[xml] patch: problem with xmlParseBalancedChunkMemory containing entities

From: Rob Richards <rrichards cdatazone org>
To: "xml gnome org" <xml gnome org>
Subject: [xml] patch: problem with xmlParseBalancedChunkMemory containing entities
Date: Wed, 16 Feb 2011 14:48:50 -0500

I hit an issue that causes a crash when usingxmlParseBalancedChunkMemory with data that contains an entity.

i.e. <test><data>&nbsp;</data></test>

The xmlDocPtr passed in to the function does contain the entitydeclarations btw

When the entity is parsed a call to xmlParseBalancedChunkInternal ismade with the context created from xmlParseBalancedChunkMemory which hasa temporary myDoc property. The content is cretated as being owned bythe temporary doc.

The temporary doc from the top level xmlParseBalancedChunkMemory isfreed leaving the created list from when the entity was parsed with aninvalid pointer which ultimately causes a crash when the structure is freed.

Attached patch just sets the owning doc for the list to the same onethat owns the parent entity if not so already.No issues ever with dict as the dict from the original doc is passedalong in each of the new contexts.

Rob

Attachment: parser.c.diff.txt
Description: Text document

Follow-Ups:
- Re: [xml] patch: problem with xmlParseBalancedChunkMemory containing entities
  - From: Daniel Veillard

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]