mirrors/buildroot
0
0
Fork 0
mirror of https://git.busybox.net/buildroot.git synced 2024-11-23 21:43:30 +08:00
Code Issues Packages Projects Releases Wiki Activity

package/expat: security bump to version 2.6.2

Browse Source 
Security fixes:
	- CVE-2024-28757 -- Prevent billion laughs attacks with isolated
	  use of external parsers.  Please see the commit message of
	  commit 1d50b80cf31de87750103656f6eb693746854aa8 for details.

https://blog.hartwork.org/posts/expat-2-6-2-released/
https://github.com/libexpat/libexpat/blob/R_2_6_2/expat/Changes

Signed-off-by: Sébastien Szymanski <sebastien.szymanski@armadeus.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
This commit is contained in:
Sébastien Szymanski 2024-03-14 17:16:20 +01:00 committed by Peter Korsgaard
parent bb8766cc54
commit 1dfe980b19
2 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
package/expat/expat.hash
View File

@ -1,7 +1,7 @@
# From https://sourceforge.net/projects/expat/files/expat/2.6.1/
md5 84d0ee1c554212dc8f068e538de5b823 expat-2.6.1.tar.xz
sha1 1a1804b7c565a8b21abbd3433ef67ed8a4476960 expat-2.6.1.tar.xz
# From https://sourceforge.net/projects/expat/files/expat/2.6.2/
md5 0cb75c8feb842c0794ba89666b762a2d expat-2.6.1.tar.xz
sha1 d9e5f953dcacda3c9e69b4886382c3d8847b81bd expat-2.6.1.tar.xz
# Locally calculated
sha256 cb5f5a8ea211e1cabd59be0a933a52e3c02cc326e86a4d387d8d218e7ee47a3e expat-2.6.0.tar.xz
sha256 ee14b4c5d8908b1bec37ad937607eab183d4d9806a08adee472c3c3121d27364 expat-2.6.2.tar.xz
sha256 122f2c27000472a201d337b9b31f7eb2b52d091b02857061a8880371612d9534 COPYING

2
package/expat/expat.mk
View File

@ -4,7 +4,7 @@
#
################################################################################
EXPAT_VERSION = 2.6.1
EXPAT_VERSION = 2.6.2
EXPAT_SITE = http://downloads.sourceforge.net/project/expat/expat/$(EXPAT_VERSION)
EXPAT_SOURCE = expat-$(EXPAT_VERSION).tar.xz
EXPAT_INSTALL_STAGING = YES