Accepting request 1133997 from home:aschnell:branches:devel:libraries:c_c++

added CVE numbers to sync Factory with SLE OBS-URL: https://build.opensuse.org/request/show/1133997 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/tinyxml?expand=0&rev=23
2023-12-19 10:31:31 +00:00
parent 399e6d2e69
commit 90e1167a31
1 changed files with 2 additions and 1 deletions
--- a/tinyxml.changes
+++ b/tinyxml.changes
@@ -2,7 +2,7 @@
 Fri Dec 15 15:02:44 CET 2023 - aschnell@suse.com

 - avoid assertion on certain malformed input including null-byte
-  (bsc#1218040)
+  (bsc#1218040) (CVE-2023-34194)
 - added tinyxml-null-byte-assert.patch

 -------------------------------------------------------------------
@@ -10,6 +10,7 @@ Mon Oct 25 14:32:25 UTC 2021 - Christian Vögl <christian.voegl@suse.com>

 - Added tinyxml-2.62-fix-infinite-loop.patch to fix an infinite loop
  for inputs containing the sequence 0xEF0x00 (bsc#1191576)
+  (CVE-2021-42260)

 -------------------------------------------------------------------
 Sun May 13 12:19:58 UTC 2012 - lists.nico.k@googlemail.com