gh-98739: Update libexpat from 2.4.9 to 2.5.0#98742
Merged
Uh oh!
There was an error while loading. Please reload this page.
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode characters
bedevere-bot commented Oct 26, 2022
Most changes to Python require a NEWS entry. Please add it using the blurb_it web app or the blurb command-line tool. |
ContributorAuthor
scdub commented Oct 27, 2022
@hartwork I'm not sure if there are other changes that you think would be necessary for Python to upgrade to your latest release, but here's a first attempt at to get Python synced up. I believe there is a constellation of security fixes which Python will be requiring in the near term (SQLite, OpenSSL, ...) and this could potentially tag along for one of those releases. |
Contributor
hartwork commented Oct 27, 2022
@scdub I don't really understand your message. Can you maybe rephrase your question for me to better understand? |
27 tasks
hartwork approved these changes Oct 27, 2022
Contributor
hartwork left a comment
hartwork left a comment There was a problem hiding this comment.
Verified using this Dockerfile:
# Copyright (c) 2022 Sebastian Pipping <sebastian@pipping.org># Licensed under the Apache License version 2.0FROM alpine RUN apk add --update \ diffutils \ git \ sed \ && \ git clone --depth 1 https://github.com/python/cpython cpython-main \ && \ ( cd cpython-main && git rev-parse HEAD ) \ && \ git clone --depth 1 --branch expat-2.5.0 https://github.com/scdub/cpython scdub-expat-2-5-0 \ && \ ( cd scdub-expat-2-5-0 && git rev-parse HEAD ) \ && \ git config --global advice.detachedHead false \ && \ git clone --depth 1 --branch R_2_4_9 https://github.com/libexpat/libexpat libexpat_2_4_9 \ && \ git clone --depth 1 --branch R_2_5_0 https://github.com/libexpat/libexpat libexpat_2_5_0 \ && \ diff -r -u libexpat_2_4_9/expat/lib/ cpython-main/Modules/expat/ | tee 2-4-9.diff \ && \ diff -r -u libexpat_2_5_0/expat/lib/ scdub-expat-2-5-0/Modules/expat/ | tee 2-5-0.diff \ && \ sed -e '/^Only in /d' -e '/^\(+++\|---\) /d' -e '/^diff /d' -i 2-4-9.diff 2-5-0.diff \ && \ diff -u 2-4-9.diff 2-5-0.diff \ && \ echo 'Diff is good.'ContributorAuthor
scdub commented Oct 27, 2022
I applogize, I wasn't clear. I noticed that with 2.5.0, there is a new |
Contributor
hartwork commented Oct 27, 2022
@scdub thanks for elaborating. The added |
ContributorAuthor
scdub commented Oct 27, 2022
@gpshead I'm not sure if this PR is of interest to you, but saw that you did initiate the work for the previous expat upgrade to 2.4.9. |
gpshead added type-security 
Member
gpshead commented Oct 27, 2022
Confirmed that these match the libexpat 2.5.0 upstream sources from with our pyexpatns.h addition and that this adds no new C APIs that need including in that "namespace" header hack. |
gpshead approved these changes Oct 27, 2022
Contributor
miss-islington commented Oct 27, 2022
bedevere-bot commented Oct 27, 2022
GH-98784 is a backport of this pull request to the 3.11 branch. |
bedevere-bot commented Oct 27, 2022
GH-98785 is a backport of this pull request to the 3.10 branch. |
miss-islington pushed a commit to miss-islington/cpython that referenced this pull request Oct 27, 2022
* Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82) Co-authored-by: Shaun Walbridge <46331011+scdub@users.noreply.github.com>
miss-islington pushed a commit to miss-islington/cpython that referenced this pull request Oct 27, 2022
* Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82) Co-authored-by: Shaun Walbridge <46331011+scdub@users.noreply.github.com>
miss-islington pushed a commit to miss-islington/cpython that referenced this pull request Oct 27, 2022
* Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82) Co-authored-by: Shaun Walbridge <46331011+scdub@users.noreply.github.com>
bedevere-bot commented Oct 27, 2022
GH-98786 is a backport of this pull request to the 3.9 branch. |
bedevere-bot commented Oct 27, 2022
GH-98787 is a backport of this pull request to the 3.8 branch. |
miss-islington pushed a commit to miss-islington/cpython that referenced this pull request Oct 27, 2022
* Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82) Co-authored-by: Shaun Walbridge <46331011+scdub@users.noreply.github.com>
bedevere-bot commented Oct 27, 2022
GH-98788 is a backport of this pull request to the 3.7 branch. |
miss-islington pushed a commit to miss-islington/cpython that referenced this pull request Oct 27, 2022
* Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82) Co-authored-by: Shaun Walbridge <46331011+scdub@users.noreply.github.com>
miss-islington added a commit that referenced this pull request Oct 27, 2022
* Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82) Co-authored-by: Shaun Walbridge <46331011+scdub@users.noreply.github.com>
miss-islington added a commit that referenced this pull request Oct 27, 2022
* Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82) Co-authored-by: Shaun Walbridge <46331011+scdub@users.noreply.github.com>
bedevere-bot commented Oct 27, 2022
|
ambv pushed a commit that referenced this pull request Oct 28, 2022
Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82)
ambv pushed a commit that referenced this pull request Oct 28, 2022
Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82)
ambv pushed a commit that referenced this pull request Oct 28, 2022
Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com> (cherry picked from commit 3e07f82)
gvanrossum pushed a commit to gvanrossum/cpython that referenced this pull request Oct 28, 2022
* Update libexpat from 2.4.9 to 2.5.0 to address CVE-2022-43680. Co-authored-by: Shaun Walbridge <shaun.walbridge@gmail.com>
This was referenced Feb 13, 2024
Sign up for freeto join this conversation on GitHub. Already have an account? Sign in to comment
6 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Based this PR on the recent earlier upgrade at #97006 by @corona10