Format: 1.8 Date: Fri, 03 Jun 2016 08:05:40 -0400 Source: libxml2 Binary: libxml2 libxml2-utils libxml2-utils-dbg libxml2-dev libxml2-dbg libxml2-doc python-libxml2 python-libxml2-dbg libxml2-udeb Architecture: ppc64el Version: 2.9.3+dfsg1-1ubuntu0.1 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libxml2 - GNOME XML library libxml2-dbg - Debugging symbols for the GNOME XML library libxml2-dev - Development files for the GNOME XML library libxml2-doc - Documentation for the GNOME XML library libxml2-udeb - GNOME XML library - minimal runtime (udeb) libxml2-utils - XML utilities libxml2-utils-dbg - XML utilities (debug extension) python-libxml2 - Python bindings for the GNOME XML library python-libxml2-dbg - Python bindings for the GNOME XML library (debug extension) Changes: libxml2 (2.9.3+dfsg1-1ubuntu0.1) xenial-security; urgency=medium . * SECURITY UPDATE: heap-based buffer overread in xmlNextChar - debian/patches/CVE-2016-1762.patch: return after error in parser.c. - CVE-2016-1762 * SECURITY UPDATE: heap-based buffer overread in htmlCurrentChar - debian/patches/CVE-2016-1833.patch: fix tests in parserInternals.c. - CVE-2016-1833 * SECURITY UPDATE: heap-buffer-overflow in xmlStrncat - debian/patches/CVE-2016-1834.patch: check for negative lengths in xmlstring.c. - CVE-2016-1834 * SECURITY UPDATE: heap use-after-free in xmlSAX2AttributeNs - debian/patches/CVE-2016-1835.patch: add check to parser.c, add tests to result/errors/759020.xml.err, result/errors/759020.xml.str, test/errors/759020.xml. - CVE-2016-1835 * SECURITY UPDATE: heap use-after-free in xmlDictComputeFastKey - debian/patches/CVE-2016-1836.patch: prevent stale pointer usage in parser.c, added tests to result/errors/759398.xml.err, result/errors/759398.xml.str, test/errors/759398.xml. - CVE-2016-1836 * SECURITY UPDATE: heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral - debian/patches/CVE-2016-1837.patch: prevent stable pointer usage in HTMLparser.c. - CVE-2016-1837 * SECURITY UPDATE: heap-based buffer overread in xmlParserPrintFileContextInternal - debian/patches/CVE-2016-1838.patch: add bounds check to parser.c, add tests to result/errors/758588.xml.err, result/errors/758588.xml.str, test/errors/758588.xml. - CVE-2016-1838 * SECURITY UPDATE: heap-based buffer overread in xmlDictAddString - debian/patches/CVE-2016-1839.patch: add bounds check to HTMLparser.c. - CVE-2015-8806 - CVE-2016-1839 - CVE-2016-2073 * SECURITY UPDATE: heap-buffer-overflow in xmlFAParsePosCharGroup - debian/patches/CVE-2016-1840.patch: properly handle error in xmlregexp.c. - CVE-2016-1840 * SECURITY UPDATE: avoid building recursive entities - debian/patches/CVE-2016-3627.patch: properly handle recursion in parser.c, tree.c. - CVE-2016-3627 * SECURITY UPDATE: recursion depth counter issue - debian/patches/CVE-2016-3705.patch: properly could recursion depth in parser.c. - CVE-2016-3705 * SECURITY UPDATE: heap-based buffer-underreads due to xmlParseName - debian/patches/CVE-2016-4447.patch: improve error handling in parser.c. - CVE-2016-4447 * SECURITY UPDATE: inappropriate fetch of entities content - debian/patches/CVE-2016-4449.patch: fix another external entity fetch in parser.c. - CVE-2016-4449 * SECURITY UPDATE: out of bound access when serializing malformed strings - debian/patches/CVE-2016-4483.patch: improve string handling in xmlsave.c. - CVE-2016-4483 Checksums-Sha1: 7a8e487ce91f93ad4649c2a5a686ca43e9b023cc 1708642 libxml2-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 80770ce40e64e821be4eec56f148695b54b4a7cc 1062 libxml2-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb 28a70b343f8b9d4f41cfddd7c5d8979f099a332c 1060 libxml2-dev-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb 5b0b15049c88c641f434e8355b2f33b8161c5195 688582 libxml2-dev_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 90d78870fb5b21118f174567f6b6e2ac0f272d9f 1052 libxml2-udeb-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb c9ed90531bd49eb2346a0b6dce93714579e37932 547668 libxml2-udeb_2.9.3+dfsg1-1ubuntu0.1_ppc64el.udeb 95b407ca35ada885632b033586847fc41f2685af 76882 libxml2-utils-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb cd208df977a4a5a9b551df8d719fbe16f4a9d358 1092 libxml2-utils-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb b18d674e4681e074263831f4b44afa40231baf25 34376 libxml2-utils_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 6f0e690c1879741c40b245dcfa9d2270a5370ac1 611102 libxml2_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 409110b622043d78975efa5db078e8ddfad0f147 256454 python-libxml2-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 4781afda488e832dadf8fa37b04097c6352e4e4e 134368 python-libxml2_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb Checksums-Sha256: e8254499c8176747ea55bd4f1ee090cab3599a86651f1d946807ced87fbf6991 1708642 libxml2-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb bfba79a46a8996d4f24988bf1be5139c61cea69fdb8644bd2a0cafeae68c486d 1062 libxml2-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb 1873accf7295b11cf6cdf7ee0af8c6fa1cc8eb9e660a1f2a35a3e3f53e672570 1060 libxml2-dev-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb ce776d760e03d0148979968e10f381116814fadd1f0b6ddb97471ad2ca92de70 688582 libxml2-dev_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb d6b486d5dd511f96a4f1d618069509bc125871d963bf9e5de9ce8d094d792e5e 1052 libxml2-udeb-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb 580a15ffa464a70ef4eba7646eb394414dc404d8b40059a7b9afe8d6a457e1e5 547668 libxml2-udeb_2.9.3+dfsg1-1ubuntu0.1_ppc64el.udeb baefcbb62020f6a8ba3a4edfd947fdb17918b4f2b39b6402b4428eaaa64decea 76882 libxml2-utils-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 47ef8ea6d8e9fa129b0610c14027ff86be0d3ae3dc8497040e4dd4e6c5d29ca3 1092 libxml2-utils-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb af462b44456711af578699099cb5135839ff7410c7ace2670579f6fe789b2a2b 34376 libxml2-utils_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 14249d54ed207a796e9e56bed676c1baf0500de87420a445be7939421b0af38f 611102 libxml2_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 4568bd21f47f56bb7bddc3b41b8b6dac236ae6085929a77ed4bd878fbb37b327 256454 python-libxml2-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb aa4a582eb22a2f50f0055e25cd8e36a45651fad59552d5ff8f93a773baf531ed 134368 python-libxml2_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb Files: c063877313b2408b5be759583006c3de 1708642 debug extra libxml2-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 523a9de0259e2ce22365c4746469b565 1062 libs extra libxml2-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb a73ce307cb60881a8adbc3cc337f0e4d 1060 libdevel extra libxml2-dev-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb a5ad70c66e86d036e38568d194bfa2c1 688582 libdevel optional libxml2-dev_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 4f530d0e19195855415e3ca2dcb2f1b1 1052 debian-installer extra libxml2-udeb-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb 8add3d4a256edd69949868aa1282d0ee 547668 debian-installer optional libxml2-udeb_2.9.3+dfsg1-1ubuntu0.1_ppc64el.udeb 4e2846444d6f8f4d8abb0413397373c3 76882 debug extra libxml2-utils-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 2e3d42989c69b4c9258448b54e48466d 1092 text extra libxml2-utils-dbgsym_2.9.3+dfsg1-1ubuntu0.1_ppc64el.ddeb e95b3874c157e58e0ecc175588946705 34376 text optional libxml2-utils_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb bb738a373eb498688ebbaf004aa28593 611102 libs standard libxml2_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 56da63247040db7feb923b1fff1a5050 256454 debug extra python-libxml2-dbg_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb 86e8e56ed4b5238ba1e04c66e57f45ca 134368 python optional python-libxml2_2.9.3+dfsg1-1ubuntu0.1_ppc64el.deb Original-Maintainer: Debian XML/SGML Group Package-Type: udeb