Request 1222170: Submit expat - openSUSE Build Service

Overview

Request 1222170 accepted

- version update to 2.6.4
* Security fixes: [bsc#1232601]
#915 CVE-2024-50602 -- Fix crash within function XML_ResumeParser
from a NULL pointer dereference by disallowing function
XML_StopParser to (stop or) suspend an unstarted parser.
A new error code XML_ERROR_NOT_STARTED was introduced to
properly communicate this situation. // CWE-476 CWE-754
* Other changes:
#903 CMake: Add alias target "expat::expat"
#905 docs: Document use via CMake >=3.18 with FetchContent
and SOURCE_SUBDIR and its consequences
#902 tests: Reduce use of global parser instance
#904 tests: Resolve duplicate handler
#317 #918 tests: Improve tests on doctype closing (ex CVE-2019-15903)
#914 Fix signedness of format strings
#919 #920 Version info bumped from 10:3:9 (libexpat*.so.1.9.3)
to 11:0:10 (libexpat*.so.1.10.0); see https://verbump.de/
for what these numbers do (forwarded request 1222166 from pgajdos)

Created by pgajdos 16 days ago
In state accepted

Submit expat

Comments for request 1222170 0

Login required, please login in order to comment

Request History

pgajdos created request 16 days ago

- version update to 2.6.4
* Security fixes: [bsc#1232601]
#915 CVE-2024-50602 -- Fix crash within function XML_ResumeParser
from a NULL pointer dereference by disallowing function
XML_StopParser to (stop or) suspend an unstarted parser.
A new error code XML_ERROR_NOT_STARTED was introduced to
properly communicate this situation. // CWE-476 CWE-754
* Other changes:
#903 CMake: Add alias target "expat::expat"
#905 docs: Document use via CMake >=3.18 with FetchContent
and SOURCE_SUBDIR and its consequences
#902 tests: Reduce use of global parser instance
#904 tests: Resolve duplicate handler
#317 #918 tests: Improve tests on doctype closing (ex CVE-2019-15903)
#914 Fix signedness of format strings
#919 #920 Version info bumped from 10:3:9 (libexpat*.so.1.9.3)
to 11:0:10 (libexpat*.so.1.10.0); see https://verbump.de/
for what these numbers do (forwarded request 1222166 from pgajdos)

anag+factory set openSUSE:Factory:Staging:B as a staging project 16 days ago

Being evaluated by staging project "openSUSE:Factory:Staging:B"

anag+factory accepted review 16 days ago

Picked "openSUSE:Factory:Staging:B"

factory-auto added opensuse-review-team as a reviewer 16 days ago

Please review sources

factory-auto accepted review 16 days ago

Check script succeeded

licensedigger accepted review 16 days ago

ok

darix accepted review 16 days ago

Accepted review for by_group opensuse-review-team request 1222170 from user factory-auto

anag+factory accepted review 15 days ago

Staging Project openSUSE:Factory:Staging:B got accepted.

anag+factory approved review 15 days ago

Staging Project openSUSE:Factory:Staging:B got accepted.

anag+factory accepted request 15 days ago

Staging Project openSUSE:Factory:Staging:B got accepted.

openSUSE Build Service is sponsored by