lp:ubuntu/saucy-security/libxml2

Created by Ubuntu Package Importer on 2014-05-15 and last modified on 2014-06-13
Get this branch:
bzr branch lp:ubuntu/saucy-security/libxml2
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

72. By Marc Deslauriers on 2014-06-13

* SECURITY REGRESSION: more xmllint regressions (LP: #1321869)
  - debian/patches/lp1321869.patch: use upstream commit which includes
    additional regression fixes to parser.c.

71. By Marc Deslauriers on 2014-06-06

* SECURITY REGRESSION: xmllint no longer loads entities with --postvalid
  (LP: #1321869)
  - debian/patches/lp1321869.patch: also check XML_PARSE_DTDLOAD in
    parser.c.

70. By Marc Deslauriers on 2014-05-08

* SECURITY UPDATE: resource exhaustion via external parameter entities
  - debian/patches/CVE-2014-0191.patch: do not fetch external parameter
    entities in parser.c.
  - CVE-2014-0191

69. By Dimitri John Ledkov on 2013-08-22

[ Tim Galeckas ]
Fix SIGSEGV when --pretty is specified. LP: #923691

68. By Matthias Klose on 2013-08-17

* Merge with Debian; remaining changes:
  - Fix python multi-arch includes issues.
  - Allow the package to cross-build.
  - Set PYTHON_LIBS for cross builds.
  - Remove explicit build dependency on binutils.
  - Configure the udeb --without-python.

67. By Marc Deslauriers on 2013-07-11

* Merged from Debian unstable. Remaining changes:
  - Fix python multi-arch includes issues.
  - Allow the package to cross-build.
  - Set PYTHON_LIBS for cross builds.
  - Remove explicit build dependency on binutils.
  - Configure the udeb --without-python.
* Dropped patches:
  - CVE-2013-0338.patch: upstream
  - CVE-2013-1969.patch: upstream

66. By Marc Deslauriers on 2013-05-07

* SECURITY UPDATE: multiple use after free issues
  - debian/patches/CVE-2013-1969.patch: properly reset pointers in
    HTMLparser.c, parser.c.
  - CVE-2013-1969

65. By Marc Deslauriers on 2013-03-26

* SECURITY UPDATE: denial of service via entity expansion
  - debian/patches/CVE-2013-0338.patch: limit number of entity expansions
    in include/libxml/parser.h, parser.c, parserInternals.c.
  - CVE-2013-0338

64. By Matthias Klose on 2013-03-07

* Set PYTHON_LIBS for cross builds.
* Remove explicit build dependency on binutils.
* Configure the udeb --without-python.

63. By Matthias Klose on 2013-03-07

Allow the package to cross-build.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/utopic/libxml2
This branch contains Public information 
Everyone can see this information.

Subscribers