Salvatore Bonaccorso <[email protected]> writes: > the following vulnerability was published for xml-security-c. It looks > the fix for CVE-2013-2154 introduced the possibility of a heap overflow.
> CVE-2013-2210[0]: > heap overflow during XPointer evaluation Yeah, thanks -- working on this today. I was going to work on it yesterday but then something else I was working on didn't go as planned. -- Russ Allbery ([email protected]) <http://www.eyrie.org/~eagle/> -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
