[ubuntu/hardy-security] libxml2 2.6.31.dfsg-2ubuntu1.7 (Accepted)

[Jamie Strandboge]

libxml2 (2.6.31.dfsg-2ubuntu1.7) hardy-security; urgency=low

  * SECURITY UPDATE: fix off-by-one leading to denial of service
    - encoding.c: adjust calculation of space available
    - 69f04562f75212bfcabecd190ea8b06ace28ece2
    - CVE-2011-0216
  * SECURITY UPDATE: fix double free in XPath evaluation
    - xpath.c: fix missing error status in XPath evaluation
    - 1d4526f6f4ec8d18c40e2a09b387652a6c1aa2cd
    - CVE-2011-2834
  * SECURITY UPDATE: fix out of bounds read
    - parser.c: make sure the parser returns when getting a Stop order
    - 77404b8b69bc122d12231807abf1a837d121b551
    - CVE-2011-3905
  * SECURITY UPDATE: fix heap overflow
    - parser.c: fix an allocation error when copying entities
    - 5bd3c061823a8499b27422aee04ea20aae24f03e
    - CVE-2011-3919

Date: Wed, 18 Jan 2012 14:20:37 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/libxml2/2.6.31.dfsg-2ubuntu1.7
-------------- next part --------------
Format: 1.7
Date: Wed, 18 Jan 2012 14:20:37 -0600
Source: libxml2
Binary: libxml2 libxml2-udeb libxml2-utils libxml2-dev libxml2-dbg libxml2-doc python-libxml2 python-libxml2-dbg
Architecture: source
Version: 2.6.31.dfsg-2ubuntu1.7
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 libxml2    - GNOME XML library
 libxml2-dbg - Debugging symbols for the GNOME XML library
 libxml2-dev - Development files for the GNOME XML library
 libxml2-doc - Documentation for the GNOME XML library
 libxml2-udeb - GNOME XML library
 libxml2-utils - XML utilities
 python-libxml2 - Python bindings for the GNOME XML library
 python-libxml2-dbg - Python bindings for the GNOME XML library (debug extension)
Changes: 
 libxml2 (2.6.31.dfsg-2ubuntu1.7) hardy-security; urgency=low
 .
   * SECURITY UPDATE: fix off-by-one leading to denial of service
     - encoding.c: adjust calculation of space available
     - 69f04562f75212bfcabecd190ea8b06ace28ece2
     - CVE-2011-0216
   * SECURITY UPDATE: fix double free in XPath evaluation
     - xpath.c: fix missing error status in XPath evaluation
     - 1d4526f6f4ec8d18c40e2a09b387652a6c1aa2cd
     - CVE-2011-2834
   * SECURITY UPDATE: fix out of bounds read
     - parser.c: make sure the parser returns when getting a Stop order
     - 77404b8b69bc122d12231807abf1a837d121b551
     - CVE-2011-3905
   * SECURITY UPDATE: fix heap overflow
     - parser.c: fix an allocation error when copying entities
     - 5bd3c061823a8499b27422aee04ea20aae24f03e
     - CVE-2011-3919
Files: 
 fd054e73767139434cd7f8bef2a05040 1708 libs optional libxml2_2.6.31.dfsg-2ubuntu1.7.dsc
 c0980529dd6c3218f31e552e997297f3 70329 libs optional libxml2_2.6.31.dfsg-2ubuntu1.7.diff.gz
Original-Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>