bug#48612: Expat "billion laughs attack" vulnerability (CVE-2013-0340)

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#48612: Expat "billion laughs attack" vulnerability (CVE-2013-0340)

From:	Leo Famulari
Subject:	bug#48612: Expat "billion laughs attack" vulnerability (CVE-2013-0340)
Date:	Wed, 2 Jun 2021 23:16:29 -0400

On Mon, May 24, 2021 at 01:06:47PM -0400, Leo Famulari wrote:
> I think it's okay to graft it. The distro is big enough that there will
> always be some grafted packages. However, I'd like to try ungrafting at
> regular periods; based on the current ungrafting build cycle, monthly
> may be reasonable.

I updated your patch to use expat 2.4.1 and pushed as
6d71f6a73cd27d61d3302b9658893428af6314d2

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

bug#48612: Expat "billion laughs attack" vulnerability (CVE-2013-0340), Leo Famulari <=

Prev by Date: bug#48793: Make guix room available over matrix
Next by Date: bug#48802: Possibly nonfree font (font-ubuntu)
Previous by thread: bug#48802: Possibly nonfree font (font-ubuntu)
Next by thread: bug#48808: List of discovered substitute servers not refreshed?
Index(es):
- Date
- Thread