-
libxml2 (2.9.0+dfsg1-4ubuntu4.3) raring-security; urgency=low
* SECURITY REGRESSION: wrong return values
- debian/patches/CVE-2013-2877.patch: revised to fix up a couple of
return values.
- CVE-2013-2877
-- Marc Deslauriers <email address hidden> Tue, 16 Jul 2013 13:46:23 -0400
-
libxml2 (2.9.0+dfsg1-4ubuntu4.2) raring-security; urgency=low
* SECURITY UPDATE: denial of service via incomplete document
- debian/patches/CVE-2013-2877.patch: try to stop parsing as quickly as
possible in parser.c, include/libxml/xmlerror.h.
- CVE-2013-2877
-- Marc Deslauriers <email address hidden> Thu, 11 Jul 2013 14:26:36 -0400
-
libxml2 (2.9.0+dfsg1-4ubuntu4.1) raring-security; urgency=low
* SECURITY UPDATE: multiple use after free issues
- debian/patches/CVE-2013-1969.patch: properly reset pointers in
HTMLparser.c, parser.c.
- CVE-2013-1969
-- Marc Deslauriers <email address hidden> Wed, 01 May 2013 09:39:42 -0700
-
libxml2 (2.9.0+dfsg1-4ubuntu4) raring; urgency=low
* SECURITY UPDATE: denial of service via entity expansion
- debian/patches/CVE-2013-0338.patch: limit number of entity expansions
in include/libxml/parser.h, parser.c, parserInternals.c.
- CVE-2013-0338
-- Marc Deslauriers <email address hidden> Tue, 26 Mar 2013 10:04:58 -0400
-
libxml2 (2.9.0+dfsg1-4ubuntu3) raring; urgency=low
* Set PYTHON_LIBS for cross builds.
* Remove explicit build dependency on binutils.
* Configure the udeb --without-python.
-- Matthias Klose <email address hidden> Thu, 07 Mar 2013 17:03:45 +0800
-
libxml2 (2.9.0+dfsg1-4ubuntu2) raring; urgency=low
* Allow the package to cross-build.
-- Matthias Klose <email address hidden> Thu, 07 Mar 2013 15:46:38 +0800
-
libxml2 (2.9.0+dfsg1-4ubuntu1) raring; urgency=low
* Fix python multi-arch includes issues.
-- Chris J Arges <email address hidden> Fri, 11 Jan 2013 13:10:08 -0600
-
libxml2 (2.9.0+dfsg1-4) experimental; urgency=low
[ Daniel Veillard ]
* Fix potential out of bound access
CVE-2012-5134, Closes: #694521.
-- Aron Xu <email address hidden> Wed, 28 Nov 2012 22:34:15 +0800
-
libxml2 (2.9.0+dfsg1-3ubuntu1) raring; urgency=low
* Merge with Debian; remaining changes:
- None.
* Configure with --disable-silent-rules.
* Call dh_autoconfigure with DH_VERBOSE=1 to work-around debhelper
deficiency.
* Don't build the udeb with --with-minimal. LP: #1075146.
libxml2 (2.9.0+dfsg1-3) experimental; urgency=low
[ Aron Xu ]
* Remove -L/usr/lib from xml2-config, advise to use pkg-config
in man, and add pkg-config to Suggests. (Closes: #689168)
[ YunQiang Su ]
* Fix python-libxml2 undefined symbol (Closes: #689191)
[ Daniel Holbach ]
* Add simple autopkgtest to the package (Closes: #690047)
libxml2 (2.9.0+dfsg1-2) experimental; urgency=low
* Fix a thread portability problem by cherry-picking upstream
patch (Closes: #688473).
libxml2 (2.9.0+dfsg1-1) experimental; urgency=low
* New upstream release.
* Remove old patches applied upstream, cherry-pick one
upstream post release patch.
* Update symbols.
* Update std-ver 3.9.3 -> 3.9.4, no change required.
libxml2 (2.8.0+dfsg1-5ubuntu2) quantal; urgency=low
* debian/tests/control: added pkg-config as depends for the test.
Change forwarded to Debian as bug 690047.
-- Matthias Klose <email address hidden> Tue, 06 Nov 2012 23:59:27 +0100
-
libxml2 (2.8.0+dfsg1-5ubuntu2) quantal; urgency=low
* debian/tests/control: added pkg-config as depends for the test.
Change forwarded to Debian as bug 690047.
-- Daniel Holbach <email address hidden> Wed, 10 Oct 2012 08:15:16 +0200