libxslt (1.1.29-1ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: heap information leak
- debian/patches/0007-CVE-2017-4738.patch: check for empty
decimal separator.
- CVE-2017-4738
* SECURITY UPDATE: integer overflow in libxslt.
- debian/patches/0008-CVE-2017-5029.patch: limit buffer size in
xsltAddTextString to INT_MAX.
- CVE-2017-5029
Date: 2017-04-27 07:13:25.220321+00:00
Changed-By: Steve Beattie <[email protected]>
Signed-By: Ubuntu Archive Robot
<[email protected]>
https://launchpad.net/ubuntu/+source/libxslt/1.1.29-1ubuntu0.1
Sorry, changesfile not available.
--
Yakkety-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety-changes
