SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libxslt-devel-32bit-1.1.28-13.3.1.x86_64.rpm :
Thu Apr 11 14:00:00 2019 Pedro Monreal Gonzalez
- Security fix: [bsc#1132160, CVE-2019-11068]

* Bypass of a protection mechanism because callers of xsltCheckRead
and xsltCheckWrite permit access even upon receiving a -1 error
code. xsltCheckRead can return -1 for a crafted URL that is not
actually invalid and is subsequently loaded.

* Added libxslt-CVE-2019-11068.patch

Fri May 5 14:00:00 2017 pmonrealgonzalezAATTsuse.com
- Fixed CVE-2015-7995 bsc#952474

* Type confusion vulnerability may cause a DoS
- Added patch libxslt-CVE-2015-7995.patch

Tue Apr 25 14:00:00 2017 pmonrealgonzalezAATTsuse.com
- Fixed CVE-2017-5029 bcs#1035905

* Limit buffer size in xsltAddTextString to INT_MAX
- Added patch libxslt-1.1.28-CVE-2017-5029.patch

Wed Apr 5 14:00:00 2017 pgajdosAATTsuse.com
- security update: initialize random generator, CVE-2015-9019
[bsc#934119]
+ libxslt-random-seed.patch

Tue Mar 21 13:00:00 2017 pmonrealgonzalezAATTsuse.com
- Added patch libxslt-CVE-2016-4738.patch

* Fix heap overread in xsltFormatNumberConversion: An empty
decimal-separator could cause a heap overread. This can be
exploited to leak a couple of bytes after the buffer that holds
the pattern string.

* bsc#1005591 CVE-2016-4738

Thu Dec 6 13:00:00 2012 pascal.bleserAATTopensuse.org
- update to 1.1.28:

* fix generate-id() to avoid generating the same ID

* fix crash with empty xsl:key/AATTmatch attribute

* fix crash when passing an uninitialized variable to document()

* fix regression: default namespace not correctly used

* remove xsltTransStorageAdd and xsltTransStorageRemove from symbols.xml
- changes from 1.1.27:

* link python module with python library (Frederic Crozat)

* report errors on variable use in key

* the XSLT namespace string is a constant one

* fix handling of names in xsl:attribute

* reserved namespaces in xsl:element and xsl:attribute

* null-terminate result string of cry:rc4_decrypt

* EXSLT date normalization fix

* exit after compilation of invalid func:result

* fix for EXSLT func:function

* rewrite EXSLT string:replace to be conformant

* avoid a heap use after free error

* fix a dictionary string usage

* output should not include extraneous newlines when indent is off

* document(\'\') fails to return stylesheets parsed from memory

* xsltproc should return an error code if xinclude fails

* forwards-compatible processing of unknown top level elements

* fix system-property with unknown namespace

* fix default template processing on namespace nodes

* fix a bug in selecting XSLT elements

* fix a memory leak with xsl:number

* fix a problem with ESXLT date:add() with January

* fix generate-id() to not expose object addresses

* allow whitespace in xsl:variable with select

* fix direct pattern matching bug

* add the saxon:systemId extension

* add an append mode to document output

* fix portability to upcoming libxml2-2.9.0

* precompile patterns in xsl:number
- change soname macro back to \"1\" and enforce it in the files list
- revert -tools subpackage for openSUSE < 12.2 as that has only
become effective since 12.2 on the package that ships with the
distribution, to avoid having a completely different package
layout in this repository as compared to the stock distribution
packages (added a Provides: libxslt-tools though)

Wed Apr 25 14:00:00 2012 chrisAATTcomputersalat.de
- add macro \"soname\" %{name}1
- fix \"self obsoletion\"

Sat Mar 17 13:00:00 2012 jengelhAATTmedozas.de
- Make sure to follow shlib policy; put tools in a separate package
like done in libxml2

Wed Jan 4 13:00:00 2012 jengelhAATTmedozas.de
- Remove redundant tags (License: field is inherited)
- Use exact EVR for Provides:

Wed Jan 4 13:00:00 2012 cfarrellAATTsuse.com
- Tutorial contains GPL-2.0+ code. Either split this off into a subpackage or
add GPL-2.0+ as an aggregation to the main licence tag

Sat Dec 3 13:00:00 2011 agrafAATTsuse.com
- don\'t run make check in QEMU builds - breaks due to massive threading

Mon Nov 21 13:00:00 2011 jengelhAATTmedozas.de
- Remove redundant/unwanted tags/section (cf. specfile guidelines)

Sun Nov 20 13:00:00 2011 cooloAATTsuse.com
- add libtool as buildrequire to avoid implicit dependency

Thu Sep 8 14:00:00 2011 dmuellerAATTsuse.de
- fix provides/obsoletes

Tue Aug 2 14:00:00 2011 idonmezAATTnovell.com
- Add dependency on libgcrypt-devel and libgpg-error-devel for
the libxslt-devel package

Mon Aug 1 14:00:00 2011 idonmezAATTnovell.com
- Correctly obsolete libxslt package in the baselibs.conf too

Fri Jul 29 14:00:00 2011 idonmezAATTnovell.com
- Fix build on SLE

Fri Jul 29 14:00:00 2011 crrodriguezAATTopensuse.org
- Fix broken requires,provides,Obsoletes causing \"have choice..\"
build system errors
- Remove all \"la\" files since they are no longer needed
- Fix -devel pacakge requires and messed up -config scripts
this may cause build fails of already broken dependant packages
that do not link all the needed libraries in an explicit manner
(This is not a bug here, it is expected to cause it)

Wed Jul 27 14:00:00 2011 giecriljAATTstegny.2a.pl
- package clean-up:
- include library version number in the name of the binary package
- add an alias for xsltproc (required by package xmlto)

Wed Jul 21 14:00:00 2010 puzelAATTnovell.com
- update to libxslt-1.1.26
- Improvements:
- Add xsltProcessOneNode to exported symbols for lxml
- Features:
- Add API versioning and various cleanups
- xsl:sort lang support using the locale
- Bug fixes
- Portability, documentation fixes
- drop libxslt-1.1.24-rc4-overflow.patch (included upstream)
- drop libxslt-1.1.24-am.patch (included upstream)

Sat Apr 24 14:00:00 2010 cooloAATTnovell.com
- buildrequire pkg-config to fix provides

Mon Dec 14 13:00:00 2009 jengelhAATTmedozas.de
- add baselibs.conf as a source

Sun Jun 21 14:00:00 2009 cooloAATTnovell.com
- fix build with automake 1.11


  
ICM