mirror of
git://slackware.nl/current.git
synced 2024-12-31 10:28:29 +01:00
87f850786e
patches/packages/libxml2-2.9.13-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and the following security issues:
Use-after-free of ID and IDREF attributes
(Thanks to Shinji Sato for the report)
Use-after-free in xmlXIncludeCopyRange (David Kilzer)
Fix Null-deref-in-xmlSchemaGetComponentTargetNs (huangduirong)
Fix memory leak in xmlXPathCompNodeTest
Fix null pointer deref in xmlStringGetNodeList
Fix several memory leaks found by Coverity (David King)
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23308
(* Security fix *)
patches/packages/libxslt-1.1.35-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and the following security issues:
Fix use-after-free in xsltApplyTemplates
Fix memory leak in xsltDocumentElem (David King)
Fix memory leak in xsltCompileIdKeyPattern (David King)
Fix double-free with stylesheets containing entity nodes
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30560
(* Security fix *)
11 lines
274 B
Diff
11 lines
274 B
Diff
--- ./libxslt/transform.c.orig 2017-08-29 06:20:04.000000000 -0500
|
|
+++ ./libxslt/transform.c 2017-09-25 13:39:52.298942433 -0500
|
|
@@ -66,7 +66,7 @@
|
|
const xmlChar **systemID);
|
|
#endif
|
|
|
|
-int xsltMaxDepth = 3000;
|
|
+int xsltMaxDepth = 4000;
|
|
int xsltMaxVars = 15000;
|
|
|
|
/*
|