rpms/expat
7
0
Fork 0
Code Issues Pull Requests Releases Activity
17 Commits 12 Branches 61 Tags 454 KiB
c8s
Commit Graph

17 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
RHEL Packaging Agent
e7a9f5d2e1 expat: backport CVE-2026-45186 fix (attribute collision check DoS) 
Backport upstream PR #1216 to fix CVE-2026-45186, which
resolves a quadratic runtime issue in attribute collision
detection. The patch introduces ELEMENT_TYPE.defaultAttsNames
in xmlparse.c and adds 7 new regression test cases for
duplicate attribute name handling. Test changes were adapted
from upstream's split test files to the 2.5.0 runtests.c
layout.

CVE: CVE-2026-45186
Upstream patches:
 - https://github.com/libexpat/libexpat/pull/1216.patch
Resolves: RHEL-177979

This commit was backported by Ymir, a Red Hat Enterprise Linux software maintenance AI agent.

Assisted-by: Ymir
 2026-05-28 11:42:32 +00:00
Tomas Korbar
ac83027de5 Rebase to version 2.5.0 
Fix CVE-2025-59375
Resolves: RHEL-114618
 2025-11-19 10:34:09 +01:00
Tomas Korbar
cf942acd36 Fix CVE-2024-8176 
Resolves: RHEL-57477
 2025-04-07 10:30:17 +02:00
Tomas Korbar
00ef654fce Fix CVE-2024-50602 
Resolves: RHEL-65062
 2024-11-08 11:31:01 +01:00
Tomas Korbar
03667dcab4 Rebuild for test reconfiguration 2024-09-11 16:16:52 +02:00
František Hrdina
c40ddad681 Add fmf plans and update gating.yaml 2024-09-11 16:05:14 +02:00
Tomas Korbar
8edb8caaf8 Fix multiple CVEs 
Fix CVE-2024-45492 integer overflow
Fix CVE-2024-45491 Integer Overflow or Wraparound
Fix CVE-2024-45490 Negative Length Parsing Vulnerability
Resolves: RHEL-57505
Resolves: RHEL-57493
Resolves: RHEL-56751
 2024-09-11 15:14:11 +02:00
Tomas Korbar
c237651839 Fix wrongly exposed variables 
Resolves: RHEL-29321
 2024-03-26 12:21:56 +01:00
Tomas Korbar
583bb04447 CVE-2023-52425 expat: parsing large tokens can trigger a denial of service 
Resolves: RHEL-29321
 2024-03-25 14:53:50 +01:00
Troy Dawson
1c28eba836 Bring gating.yaml over from Brew dist-git 
Signed-off-by: Troy Dawson <tdawson@redhat.com>
 2023-03-10 10:36:18 -08:00
James Antill
4ff371396a Import rpm: c8s 2023-02-27 12:56:08 -05:00
CentOS Sources
14f6224105 Auto sync2gitlab import of expat-2.2.5-11.el8.src.rpm 2023-01-10 08:08:47 +00:00
CentOS Sources
0e0364659f Auto sync2gitlab import of expat-2.2.5-10.el8_7.1.src.rpm 2022-11-15 18:11:23 +00:00
CentOS Sources
42574ff956 Auto sync2gitlab import of expat-2.2.5-10.el8.src.rpm 2022-10-06 16:10:21 +00:00
James Antill
79213d2ea8 Auto sync2gitlab import of expat-2.2.5-9.el8.src.rpm 2022-05-31 14:26:23 -04:00
James Antill
05cce4df8b Auto sync2gitlab import of expat-2.2.5-8.el8.src.rpm 2022-05-26 06:50:30 -04:00
James Antill
5797bb6897 Initial c8s branch. 2022-05-26 06:50:21 -04:00