Debian-LTS alert DLA-281-1 (expat)
| From: | Thorsten Alteholz <debian@alteholz.de> | |
| To: | debian-lts-announce@lists.debian.org | |
| Subject: | [SECURITY] [DLA 281-1] expat security update | |
| Date: | Sat, 25 Jul 2015 16:17:27 +0200 (CEST) | |
| Message-ID: | <alpine.DEB.2.02.1507251616320.14566@jupiter.server.alteholz.net> |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Package : expat Version : 2.0.1-7+squeeze2 CVE ID : CVE-2015-1283 Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0, as used in Google Chrome before 44.0.2403.89 and other products, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted XML data, a related issue to CVE-2015-2716. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQJ8BAEBCgBmBQJVs5p3XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MjAxRkJGRkRCQkRFMDc4MjJFQUJCOTY5 NkZDQUMwRDM4N0I1ODQ3AAoJEJb8rA04e1hH9gAQAKpyrg3fJYgemJv+qdEEHBVQ FnX3+y+dCyoJ9Oom0g01GNhy9f95HubwzNhq1kjF9NWRey0t/I7kErK7+UlRJIAB o78gTWEWyspHQ+cSs3sQDKRQg8Pc2SCqfsqIBhh2Redp23NBiQfp1avrI/H+8sWl a6lMg/XMwuhjr9wGg+facBkapUghp3Kp4wtq5Pa2LSpT7m7uQCGD4pixkJZ5KyeL jaAlmPyDQFBxIe3z76Ik5URHjubygvqvasnr2psaUAZSWTKdZ8aViibr3q55E6Xp kJ732yPF1l3yHe/y0T8wVOP4EouL6Ro930Vq23EBdytqLwIJ7nOVikRYg+nexOac 1Kv/D+7cODadAnOMm1pszVk2gKBMbpzNZNHU8MHgKm3VoprmPF6miLJyJdporoMO +UqhtcQMnjSdh1SjGSRBnP+wlTUmlHLorhETdjMiXXUBQooUH592H06zokgl+P3L rL04B3rMQyM+lLfxV9FzuMJ7DSAwnV10xOl1XWBxumr8yjPERLHp0BxlUBJujP8N Z9uYgso/gtgkmryu3WwVFUnka8viHtYM/RGZSi2pygbjdTnNihuxUKi+2gWkbZAP nJkZBexusDl3UbmUjWvHtoQb7uOsFZzbbIW/xL4rMBwvuqMo/PfJxB1VE6dGo0Bu xGNR91H3MxkE2fI7cgVQ =o6Fd -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-lts-announce-request@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org Archive: https://lists.debian.org/alpine.DEB.2.02.1507251616320.14...
(Log in to post comments)