Hello community, here is the log from the commit of package libxml2 for openSUSE:Factory checked in at 2012-12-19 11:14:09 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libxml2 (Old) and /work/SRC/openSUSE:Factory/.libxml2.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "libxml2", Maintainer is "VCizek@suse.com" Changes: -------- --- /work/SRC/openSUSE:Factory/libxml2/libxml2.changes 2012-12-10 17:16:53.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.libxml2.new/libxml2.changes 2012-12-19 11:14:13.000000000 +0100 @@ -1,0 +2,9 @@ +Sat Dec 15 15:55:26 UTC 2012 - p.drouand@gmail.com + +- update to 2.9.0 version: + * please see the Changelog +- Updated patchs to get working with new version: + * libxml2-2.9.0-CVE-2012-5134.patch ( libxml2-CVE-2012-5134.patch ) + * fix-perl.diff + +------------------------------------------------------------------- --- /work/SRC/openSUSE:Factory/libxml2/python-libxml2.changes 2012-09-23 08:30:39.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.libxml2.new/python-libxml2.changes 2012-12-19 11:14:13.000000000 +0100 @@ -1,0 +2,9 @@ +Sat Dec 15 15:55:26 UTC 2012 - p.drouand@gmail.com + +- update to 2.9.0 version: + * please see the Changelog +- Updated patchs to get working with new version: + * libxml2-2.9.0-CVE-2012-5134.patch ( libxml2-CVE-2012-5134.patch ) + * fix-perl.diff + +------------------------------------------------------------------- @@ -5 +14 @@ - * please se ChangeLog for more info + * please see ChangeLog for more info Old: ---- libxml2-2.8.0.tar.gz libxml2-CVE-2012-5134.patch New: ---- libxml2-2.9.0-CVE-2012-5134.patch libxml2-2.9.0.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libxml2.spec ++++++ --- /var/tmp/diff_new_pack.jH9nI9/_old 2012-12-19 11:14:16.000000000 +0100 +++ /var/tmp/diff_new_pack.jH9nI9/_new 2012-12-19 11:14:16.000000000 +0100 @@ -19,7 +19,7 @@ %define lname libxml2-2 Name: libxml2 -Version: 2.8.0 +Version: 2.9.0 Release: 0 Summary: A Library to Manipulate XML Files License: MIT @@ -30,7 +30,7 @@ Source2: baselibs.conf Patch0: fix-perl.diff # PATCH-FIX-UPSTREAM CVE-2012-5134 (bnc#793334) -Patch1: libxml2-CVE-2012-5134.patch +Patch1: libxml2-2.9.0-CVE-2012-5134.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: pkg-config BuildRequires: readline-devel @@ -104,9 +104,7 @@ Summary: A Library to Manipulate XML Files Group: System/Libraries Requires: %{lname} = %{version} -%if 0%{?suse_version} >= 1120 BuildArch: noarch -%endif %description doc The XML C library was initially developed for the GNOME project. It is ++++++ python-libxml2.spec ++++++ --- /var/tmp/diff_new_pack.jH9nI9/_old 2012-12-19 11:14:16.000000000 +0100 +++ /var/tmp/diff_new_pack.jH9nI9/_new 2012-12-19 11:14:16.000000000 +0100 @@ -17,7 +17,7 @@ Name: python-libxml2 -Version: 2.8.0 +Version: 2.9.0 Release: 0 Summary: Python Bindings for libxml2 License: MIT ++++++ fix-perl.diff ++++++ --- /var/tmp/diff_new_pack.jH9nI9/_old 2012-12-19 11:14:16.000000000 +0100 +++ /var/tmp/diff_new_pack.jH9nI9/_new 2012-12-19 11:14:16.000000000 +0100 @@ -11,9 +11,9 @@ Index: SAX2.c =================================================================== ---- SAX2.c.orig -+++ SAX2.c -@@ -2162,7 +2162,6 @@ xmlSAX2StartElementNs(void *ctx, +--- SAX2.c.orig 2012-09-11 08:01:01.000000000 +0200 ++++ SAX2.c 2012-12-15 16:32:27.353560391 +0100 +@@ -2188,7 +2188,6 @@ xmlNodePtr parent; xmlNsPtr last = NULL, ns; const xmlChar *uri, *pref; @@ -21,7 +21,7 @@ int i, j; if (ctx == NULL) return; -@@ -2182,20 +2181,6 @@ xmlSAX2StartElementNs(void *ctx, +@@ -2208,20 +2207,6 @@ } /* @@ -42,7 +42,7 @@ * allocate the node */ if (ctxt->freeElems != NULL) { -@@ -2208,10 +2193,7 @@ xmlSAX2StartElementNs(void *ctx, +@@ -2234,10 +2219,7 @@ if (ctxt->dictNames) ret->name = localname; else { @@ -54,20 +54,20 @@ if (ret->name == NULL) { xmlSAX2ErrMemory(ctxt, "xmlSAX2StartElementNs"); return; -@@ -2223,11 +2205,8 @@ xmlSAX2StartElementNs(void *ctx, +@@ -2249,11 +2231,8 @@ if (ctxt->dictNames) - ret = xmlNewDocNodeEatName(ctxt->myDoc, NULL, + ret = xmlNewDocNodeEatName(ctxt->myDoc, NULL, (xmlChar *) localname, NULL); - else if (lname == NULL) - ret = xmlNewDocNode(ctxt->myDoc, NULL, localname, NULL); else -- ret = xmlNewDocNodeEatName(ctxt->myDoc, NULL, +- ret = xmlNewDocNodeEatName(ctxt->myDoc, NULL, - (xmlChar *) lname, NULL); + ret = xmlNewDocNode(ctxt->myDoc, NULL, localname, NULL); if (ret == NULL) { xmlSAX2ErrMemory(ctxt, "xmlSAX2StartElementNs"); return; -@@ -2334,33 +2313,8 @@ xmlSAX2StartElementNs(void *ctx, +@@ -2360,31 +2339,6 @@ */ if (nb_attributes > 0) { for (j = 0,i = 0;i < nb_attributes;i++,j+=5) { @@ -97,11 +97,9 @@ - } - } xmlSAX2AttributeNs(ctxt, attributes[j], attributes[j+1], -- attributes[j+3], attributes[j+4]); -+ attributes[j+3], attributes[j+4]); + attributes[j+3], attributes[j+4]); } - } - + Index: result/namespaces/err_7.xml =================================================================== --- result/namespaces/err_7.xml.orig ++++++ libxml2-2.9.0-CVE-2012-5134.patch ++++++ --- libxml2-2.9.0.orig/parser.c 2012-09-11 06:24:08.000000000 +0200 +++ libxml2-2.9.0/parser.c 2012-12-15 16:12:27.441609871 +0100 @@ -4075,7 +4075,7 @@ goto error; if ((in_space) && (normalize)) { - while (buf[len - 1] == 0x20) len--; + while ((len > 0) && (buf[len - 1] == 0x20)) len--; } buf[len] = 0; if (RAW == '<') { ++++++ libxml2-2.8.0.tar.gz -> libxml2-2.9.0.tar.gz ++++++ ++++ 89435 lines of diff (skipped) -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org