[ubuntu/focal-updates] tinyxml 2.6.2-4+deb10u2build0.20.04.1 (Accepted)

Ubuntu Archive Robot ubuntu-archive-robot at lists.canonical.com
Tue Jan 30 09:58:13 UTC 2024


tinyxml (2.6.2-4+deb10u2build0.20.04.1) focal-security; urgency=medium

  * fake sync from Debian

tinyxml (2.6.2-4+deb10u2) buster-security; urgency=high

  * Non-maintainer upload by the LTS Security Team.
  * Fix CVE-2023-34194 / CVE-2023-40462: Reachable assertion (and application
    exit) via a crafted XML document with a '\0' located after whitespace.
    (Closes: #1059315)

Date: 2024-01-29 13:49:13.835718+00:00
Changed-By: Giampaolo Fresi Roglia <giampaolo.fresi.roglia at canonical.com>
Maintainer: Felix Geyer <debfx-pkg at fobos.de>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/tinyxml/2.6.2-4+deb10u2build0.20.04.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Focal-changes mailing list