* [ptxdist] [PATCH] libxml2: Version bump. 2.10.2 -> 2.10.3
@ 2022-10-20 12:49 Christian Melki
2022-10-28 14:44 ` [ptxdist] [APPLIED] " Michael Olbrich
0 siblings, 1 reply; 2+ messages in thread
From: Christian Melki @ 2022-10-20 12:49 UTC (permalink / raw)
To: ptxdist
https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.3
Plugs CVEs:
[CVE-2022-40303] Fix integer overflows with XML_PARSE_HUGE
[CVE-2022-40304] Fix dict corruption caused by entity reference cycles
* Forward patchset. Applies cleanly.
Signed-off-by: Christian Melki <christian.melki@t2data.com>
---
.../0200-xml2-config-is-not-SYSROOT-aware.patch | 0
patches/{libxml2-2.10.2 => libxml2-2.10.3}/series | 0
rules/libxml2.make | 4 ++--
3 files changed, 2 insertions(+), 2 deletions(-)
rename patches/{libxml2-2.10.2 => libxml2-2.10.3}/0200-xml2-config-is-not-SYSROOT-aware.patch (100%)
rename patches/{libxml2-2.10.2 => libxml2-2.10.3}/series (100%)
diff --git a/patches/libxml2-2.10.2/0200-xml2-config-is-not-SYSROOT-aware.patch b/patches/libxml2-2.10.3/0200-xml2-config-is-not-SYSROOT-aware.patch
similarity index 100%
rename from patches/libxml2-2.10.2/0200-xml2-config-is-not-SYSROOT-aware.patch
rename to patches/libxml2-2.10.3/0200-xml2-config-is-not-SYSROOT-aware.patch
diff --git a/patches/libxml2-2.10.2/series b/patches/libxml2-2.10.3/series
similarity index 100%
rename from patches/libxml2-2.10.2/series
rename to patches/libxml2-2.10.3/series
diff --git a/rules/libxml2.make b/rules/libxml2.make
index 58e201a35..2903ab538 100644
--- a/rules/libxml2.make
+++ b/rules/libxml2.make
@@ -16,8 +16,8 @@ PACKAGES-$(PTXCONF_LIBXML2) += libxml2
#
# Paths and names
#
-LIBXML2_VERSION := 2.10.2
-LIBXML2_MD5 := 5ffd0cd047056d5699b3363c635582bc
+LIBXML2_VERSION := 2.10.3
+LIBXML2_MD5 := f9edac7fac232b3657a003fd9a5bbe42
LIBXML2 := libxml2-$(LIBXML2_VERSION)
LIBXML2_SUFFIX := tar.xz
LIBXML2_SOURCE := $(SRCDIR)/$(LIBXML2).$(LIBXML2_SUFFIX)
--
2.34.1
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [ptxdist] [APPLIED] libxml2: Version bump. 2.10.2 -> 2.10.3
2022-10-20 12:49 [ptxdist] [PATCH] libxml2: Version bump. 2.10.2 -> 2.10.3 Christian Melki
@ 2022-10-28 14:44 ` Michael Olbrich
0 siblings, 0 replies; 2+ messages in thread
From: Michael Olbrich @ 2022-10-28 14:44 UTC (permalink / raw)
To: ptxdist; +Cc: Christian Melki
Thanks, applied as f7958126d135935d23893290fe1ed69b2cd17df4.
Michael
[sent from post-receive hook]
On Fri, 28 Oct 2022 16:44:27 +0200, Christian Melki <christian.melki@t2data.com> wrote:
> https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.3
> Plugs CVEs:
> [CVE-2022-40303] Fix integer overflows with XML_PARSE_HUGE
> [CVE-2022-40304] Fix dict corruption caused by entity reference cycles
>
> * Forward patchset. Applies cleanly.
>
> Signed-off-by: Christian Melki <christian.melki@t2data.com>
> Message-Id: <20221020124901.2581876-1-christian.melki@t2data.com>
> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
>
> diff --git a/patches/libxml2-2.10.2/0200-xml2-config-is-not-SYSROOT-aware.patch b/patches/libxml2-2.10.3/0200-xml2-config-is-not-SYSROOT-aware.patch
> similarity index 100%
> rename from patches/libxml2-2.10.2/0200-xml2-config-is-not-SYSROOT-aware.patch
> rename to patches/libxml2-2.10.3/0200-xml2-config-is-not-SYSROOT-aware.patch
> diff --git a/patches/libxml2-2.10.2/series b/patches/libxml2-2.10.3/series
> similarity index 100%
> rename from patches/libxml2-2.10.2/series
> rename to patches/libxml2-2.10.3/series
> diff --git a/rules/libxml2.make b/rules/libxml2.make
> index be6e9d60a279..16df57460164 100644
> --- a/rules/libxml2.make
> +++ b/rules/libxml2.make
> @@ -16,8 +16,8 @@ PACKAGES-$(PTXCONF_LIBXML2) += libxml2
> #
> # Paths and names
> #
> -LIBXML2_VERSION := 2.10.2
> -LIBXML2_MD5 := 5ffd0cd047056d5699b3363c635582bc
> +LIBXML2_VERSION := 2.10.3
> +LIBXML2_MD5 := f9edac7fac232b3657a003fd9a5bbe42
> LIBXML2 := libxml2-$(LIBXML2_VERSION)
> LIBXML2_SUFFIX := tar.xz
> LIBXML2_SOURCE := $(SRCDIR)/$(LIBXML2).$(LIBXML2_SUFFIX)
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2022-10-28 14:45 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-10-20 12:49 [ptxdist] [PATCH] libxml2: Version bump. 2.10.2 -> 2.10.3 Christian Melki
2022-10-28 14:44 ` [ptxdist] [APPLIED] " Michael Olbrich
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox