Module Name: xsrc
Committed By: tron
Date: Wed Jan 27 13:47:28 UTC 2010
Modified Files:
xsrc/xfree/xc/extras/expat/lib: xmlparse.c
Log Message:
Add patch from upstream CVS to fix CVE-2009-3560 (possible DOS due to
crash on bad input).
To generate a diff of this commit:
cvs rdiff -u -r1.1.1.2 -r1.2 xsrc/xfree/xc/extras/expat/lib/xmlparse.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: xsrc/xfree/xc/extras/expat/lib/xmlparse.c
diff -u xsrc/xfree/xc/extras/expat/lib/xmlparse.c:1.1.1.2 xsrc/xfree/xc/extras/expat/lib/xmlparse.c:1.2
--- xsrc/xfree/xc/extras/expat/lib/xmlparse.c:1.1.1.2 Fri Mar 5 14:26:08 2004
+++ xsrc/xfree/xc/extras/expat/lib/xmlparse.c Wed Jan 27 13:47:28 2010
@@ -3253,6 +3253,9 @@
return XML_ERROR_UNCLOSED_TOKEN;
case XML_TOK_PARTIAL_CHAR:
return XML_ERROR_PARTIAL_CHAR;
+ case -XML_TOK_PROLOG_S:
+ tok = -tok;
+ break;
case XML_TOK_NONE:
#ifdef XML_DTD
if (enc != encoding)
