From f996767927f9062abd236ea60b2ca0eb0bb8766e Mon Sep 17 00:00:00 2001 From: Jim Huang <jserv.tw@gmail.com> Date: Sun, 9 Jul 2017 00:57:32 +0800 Subject: [PATCH] Bump expat version to 2.2.1 for security fixes Expat 2.2.0 and earlier were affected by CVE-2017-923. Expat 2.2.1 provides the corresponding security fixes. Signed-off-by: Jim Huang <jserv.tw@gmail.com> --- config/companion_libs/expat.in | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/config/companion_libs/expat.in b/config/companion_libs/expat.in index 40ad66cf..4c2f2e2c 100644 --- a/config/companion_libs/expat.in +++ b/config/companion_libs/expat.in @@ -6,9 +6,9 @@ choice # Don't remove next line # CT_INSERT_VERSION_BELOW -config EXPAT_V_2_2_0 +config EXPAT_V_2_2_1 bool - prompt "2.2.0" + prompt "2.2.1" config EXPAT_V_2_1_1 bool @@ -21,5 +21,5 @@ config EXPAT_VERSION string # Don't remove next line # CT_INSERT_VERSION_STRING_BELOW - default "2.2.0" if EXPAT_V_2_2_0 + default "2.2.1" if EXPAT_V_2_2_1 default "2.1.1" if EXPAT_V_2_1_1