diff options
| author | Benjamin Peterson <benjamin@python.org> | 2019-09-25 21:33:58 -0700 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2019-09-25 21:33:58 -0700 |
| commit | 52b940803860e37bcc3f6096b2d24e7c20a0e807 (patch) | |
| tree | 558aeb32f5f3be76cda9a24f970cc82ad4ee754e /Misc/NEWS.d | |
| parent | 49d99f01e6e51acec5ca57a02e857f0796bc418b (diff) | |
| download | cpython-git-52b940803860e37bcc3f6096b2d24e7c20a0e807.tar.gz | |
closes bpo-38174: Update vendored expat library to 2.2.8. (GH-16346)
Fixes CVE-2019-15903. See full changelog at https://github.com/libexpat/libexpat/blob/R_2_2_8/expat/Changes.
Diffstat (limited to 'Misc/NEWS.d')
| -rw-r--r-- | Misc/NEWS.d/next/Security/2019-09-23-21-02-46.bpo-38174.MeWuJd.rst | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/Misc/NEWS.d/next/Security/2019-09-23-21-02-46.bpo-38174.MeWuJd.rst b/Misc/NEWS.d/next/Security/2019-09-23-21-02-46.bpo-38174.MeWuJd.rst new file mode 100644 index 0000000000..e3da6fcdd1 --- /dev/null +++ b/Misc/NEWS.d/next/Security/2019-09-23-21-02-46.bpo-38174.MeWuJd.rst @@ -0,0 +1,2 @@ +Update vendorized expat library version to 2.2.8, which resolves +CVE-2019-15903. |