Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=4df7014b287432594b9c51dd0f6699da5bdd8a4a
commit 4df7014b287432594b9c51dd0f6699da5bdd8a4a Author: kikadf <[email protected]> Date: Sat May 17 11:44:03 2014 +0200 Add FSA for libxml2 diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml index 406df82..a99744d 100644 --- a/frugalware/xml/security.xml +++ b/frugalware/xml/security.xml @@ -39,6 +39,21 @@ <fsas> <fsa> + <id>831</id> + <date>2014-05-16</date> + <author>kikadf</author> + <package>libxml2</package> + <vulnerable>2.8.0-1</vulnerable> + <unaffected>2.8.0-2arcturus1</unaffected> + <bts></bts> + <cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5134 + http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0339 + http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2877 + http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0191</cve> + <desc>It was discovered that libxml2 had a heap-based buffer underflow when parsing entities. It was discovered that libxml2 would load XML external entities by default. + It was discovered that libxml2 incorrectly handled documents that end abruptly. Daniel Berrange discovered that libxml2 would incorrectly perform entity substitution even when requested not to.</desc> + </fsa> + <fsa> <id>830</id> <date>2014-05-16</date> <author>kikadf</author> _______________________________________________ Frugalware-git mailing list [email protected] http://frugalware.org/mailman/listinfo/frugalware-git
