mailarchive of the ptxdist mailing list
 help / color / mirror / Atom feed
From: Alexander Dahl <post@lespocky.de>
To: ptxdist@pengutronix.de
Subject: [ptxdist] [PATCH 2/2] libxml2: update to 2.9.2
Date: Mon, 27 Oct 2014 21:11:09 +0100	[thread overview]
Message-ID: <1414440669-4568-3-git-send-email-post@lespocky.de> (raw)
In-Reply-To: <1414440669-4568-1-git-send-email-post@lespocky.de>

Also integrated two changes from upstream fixing two minor issues.
Build successfully tested against all ptxdist packages requiring
libxml2, no runtime tests.

Signed-off-by: Alexander Dahl <post@lespocky.de>
---
 patches/libxml2-2.7.7/series                       |    3 ---
 ...ing-initialization-for-the-catalog-module.patch |   25 ++++++++++++++++++
 ...-missing-entities-after-CVE-2014-3660-fix.patch |   27 ++++++++++++++++++++
 .../0200-xml2-config-is-not-SYSROOT-aware.patch}   |    7 ++---
 patches/libxml2-2.9.2/series                       |    8 ++++++
 rules/libxml2.make                                 |    4 +--
 6 files changed, 64 insertions(+), 10 deletions(-)
 delete mode 100644 patches/libxml2-2.7.7/series
 create mode 100644 patches/libxml2-2.9.2/0001-Revert-Missing-initialization-for-the-catalog-module.patch
 create mode 100644 patches/libxml2-2.9.2/0002-Fix-missing-entities-after-CVE-2014-3660-fix.patch
 rename patches/{libxml2-2.7.7/0001-xml2-config-is-not-SYSROOT-aware.patch => libxml2-2.9.2/0200-xml2-config-is-not-SYSROOT-aware.patch} (84%)
 create mode 100644 patches/libxml2-2.9.2/series

diff --git a/patches/libxml2-2.7.7/series b/patches/libxml2-2.7.7/series
deleted file mode 100644
index 404fb88..0000000
--- a/patches/libxml2-2.7.7/series
+++ /dev/null
@@ -1,3 +0,0 @@
-# generated by git-ptx-patches
-0001-xml2-config-is-not-SYSROOT-aware.patch
-# 39e3efe4b37f5ed3cf17be9609775022  - git-ptx-patches magic
diff --git a/patches/libxml2-2.9.2/0001-Revert-Missing-initialization-for-the-catalog-module.patch b/patches/libxml2-2.9.2/0001-Revert-Missing-initialization-for-the-catalog-module.patch
new file mode 100644
index 0000000..9377a64
--- /dev/null
+++ b/patches/libxml2-2.9.2/0001-Revert-Missing-initialization-for-the-catalog-module.patch
@@ -0,0 +1,25 @@
+From: Daniel Veillard <veillard@redhat.com>
+Date: Fri, 17 Oct 2014 17:13:41 +0800
+Subject: [PATCH] Revert "Missing initialization for the catalog module"
+
+This reverts commit 054c716ea1bf001544127a4ab4f4346d1b9947e7.
+As this break xmlcatalog command
+https://bugzilla.redhat.com/show_bug.cgi?id=1153753
+---
+ parser.c |    3 ---
+ 1 file changed, 3 deletions(-)
+
+diff --git a/parser.c b/parser.c
+index 1d9396786ba7..67c9dfd9ad9f 100644
+--- a/parser.c
++++ b/parser.c
+@@ -14830,9 +14830,6 @@ xmlInitParser(void) {
+ #ifdef LIBXML_XPATH_ENABLED
+ 	xmlXPathInit();
+ #endif
+-#ifdef LIBXML_CATALOG_ENABLED
+-        xmlInitializeCatalog();
+-#endif
+ 	xmlParserInitialized = 1;
+ #ifdef LIBXML_THREAD_ENABLED
+     }
diff --git a/patches/libxml2-2.9.2/0002-Fix-missing-entities-after-CVE-2014-3660-fix.patch b/patches/libxml2-2.9.2/0002-Fix-missing-entities-after-CVE-2014-3660-fix.patch
new file mode 100644
index 0000000..845610a
--- /dev/null
+++ b/patches/libxml2-2.9.2/0002-Fix-missing-entities-after-CVE-2014-3660-fix.patch
@@ -0,0 +1,27 @@
+From: Daniel Veillard <veillard@redhat.com>
+Date: Thu, 23 Oct 2014 11:35:36 +0800
+Subject: [PATCH] Fix missing entities after CVE-2014-3660 fix
+
+For https://bugzilla.gnome.org/show_bug.cgi?id=738805
+
+The fix for CVE-2014-3660 introduced a regression in some case
+where entity substitution is required and the entity is used
+first in anotther entity referenced from an attribute value
+---
+ parser.c |    3 ++-
+ 1 file changed, 2 insertions(+), 1 deletion(-)
+
+diff --git a/parser.c b/parser.c
+index 67c9dfd9ad9f..a8d1b6731681 100644
+--- a/parser.c
++++ b/parser.c
+@@ -7235,7 +7235,8 @@ xmlParseReference(xmlParserCtxtPtr ctxt) {
+      * far more secure as the parser will only process data coming from
+      * the document entity by default.
+      */
+-    if ((ent->checked == 0) &&
++    if (((ent->checked == 0) ||
++         ((ent->children == NULL) && (ctxt->options & XML_PARSE_NOENT))) &&
+         ((ent->etype != XML_EXTERNAL_GENERAL_PARSED_ENTITY) ||
+          (ctxt->options & (XML_PARSE_NOENT | XML_PARSE_DTDVALID)))) {
+ 	unsigned long oldnbent = ctxt->nbentities;
diff --git a/patches/libxml2-2.7.7/0001-xml2-config-is-not-SYSROOT-aware.patch b/patches/libxml2-2.9.2/0200-xml2-config-is-not-SYSROOT-aware.patch
similarity index 84%
rename from patches/libxml2-2.7.7/0001-xml2-config-is-not-SYSROOT-aware.patch
rename to patches/libxml2-2.9.2/0200-xml2-config-is-not-SYSROOT-aware.patch
index 817c0b9..d096e3c 100644
--- a/patches/libxml2-2.7.7/0001-xml2-config-is-not-SYSROOT-aware.patch
+++ b/patches/libxml2-2.9.2/0200-xml2-config-is-not-SYSROOT-aware.patch
@@ -7,10 +7,10 @@ This patch adds $SYSROOT support to xml2-config.
 Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de>
 ---
  xml2-config.in |    2 +-
- 1 files changed, 1 insertions(+), 1 deletions(-)
+ 1 file changed, 1 insertion(+), 1 deletion(-)
 
 diff --git a/xml2-config.in b/xml2-config.in
-index 2989325..4e170b6 100644
+index 19574864cb6a..ee1949ce9542 100644
 --- a/xml2-config.in
 +++ b/xml2-config.in
 @@ -1,6 +1,6 @@
@@ -21,6 +21,3 @@ index 2989325..4e170b6 100644
  exec_prefix=@exec_prefix@
  includedir=@includedir@
  libdir=@libdir@
--- 
-1.7.1
-
diff --git a/patches/libxml2-2.9.2/series b/patches/libxml2-2.9.2/series
new file mode 100644
index 0000000..e8eef47
--- /dev/null
+++ b/patches/libxml2-2.9.2/series
@@ -0,0 +1,8 @@
+# generated by git-ptx-patches
+#tag:base --start-number 1
+#tag:upstream --start-number 1
+0001-Revert-Missing-initialization-for-the-catalog-module.patch
+0002-Fix-missing-entities-after-CVE-2014-3660-fix.patch
+#tag:ptx --start-number 200
+0200-xml2-config-is-not-SYSROOT-aware.patch
+# 42924c0b78c90f6e07e0a460d25ef885  - git-ptx-patches magic
diff --git a/rules/libxml2.make b/rules/libxml2.make
index 36450ea..3392e5e 100644
--- a/rules/libxml2.make
+++ b/rules/libxml2.make
@@ -18,8 +18,8 @@ PACKAGES-$(PTXCONF_LIBXML2) += libxml2
 #
 # Paths and names
 #
-LIBXML2_VERSION	:= 2.7.7
-LIBXML2_MD5	:= 9abc9959823ca9ff904f1fbcf21df066
+LIBXML2_VERSION	:= 2.9.2
+LIBXML2_MD5	:= 9e6a9aca9d155737868b3dc5fd82f788
 LIBXML2		:= libxml2-$(LIBXML2_VERSION)
 LIBXML2_SUFFIX	:= tar.gz
 LIBXML2_SOURCE	:= $(SRCDIR)/$(LIBXML2).$(LIBXML2_SUFFIX)
-- 
1.7.10.4


-- 
ptxdist mailing list
ptxdist@pengutronix.de

  parent reply	other threads:[~2014-10-27 20:11 UTC|newest]

Thread overview: 22+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2014-10-27 20:11 [ptxdist] update libxml2 and libxslt Alexander Dahl
2014-10-27 20:11 ` [ptxdist] [PATCH 1/2] libxslt: update to 1.1.28 Alexander Dahl
2014-11-13 16:49   ` Michael Olbrich
2014-10-27 20:11 ` Alexander Dahl [this message]
2014-11-13 16:50   ` [ptxdist] [PATCH 2/2] libxml2: update to 2.9.2 Michael Olbrich
2014-11-14 15:01     ` Alexander Dahl
2014-11-18 15:02     ` Alexander Dahl
2014-11-19 10:20       ` Michael Olbrich
2014-11-19 11:16         ` Alexander Dahl
2014-11-19 11:51           ` Michael Olbrich
2014-11-21  7:00             ` [ptxdist] [PATCH 1/2] " Alexander Dahl
2014-11-21  7:00               ` [ptxdist] [PATCH 2/2] libxml2: handle new ./configure options Alexander Dahl
2014-11-21 14:44                 ` Michael Olbrich
2014-11-24 11:25                   ` [ptxdist] [PATCHv3 0/2] libxml/libxslt update Alexander Dahl
2014-11-24 11:25                     ` [ptxdist] [PATCHv3 1/2] libxslt: add --without-python to host package Alexander Dahl
2014-11-24 11:25                     ` [ptxdist] [PATCHv3 2/2] libxml2: update to 2.9.2 Alexander Dahl
2014-11-26  9:58                     ` [ptxdist] [PATCHv3 0/2] libxml/libxslt update Michael Olbrich
2014-11-26 10:20                       ` Alexander Dahl
2014-11-26 15:24                         ` Michael Olbrich
2014-11-26 17:43                           ` [ptxdist] [PATCHv3 1/2] libxslt: add --without-python to host package Alexander Dahl
2014-11-26 17:43                             ` [ptxdist] [PATCHv3 2/2] libxml2: update to 2.9.2 Alexander Dahl
2014-11-27  8:59                               ` Michael Olbrich

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1414440669-4568-3-git-send-email-post@lespocky.de \
    --to=post@lespocky.de \
    --cc=ptxdist@pengutronix.de \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox