projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cb91add) | patch
expat: security bump to version 2.2.0
authorGustavo Zacarias <gustavo.zacarias@free-electrons.com>
Thu, 23 Jun 2016 00:56:01 +0000 (21:56 -0300)
committerPeter Korsgaard <peter@korsgaard.com>
Thu, 23 Jun 2016 19:11:14 +0000 (21:11 +0200)
commitc27ecf49304a4b95d438d5496a98ae8d52abbcb2
tree1b7f4188e90e17afe6ca44d78cf5f30e66fd13aftree
parentcb91add36b677079be75c5706eddb748e7a19880commit | diff
expat: security bump to version 2.2.0

Fixes:

CVE-2016-4472 - Improve insufficient fix to CVE-2015-1283 /
CVE-2015-2716 introduced with Expat 2.1.1

CVE-2016-5300 - Use more entropy for hash initialization than the
original fix to CVE-2012-0876

CVE-2012-6702 - Resolve troublesome internal call to srand that was
introduced with Expat 2.1.0 when addressing CVE-2012-0876

Signed-off-by: Gustavo Zacarias <gustavo.zacarias@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/expat/0001-fix-CVE-2016-0718.patch [deleted file] blob | history
package/expat/expat.hash diff | blob | history
package/expat/expat.mk diff | blob | history