[SECURITY] [DLA 172-1] libextlib-ruby security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 172-1] libextlib-ruby security update
From: Thorsten Alteholz <debian@alteholz.de>
Date: Sat, 14 Mar 2015 20:01:22 +0100 (CET)
Message-id: <[🔎] alpine.DEB.2.02.1503141945260.18096@jupiter.server.alteholz.net>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : libextlib-ruby
Version        : 0.9.13-2+deb6u1
CVE ID         : CVE-2013-0156
Debian Bug     : 697895

Import patches 633974b2759d9b92 and 4540e7102b803624 from uptream to
remove symbol and YAML coercion from the XML parser.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=STbS
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 171-1] libssh2 security update
Next by Date: [SECURITY] [DLA 173-1] putty security update
Previous by thread: [SECURITY] [DLA 171-1] libssh2 security update
Next by thread: [SECURITY] [DLA 173-1] putty security update
Index(es):
- Date
- Thread