* SECURITY UPDATE: incomplete fix for out of bounds read in xmlGROW
(LP: #1525996)
- add extra commits to this previously-fixed CVE
- debian/patches/CVE-2015-7499-3.patch: reuse xmlHaltParser() where it
makes sense in parser.c.
- debian/patches/CVE-2015-7499-4.patch: do not print error context when
there is none in error.c.
- CVE-2015-7499
* SECURITY UPDATE: out of bounds memory access via unclosed html comment
- debian/patches/CVE-2015-8710.patch: fix parsing short unclosed
comment uninitialized access in HTMLparser.c.
- CVE-2015-8710
-- Marc Deslauriers <email address hidden> Thu, 14 Jan 2016 13:12:24 -0500
This bug was fixed in the package libxml2 - 2.9.2+dfsg1- 3ubuntu0. 3
--------------- dfsg1-3ubuntu0. 3) vivid-security; urgency=medium
libxml2 (2.9.2+
* SECURITY UPDATE: incomplete fix for out of bounds read in xmlGROW patches/ CVE-2015- 7499-3. patch: reuse xmlHaltParser() where it patches/ CVE-2015- 7499-4. patch: do not print error context when patches/ CVE-2015- 8710.patch: fix parsing short unclosed
(LP: #1525996)
- add extra commits to this previously-fixed CVE
- debian/
makes sense in parser.c.
- debian/
there is none in error.c.
- CVE-2015-7499
* SECURITY UPDATE: out of bounds memory access via unclosed html comment
- debian/
comment uninitialized access in HTMLparser.c.
- CVE-2015-8710
-- Marc Deslauriers <email address hidden> Thu, 14 Jan 2016 13:12:24 -0500