kmx git

Commit	Date	Message
658b86c0	2014-08-07T11:19:03	Couple of Missing Null checks For https://bugzilla.gnome.org/show_bug.cgi?id=734328 Missing Null check could cause crash, if a pointer is dereferenced. Found problem at two places in valid.c
1db99699	2014-07-29T00:32:15	Support element node traversal in document fragments. https://bugzilla.gnome.org/show_bug.cgi?id=733900
b8480ae7	2014-07-26T21:14:53	Remove a couple of dead conditions For https://bugzilla.gnome.org/show_bug.cgi?id=733711
42870f46	2014-07-26T21:04:54	Add couple of missing Null checks For https://bugzilla.gnome.org/show_bug.cgi?id=733710 Reported by Gaurav but with slightly different fixes
2f9b126a	2014-07-26T20:29:36	typo in error messages "colon are forbidden from..." For https://bugzilla.gnome.org/show_bug.cgi?id=731511 Pointed byt vincent Lefevre
4ba5d317	2014-06-20T21:37:21	xmlschemastypes: Fix potential array overflow The year and month need validating before being put into the MAX_DAYINMONTH macro. Coverity issue: #60436 https://bugzilla.gnome.org/show_bug.cgi?id=731990
5777ae75	2014-06-20T21:15:16	runtest: Fix a memory leak on parse failure Coverity issue: #60439 https://bugzilla.gnome.org/show_bug.cgi?id=731990
31aa3815	2014-06-20T21:11:40	xmlIO: Fix an FD leak on gzdopen() failure According to the documentation, gzdopen() does not close the FD on failure (but does effectively close it on success, since gzclose() closes it). Coverity issues: #60440, #60441 https://bugzilla.gnome.org/show_bug.cgi?id=731990
7746f2f6	2014-06-20T21:05:33	xmlcatalog: Fix a memory leak on quit Coverity issue: #60442 https://bugzilla.gnome.org/show_bug.cgi?id=731990
579ebbcb	2014-06-20T21:03:42	HTMLparser: Correctly initialise a stack allocated structure If not initialised, the ‘node’ member remains undefined. Coverity issue: #60466 https://bugzilla.gnome.org/show_bug.cgi?id=731990
319e159b	2014-07-15T11:13:15	Fix building when configuring without xpath and xptr For https://bugzilla.gnome.org/show_bug.cgi?id=732735 schematron little used code and xptr rely on XPath, fix the configure script.
30cf439e	2014-07-14T22:29:56	Check for tmon in _xmlSchemaDateAdd() is incorrect For https://bugzilla.gnome.org/show_bug.cgi?id=732705 In _xmlSchemaDateAdd(), the check for \|tmon\| should be the following since MAX_DAYINMONTH() expects a month in the range [1,12]: if (tmon < 1) tmon = 1; Regression introduced in https://git.gnome.org/browse/libxml2/commit/?id=14b5643947845df089376106517c4f7ba061e4b0
e036cb31	2014-07-14T21:22:07	Avoid Possible Null Pointer in trio.c For https://bugzilla.gnome.org/show_bug.cgi?id=730005 While using assert in libxml2 is really not a good idea, it's still better to assert than crash
a6ea72ad	2014-07-14T20:29:34	Fix processing in SAX2 in case of an allocation failure Related to https://bugzilla.gnome.org/show_bug.cgi?id=731360
23243301	2014-07-14T17:59:31	XMl Shell command "cd" does not handle "/" at end of path For https://bugzilla.gnome.org/show_bug.cgi?id=731832 small fix
1811add7	2014-07-14T17:50:27	Fix various Missing Null checks For https://bugzilla.gnome.org/show_bug.cgi?id=732823
c836ba66	2014-07-14T16:39:50	Fix a potential NULL dereference For https://bugzilla.gnome.org/show_bug.cgi?id=733040 xmlDictLookup() may return NULL in case of allocation error, though very unlikely it need to be checked.
54c4b1aa	2014-07-14T16:14:44	Add a couple of misisng check in xmlRelaxNGCleanupTree For https://bugzilla.gnome.org/show_bug.cgi?id=733041 check cur->parent before dereferencing the pointer even if a null parent there should not happen Also fix a typo
7d2e8c95	2014-07-14T16:08:28	Add a missing argument check For https://bugzilla.gnome.org/show_bug.cgi?id=733042 the states argument of xmlRelaxNGAddStates() ought to be checked too
6d753994	2014-07-14T16:01:10	Adding a check in case of allocation error For https://bugzilla.gnome.org/show_bug.cgi?id=733043 There is missing Null condition in xmlRelaxNGValidateInterleave of relaxng.c Dereferencing it may cause a crash.
4e73bfae	2014-07-12T17:46:46	Fix a link to James SAX documentation old page
8eb55d78	2014-06-13T14:56:14	xmlSaveUri() incorrectly recomposes URIs with rootless paths For https://bugzilla.gnome.org/show_bug.cgi?id=731063 xmlSaveUri() of libxml2 (snapshot 2014-05-31 and earlier) returns bogus values when called with URIs that have rootless paths (e.g. "urx:b:b" becomes "urx://b%3Ab" where "urx:b%3Ab" would be correct)
3e0eec43	2014-06-13T14:45:20	Adding some missing NULL checks in SAX2 DOM building code and in the HTML parser
c35af8b1	2014-06-11T16:59:16	Fixes for xmlInitParserCtxt let's make sure that parser options are updated too when a corrsponding global variable or other field of the context is set.
dd8367da	2014-06-11T16:54:32	Fix regressions introduced by CVE-2014-0191 patch A number of issues have been raised after the fix, and this patch tries to correct all of them, though most were related to postvalidation. https://bugzilla.gnome.org/show_bug.cgi?id=730290 and other reports on list, off-list and on Red Hat bugzilla
a16eb968	2014-06-10T16:06:14	erroneously ignores a validation error if no error callback set Reported by Stefan Behnel https://bugzilla.gnome.org/show_bug.cgi?id=724903
fcb1bb56	2014-03-06T09:13:17	configure: Add --with-python-install-dir Cross-compiling the python bindings is a bit difficult today, as the configure script will figure out the site packages dir (PYTHON_SITE_PACKAGES) by either: - Generating the path to the site-package target directories using libdir, and see if it exists. As it is not possible to point to the full path of the sysroot, since that will yield the wrong install path, and that the directory does not neccessarily exist on the host, this approach will not work. - Fetch the site packages dir from the python interpreter as pointed to by --with-python. Since this python interpreter will point to the sysroot, the install dir generated will be inside the sysroot and thus not work. This patch approaches the problem by adding the possibility of explicitly stating the install dir of the python packages, leaving it up to the cross-compilation environment to specify it. The patch does not affect the default case (non-cross compilation). Signed-off-by: Jonas Eriksson <jonas.eriksson@enea.com>
acace88c	2014-06-09T23:45:24	Fix typos in relaxng.c Signed-off-by: Jan Pokorný <jpokorny@redhat.com>
d9ea9132	2014-06-09T22:10:15	xmllint was not parsing the --c14n11 flag Cut and paste error, using the wrong variable
7966a761	2014-05-09T17:00:08	Avoid Possible null pointer dereference in memory debug mode Fix a use before check on pointer For https://bugzilla.gnome.org/show_bug.cgi?id=729849
41b0d1c4	2014-05-09T16:52:32	Avoid Double Null Check Cleanup For https://bugzilla.gnome.org/show_bug.cgi?id=729851
9cd1c3cf	2014-04-22T15:30:56	Do not fetch external parameter entities Unless explicitely asked for when validating or replacing entities with their value. Problem pointed out by Daniel Berrange <berrange@redhat.com>
f0dd6e11	2014-04-22T21:15:05	xmlNodeSetName: Allow setting the name to a substring of the currently set name Avoid freeing the currently set name until after having assigned the new name, this allows one to call xmlNodeSetName (node, node->name + 1) to set the new name of the node to a substring of the current name without introducing any crash and without requiring an extra strdup().
7d508fed	2013-12-18T16:47:56	Added macros for argument casts
7e35abeb	2014-03-28T22:55:31	Fix a doc typo Raised by Blasius Bieselbert on IRC
07def30f	2014-03-21T19:38:08	Restore context size and position after XPATH_OP_ARG Fixes a bug with predicates: https://mail.gnome.org/archives/xml/2014-March/msg00014.html
6faa126f	2014-03-21T17:05:51	Fix xmlParseInNodeContext() if node is not element We really need to have ctxt->instate == XML_PARSER_CONTENT when jumping in content parsing Bug reported by Frank Gross
085b997c	2014-02-18T11:47:43	Avoid a possible NULL pointer dereference For https://bugzilla.gnome.org/show_bug.cgi?id=708355
41586ca6	2013-06-17T13:01:33	Fix compilation with minimum and xinclude. xinclude needs xmlAddNextSibling(). Compile out use of xmlLocationSetPtr when xptr is disabled. Include xpath header.
52010c63	2013-06-16T08:55:08	Compile out use of xmlValidateNCName() when not available. Fix compilation with minimum and valid.
1af8b7b2	2013-06-14T22:20:37	Fix compilation with minimum and schematron. Add a hard dependancy on tree. Disable write and close callbacks when output is disabled.
77b5b464	2014-02-10T10:32:45	Legacy needs xmlSAX2StartElement() and xmlSAX2EndElement(). Fix compilation with minimum and legacy.
3313d14f	2013-06-14T21:11:27	Don't use xmlValidateName() when not available. Fix compilation with minimum and debug.
c9ecf45d	2014-02-08T02:22:35	Fix xmlTextWriterWriteElement when a null content is given
190a0b89	2014-02-06T10:58:17	Fix a portability issue on Windows Apparently an verflow when comparing macro and unsigned long
b0c7e7e5	2014-02-06T10:50:35	Fix an typo 'onrest' in htmlScriptAttributes As pointed out by "Laurent <guitarneck@free.fr>"
75801652	2013-12-19T15:09:14	Fix typos in {tree,xpath}.c (errror) Signed-off-by: Jan Pokorný <jpokorny@redhat.com>
e18bce0d	2014-02-06T10:47:20	fixing a ptotential uninitialized access
15d12040	2014-02-06T10:38:00	Fix an fd leak in an error case
054c716e	2014-01-26T15:02:25	Missing initialization for the catalog module
03c67230	2013-12-20T00:01:53	Handling of XPath function arguments in error case The XPath engine tries to guarantee that every XPath function can pop 'nargs' non-NULL values off the stack. libxslt, for example, relies on this assumption. But the check isn't thorough enough if there are errors during the evaluation of arguments. This can lead to segfaults: https://mail.gnome.org/archives/xslt/2013-December/msg00005.html This commit makes the handling of function arguments more robust. * Bail out early when evaluation of XPath function arguments fails. * Make sure that there are 'nargs' arguments in the current call frame.
4d041a2e	2013-12-17T15:32:57	Various portability patches for OpenVMS Available from http://nchrem.tnw.tudelft.nl/openvms/software2.html
437f4f59	2013-12-12T15:23:09	Use specific macros for portability to OS/400 Some of the entry points for POSIX networking calls in OS/400 differs slightly due to not using const arguments
d1c0cc99	2013-12-12T15:14:47	Add macros needed for OS/400 portability
1c43f43c	2013-12-12T15:12:53	Portability patch for fopen on OS/400
ca9fc43b	2013-12-12T15:11:40	Portability fixes for OS/400
0f7a26d8	2013-12-12T15:04:43	Improve va_list portability Support for va_list declared as an array (cannot be referenced explicitly)
147aaf21	2013-12-12T15:02:40	Portability fix Don't assume fileno for stdin and stdout are 0 and 1
3a76bfed	2013-12-12T15:01:53	Portability fix increase internal use of a portability macro
66693cef	2013-12-12T15:00:46	Generic portability fix Undefine common symbol before redefining them
44313c0a	2013-12-12T14:59:18	Shortening lines in headers no change of semantic
e59c244e	2013-12-11T00:01:38	Add limitations about encoding conversion
4e1476c5	2013-12-09T15:23:40	adding init calls to xml and html Read parsing entry points As pointed out by "Tassyns, Bram <BramT@enfocus.com>" on the list some call had it other didn't, clean it up and add to all missing ones
761c9e99	2013-11-29T23:26:27	Get rid of 'REPLACEMENT CHARACTER' Unicode chars in xmlschemas.c Middle dot pairs (as in [1]) turned to grave accents/backticks, section signs to dollars (for compatibility with ASCII). [1] http://www.w3.org/TR/xmlschema-1/ Signed-off-by: Jan Pokorný <jpokorny@redhat.com>
7a7cad6e	2013-11-29T23:26:26	Fix typos in xmlschemas{,types}.c Signed-off-by: Jan Pokorný <jpokorny@redhat.com>
9a85d40c	2013-11-29T23:26:25	Fix incorrect spelling entites->entities Partially, a follow-up of 81d7a8245cf9a31a49499a5a195c2b89e6f91180. Signed-off-by: Jan Pokorný <jpokorny@redhat.com>
98a4e712	2013-11-29T23:28:21	Fix a couple of missing NULL checks For https://bugzilla.gnome.org/show_bug.cgi?id=708681
080a22c5	2013-11-29T23:10:50	Avoid a possibility of dangling encoding handler For https://bugzilla.gnome.org/show_bug.cgi?id=711149 In Function: int xmlCharEncCloseFunc(xmlCharEncodingHandler *handler) If the freed handler is any one of handlers[i] list, then it will make that hanldlers[i] as dangling. This may lead to crash issues at places where handlers is read.
826bc320	2013-11-29T14:12:12	Fix HTML push parser to accept HTML_PARSE_NODEFDTD For https://bugzilla.gnome.org/show_bug.cgi?id=719515 fixes htmlParseTryOrFinish to interpret HTML_PARSE_NODEFDTD, and updates xmllint to actually pass --nodefdtd to the push version of the HTML parser
a1313a6f	2013-11-28T23:21:23	Fix a bug loading some compressed files For https://bugzilla.gnome.org/show_bug.cgi?id=712528 Related to https://bugzilla.redhat.com/show_bug.cgi?id=877567 There is a bug in xzlib.c which causes certain compressed XML files to fail to load correctly. The code in xz_decomp which attempts to verify the checksum and length of the expanded data fails if the checksum or length at the end of the file crosses a 1024 byte boundary. It calls gz_next4 to get those two values. This function uses the stream state in state->zstrm, but calls xz_avail which uses the state->strm stream info. This causes gz_next4 to signal a premature EOF if the data it is fetching crosses a 1024 byte boundary.
fcd45831	2013-11-28T23:01:44	Fix XPath node comparison bug For https://bugzilla.gnome.org/show_bug.cgi?id=715143
f3d79416	2013-11-28T22:53:54	Type mismatch in xmlschemas.c For https://bugzilla.gnome.org/show_bug.cgi?id=715152
e79226cc	2013-11-28T22:50:57	Type mismatch in xmlschemastypes.c For https://bugzilla.gnome.org/show_bug.cgi?id=715152
6473a41a	2013-10-23T14:51:33	Implement choice for name classes on attributes https://bugzilla.gnome.org/show_bug.cgi?id=710744
f3f86ff4	2013-10-28T17:24:02	build: Use pkg-config to find liblzma in preference to AC_CHECK_LIB This means that liblzma’s Libs.private will be included in LZMA_LIBS if linking the libraries statically, ensuring that there are no undefined symbol errors from liblzma’s private libraries. If pkg-config isn’t installed, or if liblzma.pc couldn’t be found, fall back to using AC_CHECK_LIB as before. This will cause static linking to fail, but that’s not a regression. This does not introduce a compile time dependency on pkg-config. https://bugzilla.gnome.org/show_bug.cgi?id=711026
f859d9a7	2013-10-28T17:15:07	build: Add @LZMA_LIBS@ to libxml’s pkg-config files If libxml2 is built and linked against liblzma, the latter needs to appear in libxml2’s Libs.private pkg-config field, otherwise static linking against libxml2 will fail due to unresolved liblzma symbols. https://bugzilla.gnome.org/show_bug.cgi?id=711026
4b61cf61	2013-10-02T22:18:21	fix some tabs mixing incompatible with python3 Patrick Welche <prlw1@cam.ac.uk> raised this issue
7d4e259f	2013-09-30T11:27:41	Avoid some dead code and cleanup in relaxng.c https://bugzilla.gnome.org/show_bug.cgi?id=705388 Code needed a bit of cleanup
b8bdc258	2013-09-30T11:12:04	Avoid a deadcode in catalog.c For https://bugzilla.gnome.org/show_bug.cgi?id=703504
01461791	2013-08-06T09:55:55	Drop not needed checks https://bugzilla.gnome.org/show_bug.cgi?id=704075
283c83e0	2013-08-06T09:49:42	run close socket on Solaris, same as we do on other platforms https://bugzilla.gnome.org/show_bug.cgi?id=705188
c570b379	2013-09-30T10:43:47	Fix pointer dereferenced before null check for https://bugzilla.gnome.org/show_bug.cgi?id=708364 xmlValidateElementContent is a private function but should still check the ctxt argument before dereferencing
75d13092	2013-09-11T15:11:27	Fix a potential NULL dereference in tree code https://bugzilla.gnome.org/show_bug.cgi?id=707750 Also reported by Gaurav, simple fix to check the pointer before dereference
2671b013	2013-09-11T14:59:06	Fix potential NULL pointer dereferences in regexp code https://bugzilla.gnome.org/show_bug.cgi?id=707749 Fix 3 cases where we might dereference NULL
2205ff4b	2013-08-29T16:44:33	xmllint --pretty crashed without following numeric argument https://bugzilla.gnome.org/show_bug.cgi?id=674789 We need to check for NULL argument before calling atoi()
e8de99f9	2013-08-05T01:26:25	Fix XPath expressions of the form '@ns:*' Use namespace for match-all queries on the attribute axis.
b4bcba23	2013-08-05T00:15:11	Fix XPath '//' optimization with predicates My attempt to optimize XPath expressions containing '//' caused a regression reported in bug #695699. This commit disables the optimization for expressions of the form '//foo[predicate]'.
ff76eb28	2013-08-03T22:25:13	Clear up a potential NULL dereference https://bugzilla.gnome.org/show_bug.cgi?id=705399 if ctxt->node_seq.buffer is null then ctxt->node_seq.maximum ought to be zero but it's better to clarify the check in the code directly.
a885f13a	2013-08-03T22:16:02	Fix a possible NULL dereference https://bugzilla.gnome.org/show_bug.cgi?id=705400 In case of allocation error the pointer was dereferenced before the test for a failure
e28c8a1a	2013-08-03T14:22:54	#705267 - add additional defines checks for support "./configure --with-minimum" https://bugzilla.gnome.org/show_bug.cgi?id=705267
717042d2	2013-07-22T14:28:20	Avoid crash if allocation fails https://bugzilla.gnome.org/show_bug.cgi?id=704527 xmlSchemaNewValue() may fail on OOM error
ccc9cf92	2013-07-22T14:24:16	Fix a wrong test https://bugzilla.gnome.org/show_bug.cgi?id=704530 Arg is an array on the stack and can't be NULL
b9e4d5b6	2013-07-22T13:21:31	Remove occasional leading space in XPath number formatting https://bugzilla.gnome.org/show_bug.cgi?id=704528 Somehow snprintf "%.e" can generate a leading space, remove it
81b96178	2013-07-22T13:01:11	Two smal namespace tweaks An improvement of the documentation, and an extra safety check for xmlSetNs()
b98c6a0a	2013-07-12T12:08:40	Fix handling of mmap errors https://bugzilla.gnome.org/show_bug.cgi?id=702320 as raised by Gaurav <ya1gaurav@gmail.com>
6dd7775f	2013-07-12T11:18:11	Another round of fixes for older versions of Python
e71dce18	2013-07-11T15:41:22	Catch malloc error and exit accordingly As pointed privately by Bill Parker <wp02855@gmail.com>
6c9c611b	2013-07-10T23:00:54	python: fix drv_libxml2.py for python3 compatibility https://bugzilla.gnome.org/show_bug.cgi?id=703979
33a25af7	2013-07-02T09:47:26	missing else in xlink.c Obviously forgotten
6eea2f2c	2013-05-30T19:00:50	python: Fix compiler warnings when building python3 bindings

658b86c0

2014-08-07T11:19:03

Couple of Missing Null checks For https://bugzilla.gnome.org/show_bug.cgi?id=734328 Missing Null check could cause crash, if a pointer is dereferenced. Found problem at two places in valid.c

1db99699

2014-07-29T00:32:15

Support element node traversal in document fragments. https://bugzilla.gnome.org/show_bug.cgi?id=733900

b8480ae7

2014-07-26T21:14:53

Remove a couple of dead conditions For https://bugzilla.gnome.org/show_bug.cgi?id=733711

42870f46

2014-07-26T21:04:54

Add couple of missing Null checks For https://bugzilla.gnome.org/show_bug.cgi?id=733710 Reported by Gaurav but with slightly different fixes

2f9b126a

2014-07-26T20:29:36

typo in error messages "colon are forbidden from..." For https://bugzilla.gnome.org/show_bug.cgi?id=731511 Pointed byt vincent Lefevre

4ba5d317

2014-06-20T21:37:21

xmlschemastypes: Fix potential array overflow The year and month need validating before being put into the MAX_DAYINMONTH macro. Coverity issue: #60436 https://bugzilla.gnome.org/show_bug.cgi?id=731990

5777ae75

2014-06-20T21:15:16

runtest: Fix a memory leak on parse failure Coverity issue: #60439 https://bugzilla.gnome.org/show_bug.cgi?id=731990

31aa3815

2014-06-20T21:11:40

xmlIO: Fix an FD leak on gzdopen() failure According to the documentation, gzdopen() does not close the FD on failure (but does effectively close it on success, since gzclose() closes it). Coverity issues: #60440, #60441 https://bugzilla.gnome.org/show_bug.cgi?id=731990

7746f2f6

2014-06-20T21:05:33

xmlcatalog: Fix a memory leak on quit Coverity issue: #60442 https://bugzilla.gnome.org/show_bug.cgi?id=731990

579ebbcb

2014-06-20T21:03:42

HTMLparser: Correctly initialise a stack allocated structure If not initialised, the ‘node’ member remains undefined. Coverity issue: #60466 https://bugzilla.gnome.org/show_bug.cgi?id=731990

319e159b

2014-07-15T11:13:15

Fix building when configuring without xpath and xptr For https://bugzilla.gnome.org/show_bug.cgi?id=732735 schematron little used code and xptr rely on XPath, fix the configure script.

30cf439e

2014-07-14T22:29:56

Check for tmon in _xmlSchemaDateAdd() is incorrect For https://bugzilla.gnome.org/show_bug.cgi?id=732705 In _xmlSchemaDateAdd(), the check for |tmon| should be the following since MAX_DAYINMONTH() expects a month in the range [1,12]: if (tmon < 1) tmon = 1; Regression introduced in https://git.gnome.org/browse/libxml2/commit/?id=14b5643947845df089376106517c4f7ba061e4b0

e036cb31

2014-07-14T21:22:07

Avoid Possible Null Pointer in trio.c For https://bugzilla.gnome.org/show_bug.cgi?id=730005 While using assert in libxml2 is really not a good idea, it's still better to assert than crash

a6ea72ad

2014-07-14T20:29:34

Fix processing in SAX2 in case of an allocation failure Related to https://bugzilla.gnome.org/show_bug.cgi?id=731360

23243301

2014-07-14T17:59:31

XMl Shell command "cd" does not handle "/" at end of path For https://bugzilla.gnome.org/show_bug.cgi?id=731832 small fix

1811add7

2014-07-14T17:50:27

Fix various Missing Null checks For https://bugzilla.gnome.org/show_bug.cgi?id=732823

c836ba66

2014-07-14T16:39:50

Fix a potential NULL dereference For https://bugzilla.gnome.org/show_bug.cgi?id=733040 xmlDictLookup() may return NULL in case of allocation error, though very unlikely it need to be checked.

54c4b1aa

2014-07-14T16:14:44

Add a couple of misisng check in xmlRelaxNGCleanupTree For https://bugzilla.gnome.org/show_bug.cgi?id=733041 check cur->parent before dereferencing the pointer even if a null parent there should not happen Also fix a typo

7d2e8c95

2014-07-14T16:08:28

Add a missing argument check For https://bugzilla.gnome.org/show_bug.cgi?id=733042 the states argument of xmlRelaxNGAddStates() ought to be checked too

6d753994

2014-07-14T16:01:10

Adding a check in case of allocation error For https://bugzilla.gnome.org/show_bug.cgi?id=733043 There is missing Null condition in xmlRelaxNGValidateInterleave of relaxng.c Dereferencing it may cause a crash.

4e73bfae

2014-07-12T17:46:46

Fix a link to James SAX documentation old page

8eb55d78

2014-06-13T14:56:14

xmlSaveUri() incorrectly recomposes URIs with rootless paths For https://bugzilla.gnome.org/show_bug.cgi?id=731063 xmlSaveUri() of libxml2 (snapshot 2014-05-31 and earlier) returns bogus values when called with URIs that have rootless paths (e.g. "urx:b:b" becomes "urx://b%3Ab" where "urx:b%3Ab" would be correct)

3e0eec43

2014-06-13T14:45:20

Adding some missing NULL checks in SAX2 DOM building code and in the HTML parser

c35af8b1

2014-06-11T16:59:16

Fixes for xmlInitParserCtxt let's make sure that parser options are updated too when a corrsponding global variable or other field of the context is set.

dd8367da

2014-06-11T16:54:32

Fix regressions introduced by CVE-2014-0191 patch A number of issues have been raised after the fix, and this patch tries to correct all of them, though most were related to postvalidation. https://bugzilla.gnome.org/show_bug.cgi?id=730290 and other reports on list, off-list and on Red Hat bugzilla

a16eb968

2014-06-10T16:06:14

erroneously ignores a validation error if no error callback set Reported by Stefan Behnel https://bugzilla.gnome.org/show_bug.cgi?id=724903

fcb1bb56

2014-03-06T09:13:17

configure: Add --with-python-install-dir Cross-compiling the python bindings is a bit difficult today, as the configure script will figure out the site packages dir (PYTHON_SITE_PACKAGES) by either: - Generating the path to the site-package target directories using libdir, and see if it exists. As it is not possible to point to the full path of the sysroot, since that will yield the wrong install path, and that the directory does not neccessarily exist on the host, this approach will not work. - Fetch the site packages dir from the python interpreter as pointed to by --with-python. Since this python interpreter will point to the sysroot, the install dir generated will be inside the sysroot and thus not work. This patch approaches the problem by adding the possibility of explicitly stating the install dir of the python packages, leaving it up to the cross-compilation environment to specify it. The patch does not affect the default case (non-cross compilation). Signed-off-by: Jonas Eriksson <jonas.eriksson@enea.com>

acace88c

2014-06-09T23:45:24

Fix typos in relaxng.c Signed-off-by: Jan Pokorný <jpokorny@redhat.com>

d9ea9132

2014-06-09T22:10:15

xmllint was not parsing the --c14n11 flag Cut and paste error, using the wrong variable

7966a761

2014-05-09T17:00:08

Avoid Possible null pointer dereference in memory debug mode Fix a use before check on pointer For https://bugzilla.gnome.org/show_bug.cgi?id=729849

41b0d1c4

2014-05-09T16:52:32

Avoid Double Null Check Cleanup For https://bugzilla.gnome.org/show_bug.cgi?id=729851

9cd1c3cf

2014-04-22T15:30:56

Do not fetch external parameter entities Unless explicitely asked for when validating or replacing entities with their value. Problem pointed out by Daniel Berrange <berrange@redhat.com>

f0dd6e11

2014-04-22T21:15:05

xmlNodeSetName: Allow setting the name to a substring of the currently set name Avoid freeing the currently set name until after having assigned the new name, this allows one to call xmlNodeSetName (node, node->name + 1) to set the new name of the node to a substring of the current name without introducing any crash and without requiring an extra strdup().

7d508fed

2013-12-18T16:47:56

Added macros for argument casts

7e35abeb

2014-03-28T22:55:31

Fix a doc typo Raised by Blasius Bieselbert on IRC

07def30f

2014-03-21T19:38:08

Restore context size and position after XPATH_OP_ARG Fixes a bug with predicates: https://mail.gnome.org/archives/xml/2014-March/msg00014.html

6faa126f

2014-03-21T17:05:51

Fix xmlParseInNodeContext() if node is not element We really need to have ctxt->instate == XML_PARSER_CONTENT when jumping in content parsing Bug reported by Frank Gross

085b997c

2014-02-18T11:47:43

Avoid a possible NULL pointer dereference For https://bugzilla.gnome.org/show_bug.cgi?id=708355

41586ca6

2013-06-17T13:01:33

Fix compilation with minimum and xinclude. xinclude needs xmlAddNextSibling(). Compile out use of xmlLocationSetPtr when xptr is disabled. Include xpath header.

52010c63

2013-06-16T08:55:08

Compile out use of xmlValidateNCName() when not available. Fix compilation with minimum and valid.

1af8b7b2

2013-06-14T22:20:37

Fix compilation with minimum and schematron. Add a hard dependancy on tree. Disable write and close callbacks when output is disabled.

77b5b464

2014-02-10T10:32:45

Legacy needs xmlSAX2StartElement() and xmlSAX2EndElement(). Fix compilation with minimum and legacy.

3313d14f

2013-06-14T21:11:27

Don't use xmlValidateName() when not available. Fix compilation with minimum and debug.

c9ecf45d

2014-02-08T02:22:35

Fix xmlTextWriterWriteElement when a null content is given

190a0b89

2014-02-06T10:58:17

Fix a portability issue on Windows Apparently an verflow when comparing macro and unsigned long

b0c7e7e5

2014-02-06T10:50:35

Fix an typo 'onrest' in htmlScriptAttributes As pointed out by "Laurent <guitarneck@free.fr>"

75801652

2013-12-19T15:09:14

Fix typos in {tree,xpath}.c (errror) Signed-off-by: Jan Pokorný <jpokorny@redhat.com>

e18bce0d

2014-02-06T10:47:20

fixing a ptotential uninitialized access

15d12040

2014-02-06T10:38:00

Fix an fd leak in an error case

054c716e

2014-01-26T15:02:25

Missing initialization for the catalog module

03c67230

2013-12-20T00:01:53

Handling of XPath function arguments in error case The XPath engine tries to guarantee that every XPath function can pop 'nargs' non-NULL values off the stack. libxslt, for example, relies on this assumption. But the check isn't thorough enough if there are errors during the evaluation of arguments. This can lead to segfaults: https://mail.gnome.org/archives/xslt/2013-December/msg00005.html This commit makes the handling of function arguments more robust. * Bail out early when evaluation of XPath function arguments fails. * Make sure that there are 'nargs' arguments in the current call frame.

4d041a2e

2013-12-17T15:32:57

Various portability patches for OpenVMS Available from http://nchrem.tnw.tudelft.nl/openvms/software2.html

437f4f59

2013-12-12T15:23:09

Use specific macros for portability to OS/400 Some of the entry points for POSIX networking calls in OS/400 differs slightly due to not using const arguments

d1c0cc99

2013-12-12T15:14:47

Add macros needed for OS/400 portability

1c43f43c

2013-12-12T15:12:53

Portability patch for fopen on OS/400

ca9fc43b

2013-12-12T15:11:40

Portability fixes for OS/400

0f7a26d8

2013-12-12T15:04:43

Improve va_list portability Support for va_list declared as an array (cannot be referenced explicitly)

147aaf21

2013-12-12T15:02:40

Portability fix Don't assume fileno for stdin and stdout are 0 and 1

3a76bfed

2013-12-12T15:01:53

Portability fix increase internal use of a portability macro

66693cef

2013-12-12T15:00:46

Generic portability fix Undefine common symbol before redefining them

44313c0a

2013-12-12T14:59:18

Shortening lines in headers no change of semantic

e59c244e

2013-12-11T00:01:38

Add limitations about encoding conversion

4e1476c5

2013-12-09T15:23:40

adding init calls to xml and html Read parsing entry points As pointed out by "Tassyns, Bram <BramT@enfocus.com>" on the list some call had it other didn't, clean it up and add to all missing ones

761c9e99

2013-11-29T23:26:27

Get rid of 'REPLACEMENT CHARACTER' Unicode chars in xmlschemas.c Middle dot pairs (as in [1]) turned to grave accents/backticks, section signs to dollars (for compatibility with ASCII). [1] http://www.w3.org/TR/xmlschema-1/ Signed-off-by: Jan Pokorný <jpokorny@redhat.com>

7a7cad6e

2013-11-29T23:26:26

Fix typos in xmlschemas{,types}.c Signed-off-by: Jan Pokorný <jpokorny@redhat.com>

9a85d40c

2013-11-29T23:26:25

Fix incorrect spelling entites->entities Partially, a follow-up of 81d7a8245cf9a31a49499a5a195c2b89e6f91180. Signed-off-by: Jan Pokorný <jpokorny@redhat.com>

98a4e712

2013-11-29T23:28:21

Fix a couple of missing NULL checks For https://bugzilla.gnome.org/show_bug.cgi?id=708681

080a22c5

2013-11-29T23:10:50

Avoid a possibility of dangling encoding handler For https://bugzilla.gnome.org/show_bug.cgi?id=711149 In Function: int xmlCharEncCloseFunc(xmlCharEncodingHandler *handler) If the freed handler is any one of handlers[i] list, then it will make that hanldlers[i] as dangling. This may lead to crash issues at places where handlers is read.

826bc320

2013-11-29T14:12:12

Fix HTML push parser to accept HTML_PARSE_NODEFDTD For https://bugzilla.gnome.org/show_bug.cgi?id=719515 fixes htmlParseTryOrFinish to interpret HTML_PARSE_NODEFDTD, and updates xmllint to actually pass --nodefdtd to the push version of the HTML parser

a1313a6f

2013-11-28T23:21:23

Fix a bug loading some compressed files For https://bugzilla.gnome.org/show_bug.cgi?id=712528 Related to https://bugzilla.redhat.com/show_bug.cgi?id=877567 There is a bug in xzlib.c which causes certain compressed XML files to fail to load correctly. The code in xz_decomp which attempts to verify the checksum and length of the expanded data fails if the checksum or length at the end of the file crosses a 1024 byte boundary. It calls gz_next4 to get those two values. This function uses the stream state in state->zstrm, but calls xz_avail which uses the state->strm stream info. This causes gz_next4 to signal a premature EOF if the data it is fetching crosses a 1024 byte boundary.

fcd45831

2013-11-28T23:01:44

Fix XPath node comparison bug For https://bugzilla.gnome.org/show_bug.cgi?id=715143

f3d79416

2013-11-28T22:53:54

Type mismatch in xmlschemas.c For https://bugzilla.gnome.org/show_bug.cgi?id=715152

e79226cc

2013-11-28T22:50:57

Type mismatch in xmlschemastypes.c For https://bugzilla.gnome.org/show_bug.cgi?id=715152

6473a41a

2013-10-23T14:51:33

Implement choice for name classes on attributes https://bugzilla.gnome.org/show_bug.cgi?id=710744

f3f86ff4

2013-10-28T17:24:02

build: Use pkg-config to find liblzma in preference to AC_CHECK_LIB This means that liblzma’s Libs.private will be included in LZMA_LIBS if linking the libraries statically, ensuring that there are no undefined symbol errors from liblzma’s private libraries. If pkg-config isn’t installed, or if liblzma.pc couldn’t be found, fall back to using AC_CHECK_LIB as before. This will cause static linking to fail, but that’s not a regression. This does not introduce a compile time dependency on pkg-config. https://bugzilla.gnome.org/show_bug.cgi?id=711026

f859d9a7

2013-10-28T17:15:07

build: Add @LZMA_LIBS@ to libxml’s pkg-config files If libxml2 is built and linked against liblzma, the latter needs to appear in libxml2’s Libs.private pkg-config field, otherwise static linking against libxml2 will fail due to unresolved liblzma symbols. https://bugzilla.gnome.org/show_bug.cgi?id=711026

4b61cf61

2013-10-02T22:18:21

fix some tabs mixing incompatible with python3 Patrick Welche <prlw1@cam.ac.uk> raised this issue

7d4e259f

2013-09-30T11:27:41

Avoid some dead code and cleanup in relaxng.c https://bugzilla.gnome.org/show_bug.cgi?id=705388 Code needed a bit of cleanup

b8bdc258

2013-09-30T11:12:04

Avoid a deadcode in catalog.c For https://bugzilla.gnome.org/show_bug.cgi?id=703504

01461791

2013-08-06T09:55:55

Drop not needed checks https://bugzilla.gnome.org/show_bug.cgi?id=704075

283c83e0

2013-08-06T09:49:42

run close socket on Solaris, same as we do on other platforms https://bugzilla.gnome.org/show_bug.cgi?id=705188

c570b379

2013-09-30T10:43:47

Fix pointer dereferenced before null check for https://bugzilla.gnome.org/show_bug.cgi?id=708364 xmlValidateElementContent is a private function but should still check the ctxt argument before dereferencing

75d13092

2013-09-11T15:11:27

Fix a potential NULL dereference in tree code https://bugzilla.gnome.org/show_bug.cgi?id=707750 Also reported by Gaurav, simple fix to check the pointer before dereference

2671b013

2013-09-11T14:59:06

Fix potential NULL pointer dereferences in regexp code https://bugzilla.gnome.org/show_bug.cgi?id=707749 Fix 3 cases where we might dereference NULL

2205ff4b

2013-08-29T16:44:33

xmllint --pretty crashed without following numeric argument https://bugzilla.gnome.org/show_bug.cgi?id=674789 We need to check for NULL argument before calling atoi()

e8de99f9

2013-08-05T01:26:25

Fix XPath expressions of the form '@ns:*' Use namespace for match-all queries on the attribute axis.

b4bcba23

2013-08-05T00:15:11

Fix XPath '//' optimization with predicates My attempt to optimize XPath expressions containing '//' caused a regression reported in bug #695699. This commit disables the optimization for expressions of the form '//foo[predicate]'.

ff76eb28

2013-08-03T22:25:13

Clear up a potential NULL dereference https://bugzilla.gnome.org/show_bug.cgi?id=705399 if ctxt->node_seq.buffer is null then ctxt->node_seq.maximum ought to be zero but it's better to clarify the check in the code directly.

a885f13a

2013-08-03T22:16:02

Fix a possible NULL dereference https://bugzilla.gnome.org/show_bug.cgi?id=705400 In case of allocation error the pointer was dereferenced before the test for a failure

e28c8a1a

2013-08-03T14:22:54

#705267 - add additional defines checks for support "./configure --with-minimum" https://bugzilla.gnome.org/show_bug.cgi?id=705267

717042d2

2013-07-22T14:28:20

Avoid crash if allocation fails https://bugzilla.gnome.org/show_bug.cgi?id=704527 xmlSchemaNewValue() may fail on OOM error

ccc9cf92

2013-07-22T14:24:16

Fix a wrong test https://bugzilla.gnome.org/show_bug.cgi?id=704530 Arg is an array on the stack and can't be NULL

b9e4d5b6

2013-07-22T13:21:31

Remove occasional leading space in XPath number formatting https://bugzilla.gnome.org/show_bug.cgi?id=704528 Somehow snprintf "%*.*e" can generate a leading space, remove it

81b96178

2013-07-22T13:01:11

Two smal namespace tweaks An improvement of the documentation, and an extra safety check for xmlSetNs()

b98c6a0a

2013-07-12T12:08:40

Fix handling of mmap errors https://bugzilla.gnome.org/show_bug.cgi?id=702320 as raised by Gaurav <ya1gaurav@gmail.com>

6dd7775f

2013-07-12T11:18:11

Another round of fixes for older versions of Python

e71dce18

2013-07-11T15:41:22

Catch malloc error and exit accordingly As pointed privately by Bill Parker <wp02855@gmail.com>

6c9c611b

2013-07-10T23:00:54

python: fix drv_libxml2.py for python3 compatibility https://bugzilla.gnome.org/show_bug.cgi?id=703979

33a25af7

2013-07-02T09:47:26

missing else in xlink.c Obviously forgotten

6eea2f2c

2013-05-30T19:00:50

python: Fix compiler warnings when building python3 bindings

kc3-lang/libxml2

Log