summary refs log tree commit diff
path: root/gnu/packages/xml.scm
diff options
context:
space:
mode:
authorMarius Bakke <marius@gnu.org>2022-02-19 10:40:15 +0100
committerMarius Bakke <marius@gnu.org>2022-02-19 10:43:23 +0100
commit4030ab515bd91a5c2ad09d34ff9328120542587b (patch)
treeaa43a5892f844e2ebb9b08a11fd64bf71f2c8c1a /gnu/packages/xml.scm
parent2f6f9f2e544e5da8f11320559e16a0876ce4a05b (diff)
downloadguix-4030ab515bd91a5c2ad09d34ff9328120542587b.tar.gz
gnu: expat: Update replacement to 2.4.5 [security fixes].
This fixes CVE-2022-25235, CVE-2022-25236, CVE-2022-25313, CVE-2022-25314, and
CVE-2022-25315.

* gnu/packages/xml.scm (expat/fixed): Update to 2.4.5.
Diffstat (limited to 'gnu/packages/xml.scm')
-rw-r--r--gnu/packages/xml.scm4
1 files changed, 2 insertions, 2 deletions
diff --git a/gnu/packages/xml.scm b/gnu/packages/xml.scm
index 6a897648eb..50ce79fcd9 100644
--- a/gnu/packages/xml.scm
+++ b/gnu/packages/xml.scm
@@ -158,7 +158,7 @@ things the parser might find in the XML document (like start tags).")
 (define expat/fixed
   (package
     (inherit expat)
-    (version "2.4.4")
+    (version "2.4.5")
     (source (let ((dot->underscore (lambda (c) (if (char=? #\. c) #\_ c))))
               (origin
                 (method url-fetch)
@@ -170,7 +170,7 @@ things the parser might find in the XML document (like start tags).")
                             "/expat-" version ".tar.xz")))
                 (sha256
                  (base32
-                  "1f0iqdy21wcd5nbfgsf8r2d5ilh15mrv8qmm37nw4l9k6xp5vlmm")))))))
+                  "0y95yg7y0hb53ddljdzllg1w64xi5k8xd3531n98ffn6rp3qzbzj")))))))
 
 (define-public libebml
   (package