expat: fix CVE-2024-45492 (00fb236b) · Commits · icshwi / yocto-mirrors / poky

Commit 00fb236b authored 6 months ago by Archana Polampalli Committed by Steve Sakoman 6 months ago

expat: fix CVE-2024-45492


An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have
an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

(From OE-Core rev: 5b31e7f46ab05aca48f4fb11c558ff990e772c9e)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

parent 0a757026

No related branches found

No related tags found

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 39 additions and 0 deletions

Please register or to comment

Admin message

expat: fix CVE-2024-45492