- Tue Jul 23 2013 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.21.el5_9.3
- fixed one regexp bug and added a (rhbz#987321)
- Another small change on the algorithm for the elimination of epsilon (rhbz#987321) - Wed Feb 27 2013 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.21.el5_9.2
- Fix some Relax-NG and XSD validation failures (rhbz#915350)
- xmlDOMWrapCloneNode discards namespace of the node parameter(rhbz#915837) - Tue Feb 19 2013 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.21.el5_9.1
- detect and stop excessive entities expansion upon replacement (rhbz#912572)
- Thu Nov 29 2012 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.21.el5
- fix out of range heap access (CVE-2012-5134)
- Wed Sep 5 2012 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.20.el5
- Implement some default limits in the XPath module (CVE-2011-1944)
- Change the XPath code to percolate allocation errors (CVE-2011-1944) - Wed Aug 22 2012 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.19.el5
- Fix an off by one pointer access (CVE-2011-3102)
- Tue Aug 21 2012 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.18.el5
- Fix parser local buffers size problems (rhbz#843740)
- Fix entities local buffers size problems (rhbz#843740)
- Fix an error in previous commit (rhbz#843740) - Mon Feb 13 2012 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.17.el5
- fix previous build to force compilation of randomization code
- Resolves: rhbz#788844 - Fri Feb 10 2012 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.16.el5
- adds randomization to hash and dict structures CVE-2012-0841
- Resolves: rhbz#788844 - Fri Jan 6 2012 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.15.el5
- Fix the semantic of XPath axis for namespace/attribute nodes CVE-2010-4008
- Fix an off by one error in encoding CVE-2011-0216
- Fix some potential problems on reallocation failures CVE-2011-1944
- Fix missing error status in XPath evaluation CVE-2011-2834
- Make sure the parser returns when getting a Stop order CVE-2011-3905
- Fix an allocation error when copying entities CVE-2011-3919.patch
- Resolves: rhbz#771907 - Fri Oct 21 2011 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.14
- fix schemas validation of empty integer values (rhbz#743737)
- Tue Jun 28 2011 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.13
- Fix a potential crasher in XPath or XSLT, CVE-2011-1944
- Resolves: rhbz#710395 - Thu Apr 21 2011 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.12
- fix various problems with XSD validation
- Resolves: rhbz#644312 - Mon Oct 4 2010 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.11
- missing an initialization in an XPath internal structure
- Resolves: rhbz#613860 - Tue Aug 4 2009 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.10
- Fix a couple of crash CVE-2009-2414 and CVE-2009-2416
- Resolves: rhbz#515237 - Wed Nov 12 2008 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.9
- two patches for size overflows problems CVE-2008-4225 and CVE-2008-4226
- Resolves: rhbz#470475 - Fri Sep 5 2008 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.8
- Patch to fix an entity name copy buffer overflow CVE-2008-3529
- Resolves: rhbz#461024 - Thu Aug 28 2008 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.7
- Patch to fix recursive entities handling CVE-2008-3281 in a better way
- Resolves: rhbz#458096 - Sat Aug 23 2008 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.6
- Patch to fix recursive entities handling CVE-2008-3281
- Resolves: rhbz#458096 - Mon Dec 17 2007 Daniel Veillard <veillard@redhat.com> - 2.6.26-2.1.3
- Patch to fix UTF-8 decoding problem CVE-2007-6284
- Resolves: rhbz#425934 - Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 2.6.26-2.1.2
- fixing an i386/x86_64 parallel install problem of -devel
- Resolves: rhbz#222735 - Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 2.6.26-2.1.1
- rebuild
- Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 2.6.26-2.1
- rebuild
- Wed Jun 7 2006 Daniel Veillard <veillard@redhat.com> 2.6.26-2
- fix bug #192873
- Tue Jun 6 2006 Daniel Veillard <veillard@redhat.com> 2.6.26-1
- upstream release 2.6.26 see http://xmlsoft.org/news.html
- Tue Jun 6 2006 Daniel Veillard <veillard@redhat.com>
- upstream release 2.6.25 broken, do not ship !