[libxml2] Created tag CVE-2016-4483

From: Daniel Veillard <veillard src gnome org>
To: commits-list gnome org
Cc:
Subject: [libxml2] Created tag CVE-2016-4483
Date: Mon, 23 May 2016 09:12:49 +0000 (UTC)

The signed tag 'CVE-2016-4483' was created.

Tagger: Daniel Veillard <veillard redhat com>
Date: Mon May 23 16:50:07 2016 +0800

    CVE-2016-4483 though I doubt the security implications

Changes since the last tag 'CVE-2016-1834':

Daniel Veillard (2):
      Add more debugging info to runtest
      Avoid an out of bound access when serializing malformed strings

David Kilzer (3):
      Integer signed/unsigned type mismatch in xmlParserInputGrow()
      Implement "runtest -u" mode
      Unsigned addition may overflow in xmlMallocAtomicLoc()

Mike Frysinger (1):
      libxml2 hardcodes -L/lib in zlib/lzma tests which breaks cross-compiles

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]