[nanbield,1/7] libxml2: upgrade to 2.11.7

Message ID	20240311083954.418271-1-chee.yang.lee@intel.com
State	Accepted
Delegated to:	Steve Sakoman
Headers	show Return-Path: <chee.yang.lee@intel.com> ip: 198.175.65.19, mailfrom: chee.yang.lee@intel.com) From: chee.yang.lee@intel.com To: openembedded-core@lists.openembedded.org Subject: [nanbield][PATCH 1/7] libxml2: upgrade to 2.11.7 Date: Mon, 11 Mar 2024 16:39:48 +0800 Message-Id: <20240311083954.418271-1-chee.yang.lee@intel.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[nanbield,1/7] libxml2: upgrade to 2.11.7 \| expand [nanbield,1/7] libxml2: upgrade to 2.11.7 [nanbield,2/7] openssl: upgrade to 3.1.5 [nanbield,3/7] python3-jinja2: upgrade 3.1.2 -> 3.1.3 [nanbield,4/7] bind: upgrade 9.18.20 -> 9.18.21 [nanbield,5/7] bind: Upgrade 9.18.21 -> 9.18.24 [nanbield,6/7] gnutls: upgrade 3.8.1 -> 3.8.2 [nanbield,7/7] gnutls: Upgrade 3.8.2 -> 3.8.3

Message ID

20240311083954.418271-1-chee.yang.lee@intel.com

State

Accepted

Delegated to:

Steve Sakoman

Headers

From: chee.yang.lee@intel.com
To: openembedded-core@lists.openembedded.org
Subject: [nanbield][PATCH 1/7] libxml2: upgrade to 2.11.7
Date: Mon, 11 Mar 2024 16:39:48 +0800
Message-Id: <20240311083954.418271-1-chee.yang.lee@intel.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[nanbield,1/7] libxml2: upgrade to 2.11.7 | expand

Commit Message

Lee, Chee Yang March 11, 2024, 8:39 a.m. UTC

From: Lee Chee Yang <chee.yang.lee@intel.com>

libxml2 2.11.7
Security
[CVE-2024-25062] xmlreader: Don't expand XIncludes when backtracking

libxml2 2.11.6
Regressions
threads: Fix --with-thread-alloc
xinclude: Fix 'last' pointer in xmlXIncludeCopyNode

Bug fixes
parser: Fix potential use-after-free in xmlParseCharDataInternal

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
---
 .../libxml/{libxml2_2.11.5.bb => libxml2_2.11.7.bb}             | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-core/libxml/{libxml2_2.11.5.bb => libxml2_2.11.7.bb} (97%)

diff --git a/meta/recipes-core/libxml/libxml2_2.11.5.bb b/meta/recipes-core/libxml/libxml2_2.11.7.bb
similarity index 97%
rename from meta/recipes-core/libxml/libxml2_2.11.5.bb
rename to meta/recipes-core/libxml/libxml2_2.11.7.bb
index fc82912df2..482ce9042d 100644
--- a/meta/recipes-core/libxml/libxml2_2.11.5.bb
+++ b/meta/recipes-core/libxml/libxml2_2.11.7.bb
@@ -18,7 +18,7 @@  SRC_URI += "http://www.w3.org/XML/Test/xmlts20130923.tar;subdir=${BP};name=testt
            file://install-tests.patch \
            "
 
-SRC_URI[archive.sha256sum] = "3727b078c360ec69fa869de14bd6f75d7ee8d36987b071e6928d4720a28df3a6"
+SRC_URI[archive.sha256sum] = "fb27720e25eaf457f94fd3d7189bcf2626c6dccf4201553bc8874d50e3560162"
 SRC_URI[testtar.sha256sum] = "c6b2d42ee50b8b236e711a97d68e6c4b5c8d83e69a2be4722379f08702ea7273"
 
 # Disputed as a security issue, but fixed in d39f780

[nanbield,1/7] libxml2: upgrade to 2.11.7

Commit Message

Patch