diff options
author | Karen Arutyunov <karen@codesynthesis.com> | 2024-04-01 20:42:27 +0300 |
---|---|---|
committer | Karen Arutyunov <karen@codesynthesis.com> | 2024-04-01 20:42:45 +0300 |
commit | 1a1828648f3c06580ffe7a9f78c557a9e73c5bcd (patch) | |
tree | 890d79cbd8f77c7fec04a5bb8fcd273210b6b42a /libxerces-c/xercesc/dtd-decl-use-after-free.patch | |
parent | 7683a8b7a9e8f4be61a5dee67667db54646d80d3 (diff) |
Upgrade to 3.2.5
Note that this upstream version properly fixes the use-after-free error
(CVE-2018-1311) triggered during the scanning of external DTDs
(see https://issues.apache.org/jira/browse/XERCESC-2188 for details).
Diffstat (limited to 'libxerces-c/xercesc/dtd-decl-use-after-free.patch')
-rw-r--r-- | libxerces-c/xercesc/dtd-decl-use-after-free.patch | 20 |
1 files changed, 0 insertions, 20 deletions
diff --git a/libxerces-c/xercesc/dtd-decl-use-after-free.patch b/libxerces-c/xercesc/dtd-decl-use-after-free.patch deleted file mode 100644 index 4a48a96..0000000 --- a/libxerces-c/xercesc/dtd-decl-use-after-free.patch +++ /dev/null @@ -1,20 +0,0 @@ -diff --git a/libxerces-c/xercesc/internal/IGXMLScanner.cpp b/libxerces-c/xercesc/internal/IGXMLScanner.cpp -index 0062400..aa344be 100644 ---- a/libxerces-c/xercesc/internal/IGXMLScanner.cpp -+++ b/libxerces-c/xercesc/internal/IGXMLScanner.cpp -@@ -1532,7 +1532,6 @@ void IGXMLScanner::scanDocTypeDecl() - DTDEntityDecl* declDTD = new (fMemoryManager) DTDEntityDecl(gDTDStr, false, fMemoryManager); - declDTD->setSystemId(sysId); - declDTD->setIsExternal(true); -- Janitor<DTDEntityDecl> janDecl(declDTD); - - // Mark this one as a throw at end - reader->setThrowAtEnd(true); -@@ -3095,7 +3094,6 @@ Grammar* IGXMLScanner::loadDTDGrammar(const InputSource& src, - DTDEntityDecl* declDTD = new (fMemoryManager) DTDEntityDecl(gDTDStr, false, fMemoryManager); - declDTD->setSystemId(src.getSystemId()); - declDTD->setIsExternal(true); -- Janitor<DTDEntityDecl> janDecl(declDTD); - - // Mark this one as a throw at end - newReader->setThrowAtEnd(true); |