[libxml2] Created tag CVE-2021-3541
- From: Daniel Veillard <veillard src gnome org>
- To: commits-list gnome org
- Cc:
- Subject: [libxml2] Created tag CVE-2021-3541
- Date: Thu, 13 May 2021 13:00:25 +0000 (UTC)
The signed tag 'CVE-2021-3541' was created.
Tagger: Daniel Veillard <veillard redhat com>
Date: 1620910803 +0200
CVE-2021-3541
Changes since the last tag 'v2.9.10':
Andre Klapper (1):
Update to Devhelp index file format version 2
Christopher Degawa (1):
CMake: Only add postfixes if MSVC
Daniel Cheng (1):
Guard new calls to xmlValidatePopElement in xml_reader.c
Daniel Veillard (1):
Patch for security issue CVE-2021-3541
David Kilzer (2):
Add regexp regression tests
Reset XML parser input before reporting errors
Dmitry V. Levin (1):
xml2-config.in: fix regressions introduced by commit 2f2bf4b2c
Elliott Hughes (1):
Fix xmlURIEscape memory leaks.
Frederik Seiffert (1):
Fix building with ICU 68.
Joel Hockey (1):
Validate UTF8 in xmlEncodeEntities
Kevin Puetz (3):
Fix potentially-uninitialized critical section in Win32 DLL builds
Fix memory leak when shared libxml.dll is unloaded
Fix xmlSchemaGetCanonValue formatting for date and dateTime
Markus Rickert (28):
Add CMake build files
List headers individually
Configure file xmlwin32version.h.in on MSVC
Enable runtests and testThreads
Ensure LF line endings for test files
Add command line option for temp directory in runtest
Add additional tests and XML Conformance Test Suite
Add variable for working directory of XML Conformance Test Suite
Update config.h.cmake.in
Set project language to C
Add CI for CMake on Linux and MinGW
Add missing compile definition for static builds to CMake
Add CMake files to EXTRA_DIST
Use NAMELINK_COMPONENT in CMake install
Require dependencies based on enabled CMake options
Add xmlcatalog and xmllint to CMake export
Update CMake config files
Configure pkgconfig, xml2-config, and xml2Conf.sh file
Fix ICU build in CMake
Remove include directories for link-only dependencies
Add xmlcatalog target and definition to config files
Check if target exists when reading target properties
Check if variables exist when defining targets
Add variables for configured options to CMake config files
Update minimum required CMake version
Add CI for CMake on MSVC
Add CI for MSVC x86
Use CMake PROJECT_VERSION
Martin Vidner (1):
Fix rebuilding docs, by hiding __attribute__((...)) behind a macro.
Michael Matz (1):
Avoid quadratic checking of identity-constraints
Michael Stahl (1):
win32: allow passing *FLAGS on command line
Mike Dalessio (5):
parser.c: xmlParseCharData peek behavior fixed wrt newlines
add test coverage for incorrectly-closed comments
htmlParseComment: treat `--!>` as if it closed the comment
use new htmlParseLookupCommentEnd to find comment ends
parser.c: shrink the input buffer when appropriate
Miro Hrončok (1):
Parenthesize Py<type>_Check() in ifs
Nick Wellnhofer (170):
Enable more undefined behavior sanitizers
Fix overflow handling in xmlBufBackToBuffer
Fix memory leak in error path of XPath expr parser
Fix xml2-config error code
Fix memory leaks of encoding handlers in xmlsave.c
Fix more memory leaks in error paths of XPath parser
Fix freeing of nested documents
Fix overflow check in xmlNodeDump
Remove useless comparisons
Check for overflow when allocating two-dimensional arrays
Minor fixes to configure.js
Fix integer overflow in xmlBufferResize
Add xmlPopOutputCallbacks
Fix copying of entities in xmlParseReference
Copy some XMLReader option flags to parser context
Merge code paths loading external entities
Don't load external entity from xmlSAX2GetEntity
Enable error tests with entity substitution
Add test case for recursive external parsed entities
Stop calling SAX getEntity handler from XMLReader
Disable LeakSanitizer
Fix typos
Make schema validation fail with multiple top-level elements
Fix memory leak in xmlXIncludeLoadDoc error path
Revert "Fix memory leak in xmlParseBalancedChunkMemoryRecover"
xmlParseBalancedChunkMemory must not be called with NULL doc
Add a couple of libFuzzer targets
Fix use-after-free with validating reader
Add options file for xml fuzzer
Fix undefined behavior in xmlXPathTryStreamCompile
Never expand parameter entities in text declaration
Update GitLab CI container
Fix return value of xmlCharEncOutput
Fuzz target for HTML parser
Fix undefined behavior in UTF16LEToUTF8
Fix integer overflow in htmlParseCharRef
Fix unsigned integer overflow in htmlParseTryOrFinish
Move entity recorder to fuzz.c
Fuzz target for XML Schemas
Fix another memory leak in xmlSchemaValAtomicType
Fix integer overflow when parsing {min,max}Occurs
Fix integer overflow in _xmlSchemaParseGYear
Copy xs:duration parser from libexslt
Don't follow next pointer on documents in xmlXPathRunStreamEval
Fix return value of xmlC14NDocDumpMemory
Fix integer overflow in xmlFAParseQuantExact
Reset HTML parser input before reporting encoding error
Report error for invalid regexp quantifiers
Fix quadratic runtime in HTML parser
Fix return values and documentation in encoding.c
Limit regexp nesting depth
Fix regression introduced with 477c7f6a
Fix more quadratic runtime issues in HTML push parser
Reset HTML parser input before reporting error
Fix quadratic runtime when parsing HTML script content
Remove misleading comments in xpath.c
Fix UTF-8 decoder in HTML parser
Make 'xmllint --html --push -' read from stdin
Rework control flow in htmlCurrentChar
Make htmlCurrentChar always translate U+0000
Fix HTML push parser lookahead
Fix quadratic runtime when push parsing HTML entity refs
Fix quadratic runtime when push parsing HTML start tags
Fix .gitattributes
Fix several quadratic runtime issues in HTML push parser
Don't try to handle namespaces when building HTML documents
Make htmlNodeDumpFormatOutput non-recursive
Make xhtmlNodeDumpOutput non-recursive
Make xmlNodeDumpOutputInternal non-recursive
Fix *NodeDumpOutput functions
More *NodeDumpOutput fixes
Fix exponential runtime in xmlFARecurseDeterminism
Update fuzzing code
Fix integer overflow when comparing schema dates
Check for custom free function in global destructor
Add XPath and XPointer fuzzer
Fix memory leak in xmlXIncludeIncludeNode error paths
Don't recurse into xi:include children in xmlXIncludeDoProcess
Don't process siblings of root in xmlXIncludeProcess
Fix exponential runtime and memory in xi:fallback processing
Fix out-of-bounds read with 'xmllint --htmlout'
Fuzz XInclude engine
Fix XPath fuzzer
Use strcmp when fuzzing
Remove unneeded progress checks in HTML parser
Stop counting nbChars in parser context
Fix column number accounting in xmlParse*NameAndCompare
Revert "Do not URI escape in server side includes"
Don't use SAX1 if all element handlers are NULL
Make "xmllint --push --recovery" work
Fix memory leak in runtest.c
Fix XInclude regression introduced with recent commit
Don't add formatting newlines to XInclude nodes
Fix corner case with empty xi:fallback
Fix quadratic runtime in xi:fallback processing
Fix error reporting with xi:fallback
Fix autotools warnings
Remove dead code in xinclude.c
Stop using maxParserDepth in xpath.c
Add TODO comment in xinclude.c
Revert "Fix quadratic runtime in xi:fallback processing"
Fix memory leak in xmlXIncludeAddNode error paths
Fix regression introduced with commit 74dcc10b
Fix regression introduced with commit d88df4b
Test fuzz targets with dummy driver
Consolidate seed corpus generation
Pass URL of main entity in XML fuzzer
Hardcode maximum XPath recursion depth
Fix double free in XML reader with XIncludes
Limit size of free lists in XML reader when fuzzing
Fix cleanup of attributes in XML reader
Don't call xmlXPathInit directly
Fix version parsing in win32/configure.js
Fix variable name in win32/configure.js
Fix null deref in XPointer expression error path
Fix use-after-free when XIncluding text from Reader
Handle dumps of corrupted documents more gracefully
Fix memory leaks in XPointer string-range function
Allow port numbers up to INT_MAX
Add 'fuzz' subdirectory to DIST_SUBDIRS
Add fuzzing dictionaries to EXTRA_DIST
Fix caret in regexp character group
Avoid call stack overflow with XML reader and recursive XIncludes
Add CI test for Python 3
Fix quadratic runtime in HTML push parser with null bytes
Fix null pointer deref in xmlXPtrRangeInsideFunction
Simplify xmlexports.h
Fix integer overflow in xmlSchemaGetParticleTotalRangeMin
Remove temporary members from struct _xmlXPathContext
Enforce maximum length of fuzz input
Handle malloc failures in fuzzing code
Fix null deref in xmlStringGetNodeList
Fix memory leak in xmlParseElementMixedContentDecl
Fix timeout when handling recursive entities
Fix quadratic runtime when parsing CDATA sections
Fix infinite loop in HTML parser introduced with recent commits
Remove unused encoding parameter of HTML output functions
Speed up HTML fuzzer
Check for invalid redeclarations of predefined entities
Fix null deref introduced with previous commit
Fix slow parsing of HTML with encoding errors
Improve HTML fuzzer stability
Add charset names to fuzzing dictionaries
Revert "Improve HTML fuzzer stability"
Another attempt at improving fuzzer stability
Check for feature flags in fuzzer tests
Improve fuzzer stability
Only run a few CI tests unless scheduled
Fix quadratic behavior when looking up xml:* attributes
Reduce some fuzzer timeouts
Stop checking attributes for UTF-8 validity
Clarify xmlNewDocProp documentation
Speed up htmlTagLookup
Speed up htmlCheckAutoClose
Fix duplicate xmlStrEqual calls in htmlParseEndTag
Fix exponential behavior with recursive entities
Fix xmlGetNodePath with invalid node types
Fix XPath NaN/Inf for older GCC versions
Allow FP division by zero in xmlXPathInit
Fix include order in c14n.h
Fix use-after-free with `xmllint --html --push`
Fix dangling pointer with `xmllint --dropdtd`
Fix user-after-free with `xmllint --xinclude --dropdtd`
Update INSTALL.libxml2
Propagate error in xmlParseElementChildrenContentDeclPriv
Fix htmlTagLookup
Fix line numbers in error messages for mismatched tags
Fix handling of unexpected EOF in xmlParseContent
Store per-element parser state in a struct
Fix null deref in legacy SAX1 parser
PaulHiggs (1):
update for xsd:language type check
Pieter van Oostrum (2):
Updated python/tests/tstLastError.py
Updated Python test reader2.py
Ranier Vilela (1):
Use random seed in xmlDictComputeFastKey
SVGAnimate (1):
Add the copy of type from original xmlDoc in xmlCopyDoc()
Samuel Thibault (1):
Call xmlCleanupParser on ELF destruction
Simon Josefsson (1):
Fix warnings in libxml.m4 with autoconf 2.70+.
Victor Stinner (2):
Build the Python extension with PY_SSIZE_T_CLEAN
Convert python/libxml.c to PY_SSIZE_T_CLEAN
Xiaoming Ni (2):
xmlschemastypes.c: xmlSchemaGetFacetValueAsULong add, check "facet->val"
encoding: fix memleak in xmlRegisterCharEncodingHandler()
Zhipeng Xie (2):
Fix infinite loop in xmlStringLenDecodeEntities
Fix memory leak in xmlSchemaValidateStream
hhb (1):
Add a flag to not output anything when xmllint succeeded
raniervf (1):
Null pointer handling in catalog.c
yanjinjq (1):
Fix SEGV in xmlSAXParseFileWithData
Łukasz Wojniłowicz (1):
Add LIBXML_VALID_ENABLED to xmlreader
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
