expat: fix CVE-2022-25236

Backport patches to fix CVE-2022-25236 for expat. CVE: CVE-2022-25236 Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
author: Kai Kang <kai.kang@windriver.com> 2022-03-11 21:58:35 +0800
committer: Anuj Mittal <anuj.mittal@intel.com> 2022-03-15 23:00:09 +0800
commit: fd0271ee4ff3a45f7c04219fc7571db66fcefb10 (patch)
tree: 41afa605047671f7c2f107282e8d127c57230fb9 /meta/recipes-core/expat/expat_2.2.10.bb
parent: 60dd7d2deeda838346f30b6f8de28dfac7efac0d (diff)
download: openembedded-core-contrib-fd0271ee4ff3a45f7c04219fc7571db66fcefb10.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-core/expat/expat_2.2.10.bb b/meta/recipes-core/expat/expat_2.2.10.bb
index 0b3331981c..f99fa7edb6 100644
--- a/meta/recipes-core/expat/expat_2.2.10.bb
+++ b/meta/recipes-core/expat/expat_2.2.10.bb
@@ -18,6 +18,8 @@ SRC_URI = "https://github.com/libexpat/libexpat/releases/download/R_${VERSION_TA
            file://CVE-2022-23852.patch \
            file://CVE-2022-23990.patch \
            file://CVE-2022-25235.patch \
+           file://CVE-2022-25236-1.patch \
+           file://CVE-2022-25236-2.patch \
            "
 
 UPSTREAM_CHECK_URI = "https://github.com/libexpat/libexpat/releases/"
author	Kai Kang <kai.kang@windriver.com>	2022-03-11 21:58:35 +0800
committer	Anuj Mittal <anuj.mittal@intel.com>	2022-03-15 23:00:09 +0800
commit	fd0271ee4ff3a45f7c04219fc7571db66fcefb10 (patch)
tree	41afa605047671f7c2f107282e8d127c57230fb9 /meta/recipes-core/expat/expat_2.2.10.bb
parent	60dd7d2deeda838346f30b6f8de28dfac7efac0d (diff)
download	openembedded-core-contrib-fd0271ee4ff3a45f7c04219fc7571db66fcefb10.tar.gz