Bug 282637
| Summary: | textproc/expat2: Update to 2.6.4 | ||||||
|---|---|---|---|---|---|---|---|
| Product: | Ports & Packages | Reporter: | Daniel Engberg <diizzy> | ||||
| Component: | Individual Port(s) | Assignee: | Daniel Engberg <diizzy> | ||||
| Status: | Closed FIXED | ||||||
| Severity: | Affects Only Me | CC: | diizzy | ||||
| Priority: | --- | Flags: | bugzilla:
maintainer-feedback?
(desktop) diizzy: exp-run? |
||||
| Version: | Latest | ||||||
| Hardware: | Any | ||||||
| OS: | Any | ||||||
| URL: | https://github.com/libexpat/libexpat/blob/R_2_6_4/expat/Changes | ||||||
| Attachments: |
|
||||||
Hi, I'd like to require an exp-run Best regards, Daniel require --> request Sorry :/ I see those new failures but I am not sure they are related to the update: https://pkg-status.freebsd.org/gohan04/data/141amd64-default-foo/2024-11-09_09h17m18s/logs/openjdk11-11.0.24+8.1_1.log https://pkg-status.freebsd.org/gohan04/data/141amd64-default-foo/2024-11-09_09h17m18s/logs/openjdk11-jre-11.0.24+8.1_1.log https://pkg-status.freebsd.org/gohan04/data/141amd64-default-foo/2024-11-09_09h17m18s/logs/dotnet-8.0.6.log https://pkg-status.freebsd.org/gohan04/data/141amd64-default-foo/2024-11-09_09h17m18s/logs/lxqt-wayland-session-0.1.0.log A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=228c77f4f8f40583cec85b5ac838c941414dbc67 commit 228c77f4f8f40583cec85b5ac838c941414dbc67 Author: Daniel Engberg <diizzy@FreeBSD.org> AuthorDate: 2024-12-01 10:52:22 +0000 Commit: Daniel Engberg <diizzy@FreeBSD.org> CommitDate: 2024-12-01 10:52:27 +0000 textproc/expat2: Update to 2.6.4 Fixes CVE-2024-50602 Changelog: https://github.com/libexpat/libexpat/blob/R_2_6_4/expat/Changes PR: 282637 Approved by: portmgr (maintainer timeout, 2+ weeks) and discussed with fluffy on Matrix textproc/expat2/Makefile | 4 ++-- textproc/expat2/distinfo | 6 +++--- textproc/expat2/pkg-plist | 2 +- 3 files changed, 6 insertions(+), 6 deletions(-) Antoine, thanks for the exp-run! I forgot to add that to the commit msg. |
Created attachment 255040 [details] Patch for expat2 Fixes CVE-2024-50602 Compile and runtime tested on FreeBSD 14.1-RELEASE (amd64) (make, make check-plist, make test) Poudriere testport OK 13.3-RELEASE (amd64) Poudriere testport OK 14.1-RELEASE (amd64)