Commit e482a430 authored by Gustavo Zacarias's avatar Gustavo Zacarias Committed by Peter Korsgaard
Browse files

expat: add security patch for CVE-2009-3560 



Signed-off-by: default avatarGustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: default avatarPeter Korsgaard <jacmet@sunsite.dk>
parent 3311e41d

package/expat/expat-2.0.1-CVE-2009-3560.patch

0 → 100644
+14 −0
Original line number Diff line number Diff line 
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-3560



--- a/lib/xmlparse.c

+++ b/lib/xmlparse.c

@@ -3703,6 +3703,9 @@ doProlog(XML_Parser parser,

         return XML_ERROR_UNCLOSED_TOKEN;

       case XML_TOK_PARTIAL_CHAR:

         return XML_ERROR_PARTIAL_CHAR;

+      case -XML_TOK_PROLOG_S:

+        tok = -tok;

+        break;

       case XML_TOK_NONE:

 #ifdef XML_DTD

         /* for internal PE NOT referenced between declarations */