CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2026/03/13 08:09:54
Modified files:
security/openssl/3.5: Makefile
Added files:
security/openssl/3.5/patches: patch-CHANGES_md patch-NEWS_md
patch-doc_man3_SSL_CTX_set1_curves_pod
patch-ssl_t1_lib_c
patch-test_tls13groupselection_test_c
Log message:
openssl/3.5: pull in fix for CVE-2026-2673
Loss of key agreement group tuple structure when the `DEFAULT` keyword
is used in the server-side configuration of the key-agreement group list.
This could result in accepting a less preferred than intended client
keyshare.
