Date: Mon, 20 Jun 2016 18:50:11 +0000 From: bugzilla-noreply@freebsd.org To: gnome@FreeBSD.org Subject: [Bug 210298] textproc/libxslt: Update to 1.1.29 Message-ID: <bug-210298-6497-e9ypAgTcUK@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-210298-6497@https.bugs.freebsd.org/bugzilla/> References: <bug-210298-6497@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D210298 --- Comment #9 from Mark Felder <feld@FreeBSD.org> --- Debian appears to have patched their libxslt against these vulns that are supposedly due to Chrome's usage of the library: https://www.debian.org/security/2016/dsa-3605 It would be wise to do the same then. We don't ship Chromium with an embedd= ed libxslt as far as I can tell, so Chrome users are still vulnerable without = this library being patched. --=20 You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-210298-6497-e9ypAgTcUK>