Update of two security issues

Question

Update of two security issues

modelonrobinandersson opened this issue 2 years ago · 5 comments

modelonrobinandersson commented 2 years ago

I'm creating this issue mainly to merge the two security issues mentioned earlier below:

#18
#19

In order to resolve these, look into the following
Issue #18, update libexpat to version TBD.
Issue #19, update zlib to version 1.2.12.

Answer 1 · 2022-09-13T15:55:55.000Z

Fix for expat getting fixed in https://github.com/modelon/fmi-library/pull/38

Answer 2 · 2022-09-15T10:28:06.000Z

Fix for expat getting fixed in https://github.com/modelon/fmi-library/pull/38

Thank you @modelonrobinandersson

Answer 3 · 2023-10-18T06:44:27.000Z

@modelonrobinandersson Is there a plan to address CVE-2022-43680 in libexpat, (the fix is in libexpat 2.5) as part of #22?

Answer 4 · 2023-10-18T13:00:28.000Z

Hi @ni-nutkalit! I was not aware of this issue. I will create a new issue and see if we can have it resolved before the end of this month, or the beginning of November.

Answer 5 · 2023-11-02T12:46:28.000Z

Expat has been updated to 2.5.0 with #94