expat: fix CVE-2022-25235 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Steve Sakoman <steve@sakoman.com>	2022-02-28 05:15:13 -1000
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-03-09 17:30:48 +0000
commit	e8fef0c8cfe6d110d9c63ded1bc329fd4b77df48 (patch)
tree	686c8e1df0b4d143585c94205b856811be46e654 /.gitignore
parent	415757639d85c61b61faf5f0d258057a9924ceb1 (diff)
download	poky-e8fef0c8cfe6d110d9c63ded1bc329fd4b77df48.tar.gz

expat: fix CVE-2022-25235

xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context. Backport patches from: https://github.com/libexpat/libexpat/pull/562/commits CVE: CVE-2022-25235 (From OE-Core rev: 27ab07b1e8caa5c85526eee4a7a3ad0d73326866) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to '.gitignore')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: