Changes: Add CVE-2017-9233 info to change log

author Sebastian Pipping <sebastian@pipping.org>

Wed, 14 Jun 2017 12:09:58 +0000 (14:09 +0200)

committer Sebastian Pipping <sebastian@pipping.org>

Fri, 16 Jun 2017 23:00:45 +0000 (01:00 +0200)
author Sebastian Pipping <sebastian@pipping.org>
Wed, 14 Jun 2017 12:09:58 +0000 (14:09 +0200)
committer Sebastian Pipping <sebastian@pipping.org>
Fri, 16 Jun 2017 23:00:45 +0000 (01:00 +0200)
diff --git a/expat/Changes b/expat/Changes

index b48133fd9249483978220b825597375d014e8812..50c2711b370c4301d78057181e4a7e1bc1092472 100644 (file)
--- a/expat/Changes
+++ b/expat/Changes
@@ -4,6 +4,9 @@ NOTE: We are looking for help with a few things:
  
  Release 2.2.1 ??????????
          Security fixes:
+                  CVE-2017-9233 -- External entity infinite loop DoS
+                    Details: https://libexpat.github.io/doc/cve-2017-9233/
+                    Commit c4bf96bb51dd2a1b0e185374362ee136fe2c9d7f
                    CVE-2016-9063 -- Detect integer overflow; commit
                      d4f735b88d9932bd5039df2335eefdd0723dbe20
                      (Fixed version of existing downstream patches!)
author	Sebastian Pipping <sebastian@pipping.org>
	Wed, 14 Jun 2017 12:09:58 +0000 (14:09 +0200)
committer	Sebastian Pipping <sebastian@pipping.org>
	Fri, 16 Jun 2017 23:00:45 +0000 (01:00 +0200)