[ubuntu/impish-security] c3p0 0.9.1.2-10ubuntu0.21.10.1 (Accepted)
Spyros Seimenis
spyros.seimenis at canonical.com
Tue Feb 22 08:52:27 UTC 2022
c3p0 (0.9.1.2-10ubuntu0.21.10.1) impish-security; urgency=medium
* SECURITY UPDATE: Billion laughs attacks in XML parsing
- debian/patches/CVE-2019-5427.patch: Enable a wide variety of
restrictions on XML parsing by default
- CVE-2019-5427
Date: 2022-02-21 13:53:10.185606+00:00
Changed-By: Spyros Seimenis <spyros.seimenis at canonical.com>
https://launchpad.net/ubuntu/+source/c3p0/0.9.1.2-10ubuntu0.21.10.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the impish-changes
mailing list