SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libxslt1-1.1.37-3.3.x86_64.rpm :

* Tue Aug 30 2022 Bjørn Lie - Update to version 1.1.37:
* Improvements: + Don\'t use deprecated libxml2 macros + Don\'t mess with xmlDefaultSAXHandler
* Build system: + Require automake-1.16.3 or later + Remove generated files from distribution + Add missing compile definition for static builds to Autotools
* Thu Aug 18 2022 David Anes - Update to 1.1.36:
* Removals and deprecations + Remove SVN keyword anchors + Remove CVS and SVN-related code + Remove README.cvs-commits + Remove ChangeLog + Remove xsltwin32config.h
* Improvements + Simplify xsltexports.h and exsltexports.h + Don\'t overlink executables with gcrypt + Fix quadratic behavior with variables and parameters + Remove case labels with XPointer location types + Add configure~ to .gitignore + Stop calling deprecated libxml2 functions
* Portability + Use portable python shebangs (David Seifert) + Remove useless __CYGWIN__ checks + Remove cruft from win32config.h + crypto.c: Silence a compiler warning on Windows (Chun-wei Fan)
* Build system + Add missing compile definition for static builds to CMake + Avoid obsolescent `test -a` constructs (David Seifert) + Only link libxml2 statically in purely static build + Set AC_CONFIG_MACRO_DIR + Allow AM_MAINTAINER_MODE to be disabled + Streamline and fix documentation installation + Don\'t try to recreate COPYING symlink + Remove special configuration for certain maintainers + configure.ac: produce tar.xz only (GNOME policy) (David Seifert) + Detect libm using libtool\'s macros (David Seifert) + configure.ac: disable static libraries by default (David Seifert) + python/Makefile.am: nest python docs in $(docdir) (David Seifert) + python/Makefile.am: rely on global AM_INIT_AUTOMAKE (David Seifert) + configure.ac: remove useless AC_SUBST (David Seifert) + Use AM_PATH_PYTHON/PKG_CHECK_MODULES for python bindings (David Seifert) + Change libxml2 Python config + Don\'t check for standard C89 library functions + Don\'t check for standard C89 headers + Remove --with-html-dir option + Also check for glibtoolize in autogen.sh + Rework documentation build system + Remove old website + CMake: Relax check for enabling crypto support on Windows (Chun-wei Fan) + Remove obsolete AC_HEADER_STDC autoconf macro (Vadim Zeitlin) + Remove special configuration for old maintainers
* Test suite, CI + Remove test involving XPointer range-to function + Test recursion in EXSLT dynamic functions + Add CI job for static build
* Documentation + Move tutorial images
* Wed Mar 09 2022 Luciano Santos - Update to version 1.1.35:
* Security fixes: + [CVE-2021-30560] Use-after-free in xsltApplyTemplates; + A couple of memory leak and a double-free fixes.
* A couple of regression fixes.
* Many bug fixes.
* New xsltproc --huge option, provided by libxml XML_PARSE_HUGE.
* Numerous tests and code and fuzzing fixes and improvements.
* Updated documentation.- The full Libxslt 2.9.13 NEWS can be found here: https://download.gnome.org/sources/libxslt/1.1/libxslt-1.1.35.\\ news- Switch libxml2-devel package with its pkgconfig module counterpart (libxml-2.0) to align with CONFIGURE script\'s checks.- Add fdupes build requirement/macro to hard-link duplicate files in the DATADIR inside the buildroot.- Add explicit \'gcc\' build requirement to align with CONFIGURE checks.- Update http://xmlsoft.org URL tag to Libxslt\'s new web home: https://gitlab.gnome.org/GNOME/libxslt.- Update ftp://xmlsoft.org Source tag to Libxslt\'s new download host: https://download.gnome.org.- Drop no longer needed/used libgpg-error-devel. Note that despite \'lgpg-error\' being linked against some libraries, there\'s no automatic generation of run-time requirements on libgpg-error
* symbols our build system. And there\'s no mention of gpg-error in the whole source tarball at all.- Drop no longer needed explicit libtool build requirement and `autoreconf` call in build section since we don\'t touch the build system scripts nor use checked out git trees anymore.- Drop libxslt.keyring source file as the new download host doesn\'t offer GPG signatures.- Drop fixed upstream patches: libxslt-config-fixes.patch (glgo#GNOME/libxslt!3); libxslt-Stop-using-maxParserDepth-XPath-limit.patch; libxslt-Do-not-set-maxDepth-in-XPath-contexts.patch; and Recreate-xsltproc-man-page-with-old-Docbook-styleshe.patch.- Use ldconfig_scriptlets macro for post(un) handling of ldconfig calls.
* Wed Nov 10 2021 Pedro Monreal - Add missing library .so files [bsc#1191771]
* Fri Nov 05 2021 Andreas Stieger - shared lib packaging policy boo#1191771
* Thu Jun 10 2021 Petr Vorel - Backport upstream xsltproc manpage fix f165525f Recreate xsltproc man page with old Docbook stylesheet URL Recreate-xsltproc-man-page-with-old-Docbook-styleshe.patch
* Mon Jun 07 2021 Andreas Schwab - Don\'t disable testsuite under QEMU
* Wed Jun 02 2021 Christophe Giboudeaux - Move the Copyright file to %_defaultlicensedir Configure.ac replaces the COPYING file with a symlink.
* Tue Jun 01 2021 Pedro Monreal - Fix build with libxml2 2.9.12 that removes maxParserDepth XPath limit- Add upstream patches:
* libxslt-Stop-using-maxParserDepth-XPath-limit.patch
* libxslt-Do-not-set-maxDepth-in-XPath-contexts.patch
* Wed Nov 20 2019 Pedro Monreal Gonzalez - Update to 1.1.34: Oct 30 2019
* Documentation: - Fix EXSLT web pages, Regenerate web pages - Fix Git link in news.html - Minor documentation fixes after recent changes - Regenerate symbols and API docs - Regenerate EXSLT website
* Portability: - Remove stubs when compiling without debugger or profiler - configure.ac: Invoke PKG_CHECK_MODULES for building shared libraries - configure.ac: Conditionally determine whether xml2-config should pass shared libraries or static libraries - xslt-config.in: Fix broken --prefix=DIR support - libexslt.pc.in: Do not expose private library dependencies unless invoked - libxslt.pc.in: Do not expose private library dependencies unless invoked - Fix -Wformat-overflow warning (GCC 9) - Stop including ansidecl.h - Remove WIN32_EXTRA_
* variables - Build without winsock
* Bug Fixes: - xsl:template without name and match attributes should not be allowed - Make sure that Python tests exit with error code - Improve handling of invalid UTF-8 in format-number - Fix dangling pointer in xsltCopyText - Fix memory leak in pattern compilation error path - Fix uninitialized read with UTF-8 grouping chars - Fix integer overflow in FORMAT_GYEAR - Fix performance regression with xsl:number - Backup XPath context node in xsltInitCtxtKey - Fix unsigned integer overflow in date.c - Fix insertion of xsl:fallback content - Avoid quadratic behavior in xsltSaveResultTo - Fix numbering in non-Latin scripts - Fix uninitialized read of xsl:number token - Fix integer overflow in _exsltDateDayInWeek - Rework xsltAttrVT allocation - Fix check of xsltTestCompMatch return value - Fix security framework bypass - Use xmlNewTextChild in EXSLT dyn:map - Fix float casts in exsltDateDuration - Always set context node before calling XPath iterators - Fix attribute precedence with xsl:use-attribute-sets - Backup context node in exsltFuncFunctionFunction - Initialize ctxt->output before evaluating global vars - Fix memory leak in EXSLT functions error path
* Improvements: - Fix -Wimplicit-fallthrough warnings - Adjust number of API index pages - Make xsltCompileRelativePathPattern non-recursive - Check that crypto:rc4_decrypt produces valid UTF-8 - Avoid recursion in keys.c:skipPredicate - xslt-config.in: Simply handling of $all_flags - xslt-config.in: Add a --dynamic option to --libs - xslt-config.in: Simplify basic library handling - xslt-config.in: Remove unused variable - xslt-config: Simply handling of --cflags - Improve fuzzers - Always reuse XPath context - Compile with -Wextra - Make profiler support optional - Hide unused code when compiling without debugger - Reorganize fuzzing code - Optional operation limit - Improve seed corpus and dictionary - Reuse XPath context when compiling stylesheets - Reuse XPath context in dyn:map - Reuse XPath context in saxon:expression - Add libFuzzer targets - Adjust error message in expected test output - Change bug tracker URL - Change git repo URL - Regenerate NEWS - Fix misleading indentation in security.c
* Cleanups: - Remove empty TODO file - Remove generated file libxsltclass.txt from version control - Rebuild docs- Rebase patch libxslt-config-fixes.patch- Remove patches fixed upstream:
* libxslt-CVE-2019-11068.patch
* libxslt-CVE-2019-13117.patch
* libxslt-CVE-2019-13118.patch
* libxslt-CVE-2019-18197.patch
* Mon Oct 21 2019 Pedro Monreal Gonzalez - Security fix [bsc#1154609, CVE-2019-18197]
* Fix dangling pointer in xsltCopyText
* Add libxslt-CVE-2019-18197.patch
* Tue Oct 01 2019 Tomáš Chvátal - Drop out lilbxslt-python package as it is just py2 based and upstream yet didn\'t bother to port it to python3. When there is python3 compatible code it should be enabled as multibuild here
* Drop now unused libxslt-1.1.24-linkflags.patch and libxslt-do_not_build_doc_nor_xsltproc.patch
* Tue Jul 02 2019 Pedro Monreal Gonzalez - Security fix: [bsc#1140101, CVE-2019-13118]
* Fix uninitialized read with UTF-8 grouping chars. Read of uninitialized stack data due to too narrow xsl:number instruction and an invalid character
* Added libxslt-CVE-2019-13118.patch
* Tue Jul 02 2019 Pedro Monreal Gonzalez - Security fix: [bsc#1140095, CVE-2019-13117]
* Fix uninitialized read of xsl:number token. An xsl number with certain format strings could lead to a uninitialized read in xsltNumberFormatInsertNumbers
* Added libxslt-CVE-2019-13117.patch
* Thu Apr 11 2019 Pedro Monreal Gonzalez - Security fix: [bsc#1132160, CVE-2019-11068]
* Bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code. xsltCheckRead can return -1 for a crafted URL that is not actually invalid and is subsequently loaded.
* Added libxslt-CVE-2019-11068.patch
* Mon Mar 04 2019 Pedro Monreal Gonzalez - Update to version 1.1.33
* Portability: - Variables need \'extern\' in static lib on Cygwin - Really declare dllexport/dllimport for Cygwin - Fix callback signatures in Python bindings - Fix transform callback signatures - Fix extension callback signatures - Fix deallocator signatures - Fix XPath callback signatures - Fix hash callback signatures
* Bug Fixes: - Don\'t cache direct evaluation of patterns with variables - Move function result RVTs to context variable - Fix EXSLT functions returning RVTs from outer scopes - Fix handling of RVTs returned from nested EXSLT functions - Fix typos
* Improvements: - Run Travis ASan tests with \"sudo: required\"
* Cleanups: - Remove doc/libxslt-decl.txt - Docs for 1.1.32 release- Cleaned with spec-cleaner
  
ICM