https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=286782
--- Comment #2 from commit-h...@freebsd.org --- A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=11d181b834f29d60d8ce03734eed1bf1eab35072 commit 11d181b834f29d60d8ce03734eed1bf1eab35072 Author: Charlie Li <vish...@freebsd.org> AuthorDate: 2025-05-13 23:23:07 +0000 Commit: Charlie Li <vish...@freebsd.org> CommitDate: 2025-05-13 23:23:07 +0000 textproc/libxslt: update to 1.1.43 Changelog: https://gitlab.gnome.org/GNOME/libxslt/-/blob/v1.1.43/NEWS Fixes CVE-2024-55549 and CVE-2025-24855 Upstream have disabled CRYPTO and (new OPTION) PLUGINS by default, as they will be removed in a future version, but the port continues to have them enabled by default until at least the next update. Reported by: ngie Security: a96cd659-303e-11f0-94b5-54ee755069b5 PR: 286782 textproc/libxslt/Makefile | 12 ++++++------ textproc/libxslt/distinfo | 8 +++----- textproc/libxslt/pkg-plist | 4 ++-- 3 files changed, 11 insertions(+), 13 deletions(-) -- You are receiving this mail because: You are the assignee for the bug.
