net/ChangeLog-7.php#7.2.22>`__ 
 * ports: phpseclib 2.0.21 `[8] <https://github.com/phpseclib/phpseclib/releases/tag/2.0.21>`__ 
 * ports: unbound 1.9.3 `[9] <https://nlnetlabs.nl/projects/unbound/download/#unbound-1-9-3>`__ 
diff --git a/source/releases/CE_20.1.rst b/source/releases/CE_20.1.rst
index 9b3ad262..c0edcf2b 100644
--- a/source/releases/CE_20.1.rst
+++ b/source/releases/CE_20.1.rst
@@ -163,7 +163,7 @@ Here are the full patch notes:
 * ports: dhcp6c v20200512
 * ports: hyperscan 5.2.1 `[7] <https://github.com/intel/hyperscan/releases/tag/v5.2.1>`__ 
 * ports: openldap 2.4.50 `[8] <https://www.openldap.org/software/release/changes.html>`__ 
-* ports: pcre2 10.35 `[9] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.35 `[9] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.35>`__ 
 * ports: php 7.3.18 `[10] <https://www.php.net/ChangeLog-7.php#7.3.18>`__ 
 
 
diff --git a/source/releases/CE_20.7.rst b/source/releases/CE_20.7.rst
index f388d158..6eb3f28e 100644
--- a/source/releases/CE_20.7.rst
+++ b/source/releases/CE_20.7.rst
@@ -124,7 +124,7 @@ Here are the full patch notes:
 * ports: lighttpd 1.4.56 `[7] <https://www.lighttpd.net/2020/11/29/1.4.56/>`__ 
 * ports: nss 3.60 `[8] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_60.html>`__ 
 * ports: openssl 1.1.1i `[9] <https://www.openssl.org/news/secadv/20201208.txt>`__ 
-* ports: pcre2 10.36 `[10] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.36 `[10] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.36>`__ 
 * ports: sudo 1.9.4 `[11] <https://www.sudo.ws/stable.html#1.9.4>`__ 
 * ports: sqlite 3.34.0 `[12] <https://sqlite.org/releaselog/3_34_0.html>`__ 
 * ports: unbound 1.13.0 `[13] <https://nlnetlabs.nl/projects/unbound/download/#unbound-1-13-0>`__ 
diff --git a/source/releases/CE_21.1.rst b/source/releases/CE_21.1.rst
index 6a9d771b..9bbe6daa 100644
--- a/source/releases/CE_21.1.rst
+++ b/source/releases/CE_21.1.rst
@@ -125,7 +125,7 @@ Here are the full patch notes:
 * src: libcasper: fix descriptors numbers `[5] <https://www.freebsd.org/security/advisories/EN-21:19.libcasper.asc>`__ 
 * src: linux: prevent integer overflow in futex_requeue `[6] <https://www.freebsd.org/security/advisories/EN-21:22.linux_futex.asc>`__ 
 * ports: clog 1.0.2 fixes garbage header write on init
-* ports: libxml 2.9.12 `[7] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.12 `[7] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: nettle 3.7.3
 * ports: nss 3.67 `[8] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_67.html>`__ 
 * ports: openvpn 2.5.3 `[9] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25#Changesin2.5.3>`__ 
@@ -193,7 +193,7 @@ Here are the full patch notes:
 * ports: isc-dhcp 4.4.2-P1 `[8] <https://downloads.isc.org/isc/dhcp/4.4.2-P1/dhcp-4.4.2-P1-RELNOTES>`__ 
 * ports: nss 3.66 `[9] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_66.html>`__ 
 * ports: openldap 2.4.59 `[10] <https://www.openldap.org/software/release/changes.html>`__ 
-* ports: pcre2 10.37 `[11] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.37 `[11] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.37>`__ 
 * ports: phalcon 4.1.2 `[12] <https://github.com/phalcon/cphalcon/releases/tag/v4.1.2>`__ 
 * ports: py-certifi 2021.5.30
 * ports: py-yaml 5.4.1
diff --git a/source/releases/CE_21.7.rst b/source/releases/CE_21.7.rst
index 8c229bd2..ddc0f1aa 100644
--- a/source/releases/CE_21.7.rst
+++ b/source/releases/CE_21.7.rst
@@ -259,7 +259,7 @@ Here are the full patch notes for version 21.7.5:
 * ports: lighttpd 1.4.61 `[15] <https://www.lighttpd.net/2021/10/28/1.4.61/>`__ 
 * ports: nss 3.72 `[16] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_72.html>`__ 
 * ports: openssh 8.8p1 `[17] <https://www.openssh.com/txt/release-8.8>`__ 
-* ports: pcre2 10.39 `[18] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.39 `[18] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.39>`__ 
 * ports: php 7.4.25 `[19] <https://www.php.net/ChangeLog-7.php#7.4.25>`__ 
 * ports: phpseclib 2.0.34 `[20] <https://github.com/phpseclib/phpseclib/releases/tag/2.0.34>`__ 
 
@@ -691,7 +691,7 @@ Here are the full patch notes:
 * ports: clog 1.0.2 fixes garbage header write on init
 * ports: curl 7.78.0 `[14] <https://curl.se/changes.html#7_78_0>`__ 
 * ports: filterlog adds CARP IPv6 support and moves label to previously reserved spot
-* ports: libxml 2.9.12 `[15] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.12 `[15] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: nettle 3.7.3
 * ports: nss 3.68 `[16] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_68.html>`__ 
 * ports: openvpn 2.5.3 `[17] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25#Changesin2.5.3>`__ 
@@ -883,7 +883,7 @@ Here are the full patch notes against 21.1.7:
 * src: FreeBSD updates for Intel e1000, ixgbe and ixl drivers
 * src: compatibility shim for upcoming rtsold "-M" command line option
 * ports: drop hardening options to ease migration to FreeBSD ports tree
-* ports: libxml 2.9.12 `[6] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.12 `[6] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: nettle 3.7.3
 * ports: nss 3.67 `[7] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_67.html>`__ 
 * ports: openvpn 2.5.3 `[8] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25#Changesin2.5.3>`__ 
diff --git a/source/releases/CE_22.1.rst b/source/releases/CE_22.1.rst
index f819b50d..2e8aee87 100644
--- a/source/releases/CE_22.1.rst
+++ b/source/releases/CE_22.1.rst
@@ -240,7 +240,7 @@ Here are the full patch notes:
 * ports: curl 7.83.0 `[7] <https://curl.se/changes.html#7_83_0>`__ 
 * ports: nss 3.78 `[8] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_78.html>`__ 
 * ports: openssl 1.1.1o `[9] <https://www.openssl.org/news/openssl-1.1.1-notes.html>`__ 
-* ports: pcre2 10.40 `[10] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre2 10.40 `[10] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.40>`__ 
 * ports: php 7.4.29 `[11] <https://www.php.net/ChangeLog-7.php#7.4.29>`__ 
 * ports: pkg 1.17.5 `[12] <https://github.com/freebsd/freebsd-ports/commit/18793d10585f>`__ 
 * ports: suricata 6.0.5 `[13] <https://forum.suricata.io/t/suricata-6-0-5-and-5-0-9-released/2415>`__ 
@@ -322,7 +322,7 @@ Here are the full patch notes:
 * src: zlib compression out-of-bounds write `[9] <https://www.freebsd.org/security/advisories/FreeBSD-SA-22:08.zlib.asc>`__ 
 * ports: curl 7.82.0 `[10] <https://curl.se/changes.html#7_82_0>`__ 
 * ports: expat 2.4.8 `[11] <https://github.com/libexpat/libexpat/blob/R_2_4_8/expat/Changes>`__ 
-* ports: libxml 2.9.13 `[12] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.13 `[12] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: monit 5.32.0 `[13] <https://mmonit.com/monit/changes/>`__ 
 * ports: nss 3.77 `[14] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_77.html>`__ 
 * ports: python 3.8.13 `[15] <https://docs.python.org/release/3.8.13/whatsnew/changelog.html>`__ 
diff --git a/source/releases/CE_22.7.rst b/source/releases/CE_22.7.rst
index 58375578..0f9d9a2e 100644
--- a/source/releases/CE_22.7.rst
+++ b/source/releases/CE_22.7.rst
@@ -61,7 +61,7 @@ Here are the full patch notes:
 * plugins: os-stunnel fixes missing include in certificate script
 * ports: curl 7.87.0 `[3] <https://curl.se/changes.html#7_87_0>`__ 
 * ports: nss 3.87 `[4] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_87.html>`__ 
-* ports: pcre 10.42 `[5] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre 10.42 `[5] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.42>`__ 
 * ports: phalcon 5.1.4 `[6] <https://github.com/phalcon/cphalcon/releases/tag/v5.1.4>`__ 
 * ports: php 8.0.27 `[7] <https://www.php.net/ChangeLog-8.php#8.0.27>`__ 
 * ports: sqlite 3.40.1 `[8] <https://sqlite.org/releaselog/3_40_1.html>`__ 
@@ -279,7 +279,7 @@ Here are the full patch notes:
 * src: ixl: fix SR-IOV panics
 * src: rc: run NAME_setup before RC_ARG_precmd
 * src: u3g: add more USB IDs
-* ports: libxml 2.10.3 `[15] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.10.3 `[15] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: nss 3.84 `[16] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_84.html>`__ 
 * ports: openssl 1.1.1s `[17] <https://www.openssl.org/news/openssl-1.1.1-notes.html>`__ 
 * ports: openvpn 2.5.8 `[18] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25#Changesin2.5.8>`__ 
@@ -462,7 +462,7 @@ Here are the full patch notes:
 * interfaces: add support for requesting DNS info via stateless DHCPv6 (contributed by Maurice Walker)
 * dnsmasq: restart during "newwanip" event
 * ports: curl 7.85.0 `[1] <https://curl.se/changes.html#7_85_0>`__ 
-* ports: libxml 2.10.2 `[2] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.10.2 `[2] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: sqlite 3.39.2 `[3] <https://sqlite.org/releaselog/3_39_2.html>`__ 
 * ports: syslog-ng 3.38.1 `[4] <https://github.com/syslog-ng/syslog-ng/releases/tag/syslog-ng-3.38.1>`__ 
 
@@ -522,7 +522,7 @@ Here are the full patch notes:
 * src: tzdata: import tzdata 2022b and 2022c `[6] <https://www.freebsd.org/security/advisories/FreeBSD-EN-22:20.tzdata.asc>`__ 
 * ports: ldns 1.8.3 `[7] <https://raw.githubusercontent.com/NLnetLabs/ldns/1.8.3/Changelog>`__ 
 * ports: liblz4 1.9.4
-* ports: libxml 2.10.1 `[8] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.10.1 `[8] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: nss 3.82 `[9] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_82.html>`__ 
 * ports: phpseclib 3.0.14 `[10] <https://github.com/phpseclib/phpseclib/releases/tag/3.0.14>`__ 
 
@@ -615,7 +615,7 @@ Here are the full patch notes:
 * plugins: os-munin-node 1.1 `[4] <https://github.com/opnsense/plugins/blob/stable/22.7/sysutils/munin-node/pkg-descr>`__ 
 * plugins: os-netdata 1.2 `[5] <https://github.com/opnsense/plugins/blob/stable/22.7/net-mgmt/netdata/pkg-descr>`__ 
 * plugins: os-nginx 1.29 `[6] <https://github.com/opnsense/plugins/blob/stable/22.7/www/nginx/pkg-descr>`__ 
-* ports: libxml 2.9.14 `[7] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.9.14 `[7] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: nss 3.81 `[8] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_81.html>`__ 
 * ports: rrdtool 1.8.0 `[9] <https://github.com/oetiker/rrdtool-1.x/blob/master/CHANGES>`__ 
 * ports: unbound 1.16.2 `[10] <https://nlnetlabs.nl/projects/unbound/download/#unbound-1-16-2>`__ 
diff --git a/source/releases/CE_23.1.rst b/source/releases/CE_23.1.rst
index ba6413ed..70ca8fa4 100644
--- a/source/releases/CE_23.1.rst
+++ b/source/releases/CE_23.1.rst
@@ -289,7 +289,7 @@ Here are the full patch notes:
 * plugins: os-ddclient 1.13 `[1] <https://github.com/opnsense/plugins/blob/stable/23.1/dns/ddclient/pkg-descr>`__ 
 * plugins: os-stunnel fix for missing OpenSSL CRL functions
 * plugins: os-smart fix for highlighting result (contributed by Justin Horton)
-* ports: libxml 2.10.4 `[2] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.10.4 `[2] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: openvpn 2.6.3 `[3] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn26#Changesin2.6.3>`__ 
 * ports: sqlite 3.41.2 `[4] <https://sqlite.org/releaselog/3_41_2.html>`__ 
 * ports: suricata 6.0.11 `[5] <https://suricata.io/2023/04/13/suricata-6-0-11-released/>`__ 
@@ -851,7 +851,7 @@ Here are the full patch notes:
 * plugins: os-haproxy 4.0 `[1] <https://github.com/opnsense/plugins/blob/stable/23.1/net/haproxy/pkg-descr>`__ 
 * ports: curl 7.87.0 `[2] <https://curl.se/changes.html#7_87_0>`__ 
 * ports: nss 3.87 `[3] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_87.html>`__ 
-* ports: pcre 10.42 `[4] <https://www.pcre.org/changelog.txt>`__ 
+* ports: pcre 10.42 `[4] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.42>`__ 
 * ports: phalcon 5.1.4 `[5] <https://github.com/phalcon/cphalcon/releases/tag/v5.1.4>`__ 
 * ports: php 8.1.14 `[6] <https://www.php.net/ChangeLog-8.php#8.1.14>`__ 
 * ports: strongswan 5.9.9 `[7] <https://github.com/strongswan/strongswan/releases/tag/5.9.9>`__ 
diff --git a/source/releases/CE_23.7.rst b/source/releases/CE_23.7.rst
index 4bcb0010..490d399c 100644
--- a/source/releases/CE_23.7.rst
+++ b/source/releases/CE_23.7.rst
@@ -738,13 +738,13 @@ Here are the full patch notes:
 * src: ixl: port ice's atomic API to ixl
 * src: rss: set pin_default_swi to 0 by default
 * src: rtsol: introduce an 'always' script
+* ports: dnspython 2.4.2
 * ports: krb5 1.21.2 `[3] <https://web.mit.edu/kerberos/krb5-1.21/>`__ 
 * ports: openldap 2.6.6 `[4] <https://www.openldap.org/software/release/changes.html>`__ 
 * ports: openvpn 2.6.6 `[5] <https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn26#Changesin2.6.6>`__ 
 * ports: php 8.2.9 `[6] <https://www.php.net/ChangeLog-8.php#8.2.9>`__ 
 * ports: phalcon 5.3.0 `[7] <https://github.com/phalcon/cphalcon/releases/tag/v5.3.0>`__ 
 * ports: phpseclib 3.0.21 `[8] <https://github.com/phpseclib/phpseclib/releases/tag/3.0.21>`__ 
-* ports: py-dnspython 2.4.2
 
 
 
@@ -787,10 +787,10 @@ Here are the full patch notes:
 * src: libpfctl: ensure the initial allocation is large enough
 * src: pf: handle multiple IPv6 fragment headers
 * ports: curl 8.2.1 `[5] <https://curl.se/changes.html#8_2_1>`__ 
+* ports: dnspython 2.4.1
 * ports: nss 3.92 `[6] <https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_92.html>`__ 
 * ports: openssl 1.1.1v `[7] <https://www.openssl.org/news/openssl-1.1.1-notes.html>`__ 
 * ports: perl 5.34.1 `[8] <https://perldoc.perl.org/5.34.1/perldelta>`__ 
-* ports: py-dnspython 2.4.1
 * ports: strongswan 5.9.11 `[9] <https://github.com/strongswan/strongswan/releases/tag/5.9.11>`__ 
 * ports: syslog-ng 4.3.1 `[10] <https://github.com/syslog-ng/syslog-ng/releases/tag/syslog-ng-4.3.1>`__ 
 
diff --git a/source/releases/CE_24.1.rst b/source/releases/CE_24.1.rst
index fdcb7700..20122505 100644
--- a/source/releases/CE_24.1.rst
+++ b/source/releases/CE_24.1.rst
@@ -27,6 +27,48 @@ can be found below as well.
 * Full mirror list: https://opnsense.org/download/
 
 
+--------------------------------------------------------------------------
+24.1.3 (March 06, 2024)
+--------------------------------------------------------------------------
+
+
+This update fixes minor issues in the software and adds a CSV import/export
+to the Kea DHCP reservations to make bulk edits much easier.  It also fixes
+defaults in Suricata 7 that would negatively impact the IPS mode usage and
+updates the curl package to its current latest version.
+
+Here are the full patch notes:
+
+* system: prevent gateway removal when it is currently bound to an interface
+* system: fix assorted PHP deprecation warnings
+* firewall: add optional advanced property "State policy" to influence state creation on a per rule base
+* firewall: fix floating rule display (contributed by lin-xianming)
+* firewall: fix display of ICMP tooltip (contributed by lin-xianming)
+* firmware: fix missing space in audit message
+* kea-dhcp: add import/export as CSV on reservations
+* intrusion detection: set exception-policy and app-layer.error-policy to their advertised defaults
+* unbound: make atomic copies of root.hints file to hopefully appease Unbound startup problems
+* unbound: fix missing /lib nullfs mount in chroot
+* unbound: add aggressive-nsec option toggle (contributed by kulikov-a)
+* wireguard: remove duplicate "pubkey" field, remove required tag and validate on Base64 in model
+* wireguard: address assorted interface configuration inconsistencies during configuration
+* mvc: fix model cloning when array items contain nested containers
+* ui: fix epoch support as number in bootgrid
+* ui: replace all &gt; and &lt; occurrences in treeview (contributed by lin-xianming)
+* wizard: reorder storage sequence to fix hostname/domain change bug
+* plugins: os-theme-cicada 1.35 (contributed by Team Rebellion)
+* plugins: os-theme-rebellion 1.8.10 (contributed by Team Rebellion)
+* ports: curl 8.6.0 `[1] <https://curl.se/changes.html#8_6_0>`__ 
+* ports: dnspython 2.6.1
+* ports: expat 2.6.0 `[2] <https://github.com/libexpat/libexpat/blob/R_2_6_0/expat/Changes>`__ 
+* ports: libpfctl 0.9
+* ports: libxml 2.11.7 `[3] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
+* ports: lighttpd 1.4.74 `[4] <https://www.lighttpd.net/2024/2/19/1.4.74/>`__ 
+* ports: pcre2 10.43 `[5] <https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.43>`__ 
+* ports: php 8.2.16 `[6] <https://www.php.net/ChangeLog-8.php#8.2.16>`__ 
+
+
+
 --------------------------------------------------------------------------
 24.1.2 (February 20, 2024)
 --------------------------------------------------------------------------
@@ -238,7 +280,7 @@ Here are the full patch notes against 23.7.12:
 * src: wireguard: add experimental netmap support
 * src: sys: Use mbufq_empty instead of comparing mbufq_len against 0
 * src: e1000/igc: remove disconnected sysctl
-* ports: libxml 2.11.6 `[5] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.11.6 `[5] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: openssl 3.0.12 `[6] <https://www.openssl.org/news/cl30.txt>`__ 
 * ports: php 8.2.15 `[7] <https://www.php.net/ChangeLog-8.php#8.2.15>`__ 
 * ports: py-duckdb 0.9.2
@@ -362,7 +404,7 @@ Here are the full patch notes against 23.7.12:
 * src: bsdinstall: merge assorted stable changes
 * src: tuntap: merge assorted stable changes
 * src: wireguard: add netmap support
-* ports: libxml 2.11.6 `[2] <http://www.xmlsoft.org/news.html>`__ 
+* ports: libxml 2.11.6 `[2] <https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS>`__ 
 * ports: openssl 3.0.12 `[3] <https://www.openssl.org/news/cl30.txt>`__ 
 * ports: py-duckdb 0.9.2
 * ports: suricata 7.0.2 `[4] <https://forum.suricata.io/t/suricata-7-0-2-released/4069>`__