Bug 52280

Summary:	Для закрытия CVE-2022-34169 необходимо обновить пакет
Product:	Sisyphus	Reporter:	FelixZ <felix_z>
Component:	xalan-j2	Assignee:	viy <viy>
Status:	CLOSED FIXED	QA Contact:	qa-sisyphus
Severity:	normal
Priority:	P5	CC:	cas, qa_viy, shevchenkodyu, viy
Version:	unstable
Hardware:	x86_64
OS:	Linux

Description FelixZ 2024-11-29 15:10:15 MSK

Для закрытия уязвимости CVE-2022-34169, прошу обновить пакет xalan-j2 до версии 2.7.3.
https://github.com/advisories/GHSA-9339-86wc-4qgf
https://xalan.apache.org/xalan-j/readme.html#notes_latest

Comment 1 Repository Robot 2024-11-30 19:24:41 MSK

xalan-j2-0:2.7.3-alt1 -> sisyphus:

 Sat Nov 30 2024 Andrey Cherepanov <cas@altlinux> 0:2.7.3-alt1
 - New version.
 - Security fixes: CVE-2022-34169 (ALT #52280).
 - Fix license according to SPDX.