kc3-lang/libxml2/xzlib.c

Branch : - branch - master - tag - CVE-2013-2877 CVE-2014-0191 CVE-2014-3660 CVE-2015-1819 CVE-2015-5312 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499-1 CVE-2015-7499-2 CVE-2015-7500 CVE-2015-7941_1 CVE-2015-7941_2 CVE-2015-7942 CVE-2015-7942-2 CVE-2015-8035 CVE-2015-8242 CVE-2015-8317 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-3627 CVE-2016-3705 CVE-2016-4449 CVE-2016-4483 CVE-2021-3541 ChangeLog EAZEL-NAUTILUS-MS-AUG07 FOR_GNOME_0_99_1 GNOME_0_30 GNOME_PRINT_0_24 GNUMERIC_FIRST_PUBLIC_RELEASE LIBXML2.6.32 LIBXML2.7.0 LIBXML2.7.1 LIBXML2.7.2 LIBXML2.7.3 LIBXML2_2_4_21 LIBXML2_2_5_0 LIBXML2_2_5_10 LIBXML2_2_5_11 LIBXML2_2_5_7 LIBXML2_2_5_8 LIBXML2_2_5_9 LIBXML2_2_5_x LIBXML2_2_6_1 LIBXML2_2_6_11 LIBXML2_2_6_12 LIBXML2_2_6_13 LIBXML2_2_6_14 LIBXML2_2_6_15 LIBXML2_2_6_16 LIBXML2_2_6_18 LIBXML2_2_6_19 LIBXML2_2_6_2 LIBXML2_2_6_20 LIBXML2_2_6_21 LIBXML2_2_6_22 LIBXML2_2_6_23 LIBXML2_2_6_24 LIBXML2_2_6_26 LIBXML2_2_6_27 LIBXML2_2_6_28 LIBXML2_2_6_3 LIBXML2_2_6_4 LIBXML2_2_6_5 LIBXML2_2_6_6 LIBXML2_2_6_7 LIBXML2_2_6_8 LIBXML2_2_6_9 LIBXML2_6_0 LIBXML_0_99 LIBXML_1_5_0 LIBXML_1_8_10 LIBXML_1_8_10_REAL LIBXML_1_8_12 LIBXML_1_8_14 LIBXML_1_8_16 LIBXML_1_8_17 LIBXML_1_8_5 LIBXML_1_8_6 LIBXML_1_8_8 LIBXML_1_8_9 LIBXML_2_0_0 LIBXML_2_1_0 LIBXML_2_1_1 LIBXML_2_2_1 LIBXML_2_2_3 LIBXML_2_2_4 LIBXML_2_2_6 LIBXML_2_2_7 LIBXML_2_2_8 LIBXML_2_3_0 LIBXML_2_3_10 LIBXML_2_3_11 LIBXML_2_3_12 LIBXML_2_3_13 LIBXML_2_3_14 LIBXML_2_3_2 LIBXML_2_3_3 LIBXML_2_3_4 LIBXML_2_3_5 LIBXML_2_3_6 LIBXML_2_3_7 LIBXML_2_3_8 LIBXML_2_3_9 LIBXML_2_4_0 LIBXML_2_4_11 LIBXML_2_4_12 LIBXML_2_4_13 LIBXML_2_4_14 LIBXML_2_4_16 LIBXML_2_4_18 LIBXML_2_4_2 LIBXML_2_4_20 LIBXML_2_4_22 LIBXML_2_4_23 LIBXML_2_4_24 LIBXML_2_4_25 LIBXML_2_4_26 LIBXML_2_4_27 LIBXML_2_4_29 LIBXML_2_4_3 LIBXML_2_4_30 LIBXML_2_4_4 LIBXML_2_4_6 LIBXML_2_4_7 LIBXML_2_5_1 LIBXML_2_5_2 LIBXML_2_5_3 LIBXML_2_5_4 LIBXML_2_5_5 LIBXML_2_5_6 LIBXML_2_6_10 LIBXML_TEST_2_0_0 LIB_XML_1_1 LIB_XML_1_3 LIB_XML_1_4 LIB_XML_1_6_1 LIB_XML_1_6_2 LIB_XML_1_7_0 LIB_XML_1_7_1 LIB_XML_1_7_3 LIB_XML_1_8_3 LIB_XML_1_X PRE_MUCKUP PRE_MUCKUP2 PRE_MUCKUP3 help v2.10.0 v2.10.1 v2.10.2 v2.10.3 v2.10.4 v2.11.0 v2.11.1 v2.11.2 v2.11.3 v2.11.4 v2.11.5 v2.11.6 v2.11.7 v2.11.8 v2.11.9 v2.12.0 v2.12.1 v2.12.10 v2.12.2 v2.12.3 v2.12.4 v2.12.5 v2.12.6 v2.12.7 v2.12.8 v2.12.9 v2.13.0 v2.13.1 v2.13.2 v2.13.3 v2.13.4 v2.13.5 v2.13.6 v2.13.7 v2.13.8 v2.13.9 v2.14.0 v2.14.1 v2.14.2 v2.14.3 v2.14.4 v2.14.5 v2.14.6 v2.15.0 v2.15.1 v2.7.4 v2.7.5 v2.7.6 v2.7.7 v2.7.8 v2.8.0 v2.8.0-rc1 v2.8.0-rc2 v2.9.0 v2.9.0-rc2 v2.9.1 v2.9.10 v2.9.10-rc1 v2.9.11 v2.9.12 v2.9.13 v2.9.14 v2.9.2 v2.9.2-rc1 v2.9.2-rc2 v2.9.3 v2.9.4 v2.9.4-rc1 v2.9.4-rc2 v2.9.5 v2.9.5-rc1 v2.9.5-rc2 v2.9.6 v2.9.6-rc1 v2.9.7 v2.9.7-rc1 v2.9.8 v2.9.8-rc1 v2.9.9 v2.9.9-rc1 v2.9.9-rc2

Log

Author	Commit	Date	CI	Message
	0f568c0b	2022-08-26 01:22:33		Consolidate private header files Private functions were previously declared - in header files in the root directory - in public headers guarded with IN_LIBXML - in libxml.h - redundantly in source files that used them. Consolidate all private header files in include/private.
	776d15d3	2022-03-02 00:29:17		Don't check for standard C89 headers Don't check for - ctype.h - errno.h - float.h - limits.h - math.h - signal.h - stdarg.h - stdlib.h - string.h - time.h Stop including non-standard headers - malloc.h - strings.h
	c41bc10d	2022-02-22 19:57:12		Fix unused variable warnings with disabled features
	2a350ee9	2019-09-30 17:04:54		Large batch of typo fixes Closes #109.
	2240fbf5	2018-07-30 13:14:11		Fix infinite loop in LZMA decompression Check the liblzma error code more thoroughly to avoid infinite loops. Closes: https://gitlab.gnome.org/GNOME/libxml2/issues/13 Closes: https://bugzilla.gnome.org/show_bug.cgi?id=794914 This is CVE-2018-9251 and CVE-2018-14567. Thanks to Dongliang Mu and Simon Wörner for the reports.
	cb5541c9	2017-11-13 17:08:38		Fix libz and liblzma detection If libz or liblzma are detected with pkg-config, AC_CHECK_HEADERS must not be run because the correct CPPFLAGS aren't set. It is actually not required have separate checks for LIBXML_ZLIB_ENABLED and HAVE_ZLIB_H. Only check for LIBXML_ZLIB_ENABLED and remove HAVE_ZLIB_H macro. Fixes bug 764657, bug 787041.
	07e227ed	2017-09-07 18:55:46		Fix memory leak in LZMA decompressor
	e2a9122b	2017-09-07 18:36:01		Set memory limit for LZMA decompression Otherwise malicious LZMA compressed files could consume large amounts of memory when decompressed. According to the xz man page, files compressed with `xz -9` currently require 65 MB to decompress, so set the limit to 100 MB. Should fix bug 786696.
	18b89885	2015-11-03 15:46:29		Reenable xz support by default For https://bugzilla.gnome.org/show_bug.cgi?id=757466 problem was introduced by commit f3f86ff465c92c79f834d7b981f3c7274a8bb5c8 for https://bugzilla.gnome.org/show_bug.cgi?id=711026
	f0709e3c	2015-11-03 15:31:25		CVE-2015-8035 Fix XZ compression support loop For https://bugzilla.gnome.org/show_bug.cgi?id=757466 DoS when parsing specially crafted XML document if XZ support is compiled in (which wasn't the case for 2.9.2 and master since Nov 2013, fixed in next commit !)
	a1313a6f	2013-11-28 23:21:23		Fix a bug loading some compressed files For https://bugzilla.gnome.org/show_bug.cgi?id=712528 Related to https://bugzilla.redhat.com/show_bug.cgi?id=877567 There is a bug in xzlib.c which causes certain compressed XML files to fail to load correctly. The code in xz_decomp which attempts to verify the checksum and length of the expanded data fails if the checksum or length at the end of the file crosses a 1024 byte boundary. It calls gz_next4 to get those two values. This function uses the stream state in state->zstrm, but calls xz_avail which uses the state->strm stream info. This causes gz_next4 to signal a premature EOF if the data it is fetching crosses a 1024 byte boundary.
	63588f47	2013-05-10 14:01:46		Fix a regression in xmlGetDocCompressMode() The switch to xzlib had for consequence that the compression level of the input was not gathered anymore in ctxt->input->buf, then the parser compression flags was left to -1 and propagated to the resulting document. Fix the I/O layer to get compression detection in xzlib, then carry it in the input buffer and the resulting document This should fix https://lsbbugs.linuxfoundation.org/show_bug.cgi?id=3456
	94431ecb	2012-05-15 10:45:05		Fix various bugs in new code raised by the API checking * testapi.c: regenerated and covering new APIs * tree.c: xmlBufferDetach can't work on immutable buffers * xzlib.c: fix a deallocation error
	9f3cdef0	2012-05-15 09:38:13		Fix a memory leak in the xzlib code The freeing function wasn't called due to a bogus #ifdef surrounding value. Also switch the code to use the normal libxml2 allocation and freeing routines.
	99644927	2012-05-07 18:41:42		fixed a 64bit big endian issue For https://bugzilla.gnome.org/show_bug.cgi?id=671176 patch fixes a 64bit endian issue, making libxml2 work (again) on ppc64 unsigned int and size_t are differently sized on 64bit.
	72789ef2	2012-04-02 17:52:20		Do not use unsigned but unsigned int as this breaks the API generator
	adf5ec94	2012-01-26 16:56:22		Cleanups of lzma support - fix inclusion of the separated file - use namespaced name for the 4 non-static routines - add padding after external structures included in-situ - add new requirement to spec file - general cleanup of code
	6bdc7743	2011-09-19 09:53:20		move xz/lzma helpers to separate included files