diff options
| author | Francesco Colista <fcolista@alpinelinux.org> | 2017-06-22 09:34:47 +0000 |
|---|---|---|
| committer | Francesco Colista <fcolista@alpinelinux.org> | 2017-06-22 09:34:47 +0000 |
| commit | 3fd4be9cec4b390da969433ea9c8eee838643ea9 (patch) | |
| tree | 6304d029ead1cb8b851be5c4bb5c979f06f9dab5 | |
| parent | f952adf5ff909e9fb868e2c5a8ab0558be22ee68 (diff) | |
main/expat: security fixes (CVE-2017-9233)
| -rw-r--r-- | main/expat/APKBUILD | 10 | ||||
| -rw-r--r-- | main/expat/CVE-2017-9233.patch | 29 |
2 files changed, 35 insertions, 4 deletions
diff --git a/main/expat/APKBUILD b/main/expat/APKBUILD index 217fc597969..4d621d39966 100644 --- a/main/expat/APKBUILD +++ b/main/expat/APKBUILD @@ -1,7 +1,7 @@ # Maintainer: Carlo Landmeter <clandmeter@gmail.com> pkgname=expat pkgver=2.2.0 -pkgrel=0 +pkgrel=1 pkgdesc="An XML Parser library written in C" url="http://www.libexpat.org/" arch="all" @@ -9,6 +9,7 @@ license='MIT' depends= makedepends= source="http://downloads.sourceforge.net/project/expat/expat/$pkgver/expat-$pkgver.tar.bz2 + CVE-2017-9233.patch " # secfixes: # 2.1.1-r1: @@ -18,6 +19,8 @@ source="http://downloads.sourceforge.net/project/expat/expat/$pkgver/expat-$pkgv # 2.2.0-r0: # - CVE-2012-6702 # - CVE-2016-5300 +# 2.2.0-r1: +# - CVE-2017-9233 subpackages="$pkgname-dev $pkgname-doc" @@ -38,6 +41,5 @@ package() { cd "$builddir" make DESTDIR="$pkgdir/" install || return 1 } -md5sums="2f47841c829facb346eb6e3fab5212e2 expat-2.2.0.tar.bz2" -sha256sums="d9e50ff2d19b3538bd2127902a89987474e1a4db8e43a66a4d1a712ab9a504ff expat-2.2.0.tar.bz2" -sha512sums="2be1a6eea87b439374bfacb1fbb8e814fd8a085d5dfd3ca3be69d1af29b5dc93d36cbdec5f6843ca6d5910843c7ffbc498adc2a561b9dcece488edf3c6f8c7c8 expat-2.2.0.tar.bz2" +sha512sums="2be1a6eea87b439374bfacb1fbb8e814fd8a085d5dfd3ca3be69d1af29b5dc93d36cbdec5f6843ca6d5910843c7ffbc498adc2a561b9dcece488edf3c6f8c7c8 expat-2.2.0.tar.bz2 +0c92dd7dbec845966fc1ff3d1d7b137c17b5045f06d092ff730eb19cfe5e9c6b76b89bf532d20329a0a74fd8eb100f08bbea1083d17e53b2b96e9db1786f1a68 CVE-2017-9233.patch" diff --git a/main/expat/CVE-2017-9233.patch b/main/expat/CVE-2017-9233.patch new file mode 100644 index 00000000000..1ddbc755d84 --- /dev/null +++ b/main/expat/CVE-2017-9233.patch @@ -0,0 +1,29 @@ +From c4bf96bb51dd2a1b0e185374362ee136fe2c9d7f Mon Sep 17 00:00:00 2001 +From: Rhodri James <rhodri@kynesim.co.uk> +Date: Wed, 14 Jun 2017 23:45:07 +0200 +Subject: [PATCH] xmlparse.c: Fix external entity infinite loop bug + (CVE-2017-9233) + +--- + expat/lib/xmlparse.c | 8 ++++++++ + 1 file changed, 8 insertions(+) + +diff --git a/lib/xmlparse.c b/lib/xmlparse.c +index 7818f8d..2114596 100644 +--- a/lib/xmlparse.c ++++ b/lib/xmlparse.c +@@ -3981,6 +3981,14 @@ entityValueInitProcessor(XML_Parser parser, + *nextPtr = next; + return XML_ERROR_NONE; + } ++ /* If we get this token, we have the start of what might be a ++ normal tag, but not a declaration (i.e. it doesn't begin with ++ "<!"). In a DTD context, that isn't legal. ++ */ ++ else if (tok == XML_TOK_INSTANCE_START) { ++ *nextPtr = next; ++ return XML_ERROR_SYNTAX; ++ } + start = next; + eventPtr = start; + } |