[ubuntu/lucid-security] expat 2.0.1-7ubuntu1.1 (Accepted)

Tyler Hicks tyhicks at canonical.com
Fri Aug 10 03:34:45 UTC 2012


expat (2.0.1-7ubuntu1.1) lucid-security; urgency=low

  * SECURITY UPDATE: Denial of service via hash collisions
    - debian/patches/577777_CVE_2012_0876.dpatch: Add random salt value to
      hash inputs. Based on upstream patch.
    - CVE-2012-0876
  * SECURITY UPDATE: Denial of service via memory leak
    - debian/patches/588888_CVE_2012_1148.dpatch: Properly reallocate memory.
      Based on upstream patch.
    - CVE-2012-1148

Date: Thu, 09 Aug 2012 12:02:05 -0700
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/expat/2.0.1-7ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Thu, 09 Aug 2012 12:02:05 -0700
Source: expat
Binary: lib64expat1-dev lib64expat1 libexpat1-dev libexpat1 libexpat1-udeb expat
Architecture: source
Version: 2.0.1-7ubuntu1.1
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description: 
 expat      - XML parsing C library - example application
 lib64expat1 - XML parsing C library - runtime library (64bit)
 lib64expat1-dev - XML parsing C library - development kit (64bit)
 libexpat1  - XML parsing C library - runtime library
 libexpat1-dev - XML parsing C library - development kit
 libexpat1-udeb - XML parsing C library - runtime library (udeb)
Changes: 
 expat (2.0.1-7ubuntu1.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: Denial of service via hash collisions
     - debian/patches/577777_CVE_2012_0876.dpatch: Add random salt value to
       hash inputs. Based on upstream patch.
     - CVE-2012-0876
   * SECURITY UPDATE: Denial of service via memory leak
     - debian/patches/588888_CVE_2012_1148.dpatch: Properly reallocate memory.
       Based on upstream patch.
     - CVE-2012-1148
Checksums-Sha1: 
 782552f5e5d1f3a962b8c819847e695a662177f6 2173 expat_2.0.1-7ubuntu1.1.dsc
 10523ca71521390831f96280a14b81563cb77937 140199 expat_2.0.1-7ubuntu1.1.diff.gz
Checksums-Sha256: 
 36ec5f3dbea17742fe33fffd2782fb7b565483e8b403fdbe30806b070c22904b 2173 expat_2.0.1-7ubuntu1.1.dsc
 91d200098d542a60db42d743e13fb38fb2ed390a4f5aa49a08abc01abc689b64 140199 expat_2.0.1-7ubuntu1.1.diff.gz
Files: 
 403c8a169a035456c1d3664c14a6b3d4 2173 text optional expat_2.0.1-7ubuntu1.1.dsc
 80f6a8d60c79f7a91bdb9cec6390db5f 140199 text optional expat_2.0.1-7ubuntu1.1.diff.gz
Original-Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>


More information about the Lucid-changes mailing list