heap overflow while processing InclusiveNamespace PrefixList
Bug #1192874 reported by
John Cooper
This bug affects 3 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
xml-security-c (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Precise |
Fix Released
|
Undecided
|
Unassigned | ||
Quantal |
Fix Released
|
Undecided
|
Unassigned | ||
Raring |
Fix Released
|
Undecided
|
Unassigned | ||
Saucy |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
There is a heap overflow in the library.
CVE-2013-2156: Apache Santuario XML Security for C++ contains heap
overflow while processing InclusiveNamespace PrefixList
Patches avaialbe at
information type: | Private Security → Public Security |
To post a comment you must log in.
Looks like Debian already have the patch in unstable:
http:// packages. qa.debian. org/x/xml- security- c/news/ 20130618T054808 Z.html