From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail02.haj.ipfire.org (localhost [IPv6:::1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4fbW6C0Xqkz3089 for ; Wed, 18 Mar 2026 14:14:11 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519) (Client CN "mail01.haj.ipfire.org", Issuer "R12" (not verified)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4fbW674mLXz333n for ; Wed, 18 Mar 2026 14:14:07 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4fbW666chZz475; Wed, 18 Mar 2026 14:14:06 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1773843247; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=a9P/51tf+WJq50N1cgs2q4q/fe8dOPCkbFtuDd5a7Eg=; b=Df2qqfGVeJ2TlBZMQLLbdJJknBvme1Glu98QhzWgACQIHtyln/COePX/feq9q6XKefeG8k KqGbJQRnMdQmQsDw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1773843247; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=a9P/51tf+WJq50N1cgs2q4q/fe8dOPCkbFtuDd5a7Eg=; b=TD9TunSWtmeNAo7yvtcGZltKm8+WK6dVBd3H007NQsLPUUz8I3KcKae8+5CZa17TB8H1TA ErG0uFPGdqXAEu8z1poIicznrGTKN/xZn3QTHayisAlbZDOA7YnlFtFo+lkVtXe0gB/VVp YHeci5CyFdTs63f5AFFn9PSlD545l901hsHl8u9NTKlqWsUpbvbdf/o1M8d02Ol6GZ9gdV EXG+cH2Opn3FIovviEl9+WDIaW/zONUlbfbWVgYlgu/31gwraMlZuN2eCQih/Z2MMrc9Ft CQcXhpIi6RH34UWkd5bKxSc+VGIDMBs/OKPykyg0Vcym2z2zmD9Z0QLUuaBGEw== From: Adolf Belka To: development@lists.ipfire.org Cc: Adolf Belka Subject: [PATCH] expat: Update to version 2.7.5 Date: Wed, 18 Mar 2026 15:14:01 +0100 Message-ID: <20260318141401.3418400-2-adolf.belka@ipfire.org> In-Reply-To: <20260318141401.3418400-1-adolf.belka@ipfire.org> References: <20260318141401.3418400-1-adolf.belka@ipfire.org> Precedence: list List-Id: List-Subscribe: , List-Unsubscribe: , List-Post: List-Help: Sender: Mail-Followup-To: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit - Update from version 2.7.4 to 2.7.5 - Update of rootfile - 3 CVE fixes applied. - Changelog 2.7.5 Security fixes: #1158 CVE-2026-32776 -- Fix NULL function pointer dereference for empty external parameter entities; it takes use of both functions XML_ExternalEntityParserCreate and XML_SetParamEntityParsing for an application to be vulnerable. #1161 #1162 CVE-2026-32777 -- Protect from XML_TOK_INSTANCE_START infinite loop in function entityValueProcessor; it takes use of both functions XML_ExternalEntityParserCreate and XML_SetParamEntityParsing for an application to be vulnerable. #1163 CVE-2026-32778 -- Fix NULL dereference in function setContext on retry after an earlier ouf-of-memory condition; it takes use of function XML_ParserCreateNS or XML_ParserCreate_MM for an application to be vulnerable. #1160 Three more unfixed vulnerabilities left Other changes: #1146 #1147 Autotools: Fix condition for symbol versioning check, in particular when compiling with slibtool (not libtool) #1156 Address Cppcheck >=2.20.0 warnings #1153 tests: Make test_buffer_can_grow_to_max work for MinGW on Ubuntu 24.04 #1157 #1159 Version info bumped from 12:2:11 (libexpat*.so.1.11.2) to 12:3:11 (libexpat*.so.1.11.3); see https://verbump.de/ for what these numbers do Infrastructure: #1148 CI: Fix FreeBSD and Solaris CI #1149 CI: Bump to WASI SDK 30 #1153 CI: Adapt to breaking changes with Ubuntu 22.04 #1156 CI: Adapt to breaking changes in Cppcheck Signed-off-by: Adolf Belka --- config/rootfiles/common/expat | 20 ++++++++++---------- lfs/expat | 4 ++-- 2 files changed, 12 insertions(+), 12 deletions(-) diff --git a/config/rootfiles/common/expat b/config/rootfiles/common/expat index 0088ac732..93b23090b 100644 --- a/config/rootfiles/common/expat +++ b/config/rootfiles/common/expat @@ -2,21 +2,21 @@ #usr/include/expat.h #usr/include/expat_config.h #usr/include/expat_external.h -#usr/lib/cmake/expat-2.7.4 -#usr/lib/cmake/expat-2.7.4/expat-config-version.cmake -#usr/lib/cmake/expat-2.7.4/expat-config.cmake -#usr/lib/cmake/expat-2.7.4/expat-noconfig.cmake -#usr/lib/cmake/expat-2.7.4/expat.cmake +#usr/lib/cmake/expat-2.7.5 +#usr/lib/cmake/expat-2.7.5/expat-config-version.cmake +#usr/lib/cmake/expat-2.7.5/expat-config.cmake +#usr/lib/cmake/expat-2.7.5/expat-noconfig.cmake +#usr/lib/cmake/expat-2.7.5/expat.cmake #usr/lib/libexpat.la #usr/lib/libexpat.so usr/lib/libexpat.so.1 -usr/lib/libexpat.so.1.11.2 +usr/lib/libexpat.so.1.11.3 #usr/lib/pkgconfig/expat.pc #usr/share/doc/expat -#usr/share/doc/expat-2.7.4 -#usr/share/doc/expat-2.7.4/ok.min.css -#usr/share/doc/expat-2.7.4/reference.html -#usr/share/doc/expat-2.7.4/style.css +#usr/share/doc/expat-2.7.5 +#usr/share/doc/expat-2.7.5/ok.min.css +#usr/share/doc/expat-2.7.5/reference.html +#usr/share/doc/expat-2.7.5/style.css #usr/share/doc/expat/AUTHORS #usr/share/doc/expat/changelog #usr/share/man/man1/xmlwf.1 diff --git a/lfs/expat b/lfs/expat index f0803961d..3f00072bd 100644 --- a/lfs/expat +++ b/lfs/expat @@ -24,7 +24,7 @@ include Config -VER = 2.7.4 +VER = 2.7.5 THISAPP = expat-$(VER) DL_FILE = $(THISAPP).tar.xz @@ -40,7 +40,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_BLAKE2 = 167518530b3e88f7ecb6aecc5eb54a41a740f7184732dd72fafe9bfdcda0b94c537331543744b8b0eaf918d5f0b82dbe311ee4192a592b74e5d65dc577ed8f6a +$(DL_FILE)_BLAKE2 = 97adfd7cb056066e3a3ec9ef1808d298bc935eb0d17ffca23bcf75810290c8ed8377b21d67b2e1b4a27773057f49f95da9a8f2e368d02d266c980bebbeb1b009 install : $(TARGET) -- 2.53.0