]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 0d195a9) | patch
expat: fix CVE-2021-45960
authorSteve Sakoman <steve@sakoman.com>
Wed, 19 Jan 2022 14:51:17 +0000 (04:51 -1000)
committerAnuj Mittal <anuj.mittal@intel.com>
Wed, 26 Jan 2022 03:40:00 +0000 (11:40 +0800)
commit8d475823acf95d81596c1c125bc7dd4d0e0f5f1c
tree0b957849e5cb412438bfb98109e5bd9e14bdcd5btree | snapshot
parent0d195a98703d690a348719f77e7be78653d14ad3commit | diff
expat: fix CVE-2021-45960

In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more)
places in the storeAtts function in xmlparse.c can lead to realloc
misbehavior (e.g., allocating too few bytes, or only freeing memory).

Backport patch from:
https://github.com/libexpat/libexpat/pull/534/commits/0adcb34c49bee5b19bd29b16a578c510c23597ea

CVE: CVE-2021-45960
Signed-off-by: Steve Sakoman <steve@sakoman.com>
(cherry picked from commit 22fe1dea3164a5cd4d5636376f3671641ada1da9)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
meta/recipes-core/expat/expat/CVE-2021-45960.patch [new file with mode: 0644] blob
meta/recipes-core/expat/expat_2.2.10.bb diff | blob | history
Mirror of the official openembedded-core repository