./textproc/libxml2, XML parser library from the GNOME project

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 2.9.10nb1, Package name: libxml2-2.9.10nb1, Maintainer: pkgsrc-users

XML parser library from the GNOME project


Required to run:
[textproc/xmlcatmgr]

Required to build:
[pkgtools/cwrappers]

Package options: inet6

Master sites:

SHA1: db6592ec9ca9708c4e71bf6bfd907bbb5cd40644
RMD160: 455f81e1f121c63dac96802de7f83ce4483f1afe
Filesize: 5492.931 KB

Version history: (Expand)


CVS history: (Expand)


   2020-01-24 11:40:36 by Kimmo Suominen | Files touched by this commit (4)
Log message:
Apply upstream patch for CVE-2020-7595.
Apply upstream pull request for CVE-2019-20388.
   2019-11-06 14:19:43 by Thomas Klausner | Files touched by this commit (4) | Package updated
Log message:
libxml2: update to 2.9.10.

This is a relatively large release, Nick fixed a number of bugs
and improved the code in many areas, among other things removing
some recursive behaviour of the code in various places. Includes
various portability fixes, documentation updates and cleanups:

Documentation:
- Fix a few more typos ("fonction") (Nick Wellnhofer)
- Large batch of typo fixes (Jared Yanovich)
- Fix typos: tree: move{ -> s}, reconcil{i -> }ed, h{o -> e}ld by... \ 
(Jan Pokorný)
- Fix typo: xpath: simpli{ -> fi}ed (Jan Pokorný)
- Doc: do not mislead towards "infeasible" scenario wrt. \ 
xmlBufNodeDump (Jan Pokorný)
- Fix comments in test code (zhouzhongyuan)
- fix comment in testReader.c (zhouzhongyuan)

Portability:
- Fix some release issues on Fedora 30 (Daniel Veillard)
- Fix exponent digits when running tests under old MSVC (Daniel Richard G)
- Work around buggy ceil() function on AIX (Daniel Richard G)
- Don't call printf with NULL string in runtest.c (Daniel Richard G)
- Switched from unsigned long to ptrdiff_t in parser.c (Stephen Chenney)
- timsort.h: support older GCCs (Jérôme Duval)
- Make configure.ac work with older pkg-config (Nick Wellnhofer)
- Stop defining _REENTRANT on some Win32 platforms (Nick Wellnhofer)
- Fix nanohttp.c on MinGW (Nick Wellnhofer)
- Fix Windows compiler warning in testC14N.c (Nick Wellnhofer)
- Merge testThreadsWin32.c into testThreads.c (Nick Wellnhofer)
- Fix Python bindings under Windows (Nick Wellnhofer)

Bug Fixes:
- Another fix for conditional sections at end of document (Nick Wellnhofer)
- Fix for conditional sections at end of document (Nick Wellnhofer)
- Make sure that Python tests exit with error code (Nick Wellnhofer)
- Audit memory error handling in xpath.c (Nick Wellnhofer)
- Fix error code in xmlTextWriterStartDocument (Nick Wellnhofer)
- Fix integer overflow when counting written bytes (Nick Wellnhofer)
- Fix uninitialized memory access in HTML parser (Nick Wellnhofer)
- Fix memory leak in xmlSchemaValAtomicType (Nick Wellnhofer)
- Disallow conditional sections in internal subset (Nick Wellnhofer)
- Fix use-after-free in xmlTextReaderFreeNodeList (Nick Wellnhofer)
- Fix Regextests (Nick Wellnhofer)
- Fix empty branch in regex (Nick Wellnhofer)
- Fix integer overflow in entity recursion check (Nick Wellnhofer)
- Don't read external entities or XIncludes from stdin (Nick Wellnhofer)
- Fix Schema determinism check of ##other namespaces (Nick Wellnhofer)
- Fix potential null deref in xmlSchemaIDCFillNodeTables (zhouzhongyuan)
- Fix potential memory leak in xmlBufBackToBuffer (Nick Wellnhofer)
- Fix error message when processing XIncludes with fallbacks (Nick Wellnhofer)
- Fix memory leak in xmlRegEpxFromParse (zhouzhongyuan)
- 14:00 is a valid timezone for xs:dateTime (Nick Wellnhofer)
- Fix memory leak in xmlParseBalancedChunkMemoryRecover (Zhipeng Xie)
- Fix potential null deref in xmlRelaxNGParsePatterns (Nick Wellnhofer)
- Misleading error message with xs:{min|max}Inclusive (bettermanzzy)
- Fix memory leak in xmlXIncludeLoadTxt (Wang Kirin)
- Partial fix for comparison of xs:durations (Nick Wellnhofer)
- Fix null deref in xmlreader buffer (zhouzhongyuan)
- Fix unability to RelaxNG-validate grammar with choice-based name class (Jan \ 
Pokorný)
- Fix unability to validate ambiguously constructed interleave for RelaxNG (Jan \ 
Pokorný)
- Fix possible null dereference in xmlXPathIdFunction (zhouzhongyuan)
- fix memory leak in xmlAllocOutputBuffer (zhouzhongyuan)
- Fix unsigned int overflow (Jens Eggerstedt)
- dict.h: gcc 2.95 doesn't allow multiple storage classes (Nick Wellnhofer)
- Fix another code path in xmlParseQName (Nick Wellnhofer)
- Make sure that xmlParseQName returns NULL in error case (Nick Wellnhofer)
- Fix build without reader but with pattern (Nick Wellnhofer)
- Fix memory leak in xmlAllocOutputBufferInternal error path (Nick Wellnhofer)
- Fix unsigned integer overflow (Nick Wellnhofer)
- Fix return value of xmlOutputBufferWrite (Nick Wellnhofer)
- Fix parser termination from "Double hyphen within comment" error \ 
(David Warring)
- Fix call stack overflow in xmlFreePattern (Nick Wellnhofer)
- Fix null deref in previous commit (Nick Wellnhofer)
- Fix memory leaks in xmlXPathParseNameComplex error paths (Nick Wellnhofer)
- Check for integer overflow in xmlXPtrEvalChildSeq (Nick Wellnhofer)
- Fix xmllint dump of XPath namespace nodes (Nick Wellnhofer)
- Fix float casts in xmlXPathSubstringFunction (Nick Wellnhofer)
- Fix null deref in xmlregexp error path (Nick Wellnhofer)
- Fix null pointer dereference in xmlTextReaderReadOuterXml (Nick Wellnhofer)
- Fix memory leaks in xmlParseStartTag2 error paths (Nick Wellnhofer)
- Fix memory leak in xmlSAX2StartElement (Nick Wellnhofer)
- Fix commit "Memory leak in xmlFreeID (xmlreader.c)" (Nick Wellnhofer)
- Fix NULL pointer deref in xmlTextReaderValidateEntity (Nick Wellnhofer)
- Memory leak in xmlFreeTextReader (Nick Wellnhofer)
- Memory leak in xmlFreeID (xmlreader.c) (Nick Wellnhofer)

Improvements:
- Run XML conformance tests under CI (Nick Wellnhofer)
- Update GitLab CI config (Nick Wellnhofer)
- Propagate memory errors in valuePush (Nick Wellnhofer)
- Propagate memory errors in xmlXPathCompExprAdd (Nick Wellnhofer)
- Make xmlFreeDocElementContent non-recursive (Nick Wellnhofer)
- Enable continuous integration via GitLab CI (Nick Wellnhofer)
- Avoid ignored attribute warnings under GCC (Nick Wellnhofer)
- Make xmlDumpElementContent non-recursive (Nick Wellnhofer)
- Make apibuild.py ignore ATTRIBUTE_NO_SANITIZE (Nick Wellnhofer)
- Mark xmlExp* symbols as removed (Nick Wellnhofer)
- Make xmlParseConditionalSections non-recursive (Nick Wellnhofer)
- Adjust expected error in Python tests (Nick Wellnhofer)
- Make xmlTextReaderFreeNodeList non-recursive (Nick Wellnhofer)
- Make xmlFreeNodeList non-recursive (Nick Wellnhofer)
- Make xmlParseContent and xmlParseElement non-recursive (Nick Wellnhofer)
- Remove executable bit from non-executable files (Nick Wellnhofer)
- Fix expected output of test/schemas/any4 (Nick Wellnhofer)
- Optimize build instructions in README (zhouzhongyuan)
- xml2-config.in: Output CFLAGS and LIBS on the same line (Hugh McMaster)
- xml2-config: Add a --dynamic switch to print only shared libraries (Hugh McMaster)
- Annotate functions with __attribute__((no_sanitize)) (Nick Wellnhofer)
- Fix warnings when compiling without reader or push parser (Nick Wellnhofer)
- Remove unused member `doc` in xmlSaveCtxt (Nick Wellnhofer)
- Limit recursion depth in xmlXPathCompOpEvalPredicate (Nick Wellnhofer)
- Remove -Wno-array-bounds (Nick Wellnhofer)
- Remove unreachable code in xmlXPathCountFunction (Nick Wellnhofer)
- Improve XPath predicate and filter evaluation (Nick Wellnhofer)
- Limit recursion depth in xmlXPathOptimizeExpression (Nick Wellnhofer)
- Disable hash randomization when fuzzing (Nick Wellnhofer)
- Optional recursion limit when parsing XPath expressions (Nick Wellnhofer)
- Optional recursion limit when evaluating XPath expressions (Nick Wellnhofer)
- Use break statements in xmlXPathCompOpEval (Nick Wellnhofer)
- Optional XPath operation limit (Nick Wellnhofer)
- Fix compilation with --with-minimum (Nick Wellnhofer)
- Check XPath stack after calling functions (Nick Wellnhofer)
- Remove debug printf in xmlreader.c (Nick Wellnhofer)
- Always define LIBXML_THREAD_ENABLED when enabled (Michael Haubenwallner)
- Regenerate NEWS (Nick Wellnhofer)
- Change git repo URL (Nick Wellnhofer)
- Change bug tracker URL (Nick Wellnhofer)
- Remove outdated HTML file (Nick Wellnhofer)
- Fix unused function warning in testapi.c (Nick Wellnhofer)
- Add some generated test files to .gitignore (Nick Wellnhofer)
- Remove unneeded function pointer casts (Nick Wellnhofer)
- Fix -Wcast-function-type warnings (GCC 8) (Nick Wellnhofer)
- Fix -Wformat-truncation warnings (GCC 8) (Nick Wellnhofer)

Cleanups:
- Rebuild docs (Nick Wellnhofer)
- Disable xmlExp regex code (Nick Wellnhofer)
- Remove redundant code in xmlRelaxNGValidateState (Nick Wellnhofer)
- Remove redundant code in xmlXPathCompRelationalExpr (Nick Wellnhofer)

  Thanks Nick and all who helped contribute to this release!
   2019-11-04 22:43:49 by Roland Illig | Files touched by this commit (155)
Log message:
textproc: align variable assignments

pkglint -Wall -F --only aligned --only indent -r

No manual corrections.
   2019-07-03 18:54:32 by Sevan Janiyan | Files touched by this commit (1)
Log message:
Avoid trying to disable warnings for array boundary checks on Darwin.
On legacy toolchains e.g Tiger, it results in a hard error as it's not recognised.
   2019-01-09 20:09:03 by Adam Ciarcinski | Files touched by this commit (19) | Package removed
Log message:
libxml2: updated to 2.9.9

v2.9.9:
Security:
CVE-2018-9251 CVE-2018-14567 Fix infinite loop in LZMA decompression
CVE-2018-14404 Fix nullptr deref with XPath logic ops

Documentation:
reader: Fix documentation comment

Portability:
Fix MSVC build with lzma
Variables need 'extern' in static lib on Cygwin
Really declare dllexport/dllimport for Cygwin
Merge branch 'patch-2' into 'master'
Change dir to $THEDIR after ACLOCAL_PATH check autoreconf creates aclocal.m4 in \ 
$srcdir
Improve error message if pkg.m4 couldn't be found
NaN and Inf fixes for pre-C99 compilers

Bug Fixes:
Revert "Support xmlTextReaderNextSibling w/o preparsed doc"
Fix building relative URIs
Problem with data in interleave in RelaxNG validation
Fix memory leak in xmlSwitchInputEncodingInt error path
Set doc on element obtained from freeElems
Fix HTML serialization with UTF-8 encoding
Use actual doc in xmlTextReaderRead*Xml
Unlink node before freeing it in xmlSAX2StartElement
Check return value of nodePush in xmlSAX2StartElement
Free input buffer in xmlHaltParser
Reset HTML parser input pointers on encoding failure
Don't run icu_parse_test if EUC-JP is unsupported
Fix xmlSchemaValidCtxtPtr reuse memory leak
Fix xmlTextReaderNext with preparsed document
Remove stray character from comment
Remove a misleading line from xmlCharEncOutput
HTML noscript should not close p
Don't change context node in xmlXPathRoot
Stop using XPATH_OP_RESET
Revert "Change calls to xmlCharEncInput to set flush false"

Improvements:
Fix "Problem with data in interleave in RelaxNG validation"
cleanup: remove some unreachable code
add --relative to testURI
Remove redefined starts and defines inside include elements
Allow choice within choice in nameClass in RELAX NG
Look inside divs for starts and defines inside include
Add compile and libxml2-config.cmake to .gitignore
Stop using doc->charset outside parser code
Add newlines to 'xmllint --xpath' output
Don't include SAX.h from globals.h
Support xmlTextReaderNextSibling w/o preparsed doc
Don't instruct user to run make when autogen.sh failed
Run Travis ASan tests with "sudo: required"
Improve restoring of context size and position
Simplify and harden nodeset filtering
Avoid unnecessary backups of the context node
Fix inconsistency in xmlXPathIsInf
   2019-01-09 14:40:51 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
py-libxml2: work around a problem in error handling.

In some cases, invalid UTF-8 strings were returned which caused
python interpreter crashes. See

https://github.com/itstool/itstool/issues/22

Use a variant of the patch that was used in Fedora.

Bump PKGREVISION.
   2018-11-09 16:31:46 by Leonardo Taccari | Files touched by this commit (4)
Log message:
libxml2: Add a patch from upstream to fix CVE-2017-8872

Patch provided by Attila Fülöp via PR pkg/53704, thanks!
   2018-10-13 11:05:42 by Leonardo Taccari | Files touched by this commit (3)
Log message:
libxml2: Backport upstream patch for CVE-2018-9251 and CVE-2018-14567