[Buildroot] [PATCH] expat: security bump to version 2.2.0
Peter Korsgaard
peter at korsgaard.com
Thu Jun 23 19:13:00 UTC 2016
>>>>> "gustavo" == gustavo zacarias <gustavo.zacarias at free-electrons.com> writes:
> From: Gustavo Zacarias <gustavo.zacarias at free-electrons.com>
> Fixes:
> CVE-2016-4472 - Improve insufficient fix to CVE-2015-1283 /
> CVE-2015-2716 introduced with Expat 2.1.1
> CVE-2016-5300 - Use more entropy for hash initialization than the
> original fix to CVE-2012-0876
> CVE-2012-6702 - Resolve troublesome internal call to srand that was
> introduced with Expat 2.1.0 when addressing CVE-2012-0876
> Signed-off-by: Gustavo Zacarias <gustavo.zacarias at free-electrons.com>
Committed, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list