diff options
| author | James Meyer <james.meyer@operamail.com> | 2012-08-07 18:52:46 (GMT) |
|---|---|---|
| committer | James Meyer <james.meyer@operamail.com> | 2012-08-07 18:52:46 (GMT) |
| commit | f2be005f4a1b502032566d4040091ef602bee07a (patch) | |
| tree | 5e999ae1f653c036459a8ffc5448037550b07e91 /abs/core/libxml2/CVE-2011-3919.patch | |
| parent | 297ec2f39c4d69b1434c39d0ed5af61404dbe677 (diff) | |
| download | linhes_pkgbuild-f2be005f4a1b502032566d4040091ef602bee07a.zip linhes_pkgbuild-f2be005f4a1b502032566d4040091ef602bee07a.tar.gz linhes_pkgbuild-f2be005f4a1b502032566d4040091ef602bee07a.tar.bz2 | |
libxml2: 2.7.8
Diffstat (limited to 'abs/core/libxml2/CVE-2011-3919.patch')
| -rw-r--r-- | abs/core/libxml2/CVE-2011-3919.patch | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/abs/core/libxml2/CVE-2011-3919.patch b/abs/core/libxml2/CVE-2011-3919.patch new file mode 100644 index 0000000..b307e57 --- /dev/null +++ b/abs/core/libxml2/CVE-2011-3919.patch @@ -0,0 +1,19 @@ +commit 5bd3c061823a8499b27422aee04ea20aae24f03e +Author: Daniel Veillard <veillard@redhat.com> +Date: Fri Dec 16 18:53:35 2011 +0800 + + Fix an allocation error when copying entities + +diff --git a/parser.c b/parser.c +index 4e5dcb9..c55e41d 100644 +--- a/parser.c ++++ b/parser.c +@@ -2709,7 +2709,7 @@ xmlStringLenDecodeEntities(xmlParserCtxtPtr ctxt, const xmlChar *str, int len, + + buffer[nbchars++] = '&'; + if (nbchars > buffer_size - i - XML_PARSER_BUFFER_SIZE) { +- growBuffer(buffer, XML_PARSER_BUFFER_SIZE); ++ growBuffer(buffer, i + XML_PARSER_BUFFER_SIZE); + } + for (;i > 0;i--) + buffer[nbchars++] = *cur++; |