mirror of
https://git.yoctoproject.org/poky
synced 2026-02-14 04:33:03 +01:00
555dadb56e
Upstream-Status: Backport [2b0aac140d]
(From OE-Core rev: 55027bc882cf6cab830f4e4f21fa9a2ffb4ad72e)
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
34 lines
1019 B
Diff
34 lines
1019 B
Diff
From 2b0aac140d739905c7848a42efc60bfe783a39b7 Mon Sep 17 00:00:00 2001
|
|
From: Nick Wellnhofer <wellnhofer@aevum.de>
|
|
Date: Sat, 14 Oct 2023 22:45:54 +0200
|
|
Subject: [PATCH] [CVE-2024-25062] xmlreader: Don't expand XIncludes when
|
|
backtracking
|
|
|
|
Fixes a use-after-free if XML Reader if used with DTD validation and
|
|
XInclude expansion.
|
|
|
|
Fixes #604.
|
|
|
|
Upstream-Status: Backport [https://gitlab.gnome.org/GNOME/libxml2/-/commit/2b0aac140d739905c7848a42efc60bfe783a39b7]
|
|
CVE: CVE-2024-25062
|
|
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
|
|
---
|
|
xmlreader.c | 1 +
|
|
1 file changed, 1 insertion(+)
|
|
|
|
diff --git a/xmlreader.c b/xmlreader.c
|
|
index 979385a13..fefd68e0b 100644
|
|
--- a/xmlreader.c
|
|
+++ b/xmlreader.c
|
|
@@ -1443,6 +1443,7 @@ node_found:
|
|
* Handle XInclude if asked for
|
|
*/
|
|
if ((reader->xinclude) && (reader->in_xinclude == 0) &&
|
|
+ (reader->state != XML_TEXTREADER_BACKTRACK) &&
|
|
(reader->node != NULL) &&
|
|
(reader->node->type == XML_ELEMENT_NODE) &&
|
|
(reader->node->ns != NULL) &&
|
|
--
|
|
GitLab
|
|
|