Accepting request 956174 from home:david.anes:branches:devel:libraries:c_c++

- update to 2.4.6 (bsc#1196168, CVE-2022-25313): * Bug fixes: - Fix a regression introduced by the fix for CVE-2022-25313 in release 2.4.5 that affects applications that (1) call function XML_SetElementDeclHandler and (2) are parsing XML that contains nested element declarations (e.g. "<!ELEMENT junk ((bar|foo|xyz+), zebra*)>"). - Version info bumped from 9:5:8 to 9:6:8; see https://verbump.de/ for what these numbers do. OBS-URL: https://build.opensuse.org/request/show/956174 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/expat?expand=0&rev=94
2022-02-21 08:59:54 +00:00
parent 4587d04dec
commit aadd52c635
4 changed files with 34 additions and 2 deletions
--- a/expat.changes
+++ b/expat.changes
@@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Sun Feb 20 19:48:53 UTC 2022 - David Anes <david.anes@suse.com>
+
+- update to 2.4.6 (bsc#1196168, CVE-2022-25313):
+  * Bug fixes:
+    - Fix a regression introduced by the fix for CVE-2022-25313
+      in release 2.4.5 that affects applications that (1)
+      call function XML_SetElementDeclHandler and (2) are
+      parsing XML that contains nested element declarations
+      (e.g. "<!ELEMENT junk ((bar|foo|xyz+), zebra*)>").
+    - Version info bumped from 9:5:8 to 9:6:8;
+      see https://verbump.de/ for what these numbers do.
+
 -------------------------------------------------------------------
 Sat Feb 19 09:21:21 UTC 2022 - David Anes <david.anes@suse.com>