[Buildroot] [PATCH 1/1] package/expat: bump to version 2.7.3
Julien Olivain
ju.o at free.fr
Wed Oct 1 19:29:28 UTC 2025
Hi Dario,
Thanks for the patch.
On 01/10/2025 18:57, Dario Binacchi wrote:
> Release notes:
> https://github.com/libexpat/libexpat/blob/R_2_7_2/expat/Changes
This 2.7.2 release note says it fixes:
https://www.cve.org/CVERecord?id=CVE-2025-59375
Could you check it is applicable, and if yes, send a v2 marking the
patch
as a "security bump" with the appropriate links to the CVE?
> https://github.com/libexpat/libexpat/blob/R_2_7_3/expat/Changes
Since 2.7.3 seems to be a bugfix only, you can keep this 2.7.1 -> 2.7.3
bump
as is in a single commit. It will be back-ported on LTS branches.
> Signed-off-by: Dario Binacchi <dario.binacchi at amarulasolutions.com>
Best regards,
Julien.
More information about the buildroot
mailing list