[Buildroot] [PATCH] expat: security bump to version 2.2.0

Peter Korsgaard peter at korsgaard.com
Thu Jun 23 19:13:00 UTC 2016


>>>>> "gustavo" == gustavo zacarias <gustavo.zacarias at free-electrons.com> writes:

 > From: Gustavo Zacarias <gustavo.zacarias at free-electrons.com>
 > Fixes:

 > CVE-2016-4472 - Improve insufficient fix to CVE-2015-1283 /
 > CVE-2015-2716 introduced with Expat 2.1.1

 > CVE-2016-5300 - Use more entropy for hash initialization than the
 > original fix to CVE-2012-0876

 > CVE-2012-6702 - Resolve troublesome internal call to srand that was
 > introduced with Expat 2.1.0 when addressing CVE-2012-0876

 > Signed-off-by: Gustavo Zacarias <gustavo.zacarias at free-electrons.com>

Committed, thanks.

-- 
Bye, Peter Korsgaard


More information about the buildroot mailing list