diff options
author | Daniel Veillard <veillard@src.gnome.org> | 2008-11-17 15:59:21 +0000 |
---|---|---|
committer | Daniel Veillard <veillard@src.gnome.org> | 2008-11-17 15:59:21 +0000 |
commit | 1dc9feb00fd3bce5967304dcb388ea3ba7e964e6 (patch) | |
tree | 3843278e61595bec1a5483f0e90bb75587671341 /ChangeLog | |
parent | 6b09901479303d1df1500d70194e39e74e6eb131 (diff) | |
download | android_external_libxml2-1dc9feb00fd3bce5967304dcb388ea3ba7e964e6.tar.gz android_external_libxml2-1dc9feb00fd3bce5967304dcb388ea3ba7e964e6.tar.bz2 android_external_libxml2-1dc9feb00fd3bce5967304dcb388ea3ba7e964e6.zip |
fix for CVE-2008-4226, a memory overflow when building gigantic text
* SAX2.c parser.c: fix for CVE-2008-4226, a memory overflow
when building gigantic text nodes, and a bit of cleanup
to better handled out of memory problem in that code.
* tree.c: fix for CVE-2008-4225, lack of testing leads to
a busy loop test assuming one have enough core memory.
Daniel
svn path=/trunk/; revision=3803
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 8 |
1 files changed, 8 insertions, 0 deletions
@@ -1,3 +1,11 @@ +Mon Nov 17 16:56:18 CET 2008 Daniel Veillard <daniel@veillard.com> + + * SAX2.c parser.c: fix for CVE-2008-4226, a memory overflow + when building gigantic text nodes, and a bit of cleanup + to better handled out of memory problem in that code. + * tree.c: fix for CVE-2008-4225, lack of testing leads to + a busy loop test assuming one have enough core memory. + Thu Nov 6 14:34:35 CET 2008 Daniel Veillard <daniel@veillard.com> * xmllint.c: Matthias Kaehlcke reported a build problem when |