[SECURITY] [DLA 334-1] libxml2 security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 334-1] libxml2 security update
From: Thorsten Alteholz <debian@alteholz.de>
Date: Sun, 25 Oct 2015 18:14:12 +0100 (CET)
Message-id: <[🔎] alpine.DEB.2.02.1510251808370.20784@jupiter.server.alteholz.net>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : libxml2
Version        : 2.7.8.dfsg-2+squeeze13
CVE ID         : CVE-2015-7942
Debian Bug     : 802827

Crafted xml causes out of bound memory access. heap-buffer-overflow inxmlParseConditionalSections.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=NNz2
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 333-1] cakephp security update
Next by Date: [SECURITY] [DLA 334-2] libxml2 regression update
Previous by thread: [SECURITY] [DLA 333-1] cakephp security update
Next by thread: [SECURITY] [DLA 334-2] libxml2 regression update
Index(es):
- Date
- Thread