expat: add missing Upstream-status, CVE tag and sign-off to CVE-2021-46143.patch

author Steve Sakoman <steve@sakoman.com>

Mon, 31 Jan 2022 17:15:20 +0000 (07:15 -1000)

committer Anuj Mittal <anuj.mittal@intel.com>

Mon, 7 Feb 2022 03:01:23 +0000 (11:01 +0800)
author Steve Sakoman <steve@sakoman.com>
Mon, 31 Jan 2022 17:15:20 +0000 (07:15 -1000)
committer Anuj Mittal <anuj.mittal@intel.com>
Mon, 7 Feb 2022 03:01:23 +0000 (11:01 +0800)
diff --git a/meta/recipes-core/expat/expat/CVE-2021-46143.patch b/meta/recipes-core/expat/expat/CVE-2021-46143.patch

index d6bafba0ffb75202f8e291fe411395d2f825efb0..b1a726d9a8c20291b2e4658f8e9f300286d05512 100644 (file)
--- a/meta/recipes-core/expat/expat/CVE-2021-46143.patch
+++ b/meta/recipes-core/expat/expat/CVE-2021-46143.patch
@@ -4,6 +4,12 @@ Date: Sat, 25 Dec 2021 20:52:08 +0100
  Subject: [PATCH] lib: Prevent integer overflow on m_groupSize in function
   doProlog (CVE-2021-46143)
  
+Upstream-Status: Backport:
+https://github.com/libexpat/libexpat/pull/538/commits/85ae9a2d7d0e9358f356b33977b842df8ebaec2b
+
+CVE: CVE-2021-46143
+
+Signed-off-by: Steve Sakoman <steve@sakoman.com>
  ---
   expat/lib/xmlparse.c | 15 +++++++++++++++
   1 file changed, 15 insertions(+)
author	Steve Sakoman <steve@sakoman.com>
	Mon, 31 Jan 2022 17:15:20 +0000 (07:15 -1000)
committer	Anuj Mittal <anuj.mittal@intel.com>
	Mon, 7 Feb 2022 03:01:23 +0000 (11:01 +0800)