281350 – textproc/libxml2: Update to 2.11.9

Bug 281350 - textproc/libxml2: Update to 2.11.9

Summary: textproc/libxml2: Update to 2.11.9

Status:	Closed FIXED

Alias:	None

Product:	Ports & Packages
Classification:	Unclassified
Component:	Individual Port(s) (show other bugs)
Version:	Latest
Hardware:	Any Any

Importance:	--- Affects Only Me
Assignee:	Daniel Engberg

URL:	https://gitlab.gnome.org/GNOME/libxml...
Keywords:

Depends on:
Blocks:

Reported:	2024-09-07 23:01 UTC by Daniel Engberg
Modified:	2024-09-15 11:56 UTC (History)
CC List:	3 users (show)

See Also:

Flags:	fluffy: maintainer-feedback+ antoine: exp-run+

Attachments
Patch for libxml2 (891 bytes, patch) 2024-09-07 23:01 UTC, Daniel Engberg	fluffy: maintainer-approval+	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Daniel Engberg freebsd_committer

2024-09-07 23:01:17 UTC

Created attachment 253412 [details]
Patch for libxml2

Fixes CVE-2024-40896

Compile and runtime tested on FreeBSD 14.1-RELEASE (amd64) (make, make check-plist, make test)

Poudriere testport OK 13.3-RELEASE (amd64)
Poudriere testport OK 14.0-RELEASE (i386)
Poudriere testport OK 14.0-RELEASE (amd64)
Poudriere testport OK 14.1-RELEASE (amd64)

Comment 1 Daniel Engberg freebsd_committer

2024-09-07 23:01:42 UTC

Hi,

I'd like to request an exp-run

Best regards,
Daniel

Comment 2 Dima Panov freebsd_committer

2024-09-08 22:33:37 UTC

LGTM

Comment 3 Antoine Brodin freebsd_committer

2024-09-12 19:24:46 UTC

Exp-run looks fine

Comment 4 commit-hook freebsd_committer

2024-09-15 11:55:39 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=9441ca687e274fd7d12ea56b88e95a529094cd62

commit 9441ca687e274fd7d12ea56b88e95a529094cd62
Author:     Daniel Engberg <diizzy@FreeBSD.org>
AuthorDate: 2024-09-15 11:37:40 +0000
Commit:     Daniel Engberg <diizzy@FreeBSD.org>
CommitDate: 2024-09-15 11:54:31 +0000

    textproc/libxml2: Update to 2.11.9

    Fixes CVE-2024-40896

    Changelog: https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.9

    PR:             281350
    Approved by:    desktop (fluffy)
    Exp-run by:     antoine

 textproc/libxml2/Makefile | 2 +-
 textproc/libxml2/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)