diff options
| author | Sebastian Pipping <sebastian@pipping.org> | 2024-09-05 22:09:34 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-09-05 14:09:34 -0600 |
| commit | 1be9b7f53c8565bc025091eef00c68b4804b7d78 (patch) | |
| tree | 7e3b6d51174d288ad2433debcf01018d4f78764e /var | |
| parent | 6b05a807452035f56b7dbfaa9b9c5264abb56684 (diff) | |
| download | spack-1be9b7f53c8565bc025091eef00c68b4804b7d78.tar.gz spack-1be9b7f53c8565bc025091eef00c68b4804b7d78.tar.bz2 spack-1be9b7f53c8565bc025091eef00c68b4804b7d78.tar.xz spack-1be9b7f53c8565bc025091eef00c68b4804b7d78.zip | |
expat: Add 2.6.3 with security fixes + deprecate vulnerable 2.6.2 (#46208)
Diffstat (limited to 'var')
| -rw-r--r-- | var/spack/repos/builtin/packages/expat/package.py | 12 |
1 files changed, 10 insertions, 2 deletions
diff --git a/var/spack/repos/builtin/packages/expat/package.py b/var/spack/repos/builtin/packages/expat/package.py index 893fd1037a..a41d4912de 100644 --- a/var/spack/repos/builtin/packages/expat/package.py +++ b/var/spack/repos/builtin/packages/expat/package.py @@ -17,8 +17,16 @@ class Expat(AutotoolsPackage, CMakePackage): license("MIT") - version("2.6.2", sha256="9c7c1b5dcbc3c237c500a8fb1493e14d9582146dd9b42aa8d3ffb856a3b927e0") - # deprecate all releases before 2.6.2 because of security issues + version("2.6.3", sha256="b8baef92f328eebcf731f4d18103951c61fa8c8ec21d5ff4202fb6f2198aeb2d") + # deprecate all releases before 2.6.3 because of security issues + # CVE-2024-45490 (fixed in 2.6.3) + # CVE-2024-45491 (fixed in 2.6.3) + # CVE-2024-45492 (fixed in 2.6.3) + version( + "2.6.2", + sha256="9c7c1b5dcbc3c237c500a8fb1493e14d9582146dd9b42aa8d3ffb856a3b927e0", + deprecated=True, + ) # CVE-2024-28757 (fixed in 2.6.2) version( "2.6.1", |