[ubuntu/focal-security] tinyxml 2.6.2-4+deb10u2build0.20.04.1 (Accepted)

Giampaolo Fresi Roglia giampaolo.fresi.roglia at canonical.com
Tue Jan 30 08:24:16 UTC 2024

tinyxml (2.6.2-4+deb10u2build0.20.04.1) focal-security; urgency=medium

  * fake sync from Debian

tinyxml (2.6.2-4+deb10u2) buster-security; urgency=high

  * Non-maintainer upload by the LTS Security Team.
  * Fix CVE-2023-34194 / CVE-2023-40462: Reachable assertion (and application
    exit) via a crafted XML document with a '\0' located after whitespace.
    (Closes: #1059315)

Date: 2024-01-29 13:49:13.835718+00:00
Changed-By: Giampaolo Fresi Roglia <giampaolo.fresi.roglia at canonical.com>
Maintainer: Felix Geyer <debfx-pkg at fobos.de>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Focal-changes mailing list