Debian Patches
Status for expat/2.8.0-2
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| fix-expat-noconfig.patch | libexpat.so.X.Y.Z is installed in /lib/${DEB_HOST_MULTIARCH} instead of /usr/lib/${DEB_HOST_MULTIARCH}, thus the path of the shared library is not relative to the location of this cmake file (Closes: #995907) |
Andrius Merkys <merkys@debian.org> | not-needed | |||
| fix-expat-cmake.patch | fix path for INTERFACE_INCLUDE_DIRECTORIES | Matteo F. Vescovi <mfv@debian.org> | not-needed | |||
| drop-casts-around-malloc.patch | commit e7ed2d64df8ee754426c169e36c84b7f01a5bf0c tests: Drop casts around `malloc` that C99 does not need `malloc` returns a `void *`. Under C99, `void *` implicitly coerces to all other pointer types. This is a follow-up to changes merged in 89e6f354f44f27eda61e1b94a473f88b2f9a8bc6. diff --git a/expat/tests/basic_tests.c b/expat/tests/basic_tests.c index 537c7e0e..a4a19472 100644 |
Matthew Fernandez <matthew.fernandez@gmail.com> | no | 2026-04-27 | ||
| drop-casts-around-XML_GetUserData.patch | commit a2b7cd8457906c732fe6b1f6d2968eeaa58c02a6 tests: Drop casts around `XML_GetUserData` that C99 does not need The `XML_GetUserData` macro returns a `void *`. Under C99, `void *` implicitly coerces to all other pointer types. This is a follow-up to changes merged in 89e6f354f44f27eda61e1b94a473f88b2f9a8bc6. diff --git a/expat/tests/basic_tests.c b/expat/tests/basic_tests.c index a4a19472..5fd55933 100644 |
Matthew Fernandez <matthew.fernandez@gmail.com> | no | 2026-04-27 | ||
| CVE-2026-45186_part1.patch | Make "counting_start_element_handler" count default attrs | Berkay Eren Ürün <berkay.ueruen@siemens.com> | no | 2026-03-13 | ||
| CVE-2026-45186_part2.patch | test(attlist): Cover duplicate attribute names | Berkay Eren Ürün <berkay.ueruen@siemens.com> | no | 2026-03-13 | ||
| CVE-2026-45186_part3.patch | tests: Define .attributes the first time around | Sebastian Pipping <sebastian@pipping.org> | no | 2026-04-20 | ||
| CVE-2026-45186_part4.patch | tests: Make counting_start_element_handler enforce complete attribute lists | Sebastian Pipping <sebastian@pipping.org> | no | 2026-04-13 | ||
| CVE-2026-45186_part5.patch | lib: Extract a constant for upcoming reuse | Sebastian Pipping <sebastian@pipping.org> | no | 2026-03-08 | ||
| CVE-2026-45186_part6.patch | lib: Introduce ELEMENT_TYPE.defaultAttsNames | Sebastian Pipping <sebastian@pipping.org> | no | 2026-03-08 | ||
| CVE-2026-45186_part7.patch | lib: Leverage ELEMENT_TYPE.defaultAttsNames for attribute collision detection .. to resolve quadratic runtime behavior |
Sebastian Pipping <sebastian@pipping.org> | no | 2026-03-08 | ||
| CVE-2026-45186_part8.patch | Changes: Document CVE-2026-45186 | Sebastian Pipping <sebastian@pipping.org> | no | 2026-05-08 |
All known versions for source package 'expat'
- 2.8.0-2 (sid)
- 2.8.0-1 (forky)
- 2.7.1-2 (trixie, trixie-proposed-updates)
- 2.5.0-1+deb12u2 (bookworm, bookworm-proposed-updates)
- 2.5.0-1+deb12u1 (bookworm-security)