Ubuntu
xmlrpc-c package

lp://staging/ubuntu/natty-security/xmlrpc-c

Natty (11.04)
natty-security

Created by Ubuntu Package Importer on 2012-09-10 and last modified on 2012-09-10

Get this branch:: bzr branch lp://staging/ubuntu/natty-security/xmlrpc-c

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Mature

Recent revisions

23. By Tyler Hicks on 2012-09-09: * Run the tests as part of the build process
  - debian/patches/FTBFS-tests.patch: Fix issues when running make check.
    Based on upstream patches.
  - debian/rules: Run make check after building
* SECURITY UPDATE: Denial of service via hash collisions
  - debian/patches/CVE-2012-0876.patch: Add random salt value to
    hash inputs. Based on upstream patch.
  - CVE-2012-0876
* SECURITY UPDATE: Denial of service via memory leak
  - debian/patches/CVE-2012-1148.patch: Properly reallocate memory.
    Based on upstream patch.
  - CVE-2012-1148
22. By Jonathan Riddell on 2011-01-11: Move c_util.h to libxmlrpc-core-c3-dev
21. By Matthias Klose on 2011-01-06: Don't use the symbols files, renamed the library packages anyway.
20. By Matthias Klose on 2011-01-06: * New upstream version (stable release). LP: #659591.
- No unresolved symbols in the shared libraries. LP: #690779.
- Builds with --no-add-needed and --as-needed.
* Rename shared library packages.
* Add symbols files.
19. By Matthias Klose on 2011-01-06: Fix library search path.
18. By Matthias Klose on 2011-01-06: * Resolve unresolved references in shared libraries. LP: #690779.
* Fix build failures with ld --no-add-needed.
* Fix build failures with ld --as-needed.
* libxmlrpc-c3-dev: Recommend libcurl4-openssl-dev | libcurl3-openssl-dev.
LP: #284515.
17. By Jamie Strandboge on 2010-01-26: * SECURITY UPDATE: fix DoS via malformed XML
  - debian/patches/CVE-2009-3720.patch: update expat/xmltok/xmltok_impl.c
    to not access beyond end of input string
  - CVE-2009-3720
* SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
  - debian/patches/CVE-2009-3560.patch: update expat/xmlparse/xmlparse.c to
    properly recognize the end of a token
  - CVE-2009-3560
16. By Steve Langasek on 2009-09-11: Move xmlrpc-c/server.h to libxmlrpc-core-c3-dev where it belongs,
without which xmlrpc.h doesn't compile.
15. By Julien Lavergne on 2009-05-14: * debian/libxmlrpc-core-c3-dev.install
  debian/libxmlrpc-c3-dev.install :
  Remove installation of /usr/bin/xmlrpc-c-config and /usr/include,
  already in libxmlrpc-core-c3-dev.install (LP: #376133)
* debian/libxmlrpc-c3.install :
  Don't install .a and .so files for libxmlrpc_client++
14. By Jonathan Riddell on 2009-05-12: Remove libxmlrpc-c3-dev Provides libxmlrpc-c-dev, it also conflicts with libxmlrpc-c-dev and
this confuses the install of libxmlrpc-core-c3-dev

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp://staging/ubuntu/quantal/xmlrpc-c

This branch contains Public information

Everyone can see this information.

Subscribers

Ubuntu branches

Ubuntuxmlrpc-c package