[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 467-1] xerces-c security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : xerces-c
Version        : 3.1.1-3+deb7u3
CVE ID         : CVE-2016-2099
Debian Bug     : 823863

XMLReader class can raise an exception if an invalid character is encountered, and the exception crosses stack frames in an unsafe way that causes a higher level exception handler to access an already-freed object.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=yHaE
-----END PGP SIGNATURE-----


Reply to: