Overview

Request 1014116 accepted

- Update to version 2.10.3 (bsc#1204366, CVE-2022-40303, bsc#1204367, CVE-2022-40304):
+ Security:
- [CVE-2022-40304] Fix dict corruption caused by entity
reference cycles
- [CVE-2022-40303] Fix integer overflows with XML_PARSE_HUGE
- Fix overflow check in SAX2.c
+ Build system: cmake: Set SOVERSION
- Rebase patches with quilt.

Request History
Dirk Mueller's avatar

dirkmueller created request

- Update to version 2.10.3 (bsc#1204366, CVE-2022-40303, bsc#1204367, CVE-2022-40304):
+ Security:
- [CVE-2022-40304] Fix dict corruption caused by entity
reference cycles
- [CVE-2022-40303] Fix integer overflows with XML_PARSE_HUGE
- Fix overflow check in SAX2.c
+ Build system: cmake: Set SOVERSION
- Rebase patches with quilt.

Factory Auto's avatar

factory-auto added opensuse-review-team as a reviewer

Please review sources

Factory Auto's avatar

factory-auto accepted review

Check script succeeded

Saul Goodman's avatar

licensedigger accepted review

ok

Staging Bot's avatar

staging-bot set openSUSE:Factory:Staging:E as a staging project

Being evaluated by staging project "openSUSE:Factory:Staging:E"

Staging Bot's avatar

staging-bot accepted review

Picked "openSUSE:Factory:Staging:E"

Dominique Leuenberger's avatar

dimstar accepted review

Dominique Leuenberger's avatar

dimstar_suse accepted review

Staging Project openSUSE:Factory:Staging:E got accepted.

Dominique Leuenberger's avatar

dimstar_suse approved review

Staging Project openSUSE:Factory:Staging:E got accepted.

Dominique Leuenberger's avatar

dimstar_suse accepted request

Staging Project openSUSE:Factory:Staging:E got accepted.

openSUSE Build Service is sponsored by
Places