[ubuntu/natty-security] expat 2.0.1-7ubuntu3.11.04.1 (Accepted)

Tyler Hicks tyhicks at canonical.com
Fri Aug 10 03:34:41 UTC 2012 

expat (2.0.1-7ubuntu3.11.04.1) natty-security; urgency=low

  * SECURITY UPDATE: Denial of service via hash collisions
    - debian/patches/577777_CVE_2012_0876.dpatch: Add random salt value to
      hash inputs. Based on upstream patch.
    - CVE-2012-0876
  * SECURITY UPDATE: Denial of service via memory leak
    - debian/patches/588888_CVE_2012_1148.dpatch: Properly reallocate memory.
      Based on upstream patch.
    - CVE-2012-1148

Date: Thu, 09 Aug 2012 11:53:57 -0700
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/expat/2.0.1-7ubuntu3.11.04.1
-------------- next part --------------
Format: 1.8
Date: Thu, 09 Aug 2012 11:53:57 -0700
Source: expat
Binary: lib64expat1-dev lib64expat1 libexpat1-dev libexpat1 libexpat1-udeb expat
Architecture: source
Version: 2.0.1-7ubuntu3.11.04.1
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description: 
 expat      - XML parsing C library - example application
 lib64expat1 - XML parsing C library - runtime library (64bit)
 lib64expat1-dev - XML parsing C library - development kit (64bit)
 libexpat1  - XML parsing C library - runtime library
 libexpat1-dev - XML parsing C library - development kit
 libexpat1-udeb - XML parsing C library - runtime library (udeb)
Changes: 
 expat (2.0.1-7ubuntu3.11.04.1) natty-security; urgency=low
 .
   * SECURITY UPDATE: Denial of service via hash collisions
     - debian/patches/577777_CVE_2012_0876.dpatch: Add random salt value to
       hash inputs. Based on upstream patch.
     - CVE-2012-0876
   * SECURITY UPDATE: Denial of service via memory leak
     - debian/patches/588888_CVE_2012_1148.dpatch: Properly reallocate memory.
       Based on upstream patch.
     - CVE-2012-1148
Checksums-Sha1: 
 a10aa4a0f784e3db6820d40a7866aca42e6a4d92 2239 expat_2.0.1-7ubuntu3.11.04.1.dsc
 a8b49abc6c1b09403ce2ccbc72c99b3168339956 145543 expat_2.0.1-7ubuntu3.11.04.1.diff.gz
Checksums-Sha256: 
 f50c537c665caa2143f888188c7e1825f49030a38a5cf0620a91feb77be9d659 2239 expat_2.0.1-7ubuntu3.11.04.1.dsc
 251b61c33f55698cd76da86a37464fb5187330b3642cf07e77cfa52d8651451c 145543 expat_2.0.1-7ubuntu3.11.04.1.diff.gz
Files: 
 459102f2326a87a7e1350c8151025ae3 2239 text optional expat_2.0.1-7ubuntu3.11.04.1.dsc
 268f122ec74f7e2dd9bb80b0112e7272 145543 text optional expat_2.0.1-7ubuntu3.11.04.1.diff.gz
Original-Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>

More information about the Natty-changes mailing list