aboutsummaryrefslogtreecommitdiff
path: root/package/expat
diff options
context:
space:
mode:
authorGravatar Gustavo Zacarias <gustavo@zacarias.com.ar>2012-03-06 09:10:43 -0300
committerGravatar Peter Korsgaard <jacmet@sunsite.dk>2012-03-06 16:11:34 +0100
commite482a430ec4f8507f5a5caf06b3e72f4c30edfea (patch)
treef8eea6a7037fd0c2e1146cca763d8c70ccc1fcc2 /package/expat
parent3311e41dc0f36967bbadc972839269197c5e88a1 (diff)
downloadbuildroot-e482a430ec4f8507f5a5caf06b3e72f4c30edfea.tar.gz
buildroot-e482a430ec4f8507f5a5caf06b3e72f4c30edfea.tar.bz2
expat: add security patch for CVE-2009-3560
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <jacmet@sunsite.dk>
Diffstat (limited to 'package/expat')
-rw-r--r--package/expat/expat-2.0.1-CVE-2009-3560.patch14
1 files changed, 14 insertions, 0 deletions
diff --git a/package/expat/expat-2.0.1-CVE-2009-3560.patch b/package/expat/expat-2.0.1-CVE-2009-3560.patch
new file mode 100644
index 0000000000..7cadc47b07
--- /dev/null
+++ b/package/expat/expat-2.0.1-CVE-2009-3560.patch
@@ -0,0 +1,14 @@
+http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3560
+
+--- a/lib/xmlparse.c
++++ b/lib/xmlparse.c
+@@ -3703,6 +3703,9 @@ doProlog(XML_Parser parser,
+ return XML_ERROR_UNCLOSED_TOKEN;
+ case XML_TOK_PARTIAL_CHAR:
+ return XML_ERROR_PARTIAL_CHAR;
++ case -XML_TOK_PROLOG_S:
++ tok = -tok;
++ break;
+ case XML_TOK_NONE:
+ #ifdef XML_DTD
+ /* for internal PE NOT referenced between declarations */