[OE-core] [PATCH] expat: Upgrade 2.8.0 -> 2.8.1

Wed, 13 May 2026 04:59:35 -0700 

https://blog.hartwork.org/posts/expat-2-8-1-released/

Security fixes:
  #1216  CVE-2026-45186 -- Fix quadratic runtime from attribute name
            collision checks that allowed denial of service attacks
            through moderately sized crafted XML input (CWE-407).
            Please note that a layer of compression around XML can
            significantly reduce the minimum attack payload size.

Other changes:
  #1209 #1213  Drop more casts related to `void *` that C99 does not need
  #1213        xmlwf: Streamline use of `mmap`
  #1214 #1217  Version info bumped from 13:0:12 (libexpat*.so.1.12.0)
                    to 13:1:12 (libexpat*.so.1.12.1); see https://verbump.de/
                    for what these numbers do

Infrastructure:
  #1210  CI: Cover compilation with Visual Studio 18 2026 on Windows
  #1215  CI: Cover compilation for ARM64 on Windows
  #1212  CI: Bump WASI SDK from 32 to 33

Signed-off-by: Richard Purdie <[email protected]>
---
 meta/recipes-core/expat/{expat_2.8.0.bb => expat_2.8.1.bb} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-core/expat/{expat_2.8.0.bb => expat_2.8.1.bb} (92%)

diff --git a/meta/recipes-core/expat/expat_2.8.0.bb 
b/meta/recipes-core/expat/expat_2.8.1.bb
similarity index 92%
rename from meta/recipes-core/expat/expat_2.8.0.bb
rename to meta/recipes-core/expat/expat_2.8.1.bb
index 53c141c2005..fa48d42bf86 100644
--- a/meta/recipes-core/expat/expat_2.8.0.bb
+++ b/meta/recipes-core/expat/expat_2.8.1.bb
@@ -15,7 +15,7 @@ SRC_URI = 
"${GITHUB_BASE_URI}/download/R_${VERSION_TAG}/expat-${PV}.tar.bz2  \
 GITHUB_BASE_URI = "https://github.com/libexpat/libexpat/releases/";
 UPSTREAM_CHECK_REGEX = "releases/tag/R_(?P<pver>.+)"
 
-SRC_URI[sha256sum] = 
"586494499ac3ad46d87f3beda7b1f770c1c8026a9b60e151593f8b29089a52ca"
+SRC_URI[sha256sum] = 
"f5833dd2e1cd7739ec9182804a1a29c4f0cc7c2f26b633d3a2188b7766a88ecb"
 
 EXTRA_OECMAKE:class-native += "-DEXPAT_BUILD_DOCS=OFF"
 

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#236965): 
https://lists.openembedded.org/g/openembedded-core/message/236965
Mute This Topic: https://lists.openembedded.org/mt/119295642/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

Reply via email to