xerces-j: Upgrade to 2.12.2

As per below links CVE-2022-23437 is fixed by upgrade of xerces-j version to 2.12.2. https://bugs.gentoo.org/show_bug.cgi?id=CVE-2022-23437 https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=743111a72f39a1b24f87bd1b2fc32ef707b41407 Hence upgrade the version. Signed-off-by: Neetika Singh <Neetika.Singh@kpit.com> Signed-off-by: Richard Leitner <richard.leitner@skidata.com>
author: Neetika Singh <Neetika.Singh@kpit.com> 2022-07-07 14:22:22 +0530
committer: Richard Leitner <richard.leitner@skidata.com> 2022-08-22 10:27:37 +0200
commit: 6d5620541584e20e195783dc025314a8a29e655b (patch)
tree: c853ef00d8002425f025725e87c9d00f668ee83c
parent: dc04503e7a1de1bff37c366c3b71c9f2a66272c2 (diff)
download: meta-java-6d5620541584e20e195783dc025314a8a29e655b.tar.gz
1 files changed, 4 insertions, 4 deletions
diff --git a/recipes-core/xerces-j/xerces-j_2.11.0.bb b/recipes-core/xerces-j/xerces-j_2.12.2.bb
index fda6fe4..bc2780e 100644
--- a/recipes-core/xerces-j/xerces-j_2.11.0.bb
+++ b/recipes-core/xerces-j/xerces-j_2.12.2.bb
@@ -12,7 +12,7 @@ LIC_FILES_CHKSUM = " \
                    file://LICENSE.serializer.txt;md5=d229da563da18fe5d58cd95a6467d584 \
                   "
-SRC_URI = "http://archive.apache.org/dist/xerces/j/Xerces-J-src.${PV}.tar.gz"
+SRC_URI = "http://archive.apache.org/dist/xerces/j/source/Xerces-J-src.${PV}.tar.gz"
 # CVE only applies to some Oracle Java SE and Red Hat Enterprise Linux versions.
 # Already fixed with updates and closed.
@@ -20,7 +20,7 @@ SRC_URI = "http://archive.apache.org/dist/xerces/j/Xerces-J-src.${PV}.tar.gz"
 # https://bugzilla.redhat.com/show_bug.cgi?id=1567542
 CVE_CHECK_WHITELIST += "CVE-2018-2799"
-S = "${WORKDIR}/xerces-2_11_0"
+S = "${WORKDIR}/xerces-2_12_2"
 inherit java-library
@@ -63,7 +63,7 @@ do_compile() {
 }
-SRC_URI[md5sum] = "d01fc11eacbe43b45681cb85ac112ebf"
+SRC_URI[md5sum] = "41dde3c515fca8d307416123bc07a739"
-SRC_URI[sha256sum] = "f59a5ef7b51bd883f2e9bda37a9360692e6c5e439b98d9b6ac1953e1f98b0680"
+SRC_URI[sha256sum] = "6dd1ebd4c88e935c182375346cd7365514bd8dd2ad2f30f0d0b05257bab34ee8"
 BBCLASSEXTEND = "native"
author	Neetika Singh <Neetika.Singh@kpit.com>	2022-07-07 14:22:22 +0530
committer	Richard Leitner <richard.leitner@skidata.com>	2022-08-22 10:27:37 +0200
commit	6d5620541584e20e195783dc025314a8a29e655b (patch)
tree	c853ef00d8002425f025725e87c9d00f668ee83c
parent	dc04503e7a1de1bff37c366c3b71c9f2a66272c2 (diff)
download	meta-java-6d5620541584e20e195783dc025314a8a29e655b.tar.gz

diff --git a/recipes-core/xerces-j/xerces-j_2.11.0.bb b/recipes-core/xerces-j/xerces-j_2.12.2.bb index fda6fe4..bc2780e 100644 --- a/recipes-core/xerces-j/xerces-j_2.11.0.bb +++ b/recipes-core/xerces-j/xerces-j_2.12.2.bb
@@ -12,7 +12,7 @@ LIC_FILES_CHKSUM = " \
12	file://LICENSE.serializer.txt;md5=d229da563da18fe5d58cd95a6467d584 \	12	file://LICENSE.serializer.txt;md5=d229da563da18fe5d58cd95a6467d584 \
13	"	13	"
14		14
15	SRC_URI = "http://archive.apache.org/dist/xerces/j/Xerces-J-src.${PV}.tar.gz"	15	SRC_URI = "http://archive.apache.org/dist/xerces/j/source/Xerces-J-src.${PV}.tar.gz"
16		16
17	# CVE only applies to some Oracle Java SE and Red Hat Enterprise Linux versions.	17	# CVE only applies to some Oracle Java SE and Red Hat Enterprise Linux versions.
18	# Already fixed with updates and closed.	18	# Already fixed with updates and closed.
@@ -20,7 +20,7 @@ SRC_URI = "http://archive.apache.org/dist/xerces/j/Xerces-J-src.${PV}.tar.gz"
20	# https://bugzilla.redhat.com/show_bug.cgi?id=1567542	20	# https://bugzilla.redhat.com/show_bug.cgi?id=1567542
21	CVE_CHECK_WHITELIST += "CVE-2018-2799"	21	CVE_CHECK_WHITELIST += "CVE-2018-2799"
22		22
23	S = "${WORKDIR}/xerces-2_11_0"	23	S = "${WORKDIR}/xerces-2_12_2"
24		24
25	inherit java-library	25	inherit java-library
26		26
@@ -63,7 +63,7 @@ do_compile() {
63		63
64	}	64	}
65		65
66	SRC_URI[md5sum] = "d01fc11eacbe43b45681cb85ac112ebf"	66	SRC_URI[md5sum] = "41dde3c515fca8d307416123bc07a739"
67	SRC_URI[sha256sum] = "f59a5ef7b51bd883f2e9bda37a9360692e6c5e439b98d9b6ac1953e1f98b0680"	67	SRC_URI[sha256sum] = "6dd1ebd4c88e935c182375346cd7365514bd8dd2ad2f30f0d0b05257bab34ee8"
68		68
69	BBCLASSEXTEND = "native"	69	BBCLASSEXTEND = "native"