[ubuntu/hardy-security] libxml2 2.6.31.dfsg-2ubuntu1.8 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Mon Feb 27 23:34:25 UTC 2012
- Previous message: [ubuntu/hardy-security] samba_3.0.28a-1ubuntu4.17_lpia_translations.tar.gz, samba, samba_3.0.28a-1ubuntu4.17_hppa_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_amd64_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_i386_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_ia64_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_powerpc_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_sparc_translations.tar.gz 3.0.28a-1ubuntu4.17 (Accepted)
- Next message: [ubuntu/hardy-security] postgresql-8.3_8.3.18-0ubuntu0.8.04_lpia_translations.tar.gz, postgresql-8.3, postgresql-8.3_8.3.18-0ubuntu0.8.04_i386_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_amd64_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_ia64_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_sparc_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_hppa_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_powerpc_translations.tar.gz 8.3.18-0ubuntu0.8.04 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
libxml2 (2.6.31.dfsg-2ubuntu1.8) hardy-security; urgency=low
* SECURITY UPDATE: add randomization to dictionaries with hash tables
help prevent denial of service via hash algorithm collision
- configure.in: lookup for rand, srand and time
- dict.c: add randomization to dictionaries hash tables
- hash.c: add randomization to normal hash tables
- CVE-2012-0841
This patch based on RedHat's 2.6 patch which includes the following
commits:
- b242b08831637432984439729a170153bdc3ed8d
- e9100a589d9dc97a09b2295db18657ce31adee65
- 424785e793a77c1f35898aeb31fc7cd64ba57334
- ffda65f0e6447eba3807d04bf670243702da026b
- d68f8912c46a01f6c200e1414d290947b7db630e
- 523e63559961f31e142c72049bb9b2595974c82f
Date: Fri, 24 Feb 2012 15:42:31 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/libxml2/2.6.31.dfsg-2ubuntu1.8
-------------- next part --------------
Format: 1.7
Date: Fri, 24 Feb 2012 15:42:31 -0600
Source: libxml2
Binary: libxml2 libxml2-udeb libxml2-utils libxml2-dev libxml2-dbg libxml2-doc python-libxml2 python-libxml2-dbg
Architecture: source
Version: 2.6.31.dfsg-2ubuntu1.8
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
libxml2 - GNOME XML library
libxml2-dbg - Debugging symbols for the GNOME XML library
libxml2-dev - Development files for the GNOME XML library
libxml2-doc - Documentation for the GNOME XML library
libxml2-udeb - GNOME XML library
libxml2-utils - XML utilities
python-libxml2 - Python bindings for the GNOME XML library
python-libxml2-dbg - Python bindings for the GNOME XML library (debug extension)
Changes:
libxml2 (2.6.31.dfsg-2ubuntu1.8) hardy-security; urgency=low
.
* SECURITY UPDATE: add randomization to dictionaries with hash tables
help prevent denial of service via hash algorithm collision
- configure.in: lookup for rand, srand and time
- dict.c: add randomization to dictionaries hash tables
- hash.c: add randomization to normal hash tables
- CVE-2012-0841
This patch based on RedHat's 2.6 patch which includes the following
commits:
- b242b08831637432984439729a170153bdc3ed8d
- e9100a589d9dc97a09b2295db18657ce31adee65
- 424785e793a77c1f35898aeb31fc7cd64ba57334
- ffda65f0e6447eba3807d04bf670243702da026b
- d68f8912c46a01f6c200e1414d290947b7db630e
- 523e63559961f31e142c72049bb9b2595974c82f
Files:
d83c9536ff71633a38b75afcc2e8530d 1708 libs optional libxml2_2.6.31.dfsg-2ubuntu1.8.dsc
63be6087dcd48fb7beb096228a3e8dd1 76473 libs optional libxml2_2.6.31.dfsg-2ubuntu1.8.diff.gz
Original-Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>
- Previous message: [ubuntu/hardy-security] samba_3.0.28a-1ubuntu4.17_lpia_translations.tar.gz, samba, samba_3.0.28a-1ubuntu4.17_hppa_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_amd64_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_i386_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_ia64_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_powerpc_translations.tar.gz, samba_3.0.28a-1ubuntu4.17_sparc_translations.tar.gz 3.0.28a-1ubuntu4.17 (Accepted)
- Next message: [ubuntu/hardy-security] postgresql-8.3_8.3.18-0ubuntu0.8.04_lpia_translations.tar.gz, postgresql-8.3, postgresql-8.3_8.3.18-0ubuntu0.8.04_i386_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_amd64_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_ia64_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_sparc_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_hppa_translations.tar.gz, postgresql-8.3_8.3.18-0ubuntu0.8.04_powerpc_translations.tar.gz 8.3.18-0ubuntu0.8.04 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Hardy-changes
mailing list