expat: fix CVE-2024-45490
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer. Added tests patch and its dependent patch[c803b93e8736e] (From OE-Core rev: 26b6c87fc2c2b4b4860c6c8b1f4892dfd2d3b30e) Signed-off-by:Archana Polampalli <archana.polampalli@windriver.com> Signed-off-by:
Steve Sakoman <steve@sakoman.com>
Showing
- meta/recipes-core/expat/expat/CVE-2024-45490-0001.patch 35 additions, 0 deletionsmeta/recipes-core/expat/expat/CVE-2024-45490-0001.patch
- meta/recipes-core/expat/expat/CVE-2024-45490-0002.patch 250 additions, 0 deletionsmeta/recipes-core/expat/expat/CVE-2024-45490-0002.patch
- meta/recipes-core/expat/expat/CVE-2024-45490-0003.patch 91 additions, 0 deletionsmeta/recipes-core/expat/expat/CVE-2024-45490-0003.patch
- meta/recipes-core/expat/expat/CVE-2024-45490-0004.patch 49 additions, 0 deletionsmeta/recipes-core/expat/expat/CVE-2024-45490-0004.patch
- meta/recipes-core/expat/expat_2.5.0.bb 4 additions, 0 deletionsmeta/recipes-core/expat/expat_2.5.0.bb
Loading
Please register or sign in to comment