[ubuntu/dapper-security] expat (delayed), expat 1.95.8-3ubuntu0.1 (Accepted)

[Ubuntu Installer]

expat (1.95.8-3ubuntu0.1) dapper-security; urgency=low

  * SECURITY UPDATE: fix DoS via malformed XML
    - update lib/xmltok_impl.c to not access beyond end of input string
    - 
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?r1=1.15&r2=1.13
    - CVE-2009-2625
  * SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
    - update lib/xmlparse.c to properly recognize the end of a token
    - 
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?r1=1.164&r2=1.166
    - 
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?view=log#rev1.166
    - 
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?view=log#rev1.165
    - CVE-2009-3560

Date: Tue, 19 Jan 2010 11:46:25 -0600
Changed-By: Jamie Strandboge <ja...@ubuntu.com>
Maintainer: Debian XML/SGML Group <debian-xml-sgml-p...@lists.alioth.debian.org>
https://launchpad.net/ubuntu/dapper/+source/expat/1.95.8-3ubuntu0.1

Format: 1.7
Date: Tue, 19 Jan 2010 11:46:25 -0600
Source: expat
Binary: libexpat1 libexpat1-dev expat libexpat1-udeb
Architecture: source
Version: 1.95.8-3ubuntu0.1
Distribution: dapper-security
Urgency: low
Maintainer: Debian XML/SGML Group <debian-xml-sgml-p...@lists.alioth.debian.org>
Changed-By: Jamie Strandboge <ja...@ubuntu.com>
Description: 
 expat      - XML parsing C library - example application
 libexpat1  - XML parsing C library - runtime library
 libexpat1-dev - XML parsing C library - development kit
 libexpat1-udeb - XML parsing C library - runtime library
Changes: 
 expat (1.95.8-3ubuntu0.1) dapper-security; urgency=low
 .
   * SECURITY UPDATE: fix DoS via malformed XML
     - update lib/xmltok_impl.c to not access beyond end of input string
     - 
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?r1=1.15&r2=1.13
     - CVE-2009-2625
   * SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
     - update lib/xmlparse.c to properly recognize the end of a token
     - 
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?r1=1.164&r2=1.166
     - 
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?view=log#rev1.166
     - 
http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?view=log#rev1.165
     - CVE-2009-3560
Files: 
 4512ac579f0181d5672e81d0e9b2a0d2 708 text optional expat_1.95.8-3ubuntu0.1.dsc
 312850010de961efb5769ee96ddbde6f 80320 text optional 
expat_1.95.8-3ubuntu0.1.diff.gz

-- 
dapper-changes mailing list
dapper-changes@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/dapper-changes