An XML parser library
e7a9f5d2e1
Backport upstream PR #1216 to fix CVE-2026-45186, which resolves a quadratic runtime issue in attribute collision detection. The patch introduces ELEMENT_TYPE.defaultAttsNames in xmlparse.c and adds 7 new regression test cases for duplicate attribute name handling. Test changes were adapted from upstream's split test files to the 2.5.0 runtests.c layout. CVE: CVE-2026-45186 Upstream patches: - https://github.com/libexpat/libexpat/pull/1216.patch Resolves: RHEL-177979 This commit was backported by Ymir, a Red Hat Enterprise Linux software maintenance AI agent. Assisted-by: Ymir |
||
|---|---|---|
| .fmf | ||
| .gitignore | ||
| ci.fmf | ||
| expat-2.5.0-CVE-2023-52425.patch | ||
| expat-2.5.0-CVE-2024-8176.patch | ||
| expat-2.5.0-CVE-2024-28757.patch | ||
| expat-2.5.0-CVE-2024-45490.patch | ||
| expat-2.5.0-CVE-2024-45491.patch | ||
| expat-2.5.0-CVE-2024-45492.patch | ||
| expat-2.5.0-CVE-2024-50602.patch | ||
| expat-2.5.0-CVE-2025-59375.patch | ||
| expat-2.5.0-CVE-2026-45186.patch | ||
| expat.spec | ||
| gating.yaml | ||
| plans.fmf | ||
| sources | ||