lp:ubuntu/trusty-updates/libxml2
- Get this branch:
- bzr branch lp:ubuntu/trusty-updates/libxml2
Branch merges
Branch information
Recent revisions
- 75. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service via entity expansion
- debian/patches/ CVE-2014- 3660.patch: added additional tests to
parser.c.
- CVE-2014-3660 - 74. By Marc Deslauriers
-
* SECURITY REGRESSION: more xmllint regressions (LP: #1321869)
- debian/patches/ lp1321869. patch: use upstream commit which includes
additional regression fixes to parser.c. - 73. By Marc Deslauriers
-
* SECURITY REGRESSION: xmllint no longer loads entities with --postvalid
(LP: #1321869)
- debian/patches/ lp1321869. patch: also check XML_PARSE_DTDLOAD in
parser.c. - 72. By Marc Deslauriers
-
* SECURITY UPDATE: resource exhaustion via external parameter entities
- debian/patches/ CVE-2014- 0191.patch: do not fetch external parameter
entities in parser.c.
- CVE-2014-0191 - 68. By Matthias Klose
-
* Merge with Debian; remaining changes:
- Fix python multi-arch includes issues.
- Allow the package to cross-build.
- Set PYTHON_LIBS for cross builds.
- Remove explicit build dependency on binutils.
- Configure the udeb --without-python. - 67. By Marc Deslauriers
-
* Merged from Debian unstable. Remaining changes:
- Fix python multi-arch includes issues.
- Allow the package to cross-build.
- Set PYTHON_LIBS for cross builds.
- Remove explicit build dependency on binutils.
- Configure the udeb --without-python.
* Dropped patches:
- CVE-2013-0338.patch: upstream
- CVE-2013-1969.patch: upstream - 66. By Marc Deslauriers
-
* SECURITY UPDATE: multiple use after free issues
- debian/patches/ CVE-2013- 1969.patch: properly reset pointers in
HTMLparser.c, parser.c.
- CVE-2013-1969
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/utopic/libxml2