From nobody Sun Jun 22 17:53:22 2025 X-Original-To: desktop@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4bQJjK16J6z601CH for ; Sun, 22 Jun 2025 17:53:25 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4bQJjJ6kttz3D89 for ; Sun, 22 Jun 2025 17:53:24 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1750614805; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=Atqmk424wzCObq0iwSMTMkMRZInKvSXoRz7TkRvSlSA=; b=JWhcR9fJCfnrAVwsgu5Ak2B3ls3dqafGOqvcS+eW5Nxsy4h/8yrtvubEpPCnkBEwNJW8iH 8Z9Tr2rEgzReu3LnZNTqSefhah4NoN8k/sSrDhdAK8UtcGU8J6MXZaq/vG/UWqEyBiR9H2 UhbZojyosi5duFzRb6S08Sg+CZftrxbMSKGnimb1QTQfbywMNJbVCLxofL+ZuFv69CDDJW a4lSyrsOtKWsV7C4sztjaQofdesZ5ETujrTM8fEq8PEI2ecplOhnsgI/eBsLKCSSJlAcHK mgjcHJTcGfH2x/KHfuFzeHs/9UiduwP+8ndR2fxLoHERy8SV8XUCZ2aIHMLLRw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1750614805; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=Atqmk424wzCObq0iwSMTMkMRZInKvSXoRz7TkRvSlSA=; b=yxiV+2ilQYrECpauizzHHubFwm/h7U8vXt4AjIDURh4p6GXfeGJsvXmHBcwKuCB+kc683m 0arcisnRC7R0aYPtGNC/QFuxwAAvy5bCVSH0uxOgp32AT5eny/5GZnFfjHJAhLlZYLhMQw yYaFFl2yTylzpA7LNz+aOA92+RgVHnafvrJDwl7IOSVbvyvyhR/HhksOlgDreItF8BLFLy u6WK+nGs2GEx4W+GI5vbb+nQbMuWi9S0t6PeHuTbAnp1YnWlH2FAkAYco1TBU4okO2hjC+ bjbAWXd9uHna8qiQKkuNRf9QhFcssDBgoNtyNrmexrC5vy8baJ4J38U+RQq0LQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1750614805; a=rsa-sha256; cv=none; b=PC3S3dxncHTINbl8WlEcZAq0u9uIPT0obNZgF1ib9/HKPkuYVPonj3bdrvIYNPefeVBucW WoYTuLWJzr87ASB92nvsTsUbeO1e82jxyyp+TTOW3X+YZRzt7PR28pWdNNAyiT7RO+uTF9 d2JJTDvav6G/EoQJG7r9EGiO3/kqm6JGDHa7hRZ5kZB5xdJxKf+74uzvSGm2gw3t/CVgXV 6GsCCTNJ+zV0lk3vHO0CqUas90UIAPrMVp2sKjx0Jj94MLInM0qe0hWOUC+im7gAne9XMJ 6MPxNXZ/9yEgLUj85YJ0UKd+JHLdi2on+PljCtu/rh3qIbhRbxtmDKr0upcSMA== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4bQJjJ69vWzBhm for ; Sun, 22 Jun 2025 17:53:24 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 55MHrO5k060837 for ; Sun, 22 Jun 2025 17:53:24 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 55MHrOTU060836 for desktop@FreeBSD.org; Sun, 22 Jun 2025 17:53:24 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: desktop@FreeBSD.org Subject: [Bug 287391] textproc/libxml2: security patches for 2.11.9 Date: Sun, 22 Jun 2025 17:53:22 +0000 X-Bugzilla-Reason: CC AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Ports & Packages X-Bugzilla-Component: Individual Port(s) X-Bugzilla-Version: Latest X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: vishwin@freebsd.org X-Bugzilla-Status: Closed X-Bugzilla-Resolution: FIXED X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: desktop@FreeBSD.org X-Bugzilla-Flags: maintainer-feedback+ X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="UTF-8" X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Using and improving FreeBSD on the desktop List-Archive: https://lists.freebsd.org/archives/freebsd-desktop List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-desktop@FreeBSD.org MIME-Version: 1.0 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D287391 --- Comment #36 from Charlie Li --- (In reply to Florian Smeets from comment #33) I softened my stance in comment 31, as nuance tends to get lost in text. Wh= ile they will continue to be documented as usual/reported, I'm still concerned = over reactive noise especially when fixes are not available or workable. What upstream does or doesn't do absolutely matters for us. Treating securi= ty issues and commits as any other issue and commit can lead to fixes not being backportable, especially if they are discovered in a newer branch than what= we have. Ever since 2.12, there have been major API and behavioural changes per branch/major version that have necessitated lengthy update cycles. Perhaps = the big changes will subside a bit but the vigilance remains. We got very lucky this time, in that the original backports to the 2.12 bra= nch applied cleanly here. This is also what made the MFH possible. But do not expect this as a clear-cut norm going forward. --=20 You are receiving this mail because: You are on the CC list for the bug. You are the assignee for the bug.=