-
Committer:
Bazaar Package Importer
-
Author(s):
Jamie Strandboge
-
Date:
2010-01-20 15:29:00 UTC
-
Revision ID:
james.westby@ubuntu.com-20100120152900-01t9xolp2is0ub6c
Tags: 2.5.4-1ubuntu8
* SECURITY UPDATE: fix DoS via malformed XML
- debian/patches/CVE-2009-3720.dpatch: update Modules/expat/xmltok_impl.c
to not access beyond end of input string
- CVE-2009-3720
* SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
- debian/patches/CVE-2009-3560.dpatch: update Modules/expat/xmlparse.c to
properly recognize the end of a token
- CVE-2009-3560