Skip to content
Commit ac4476e6 authored by Ranjitsinh Rathod's avatar Ranjitsinh Rathod Committed by Steve Sakoman
Browse files

expat: Fix CVE-2022-43680 for expat 

Add a patch to fix CVE-2022-43680 issue where use-after free caused by
overeager destruction of a shared DTD in XML_ExternalEntityParserCreate
in out-of-memory situations
Link: https://nvd.nist.gov/vuln/detail/CVE-2022-43680



Signed-off-by: default avatarRanjitsinh Rathod <ranjitsinh.rathod@kpit.com>
Signed-off-by: default avatarSteve Sakoman <steve@sakoman.com>
parent 1d36df9c
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment