import UBI libxslt-1.1.32-6.2.el8_10

2025-06-09 14:55:56 +00:00
2 changed files with 1067 additions and 1 deletions
--- a/SOURCES/libxslt-1.1.32-CVE-2023-40403.patch
+++ b/SOURCES/libxslt-1.1.32-CVE-2023-40403.patch
--- a/SPECS/libxslt.spec
+++ b/SPECS/libxslt.spec
@ -8,7 +8,7 @@
 Name:           libxslt
 Summary:        Library providing the Gnome XSLT engine
 Version:        1.1.32
-Release:        6.1%{?dist}
+Release:        6.2%{?dist}

 License:        MIT
 URL:            http://xmlsoft.org/XSLT
@ -37,6 +37,8 @@ Patch5:         libxslt-1.1.32-unexpected-rvt-flag.patch
 Patch6:         libxslt-1.1.32-CVE-2024-55549.patch
 # https://issues.redhat.com/browse/RHEL-83492
 Patch7:         libxslt-1.1.32-CVE-2025-24855.patch
+# https://issues.redhat.com/browse/RHEL-89374
+Patch8:         libxslt-1.1.32-CVE-2023-40403.patch

 %description
 This C library allows to transform XML files into other XML files
@ -141,6 +143,9 @@ rm -vrf %{buildroot}%{_docdir}
 %endif # with python2

 %changelog
+* Tue Jun 03 2025 David King <dking@redhat.com> - 1.1.32-6.2
+- Fix CVE-2023-40403 (aka 2022-4909) (RHEL-89374)
+
 * Fri Apr 04 2025 David King <dking@redhat.com> - 1.1.32-6.1
 - Fix CVE-2024-55549 (RHEL-83506)
 - Fix CVE-2025-24855 (RHEL-83492)