Steve Sakoman ae9b6db2a1 expat: fix CVE-2021-46143 ...

In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an
integer overflow exists for m_groupSize.

Backport patch from:
85ae9a2d7d

CVE: CVE-2021-46143
(From OE-Core rev: babe185972eb71058762ca20c349ba2651d0f73d)

Signed-off-by: Steve Sakoman <steve@sakoman.com>
(cherry picked from commit 41a65d27e4ecdc11977e2944d8af2f51c48f32ec)
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

2022-01-31 21:56:01 +00:00

..

classes

cve-check: add lockfile to task

2022-01-25 12:07:01 +00:00

conf

gcc: upgrade to gcc-10.3 version

2022-01-31 21:56:01 +00:00

files

sdk: Decouple default install path from built in path

2021-09-09 10:19:42 +01:00

lib

selftest: reproducible: Set maximum report size

2022-01-25 12:07:01 +00:00

recipes-bsp

grub2: fix CVE-2021-3981

2022-01-14 09:34:04 +00:00

recipes-connectivity

socat: update SRC_URI

2022-01-31 21:56:01 +00:00

recipes-core

expat: fix CVE-2021-46143

2022-01-31 21:56:01 +00:00

recipes-devtools

gcc: upgrade to gcc-10.3 version

2022-01-31 21:56:01 +00:00

recipes-extended

pigz: fix one failure of command "unpigz -l"

2022-01-31 21:56:01 +00:00

recipes-gnome

meta: add explicit branch and protocol to SRC_URI

2021-11-21 11:40:35 +00:00

recipes-graphics

xserver-xorg: whitelist two CVEs

2022-01-25 12:07:01 +00:00

recipes-kernel

linux-yocto/5.4: update to v5.4.172

2022-01-31 21:56:01 +00:00

recipes-multimedia

libsndfile1: fix CVE-2021-4156

2022-01-25 12:07:01 +00:00

recipes-rt

meta/recipes-rt: Add HOMEPAGE / DESCRIPTION

2021-03-06 22:39:04 +00:00

recipes-sato

webkitgtk: fix fix CVE-2021-42762

2022-01-14 09:34:04 +00:00

recipes-support

curl: Backport CVE fixes

2022-01-25 12:07:01 +00:00

site

site/elfutils/libunistring: Drop patching for iconv and set in site file

2021-03-23 22:51:25 +00:00

COPYING.MIT

…

recipes.txt

Remove LSB support

2019-08-29 14:05:12 +01:00