| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 0001-conf.patch | conf =================================================================== |
Matthew James Wild <mwild1@gmail.com> | no | 2014-01-10 | ||
| 0002-prosody-lua52.patch | prosody-lua51 | Matthew James Wild <mwild1@gmail.com> | no | 2014-01-10 | ||
| 0003-buildflags.patch | don't override buildflags | Victor Seva <vseva@debian.org> | no | 2017-01-11 | ||
| 0004-fix-package.path-of-ejabberd2prosody.patch | fix package.path of ejabberd2prosody | Enrico Tassi <gareuselesinge@debian.org> | no | 2014-03-14 | ||
| 0005-use-lua52.patch | use lua5.2 for prosody >= 0.11.0 | "W. Martin Borgert" <debacle@debian.org> | no | vendor | 2018-11-24 | |
| 0006-muc-fix-for-CWE-284.patch | muc: fix for CWE-284 https://prosody.im/security/advisory_20210722/ |
Victor Seva <linuxmaniac@torreviejawireless.org> | no | 2021-07-23 | ||
| 0007-CVE-2022-0217.patch | CVE-2022-0217 https://prosody.im/security/advisory_20220113/ https://hg.prosody.im/0.11/raw-rev/783056b4e448 |
Victor Seva <linuxmaniac@torreviejawireless.org> | no | 2022-01-14 | ||
| 0008-CVE-2022-0217-fix-memory-leak.patch | CVE-2022-0217 fix memory leak > https://hg.prosody.im/trunk/rev/e5e0ab93d7f4 > util.xml: Break reference to help the GC (fix #1711) > > LuaExpat uses a registry reference to track handlers, which makes > it so that an upvalue like this creates a reference loop that keeps the > parser and its handlers from being garbage collected. The same issue has > affected util.xmppstream in the past. > > Code for checking: > > local xml_parse = require"util.xml".parse; > for i = 1, 10000 do xml_parse("<root/>") end > collectgarbage(); collectgarbage(); > print(collectgarbage("count"), "KiB"); > > A future release of LuaExpat may fix the underlying issue there. |
Victor Seva <linuxmaniac@torreviejawireless.org> | no | 2022-01-27 |