Thanks for the patch! Unfortunately, it does not follow
https://wiki.ubuntu.com/SecurityTeam/UpdatePreparation#Packaging -
specifically it updates the package to 1.6.1-6. Instead a patch should
be developed that only addresses the security issue. Please see the
above wiki page for more information on how to prepare, test and submit
a fix for this issue.
Unsubscribing ubuntu-security-sponsors for now. When an updated debdirr
is provided, please feel free to resubscribe. Thanks again.
** Changed in: xml-security-c (Ubuntu Precise)
Status: Confirmed => Triaged
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1192874
Title:
heap overflow while processing InclusiveNamespace PrefixList
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/xml-security-c/+bug/1192874/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
