xerces-c-3.2.3-150300.3.6.1 RPM for aarch64

From OpenSuSE Leap 15.6 for aarch64

Xerces-C is a validating XML parser written in a portable subset of
C++. Xerces-C makes it easy to give your application the ability to
read and write XML data. A shared library is provided for parsing,
generating, manipulating, and validating XML documents. Xerces-C is
faithful to the XML 1.0 recommendation and associated standards ( DOM
1.0, DOM 2.0. SAX 1.0, SAX 2.0, Namespaces).

Provides

• xerces-c
• xerces-c(aarch-64)

Requires

• ld-linux-aarch64.so.1()(64bit)
• ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libgcc_s.so.1()(64bit)
• libgcc_s.so.1(GCC_3.0)(64bit)
• libstdc++.so.6()(64bit)
• libstdc++.so.6(CXXABI_1.3)(64bit)
• libstdc++.so.6(CXXABI_1.3.9)(64bit)
• libstdc++.so.6(GLIBCXX_3.4)(64bit)
• libstdc++.so.6(GLIBCXX_3.4.11)(64bit)
• libstdc++.so.6(GLIBCXX_3.4.9)(64bit)
• libxerces-c-3.2.so()(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsXz) <= 5.2-1

License

Apache-2.0

Changelog

* Fri Jan 19 2024 danilo.spinella@suse.com
  - Fix CVE-2018-1311 the XML parser contains a use-after-free triggered
    during the scanning of external DTDs potentially leading to DOS
    (bsc#1159552, CVE-2018-1311)
    * xerces-c-CVE-2018-1311.patch
* Sat Nov 18 2023 martin.schreiner@suse.com
  - Fix CVE-2023-37536: an integer overflow could potentially lead to
    out-of-bounds memory accesses (bsc#1216156).
    * Add xerces-c-CVE-2023-37536.patch.
* Sat Aug 15 2020 dmueller@suse.com
  - update to 3.2.3:
    * Custom HTTP headers missing with CURL NetAccessor
    * Type Confusion from DTDGrammar to SchemaGrammar
    * Patch to build with older GCC
    * fix build without pthread
    * XMLUTF8Transcoder: One multibyte UTF8 character is swallowed from the srcData when the resulting surrogate pair does not fit in toFill at the end
    * Postpone freeing the memory being used by CURL
    * Memory leak in ValueVectorOf
    * There is an error in the parameters of the ThreadTtest8 script in Apache xerces-c++ XML's tests/script
    * Incorrect symbolic links created for Linux static library and MacOS static and shared libraries
    * invalid windows version check for `onXPOrLater`
    * Handle surrogate pairs when reading a QName instead of ASSERTing
    * Janitor.hpp fails to compile on Solaris with Solaris Studio 12.2 and 12.4
    * undef symbols on HPUX for ArrayJanitor
    * DOM tests crash on AIX
    * XMLChar with NEED_TO_GEN_TABLE has 2 buffer out of bounds reads
    * Including Xerces_autoconf_config.hpp on Windows fails due to undefined ssize_t
* Wed Feb 12 2020 tchvatal@suse.com
  - Fixup rpmlint warning about installed Makefiles
* Tue Oct 02 2018 tchvatal@suse.com
  - Fix the libname dependency in devel pkg, typo after libname
    change
* Thu Sep 27 2018 tchvatal@suse.com
  - Version update to 3.2.2:
    * Fixes CVE-2017-12627 bsc#1083630
  - Remove the switch to disable SSE2 on i586, we support pentium4 as
    lowest and that has sse2
* Tue Jul 05 2016 tchvatal@suse.com
  - Version update to 3.1.4:
    * Fixes bnc#985860 CVE-2016-4463
    * xerces-c-CVE-2016-2099.patch removed as it was included upstream
* Mon Jun 27 2016 tchvatal@suse.com
  - Use pkgconfig requires
  - Disable "pretty" make to make it bit faster
  - Fix the selfobsoleting provides/requires to silence rpmlint
  - Use valid group for the docs
* Wed Jun 22 2016 jengelh@inai.de
  - Resolve rpmlint warnings of type "version-control-internal-file"
* Tue Jun 21 2016 zawel1@gmail.com
  - Update to 3.1.3
    * bug fixes
      + memcpy used on overlapping memory regions causes sanity test failure
      + Typo in XMLUni::fgUnknownURIName constant
      + Buffer overruns in prolog parsing and error handling
  - Dropped xerces-c-CVE-2016-0729.patch, fixed upstream.
* Thu Jun 16 2016 pjanouch@suse.de
  - added xerces-c-CVE-2016-2099.patch
    Exception handling mistake causing use after free
    (bsc#979208, CVE-2016-2099)
  - xerces-c-CVE-2016-0729.patch
    Fix for mishandling certain kinds of malformed input documents,
    resulting in buffer overlows during processing and error reporting.
    The overflows can manifest as a segmentation fault or as memory
    corruption during a parse operation. (bsc#966822, CVE-2016-0729)
* Mon Sep 28 2015 mpluskal@suse.com
  - Update to 3.1.2
    * bug fixes
      + Wrong temporary token type causes regex construction to fail
      + IGXMLScanner can fail to properly set its XSModel.
      + ICUTransService and IconvGNUransService CAN NOT deal with
      huge file.
      + xsi:type is not applied to root element
      + Problem in prefix parsing while creating Documnet, Element,
      Attributes on all platforms : Issue is in poolString creation
      + Whitespace in xsi:type
      + XMLUTF8Transcoder::transcodeTo fails with an exception when
      transcoding single characters that require 3 or more bytes as
      UTF8.
      + getWholeText leaks memory
      + Missing Libs.private in the xerces-c pkg-config file
      + XMLUni::fgXercesLoadSchema[] is not null-terminated in
      XMLUni.cpp
      + XMLURL.cpp: isHexDigit() and xlatHexDigit() accept whole
      alphabet
      + Xerces livelocks while reading external DTD if socket closes
      prematurely
      + Memory leak occurs if an exception is thrown in
      TranscodeToStr or TranscodeFromStr constructors
      + DOMDocumentImpl:: getPooledNString(const XMLCh *in,
      XMLSize_t n) returns incorrect string
      + OutOfMemoryException being thrown on creation of an LS
      Serializer
      + TranscodeToStr::transcode throws an exception when
      transcoding to UTF-8
      + ContentSpecNode::getMaxTotalRange: Operator precedence
      flaw
      + Add support for GNU/Hurd by using POSIX.1-2001 and
      POSIX.1-2008 functions
      + enumeration value ‘Loop’ not handled in switch
      src/SEnumVal/SEnumVal.cpp:
      + bit operation error in DOMNodeImpl::reverseTreeOrderBitPattern
      + build xerces-c with icu on mingw gcc 4.7.2
      + Xerces 3.1.1 Xerces.Lib fails to build with new Visual
      Studio 2012 Update 1 when v110_xp platform is chosen
      + Off-by-one error in TranscodeFromStr (with ICU)
      + Use icu, which is built with features
      + LocalFileFormatTarget leaks file handle
      + Curl Checking
      + Janitor<BinInputStream>::~Janitor() throws in unwind
      + String pooling in DOMDocumentImpl is unsafe, particularly on
      64-bit platforms
      + Code analysis revealed multiple potential NULL derefence
      conditions (currently unconfirmed)
      + XMLString sizeToText/binToText produce mixed case
      + Crash while parsing malformed documents
    * improvements
      + MacOSUnicodeConverter.cpp: ISO C++ forbids comparison
      between pointer of type 'void *' and pointer-to-function
      + Allow compiling Xerces-C using C++11 (especially Clang)
      + VS2012 Project
* Thu Feb 19 2015 mpluskal@suse.com
  - Use url for source
  - Add gpg signature
  - Use fdupes to remove duplicities in documentation
  - Split documentation into separate package
  - Use curl as netaccessor, necessary for proxy support

Files

/usr/bin/CreateDOMDocument
/usr/bin/DOMCount
/usr/bin/DOMPrint
/usr/bin/EnumVal
/usr/bin/MemParse
/usr/bin/PParse
/usr/bin/PSVIWriter
/usr/bin/Redirect
/usr/bin/SAX2Count
/usr/bin/SAX2Print
/usr/bin/SAXCount
/usr/bin/SAXPrint
/usr/bin/SCMPrint
/usr/bin/SEnumVal
/usr/bin/StdInParse
/usr/bin/XInclude
/usr/share/doc/packages/xerces-c
/usr/share/doc/packages/xerces-c/CREDITS
/usr/share/doc/packages/xerces-c/KEYS
/usr/share/doc/packages/xerces-c/NOTICE
/usr/share/doc/packages/xerces-c/README
/usr/share/licenses/xerces-c
/usr/share/licenses/xerces-c/LICENSE

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Jul 9 20:14:19 2024