Format: 1.8 Date: Tue, 14 Mar 2017 16:06:13 -0400 Source: libxml2 Binary: libxml2 libxml2-utils libxml2-utils-dbg libxml2-dev libxml2-dbg libxml2-doc python-libxml2 python-libxml2-dbg libxml2-udeb Architecture: armhf Version: 2.9.3+dfsg1-1ubuntu0.2 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libxml2 - GNOME XML library libxml2-dbg - Debugging symbols for the GNOME XML library libxml2-dev - Development files for the GNOME XML library libxml2-doc - Documentation for the GNOME XML library libxml2-udeb - GNOME XML library - minimal runtime (udeb) libxml2-utils - XML utilities libxml2-utils-dbg - XML utilities (debug extension) python-libxml2 - Python bindings for the GNOME XML library python-libxml2-dbg - Python bindings for the GNOME XML library (debug extension) Launchpad-Bugs-Fixed: 1652325 Changes: libxml2 (2.9.3+dfsg1-1ubuntu0.2) xenial-security; urgency=medium . * SECURITY UPDATE: format string vulnerabilities - debian/patches/CVE-2016-4448-1.patch: fix format string warnings in HTMLparser.c, SAX2.c, catalog.c, configure.ac, debugXML.c, encoding.c, entities.c, error.c, include/libxml/parserInternals.h, include/libxml/xmlerror.h, include/libxml/xmlstring.h, libxml.h, parser.c, parserInternals.c, relaxng.c, schematron.c, testModule.c, valid.c, xinclude.c, xmlIO.c, xmllint.c, xmlreader.c, xmlschemas.c, xmlstring.c, xmlwriter.c, xpath.c, xpointer.c. - debian/patches/CVE-2016-4448-2.patch: fix format string warnings in libxml.h, relaxng.c, xmlschemas.c, xmlstring.c. - debian/libxml2.symbols: added new symbol. - CVE-2016-4448 * SECURITY UPDATE: use-after-free via namespace nodes in XPointer ranges - debian/patches/CVE-2016-4658.patch: disallow namespace nodes in XPointer ranges in xpointer.c. - CVE-2016-4658 * SECURITY UPDATE: use-after-free in XPointer range-to function - debian/patches/CVE-2016-5131-1.patch: fix XPointer paths beginning with range-to in xpath.c, xpointer.c. - debian/patches/CVE-2016-5131-2.patch: fix comparison with root node in xmlXPathCmpNodes in xpath.c. - CVE-2016-5131 * debian/patches/lp1652325.patch: XML push parser fails with bogus UTF-8 encoding error when multi-byte character in large CDATA section is split across buffer (LP: #1652325) Checksums-Sha1: 30cfd3c5d75fa4f29960b2a0d3d35c306aaa61f8 1620246 libxml2-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 64b36162f4aaaed4c66bda42525fb9fa5195b550 1064 libxml2-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb aaa6076d1004df09a54ec5ececbdfa857128eedf 1062 libxml2-dev-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb 676cf3f6be9ee3304105043df29ad6a6e32bdc89 678902 libxml2-dev_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 901c45462fdb81d23b7bcc80df89553d47ae60ee 1054 libxml2-udeb-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb 8a9abac8574fb06a936101654d9e40096af49d67 538672 libxml2-udeb_2.9.3+dfsg1-1ubuntu0.2_armhf.udeb 1d8016fa62910961098cd728848744d707584772 71784 libxml2-utils-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 34b11b300e815e03905b5944e076e01ae788a56b 1090 libxml2-utils-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb e9f817445d6fa0e86bdf620cddbbf5d4d694fa93 35212 libxml2-utils_2.9.3+dfsg1-1ubuntu0.2_armhf.deb e36fc6a053a63eac911a046fbe18a7535c50d498 604960 libxml2_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 0235fd34b611e9d1a79ff6d6c8f1354e1a7290ee 238936 python-libxml2-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb c65885132b6f41fc4793b69e9a73f296ae4a1db9 126462 python-libxml2_2.9.3+dfsg1-1ubuntu0.2_armhf.deb Checksums-Sha256: 6e822b677e54d6f77565ab026acf77fec0172003fa6d5297d80832e61c2db5a2 1620246 libxml2-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 1d4384dba9e473e0c83f9b6758924489c3a5bbe2fd68d2bc4adc6ffc1783061a 1064 libxml2-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb 6ab7bdf2225fbe62cb5e9c9d63f967db353ca98fd1c970581890b66e66e7a061 1062 libxml2-dev-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb 2c56faf8f0529e8f4570fc82d23cb726af9e5189175ef0f750db2d0c60acf979 678902 libxml2-dev_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 6d96e2de79955183092237a9868d2abdcf3a88abdf856caebf8259b6c471362a 1054 libxml2-udeb-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb dbbb6612791586c35074e877386f754e3ecc4dc2e60351823e854b0059cd6cf0 538672 libxml2-udeb_2.9.3+dfsg1-1ubuntu0.2_armhf.udeb 82b24675ed69e08a0d474e736a5c5d69923d021b7e82a60587526a18cd4fde8c 71784 libxml2-utils-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 9ec63856c20767d12816dd30136d389f7a35ff0aa21b49d6c9e5c541a86447dd 1090 libxml2-utils-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb 562f8824876fcf22f333a8d2cd8b1e587dd9b44d9377c5b4330fb09d12d83d2c 35212 libxml2-utils_2.9.3+dfsg1-1ubuntu0.2_armhf.deb a6e1dacdabd066691fa764c5ae24de98171829cf3fdb7a6b6e3c0606977f0fe2 604960 libxml2_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 7df0aa85897424c45370d6017c5c7c7b013572a210e6540178b728cb67d1e535 238936 python-libxml2-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 9cdcf41a5d098c10ed9f11760929a189eab6e7455e7223424d82b23a02381426 126462 python-libxml2_2.9.3+dfsg1-1ubuntu0.2_armhf.deb Files: a004ca6deff42d9b66b3e0cf190fd21f 1620246 debug extra libxml2-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 46be356de57541cf8dff45ffbf1f993a 1064 libs extra libxml2-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb bed818f70d2df123cf3c177431deaafd 1062 libdevel extra libxml2-dev-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb c48556ea14876b2827d054b5fc14df1e 678902 libdevel optional libxml2-dev_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 4a9140ba0c8fd5720639d6798fc4bf46 1054 debian-installer extra libxml2-udeb-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb 603595daa02cbe817651f07ef66e4335 538672 debian-installer optional libxml2-udeb_2.9.3+dfsg1-1ubuntu0.2_armhf.udeb af33aeb907b8ee9c812c8f41f50b5ab7 71784 debug extra libxml2-utils-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb bd6bf8310ab3a3f53904048a253ed813 1090 text extra libxml2-utils-dbgsym_2.9.3+dfsg1-1ubuntu0.2_armhf.ddeb 927ed5f720f533fa0deb62dfbd82a237 35212 text optional libxml2-utils_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 0b662b05b1a4fa4bbbb03d57e0b5e3ef 604960 libs standard libxml2_2.9.3+dfsg1-1ubuntu0.2_armhf.deb 826a062362379015f41a94b381fe73fc 238936 debug extra python-libxml2-dbg_2.9.3+dfsg1-1ubuntu0.2_armhf.deb edc1bf63e59dd187e079040c120e3038 126462 python optional python-libxml2_2.9.3+dfsg1-1ubuntu0.2_armhf.deb Original-Maintainer: Debian XML/SGML Group Package-Type: udeb