All relevant CVEs are files against these CPEs.
See CVE db query (zediious vendor is not relevant):
sqlite> select * from PRODUCTs where PRODUCT like '%raptor%' and vendor <> 'symantec' and product <> 'velociraptor';
CVE-2012-0037|librdf|raptor|||2.0.7|<
CVE-2017-18926|librdf|raptor_rdf_syntax_library|2.0.15|=||
CVE-2020-25713|librdf|raptor_rdf_syntax_library|2.0.15|=||
CVE-2023-49078|zediious|raptor-web|0.4.4|=||
CVE-2024-57822|librdf|raptor_rdf_syntax_library|||2.0.16|<=
CVE-2024-57823|librdf|raptor_rdf_syntax_library|||2.0.16|<=
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Recent changes to oe-core[1] mean that if a configure.ac uses gtk-doc
then gtkdocize will be called. This means that recipes that don't
inherit gtk-doc (to depend on gtk-doc-native) but don't explicitly
disable the use of gtkdocize will fail to configure.
Inheriting gtk-doc both solves the configure failure, and allows us to
build the API documentation.
[1] oe-core 891ec38d4c5cc5ac7bc34938276261ebd6f6d54e
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
* fixes:
../../raptor2-2.0.16/src/raptor_libxml.c:256:12: error: 'xmlEntity' {aka 'struct _xmlEntity'} has no member named 'checked'
256 | if(!ret->checked)
| ^~
../../raptor2-2.0.16/src/raptor_libxml.c:257:10: error: 'xmlEntity' {aka 'struct _xmlEntity'} has no member named 'checked'
257 | ret->checked = 1;
| ^~
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
0001-Match-reutrn-type-from-RAPTOR_ASSERT_OBJECT_POINTER_.patch
0001-configure.ac-do-additional-checks-on-libxml2-also-wh.patch
removed since they're included in 2.0.16
License-Update:
Copyright year updatd to 2023.
"David Beckett" changed to "Dave Beckett"
URL from http changed to https
Changelog:
==========
- Fixes CVE-2017-18926 and CVE-2020-25713
- Multiple Appveyor Windows and CMake build fixes by 0u812. (Note: the
resulting binaries and libraries were not tested on Windows)
- Turtle parser now reads input in chunks so can handle huge files. Patch
- Added a serializer for the mKR language.
- Rapper utility now counts triples using longs
- Several smaller portability fixes for OpenBSD and cross building
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
* it is it in meta-office for a while. Now I need it in meta-qt5-extra too
* LICENSE.txt summarizes all licenses and explains that ot is user's choice
which one to use
Signed-off-by: Andreas Müller <schnitzeltony@googlemail.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
