UbuntuUpdates.org

Package "python-libxml2"

Name: python-libxml2

Description:

Python bindings for the GNOME XML library

Latest version: 2.7.8.dfsg-5.1ubuntu4
Release: precise (12.04)
Level: base
Repository: main
Head package: libxml2
Homepage: http://xmlsoft.org/

Links


Download "python-libxml2"


Other versions of "python-libxml2" in Precise

Repository Area Version
security main 2.7.8.dfsg-5.1ubuntu4.22
updates main 2.7.8.dfsg-5.1ubuntu4.22

Changelog

Version: 2.7.8.dfsg-5.1ubuntu4 2012-02-28 16:03:58 UTC

libxml2 (2.7.8.dfsg-5.1ubuntu4) precise; urgency=low

  * SECURITY UPDATE: add randomization to dictionaries with hash tables
    help prevent denial of service via hash algorithm collision
    - configure.in: lookup for rand, srand and time
    - dict.c: add randomization to dictionaries hash tables
    - hash.c: add randomization to normal hash tables
    - 8973d58b7498fa5100a876815476b81fd1a2412a
    - CVE-2012-0841

 -- Jamie Strandboge Tue, 28 Feb 2012 07:20:11 -0600

Source diff to previous version

Version: 2.7.8.dfsg-5.1ubuntu3 2012-01-19 20:03:36 UTC

libxml2 (2.7.8.dfsg-5.1ubuntu3) precise; urgency=low

  * various fixes for __xmlRaiseError (LP: #686363). This can be dropped in
    2.7.8.dfsg-6
    - 111d705c282e03e7202723c6c7e4499f8582bd4f
    - 1b9128bae737fa559f5e2c191d6679a856efbad9
    - 241d4a1069e6bedd0ee2295d7b43858109c1c6d1
    - c2a0fdc4e6d106690d7fd8fa1677e133c94e155d

 -- Jamie Strandboge Thu, 19 Jan 2012 11:59:30 -0600

Source diff to previous version
686363 "dom::parse invalid" crashes the interpreter

Version: 2.7.8.dfsg-5.1ubuntu2 2012-01-18 23:02:32 UTC

libxml2 (2.7.8.dfsg-5.1ubuntu2) precise; urgency=low

  * SECURITY UPDATE: denial of service via buffer overflow
    - parser.c: fix an allocation error when copying entities
    - 5bd3c061823a8499b27422aee04ea20aae24f03e
    - CVE-2011-3919

 -- Jamie Strandboge Wed, 18 Jan 2012 13:03:04 -0600

Source diff to previous version
CVE-2011-3919 Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allows remote attackers to cause a denial of service or possibly h

Version: 2.7.8.dfsg-5.1ubuntu1 2012-01-12 13:03:43 UTC

libxml2 (2.7.8.dfsg-5.1ubuntu1) precise; urgency=low

  * Merge from Debian testing, remaining changes:
    - Build for multiarch.
    - Use debhelper compat 9 instead of hardcoding --libdir.
    - Move the udeb contents back into /usr/lib.

 -- Steve Langasek Thu, 12 Jan 2012 09:18:30 +0100




About   -   Send Feedback to @ubuntu_updates