-
libxml2 (2.6.32.dfsg-4ubuntu1.2) intrepid-security; urgency=low
* SECURITY UPDATE: denial of service via stack overflow from crafted
root XML document element DTD definition
- parser.c: validate ctxt->depth isn't too deep
- CVE-2009-2414
* SECURITY UPDATE: denial of service via use-after-frees when parsing
Notation and Enumeration attribute types
- parser.c: use xmlFreeEnumeration before returning.
- CVE-2009-2416
-- Marc Deslauriers <email address hidden> Mon, 10 Aug 2009 16:31:24 -0400
-
libxml2 (2.6.32.dfsg-4ubuntu1.1) intrepid-security; urgency=low
* SECURITY UPDATE: infinite loop, integer overflow, and double-free.
- parserInternals.c: upstream fix for double-free (svn rev 3741).
- tree.c: fix for infinite loop, thanks to Mike Hommey (CVE-2008-4225).
- SAX2.c: fix for integer overflow, thanks to Mike Hommey CVE-2008-4226).
-- Kees Cook <email address hidden> Tue, 18 Nov 2008 08:57:24 -0800
-
libxml2 (2.6.32.dfsg-4ubuntu1) intrepid; urgency=low
* Merge with Debian; remaining changes:
- debian/rules: create a udeb for debian-installer, correct libxml2-dev
Depends to include zlib1g-dev.
- Build a python-libxml2-dbg package.
- Link using -Bsymbolic-functions.
libxml2 (2.6.32.dfsg-4) unstable; urgency=high
* Fix regressions due to previous security fixes. Fixes: CVE-2008-3529.
Closes: #498768.
libxml2 (2.6.32.dfsg-3) unstable; urgency=high
* Fix DoS which leads to recursive evaluation of entities.
Fixes: CVE-2008-3281, without breaking librsvg and others. Closes: #496125.
-- Matthias Klose <email address hidden> Thu, 25 Sep 2008 14:19:49 +0200
-
libxml2 (2.6.32.dfsg-2ubuntu3) intrepid; urgency=low
* SECURITY UPDATE: heap overflow in entity name parsing.
* parser.c: upstream fixes thanks to Tomas Hoger.
* include/libxml/parser.h, parser.c: improvements to CVE-2008-3281 fix,
thanks to Tomas Hoger.
* References
CVE-2008-3529
-- Kees Cook <email address hidden> Thu, 11 Sep 2008 10:11:02 -0700
-
libxml2 (2.6.32.dfsg-2ubuntu2) intrepid; urgency=low
* SECURITY UPDATE: DoS via recursive entity evaluation.
* entities.c, include/libxml/parser.h, parser.c, parserInternals.c:
non-ABI-breaking version of upstream changes, thanks to Mike Hommey.
* References
CVE-2008-3281
-- Kees Cook <email address hidden> Tue, 02 Sep 2008 14:25:35 -0700
-
libxml2 (2.6.32.dfsg-2ubuntu1) intrepid; urgency=low
* Merge with Debian; remaining changes:
- debian/rules: create a udeb for debian-installer, correct libxml2-dev
Depends to include zlib1g-dev.
- Build a python-libxml2-dbg package.
- Link using -Bsymbolic-functions.
libxml2 (2.6.32.dfsg-2) unstable; urgency=low
* debian/control:
+ Use ${binary:Version} instead of ${Source-Version}.
+ Fixed spelling error for "Python".
* debian/rules: Don't ignore make distclean errors.
* debian/libxml2-doc.doc-base: Changed section to fit doc-base sections
changes.
* xml2-config.1: Remove unknown groff command.
libxml2 (2.6.32.dfsg-1) unstable; urgency=low
* New upstream release.
* debian/control: Bumped Standards-Version to 3.7.3.0. No changes.
* debian/rules:
+ Make dpkg-shlibdeps fail when symbols are missing.
+ Removed the workaround for removed and modified files during build. The
former was for svn-buildpackage that I don't use anymore, and the latter
for a file that isn't in the .orig.tar.gz anymore.
+ Bump shlibs to current version, since a new symbol was added.
* debian/libxml2.symbols: Reference the new symbol.
-- Matthias Klose <email address hidden> Mon, 23 Jun 2008 21:19:36 +0200
-
libxml2 (2.6.31.dfsg-2ubuntu1) hardy; urgency=low
* Merge with Debian; remaining changes:
- debian/rules: create a udeb for debian-installer, correct libxml2-dev
Depends to include zlib1g-dev.
- Build a python-libxml2-dbg package.
- Link using -Bsymbolic-functions.
* Fixed: USN-569-1, denial of service bug in UTF-8 handling. LP: #181985.
libxml2 (2.6.31.dfsg-2) unstable; urgency=low
* debian/rules: Brown paper bag: uncomment $(MAKE) distclean.
Closes: #442656.
* xstc/Makefile.am, xstc/Makefile.in: Properly clean generated files.
* nanohttp.c: Apply fix from svn revision 3685 to allocate enough memory
for the Host HTTP header when containing a port number. Closes: #464173.
* error.c: Don't grow error buffer indefinitely when vsnprintf returns -1,
which, if it happens, on glibc-based systems, will happen indefinitely.
Closes: #456653.
-- Matthias Klose <email address hidden> Wed, 12 Mar 2008 10:25:35 +0000
