stable

lua-expat-1.5.1-1.fc37

FEDORA-2022-9ccbe3582f created by robert a year ago for Fedora 37

LuaExpat 1.5.1

  • Fix: Makefile no longer sets .lua files as executable
  • Fix: Makefile honors $RPM_OPT_FLAGS and $RPM_LD_FLAGS
  • Chore: added BLA test

LuaExpat 1.5.0

  • Warning: this update requires a minimum libexpat version of 2.4.0. Though at the time of writing a minimum version of 2.4.6 is recommended due to CVEs fixed in the intermediate versions.
  • Added option allowDTD to the threat protection parser.
  • Add configuration for Billion Laughs Attack prevention. This includes adding #include "expat_config.h", since these functions are conditionally included in the exposed API of Expat. This means that LuaExpat will now be compiled using the same options used to compile Expat itself.
  • Expose Expat compile time constants (lxp._EXPAT_FEATURES), see Expat documentation.

LuaExpat 1.4.1

  • Fix bad buffer size calculation in threat parser

LuaExpat 1.4.0

  • Improved Lua version support (5.1 - 5.4)
  • Fix memory leak when callbacks reference a parser object
  • Expose Expat library version (lxp._EXPAT_VERSION)
  • Added lxp.totable module
  • Fix integers being returned as floats on Lua 5.3+
  • Fix XmlDecl callback can also return nil for 'standalone'
  • Many documentation updates
  • Added triplet namespace setting (returnnstriplet)
  • Added EntityDecl handler
  • Added AttlistDecl handler
  • Added ElementDecl handler
  • Added SkippedEntity handler
  • Added EndDoctypeDecl handler
  • More tests and new test setup; Busted, LuaCheck, Github actions
  • Improved finishing, multiple nil-calls no longer throw errors
  • Fix lxp.lom to properly handle input as function, table, or file
  • Added option for namespace aware parsing to the lxp.lom module
  • Repository moved to lunarmodules
  • Added threat protection parser (protects against excessivly large inputs), with options for the lxp.lom and lxp.totable to use it

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2022-9ccbe3582f

This update has been submitted for testing by robert.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has obsoleted lua-expat-1.5.0-1.fc37, and has inherited its bugs and notes.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
bugfix
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago

Automated Test Results