From e20d844068126e89fe483df7687b094b92f7369d Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Sun, 10 Dec 2023 01:12:17 +0000 Subject: Sun Dec 10 01:12:17 UTC 2023 patches/packages/libxml2-2.12.2-x86_64-1_slack15.0.txz: Upgraded. Add --sysconfdir=/etc option so that this can find the xml catalog. Thanks to SpiderTux. Fix the following security issues: Fix integer overflows with XML_PARSE_HUGE. Fix dict corruption caused by entity reference cycles. Hashing of empty dict strings isn't deterministic. Fix null deref in xmlSchemaFixupComplexType. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-40303 https://www.cve.org/CVERecord?id=CVE-2022-40304 https://www.cve.org/CVERecord?id=CVE-2023-29469 https://www.cve.org/CVERecord?id=CVE-2023-28484 (* Security fix *) --- recompress.sh | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) (limited to 'recompress.sh') diff --git a/recompress.sh b/recompress.sh index 5458ddf24..8e4aef9bc 100755 --- a/recompress.sh +++ b/recompress.sh @@ -1190,8 +1190,6 @@ gzip ./patches/source/mozilla-thunderbird/gkrust.a.no.networking.check.diff gzip ./patches/source/mariadb/rc.mysqld gzip ./patches/source/mariadb/doinst.sh gzip ./patches/source/boost/0001-b2-fix-install.patch -gzip ./patches/source/libxml2/libxml2.python3-unicode-errors.patch -gzip ./patches/source/libxml2/libxml2.do-not-check-crc.diff gzip ./patches/source/python3/python.sysconfig.py.x86_64.diff gzip ./patches/source/python3/python3.no-static-library.diff gzip ./patches/source/python3/python3.readline.set_pre_input_hook.diff @@ -1220,6 +1218,7 @@ gzip ./patches/source/xorg-server-xwayland/CVE-2023-5367.patch gzip ./patches/source/seamonkey/autoconf/autoconf-2.13-consolidated_fixes-1.patch gzip ./patches/source/seamonkey/doinst.sh gzip ./patches/source/seamonkey/double_t.x86.diff +gzip ./patches/source/seamonkey/skip.check_glibc.diff gzip ./patches/source/seamonkey/sm.ui.scrollToClick.diff gzip ./patches/source/vim/ctags.use-conventional-unused-marker.patch gzip ./patches/source/vim/vim.vimrc.diff -- cgit v1.2.3-79-gdb01