Commit Graph

99 Commits

Author SHA1 Message Date
Andreas Rammhold
06e7a48f45
libxml2: fix CVE-2018-14567 & CVE-2018-14404
Since the already added patch for CVE-2018-9251 also affects
CVE-2018-14567 I renamed the applied patch accordingly.
2018-08-15 22:54:52 +02:00
Tim Steinbach
99fb65fb11
libxml2: Fix CVE-2018-9251 2018-08-05 18:20:33 -04:00
John Ericson
e517da3929 libxml2: Use enableFeature 2018-08-02 15:10:43 -04:00
John Ericson
5be14c5c74 libxml2: Remove crossAttrs 2018-07-24 18:36:59 -04:00
Matthew Bauer
916f096911
Merge pull request #43890 from matthewbauer/mingw-fixes
Mingw fixes
2018-07-21 17:04:20 -04:00
Matthew Bauer
92daacc9b0 libxml2: support all platforms
Mingw/Windows support works out of the box.
2018-07-21 10:10:47 -04:00
volth
52f53c69ce pkgs/*: remove unreferenced function arguments 2018-07-21 02:48:04 +00:00
Antoine Eiche
5bfdf34bed libxml2: add enableStatic argument
If `enableStatic` is set to true, the output `static` contains the
static library.
2018-06-22 21:00:20 +02:00
Orivej Desh
ea69fba953 Revert "libxml2: add static output"
This reverts commit 1897c352f5 on master.

This is a mass rebuild that should go through staging.
2018-06-13 16:07:54 +00:00
Antoine Eiche
1897c352f5 libxml2: add static output 2018-06-13 09:20:02 +02:00
Ryan Mulligan
3157bd3dc9 libxml2: 2.9.7 -> 2.9.8
Semi-automatic update generated by https://github.com/ryantm/nix-update tools. These checks were done:

- built on NixOS
- Warning: no binary found that responded to help or version flags. (This warning appears even if the package isn't expected to have binaries.)
- found 2.9.8 in filename of file in /nix/store/cjycf1wx5a5l22a9kwhpnnh2h9i7pahk-libxc-4.0.4
2018-03-14 19:51:48 -07:00
Will Dietz
158c3c4864 libxml2: disable tests also 2018-02-13 09:44:41 -06:00
Jan Tojnar
98ff9fca29
libxml2: 2.9.5 → 2.9.7 2017-11-23 05:28:39 +01:00
Ben Gamari
09ce1ebd8f libxml2: Don't run tests when cross-compiling 2017-10-27 20:32:25 -04:00
Orivej Desh
604ca93182 libxml2: 2.9.4 -> 2.9.5 2017-09-15 17:28:31 +00:00
Tuomas Tynkkynen
1ff422aa23 treewide: Add man & info outputs where necessary (instead of doc)
Because man & info pages won't be going to $doc after the next commit.
Scripted change for the files having one-package-per-file.
2017-08-11 21:32:54 +03:00
John Ericson
8ca8293dbc libxml2: Don't use stdenv.cross 2017-06-28 00:51:59 -04:00
Dan Peebles
1a4ca220e1 treewide: fix assorted issues revealed by the meta checker
Turns out a couple of the licenses were wrong, as well as being strings.
2017-04-28 23:07:42 -04:00
Vladimír Čunát
5ad81ab09c
libxml2: bugfix updates from git upstream
This should solve CVE-2016-5131 and some other bugs, but not what Suse
calls CVE-2016-9597: https://bugzilla.suse.com/show_bug.cgi?id=1017497
The bugzilla discussion seems to indicate that the CVE is referenced
incorrectly and only shows reproducing when using command-line flags
that are considered "unsafe".

CVE-2016-9318 also remains unfixed, as I consider their reasoning OK:
https://lwn.net/Alerts/714411/

/cc #22826.
2017-02-16 20:18:17 +01:00
Peter Hoeg
52d6927413 libxml2: add optional icu support 2017-02-11 18:16:38 +08:00
Frederik Rietdijk
6b70ac81bb libxml2: supportPython -> pythonSupport
since that is more commonly used in Nixpkgs.
2016-11-08 17:10:05 +01:00
Franz Pletz
64902aebb0
libxml2: add patch to fix CVE-2016-4658
cc #20078
2016-11-03 02:45:18 +01:00
Frederik Rietdijk
47a95edc1e libxml2: use python2 2016-10-18 23:14:31 +02:00
Tuomas Tynkkynen
a17216af4c treewide: Shuffle outputs
Make either 'bin' or 'out' the first output.
2016-08-29 14:49:51 +03:00
Vladimír Čunát
dc13593b9f libxml2: disable checks on Darwin
Apparently they won't work there.
2016-05-27 09:45:46 +02:00
Vladimír Čunát
f4bddaf51f libxml2: doCheck = true
That wouldn't uncover the problem fixed in parent commit,
but it shouldn't hurt.
2016-05-26 15:09:28 +02:00
Vladimír Čunát
3069606108 libxml2: fixup validation problems with 2.9.4
... by reverting an upstream commit
/cc #15697.

I should make some distro pay me for digging into such things :-)
2016-05-26 13:49:08 +02:00
Graham Christensen
772851ff46 libxml2: 2.9.3 -> 2.9.4 for three CVEs (close #15697)
- CVE-2016-4447: libxml2: Heap-based buffer underreads due to xmlParseName
   https://bugzilla.redhat.com/show_bug.cgi?id=1338686

 - CVE-2016-4448 libxml2: Format string vulnerability
   https://bugzilla.redhat.com/show_bug.cgi?id=1338700

 - CVE-2016-4449 libxml2: Inappropriate fetch of entities content
   https://bugzilla.redhat.com/show_bug.cgi?id=1338701

and many other fixed issues, available at http://www.xmlsoft.org/news.html
2016-05-25 18:28:52 +02:00
Vladimír Čunát
7a005601d4 Merge branch 'master' to resolve conflicts 2016-05-05 08:25:38 +02:00
Vladimír Čunát
94eba25103 libxml2: fix on mingw, without DLLs ATM
After closure-size merge we need to disable python support,
as python upstream doesn't support cross-building linux -> mingw.
2016-04-23 10:52:02 +02:00
Karn Kallio
c4ab7e2cd4 libxml2 : Have exec_prefix match the location of bin/xml2-config. 2016-04-21 13:00:21 +02:00
Vladimír Čunát
716aac2519 Merge branch 'staging' into closure-size 2016-01-19 09:55:31 +01:00
Jakob Gillich
aee934b3aa libxml2: security update 2.9.2 -> 2.9.3 (close #12197) 2016-01-07 10:18:34 +01:00
Luca Bruno
e289717414 rename moveToOutput and propagatedBuildInputs 2015-12-02 10:05:36 +01:00
Vladimír Čunát
38313d5d87 libxml2,libxslt: split into multiple outputs
Fixed all references, hopefully.
libxml2Python is slightly hacky now, but it seems to work.
2015-10-05 13:44:16 +02:00
Eelco Dolstra
e939757609 libxml2: Move docs to separate output
This reduces the size of "out" from 8.6 to 2.4 MB.
2015-07-26 13:36:22 +02:00
Eelco Dolstra
eae17c3743 Revert "libxml2: Refactor and fix library propagation"
This reverts commit 287ec76b8f.
2015-06-04 14:54:51 +02:00
Eelco Dolstra
3096d03435 Revert "Refactor mkFlag / shouldUsePkg into the nixpkgs libraries"
This reverts commit 25a148fa19.
2015-06-04 14:54:48 +02:00
William A. Kennington III
25a148fa19 Refactor mkFlag / shouldUsePkg into the nixpkgs libraries 2015-05-22 13:26:55 -07:00
William A. Kennington III
287ec76b8f libxml2: Refactor and fix library propagation 2015-04-28 18:27:39 -07:00
Domen Kožar
b9e0e67604 ftp://xmlsoft.org -> http://xmlsoft.org 2015-04-04 16:07:31 +02:00
Eelco Dolstra
e611215f5c Move finding XML catalogs into a separate setup hook
This is because libxml/libxslt are not the only implementations that
respect $XML_CATALOG_FILES.

Also, look in share/xml for catalogs (in addition to the
now-deprecated xml/dtd and xml/xsl).
2014-11-25 16:23:48 +01:00
Peter Simons
b11060d8db Merge remote-tracking branch 'origin/master' into staging. 2014-10-31 11:14:24 +01:00
Domen Kožar
419f15b060 Remove http_proxy/ftp_proxy overrides used in setup hooks.
Partially reverts eaa4db148d. Used
together with nix-shell it results into unresolvable domains. For
example: `nix-shell -p libxml2` spawns a shell with non-working DNS.

chroot should remove such unpurities.
2014-10-28 23:20:59 +01:00
Domen Kožar
3e81fe92e4 libxml2: 2.9.1 -> 2.9.2 (CVE-2014-3660) fixes #4679 2014-10-27 20:07:09 +01:00
Eelco Dolstra
e3f7dbbac8 Cleanup: Use += to append to envHooks 2014-08-09 12:47:05 +02:00
Florian Friesdorf
19dd74c59a libxml2 version passthru 2014-07-10 16:33:45 +02:00
Daniel Oertwig
42560c78bb libxml2 w/o python --with-python=no on all systems
When building libxml2 without python enabled, pass "--with-python=no" to
configure on all systems, not only on FreeBSD. Omitting mentioned
configure option results in building libxml2 WITH python enabled. In
this case, configure is looking for python by itself in system paths.
With a rootless configuration, python includes from the host are accessed.
If those files (Python.h) are not available, building libxml2 fails.
2013-12-16 21:30:36 +01:00
Vladimír Čunát
9220d5b002 libxml2 on FreeBSD: disable impure python detection
This might be good for all platforms,
when we do some big rebuild again.
2013-11-12 14:09:15 +01:00
Vladimír Čunát
85d21a6963 libxml2: bump 2.9.0 -> 2.9.1 (CVE-2013-1969)
And drop patch that has been merged upstream.
Close #1199.
Hack around python install problems (the rest is from bjornfor).
2013-11-11 22:32:46 +01:00