libxml2: fix CVE-2016-4658 Disallow namespace nodes in XPointer points and ranges - linux/poky.git

diff options

author	Andrej Valek <andrej.valek@siemens.com>	2016-12-12 14:20:20 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2016-12-16 10:23:23 +0000
commit	aa346581fd60d3e4ee2ce6d899594c238ebf0560 (patch)
tree	1c95cb29251b44dcc5904c938100772088138b03 /meta/recipes-core/libxml/libxml2/libxml2-fix_NULL_pointer_derefs.patch
parent	c7f90071327a5a9026de547bbd881d6d608dcc0b (diff)
download	poky-aa346581fd60d3e4ee2ce6d899594c238ebf0560.tar.gz

libxml2: fix CVE-2016-4658 Disallow namespace nodes in XPointer points and ranges

Namespace nodes must be copied to avoid use-after-free errors. But they don't necessarily have a physical representation in a document, so simply disallow them in XPointer ranges. (From OE-Core rev: 00e928bd1c2aed9caeaf9e411743805d2139a023) Signed-off-by: Andrej Valek <andrej.valek@siemens.com> Signed-off-by: Pascal Bach <pascal.bach@siemens.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-core/libxml/libxml2/libxml2-fix_NULL_pointer_derefs.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: