View Bazaar branches
Get this repository:
git clone https://git.launchpad.net/ubuntu/+source/libxml2
Members of Ubuntu Server Dev import team can upload to this repository. Log in for directions.

Branches

Name Last Modified Last Commit
importer/ubuntu/dsc 2018-11-13 19:49:13 UTC 2018-11-13
DSC file for 2.9.4+dfsg1-7ubuntu3

Author: Ubuntu Git Importer
Author Date: 2018-11-13 19:49:13 UTC

DSC file for 2.9.4+dfsg1-7ubuntu3

ubuntu/devel 2018-11-13 19:00:03 UTC 2018-11-13
Import patches-unapplied version 2.9.4+dfsg1-7ubuntu3 to ubuntu/disco-proposed

Author: Matthias Klose
Author Date: 2018-11-13 08:14:59 UTC

Import patches-unapplied version 2.9.4+dfsg1-7ubuntu3 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 289d28d17edf9b1514822a2ecabd19581ddd12b2

New changelog entries:
  * No-change rebuild for icu soname changes.

ubuntu/disco-proposed 2018-11-13 19:00:03 UTC 2018-11-13
Import patches-unapplied version 2.9.4+dfsg1-7ubuntu3 to ubuntu/disco-proposed

Author: Matthias Klose
Author Date: 2018-11-13 08:14:59 UTC

Import patches-unapplied version 2.9.4+dfsg1-7ubuntu3 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 289d28d17edf9b1514822a2ecabd19581ddd12b2

New changelog entries:
  * No-change rebuild for icu soname changes.

ubuntu/disco-devel 2018-11-13 19:00:03 UTC 2018-11-13
Import patches-unapplied version 2.9.4+dfsg1-7ubuntu3 to ubuntu/disco-proposed

Author: Matthias Klose
Author Date: 2018-11-13 08:14:59 UTC

Import patches-unapplied version 2.9.4+dfsg1-7ubuntu3 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 289d28d17edf9b1514822a2ecabd19581ddd12b2

New changelog entries:
  * No-change rebuild for icu soname changes.

ubuntu/disco 2018-11-13 19:00:03 UTC 2018-11-13
Import patches-unapplied version 2.9.4+dfsg1-7ubuntu3 to ubuntu/disco-proposed

Author: Matthias Klose
Author Date: 2018-11-13 08:14:59 UTC

Import patches-unapplied version 2.9.4+dfsg1-7ubuntu3 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 289d28d17edf9b1514822a2ecabd19581ddd12b2

New changelog entries:
  * No-change rebuild for icu soname changes.

importer/debian/dsc 2018-10-03 22:31:57 UTC 2018-10-03
DSC file for 2.9.8+dfsg-1

Author: Ubuntu Git Importer
Author Date: 2018-10-03 22:31:57 UTC

DSC file for 2.9.8+dfsg-1

applied/debian/experimental 2018-10-03 22:26:57 UTC 2018-10-03
Import patches-applied version 2.9.8+dfsg-1 to applied/debian/experimental

Author: Mattia Rizzolo
Author Date: 2018-10-03 14:45:11 UTC

Import patches-applied version 2.9.8+dfsg-1 to applied/debian/experimental

Imported using git-ubuntu import.

Changelog parent: 6aebf99d650a438dcc304e9f251dd575a2222dd6
Unapplied parent: 39c8a2a71889aec89b614000e9c95c3728f7f79b

New changelog entries:
  * Team upload.
  [ Rene Engelhard ]
  * New upstream version 2.9.8+dfsg.
  * Update Vcs-* to salsa.debian.org.
  [ Mattia Rizzolo ]
  * d/libxml2.symbols:
    + Remove removed symbols xmlNop@Base (no users found anywhere).
    + Add two new symbols.
  * Refresh patches.
    + Drop the Python 3.6 compatibility patch, upstreamed.
  * d/copyright: Update.
  * d/control: Bump Standards-Version to 4.2.1, no changes needed.
  * d/rules: Bump shlibs version.

debian/experimental 2018-10-03 22:26:57 UTC 2018-10-03
Import patches-unapplied version 2.9.8+dfsg-1 to debian/experimental

Author: Mattia Rizzolo
Author Date: 2018-10-03 14:45:11 UTC

Import patches-unapplied version 2.9.8+dfsg-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: d6554a2afdfbc7f267869d994f312e7518aea0c2

New changelog entries:
  * Team upload.
  [ Rene Engelhard ]
  * New upstream version 2.9.8+dfsg.
  * Update Vcs-* to salsa.debian.org.
  [ Mattia Rizzolo ]
  * d/libxml2.symbols:
    + Remove removed symbols xmlNop@Base (no users found anywhere).
    + Add two new symbols.
  * Refresh patches.
    + Drop the Python 3.6 compatibility patch, upstreamed.
  * d/copyright: Update.
  * d/control: Bump Standards-Version to 4.2.1, no changes needed.
  * d/rules: Bump shlibs version.

ubuntu/cosmic-devel 2018-09-10 14:13:16 UTC 2018-09-10
Import patches-unapplied version 2.9.4+dfsg1-7ubuntu1 to ubuntu/cosmic-proposed

Author: Leonidas S. Barbosa
Author Date: 2018-08-16 15:02:31 UTC

Import patches-unapplied version 2.9.4+dfsg1-7ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 86c6aa820c8a6f826c598d752f409811088dfc78

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567
  * SECURITY UPDATE: Infinite recursion/Denial of service
    - debian/patches/CVE-2017-16932.patch: fix in parser.c and
      add some error check files result/errors/759579.xml,
      result/errors/759579.xml.err, result/errors/759579.xml.str,
      test/errors/759579.xml.
    - CVE-2017-16932

ubuntu/cosmic-proposed 2018-09-10 14:13:16 UTC 2018-09-10
Import patches-unapplied version 2.9.4+dfsg1-7ubuntu1 to ubuntu/cosmic-proposed

Author: Leonidas S. Barbosa
Author Date: 2018-08-16 15:02:31 UTC

Import patches-unapplied version 2.9.4+dfsg1-7ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 86c6aa820c8a6f826c598d752f409811088dfc78

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567
  * SECURITY UPDATE: Infinite recursion/Denial of service
    - debian/patches/CVE-2017-16932.patch: fix in parser.c and
      add some error check files result/errors/759579.xml,
      result/errors/759579.xml.err, result/errors/759579.xml.str,
      test/errors/759579.xml.
    - CVE-2017-16932

ubuntu/cosmic 2018-09-10 14:13:16 UTC 2018-09-10
Import patches-unapplied version 2.9.4+dfsg1-7ubuntu1 to ubuntu/cosmic-proposed

Author: Leonidas S. Barbosa
Author Date: 2018-08-16 15:02:31 UTC

Import patches-unapplied version 2.9.4+dfsg1-7ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 86c6aa820c8a6f826c598d752f409811088dfc78

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567
  * SECURITY UPDATE: Infinite recursion/Denial of service
    - debian/patches/CVE-2017-16932.patch: fix in parser.c and
      add some error check files result/errors/759579.xml,
      result/errors/759579.xml.err, result/errors/759579.xml.str,
      test/errors/759579.xml.
    - CVE-2017-16932

ubuntu/trusty-updates 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4.13 to ubuntu/trusty-sec...

Author: Leonidas S. Barbosa
Author Date: 2018-08-13 20:50:43 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4.13 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 807dcc4a67ca456d523bab08d5e44c83d39a551f

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567

ubuntu/bionic-updates 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1.2 to ubuntu/bionic-se...

Author: Leonidas S. Barbosa
Author Date: 2018-08-10 18:30:23 UTC

Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1.2 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 8e1bdd4072b0da19321d21096fb117eaa8128a81

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567
  * SECURITY UPDATE: Infinite recursion/Denial of service
    - debian/patches/CVE-2017-16932.patch: fix in parser.c and
      add some error check files result/errors/759579.xml,
      result/errors/759579.xml.err, result/errors/759579.xml.str,
      test/errors/759579.xml.
    - CVE-2017-16932

ubuntu/bionic-security 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1.2 to ubuntu/bionic-se...

Author: Leonidas S. Barbosa
Author Date: 2018-08-10 18:30:23 UTC

Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1.2 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 8e1bdd4072b0da19321d21096fb117eaa8128a81

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567
  * SECURITY UPDATE: Infinite recursion/Denial of service
    - debian/patches/CVE-2017-16932.patch: fix in parser.c and
      add some error check files result/errors/759579.xml,
      result/errors/759579.xml.err, result/errors/759579.xml.str,
      test/errors/759579.xml.
    - CVE-2017-16932

ubuntu/bionic-devel 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1.2 to ubuntu/bionic-se...

Author: Leonidas S. Barbosa
Author Date: 2018-08-10 18:30:23 UTC

Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1.2 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 8e1bdd4072b0da19321d21096fb117eaa8128a81

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567
  * SECURITY UPDATE: Infinite recursion/Denial of service
    - debian/patches/CVE-2017-16932.patch: fix in parser.c and
      add some error check files result/errors/759579.xml,
      result/errors/759579.xml.err, result/errors/759579.xml.str,
      test/errors/759579.xml.
    - CVE-2017-16932

ubuntu/trusty-devel 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4.13 to ubuntu/trusty-sec...

Author: Leonidas S. Barbosa
Author Date: 2018-08-13 20:50:43 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4.13 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 807dcc4a67ca456d523bab08d5e44c83d39a551f

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567

ubuntu/trusty-security 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4.13 to ubuntu/trusty-sec...

Author: Leonidas S. Barbosa
Author Date: 2018-08-13 20:50:43 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4.13 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 807dcc4a67ca456d523bab08d5e44c83d39a551f

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567

ubuntu/xenial-devel 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.3+dfsg1-1ubuntu0.6 to ubuntu/xenial-secu...

Author: Leonidas S. Barbosa
Author Date: 2018-08-13 19:49:50 UTC

Import patches-unapplied version 2.9.3+dfsg1-1ubuntu0.6 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 29593fd8e061b63e238fea00ae3b93fccbc5e7de

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567

ubuntu/xenial-updates 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.3+dfsg1-1ubuntu0.6 to ubuntu/xenial-secu...

Author: Leonidas S. Barbosa
Author Date: 2018-08-13 19:49:50 UTC

Import patches-unapplied version 2.9.3+dfsg1-1ubuntu0.6 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 29593fd8e061b63e238fea00ae3b93fccbc5e7de

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567

ubuntu/xenial-security 2018-08-14 18:13:37 UTC 2018-08-14
Import patches-unapplied version 2.9.3+dfsg1-1ubuntu0.6 to ubuntu/xenial-secu...

Author: Leonidas S. Barbosa
Author Date: 2018-08-13 19:49:50 UTC

Import patches-unapplied version 2.9.3+dfsg1-1ubuntu0.6 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 29593fd8e061b63e238fea00ae3b93fccbc5e7de

New changelog entries:
  * SECURITY UPDATE: XXE attacks
    - debian/patches/CVE-2016-9318.patch: fix in parser.c.
    - CVE-2016-9318
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-18258.patch: fix in xzlib.c.
    - CVE-2017-18258
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-14404.patch: fix in xpath.c.
    - CVE-2018-14404
  * SECURITY UPDATE: Infinite loop in LZMA decompression
    - debian/patches/CVE-2018-14567.patch: fix in xzlib.c.
    - CVE-2018-14567

debian/jessie 2018-06-23 17:20:09 UTC 2018-06-23
Import patches-unapplied version 2.9.1+dfsg1-5+deb8u6 to debian/jessie

Author: Salvatore Bonaccorso
Author Date: 2018-01-12 18:06:50 UTC

Import patches-unapplied version 2.9.1+dfsg1-5+deb8u6 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 09ba9633d781185711f4df891b22952f959eb616

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix XPath stack frame logic (CVE-2017-15412) (Closes: #883790)

applied/debian/jessie 2018-06-23 17:20:09 UTC 2018-06-23
Import patches-applied version 2.9.1+dfsg1-5+deb8u6 to applied/debian/jessie

Author: Salvatore Bonaccorso
Author Date: 2018-01-12 18:06:50 UTC

Import patches-applied version 2.9.1+dfsg1-5+deb8u6 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: 25b82028e09df01b4d107a0a3fa426c0f19f2166
Unapplied parent: 36615cc314065a87bd52c1e004dadeaba90965ea

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix XPath stack frame logic (CVE-2017-15412) (Closes: #883790)

debian/sid 2018-05-26 16:33:21 UTC 2018-05-26
Import patches-unapplied version 2.9.4+dfsg1-7 to debian/sid

Author: Rene Engelhard
Author Date: 2018-05-26 10:03:44 UTC

Import patches-unapplied version 2.9.4+dfsg1-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 5e45437f15b43c079882b9c686a7ae453eeb8a4b

New changelog entries:
  * Team upload.
  * drop automatically generated dependency on (non-existing) libicu60-dbg
    from libxm2-dbg (closes: #900113)

applied/debian/buster 2018-05-26 16:33:21 UTC 2018-05-26
Import patches-applied version 2.9.4+dfsg1-7 to applied/debian/sid

Author: Rene Engelhard
Author Date: 2018-05-26 10:03:44 UTC

Import patches-applied version 2.9.4+dfsg1-7 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 1b729d5bb77150be55cf8c6bad33b6d95431e33a
Unapplied parent: d2bbf0b7b5fe10fce8a08d9a57e937a96ab17772

New changelog entries:
  * Team upload.
  * drop automatically generated dependency on (non-existing) libicu60-dbg
    from libxm2-dbg (closes: #900113)

debian/buster 2018-05-26 16:33:21 UTC 2018-05-26
Import patches-unapplied version 2.9.4+dfsg1-7 to debian/sid

Author: Rene Engelhard
Author Date: 2018-05-26 10:03:44 UTC

Import patches-unapplied version 2.9.4+dfsg1-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 5e45437f15b43c079882b9c686a7ae453eeb8a4b

New changelog entries:
  * Team upload.
  * drop automatically generated dependency on (non-existing) libicu60-dbg
    from libxm2-dbg (closes: #900113)

applied/debian/sid 2018-05-26 16:33:21 UTC 2018-05-26
Import patches-applied version 2.9.4+dfsg1-7 to applied/debian/sid

Author: Rene Engelhard
Author Date: 2018-05-26 10:03:44 UTC

Import patches-applied version 2.9.4+dfsg1-7 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 1b729d5bb77150be55cf8c6bad33b6d95431e33a
Unapplied parent: d2bbf0b7b5fe10fce8a08d9a57e937a96ab17772

New changelog entries:
  * Team upload.
  * drop automatically generated dependency on (non-existing) libicu60-dbg
    from libxm2-dbg (closes: #900113)

debian/stretch 2018-03-10 17:00:17 UTC 2018-03-10
Import patches-unapplied version 2.9.4+dfsg1-2.2+deb9u2 to debian/stretch

Author: Salvatore Bonaccorso
Author Date: 2018-01-12 18:15:42 UTC

Import patches-unapplied version 2.9.4+dfsg1-2.2+deb9u2 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: be1ae58d08d69a8141141ded813356ea6b915cd6

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix XPath stack frame logic (CVE-2017-15412) (Closes: #883790)

applied/debian/stretch 2018-03-10 17:00:17 UTC 2018-03-10
Import patches-applied version 2.9.4+dfsg1-2.2+deb9u2 to applied/debian/stretch

Author: Salvatore Bonaccorso
Author Date: 2018-01-12 18:15:42 UTC

Import patches-applied version 2.9.4+dfsg1-2.2+deb9u2 to applied/debian/stretch

Imported using git-ubuntu import.

Changelog parent: 3838dfbf1acb82cf48f3cd5fd9a9e768a084ac1f
Unapplied parent: 6c27fb8b1c62025e6c6c38bcd6d0a41af0b51f06

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix XPath stack frame logic (CVE-2017-15412) (Closes: #883790)

importer/ubuntu/pristine-tar 2018-03-06 20:20:32 UTC 2018-03-06
pristine-tar data for libxml2_2.9.4+dfsg1.orig.tar.xz

Author: Ubuntu Git Importer
Author Date: 2018-03-06 20:20:32 UTC

pristine-tar data for libxml2_2.9.4+dfsg1.orig.tar.xz

importer/debian/pristine-tar 2018-03-06 19:06:15 UTC 2018-03-06
pristine-tar data for libxml2_2.9.7+dfsg.orig.tar.gz

Author: Ubuntu Git Importer
Author Date: 2018-03-06 19:06:15 UTC

pristine-tar data for libxml2_2.9.7+dfsg.orig.tar.gz

ubuntu/bionic-proposed 2018-01-02 10:23:35 UTC 2018-01-02
Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1 to ubuntu/bionic-prop...

Author: Gianfranco Costamagna
Author Date: 2018-01-02 09:35:09 UTC

Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 5e45437f15b43c079882b9c686a7ae453eeb8a4b

New changelog entries:
  * Merge from Debian unstable. Remaining changes:
    - debian/{rules,control}: Drop dep on libicu-dbg, icu59 doesn't ship it.

ubuntu/bionic 2018-01-02 10:23:35 UTC 2018-01-02
Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1 to ubuntu/bionic-prop...

Author: Gianfranco Costamagna
Author Date: 2018-01-02 09:35:09 UTC

Import patches-unapplied version 2.9.4+dfsg1-6.1ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 5e45437f15b43c079882b9c686a7ae453eeb8a4b

New changelog entries:
  * Merge from Debian unstable. Remaining changes:
    - debian/{rules,control}: Drop dep on libicu-dbg, icu59 doesn't ship it.

ubuntu/zesty-security 2017-12-13 13:38:12 UTC 2017-12-13
Import patches-unapplied version 2.9.4+dfsg1-2.2ubuntu0.3 to ubuntu/zesty-sec...

Author: Leonidas S. Barbosa
Author Date: 2017-12-11 16:26:06 UTC

Import patches-unapplied version 2.9.4+dfsg1-2.2ubuntu0.3 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: dcbc879ecee6f197485ecd5e0560106c52a377f5

New changelog entries:
  * SECURITY UPDATE: use after-free in xmlXPathCompOpEvalPositionPredicate
    - debian/patches/CVE-2017-15412.patch: fix XPath stack frame logic in
      xpath.c.
    - CVE-2017-15412

ubuntu/zesty-devel 2017-12-13 13:38:12 UTC 2017-12-13
Import patches-unapplied version 2.9.4+dfsg1-2.2ubuntu0.3 to ubuntu/zesty-sec...

Author: Leonidas S. Barbosa
Author Date: 2017-12-11 16:26:06 UTC

Import patches-unapplied version 2.9.4+dfsg1-2.2ubuntu0.3 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: dcbc879ecee6f197485ecd5e0560106c52a377f5

New changelog entries:
  * SECURITY UPDATE: use after-free in xmlXPathCompOpEvalPositionPredicate
    - debian/patches/CVE-2017-15412.patch: fix XPath stack frame logic in
      xpath.c.
    - CVE-2017-15412

ubuntu/artful-devel 2017-12-13 13:38:12 UTC 2017-12-13
Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1.2 to ubuntu/artful-secu...

Author: Leonidas S. Barbosa
Author Date: 2017-12-11 16:30:29 UTC

Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1.2 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: fb63b4c366b291e82a9260623488abf403859360

New changelog entries:
  * SECURITY UPDATE: use after-free in xmlXPathCompOpEvalPositionPredicate
    - debian/patches/CVE-2017-15412.patch: fix XPath stack frame logic in
      xpath.c.
    - CVE-2017-15412

ubuntu/artful-security 2017-12-13 13:38:12 UTC 2017-12-13
Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1.2 to ubuntu/artful-secu...

Author: Leonidas S. Barbosa
Author Date: 2017-12-11 16:30:29 UTC

Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1.2 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: fb63b4c366b291e82a9260623488abf403859360

New changelog entries:
  * SECURITY UPDATE: use after-free in xmlXPathCompOpEvalPositionPredicate
    - debian/patches/CVE-2017-15412.patch: fix XPath stack frame logic in
      xpath.c.
    - CVE-2017-15412

ubuntu/artful-updates 2017-12-13 13:38:12 UTC 2017-12-13
Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1.2 to ubuntu/artful-secu...

Author: Leonidas S. Barbosa
Author Date: 2017-12-11 16:30:29 UTC

Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1.2 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: fb63b4c366b291e82a9260623488abf403859360

New changelog entries:
  * SECURITY UPDATE: use after-free in xmlXPathCompOpEvalPositionPredicate
    - debian/patches/CVE-2017-15412.patch: fix XPath stack frame logic in
      xpath.c.
    - CVE-2017-15412

ubuntu/zesty-updates 2017-12-13 13:38:12 UTC 2017-12-13
Import patches-unapplied version 2.9.4+dfsg1-2.2ubuntu0.3 to ubuntu/zesty-sec...

Author: Leonidas S. Barbosa
Author Date: 2017-12-11 16:26:06 UTC

Import patches-unapplied version 2.9.4+dfsg1-2.2ubuntu0.3 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: dcbc879ecee6f197485ecd5e0560106c52a377f5

New changelog entries:
  * SECURITY UPDATE: use after-free in xmlXPathCompOpEvalPositionPredicate
    - debian/patches/CVE-2017-15412.patch: fix XPath stack frame logic in
      xpath.c.
    - CVE-2017-15412

ubuntu/artful 2017-10-11 10:25:44 UTC 2017-10-11
Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1 to ubuntu/artful-proposed

Author: Matthias Klose
Author Date: 2017-10-11 09:06:37 UTC

Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 77eb23fc9cab89b9f4335d6d99cb1e0b8a35e251

New changelog entries:
  * Fix FTBFS: Fix debhelper -p and -N flags.
  *

ubuntu/artful-proposed 2017-10-11 10:25:44 UTC 2017-10-11
Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1 to ubuntu/artful-proposed

Author: Matthias Klose
Author Date: 2017-10-11 09:06:37 UTC

Import patches-unapplied version 2.9.4+dfsg1-4ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: 77eb23fc9cab89b9f4335d6d99cb1e0b8a35e251

New changelog entries:
  * Fix FTBFS: Fix debhelper -p and -N flags.
  *

ubuntu/precise-security 2017-03-16 11:38:15 UTC 2017-03-16
Import patches-unapplied version 2.7.8.dfsg-5.1ubuntu4.17 to ubuntu/precise-s...

Author: Marc Deslauriers
Author Date: 2017-03-15 13:00:55 UTC

Import patches-unapplied version 2.7.8.dfsg-5.1ubuntu4.17 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 467e73293b3ac351bca9823fb1616c2ed1770cf1

New changelog entries:
  * SECURITY UPDATE: format string vulnerabilities
    - fix format string warnings in HTMLparser.c, SAX2.c, catalog.c,
      configure, configure.in, debugXML.c, encoding.c, entities.c, error.c,
      include/libxml/parserInternals.h, include/libxml/xmlerror.h,
      include/libxml/xmlstring.h, libxml.h, parser.c, parserInternals.c,
      relaxng.c, schematron.c, testModule.c, valid.c, xinclude.c, xmlIO.c,
      xmllint.c, xmlreader.c, xmlschemas.c, xmlstring.c, xmlwriter.c,
      xpath.c, xpointer.c.
    - 4472c3a5a5b516aaf59b89be602fbce52756c3e9
    - 502f6a6d08b08c04b3ddfb1cd21b2f699c1b7f5b
    - d77e5fc4bcdb7da748c9cca116a601ae4df60d21
    - debian/libxml2.symbols: added new symbol.
    - CVE-2016-4448
  * SECURITY UPDATE: use-after-free via namespace nodes in XPointer ranges
    - disallow namespace nodes in XPointer ranges in xpointer.c.
    - c1d1f7121194036608bf555f08d3062a36fd344b
    - CVE-2016-4658
  * SECURITY UPDATE: use-after-free in XPointer range-to function
    - fix XPointer paths beginning with range-to and fix comparison with
      root node in xmlXPathCmpNodesin xpath.c, xpointer.c.
    - 9ab01a277d71f54d3143c2cf333c5c2e9aaedd9e
    - a005199330b86dada19d162cae15ef9bdcb6baa8
    - CVE-2016-5131

ubuntu/yakkety-updates 2017-03-16 11:38:15 UTC 2017-03-16
Import patches-unapplied version 2.9.4+dfsg1-2ubuntu0.1 to ubuntu/yakkety-sec...

Author: Marc Deslauriers
Author Date: 2017-03-14 20:01:34 UTC

Import patches-unapplied version 2.9.4+dfsg1-2ubuntu0.1 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: ba3a81199f7b81711edbc8d0fba682beaf22c9aa

New changelog entries:
  * SECURITY UPDATE: use-after-free via namespace nodes in XPointer ranges
    - debian/patches/CVE-2016-4658.patch: disallow namespace nodes in
      XPointer ranges in xpointer.c.
    - CVE-2016-4658
  * SECURITY UPDATE: use-after-free in XPointer range-to function
    - debian/patches/CVE-2016-5131-1.patch: fix XPointer paths beginning
      with range-to in xpath.c, xpointer.c.
    - debian/patches/CVE-2016-5131-2.patch: fix comparison with root node
      in xmlXPathCmpNodes in xpath.c.
    - CVE-2016-5131

ubuntu/yakkety-security 2017-03-16 11:38:15 UTC 2017-03-16
Import patches-unapplied version 2.9.4+dfsg1-2ubuntu0.1 to ubuntu/yakkety-sec...

Author: Marc Deslauriers
Author Date: 2017-03-14 20:01:34 UTC

Import patches-unapplied version 2.9.4+dfsg1-2ubuntu0.1 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: ba3a81199f7b81711edbc8d0fba682beaf22c9aa

New changelog entries:
  * SECURITY UPDATE: use-after-free via namespace nodes in XPointer ranges
    - debian/patches/CVE-2016-4658.patch: disallow namespace nodes in
      XPointer ranges in xpointer.c.
    - CVE-2016-4658
  * SECURITY UPDATE: use-after-free in XPointer range-to function
    - debian/patches/CVE-2016-5131-1.patch: fix XPointer paths beginning
      with range-to in xpath.c, xpointer.c.
    - debian/patches/CVE-2016-5131-2.patch: fix comparison with root node
      in xmlXPathCmpNodes in xpath.c.
    - CVE-2016-5131

ubuntu/yakkety-devel 2017-03-16 11:38:15 UTC 2017-03-16
Import patches-unapplied version 2.9.4+dfsg1-2ubuntu0.1 to ubuntu/yakkety-sec...

Author: Marc Deslauriers
Author Date: 2017-03-14 20:01:34 UTC

Import patches-unapplied version 2.9.4+dfsg1-2ubuntu0.1 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: ba3a81199f7b81711edbc8d0fba682beaf22c9aa

New changelog entries:
  * SECURITY UPDATE: use-after-free via namespace nodes in XPointer ranges
    - debian/patches/CVE-2016-4658.patch: disallow namespace nodes in
      XPointer ranges in xpointer.c.
    - CVE-2016-4658
  * SECURITY UPDATE: use-after-free in XPointer range-to function
    - debian/patches/CVE-2016-5131-1.patch: fix XPointer paths beginning
      with range-to in xpath.c, xpointer.c.
    - debian/patches/CVE-2016-5131-2.patch: fix comparison with root node
      in xmlXPathCmpNodes in xpath.c.
    - CVE-2016-5131

ubuntu/precise-updates 2017-03-16 11:38:15 UTC 2017-03-16
Import patches-unapplied version 2.7.8.dfsg-5.1ubuntu4.17 to ubuntu/precise-s...

Author: Marc Deslauriers
Author Date: 2017-03-15 13:00:55 UTC

Import patches-unapplied version 2.7.8.dfsg-5.1ubuntu4.17 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 467e73293b3ac351bca9823fb1616c2ed1770cf1

New changelog entries:
  * SECURITY UPDATE: format string vulnerabilities
    - fix format string warnings in HTMLparser.c, SAX2.c, catalog.c,
      configure, configure.in, debugXML.c, encoding.c, entities.c, error.c,
      include/libxml/parserInternals.h, include/libxml/xmlerror.h,
      include/libxml/xmlstring.h, libxml.h, parser.c, parserInternals.c,
      relaxng.c, schematron.c, testModule.c, valid.c, xinclude.c, xmlIO.c,
      xmllint.c, xmlreader.c, xmlschemas.c, xmlstring.c, xmlwriter.c,
      xpath.c, xpointer.c.
    - 4472c3a5a5b516aaf59b89be602fbce52756c3e9
    - 502f6a6d08b08c04b3ddfb1cd21b2f699c1b7f5b
    - d77e5fc4bcdb7da748c9cca116a601ae4df60d21
    - debian/libxml2.symbols: added new symbol.
    - CVE-2016-4448
  * SECURITY UPDATE: use-after-free via namespace nodes in XPointer ranges
    - disallow namespace nodes in XPointer ranges in xpointer.c.
    - c1d1f7121194036608bf555f08d3062a36fd344b
    - CVE-2016-4658
  * SECURITY UPDATE: use-after-free in XPointer range-to function
    - fix XPointer paths beginning with range-to and fix comparison with
      root node in xmlXPathCmpNodesin xpath.c, xpointer.c.
    - 9ab01a277d71f54d3143c2cf333c5c2e9aaedd9e
    - a005199330b86dada19d162cae15ef9bdcb6baa8
    - CVE-2016-5131

ubuntu/precise-devel 2017-03-16 11:38:15 UTC 2017-03-16
Import patches-unapplied version 2.7.8.dfsg-5.1ubuntu4.17 to ubuntu/precise-s...

Author: Marc Deslauriers
Author Date: 2017-03-15 13:00:55 UTC

Import patches-unapplied version 2.7.8.dfsg-5.1ubuntu4.17 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 467e73293b3ac351bca9823fb1616c2ed1770cf1

New changelog entries:
  * SECURITY UPDATE: format string vulnerabilities
    - fix format string warnings in HTMLparser.c, SAX2.c, catalog.c,
      configure, configure.in, debugXML.c, encoding.c, entities.c, error.c,
      include/libxml/parserInternals.h, include/libxml/xmlerror.h,
      include/libxml/xmlstring.h, libxml.h, parser.c, parserInternals.c,
      relaxng.c, schematron.c, testModule.c, valid.c, xinclude.c, xmlIO.c,
      xmllint.c, xmlreader.c, xmlschemas.c, xmlstring.c, xmlwriter.c,
      xpath.c, xpointer.c.
    - 4472c3a5a5b516aaf59b89be602fbce52756c3e9
    - 502f6a6d08b08c04b3ddfb1cd21b2f699c1b7f5b
    - d77e5fc4bcdb7da748c9cca116a601ae4df60d21
    - debian/libxml2.symbols: added new symbol.
    - CVE-2016-4448
  * SECURITY UPDATE: use-after-free via namespace nodes in XPointer ranges
    - disallow namespace nodes in XPointer ranges in xpointer.c.
    - c1d1f7121194036608bf555f08d3062a36fd344b
    - CVE-2016-4658
  * SECURITY UPDATE: use-after-free in XPointer range-to function
    - fix XPointer paths beginning with range-to and fix comparison with
      root node in xmlXPathCmpNodesin xpath.c, xpointer.c.
    - 9ab01a277d71f54d3143c2cf333c5c2e9aaedd9e
    - a005199330b86dada19d162cae15ef9bdcb6baa8
    - CVE-2016-5131

ubuntu/zesty-proposed 2017-01-22 16:17:33 UTC 2017-01-22
Import patches-unapplied version 2.9.4+dfsg1-2.2 to debian/sid

Author: Mònica Ramírez Arceda
Author Date: 2017-01-14 14:31:49 UTC

Import patches-unapplied version 2.9.4+dfsg1-2.2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: aa55268627481f59976feee467b4a265fe6a5b23

New changelog entries:
  * Non-maintainer upload.
  * Fix attribute decoding during XML schema validation
    (Closes: #832602, #832864)

ubuntu/zesty 2017-01-22 16:17:33 UTC 2017-01-22
Import patches-unapplied version 2.9.4+dfsg1-2.2 to debian/sid

Author: Mònica Ramírez Arceda
Author Date: 2017-01-14 14:31:49 UTC

Import patches-unapplied version 2.9.4+dfsg1-2.2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: aa55268627481f59976feee467b4a265fe6a5b23

New changelog entries:
  * Non-maintainer upload.
  * Fix attribute decoding during XML schema validation
    (Closes: #832602, #832864)

ubuntu/yakkety 2016-09-12 22:18:45 UTC 2016-09-12
Import patches-unapplied version 2.9.4+dfsg1-2 to debian/sid

Author: Aron Xu
Author Date: 2016-09-11 18:57:02 UTC

Import patches-unapplied version 2.9.4+dfsg1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 375db50b0a2d62d238f08164d09ec4ddec39a91f

New changelog entries:
  [ YunQiang Su ]
  * add python3 support (Closes: #737774)
  * fix typo in test/control: python->python3
  [ Aron Xu ]
  * Really allow parallel building
  * Mark python3-libxml2* as M-A: same

ubuntu/yakkety-proposed 2016-09-12 22:18:45 UTC 2016-09-12
Import patches-unapplied version 2.9.4+dfsg1-2 to debian/sid

Author: Aron Xu
Author Date: 2016-09-11 18:57:02 UTC

Import patches-unapplied version 2.9.4+dfsg1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 375db50b0a2d62d238f08164d09ec4ddec39a91f

New changelog entries:
  [ YunQiang Su ]
  * add python3 support (Closes: #737774)
  * fix typo in test/control: python->python3
  [ Aron Xu ]
  * Really allow parallel building
  * Mark python3-libxml2* as M-A: same

ubuntu/wily-devel 2016-06-06 16:59:10 UTC 2016-06-06
Import patches-unapplied version 2.9.2+zdfsg1-4ubuntu0.4 to ubuntu/wily-security

Author: Marc Deslauriers
Author Date: 2016-06-03 12:55:52 UTC

Import patches-unapplied version 2.9.2+zdfsg1-4ubuntu0.4 to ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: c544d66fb80989c5127e74b003b267e70c1c6e39

New changelog entries:
  * SECURITY UPDATE: heap-based buffer overread in xmlNextChar
    - debian/patches/CVE-2016-1762.patch: return after error in parser.c.
    - CVE-2016-1762
  * SECURITY UPDATE: heap-based buffer overread in htmlCurrentChar
    - debian/patches/CVE-2016-1833-pre2.patch: handle 0-length entities in
      parserInternals.c.
    - debian/patches/CVE-2016-1833.patch: fix tests in parserInternals.c.
    - CVE-2016-1833
  * SECURITY UPDATE: heap-buffer-overflow in xmlStrncat
    - debian/patches/CVE-2016-1834.patch: check for negative lengths in
      xmlstring.c.
    - CVE-2016-1834
  * SECURITY UPDATE: heap use-after-free in xmlSAX2AttributeNs
    - debian/patches/CVE-2016-1835.patch: add check to parser.c, add tests
      to result/errors/759020.xml.err, result/errors/759020.xml.str,
      test/errors/759020.xml.
    - CVE-2016-1835
  * SECURITY UPDATE: heap use-after-free in xmlDictComputeFastKey
    - debian/patches/CVE-2016-1836.patch: prevent stale pointer usage in
      parser.c, added tests to result/errors/759398.xml.err,
      result/errors/759398.xml.str, test/errors/759398.xml.
    - CVE-2016-1836
  * SECURITY UPDATE: heap use-after-free in htmlParsePubidLiteral and
    htmlParseSystemiteral
    - debian/patches/CVE-2016-1837.patch: prevent stable pointer usage in
      HTMLparser.c.
    - CVE-2016-1837
  * SECURITY UPDATE: heap-based buffer overread in
    xmlParserPrintFileContextInternal
    - debian/patches/CVE-2016-1838.patch: add bounds check to parser.c,
      add tests to result/errors/758588.xml.err,
      result/errors/758588.xml.str, test/errors/758588.xml.
    - CVE-2016-1838
  * SECURITY UPDATE: heap-based buffer overread in xmlDictAddString
    - debian/patches/CVE-2016-1839.patch: add bounds check to HTMLparser.c.
    - CVE-2015-8806
    - CVE-2016-1839
    - CVE-2016-2073
  * SECURITY UPDATE: heap-buffer-overflow in xmlFAParsePosCharGroup
    - debian/patches/CVE-2016-1840.patch: properly handle error in
      xmlregexp.c.
    - CVE-2016-1840
  * SECURITY UPDATE: avoid building recursive entities
    - debian/patches/CVE-2016-3627.patch: properly handle recursion in
      parser.c, tree.c.
    - CVE-2016-3627
  * SECURITY UPDATE: recursion depth counter issue
    - debian/patches/CVE-2016-3705.patch: properly could recursion depth in
      parser.c.
    - CVE-2016-3705
  * SECURITY UPDATE: heap-based buffer-underreads due to xmlParseName
    - debian/patches/CVE-2016-4447.patch: improve error handling in
      parser.c.
    - CVE-2016-4447
  * SECURITY UPDATE: inappropriate fetch of entities content
    - debian/patches/CVE-2016-4449.patch: fix another external entity fetch
      in parser.c.
    - CVE-2016-4449
  * SECURITY UPDATE: out of bound access when serializing malformed strings
    - debian/patches/CVE-2016-4483.patch: improve string handling in
      xmlsave.c.
    - CVE-2016-4483

ubuntu/wily-updates 2016-06-06 16:59:10 UTC 2016-06-06
Import patches-unapplied version 2.9.2+zdfsg1-4ubuntu0.4 to ubuntu/wily-security

Author: Marc Deslauriers
Author Date: 2016-06-03 12:55:52 UTC

Import patches-unapplied version 2.9.2+zdfsg1-4ubuntu0.4 to ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: c544d66fb80989c5127e74b003b267e70c1c6e39

New changelog entries:
  * SECURITY UPDATE: heap-based buffer overread in xmlNextChar
    - debian/patches/CVE-2016-1762.patch: return after error in parser.c.
    - CVE-2016-1762
  * SECURITY UPDATE: heap-based buffer overread in htmlCurrentChar
    - debian/patches/CVE-2016-1833-pre2.patch: handle 0-length entities in
      parserInternals.c.
    - debian/patches/CVE-2016-1833.patch: fix tests in parserInternals.c.
    - CVE-2016-1833
  * SECURITY UPDATE: heap-buffer-overflow in xmlStrncat
    - debian/patches/CVE-2016-1834.patch: check for negative lengths in
      xmlstring.c.
    - CVE-2016-1834
  * SECURITY UPDATE: heap use-after-free in xmlSAX2AttributeNs
    - debian/patches/CVE-2016-1835.patch: add check to parser.c, add tests
      to result/errors/759020.xml.err, result/errors/759020.xml.str,
      test/errors/759020.xml.
    - CVE-2016-1835
  * SECURITY UPDATE: heap use-after-free in xmlDictComputeFastKey
    - debian/patches/CVE-2016-1836.patch: prevent stale pointer usage in
      parser.c, added tests to result/errors/759398.xml.err,
      result/errors/759398.xml.str, test/errors/759398.xml.
    - CVE-2016-1836
  * SECURITY UPDATE: heap use-after-free in htmlParsePubidLiteral and
    htmlParseSystemiteral
    - debian/patches/CVE-2016-1837.patch: prevent stable pointer usage in
      HTMLparser.c.
    - CVE-2016-1837
  * SECURITY UPDATE: heap-based buffer overread in
    xmlParserPrintFileContextInternal
    - debian/patches/CVE-2016-1838.patch: add bounds check to parser.c,
      add tests to result/errors/758588.xml.err,
      result/errors/758588.xml.str, test/errors/758588.xml.
    - CVE-2016-1838
  * SECURITY UPDATE: heap-based buffer overread in xmlDictAddString
    - debian/patches/CVE-2016-1839.patch: add bounds check to HTMLparser.c.
    - CVE-2015-8806
    - CVE-2016-1839
    - CVE-2016-2073
  * SECURITY UPDATE: heap-buffer-overflow in xmlFAParsePosCharGroup
    - debian/patches/CVE-2016-1840.patch: properly handle error in
      xmlregexp.c.
    - CVE-2016-1840
  * SECURITY UPDATE: avoid building recursive entities
    - debian/patches/CVE-2016-3627.patch: properly handle recursion in
      parser.c, tree.c.
    - CVE-2016-3627
  * SECURITY UPDATE: recursion depth counter issue
    - debian/patches/CVE-2016-3705.patch: properly could recursion depth in
      parser.c.
    - CVE-2016-3705
  * SECURITY UPDATE: heap-based buffer-underreads due to xmlParseName
    - debian/patches/CVE-2016-4447.patch: improve error handling in
      parser.c.
    - CVE-2016-4447
  * SECURITY UPDATE: inappropriate fetch of entities content
    - debian/patches/CVE-2016-4449.patch: fix another external entity fetch
      in parser.c.
    - CVE-2016-4449
  * SECURITY UPDATE: out of bound access when serializing malformed strings
    - debian/patches/CVE-2016-4483.patch: improve string handling in
      xmlsave.c.
    - CVE-2016-4483

ubuntu/wily-security 2016-06-06 16:59:10 UTC 2016-06-06
Import patches-unapplied version 2.9.2+zdfsg1-4ubuntu0.4 to ubuntu/wily-security

Author: Marc Deslauriers
Author Date: 2016-06-03 12:55:52 UTC

Import patches-unapplied version 2.9.2+zdfsg1-4ubuntu0.4 to ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: c544d66fb80989c5127e74b003b267e70c1c6e39

New changelog entries:
  * SECURITY UPDATE: heap-based buffer overread in xmlNextChar
    - debian/patches/CVE-2016-1762.patch: return after error in parser.c.
    - CVE-2016-1762
  * SECURITY UPDATE: heap-based buffer overread in htmlCurrentChar
    - debian/patches/CVE-2016-1833-pre2.patch: handle 0-length entities in
      parserInternals.c.
    - debian/patches/CVE-2016-1833.patch: fix tests in parserInternals.c.
    - CVE-2016-1833
  * SECURITY UPDATE: heap-buffer-overflow in xmlStrncat
    - debian/patches/CVE-2016-1834.patch: check for negative lengths in
      xmlstring.c.
    - CVE-2016-1834
  * SECURITY UPDATE: heap use-after-free in xmlSAX2AttributeNs
    - debian/patches/CVE-2016-1835.patch: add check to parser.c, add tests
      to result/errors/759020.xml.err, result/errors/759020.xml.str,
      test/errors/759020.xml.
    - CVE-2016-1835
  * SECURITY UPDATE: heap use-after-free in xmlDictComputeFastKey
    - debian/patches/CVE-2016-1836.patch: prevent stale pointer usage in
      parser.c, added tests to result/errors/759398.xml.err,
      result/errors/759398.xml.str, test/errors/759398.xml.
    - CVE-2016-1836
  * SECURITY UPDATE: heap use-after-free in htmlParsePubidLiteral and
    htmlParseSystemiteral
    - debian/patches/CVE-2016-1837.patch: prevent stable pointer usage in
      HTMLparser.c.
    - CVE-2016-1837
  * SECURITY UPDATE: heap-based buffer overread in
    xmlParserPrintFileContextInternal
    - debian/patches/CVE-2016-1838.patch: add bounds check to parser.c,
      add tests to result/errors/758588.xml.err,
      result/errors/758588.xml.str, test/errors/758588.xml.
    - CVE-2016-1838
  * SECURITY UPDATE: heap-based buffer overread in xmlDictAddString
    - debian/patches/CVE-2016-1839.patch: add bounds check to HTMLparser.c.
    - CVE-2015-8806
    - CVE-2016-1839
    - CVE-2016-2073
  * SECURITY UPDATE: heap-buffer-overflow in xmlFAParsePosCharGroup
    - debian/patches/CVE-2016-1840.patch: properly handle error in
      xmlregexp.c.
    - CVE-2016-1840
  * SECURITY UPDATE: avoid building recursive entities
    - debian/patches/CVE-2016-3627.patch: properly handle recursion in
      parser.c, tree.c.
    - CVE-2016-3627
  * SECURITY UPDATE: recursion depth counter issue
    - debian/patches/CVE-2016-3705.patch: properly could recursion depth in
      parser.c.
    - CVE-2016-3705
  * SECURITY UPDATE: heap-based buffer-underreads due to xmlParseName
    - debian/patches/CVE-2016-4447.patch: improve error handling in
      parser.c.
    - CVE-2016-4447
  * SECURITY UPDATE: inappropriate fetch of entities content
    - debian/patches/CVE-2016-4449.patch: fix another external entity fetch
      in parser.c.
    - CVE-2016-4449
  * SECURITY UPDATE: out of bound access when serializing malformed strings
    - debian/patches/CVE-2016-4483.patch: improve string handling in
      xmlsave.c.
    - CVE-2016-4483

debian/wheezy 2016-04-02 23:35:20 UTC 2016-04-02
Import patches-unapplied version 2.8.0+dfsg1-7+wheezy5 to debian/wheezy

Author: Salvatore Bonaccorso
Author Date: 2015-12-19 14:25:28 UTC

Import patches-unapplied version 2.8.0+dfsg1-7+wheezy5 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: c4571c2408c30fbc7582fbd2e789a0481f2dc58b

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Add patches to address CVE-2015-7941.
    CVE-2015-7941: Denial of service via out-of-bounds read. (Closes: #783010)
  * Add CVE-2015-1819-Enforce-the-reader-to-run-in-constant-.patch.
    CVE-2015-1819: Enforce the reader to run in constant memory.
    Thanks to Mike Gabriel for the patch backport. (Closes: #782782)
  * Add patches to address CVE-2015-8317.
    CVE-2015-8317: Out-of-bounds heap read when parsing file with unfinished
    xml declaration.
  * Add patches to address CVE-2015-7942.
    CVE-2015-7942: heap-based buffer overflow in
    xmlParseConditionalSections(). (Closes: #802827)
  * Add Fix-parsing-short-unclosed-comment-uninitialized-acc.patch patch.
    Parsing an unclosed comment can result in `Conditional jump or move
    depends on uninitialised value(s)` and unsafe memory access.
    (Closes: #782985)
  * Add CVE-2015-8035-Fix-XZ-compression-support-loop.patch patch.
    CVE-2015-8035: DoS when parsing specially crafted XML document if XZ
    support is enabled. (Closes: #803942)
  * Add Avoid-extra-processing-of-MarkupDecl-when-EOF.patch patch.
    CVE-2015-8241: Buffer overread with XML parser in xmlNextChar.
    (Closes: #806384)
  * Add Avoid-processing-entities-after-encoding-conversion-.patch patch.
    CVE-2015-7498: Heap-based buffer overflow in xmlParseXmlDecl.
  * Add CVE-2015-7497-Avoid-an-heap-buffer-overflow-in-xmlDi.patch patch.
    CVE-2015-7497: Heap-based buffer overflow in xmlDictComputeFastQKey.
  * Add CVE-2015-5312-Another-entity-expansion-issue.patch patch.
    CVE-2015-5312: CPU exhaustion when processing specially crafted XML
    input.
  * Add patches to address CVE-2015-7499.
    CVE-2015-7499: Heap-based buffer overflow in xmlGROW.
    Add a specific parser error (XML_ERR_USER_STOP), backported from
    e50ba8164eee06461c73cd8abb9b46aa0be81869 upstream (commit to address
    CVE-2013-2877, the "Try to stop parsing as quickly as possible" was not
    backported).
  * Add CVE-2015-7500-Fix-memory-access-error-due-to-incorre.patch patch.
    CVE-2015-7500: Heap buffer overflow in xmlParseMisc.

applied/debian/wheezy 2016-04-02 23:35:20 UTC 2016-04-02
Import patches-applied version 2.8.0+dfsg1-7+wheezy5 to applied/debian/wheezy

Author: Salvatore Bonaccorso
Author Date: 2015-12-19 14:25:28 UTC

Import patches-applied version 2.8.0+dfsg1-7+wheezy5 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 61ff9390ffac3c6393c1ec36485a56752427f8b6
Unapplied parent: 129e8b1b8bfd78dd958028ceaf810f49cb60be06

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Add patches to address CVE-2015-7941.
    CVE-2015-7941: Denial of service via out-of-bounds read. (Closes: #783010)
  * Add CVE-2015-1819-Enforce-the-reader-to-run-in-constant-.patch.
    CVE-2015-1819: Enforce the reader to run in constant memory.
    Thanks to Mike Gabriel for the patch backport. (Closes: #782782)
  * Add patches to address CVE-2015-8317.
    CVE-2015-8317: Out-of-bounds heap read when parsing file with unfinished
    xml declaration.
  * Add patches to address CVE-2015-7942.
    CVE-2015-7942: heap-based buffer overflow in
    xmlParseConditionalSections(). (Closes: #802827)
  * Add Fix-parsing-short-unclosed-comment-uninitialized-acc.patch patch.
    Parsing an unclosed comment can result in `Conditional jump or move
    depends on uninitialised value(s)` and unsafe memory access.
    (Closes: #782985)
  * Add CVE-2015-8035-Fix-XZ-compression-support-loop.patch patch.
    CVE-2015-8035: DoS when parsing specially crafted XML document if XZ
    support is enabled. (Closes: #803942)
  * Add Avoid-extra-processing-of-MarkupDecl-when-EOF.patch patch.
    CVE-2015-8241: Buffer overread with XML parser in xmlNextChar.
    (Closes: #806384)
  * Add Avoid-processing-entities-after-encoding-conversion-.patch patch.
    CVE-2015-7498: Heap-based buffer overflow in xmlParseXmlDecl.
  * Add CVE-2015-7497-Avoid-an-heap-buffer-overflow-in-xmlDi.patch patch.
    CVE-2015-7497: Heap-based buffer overflow in xmlDictComputeFastQKey.
  * Add CVE-2015-5312-Another-entity-expansion-issue.patch patch.
    CVE-2015-5312: CPU exhaustion when processing specially crafted XML
    input.
  * Add patches to address CVE-2015-7499.
    CVE-2015-7499: Heap-based buffer overflow in xmlGROW.
    Add a specific parser error (XML_ERR_USER_STOP), backported from
    e50ba8164eee06461c73cd8abb9b46aa0be81869 upstream (commit to address
    CVE-2013-2877, the "Try to stop parsing as quickly as possible" was not
    backported).
  * Add CVE-2015-7500-Fix-memory-access-error-due-to-incorre.patch patch.
    CVE-2015-7500: Heap buffer overflow in xmlParseMisc.

ubuntu/vivid-devel 2016-01-19 20:44:35 UTC 2016-01-19
Import patches-unapplied version 2.9.2+dfsg1-3ubuntu0.3 to ubuntu/vivid-security

Author: Marc Deslauriers
Author Date: 2016-01-14 18:12:24 UTC

Import patches-unapplied version 2.9.2+dfsg1-3ubuntu0.3 to ubuntu/vivid-security

Imported using git-ubuntu import.

Changelog parent: 93c63fa3468daff827f065b026c35065dda548fc

New changelog entries:
  * SECURITY UPDATE: incomplete fix for out of bounds read in xmlGROW
    (LP: #1525996)
    - add extra commits to this previously-fixed CVE
    - debian/patches/CVE-2015-7499-3.patch: reuse xmlHaltParser() where it
      makes sense in parser.c.
    - debian/patches/CVE-2015-7499-4.patch: do not print error context when
      there is none in error.c.
    - CVE-2015-7499
  * SECURITY UPDATE: out of bounds memory access via unclosed html comment
    - debian/patches/CVE-2015-8710.patch: fix parsing short unclosed
      comment uninitialized access in HTMLparser.c.
    - CVE-2015-8710

ubuntu/vivid-updates 2016-01-19 20:44:35 UTC 2016-01-19
Import patches-unapplied version 2.9.2+dfsg1-3ubuntu0.3 to ubuntu/vivid-security

Author: Marc Deslauriers
Author Date: 2016-01-14 18:12:24 UTC

Import patches-unapplied version 2.9.2+dfsg1-3ubuntu0.3 to ubuntu/vivid-security

Imported using git-ubuntu import.

Changelog parent: 93c63fa3468daff827f065b026c35065dda548fc

New changelog entries:
  * SECURITY UPDATE: incomplete fix for out of bounds read in xmlGROW
    (LP: #1525996)
    - add extra commits to this previously-fixed CVE
    - debian/patches/CVE-2015-7499-3.patch: reuse xmlHaltParser() where it
      makes sense in parser.c.
    - debian/patches/CVE-2015-7499-4.patch: do not print error context when
      there is none in error.c.
    - CVE-2015-7499
  * SECURITY UPDATE: out of bounds memory access via unclosed html comment
    - debian/patches/CVE-2015-8710.patch: fix parsing short unclosed
      comment uninitialized access in HTMLparser.c.
    - CVE-2015-8710

ubuntu/vivid-security 2016-01-19 20:44:35 UTC 2016-01-19
Import patches-unapplied version 2.9.2+dfsg1-3ubuntu0.3 to ubuntu/vivid-security

Author: Marc Deslauriers
Author Date: 2016-01-14 18:12:24 UTC

Import patches-unapplied version 2.9.2+dfsg1-3ubuntu0.3 to ubuntu/vivid-security

Imported using git-ubuntu import.

Changelog parent: 93c63fa3468daff827f065b026c35065dda548fc

New changelog entries:
  * SECURITY UPDATE: incomplete fix for out of bounds read in xmlGROW
    (LP: #1525996)
    - add extra commits to this previously-fixed CVE
    - debian/patches/CVE-2015-7499-3.patch: reuse xmlHaltParser() where it
      makes sense in parser.c.
    - debian/patches/CVE-2015-7499-4.patch: do not print error context when
      there is none in error.c.
    - CVE-2015-7499
  * SECURITY UPDATE: out of bounds memory access via unclosed html comment
    - debian/patches/CVE-2015-8710.patch: fix parsing short unclosed
      comment uninitialized access in HTMLparser.c.
    - CVE-2015-8710

ubuntu/xenial 2015-12-14 16:20:37 UTC 2015-12-14
Import patches-unapplied version 2.9.3+dfsg1-1 to debian/sid

Author: Aron Xu
Author Date: 2015-12-14 07:35:25 UTC

Import patches-unapplied version 2.9.3+dfsg1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: addb39ff634c32511800cedac45910496001acb3

New changelog entries:
  * New upstream release.

ubuntu/xenial-proposed 2015-12-14 16:20:37 UTC 2015-12-14
Import patches-unapplied version 2.9.3+dfsg1-1 to debian/sid

Author: Aron Xu
Author Date: 2015-12-14 07:35:25 UTC

Import patches-unapplied version 2.9.3+dfsg1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: addb39ff634c32511800cedac45910496001acb3

New changelog entries:
  * New upstream release.

ubuntu/wily 2015-09-22 16:15:21 UTC 2015-09-22
Import patches-unapplied version 2.9.2+zdfsg1-4 to debian/sid

Author: Aron Xu
Author Date: 2015-09-22 08:31:48 UTC

Import patches-unapplied version 2.9.2+zdfsg1-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: fa2c117ed5235165a41bcea85e04f18e792e39ab

New changelog entries:
  * Revert everything in N'ACKed NMU revert to 2.9.1.
    - Resolving regression, Closes: #754424
    - Drop the following NMU, not needed in 2.9.2, Closes: #781232
    - Drop not approved patch for GNOME #746048
  * Revert icu dbg drop, but don't hardcode version,
    thanks Matthias Klose <doko>, Closes: #798642
  * Cherry pick upstream post release patches:
    - Fix for regression triggered by CVE-2014-3660, Closes: #768089
    - Fix for the spurious ID already defined error, Closes: #766884
    - Fix for CVE-2015-1819, Closes: #782782
    - Fix for GNOME #744980, Closes: #783010
    - Several fixes for memory related issues.

ubuntu/wily-proposed 2015-09-22 16:15:21 UTC 2015-09-22
Import patches-unapplied version 2.9.2+zdfsg1-4 to debian/sid

Author: Aron Xu
Author Date: 2015-09-22 08:31:48 UTC

Import patches-unapplied version 2.9.2+zdfsg1-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: fa2c117ed5235165a41bcea85e04f18e792e39ab

New changelog entries:
  * Revert everything in N'ACKed NMU revert to 2.9.1.
    - Resolving regression, Closes: #754424
    - Drop the following NMU, not needed in 2.9.2, Closes: #781232
    - Drop not approved patch for GNOME #746048
  * Revert icu dbg drop, but don't hardcode version,
    thanks Matthias Klose <doko>, Closes: #798642
  * Cherry pick upstream post release patches:
    - Fix for regression triggered by CVE-2014-3660, Closes: #768089
    - Fix for the spurious ID already defined error, Closes: #766884
    - Fix for CVE-2015-1819, Closes: #782782
    - Fix for GNOME #744980, Closes: #783010
    - Several fixes for memory related issues.

ubuntu/vivid 2015-02-01 10:17:37 UTC 2015-02-01
Import patches-unapplied version 2.9.2+dfsg1-3 to debian/sid

Author: Aron Xu
Author Date: 2015-02-01 04:35:52 UTC

Import patches-unapplied version 2.9.2+dfsg1-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 10342b6adfc7bacf5e7c0e6cdb4b903da4ef7904

New changelog entries:
  * Add icu related deps for -dev and -dbg packages
    (Closes: #776741)

ubuntu/vivid-proposed 2015-02-01 10:17:37 UTC 2015-02-01
Import patches-unapplied version 2.9.2+dfsg1-3 to debian/sid

Author: Aron Xu
Author Date: 2015-02-01 04:35:52 UTC

Import patches-unapplied version 2.9.2+dfsg1-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 10342b6adfc7bacf5e7c0e6cdb4b903da4ef7904

New changelog entries:
  * Add icu related deps for -dev and -dbg packages
    (Closes: #776741)

ubuntu/lucid-updates 2014-10-27 13:08:42 UTC 2014-10-27
Import patches-unapplied version 2.7.6.dfsg-1ubuntu1.15 to ubuntu/lucid-security

Author: Marc Deslauriers
Author Date: 2014-10-22 18:27:25 UTC

Import patches-unapplied version 2.7.6.dfsg-1ubuntu1.15 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: de18c060ff96260d124491ebe272746f2c0d2da3

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - parser.c, SAX2.c, include/libxml/entities.h: refactor entity checking
      and add additional tests.
    - https://git.gnome.org/browse/libxml2/commit/?id=a3f1e3e5712257fd279917a9158278534e8f4b72
    - https://git.gnome.org/browse/libxml2/commit/?id=cff2546f13503ac028e4c1f63c7b6d85f2f2d777
    - https://git.gnome.org/browse/libxml2/commit/?id=be2a7edaf289c5da74a4f9ed3a0b6c733e775230
    - CVE-2014-3660

ubuntu/lucid-devel 2014-10-27 13:08:42 UTC 2014-10-27
Import patches-unapplied version 2.7.6.dfsg-1ubuntu1.15 to ubuntu/lucid-security

Author: Marc Deslauriers
Author Date: 2014-10-22 18:27:25 UTC

Import patches-unapplied version 2.7.6.dfsg-1ubuntu1.15 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: de18c060ff96260d124491ebe272746f2c0d2da3

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - parser.c, SAX2.c, include/libxml/entities.h: refactor entity checking
      and add additional tests.
    - https://git.gnome.org/browse/libxml2/commit/?id=a3f1e3e5712257fd279917a9158278534e8f4b72
    - https://git.gnome.org/browse/libxml2/commit/?id=cff2546f13503ac028e4c1f63c7b6d85f2f2d777
    - https://git.gnome.org/browse/libxml2/commit/?id=be2a7edaf289c5da74a4f9ed3a0b6c733e775230
    - CVE-2014-3660

ubuntu/lucid-security 2014-10-27 13:08:42 UTC 2014-10-27
Import patches-unapplied version 2.7.6.dfsg-1ubuntu1.15 to ubuntu/lucid-security

Author: Marc Deslauriers
Author Date: 2014-10-22 18:27:25 UTC

Import patches-unapplied version 2.7.6.dfsg-1ubuntu1.15 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: de18c060ff96260d124491ebe272746f2c0d2da3

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - parser.c, SAX2.c, include/libxml/entities.h: refactor entity checking
      and add additional tests.
    - https://git.gnome.org/browse/libxml2/commit/?id=a3f1e3e5712257fd279917a9158278534e8f4b72
    - https://git.gnome.org/browse/libxml2/commit/?id=cff2546f13503ac028e4c1f63c7b6d85f2f2d777
    - https://git.gnome.org/browse/libxml2/commit/?id=be2a7edaf289c5da74a4f9ed3a0b6c733e775230
    - CVE-2014-3660

ubuntu/utopic-devel 2014-10-16 21:13:16 UTC 2014-10-16
Import patches-unapplied version 2.9.1+dfsg1-4ubuntu1 to ubuntu/utopic-proposed

Author: Marc Deslauriers
Author Date: 2014-10-16 19:28:40 UTC

Import patches-unapplied version 2.9.1+dfsg1-4ubuntu1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 31d5d8be206726b305328cfe27a93e2ebd512c9a

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - debian/patches/CVE-2014-3660.patch: added additional tests to
      parser.c.
    - CVE-2014-3660

ubuntu/utopic 2014-10-16 21:13:16 UTC 2014-10-16
Import patches-unapplied version 2.9.1+dfsg1-4ubuntu1 to ubuntu/utopic-proposed

Author: Marc Deslauriers
Author Date: 2014-10-16 19:28:40 UTC

Import patches-unapplied version 2.9.1+dfsg1-4ubuntu1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 31d5d8be206726b305328cfe27a93e2ebd512c9a

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - debian/patches/CVE-2014-3660.patch: added additional tests to
      parser.c.
    - CVE-2014-3660

ubuntu/utopic-proposed 2014-10-16 21:13:16 UTC 2014-10-16
Import patches-unapplied version 2.9.1+dfsg1-4ubuntu1 to ubuntu/utopic-proposed

Author: Marc Deslauriers
Author Date: 2014-10-16 19:28:40 UTC

Import patches-unapplied version 2.9.1+dfsg1-4ubuntu1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 31d5d8be206726b305328cfe27a93e2ebd512c9a

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - debian/patches/CVE-2014-3660.patch: added additional tests to
      parser.c.
    - CVE-2014-3660

ubuntu/saucy-security 2014-06-17 11:33:28 UTC 2014-06-17
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2.3 to ubuntu/saucy-security

Author: Marc Deslauriers
Author Date: 2014-06-13 12:34:17 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 42f7412c405e964e062faa15a918656e6b4febbb

New changelog entries:
  * SECURITY REGRESSION: more xmllint regressions (LP: #1321869)
    - debian/patches/lp1321869.patch: use upstream commit which includes
      additional regression fixes to parser.c.

ubuntu/saucy-devel 2014-06-17 11:33:28 UTC 2014-06-17
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2.3 to ubuntu/saucy-security

Author: Marc Deslauriers
Author Date: 2014-06-13 12:34:17 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 42f7412c405e964e062faa15a918656e6b4febbb

New changelog entries:
  * SECURITY REGRESSION: more xmllint regressions (LP: #1321869)
    - debian/patches/lp1321869.patch: use upstream commit which includes
      additional regression fixes to parser.c.

ubuntu/saucy-updates 2014-06-17 11:33:28 UTC 2014-06-17
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2.3 to ubuntu/saucy-security

Author: Marc Deslauriers
Author Date: 2014-06-13 12:34:17 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 42f7412c405e964e062faa15a918656e6b4febbb

New changelog entries:
  * SECURITY REGRESSION: more xmllint regressions (LP: #1321869)
    - debian/patches/lp1321869.patch: use upstream commit which includes
      additional regression fixes to parser.c.

ubuntu/quantal-updates 2014-05-15 17:38:30 UTC 2014-05-15
Import patches-unapplied version 2.8.0+dfsg1-5ubuntu2.5 to ubuntu/quantal-sec...

Author: Marc Deslauriers
Author Date: 2014-05-08 18:29:41 UTC

Import patches-unapplied version 2.8.0+dfsg1-5ubuntu2.5 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: d1581d89095d001f71c719f8cc6cbe9450eab695

New changelog entries:
  * SECURITY UPDATE: resource exhaustion via external parameter entities
    - debian/patches/CVE-2014-0191.patch: do not fetch external parameter
      entities in parser.c.
    - CVE-2014-0191

ubuntu/quantal-devel 2014-05-15 17:38:30 UTC 2014-05-15
Import patches-unapplied version 2.8.0+dfsg1-5ubuntu2.5 to ubuntu/quantal-sec...

Author: Marc Deslauriers
Author Date: 2014-05-08 18:29:41 UTC

Import patches-unapplied version 2.8.0+dfsg1-5ubuntu2.5 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: d1581d89095d001f71c719f8cc6cbe9450eab695

New changelog entries:
  * SECURITY UPDATE: resource exhaustion via external parameter entities
    - debian/patches/CVE-2014-0191.patch: do not fetch external parameter
      entities in parser.c.
    - CVE-2014-0191

ubuntu/quantal-security 2014-05-15 17:38:30 UTC 2014-05-15
Import patches-unapplied version 2.8.0+dfsg1-5ubuntu2.5 to ubuntu/quantal-sec...

Author: Marc Deslauriers
Author Date: 2014-05-08 18:29:41 UTC

Import patches-unapplied version 2.8.0+dfsg1-5ubuntu2.5 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: d1581d89095d001f71c719f8cc6cbe9450eab695

New changelog entries:
  * SECURITY UPDATE: resource exhaustion via external parameter entities
    - debian/patches/CVE-2014-0191.patch: do not fetch external parameter
      entities in parser.c.
    - CVE-2014-0191

ubuntu/trusty-proposed 2014-02-23 14:33:21 UTC 2014-02-23
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4 to ubuntu/trusty-proposed

Author: Matthias Klose
Author Date: 2014-02-23 13:48:26 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: e83586e66e0a0485d2f56066e6e4ff4c1822500f

New changelog entries:
  * Rebuild to drop files installed into /usr/share/pyshared.

ubuntu/trusty 2014-02-23 14:33:21 UTC 2014-02-23
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4 to ubuntu/trusty-proposed

Author: Matthias Klose
Author Date: 2014-02-23 13:48:26 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu4 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: e83586e66e0a0485d2f56066e6e4ff4c1822500f

New changelog entries:
  * Rebuild to drop files installed into /usr/share/pyshared.

debian/squeeze 2014-02-15 16:48:13 UTC 2014-02-15
Import patches-unapplied version 2.7.8.dfsg-2+squeeze8 to debian/squeeze

Author: Michael Gilbert
Author Date: 2013-10-13 05:33:28 UTC

Import patches-unapplied version 2.7.8.dfsg-2+squeeze8 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: d99835836f064c388ca743ab732b524d78570404

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix cve-2013-2877: out-of-bounds read when handling documents that end
    abruptly.

applied/debian/squeeze 2014-02-15 16:48:13 UTC 2014-02-15
Import patches-applied version 2.7.8.dfsg-2+squeeze8 to applied/debian/squeeze

Author: Michael Gilbert
Author Date: 2013-10-13 05:33:28 UTC

Import patches-applied version 2.7.8.dfsg-2+squeeze8 to applied/debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 37b81c6033554cc5cfda844833da06fb74ce77a8
Unapplied parent: 23b942eec9468e29e385f1db39ae0d2e04a45c7a

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix cve-2013-2877: out-of-bounds read when handling documents that end
    abruptly.

ubuntu/saucy 2013-08-22 21:03:16 UTC 2013-08-22
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2 to ubuntu/saucy-proposed

Author: Dimitri John Ledkov
Author Date: 2013-08-22 20:34:37 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2 to ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: 829f94ca76c11269cb850fd170229cd076c31689

New changelog entries:
  [ Tim Galeckas ]
  * Fix SIGSEGV when --pretty is specified. LP: #923691

ubuntu/saucy-proposed 2013-08-22 21:03:16 UTC 2013-08-22
Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2 to ubuntu/saucy-proposed

Author: Dimitri John Ledkov
Author Date: 2013-08-22 20:34:37 UTC

Import patches-unapplied version 2.9.1+dfsg1-3ubuntu2 to ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: 829f94ca76c11269cb850fd170229cd076c31689

New changelog entries:
  [ Tim Galeckas ]
  * Fix SIGSEGV when --pretty is specified. LP: #923691

ubuntu/raring-updates 2013-07-17 12:58:19 UTC 2013-07-17
Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4.3 to ubuntu/raring-secu...

Author: Marc Deslauriers
Author Date: 2013-07-16 17:46:23 UTC

Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 8c1fa6bd9ed414e140c0197a3decd86072c15390

New changelog entries:
  * SECURITY REGRESSION: wrong return values
    - debian/patches/CVE-2013-2877.patch: revised to fix up a couple of
      return values.
    - CVE-2013-2877

ubuntu/raring-security 2013-07-17 12:58:19 UTC 2013-07-17
Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4.3 to ubuntu/raring-secu...

Author: Marc Deslauriers
Author Date: 2013-07-16 17:46:23 UTC

Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 8c1fa6bd9ed414e140c0197a3decd86072c15390

New changelog entries:
  * SECURITY REGRESSION: wrong return values
    - debian/patches/CVE-2013-2877.patch: revised to fix up a couple of
      return values.
    - CVE-2013-2877

ubuntu/raring-devel 2013-07-17 12:58:19 UTC 2013-07-17
Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4.3 to ubuntu/raring-secu...

Author: Marc Deslauriers
Author Date: 2013-07-16 17:46:23 UTC

Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 8c1fa6bd9ed414e140c0197a3decd86072c15390

New changelog entries:
  * SECURITY REGRESSION: wrong return values
    - debian/patches/CVE-2013-2877.patch: revised to fix up a couple of
      return values.
    - CVE-2013-2877

ubuntu/hardy-updates 2013-03-28 14:03:13 UTC 2013-03-28
Import patches-unapplied version 2.6.31.dfsg-2ubuntu1.12 to ubuntu/hardy-secu...

Author: Marc Deslauriers
Author Date: 2013-03-26 14:31:51 UTC

Import patches-unapplied version 2.6.31.dfsg-2ubuntu1.12 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 7672bae10f33595df53465c1ded31c53cdf2242e

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - include/libxml/parser.h, parser.c, parserInternals.c: limit number of
      entity expansions, thanks to Daniel Veillard.
    - http://git.gnome.org/browse/libxml2/commit/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
    - CVE-2013-0338

ubuntu/hardy-devel 2013-03-28 14:03:13 UTC 2013-03-28
Import patches-unapplied version 2.6.31.dfsg-2ubuntu1.12 to ubuntu/hardy-secu...

Author: Marc Deslauriers
Author Date: 2013-03-26 14:31:51 UTC

Import patches-unapplied version 2.6.31.dfsg-2ubuntu1.12 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 7672bae10f33595df53465c1ded31c53cdf2242e

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - include/libxml/parser.h, parser.c, parserInternals.c: limit number of
      entity expansions, thanks to Daniel Veillard.
    - http://git.gnome.org/browse/libxml2/commit/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
    - CVE-2013-0338

ubuntu/hardy-security 2013-03-28 14:03:13 UTC 2013-03-28
Import patches-unapplied version 2.6.31.dfsg-2ubuntu1.12 to ubuntu/hardy-secu...

Author: Marc Deslauriers
Author Date: 2013-03-26 14:31:51 UTC

Import patches-unapplied version 2.6.31.dfsg-2ubuntu1.12 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 7672bae10f33595df53465c1ded31c53cdf2242e

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - include/libxml/parser.h, parser.c, parserInternals.c: limit number of
      entity expansions, thanks to Daniel Veillard.
    - http://git.gnome.org/browse/libxml2/commit/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
    - CVE-2013-0338

ubuntu/oneiric-devel 2013-03-28 14:03:13 UTC 2013-03-28
Import patches-unapplied version 2.7.8.dfsg-4ubuntu0.6 to ubuntu/oneiric-secu...

Author: Marc Deslauriers
Author Date: 2013-03-26 14:25:45 UTC

Import patches-unapplied version 2.7.8.dfsg-4ubuntu0.6 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 41a1b22080f2f506f553db553cba22809aa6647e

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - include/libxml/parser.h, parser.c, parserInternals.c: limit number of
      entity expansions, thanks to Daniel Veillard.
    - http://git.gnome.org/browse/libxml2/commit/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
    - CVE-2013-0338

ubuntu/oneiric-security 2013-03-28 14:03:13 UTC 2013-03-28
Import patches-unapplied version 2.7.8.dfsg-4ubuntu0.6 to ubuntu/oneiric-secu...

Author: Marc Deslauriers
Author Date: 2013-03-26 14:25:45 UTC

Import patches-unapplied version 2.7.8.dfsg-4ubuntu0.6 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 41a1b22080f2f506f553db553cba22809aa6647e

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - include/libxml/parser.h, parser.c, parserInternals.c: limit number of
      entity expansions, thanks to Daniel Veillard.
    - http://git.gnome.org/browse/libxml2/commit/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
    - CVE-2013-0338

ubuntu/oneiric-updates 2013-03-28 14:03:13 UTC 2013-03-28
Import patches-unapplied version 2.7.8.dfsg-4ubuntu0.6 to ubuntu/oneiric-secu...

Author: Marc Deslauriers
Author Date: 2013-03-26 14:25:45 UTC

Import patches-unapplied version 2.7.8.dfsg-4ubuntu0.6 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 41a1b22080f2f506f553db553cba22809aa6647e

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - include/libxml/parser.h, parser.c, parserInternals.c: limit number of
      entity expansions, thanks to Daniel Veillard.
    - http://git.gnome.org/browse/libxml2/commit/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
    - CVE-2013-0338

ubuntu/raring 2013-03-26 16:03:19 UTC 2013-03-26
Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4 to ubuntu/raring-proposed

Author: Marc Deslauriers
Author Date: 2013-03-26 14:04:58 UTC

Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: d391c0b72481a18d0b3f8f43a2eb42778cd697dd

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - debian/patches/CVE-2013-0338.patch: limit number of entity expansions
      in include/libxml/parser.h, parser.c, parserInternals.c.
    - CVE-2013-0338

ubuntu/raring-proposed 2013-03-26 16:03:19 UTC 2013-03-26
Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4 to ubuntu/raring-proposed

Author: Marc Deslauriers
Author Date: 2013-03-26 14:04:58 UTC

Import patches-unapplied version 2.9.0+dfsg1-4ubuntu4 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: d391c0b72481a18d0b3f8f43a2eb42778cd697dd

New changelog entries:
  * SECURITY UPDATE: denial of service via entity expansion
    - debian/patches/CVE-2013-0338.patch: limit number of entity expansions
      in include/libxml/parser.h, parser.c, parserInternals.c.
    - CVE-2013-0338

ubuntu/quantal 2012-10-10 07:56:03 UTC 2012-10-10
Import patches-unapplied version 2.8.0+dfsg1-5ubuntu2 to ubuntu/quantal

Author: Daniel Holbach
Author Date: 2012-10-10 06:15:16 UTC

Import patches-unapplied version 2.8.0+dfsg1-5ubuntu2 to ubuntu/quantal

Imported using git-ubuntu import.

Changelog parent: bc52a7fc8fea755bbae98afb870d3a217c06207a

New changelog entries:
  * debian/tests/control: added pkg-config as depends for the test.
    Change forwarded to Debian as bug 690047.

ubuntu/natty-devel 2012-09-27 17:33:14 UTC 2012-09-27
Import patches-unapplied version 2.7.8.dfsg-2ubuntu0.5 to ubuntu/natty-security

Author: Marc Deslauriers
Author Date: 2012-09-26 17:16:03 UTC

Import patches-unapplied version 2.7.8.dfsg-2ubuntu0.5 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 692a23f8e02a6fea5a3028bad38330cfe45e0488

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    incorrect buffer sizes.
    - http://git.gnome.org/browse/libxml2/commit/?id=459eeb9dc752d5185f57ff6b135027f11981a626
    - http://git.gnome.org/browse/libxml2/commit/?id=4f9fdc709c4861c390cd84e2ed1fd878b3442e28
    - http://git.gnome.org/browse/libxml2/commit/?id=baaf03f80f817bb34c421421e6cb4d68c353ac9a
    - CVE-2012-2807

ubuntu/natty-security 2012-09-27 17:33:14 UTC 2012-09-27
Import patches-unapplied version 2.7.8.dfsg-2ubuntu0.5 to ubuntu/natty-security

Author: Marc Deslauriers
Author Date: 2012-09-26 17:16:03 UTC

Import patches-unapplied version 2.7.8.dfsg-2ubuntu0.5 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 692a23f8e02a6fea5a3028bad38330cfe45e0488

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    incorrect buffer sizes.
    - http://git.gnome.org/browse/libxml2/commit/?id=459eeb9dc752d5185f57ff6b135027f11981a626
    - http://git.gnome.org/browse/libxml2/commit/?id=4f9fdc709c4861c390cd84e2ed1fd878b3442e28
    - http://git.gnome.org/browse/libxml2/commit/?id=baaf03f80f817bb34c421421e6cb4d68c353ac9a
    - CVE-2012-2807

ubuntu/natty-updates 2012-09-27 17:33:14 UTC 2012-09-27
Import patches-unapplied version 2.7.8.dfsg-2ubuntu0.5 to ubuntu/natty-security

Author: Marc Deslauriers
Author Date: 2012-09-26 17:16:03 UTC

Import patches-unapplied version 2.7.8.dfsg-2ubuntu0.5 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 692a23f8e02a6fea5a3028bad38330cfe45e0488

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    incorrect buffer sizes.
    - http://git.gnome.org/browse/libxml2/commit/?id=459eeb9dc752d5185f57ff6b135027f11981a626
    - http://git.gnome.org/browse/libxml2/commit/?id=4f9fdc709c4861c390cd84e2ed1fd878b3442e28
    - http://git.gnome.org/browse/libxml2/commit/?id=baaf03f80f817bb34c421421e6cb4d68c353ac9a
    - CVE-2012-2807

applied/debian/lenny 2012-03-10 15:13:49 UTC 2012-03-10
Import patches-applied version 2.6.32.dfsg-5+lenny5 to applied/debian/lenny

Author: Aron Xu
Author Date: 2012-01-23 22:04:56 UTC

Import patches-applied version 2.6.32.dfsg-5+lenny5 to applied/debian/lenny

Imported using git-ubuntu import.

Changelog parent: 7a49166f5b3412af106b5867d3759fc3109a19e3
Unapplied parent: 52a004c9eacba298651d9dd684285f07bbb4a03e

New changelog entries:
  * Security update.
  * parser.c: Fix an allocation error when copying entities.
    CVE-2011-3919. Closes: #656377.
  * parser.c: Make sure parser returns when getting a Stop order.
    CVE-2011-3905.
  * encoding.c: Fix off by one error. CVE-2011-0216. Closes: 652352.
  * xpath.c: Fix for undefined namespaces.
    CVE-2011-2834. Closes: 643648.

debian/lenny 2012-03-10 15:13:49 UTC 2012-03-10
Import patches-unapplied version 2.6.32.dfsg-5+lenny5 to debian/lenny

Author: Aron Xu
Author Date: 2012-01-23 22:04:56 UTC

Import patches-unapplied version 2.6.32.dfsg-5+lenny5 to debian/lenny

Imported using git-ubuntu import.

Changelog parent: f9b557de9440ae457accdc2c87ed260ba4c202f2

New changelog entries:
  * Security update.
  * parser.c: Fix an allocation error when copying entities.
    CVE-2011-3919. Closes: #656377.
  * parser.c: Make sure parser returns when getting a Stop order.
    CVE-2011-3905.
  * encoding.c: Fix off by one error. CVE-2011-0216. Closes: 652352.
  * xpath.c: Fix for undefined namespaces.
    CVE-2011-2834. Closes: 643648.

ubuntu/precise 2012-02-28 15:04:12 UTC 2012-02-28
Import patches-unapplied version 2.7.8.dfsg-5.1ubuntu4 to ubuntu/precise

Author: Jamie Strandboge
Author Date: 2012-02-28 13:20:11 UTC

Import patches-unapplied version 2.7.8.dfsg-5.1ubuntu4 to ubuntu/precise

Imported using git-ubuntu import.

Changelog parent: c74bfe0bd2de1ee67dfc30a97e18f19a10b73347

New changelog entries:
  * SECURITY UPDATE: add randomization to dictionaries with hash tables
    help prevent denial of service via hash algorithm collision
    - configure.in: lookup for rand, srand and time
    - dict.c: add randomization to dictionaries hash tables
    - hash.c: add randomization to normal hash tables
    - 8973d58b7498fa5100a876815476b81fd1a2412a
    - CVE-2012-0841

1100 of 154 results

Other repositories

Name Last Modified
lp:ubuntu/+source/libxml2 2018-11-23
11 of 1 result
You can't create new repositories for libxml2 in Ubuntu.