From 5850eacec273fe11f01cd1e63246e8f697990b14 Mon Sep 17 00:00:00 2001 From: John McCrae Date: Wed, 18 Dec 2024 10:32:17 -0600 Subject: [PATCH] Updating Libxml2 to get past a CVE (#1947) * updating libxml to get past a CVE Signed-off-by: John McCrae * updating libxml to get past a CVE Signed-off-by: John McCrae --------- Signed-off-by: John McCrae --- config/software/libxml2.rb | 3 ++- scripts/internal_sources.yml | 2 ++ 2 files changed, 4 insertions(+), 1 deletion(-) diff --git a/config/software/libxml2.rb b/config/software/libxml2.rb index f4f9aac0d..2fab711f6 100644 --- a/config/software/libxml2.rb +++ b/config/software/libxml2.rb @@ -15,7 +15,7 @@ # name "libxml2" -default_version "2.11.7" +default_version "2.13.5" license "MIT" license_file "COPYING" @@ -26,6 +26,7 @@ dependency "config_guess" # version_list: url=https://download.gnome.org/sources/libxml2/ filter=*.tar.xz +version("2.13.5") { source sha256: "74fc163217a3964257d3be39af943e08861263c4231f9ef5b496b6f6d4c7b2b6" } version("2.12.7") { source sha256: "24ae78ff1363a973e6d8beba941a7945da2ac056e19b53956aeb6927fd6cfb56" } version("2.12.5") { source sha256: "a972796696afd38073e0f59c283c3a2f5a560b5268b4babc391b286166526b21" } version("2.11.7") { source sha256: "fb27720e25eaf457f94fd3d7189bcf2626c6dccf4201553bc8874d50e3560162" } diff --git a/scripts/internal_sources.yml b/scripts/internal_sources.yml index dfcd8c598..338b08353 100644 --- a/scripts/internal_sources.yml +++ b/scripts/internal_sources.yml @@ -72,6 +72,8 @@ software: - name: libxml2 sources: + - url: https://download.gnome.org/sources/libxml2/2.12/libxml2-2.13.5.tar.xz + sha256: 74fc163217a3964257d3be39af943e08861263c4231f9ef5b496b6f6d4c7b2b6 - url: https://download.gnome.org/sources/libxml2/2.12/libxml2-2.12.7.tar.xz sha256: 24ae78ff1363a973e6d8beba941a7945da2ac056e19b53956aeb6927fd6cfb56 - url: https://download.gnome.org/sources/libxml2/2.12/libxml2-2.12.5.tar.xz