Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker
Commits: a5496f2d by Tobias Frost at 2024-03-27T07:08:16+01:00 CVE-2013-0340/expat add upstream reference to PR fixing the issue. - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -581688,6 +581688,7 @@ CVE-2013-0340 (expat 2.1.0 and earlier does not properly handle entities expansi - expat 2.4.1-2 (unimportant; bug #1001864) NOTE: Expat provides API to mitigate expansion attacks, ultimately under control of the app using Expat NOTE: https://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-0340.html + NOTE: Fixed by https://github.com/libexpat/libexpat/pull/466 and https://github.com/libexpat/libexpat/pull/484 CVE-2013-0339 (libxml2 through 2.9.1 does not properly handle external entities expan ...) {DSA-2652-1} - libxml2 2.8.0+dfsg1-7+nmu1 (bug #702260) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5496f2dd9d757844bc337afbfa65ca9b0c549df -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a5496f2dd9d757844bc337afbfa65ca9b0c549df You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits