[Buildroot] [PATCH] package/expat: security bump to version 2.2.7
Peter Korsgaard
peter at korsgaard.com
Sun Jul 7 06:31:17 UTC 2019
>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:
> Fixes the following security vulnerabilites:
> CVE-2018-20843: In libexpat in Expat before 2.2.7, XML input including XML
> names that contain a large number of colons could make the XML parser
> consume a high amount of RAM and CPU resources while processing (enough to
> be usable for denial-of-service attacks).
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Committed to 2019.02.x and 2019.05.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list