>Number: 157446 >Category: misc >Synopsis: base expat needs minor fixes from vendor cvs >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Mon May 30 23:40:09 UTC 2011 >Closed-Date: >Last-Modified: >Originator: Steve Wills >Release: >Organization: >Environment: >Description: While looking into PR ports/150968 I discovered some minor bugs in the base expat that also are not patched. In particular, there's a better fix for CVE-2009-3560. See:
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?view=log In particular rev 1.166 and there's another issue which was reported here: http://mail.libexpat.org/pipermail/expat-bugs/2010-February/002870.html which was fixed in 1.167. This patch might do the trick: http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?r1=1.164&r2=1.167&view=patch >How-To-Repeat: >Fix: >Release-Note: >Audit-Trail: >Unformatted: _______________________________________________ freebsd-bugs@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-bugs To unsubscribe, send any mail to "freebsd-bugs-unsubscr...@freebsd.org"
