#
0c65ac1d |
| 12-Nov-2022 |
Antonio Huete Jimenez <tuxillo@quantumachine.net> |
vendor/expat: upgrade from 2.1.0 to 2.5.0
Summary of notable changes:
- Detect overflow from len=INT_MAX call to XML_Parse - Fix a dangling pointer issue related to realloc - Fix copying of part
vendor/expat: upgrade from 2.1.0 to 2.5.0
Summary of notable changes:
- Detect overflow from len=INT_MAX call to XML_Parse - Fix a dangling pointer issue related to realloc - Fix copying of partial characters for UTF-8 input - Avoid doing arithmetic with NULL pointers in XML_GetBuffer - Fix reading uninitialized variable during parsing - CVE-2015-1283 - Multiple integer overflows in XML_GetBuffer - Fix potential null pointer dereference - Following CVEs were handled (not a complete list) CVE-2016-0718, CVE-2016-4472, CVE-2016-5300, CVE-2012-0876 CVE-2012-6702, CVE-2017-9233, CVE-2016-9063, CVE-2018-20843 CVE-2019-15903,CVE-2013-0340/CWE-776, CVE-2021-45960 CVE-2021-46143, CVE-2022-22822 to CVE-2022-22827 CVE-2022-23852, CVE-2022-23990, CVE-2022-43680
For detailed list of all changes, bugfixes and improvements, see Changes.
show more ...
|
Revision tags: v6.2.2, v6.2.1, v6.2.0, v6.3.0, v6.0.1, v6.0.0, v6.0.0rc1, v6.1.0, v5.8.3, v5.8.2, v5.8.1, v5.8.0, v5.9.0, v5.8.0rc1, v5.6.3, v5.6.2, v5.6.1, v5.6.0, v5.6.0rc1, v5.7.0, v5.4.3, v5.4.2, v5.4.1, v5.4.0, v5.5.0, v5.4.0rc1, v5.2.2, v5.2.1, v5.2.0, v5.3.0, v5.2.0rc, v5.0.2, v5.0.1, v5.0.0, v5.0.0rc2, v5.1.0, v5.0.0rc1, v4.8.1, v4.8.0, v4.6.2, v4.9.0, v4.8.0rc, v4.6.1, v4.6.0, v4.6.0rc2, v4.6.0rc, v4.7.0, v4.4.3, v4.4.2, v4.4.1, v4.4.0, v4.5.0, v4.4.0rc, v4.2.4, v4.3.1, v4.2.3, v4.2.1, v4.2.0, v4.0.6, v4.3.0, v4.2.0rc, v4.0.5, v4.0.4, v4.0.3, v4.0.2, v4.0.1, v4.0.0, v4.0.0rc3, v4.0.0rc2, v4.0.0rc, v4.1.0, v3.8.2, v3.8.1, v3.6.3, v3.8.0, v3.8.0rc2, v3.9.0, v3.8.0rc, v3.6.2, v3.6.1, v3.6.0, v3.7.1, v3.6.0rc, v3.7.0, v3.4.3, v3.4.2, v3.4.0, v3.4.1 |
|
#
fd436345 |
| 23-Apr-2013 |
John Marino <draco@marino.st> |
Upgrade Expat from 2.0.1 to 2.1.0 on the vendor branch
|
Revision tags: v3.4.0rc, v3.5.0, v3.2.2, v3.2.1, v3.2.0, v3.3.0, v3.0.3, v3.0.2, v3.0.1, v3.1.0, v3.0.0 |
|
#
86d7f5d3 |
| 26-Nov-2011 |
John Marino <draco@marino.st> |
Initial import of binutils 2.22 on the new vendor branch
Future versions of binutils will also reside on this branch rather than continuing to create new binutils branches for each new version.
|
Revision tags: v2.12.0, v2.13.0, v2.10.1, v2.11.0, v2.10.0, v2.9.1, v2.8.2, v2.8.1, v2.8.0, v2.9.0, v2.6.3, v2.7.3, v2.6.2, v2.7.2, v2.7.1, v2.6.1, v2.7.0, v2.6.0 |
|
#
fb9a9224 |
| 23-Feb-2010 |
Matthew Dillon <dillon@apollo.backplane.com> |
Import expat-2.0.1
|