expat: fix CVE-2024-45491 (0a757026) · Commits · icshwi / yocto-mirrors / poky

Commit 0a757026 authored 6 months ago by Archana Polampalli Committed by Steve Sakoman 6 months ago

expat: fix CVE-2024-45491


An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an
integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

(From OE-Core rev: fb5ca8b9dcb00ff579ee70295b68aecdb3084b38)

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

parent 0cc5ed6f

No related branches found

No related tags found

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 40 additions and 0 deletions

Please register or to comment