[ubuntu/jaunty-security] expat (delayed), expat 2.0.1-4ubuntu0.9.04.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Jan 20 19:03:52 GMT 2010 

expat (2.0.1-4ubuntu0.9.04.1) jaunty-security; urgency=low

  * SECURITY UPDATE: fix DoS via malformed XML
    - update lib/xmltok_impl.c to not access beyond end of input string
    - CVE-2009-2625
  * SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
    - update lib/xmlparse.c to properly recognize the end of a token
    - CVE-2009-3560

Date: Tue, 19 Jan 2010 11:38:30 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/expat/2.0.1-4ubuntu0.9.04.1
-------------- next part --------------
Format: 1.8
Date: Tue, 19 Jan 2010 11:38:30 -0600
Source: expat
Binary: lib64expat1-dev lib64expat1 libexpat1-dev libexpat1 libexpat1-udeb expat
Architecture: source
Version: 2.0.1-4ubuntu0.9.04.1
Distribution: jaunty-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 expat      - XML parsing C library - example application
 lib64expat1 - XML parsing C library - runtime library (64bit)
 lib64expat1-dev - XML parsing C library - development kit (64bit)
 libexpat1  - XML parsing C library - runtime library
 libexpat1-dev - XML parsing C library - development kit
 libexpat1-udeb - XML parsing C library - runtime library (udeb)
Changes: 
 expat (2.0.1-4ubuntu0.9.04.1) jaunty-security; urgency=low
 .
   * SECURITY UPDATE: fix DoS via malformed XML
     - update lib/xmltok_impl.c to not access beyond end of input string
     - CVE-2009-2625
   * SECURITY UPDATE: fix DoS via malformed UTF-8 sequences
     - update lib/xmlparse.c to properly recognize the end of a token
     - CVE-2009-3560
Checksums-Sha1: 
 1bc02b267a9c49d0323de3b64d18fed2ddd5123e 1557 expat_2.0.1-4ubuntu0.9.04.1.dsc
 a940639d90e334b951052f2cee8e52ff59a0869b 133731 expat_2.0.1-4ubuntu0.9.04.1.diff.gz
Checksums-Sha256: 
 7e3c416fca500e5241492bc10786e3aa4d695fcf26991a86647014d299f5861d 1557 expat_2.0.1-4ubuntu0.9.04.1.dsc
 be382b36c9678e01c64de133c888dda0caa0522876cb779eacc69979af526b01 133731 expat_2.0.1-4ubuntu0.9.04.1.diff.gz
Files: 
 7d238dac4ef212c0e17221f2f0a77b05 1557 text optional expat_2.0.1-4ubuntu0.9.04.1.dsc
 13b62d2238f270aae08680a885410a6e 133731 text optional expat_2.0.1-4ubuntu0.9.04.1.diff.gz
Original-Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>

More information about the Jaunty-changes mailing list