Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package tinyxml for openSUSE:Factory checked in at 2021-10-27 22:21:17 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/tinyxml (Old) and /work/SRC/openSUSE:Factory/.tinyxml.new.1890 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "tinyxml" Wed Oct 27 22:21:17 2021 rev:15 rq:927750 version:2.6.2 Changes: -------- --- /work/SRC/openSUSE:Factory/tinyxml/tinyxml.changes 2012-05-14 16:22:26.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.tinyxml.new.1890/tinyxml.changes 2021-10-27 22:21:36.311210947 +0200 @@ -1,0 +2,6 @@ +Mon Oct 25 14:32:25 UTC 2021 - Christian V??gl <christian.vo...@suse.com> + +- Added tinyxml-2.62-fix-infinite-loop.patch to fix an infinite loop + for inputs containing the sequence 0xEF0x00 (bsc#1191576) + +------------------------------------------------------------------- New: ---- tinyxml-2.62-fix-infinite-loop.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ tinyxml.spec ++++++ --- /var/tmp/diff_new_pack.bQBDTC/_old 2021-10-27 22:21:36.711211152 +0200 +++ /var/tmp/diff_new_pack.bQBDTC/_new 2021-10-27 22:21:36.719211156 +0200 @@ -1,7 +1,7 @@ # # spec file for package tinyxml # -# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2021 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -12,7 +12,7 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # @@ -34,7 +34,8 @@ Source5: Makefile.am.docs Patch0: tinyxml-c_headers.patch Patch1: tinyxml-entity.patch -Url: http://sourceforge.net/projects/tinyxml +Patch2: tinyxml-2.62-fix-infinite-loop.patch +URL: http://sourceforge.net/projects/tinyxml BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: gcc-c++ BuildRequires: libtool @@ -60,7 +61,7 @@ %package devel Summary: Development files for libtinyxml -License: GPL-2.0+ +License: GPL-2.0-or-later Group: Development/Libraries/C and C++ Requires: %{lib_package} = %{version} Provides: libtinyxml-devel = %{version} @@ -73,7 +74,7 @@ %package docs Summary: Documentaqtion for libtinyxml -License: GPL-2.0+ +License: GPL-2.0-or-later Group: Development/Libraries/C and C++ Requires: %{lib_package} = %{version} @@ -85,6 +86,7 @@ %setup -q -n tinyxml %patch0 %patch1 +%patch2 -p1 mkdir -p m4 cp %{S:1} %{S:2} %{S:3} %{S:4} . cp %{S:5} docs/Makefile.am ++++++ tinyxml-2.62-fix-infinite-loop.patch ++++++ diff --git a/tinyxmlparser.cpp b/tinyxmlparser.cpp index 81b7eae..8aa0dfa 100755 --- a/tinyxmlparser.cpp +++ b/tinyxmlparser.cpp @@ -274,6 +274,12 @@ void TiXmlParsingData::Stamp( const char* now, TiXmlEncoding encoding ) else { p +=3; ++col; } // A normal character. } + else + { + // TIXML_UTF_LEAD_0 (239) is the start character of a 3 byte sequence, so + // there is something wrong here. Just advance the pointer to evade infinite loops + ++p; + } } else {
