Leo Famulari wrote on 25/10/17 at 19:22:
> Expat 2.2.3's release notes only mentioned CVE-2017-11742, which is a
> Windows vulnerability and out of scope for Guix. And I didn't see
> security issues disclosed in the 2.2.4 release notes.

Ah, sorry to spread misinfo. I don't have Web access at the moment and
erred on the side of caution. I'll adjust the patch accordingly & push.

Kind regards,

T G-R