[xml/sgml-pkgs] Bug#326982: marked as done (bad xmlFree in libxslt Python accessor functions - memory corruption, segfaults)

Debian Bug Tracking System owner at bugs.debian.org
Sat Dec 3 09:33:08 UTC 2005 

Your message dated Sat, 03 Dec 2005 01:17:06 -0800
with message-id <E1EiTVy-0000OE-C2 at spohr.debian.org>
and subject line Bug#326982: fixed in libxslt 1.1.15-2
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 6 Sep 2005 23:31:24 +0000
>From josh at freedesktop.org Tue Sep 06 16:31:24 2005
Return-path: <josh at freedesktop.org>
Received: from vms048pub.verizon.net [206.46.252.48] 
	by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
	id 1ECmuS-0003oD-00; Tue, 06 Sep 2005 16:31:24 -0700
Received: from [192.168.1.7] ([71.111.100.173])
 by vms048.mailsrvcs.net (Sun Java System Messaging Server 6.2 HotFix 0.04
 (built Dec 24 2004)) with ESMTPA id <0IMF00MRT5CA37M1 at vms048.mailsrvcs.net> for
 submit at bugs.debian.org; Tue, 06 Sep 2005 18:31:23 -0500 (CDT)
Date: Tue, 06 Sep 2005 16:31:20 -0700
From: Josh Triplett <josh at freedesktop.org>
Subject: bad xmlFree in libxslt Python accessor functions - memory corruption,
 segfaults
To: Debian Bug Tracking System <submit at bugs.debian.org>
Message-id: <431E26C8.2020907 at freedesktop.org>
MIME-version: 1.0
Content-type: multipart/signed; micalg=pgp-sha1;
 protocol="application/pgp-signature";
 boundary=------------enigE5FF86ADED08520BB337D5AC
X-Accept-Language: en-us, en
X-Enigmail-Version: 0.92.0.0
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.10) Gecko/20050802
 Debian/1.7.10-1
Delivered-To: submit at bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-2.0 required=4.0 tests=BAYES_01 autolearn=no 
	version=2.60-bugs.debian.org_2005_01_02

This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enigE5FF86ADED08520BB337D5AC
Content-Type: multipart/mixed;
 boundary="------------070703030801070600030601"

This is a multi-part message in MIME format.
--------------070703030801070600030601
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

Package: python-libxslt1
Version: 1.1.14-1
Severity: important
Tags: patch

Several Python accessor functions for string fields of libxslt
structures call libxml_xmlCharPtrWrap to wrap the 'xmlChar *' in a
Python string object, which calls xmlFree on the field after creating
the Python string from it; this leads to memory corruption and
segfaults.  The attached patch modifies the API description XML file to
mark these return values as "const xmlChar *" rather than "xmlChar *" so
that the generated accessor functions call libxml_constxmlCharPtrWrap
instead, which does not call xmlFree.

- Josh Triplett

--------------070703030801070600030601
Content-Type: text/x-patch;
 name="libxslt-python-accessors.patch"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
 filename="libxslt-python-accessors.patch"

diff -Naur libxslt-1.1.14.old/python/libxslt-python-api.xml libxslt-1.1.14/python/libxslt-python-api.xml
--- libxslt-1.1.14.old/python/libxslt-python-api.xml	2004-07-13 08:43:19.000000000 -0700
+++ libxslt-1.1.14/python/libxslt-python-api.xml	2005-09-06 15:24:56.000000000 -0700
@@ -141,22 +141,22 @@
     </function>
     <function name='xsltStylesheetGetMethod' file='python_accessor'>
       <info>Get the output method of a stylesheet</info>
-      <return type='xmlChar *' info="The output method" field="method"/>
+      <return type='const xmlChar *' info="The output method" field="method"/>
       <arg name='style' type='xsltStylesheetPtr' info='the stylesheet'/>
     </function>
     <function name='xsltStylesheetGetMethodURI' file='python_accessor'>
       <info>Get the output method URI of a stylesheet</info>
-      <return type='xmlChar *' info="The output method URI" field="methodURI"/>
+      <return type='const xmlChar *' info="The output method URI" field="methodURI"/>
       <arg name='style' type='xsltStylesheetPtr' info='the stylesheet'/>
     </function>
     <function name='xsltStylesheetGetVersion' file='python_accessor'>
       <info>Get the output version of a stylesheet</info>
-      <return type='xmlChar *' info="The output version" field="version"/>
+      <return type='const xmlChar *' info="The output version" field="version"/>
       <arg name='style' type='xsltStylesheetPtr' info='the stylesheet'/>
     </function>
     <function name='xsltStylesheetGetEncoding' file='python_accessor'>
       <info>Get the output encoding of a stylesheet</info>
-      <return type='xmlChar *' info="The output encoding" field="encoding"/>
+      <return type='const xmlChar *' info="The output encoding" field="encoding"/>
       <arg name='style' type='xsltStylesheetPtr' info='the stylesheet'/>
     </function>
     <function name='xsltStylesheetGetDoctypePublic' file='python_accessor'>

--------------070703030801070600030601--

--------------enigE5FF86ADED08520BB337D5AC
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Debian - http://enigmail.mozdev.org

iD8DBQFDHibIGJuZRtD+evsRAoxZAKCPMnQ8Wka7JfChY31FV+Y/ThrPFQCgqGRB
D/wheOHIziIUsTUUPoDoXZ4=
=tk1t
-----END PGP SIGNATURE-----

--------------enigE5FF86ADED08520BB337D5AC--

---------------------------------------
Received: (at 326982-close) by bugs.debian.org; 3 Dec 2005 09:21:08 +0000
>From katie at ftp-master.debian.org Sat Dec 03 01:21:08 2005
Return-path: <katie at ftp-master.debian.org>
Received: from katie by spohr.debian.org with local (Exim 4.50)
	id 1EiTVy-0000OE-C2; Sat, 03 Dec 2005 01:17:06 -0800
From: Mike Hommey <glandium at debian.org>
To: 326982-close at bugs.debian.org
X-Katie: $Revision: 1.60 $
Subject: Bug#326982: fixed in libxslt 1.1.15-2
Message-Id: <E1EiTVy-0000OE-C2 at spohr.debian.org>
Sender: Archive Administrator <katie at ftp-master.debian.org>
Date: Sat, 03 Dec 2005 01:17:06 -0800
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER 
	autolearn=no version=2.60-bugs.debian.org_2005_01_02

Source: libxslt
Source-Version: 1.1.15-2

We believe that the bug you reported is fixed in the latest version of
libxslt, which is due to be installed in the Debian FTP archive:

libxslt1-dev_1.1.15-2_i386.deb
  to pool/main/libx/libxslt/libxslt1-dev_1.1.15-2_i386.deb
libxslt1.1_1.1.15-2_i386.deb
  to pool/main/libx/libxslt/libxslt1.1_1.1.15-2_i386.deb
libxslt_1.1.15-2.diff.gz
  to pool/main/libx/libxslt/libxslt_1.1.15-2.diff.gz
libxslt_1.1.15-2.dsc
  to pool/main/libx/libxslt/libxslt_1.1.15-2.dsc
python-libxslt1_1.1.15-2_all.deb
  to pool/main/libx/libxslt/python-libxslt1_1.1.15-2_all.deb
python2.2-libxslt1_1.1.15-2_i386.deb
  to pool/main/libx/libxslt/python2.2-libxslt1_1.1.15-2_i386.deb
python2.3-libxslt1_1.1.15-2_i386.deb
  to pool/main/libx/libxslt/python2.3-libxslt1_1.1.15-2_i386.deb
python2.4-libxslt1_1.1.15-2_i386.deb
  to pool/main/libx/libxslt/python2.4-libxslt1_1.1.15-2_i386.deb
xsltproc_1.1.15-2_i386.deb
  to pool/main/libx/libxslt/xsltproc_1.1.15-2_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 326982 at bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Mike Hommey <glandium at debian.org> (supplier of updated libxslt package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster at debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sat,  3 Dec 2005 09:37:43 +0100
Source: libxslt
Binary: xsltproc python2.2-libxslt1 python2.4-libxslt1 python2.3-libxslt1 python-libxslt1 libxslt1.1 libxslt1-dev
Architecture: source i386 all
Version: 1.1.15-2
Distribution: unstable
Urgency: low
Maintainer: Mike Hommey <glandium at debian.org>
Changed-By: Mike Hommey <glandium at debian.org>
Description: 
 libxslt1-dev - XSLT processing library - development kit
 libxslt1.1 - XSLT processing library - runtime library
 python-libxslt1 - Python bindings for libxslt1
 python2.2-libxslt1 - Python 2.2 bindings for libxslt1
 python2.3-libxslt1 - Python 2.3 bindings for libxslt1
 python2.4-libxslt1 - Python 2.4 bindings for libxslt1
 xsltproc   - XSLT command line processor
Closes: 326982 334784
Changes: 
 libxslt (1.1.15-2) unstable; urgency=low
 .
   * autogen.sh: Use automake1.9, as upstream does, and run it.
   * python/libxslt-python-api.xml: Fixed some Python accessor functions.
     Closes: #326982.
   * libxslt/pattern.c: Fixed problem in internal XPath compilation
     of patterns including variables. Closes: #334784.
   * debian/control: Bumped Standards-Version to 3.6.2.1. No changes needed.
Files: 
 8336377d30a99e957ecfbbc42bb9cc07 979 text optional libxslt_1.1.15-2.dsc
 5227b9f3a8e0b76af95ca32698083377 59337 text optional libxslt_1.1.15-2.diff.gz
 be32e11227ab8ebd074e38856a4e132e 7780 python optional python-libxslt1_1.1.15-2_all.deb
 90f54c0b54384386a84a6da61b574ccc 522504 libdevel optional libxslt1-dev_1.1.15-2_i386.deb
 3b7b89b7c95290f4cd2c8594f3dc7265 196820 libs optional libxslt1.1_1.1.15-2_i386.deb
 5f466bafdf21cf75f9f95ca4b02f3ba1 95102 text optional xsltproc_1.1.15-2_i386.deb
 d39565b4145dbd8688df574a8c0283f6 114316 python optional python2.4-libxslt1_1.1.15-2_i386.deb
 2b3648ca33094ff2020f59af72f920c4 114312 python optional python2.3-libxslt1_1.1.15-2_i386.deb
 9bac1cd1d064f58c56504b4d50229217 114290 python optional python2.2-libxslt1_1.1.15-2_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDkVqg3kvaLFT9KlgRAqICAJwNFg9CfrCQzG7XuDDnkKzt1yUj2gCdEJG6
MleDITPX+2qY4ZtTr7p42Bk=
=CAEp
-----END PGP SIGNATURE-----

More information about the debian-xml-sgml-pkgs mailing list