[SECURITY] [DLA 1211-1] libxml2 security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1211-1] libxml2 security update
From: Thorsten Alteholz <debian@alteholz.de>
Date: Mon, 18 Dec 2017 19:17:37 +0100 (CET)
Message-id: <[🔎] alpine.DEB.2.02.1712181911000.15863@jupiter.server.alteholz.net>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : libxml2
Version        : 2.8.0+dfsg1-7+wheezy12
CVE ID         : CVE-2017-15412


CVE-2017-15412
   It was detected that some function calls in the XPath extensions
   functions could result in memory corruption due to "use after free".


For Debian 7 "Wheezy", these problems have been fixed in version
2.8.0+dfsg1-7+wheezy12.

We recommend that you upgrade your libxml2 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=OMiz
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1210-1] kildclient security update
Next by Date: [SECURITY] [DLA 1212-1] otrs2 security update
Previous by thread: [SECURITY] [DLA 1210-1] kildclient security update
Next by thread: [SECURITY] [DLA 1212-1] otrs2 security update
Index(es):
- Date
- Thread