From 6fe5df59a1229ca647d365a0e3a7e17fee4d4548 Mon Sep 17 00:00:00 2001
From: Sebastian Pipping <sebastian@pipping.org>
Date: Fri, 19 Sep 2025 23:49:18 +0200
Subject: [PATCH] Changes: Document pull request #1047

CVE: CVE-2025-59375
Upstream-Status: Backport [https://github.com/libexpat/libexpat/commit/6fe5df59a1229ca647d365a0e3a7e17fee4d4548]
Signed-off-by: Peter Marko <peter.marko@siemens.com>
---
 Changes | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/Changes b/Changes
index 706a4ae1..58c222d9 100644
--- a/Changes
+++ b/Changes
@@ -61,6 +61,9 @@ Patches:
                     to the pull request URL could be of help.
 
         Bug fixes:
+     #1046 #1047  Fix alignment of internal allocations for some non-amd64
+                    architectures (e.g. sparc32); fixes up on the fix to
+                    CVE-2025-59375 in release 2.7.2 from #1034
        #980 #989  Restore event pointer behavior from Expat 2.6.4
                     (that the fix to CVE-2024-8176 changed in 2.7.0);
                     affected API functions are:
@@ -76,7 +79,9 @@ Patches:
 
         Special thanks to:
             Berkay Eren Ürün
+            Rolf Eike Beer
                  and
+            Clang/GCC UndefinedBehaviorSanitizer
             Perl XML::Parser
 
         Security fixes: