[ubuntu/lucid-security] libxml2 2.7.6.dfsg-1ubuntu1.4 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Mon Feb 27 23:34:08 UTC 2012 

libxml2 (2.7.6.dfsg-1ubuntu1.4) lucid-security; urgency=low

  * SECURITY UPDATE: add randomization to dictionaries with hash tables
    help prevent denial of service via hash algorithm collision
    - configure.in: lookup for rand, srand and time
    - dict.c: add randomization to dictionaries hash tables
    - hash.c: add randomization to normal hash tables
    - 8973d58b7498fa5100a876815476b81fd1a2412a
    - CVE-2012-0841

Date: Fri, 24 Feb 2012 15:17:42 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/libxml2/2.7.6.dfsg-1ubuntu1.4
-------------- next part --------------
Format: 1.8
Date: Fri, 24 Feb 2012 15:17:42 -0600
Source: libxml2
Binary: libxml2 libxml2-udeb libxml2-utils libxml2-dev libxml2-dbg libxml2-doc python-libxml2 python-libxml2-dbg
Architecture: source
Version: 2.7.6.dfsg-1ubuntu1.4
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 libxml2    - GNOME XML library
 libxml2-dbg - Debugging symbols for the GNOME XML library
 libxml2-dev - Development files for the GNOME XML library
 libxml2-doc - Documentation for the GNOME XML library
 libxml2-udeb - GNOME XML library (udeb)
 libxml2-utils - XML utilities
 python-libxml2 - Python bindings for the GNOME XML library
 python-libxml2-dbg - Python bindings for the GNOME XML library (debug extension)
Changes: 
 libxml2 (2.7.6.dfsg-1ubuntu1.4) lucid-security; urgency=low
 .
   * SECURITY UPDATE: add randomization to dictionaries with hash tables
     help prevent denial of service via hash algorithm collision
     - configure.in: lookup for rand, srand and time
     - dict.c: add randomization to dictionaries hash tables
     - hash.c: add randomization to normal hash tables
     - 8973d58b7498fa5100a876815476b81fd1a2412a
     - CVE-2012-0841
Checksums-Sha1: 
 5c5bd62d03d82b92e5b4bb6966cd0e85bea6aa69 2280 libxml2_2.7.6.dfsg-1ubuntu1.4.dsc
 fe24d9638d1d78a6761417af97a1640e77083c83 116743 libxml2_2.7.6.dfsg-1ubuntu1.4.diff.gz
Checksums-Sha256: 
 f4734fa1f05e93624c350fe756df68463cbec02affb7ac04958217fcc7058660 2280 libxml2_2.7.6.dfsg-1ubuntu1.4.dsc
 a1bfcde914f3b0d4fc012f6b7eb8248f4cf6e75c9b14db787ebc871891f36396 116743 libxml2_2.7.6.dfsg-1ubuntu1.4.diff.gz
Files: 
 28cb45bda0c77ee134a5d93a21159094 2280 libs optional libxml2_2.7.6.dfsg-1ubuntu1.4.dsc
 63bf1c54f507173066fa5a73ff7a49c0 116743 libs optional libxml2_2.7.6.dfsg-1ubuntu1.4.diff.gz
Original-Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>

More information about the Lucid-changes mailing list