Add security fixes for libxml2 to both books.

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@17357 af4574ff-66df-0310-9fd7-8a98e5e911e0
2025-02-03 14:47:17 +08:00 · 2016-05-15 04:19:39 +00:00 · 2016-05-15 04:19:39 +00:00 · 391c170dc9
commit 391c170dc9
parent 6fbeb06766
3 changed files with 21 additions and 3 deletions
--- a/general.ent
+++ b/general.ent
@ -1,12 +1,12 @@
 <!-- $LastChangedBy$ $Date$ -->

-<!ENTITY day          "12">                   <!-- Always 2 digits -->
+<!ENTITY day          "14">                   <!-- Always 2 digits -->
 <!ENTITY month        "05">                   <!-- Always 2 digits -->
 <!ENTITY year         "2016">
 <!ENTITY copyrightdate "2001-&year;">
 <!ENTITY copyholder   "The BLFS Development Team">
 <!ENTITY version      "&year;-&month;-&day;">
-<!ENTITY releasedate  "May 12th &year;">
+<!ENTITY releasedate  "May 14th &year;">
 <!ENTITY pubdate      "&year;-&month;-&day;"> <!-- metadata req. by TLDP -->
 <!ENTITY blfs-version "svn">                  <!-- svn|[release #] -->
 <!ENTITY lfs-version  "development">          <!-- x.y|development] -->
--- a/general/genlib/libxml2.xml
+++ b/general/genlib/libxml2.xml
@ -80,6 +80,12 @@
          enables <command>make check</command> to do complete testing.
        </para>
      </listitem>
+      <listitem>
+        <para>
+          Required patch:
+          <ulink url="&patch-root;/libxml2-&libxml2-version;-security_fixes-1.patch"/>
+        </para>
+      </listitem>
    </itemizedlist>

    <bridgehead renderas="sect3">libxml2 Dependencies</bridgehead>
@ -118,7 +124,8 @@
      commands:
    </para>

-<screen><userinput>./configure --prefix=/usr --disable-static --with-history &amp;&amp;
+<screen><userinput>patch -Np1 -i ../libxml2-&libxml2-version;-security_fixes-1.patch &amp;&amp;
+./configure --prefix=/usr --disable-static --with-history &amp;&amp;
 make</userinput></screen>

    <para>If you downloaded the testsuite, issue the following command:</para>
--- a/introduction/welcome/changelog.xml
+++ b/introduction/welcome/changelog.xml
@ -43,6 +43,17 @@
    </listitem>

 -->
+    <listitem>
+      <para>May 14th, 2016</para>
+      <itemizedlist>
+        <listitem>
+          <para>[renodr] - Add security patch for libxml2. This patch
+          fixes CVE-2016-3627 and CVE-2016-3705. Fixes
+          <ulink url="&blfs-ticket-root;7793">#7793</ulink>.</para>
+        </listitem>
+       </itemizedlist>
+    </listitem>
+
    <listitem>
      <para>May 13th, 2016</para>
      <itemizedlist>