ubuntu/+source/expat:applied/ubuntu/wily-updates

Last commit made on 2016-06-20
Get this branch:
git clone -b applied/ubuntu/wily-updates https://git.launchpad.net/ubuntu/+source/expat
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/wily-updates
Repository:
lp:ubuntu/+source/expat

Recent commits

771c4b7... by Marc Deslauriers on 2016-06-10

Import patches-applied version 2.1.0-7ubuntu0.15.10.2 to applied/ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: da0b5807feb445551d9ed8a20459b97ecb2678aa
Unapplied parent: 583101267bb92fb89b2ecd91cd4b7cde326fca0e

New changelog entries:
  * SECURITY UPDATE: unanticipated internal calls to srand
    - debian/patches/CVE-2012-6702-1.patch: remove srand, use more entropy
      in lib/xmlparse.c.
    - debian/patches/CVE-2012-6702-2.patch: use a prime that fits 32bits on
      32bit platforms in lib/xmlparse.c.
    - CVE-2012-6702
  * SECURITY UPDATE: use of too little entropy
    - debian/patches/CVE-2016-5300-1.patch: extract method
      gather_time_entropy in lib/xmlparse.c.
    - debian/patches/CVE-2016-5300-2.patch: extract entropy from XML_Parser
      address in lib/xmlparse.c.
    - CVE-2016-5300

5831012... by Marc Deslauriers on 2016-06-10

CVE-2012-6702-2.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2012-6702-2.patch.

f777f6a... by Marc Deslauriers on 2016-06-10

CVE-2016-5300-2.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2016-5300-2.patch.

68ed7d2... by Marc Deslauriers on 2016-06-10

CVE-2016-5300-1.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2016-5300-1.patch.

a38dacd... by Marc Deslauriers on 2016-06-10

CVE-2012-6702-1.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2012-6702-1.patch.

05ac7a2... by Marc Deslauriers on 2016-06-10

[PATCH] Address CVE-2016-0718 (/patch/ version 2.2.1)

Gbp-Pq: CVE-2016-0718.patch.

a30cedf... by Marc Deslauriers on 2016-06-10

[PATCH] Avoid relying on undefined behavior in CVE-2015-1283 fix. It

Gbp-Pq: CVE-2015-1283-refix.patch.

97aac11... by Marc Deslauriers on 2016-06-10

fix multiple integer overflows in the XML_GetBuffer function

Gbp-Pq: CVE-2015-1283.patch.

af6548b... by Marc Deslauriers on 2016-06-10

verbose-mode.diff

No DEP3 Subject or Description header found

Gbp-Pq: verbose-mode.diff.

d9d6e7d... by Marc Deslauriers on 2016-06-10

Update config.guess and sub for new arches

Gbp-Pq: autoconfupdate.diff.