1. 04 Nov, 2017 4 commits
  2. 02 Nov, 2017 1 commit
    • Daniel Veillard's avatar
      Release of libxnl2-2.9.7 · bc5a5d65
      Daniel Veillard authored
      * configure.ac doc/news.html : update for release
      * doc/news.html doc/xmlcatalog.1 doc/xmlcatalog_man.html: regenerated
      bc5a5d65
  3. 24 Oct, 2017 2 commits
  4. 21 Oct, 2017 10 commits
  5. 12 Oct, 2017 1 commit
  6. 09 Oct, 2017 13 commits
  7. 07 Oct, 2017 3 commits
  8. 06 Oct, 2017 1 commit
  9. 21 Sep, 2017 1 commit
    • Nick Wellnhofer's avatar
      Fix XPath stack frame logic · 0f3b843b
      Nick Wellnhofer authored
      Move the calls to xmlXPathSetFrame and xmlXPathPopFrame around in
      xmlXPathCompOpEvalPositionalPredicate to make sure that the context
      object on the stack is actually protected. Otherwise, memory corruption
      can occur when calling sloppily coded XPath extension functions.
      
      Fixes bug 783160.
      0f3b843b
  10. 20 Sep, 2017 1 commit
  11. 19 Sep, 2017 1 commit
  12. 14 Sep, 2017 1 commit
  13. 13 Sep, 2017 1 commit
    • Nick Wellnhofer's avatar
      Handle more invalid entity values in recovery mode · abbda93c
      Nick Wellnhofer authored
      In attribute content, don't emit entity references if there are
      problems with the entity value. Otherwise some illegal entity values
      like
      
          <!ENTITY a '&#38;#x123456789;'>
      
      would later cause problems like integer overflow.
      
      Make xmlStringLenDecodeEntities return NULL on more error conditions
      including invalid char refs and errors from recursive calls. Remove
      some fragile error checks based on lastError that shouldn't be
      needed now. Clear the entity content in xmlParseAttValueComplex if
      an error was found.
      
      Found by OSS-Fuzz. Should fix bug 783052.
      
      Also see https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3343
      abbda93c