libxml2-tools-2.9.7-150000.3.57.1<>,XdFZp9|Ii|_vo\ `7qZ\3c(-LmWJ7 0/H0C%A:D?:4d $ 7 !,< D L \ ` dt\2(a8h*9*: e*B4F4G5H5I5(X5,Y58Z5t[5x\5]5^5b5c6d7e7f7l7u7,v7<w9Lx9\y9lz9999:0Clibxml2-tools2.9.7150000.3.57.1Tools using libxmlThis package contains xmllint, a very useful tool proving libxml's power.dFZibs-arm-56eSUSE Linux Enterprise 15SUSE LLC MIThttps://www.suse.com/Productivity/Text/Utilitieshttp://xmlsoft.orglinuxaarch64 xP |!큤dFdFdFdFebd5aec9f3af43420e6117f7068a553e4f35516b593e679a935a629a1e63e615eac8cd8a9bc1c81276f6d5add66c09245b18a5eea99e00c6d501c20bebde8430579779594d0843f978bd610ce144d0e3874d17136967fb403bd734356405fefb5974236f0740926fe974baf81e83f67bbe2df201ef3871a7a5a44c961d8df6d5rootrootrootrootrootrootrootrootlibxml2-2.9.7-150000.3.57.1.src.rpmlibxml2libxml2-toolslibxml2-tools(aarch-64)@@@@@@@@@@@@@@@@@@@    ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libreadline.so.7()(64bit)libxml2.so.2()(64bit)libxml2.so.2(LIBXML2_2.4.30)(64bit)libxml2.so.2(LIBXML2_2.5.0)(64bit)libxml2.so.2(LIBXML2_2.5.2)(64bit)libxml2.so.2(LIBXML2_2.5.6)(64bit)libxml2.so.2(LIBXML2_2.5.7)(64bit)libxml2.so.2(LIBXML2_2.5.8)(64bit)libxml2.so.2(LIBXML2_2.6.0)(64bit)libxml2.so.2(LIBXML2_2.6.18)(64bit)libxml2.so.2(LIBXML2_2.6.20)(64bit)libxml2.so.2(LIBXML2_2.6.21)(64bit)libxml2.so.2(LIBXML2_2.6.3)(64bit)libxml2.so.2(LIBXML2_2.6.8)(64bit)libxml2.so.2(LIBXML2_2.9.0)(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.1dBzc_cMCc @bq@b `` @`N@`N@`N@_G@_V ^V@^Y^(9@^ @]fl]@\N[@[@Z@Z@Y@Y*@YéYéY)@YBvYA%@Y"XWXWH6W>@W(VTQ@TWn@TWn@TSyTAdavid.anes@suse.comdavid.anes@suse.comdavid.anes@suse.compmonreal@suse.comdavid.anes@suse.comdavid.anes@suse.compmonreal@suse.compmonreal@suse.compmonreal@suse.compmonreal@suse.compmonreal@suse.compmonreal@suse.compmonreal@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.commgorse@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.comaavindraa@gmail.comaavindraa@gmail.comjmatejek@suse.comjmatejek@suse.comjengelh@inai.detchvatal@suse.comtchvatal@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.compmonrealgonzalez@suse.comkstreitova@suse.compsimons@suse.comkstreitova@suse.comsflees@suse.derpm@fthiessen.devcizek@suse.comvcizek@suse.comvcizek@suse.comvcizek@suse.com- Security update: * [CVE-2023-29469, bsc#1210412] Hashing of empty dict strings isn't deterministic - Added patch libxml2-CVE-2023-29469.patch * [CVE-CVE-2023-28484, bsc#1210411] NULL dereference in xmlSchemaFixupComplexType - Added patch libxml2-CVE-2023-28484-1.patch - Added patch libxml2-CVE-2023-28484-2.patch - Fix changelog entries in both .changes files. - Apply al patches correctly for libxml2 and python-libxml2.- Add W3C conformance tests to the testsuite (bsc#1204585): * Added file xmlts20080827.tar.gz- Security fixes: * [CVE-2022-40303, bsc#1204366] Fix integer overflows with XML_PARSE_HUGE + Added patch libxml2-CVE-2022-40303.patch * [CVE-2022-40304, bsc#1204367] Fix dict corruption caused by entity reference cycles + Added patch libxml2-CVE-2022-40304.patch- Security fix: [bsc#1201978, CVE-2016-3709] * Cross-site scripting vulnerability after commit 960f0e2 * Add libxml2-CVE-2016-3709.patch- Security fix: [bsc#1199132, CVE-2022-29824] * Integer overflow leading to out-of-bounds write in buf.c (xmlBuf*) and tree.c (xmlBuffer*) * Add libxml2-CVE-2022-29824.patch- Security fix: [bsc#1196490, CVE-2022-23308] * Use-after-free of ID and IDREF attributes. * Add libxml2-CVE-2022-23308.patch- Security fix: [bsc#1186015, CVE-2021-3541] * Exponential entity expansion attack bypasses all existing protection mechanisms. * Add libxml2-CVE-2021-3541.patch- Security fix: [bsc#1185698, bsc#1185879, CVE-2021-3537] * NULL pointer dereference in valid.c:xmlValidBuildAContentModel * Add libxml2-CVE-2021-3537.patch- Security fix: [bsc#1185408, CVE-2021-3518] * Fix use-after-free in xinclude.c:xmlXIncludeDoProcess() * Add libxml2-CVE-2021-3518.patch- Security fix: [bsc#1185410, CVE-2021-3517] * Fix heap-based buffer overflow in entities.c:xmlEncodeEntitiesInternal() * Add libxml2-CVE-2021-3517.patch- Security fix: [bsc#1185409, CVE-2021-3516] * Fix use-after-free in entities.c:xmlEncodeEntitiesInternal() * Add libxml2-CVE-2021-3516.patch- Avoid quadratic checking of identity-constraints: [bsc#1178823] * key/unique/keyref schema attributes currently use qudratic loops to check their various constraints (that keys are unique and that keyrefs refer to existing keys). * This fix uses a hash table to avoid the quadratic behaviour. - Add libxml2-Avoid-quadratic-checking-of-identity-constraints.patch- Security fix: [bsc#1176179, CVE-2020-24977] * xmllint: global-buffer-overflow in xmlEncodeEntitiesInternal - Add patch libxml2-CVE-2020-24977.patch- Fix invalid xmlns references since the fix for CVE-2019-19956 [bsc#1172021] - Remove libxml2-CVE-2019-19956.patch- Security fix: [bsc#1161521, CVE-2019-20388] * Memory leak in xmlSchemaPreRun in xmlschemas.c - Add libxml2-CVE-2019-20388.patch- Security fix: [bsc#1161517, CVE-2020-7595] * xmlStringLenDecodeEntities in parser.c has an infinite loop in a certain end-of-file situation - Add libxml2-CVE-2020-7595.patch- Security fix: [bsc#1159928, CVE-2019-19956] * Memory leak related to newDoc->oldNs in xmlParseBalancedChunkMemoryRecover:parser.c - Add libxml2-CVE-2019-19956.patch- Synchronize changelog files for libxml2 and python-libxml2-python [bsc#1123919]- Added a new configurable variable XPATH_DEFAULT_MAX_NODESET_LENGTH to avoid nodeset limit when processing large XML files [bsc#1135123] * Added libxml2-make-XPATH_MAX_NODESET_LENGTH-configurable.patch- Add libxml2-python3-string-null-check.patch: fix NULL pointer dereference when parsing invalid data (bsc#1065270 glgo#libxml2!15).).- Security fix: [bsc#1088279, CVE-2018-9251][bsc#1105166, CVE-2018-14567] * Infinite loop in LZMA decompression * Fixes CVE-2018-9251 introduced by CVE-2017-18258 * Added libxml2-CVE-2018-14567.patch- Security fix [bsc#1102046, CVE-2018-14404] * NULL pointer dereference in xpath.c:xmlXPathCompOpEval() can allow attackers to cause a denial of service * Added libxml2-CVE-2018-14404.patch- Version update to 2.9.7 release: * Bug Fixes: + xmlcatalog: restore ability to query system catalog easily + Fix comparison of nodesets to strings * Improvements: + Add Makefile rules to rebuild HTML man pages + Remove generated file python/setup.py from version control + Fix mixed decls and code in timsort.h + Rework handling of return values in thread tests + Fix unused variable warnings in testrecurse + Fix -Wimplicit-fallthrough warnings + Upgrade timsort.h to latest revision + Fix a couple of warnings in dict.c and threads.c + Fix unused variable warnings in nanohttp.c + Don't include winsock2.h in xmllint.c + Use __linux__ macro in generated code * Portability: + Add declaration for DllMain + Fix preprocessor conditional in threads.h + Fix macro redefinition warning + many Windows specific improvements * Documentation: + xmlcatalog: refresh man page wrt. quering system catalog easily - Includes bug fixes from 2.9.6: * Fix XPath stack frame logic * Report undefined XPath variable error message * Fix regression with librsvg * Handle more invalid entity values in recovery mode * Fix structured validation errors * Fix memory leak in LZMA decompressor * Set memory limit for LZMA decompression * Handle illegal entity values in recovery mode * Fix debug dump of streaming XPath expressions * Fix memory leak in nanoftp * Fix memory leaks in SAX1 parser - Drop libxml2-bug787941.patch * upstreamed in 3157cf4e53c03bc3da604472c015c63141907db8- clean with spec-cleaner- libxml2-python3-unicode-errors.patch: work around an issue with libxml2 supplied error strings being undecodable UTF-8 (bsc#1065270)- convert to singlespec, build a python 3 version - change build instructions to use setup.py (and %python_build macros) instead of makefile-based approach - add python3.6-verify_fd.patch that fixes libxml2 on python 3.6 - rename to python-libxml2-python to conform to package naming policy (PyPI name is "libxml2-python")- Update package summaries and RPM groups. Trim descriptions for size on secondary subpackages. Replace install call by a commonly-used macro.- Add patch to fix TW integration: * libxml2-bug787941.patch- Version update to 2.9.5 release: * Merged all the previous cve fixes that were patched in * Few small tweaks - Remove merged patches: * libxml2-CVE-2016-4658.patch * libxml2-CVE-2017-0663.patch * libxml2-CVE-2017-5969.patch * libxml2-CVE-2017-9047.patch * libxml2-CVE-2017-9048.patch * libxml2-CVE-2017-9049.patch * libxml2-2.9.4-fix_attribute_decoding.patch- Security fix: * libxml2-CVE-2017-0663.patch [bsc#1044337, CVE-2017-0663] * Fix Heap buffer overflow in xmlAddID- Security fix: * libxml2-CVE-2017-5969.patch [bsc#1024989, CVE-2017-5969] * Fix NULL pointer deref in xmlDumpElementContent- Security fixes: * libxml2-CVE-2017-9049.patch [bsc#1039066] * heap-based buffer overflow (xmlDictComputeFastKey func) * libxml2-CVE-2017-9048.patch [bsc#1039063] * stack overflow vulnerability (xmlSnprintfElementContent func) * libxml2-CVE-2017-9047.patch [bsc#1039064] * stack overflow vulnerability (xmlSnprintfElementContent func)- Added libxml2-CVE-2016-4658.patch: Disallow namespace nodes in XPointer ranges. Namespace nodes must be copied to avoid use-after-free errors. But they don't necessarily have a physical representation in a document, so simply disallow them in XPointer ranges [bsc#1005544] [CVE-2016-4658]- add libxml2-2.9.4-fix_attribute_decoding.patch to fix attribute decoding during XML schema validation [bnc#983288]- Update libxml2 to version libxml2-2.9.4. The new version is resistant against CVE-2016-3627, CVE-2016-1833, CVE-2016-1835, CVE-2016-1837, CVE-2016-1836, CVE-2016-1839, CVE-2016-1838, CVE-2016-1840, CVE-2016-4483, CVE-2016-1834, CVE-2016-3705, and CVE-2016-1762. - Remove obsolete patches libxml2-2.9.1-CVE-2016-3627.patch, 0001-Add-missing-increments-of-recursion-depth-counter-to.patch, and libxml2-2.9.3-bogus_UTF-8_encoding_error.patch.- add libxml2-2.9.3-bogus_UTF-8_encoding_error.patch to fix XML push parser that fails with bogus UTF-8 encoding error when multi-byte character in large CDATA section is split across buffer [bnc#962796]- Add libxml2-2.9.1-CVE-2016-3627.patch to fix stack exhaustion while parsing certain XML files in recovery mode (CVE-2016-3627, bnc#972335). - Add 0001-Add-missing-increments-of-recursion-depth-counter-to.patch to improve protection against Billion Laughs Attack (bnc#975947).- Update to new upstream release 2.9.3 (bsc#954429): * Fixes for CVE-2015-8035, CVE-2015-7942, CVE-2015-7941, CVE-2015-1819, CVE-2015-7497, CVE-2015-7498, CVE-2015-5312, CVE-2015-7499, CVE-2015-7500 and CVE-2015-8242 * And other bugfixes - Removed upstream fixed patches: * libxml2-dont_initialize_catalog.patch * 0001-Fix-missing-entities-after-CVE-2014-3660-fix.patch * 0002-Adding-example-from-bugs-738805-to-regression-tests.patch- fix a missing entities after CVE-2014-3660 fix (https://bugzilla.gnome.org/show_bug.cgi?id=738805) * added patches: 0001-Fix-missing-entities-after-CVE-2014-3660-fix.patch 0002-Adding-example-from-bugs-738805-to-regression-tests.patch- fix a regression in libxml2 2.9.2 * https://bugzilla.redhat.com/show_bug.cgi?id=1153753 - add libxml2-dont_initialize_catalog.patch- update to 2.9.2 * drop libxml2-CVE-2014-3660.patch (upstream) * add keyring to verify tarball Security: Fix for CVE-2014-3660 billion laugh variant CVE-2014-0191 Do not fetch external parameter entities Improvements: win32/libxml2.def.src after rebuild in doc elfgcchack.h: more legacy needs xmlSAX2StartElement() and xmlSAX2EndElement() elfgcchack.h: add xmlXPathNodeEval and xmlXPathSetContextNode Provide cmake module Fix a couple of issues raised by make dist Fix and add const qualifiers Preparing for upcoming release of 2.9.2 Fix zlib and lzma libraries check via command line wrong error column in structured error when parsing end tag doc/news.html: small update to avoid line join while generating NEWS. Add methods for python3 iterator Support element node traversal in document fragments xmlNodeSetName: Allow setting the name to a substring of the currently set name Added macros for argument casts adding init calls to xml and html Read parsing entry points Get rid of 'REPLACEMENT CHARACTER' Unicode chars in xmlschemas.c Implement choice for name classes on attributes Two small namespace tweaks xmllint --memory should fail on empty files Cast encoding name to char pointer to match arg type- fix for CVE-2014-3660 (bnc#901546) * denial of service via recursive entity expansion (related to billion laughs) * added libxml2-CVE-2014-3660.patchlibxml2ibs-arm-5 16823437702.9.7-150000.3.57.12.9.7-150000.3.57.12.9.7-150000.3.57.12.9.7-150000.3.57.1xmlcatalogxmllintxmlcatalog.1.gzxmllint.1.gz/usr/bin//usr/share/man/man1/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:28753/SUSE_SLE-15_Update/bda0edb343ebfb56cee2907c45dab2c3-libxml2.SUSE_SLE-15_Updatedrpmxz5aarch64-suse-linuxELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=01c4acdaa09fa84d9cc3532f4e73434c5357b02d, for GNU/Linux 3.7.0, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux-aarch64.so.1, BuildID[sha1]=acbd209736825b3518edc19390f7c58904ca8698, for GNU/Linux 3.7.0, strippedtroff or preprocessor input, ASCII text, with very long lines (gzip compressed data, max compression, from Unix)RRRRRRRRRRR RR RR RRRR RR RRRRRK@@pr8Hautf-8a60812d382dd7f1ccb7610fc2626459dc8a89050ebff161febbd70dd176b6aad?7zXZ !t/,14]"k%ndNG{pmlҏ42 O-Yk4hsCH_ˬXڦdľI8ͦn95^jD%tLzV&-&퐞 -+{ ly^b (hqr+˪B1H<]Eb)3ez5ΙNJ(7W{j.!{<$ZUv($.ϩJJb8k{Ӗ|F~3&Ѫ=Ř2]3ʎX-<867S9jQvT$׉Y)zsT7$'%5 E[7}nzUVTgN B47$t?!:# I+𼚔XG̓yWG>oXQ3ju uGa`2U\4-,`bUL-vBC?Wi1:bhZS]8uk vs@mK+h~E AF~[nV/0}DrcWr*J$m`W ˇ[?@?_I饸Q+SG;ۓ yIdǿՊ74{8l\*rFIݵGH`.2'!$0l?^(Gq-(fuk>yP9X+R[{.jA#E@6hP|r1zmQW|q,k ~ޢ}5MsEl(g>~B"ب,`LM*g(q)x$1bnd_\p6v\tnM]W'~t7S(PۢZ7D->d+N(0 ,7dgM%t}^"-fgY-4>4kʾ`\ 04uZ'&X).HdK7-l7Q-n8:[Ma傿O(&u?V۴cژ.) Ifs]7&*LP5) ZIRܷ#.KuMn*5)'8_]H.iL}\ȮAE{dta+N>QE*?_[(nYnoYf_)铖&_,<ί=6o ;Jvm)G^:E`ʺ*Tp6}VZba7,«&c=s23YvPق *!+Ͱg q۔G^UngA3Y_WjH ߔ5` * udּS1\YFd|#]`yӑdAb/GATQ6@О*]BFNG]ŀ-6lRR)^ShTӝ?]Uajx#]JWN7[_ |1|d,~.朗 B좆h#)5yI݀_k3q(J-+|;{nb߄3z6D{1ЦG\|HQ4`ܨA%P٘hYCw;]sN ,Xxc_ȡb^ ZiC i;;$|7EdIa"W"K5XLM6Š}]DJiH}k{ܿBgBs١{޸ UOalK8̌<ZelQPY">CT!7r[P32H%!#;ӕݏG?[ka_]0yx߃{RQ/U[C;Bb %% .?8(1젭v#p0 `k%k<5!6 Z*fv" r qrud%L;m*94AOv=SFk|  N V9' 2Qvr FEYY)m1[TB1iV>Bh~BS)HB"Q 8ħD2lڱLft|GkB6:+q1g);?̊cʅ\_[($h⧸u#A ߦ Ń_P஋%&6(X||VIUk ^DRMbuT ?)5ʱWT{%^4%w#ӕڵ~mki3a{VuMA)`ZЧy() \z[*5[Im/A2lFGf齊e/_Ao0xa)lNb[]Y- 3`7lxZ5.r Jteף`KIb+[6s{Z)9?oIq0CX(oJ0)PWrtk1U ܄bx]!K<`s91u˓V偧x0m)IBJ6Bc"CaBG>r5zit C35)αsSJaGR2zr|7 {z=&+Si(͋ɗFOӪe۷P0f+a&~Xs̴|q>;~$ǦO6M221:sS*.|駑u*s MlqH9j6;Ѹ\-ZNGGtW._1&ߗM|l.=~6{Oѧ1Zmt+1`!˗8׾1[lQbGvMg0Ԟ0Mi)oGpɃC_۪֭t+Ts}_h 6U8ۼ۶ "(P ,=s.#2q(6EK  oA`C{:29ݟ^ڌ)T ,f|@<_Υ3/;9+4<˹̂$.U~M$%[GdžEsdPHM3I犟C- %7'ؼУ bIu"scfFXվL3RmPO.6s1Ӫ`/8" ZO=S&k@bx1c^^,5N';)ChǠOw"$/ [U NkmPI@,blpc+Y0&>DNfL&!HK+~G`48OclJ@+X{"zdN<jeۆT05ࡌIYjFtq hv-(H@T>Oԑix';m8G3b)-P:zZ(> z| *1TTvOB_5n[>&K!uV̑6'J[p%DI3qv?,(TWd4ml = ViSQ1fe;x,qRQİi\KqאOTzg8VT McjRWkRΕ(O]\ԩڏBg~@G"gg:b[c|GygfD%0ec RD:Efd[|ԭMk}Dn沵InTw|cpxqeJ0>pJYQdQeoMHK5o3# Nr]nEXT6g$+1i9Ca[!*SBAk@ tF>q2/R*s>!O6w~Rcm644)F.9 s[!}tbDӇvbW)hV[aB 6W*$62Ǥ3VI7o;M8L_!1VQ KO*sH5yqTzdqluߍkT/J$xtLJ\;qZQUg~Mo.lkcMεaii5u_ skG9LNe!A2d NvTTfh u"H<{qQ d(bNn^X: fG*(9 ^i}1[kfS6_hioq~`u$9sԬ\R ]R^Ś.]wPF':Qx[JY7ަΗO0#wBH\GWK[]ˆ8+@C $)oKw|gOka7d W}qtrY@$ 5nW;7>CgaL$}Az} +> 0w^\?gOjw`L9HZƛJ.ִҞNj3v*ā`WrtnZ p јJ澟}E!;h_ebH8| 6 s T]]"`f/$nkeH)*t?CV8 H1PL9||-Z|Ŵl`aEe1\[!H[vNl28}f.˽s9Py]`QX)h. ??Ŀ3+z`BJZ b2M?K} 5cC*P~تe?AkpzJk⩪7f)W`zD!- xf!u5Oxȗ@e0Y૮o nm(1F*u/#H+PT} O֭CjALQ"c-լ5a=:D}؈=cpzřmm3<`}@:=^n}뢫ۦ;I^* KExH~3 }Iœ!vzJp|mV"5'=-GdOgDbtzj5>"`/ L