expat: fix CVE-2023-52426 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Meenali Gupta <meenali.gupta@windriver.com>	2024-03-17 15:47:25 +0000
committer	Steve Sakoman <steve@sakoman.com>	2024-03-25 04:11:25 -1000
commit	9fce626d584260fd9a86e11e3fe367e93645cf5b (patch)
tree	a124ef5b4de5b7887bda3d73761058e6248dbb30 /meta/recipes-devtools/python
parent	fe9d4cb61321da23b6a9046545bde03a625e6ce0 (diff)
download	poky-9fce626d584260fd9a86e11e3fe367e93645cf5b.tar.gz

expat: fix CVE-2023-52426

A flaw was found in Expat (libexpat). If XML_DTD is undefined at compile time, a recursive XML Entity Expansion condition can be triggered.This issue may lead to a condition where data is expanded exponentially, which will quickly consume system resources and cause a denial of service. References: https://nvd.nist.gov/vuln/detail/CVE-2023-52426 https://github.com/libexpat/libexpat/pull/777 (From OE-Core rev: aa20dd9eb68f04a5f1556123ad1b2398de911d93) Signed-off-by: Meenali Gupta <meenali.gupta@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'meta/recipes-devtools/python')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: