tags 460292 + security severity 460292 grave retitle 460292 libxml2: CVE-2007-6284 denial of service via crafted UTF-8 sequence thanks
Hi Pascal, * Pascal Volk <[EMAIL PROTECTED]> [2008-01-13 14:33]: > Am 12.01.2008 04:31 schrieb Nico Golde: > > > > Is there any service using libxml2? If not I would consider > > this a normal bug rather than a security issue. > > There are services that use libxml2 indirectly. For example apache2 with > libapache2-mod-php5, php5-cgi (with php5-xsl and/or php5-xmlrpc), > libapache2-modxslt, libapache2-mod-proxy-html. > icecast2 depends directly on libxml2. Ok thank you. Adjusting bug status. This is CVE-2007-6284, please mention this CVE id in the changelog if you close this bug. Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgp185OFKT4sQ.pgp
Description: PGP signature
