Debian Security Advisory
DLA-0016-1 libxml2 -- LTS security update
- Date Reported:
- 19 Jul 2014
- Affected Packages:
- libxml2
- Vulnerable:
- Yes
- Security database references:
- In Mitre's CVE dictionary: CVE-2014-0191.
- More information:
-
Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution.
For Debian 6
Squeeze
, these issues have been fixed in libxml2 version 2.7.8.dfsg-2+squeeze9