Linux repositories inspector

xmltooling-schemas - XMLTooling schemas and catalog

The XMLTooling library contains generic XML parsing and processing classes based on the Xerces-C DOM. It adds more powerful facilities for declaring element- and type-specific API and implementation classes, as well as signing and encryption support.
This package contains the XML schema files used by the XMLTooling library.
3.0.4
Debian iconDebian 10.0
Debian iconDebian 9.0
OpenSUSE iconOpenSUSE Tumbleweed
Ubuntu iconUbuntu 19.04
Ubuntu iconUbuntu 19.10
3.0.2
Ubuntu iconUbuntu 18.10
1.6.4
Debian iconDebian 9.0
OpenSUSE iconOpenSUSE Leap 15.0
OpenSUSE iconOpenSUSE Leap 15.1
Ubuntu iconUbuntu 18.04 LTS
1.6.0
Debian iconDebian 9.0
Ubuntu iconUbuntu 17.10
1.5.6
OpenSUSE iconOpenSUSE Leap 42.3
Ubuntu iconUbuntu 16.04 LTS
DistributionVersionSincePackageInstalledPackager
Debian iconDebian 10.0 buster/maindeb3.0.4-1Mar 1720.1 kiB70 kiB
Debian iconDebian 9.0 stretch/maindeb1.6.0-4+deb9u2Jun 1719.3 kiB69 kiB
Debian iconDebian 9.0 stretch-backports/maindeb3.0.4-1~bpo9+1Apr 0920.3 kiB70 kiB
Debian iconDebian 9.0 stretch-backports/maindeb1.6.4-1~bpo9+12018-03-0719.3 kiB69 kiB
OpenSUSE iconOpenSUSE Leap 15.0 ossrpm1.6.4-lp150.1.4Jan 1718.7 kiB35.1 kiBhttps://bugs.opensuse.org
OpenSUSE iconOpenSUSE Leap 15.0 update/ossrpm1.6.4-lp150.2.3.1Jun 1719.5 kiB35.1 kiBhttp://bugs.opensuse.org
OpenSUSE iconOpenSUSE Leap 15.1 ossrpm1.6.4-lp151.2.5Jan 2318.7 kiB35.1 kiBhttps://bugs.opensuse.org
OpenSUSE iconOpenSUSE Leap 42.3 ossrpm1.5.6-4.1Jan 1711.2 kiB35.1 kiBhttp://bugs.opensuse.org
OpenSUSE iconOpenSUSE Leap 42.3 update/ossrpm1.5.6-9.1Jan 2112 kiB35.1 kiBhttp://bugs.opensuse.org
OpenSUSE iconOpenSUSE Leap 42.3 update/ossrpm1.5.6-6.1Jan 2111.6 kiB35.1 kiBhttp://bugs.opensuse.org
OpenSUSE iconOpenSUSE Leap 42.3 update/ossrpm1.5.6-12.1Jun 1712.2 kiB35.1 kiBhttp://bugs.opensuse.org
OpenSUSE iconOpenSUSE Tumbleweed ossrpm3.0.4-1.410:5322.5 kiB35.1 kiBhttps://bugs.opensuse.org
Ubuntu iconUbuntu 17.10 artful/universedeb1.6.0-52017-11-1015.2 kiB68 kiB
Ubuntu iconUbuntu 18.04 LTS bionic/universedeb1.6.4-1ubuntu22018-03-0714.7 kiB69 kiB
Ubuntu iconUbuntu 18.04 LTS bionic-security/universedeb1.6.4-1ubuntu2.1Mar 2614.2 kiB69 kiB
Ubuntu iconUbuntu 18.04 LTS bionic-updates/universedeb1.6.4-1ubuntu2.1Mar 2614.2 kiB69 kiB
Ubuntu iconUbuntu 18.10 cosmic/universedeb3.0.2-1ubuntu1Jan 1415 kiB69 kiB
Ubuntu iconUbuntu 18.10 cosmic-security/universedeb3.0.2-1ubuntu1.1Mar 2614.6 kiB70 kiB
Ubuntu iconUbuntu 18.10 cosmic-updates/universedeb3.0.2-1ubuntu1.1Mar 2614.6 kiB70 kiB
Ubuntu iconUbuntu 19.04 disco/universedeb3.0.4-1Mar 1814.4 kiB70 kiB
Ubuntu iconUbuntu 19.10 eoan/universedeb3.0.4-1Jun 1714.4 kiB70 kiB
Ubuntu iconUbuntu 16.04 LTS xenial/universedeb1.5.6-22017-11-1014.3 kiB67 kiB
Ubuntu iconUbuntu 16.04 LTS xenial-security/universedeb1.5.6-2ubuntu0.3Mar 2614.8 kiB67 kiB
Ubuntu iconUbuntu 16.04 LTS xenial-updates/universedeb1.5.6-2ubuntu0.3Mar 2614.8 kiB67 kiB

Latest updates

OpenSUSE Tumbleweed icon

OpenSUSE Tumbleweed oss: Updated from 3.0.4-1.3 to 3.0.4-1.4

10:53
  • update to 3.0.4
    • [CPPXT-143] - Crash due to uncaught DOMException
      bsc#1129537 [CVE-2019-9628]
    • [CPPXT-144] - CURL SOAP Transport: unset Expect Header
Debian 9.0 icon

Debian 9.0 stretch-backports/main: Version 3.0.4-1~bpo9+1 reintroduced

16:58
  • Rebuild for stretch-backports.
  • [89e1b1e] Require Xerces-C 3.2
  • [b93628c] Stay with OpenSSL 1.0.
    Since libcurl in stretch is built against OpenSSL 1.0, we have to use the same version.
    Revert "Enable building with OpenSSL 1.1"
    This reverts commit cb6df2ad67dccc66884bcd86ba8d9eebdac58813.
Debian 9.0 icon

Debian 9.0 stretch-backports/main: Version 1.6.4-1~bpo9+1 reintroduced

16:58
  • Rebuild for stretch-backports.
Debian 9.0 icon

Debian 9.0 stretch-backports/main: Version 3.0.4-1~bpo9+1 removed

10:58
Debian 9.0 icon

Debian 9.0 stretch-backports/main: Version 1.6.4-1~bpo9+1 removed

10:58
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 3.0.4-1 reintroduced

Jun 20
  • [f185b26] New upstream security release: 3.0.4
    DSA-4407-1, CVE-2019-9628: uncaught exception on malformed XML declaration.
    Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.
    https://shibboleth.net/community/advisories/secadv_20190311.txt https://issues.shibboleth.net/jira/browse/CPPXT-143 Thanks to Scott Cantor (Closes: #924346)
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 3.0.4-1 removed

Jun 20
OpenSUSE Tumbleweed icon

OpenSUSE Tumbleweed oss: Updated from 3.0.4-1.1 to 3.0.4-1.3

Jun 17
  • update to 3.0.4
    • [CPPXT-143] - Crash due to uncaught DOMException
      bsc#1129537 [CVE-2019-9628]
    • [CPPXT-144] - CURL SOAP Transport: unset Expect Header
OpenSUSE Leap 42.3 icon

OpenSUSE Leap 42.3 update/oss: Updated from 1.5.6-9.1 to 1.5.6-12.1

Jun 17
  • add xmltooling-1.5.6-CVE-2019-9628.patch to fix a security bug where XML parser class fails to trap exceptions on malformed XML declaration [bsc#1129537] [CVE-2019-9628]
OpenSUSE Leap 15.0 icon

OpenSUSE Leap 15.0 update/oss: Version 1.6.4-lp150.2.3.1 introduced

Jun 17
  • add xmltooling-1.6.4-CVE-2019-9628.patch to fix a security bug where XML parser class fails to trap exceptions on malformed XML declaration [bsc#1129537] [CVE-2019-9628]
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 3.0.4-1 introduced

Jun 17
  • [f185b26] New upstream security release: 3.0.4
    DSA-4407-1, CVE-2019-9628: uncaught exception on malformed XML declaration.
    Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.
    https://shibboleth.net/community/advisories/secadv_20190311.txt https://issues.shibboleth.net/jira/browse/CPPXT-143 Thanks to Scott Cantor (Closes: #924346)
Debian 9.0 icon

Debian 9.0 stretch-proposed-updates/main: Version 1.6.0-4+deb9u2 removed

Jun 17
Debian 9.0 icon

Debian 9.0 stretch/main: Updated from 1.6.0-4+deb9u1 to 1.6.0-4+deb9u2

Jun 17
  • [2f0c065] New patch fixing CVE-2019-9628: uncaught exception on malformed XML declaration.
    Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.
    https://shibboleth.net/community/advisories/secadv_20190311.txt https://issues.shibboleth.net/jira/browse/CPPXT-143 Thanks to Scott Cantor (Closes: #924346)
Debian 9.0 icon

Debian 9.0 stretch-backports/main: Updated from 1.6.4-1~bpo9+1 to 3.0.4-1~bpo9+1

Apr 09
  • Rebuild for stretch-backports.
  • [89e1b1e] Require Xerces-C 3.2
  • [b93628c] Stay with OpenSSL 1.0.
    Since libcurl in stretch is built against OpenSSL 1.0, we have to use the same version.
    Revert "Enable building with OpenSSL 1.1"
    This reverts commit cb6df2ad67dccc66884bcd86ba8d9eebdac58813.
Debian 9.0 icon

Debian 9.0 stretch-proposed-updates/main: Version 1.6.0-4+deb9u2 introduced

Mar 29
  • [2f0c065] New patch fixing CVE-2019-9628: uncaught exception on malformed XML declaration.
    Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.
    https://shibboleth.net/community/advisories/secadv_20190311.txt https://issues.shibboleth.net/jira/browse/CPPXT-143 Thanks to Scott Cantor (Closes: #924346)
Ubuntu 16.04 LTS icon

Ubuntu 16.04 LTS xenial-updates/universe: Updated from 1.5.6-2ubuntu0.2 to 1.5.6-2ubuntu0.3

Mar 26
  • SECURITY UPDATE: uncaught exception on malformed XML declaration Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.
Ubuntu 18.04 LTS icon

Ubuntu 18.04 LTS bionic-updates/universe: Version 1.6.4-1ubuntu2.1 introduced

Mar 26
  • SECURITY UPDATE: uncaught exception on malformed XML declaration Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.
Ubuntu 18.10 icon

Ubuntu 18.10 cosmic-updates/universe: Version 3.0.2-1ubuntu1.1 introduced

Mar 26
  • SECURITY UPDATE: uncaught exception on malformed XML declaration Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.
Ubuntu 18.10 icon

Ubuntu 18.10 cosmic-security/universe: Version 3.0.2-1ubuntu1.1 introduced

Mar 26
  • SECURITY UPDATE: uncaught exception on malformed XML declaration Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.
Ubuntu 18.04 LTS icon

Ubuntu 18.04 LTS bionic-security/universe: Version 1.6.4-1ubuntu2.1 introduced

Mar 26
  • SECURITY UPDATE: uncaught exception on malformed XML declaration Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.
    This generally manifests as a crash in the calling code, which in the Service Provider software's case is usually the shibd daemon process, but can be Apache in some cases. Note that the crash occurs prior to evaluation of a message's authenticity, so can be exploited by an untrusted attacker.

Related packages

xmltooling - XML signing and encryption library
⇧ Top