Mailinglist Archive: opensuse-commit (1945 mails)

[root@xxxxxxxxxxxxxxx (h_root)]

Hello community,

here is the log from the commit of package libxml2
checked in at Thu Nov 20 15:50:18 CET 2008.


--------
--- libxml2/libxml2.changes     2008-11-06 12:02:45.000000000 +0100
+++ /mounts/work_src_done/STABLE/libxml2/libxml2.changes        2008-11-18 
16:53:14.000000000 +0100
@@ -1,0 +2,5 @@
+Tue Nov 18 16:24:39 CET 2008 - prusnak@xxxxxxx
+
+- fixed CVE-2008-4225 [bnc#445677]
+
+-------------------------------------------------------------------

calling whatdependson for head-i586


New:
----
  libxml2-2.7.1-CVE-2008-4225.patch

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ libxml2-python.spec ++++++
--- /var/tmp/diff_new_pack.AK6355/_old  2008-11-20 15:48:49.000000000 +0100
+++ /var/tmp/diff_new_pack.AK6355/_new  2008-11-20 15:48:49.000000000 +0100
@@ -25,7 +25,7 @@
 AutoReqProv:    on
 Summary:        Python Bindings for libxml2
 Version:        2.7.1
-Release:        6
+Release:        7
 Source:         libxml2-%{version}.tar.bz2
 Source1:        libxml2-python-rpmlintrc
 %py_requires

++++++ libxml2.spec ++++++
--- /var/tmp/diff_new_pack.AK6355/_old  2008-11-20 15:48:49.000000000 +0100
+++ /var/tmp/diff_new_pack.AK6355/_new  2008-11-20 15:48:49.000000000 +0100
@@ -24,7 +24,7 @@
 Group:          System/Libraries
 Summary:        A Library to Manipulate XML Files
 Version:        2.7.1
-Release:        6
+Release:        7
 # bug437293
 %ifarch ppc64
 Obsoletes:      libxml2-64bit
@@ -42,6 +42,8 @@
 Patch2:         %{name}-%{version}-CVE-2008-4409.patch
 # PATCH-FIX-UPSTREAM libxml2-2.7.1-CVE-2008-4226.patch [bnc#441368]
 Patch3:         %{name}-%{version}-CVE-2008-4226.patch
+# PATCH-FIX-UPSTREAM libxml2-2.7.1-CVE-2008-4225.patch [bnc#445677]
+Patch4:         %{name}-%{version}-CVE-2008-4225.patch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 Url:            http://xmlsoft.org
 
@@ -161,6 +163,7 @@
 %patch1
 %patch2
 %patch3
+%patch4
 
 %build
 %configure \
@@ -219,6 +222,8 @@
 %dir %{_datadir}/gtk-doc/html
 
 %changelog
+* Tue Nov 18 2008 prusnak@xxxxxxx
+- fixed CVE-2008-4225 [bnc#445677]
 * Thu Nov 06 2008 prusnak@xxxxxxx
 - fixed CVE-2008-4226 [bnc#441368]
 * Thu Oct 30 2008 olh@xxxxxxx

++++++ libxml2-2.7.1-CVE-2008-4225.patch ++++++
--- tree.c
+++ tree.c
@@ -14,7 +14,7 @@
 #include "libxml.h"
 
 #include <string.h> /* for memset() only ! */
-
+#include <limits.h>
 #ifdef HAVE_CTYPE_H
 #include <ctype.h>
 #endif
@@ -6996,7 +6996,13 @@
        case XML_BUFFER_ALLOC_DOUBLEIT:
            /*take care of empty case*/
            newSize = (buf->size ? buf->size*2 : size + 10);
-           while (size > newSize) newSize *= 2;
+           while (size > newSize) {
+               if (newSize > UINT_MAX / 2) {
+                   xmlTreeErrMemory("growing buffer");
+                   return 0;
+               }
+               newSize *= 2;
+           }
            break;
        case XML_BUFFER_ALLOC_EXACT:
            newSize = size+10;

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++



Remember to have fun...

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-commit+help@xxxxxxxxxxxx