FEDORA-2022-9ccbe3582f created by robert 5 months ago for Fedora 37

LuaExpat 1.5.1

  • Fix: Makefile no longer sets .lua files as executable
  • Fix: Makefile honors $RPM_OPT_FLAGS and $RPM_LD_FLAGS
  • Chore: added BLA test

LuaExpat 1.5.0

  • Warning: this update requires a minimum libexpat version of 2.4.0. Though at the time of writing a minimum version of 2.4.6 is recommended due to CVEs fixed in the intermediate versions.
  • Added option allowDTD to the threat protection parser.
  • Add configuration for Billion Laughs Attack prevention. This includes adding #include "expat_config.h", since these functions are conditionally included in the exposed API of Expat. This means that LuaExpat will now be compiled using the same options used to compile Expat itself.
  • Expose Expat compile time constants (lxp._EXPAT_FEATURES), see Expat documentation.

LuaExpat 1.4.1

  • Fix bad buffer size calculation in threat parser

LuaExpat 1.4.0

  • Improved Lua version support (5.1 - 5.4)
  • Fix memory leak when callbacks reference a parser object
  • Expose Expat library version (lxp._EXPAT_VERSION)
  • Added lxp.totable module
  • Fix integers being returned as floats on Lua 5.3+
  • Fix XmlDecl callback can also return nil for 'standalone'
  • Many documentation updates
  • Added triplet namespace setting (returnnstriplet)
  • Added EntityDecl handler
  • Added AttlistDecl handler
  • Added ElementDecl handler
  • Added SkippedEntity handler
  • Added EndDoctypeDecl handler
  • More tests and new test setup; Busted, LuaCheck, Github actions
  • Improved finishing, multiple nil-calls no longer throw errors
  • Fix lxp.lom to properly handle input as function, table, or file
  • Added option for namespace aware parsing to the lxp.lom module
  • Repository moved to lunarmodules
  • Added threat protection parser (protects against excessivly large inputs), with options for the lxp.lom and lxp.totable to use it

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2022-9ccbe3582f

This update has been submitted for testing by robert.

5 months ago

This update's test gating status has been changed to 'ignored'.

5 months ago

This update has been pushed to testing.

5 months ago

This update has been submitted for stable by bodhi.

5 months ago

This update has obsoleted lua-expat-1.5.0-1.fc37, and has inherited its bugs and notes.

5 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

Content Type
Test Gating
Unstable by Karma
Stable by Karma
Stable by Time
7 days
5 months ago
in testing
5 months ago
in stable
4 months ago

Automated Test Results