https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=286782
--- Comment #5 from commit-h...@freebsd.org --- A commit in branch 2025Q2 references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=5922ddc478080eb78eee35c3ae56c77381fdfe92 commit 5922ddc478080eb78eee35c3ae56c77381fdfe92 Author: Charlie Li <vish...@freebsd.org> AuthorDate: 2025-05-13 23:23:07 +0000 Commit: Charlie Li <vish...@freebsd.org> CommitDate: 2025-05-28 05:57:10 +0000 textproc/libxslt: update to 1.1.43 Changelog: https://gitlab.gnome.org/GNOME/libxslt/-/blob/v1.1.43/NEWS Fixes CVE-2024-55549 and CVE-2025-24855 Upstream have disabled CRYPTO and (new OPTION) PLUGINS by default, as they will be removed in a future version, but the port continues to have them enabled by default until at least the next update. Reported by: ngie Security: a96cd659-303e-11f0-94b5-54ee755069b5 PR: 286782 (cherry picked from commit 11d181b834f29d60d8ce03734eed1bf1eab35072) textproc/libxslt/Makefile | 12 ++++++------ textproc/libxslt/distinfo | 8 +++----- textproc/libxslt/pkg-plist | 4 ++-- 3 files changed, 11 insertions(+), 13 deletions(-) -- You are receiving this mail because: You are the assignee for the bug.
