[xmlsec] New xmlsec 1.2.17 release
Aleksey Sanin
aleksey at aleksey.com
Fri Apr 1 07:26:00 PDT 2011
forbid any access to file system as it is done in the following
>> commits:
>>
>>
>> http://git.gnome.org/browse/xmlsec/commit/?id=2d5eddcc4163ea050cf3a3a1a25452bb5124f780
>> http://trac.webkit.org/changeset/79159
> in the commit the problem is fixed by using xsltSetDefaultSecurityPrefs.
> this sets the security prefs for the whole process (a global variable).
> ....
These are examples of how to fix the problem in the aplicaiton. The actual
change in xmlsec library itself is here
http://git.gnome.org/browse/xmlsec/commit/?id=35eaacde6093d6711339754fc2146341b8b9f5fa
Aleksey
More information about the xmlsec
mailing list