git.ipfire.org Git - people/pmueller/ipfire-2.x.git/commit

author	Adolf Belka <adolf.belka@ipfire.org>
	Mon, 7 Nov 2022 21:13:58 +0000 (22:13 +0100)
committer	Peter Müller <peter.mueller@ipfire.org>
	Tue, 8 Nov 2022 11:11:57 +0000 (11:11 +0000)
commit	cf25086eea3776172dba0691afa6bf5646090a64
tree	e4f3090dea17f93225667cee8a3955f3dde63a2a	tree \| snapshot
parent	0a65d443ef11e127b4bf8af6f6ede18a51855c57	commit \| diff

expat: Update to version 2.5.0

- Update from version 2.4.9 to 2.5.0
- Update of rootfile.
- Changelog
    Release 2.5.0 Tue October 25 2022
        Security fixes:
  #616 #649 #650  CVE-2022-43680 -- Fix heap use-after-free after overeager
                    destruction of a shared DTD in function
                    XML_ExternalEntityParserCreate in out-of-memory situations.
                    Expected impact is denial of service or potentially
                    arbitrary code execution.
        Bug fixes:
       #612 #645  Fix curruption from undefined entities
       #613 #654  Fix case when parsing was suspended while processing nested
                    entities
  #616 #652 #653  Stop leaking opening tag bindings after a closing tag
                    mismatch error where a parser is reset through
                    XML_ParserReset and then reused to parse
            #656  CMake: Fix generation of pkg-config file
            #658  MinGW|CMake: Fix static library name
        Other changes:
            #663  Protect header expat_config.h from multiple inclusion
            #666  examples: Make use of XML_GetBuffer and be more
                    consistent across examples
            #648  Address compiler warnings
       #667 #668  Version info bumped from 9:9:8 to 9:10:8;
                    see https://verbump.de/ for what these numbers do

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>

config/rootfiles/common/expat		diff \| blob \| blame \| history
lfs/expat		diff \| blob \| blame \| history