expat: fix CVE-2024-45492 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Archana Polampalli <archana.polampalli@windriver.com>	2024-09-09 06:55:59 +0000
committer	Steve Sakoman <steve@sakoman.com>	2024-09-16 06:09:56 -0700
commit	00fb236b77e000b48e268bb0b22613cf524fd2c6 (patch)
tree	bc8e3d4245eafa731e251ba880b788c10492985c /bitbake
parent	0a757026035905cfecac210f65abda0aad8c48ee (diff)
download	poky-00fb236b77e000b48e268bb0b22613cf524fd2c6.tar.gz

expat: fix CVE-2024-45492

An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX). (From OE-Core rev: 5b31e7f46ab05aca48f4fb11c558ff990e772c9e) Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'bitbake')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: