Subject: CVS commit: pkgsrc/emulators/suse131_libxml2
From: OBATA Akio
Date: 2014-11-03 09:05:03
Message id: 20141103080503.307BC98@cvs.netbsd.org
Log Message:
Apply following Security updates, resolve one CVE, but remove one CVE fix.
Bump PKGREVISION to 3.

==============================================================================
   openSUSE Security Update: libxml2, python-libxml2: Reverted patch for \ 
CVE-2014-0191
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2014:0753-1
Rating:             moderate
References:         #876652
Cross-References:   CVE-2014-0191
Affected Products:
                    openSUSE 13.1
                    openSUSE 12.3
______________________________________________________________________________

   An update that fixes one vulnerability is now available.

Description:

   Removed fix for CVE-2014-0191. This fix breaks existing applications and
   there's currently no way to prevent that.

==============================================================================
   openSUSE Security Update: update to fix CVE-2014-3660
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2014:1330-1
Rating:             moderate
References:         #901546
Cross-References:   CVE-2014-3660
Affected Products:
                    openSUSE 13.1
                    openSUSE 12.3
______________________________________________________________________________

   An update that fixes one vulnerability is now available.

Description:

   This update fixes a denial of service vulnerability when expanding
   recursive entity (CVE-2014-3660) bnc#901546
Files:
RevisionActionfile
1.6modifypkgsrc/emulators/suse131_libxml2/Makefile
1.4modifypkgsrc/emulators/suse131_libxml2/distinfo