[perl-XML-LibXML] 2.0016 bump
Petr Pisar
ppisar at fedoraproject.org
Mon Apr 15 14:17:04 UTC 2013
commit 4500d6b72675469f6c6793be30c931184904e1d6
Author: Petr Písař <ppisar at redhat.com>
Date: Mon Apr 15 16:13:05 2013 +0200
2.0016 bump
.gitignore | 1 +
perl-XML-LibXML.spec | 9 +++++++--
sources | 2 +-
3 files changed, 9 insertions(+), 3 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index 3aee4a5..597f5dc 100644
--- a/.gitignore
+++ b/.gitignore
@@ -19,3 +19,4 @@ XML-LibXML-1.70.tar.gz
/XML-LibXML-2.0010.tar.gz
/XML-LibXML-2.0012.tar.gz
/XML-LibXML-2.0014.tar.gz
+/XML-LibXML-2.0016.tar.gz
diff --git a/perl-XML-LibXML.spec b/perl-XML-LibXML.spec
index 776d872..6050ba5 100644
--- a/perl-XML-LibXML.spec
+++ b/perl-XML-LibXML.spec
@@ -3,8 +3,8 @@ Name: perl-XML-LibXML
# https://bugzilla.redhat.com/show_bug.cgi?id=469480
# it might not be needed anymore
# this module is maintained, the other is not
-Version: 2.0014
-Release: 2%{?dist}
+Version: 2.0016
+Release: 1%{?dist}
Epoch: 1
Summary: Perl interface to the libxml2 library
Group: Development/Libraries
@@ -99,6 +99,11 @@ fi
%{_mandir}/man3/*.3*
%changelog
+* Mon Apr 15 2013 Petr Pisar <ppisar at redhat.com> - 1:2.0016-1
+- 2.0016 bump (disable XML_PARSE_HUGE by default to prevent from
+ CVE-2003-1564, a recursive XML entity expansion leads to memory exhaustion
+ in a XML parser)
+
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1:2.0014-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
diff --git a/sources b/sources
index b18f0cc..ccc7f15 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-a146e20c122b074dbb0d953fb8f65ca0 XML-LibXML-2.0014.tar.gz
+d3bbc3437f6b39eca5825e9d0b0c187a XML-LibXML-2.0016.tar.gz
More information about the scm-commits
mailing list