Your message dated Wed, 05 Mar 2008 22:47:07 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#456653: fixed in libxml2 2.6.31.dfsg-2
has caused the Debian Bug report #456653,
regarding libxml2: __xmlRaiseError alloc tons of memory and cause segfault
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
456653: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=456653
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: libxml2
Version: 2.6.30.dfsg-3
Severity: important
libxml2 crash liferea on some Chinese RSS feed. Backtrace shows that in
file error.c at XML_GET_VAR_STR(), it realloced too much memory.
With vsnprintf, when it returns -1, there could be all kind of
errors other than just not enough buffer.
In this Chinese feed, the error is
"Invalid or incomplete multibyte or wide character", i.e. EILSEQ.
So if XML_GET_VAR_STR really want to handle pre-glibc 2.1 erorr, it
should check the precise errno first rather blindly realloc more
memory. Otherwise, just break out of the error.
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.22-3-k7 (SMP w/1 CPU core)
Locale: LANG=C, LC_CTYPE=zh_CN.GBK (charmap=GBK)
Shell: /bin/sh linked to /bin/bash
Versions of packages libxml2 depends on:
ii libc6 2.7-4 GNU C Library: Shared libraries
ii zlib1g 1:1.2.3.3.dfsg-7 compression library - runtime
Versions of packages libxml2 recommends:
ii xml-core 0.11 XML infrastructure and XML catalog
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: libxml2
Source-Version: 2.6.31.dfsg-2
We believe that the bug you reported is fixed in the latest version of
libxml2, which is due to be installed in the Debian FTP archive:
libxml2-dbg_2.6.31.dfsg-2_amd64.deb
to pool/main/libx/libxml2/libxml2-dbg_2.6.31.dfsg-2_amd64.deb
libxml2-dev_2.6.31.dfsg-2_amd64.deb
to pool/main/libx/libxml2/libxml2-dev_2.6.31.dfsg-2_amd64.deb
libxml2-doc_2.6.31.dfsg-2_all.deb
to pool/main/libx/libxml2/libxml2-doc_2.6.31.dfsg-2_all.deb
libxml2-utils_2.6.31.dfsg-2_amd64.deb
to pool/main/libx/libxml2/libxml2-utils_2.6.31.dfsg-2_amd64.deb
libxml2_2.6.31.dfsg-2.diff.gz
to pool/main/libx/libxml2/libxml2_2.6.31.dfsg-2.diff.gz
libxml2_2.6.31.dfsg-2.dsc
to pool/main/libx/libxml2/libxml2_2.6.31.dfsg-2.dsc
libxml2_2.6.31.dfsg-2_amd64.deb
to pool/main/libx/libxml2/libxml2_2.6.31.dfsg-2_amd64.deb
python-libxml2_2.6.31.dfsg-2_amd64.deb
to pool/main/libx/libxml2/python-libxml2_2.6.31.dfsg-2_amd64.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Mike Hommey <[EMAIL PROTECTED]> (supplier of updated libxml2 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 05 Mar 2008 23:42:37 +0100
Source: libxml2
Binary: libxml2 libxml2-utils libxml2-dev libxml2-dbg libxml2-doc python-libxml2
Architecture: source all amd64
Version: 2.6.31.dfsg-2
Distribution: unstable
Urgency: low
Maintainer: Debian XML/SGML Group <[EMAIL PROTECTED]>
Changed-By: Mike Hommey <[EMAIL PROTECTED]>
Description:
libxml2 - GNOME XML library
libxml2-dbg - Debugging symbols for the GNOME XML library
libxml2-dev - Development files for the GNOME XML library
libxml2-doc - Documentation for the GNOME XML library
libxml2-utils - XML utilities
python-libxml2 - Python bindings for the GNOME XML library
Closes: 442656 456653 464173
Changes:
libxml2 (2.6.31.dfsg-2) unstable; urgency=low
.
* debian/rules: Brown paper bag: uncomment $(MAKE) distclean.
Closes: #442656.
* xstc/Makefile.am, xstc/Makefile.in: Properly clean generated files.
* nanohttp.c: Apply fix from svn revision 3685 to allocate enough memory
for the Host HTTP header when containing a port number. Closes: #464173.
* error.c: Don't grow error buffer indefinitely when vsnprintf returns -1,
which, if it happens, on glibc-based systems, will happen indefinitely.
Closes: #456653.
Files:
092234e0b58e98876a34ac0a08dc0094 912 libs optional libxml2_2.6.31.dfsg-2.dsc
a64744552780da21d65ef442c4a0e17a 63024 libs optional
libxml2_2.6.31.dfsg-2.diff.gz
7a5584410049ddaeefed52edc6ebd37c 1336674 doc optional
libxml2-doc_2.6.31.dfsg-2_all.deb
8622ef16ea5a7f773cc099318bf2c1e1 827504 libs optional
libxml2_2.6.31.dfsg-2_amd64.deb
b3773e98dc85d5f4c13c7b6b79b96148 36718 text optional
libxml2-utils_2.6.31.dfsg-2_amd64.deb
b1b19834f4889a50f77eeb34e4cbe966 748286 libdevel optional
libxml2-dev_2.6.31.dfsg-2_amd64.deb
05ab7b8dde3e55c46a797c3065bc67f1 936554 libdevel extra
libxml2-dbg_2.6.31.dfsg-2_amd64.deb
30eee6c0cb948b62e4ad45ad6481b906 293768 python optional
python-libxml2_2.6.31.dfsg-2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHzyLn3kvaLFT9KlgRAjwoAJ45e85aINz9hnEp25HGNE9vl/gJxwCfdMa2
E9RLhS6QW8ZaNOQ2E6J+DlU=
=jRT0
-----END PGP SIGNATURE-----
--- End Message ---
