libxml2_2.9.1+dfsg1-5+deb8u6_amd64.deb


Advertisement

Description

libxml2 - GNOME XML library

Property Value
Distribution Debian 8 (Jessie)
Repository Debian Main amd64
Package name libxml2
Package version 2.9.1+dfsg1
Package release 5+deb8u6
Package architecture amd64
Package type deb
Installed size 1.72 KB
Download size 783.26 KB
Official Mirror ftp.br.debian.org
XML is a metalanguage to let you design your own markup language.
A regular markup language defines a way to describe information in
a certain class of documents (eg HTML). XML lets you define your
own customized markup languages for many classes of document. It
can do this because it's written in SGML, the international standard
metalanguage for markup languages.
This package provides a library providing an extensive API to handle
such XML data files.

Alternatives

Package Version Architecture Repository
libxml2_2.9.1+dfsg1-5+deb8u6_i386.deb 2.9.1+dfsg1 i386 Debian Main
libxml2 - - -

Requires

Name Value
libc6 >= 2.15
liblzma5 >= 5.1.1alpha+20120614
multiarch-support -
zlib1g >= 1:1.2.3.3

Download

Type URL
Binary Package libxml2_2.9.1+dfsg1-5+deb8u6_amd64.deb
Source Package libxml2

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install libxml2 deb package:
    # sudo apt-get install libxml2

Files

Path
/usr/lib/x86_64-linux-gnu/libxml2.so.2
/usr/lib/x86_64-linux-gnu/libxml2.so.2.9.1
/usr/share/doc/libxml2/AUTHORS
/usr/share/doc/libxml2/NEWS.gz
/usr/share/doc/libxml2/README
/usr/share/doc/libxml2/README.Debian
/usr/share/doc/libxml2/TODO.gz
/usr/share/doc/libxml2/changelog.Debian.gz
/usr/share/doc/libxml2/changelog.gz
/usr/share/doc/libxml2/copyright
/usr/share/lintian/overrides/libxml2

Changelog

2018-01-12 - Salvatore Bonaccorso <carnil@debian.org>
libxml2 (2.9.1+dfsg1-5+deb8u6) jessie-security; urgency=high
* Non-maintainer upload by the Security Team.
* Fix XPath stack frame logic (CVE-2017-15412) (Closes: #883790)
2017-08-19 - Salvatore Bonaccorso <carnil@debian.org>
libxml2 (2.9.1+dfsg1-5+deb8u5) jessie-security; urgency=high
* Non-maintainer upload by the Security Team.
* Increase buffer space for port in HTTP redirect support (CVE-2017-7376)
Incorrect limit was used for port values. (Closes: #870865)
* Prevent unwanted external entity reference (CVE-2017-7375)
Missing validation for external entities in xmlParsePEReference.
(Closes: #870867)
* Fix handling of parameter-entity references (CVE-2017-9049, CVE-2017-9050)
- Heap-based buffer over-read in function xmlDictComputeFastKey
(CVE-2017-9049).
- Heap-based buffer over-read in function xmlDictAddString
(CVE-2017-9050).
(Closes: #863019, #863018)
* Fix buffer size checks in xmlSnprintfElementContent (CVE-2017-9047,
CVE-2017-9048)
- Buffer overflow in function xmlSnprintfElementContent (CVE-2017-9047).
- Stack-based buffer overflow in function xmlSnprintfElementContent
(CVE-2017-9048).
(Closes: #863022, #863021)
* Fix type confusion in xmlValidateOneNamespace (CVE-2017-0663)
Heap buffer overflow in xmlAddID. (Closes: #870870)
2016-12-17 - Salvatore Bonaccorso <carnil@debian.org>
libxml2 (2.9.1+dfsg1-5+deb8u4) jessie-security; urgency=high
* Non-maintainer upload by the Security Team.
* Fix comparison with root node in xmlXPathCmpNodes
* Fix XPointer paths beginning with range-to (CVE-2016-5131)
(Closes: #840554)
* Disallow namespace nodes in XPointer ranges (CVE-2016-4658)
(Closes: #840553)
* Fix more NULL pointer derefs in xpointer.c
2016-06-14 - Salvatore Bonaccorso <carnil@debian.org>
libxml2 (2.9.1+dfsg1-5+deb8u3) jessie; urgency=medium
* Non-maintainer upload.
* Fix a problem unparsing URIs without a host part like qemu:///system.
This unbreaks libvirt, libsys-virt-perl and others (Closes: #781232)
2016-05-28 - Salvatore Bonaccorso <carnil@debian.org>
libxml2 (2.9.1+dfsg1-5+deb8u2) jessie-security; urgency=high
* Non-maintainer upload by the Security Team.
* Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
* heap-buffer-overflow in xmlStrncat (CVE-2016-1834)
* Add missing increments of recursion depth counter to XML parser
(CVE-2016-3705) (Closes: #823414)
* Avoid an out of bound access when serializing malformed strings
(CVE-2016-4483) (Closes: #823405)
* Heap-buffer-overflow in xmlFAParsePosCharGroup (CVE-2016-1840)
* Heap-based buffer overread in xmlParserPrintFileContextInternal
(CVE-2016-1838)
* Heap-based buffer overread in xmlDictAddString (CVE-2016-1839
CVE-2015-8806 CVE-2016-2073) (Closes: #813613, #812807)
* Heap use-after-free in xmlDictComputeFastKey (CVE-2016-1836)
* Fix inappropriate fetch of entities content (CVE-2016-4449)
* Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral
(CVE-2016-1837)
* Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
* Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
* Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
* Avoid building recursive entities (CVE-2016-3627) (Closes: #819006)

See Also

Package Description
libxmlada-doc_4.4.2014-1_all.deb XML/Ada, a full XML suite for Ada programmers (documentation)
libxmlada4.4.0_4.4.2014-1_amd64.deb XML/Ada, a full XML suite for Ada programmers (runtime)
libxmlada5-dev_4.4.2014-1_amd64.deb XML/Ada, a full XML suite for Ada programmers
libxmlbeans-java_2.6.0-2_all.deb Java library for accessing XML by binding it to Java types
libxmlbeans-maven-plugin-java-doc_2.3.3-3_all.deb Documentation for Maven XMLBeans Plugin
libxmlbeans-maven-plugin-java_2.3.3-3_all.deb Maven XMLBeans Plugin
libxmlezout2_1.06.1-7_amd64.deb Easy-to-use library for emitting XML from Ada programs, runtime
libxmlezout3-dev_1.06.1-7_amd64.deb Easy-to-use library for emitting XML from Ada programs, dev files
libxmlgraphics-commons-java-doc_1.5-4_all.deb Reusable components used by Batik and FOP (documentation)
libxmlgraphics-commons-java_1.5-4_all.deb Reusable components used by Batik and FOP
libxmlm-ocaml-dev_1.2.0-1_amd64.deb OCaml xml manipulation module
libxmlplaylist-ocaml-dev_0.1.3-1+b4_amd64.deb Playlist parser for various xml formats
libxmlrpc-c++8-dev_1.33.14-0.2_amd64.deb lightweight RPC library based on XML and HTTP [C++ development libraries]
libxmlrpc-c++8_1.33.14-0.2_amd64.deb lightweight RPC library based on XML and HTTP [C++ runtime libraries]
libxmlrpc-core-c3-dev_1.33.14-0.2_amd64.deb lightweight RPC library based on XML and HTTP [C development libraries]
Advertisement
Advertisement