nixpkgs/pkgs
Vladimír Čunát 5ad81ab09c
libxml2: bugfix updates from git upstream
This should solve CVE-2016-5131 and some other bugs, but not what Suse
calls CVE-2016-9597: https://bugzilla.suse.com/show_bug.cgi?id=1017497
The bugzilla discussion seems to indicate that the CVE is referenced
incorrectly and only shows reproducing when using command-line flags
that are considered "unsafe".

CVE-2016-9318 also remains unfixed, as I consider their reasoning OK:
https://lwn.net/Alerts/714411/

/cc #22826.
2017-02-16 20:18:17 +01:00
..
applications Merge branch 'master' into staging 2017-02-16 19:02:37 +01:00
build-support nix-prefetch-zip: Remove 2017-02-16 11:28:23 +01:00
data hackage: update snapshot to 2017-02-12T15:49:03Z 2017-02-16 11:48:10 +01:00
desktops Merge branch 'master' into staging 2017-02-16 19:02:37 +01:00
development libxml2: bugfix updates from git upstream 2017-02-16 20:18:17 +01:00
games widelands: 18 -> 19 (#22796) 2017-02-15 07:11:59 +01:00
misc Merge pull request #22614 from cstrahan/ycm 2017-02-14 21:32:09 +01:00
os-specific grsecurity: 4.9.8-201702071801 -> 4.9.10-201702152052 2017-02-16 14:51:25 +01:00
servers redis: 3.2.5 -> 3.2.7 for two vulnerabilities 2017-02-15 19:46:46 -05:00
shells elvish: 0.1 -> 0.5 2017-02-12 21:37:53 +01:00
stdenv Merge pull request #22387 from Ericson2314/cross-3-platforms 2017-02-05 17:41:31 -05:00
test
tools findutils: plug a memory leak (close #22857) 2017-02-16 19:16:51 +01:00
top-level Merge branch 'master' into staging 2017-02-16 19:02:37 +01:00