[ubuntu/natty-security] raptor 1.4.21-2ubuntu0.1 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Mon Jun 18 15:34:28 UTC 2012 

raptor (1.4.21-2ubuntu0.1) natty-security; urgency=low

  * SECURITY UPDATE: Fix XML External Entity (XXE) attack
   - debian/patches/02-CVE-2012-0037.patch: Enforce entity loading policy in
     raptor_libxml_resolveEntity and raptor_libxml_getEntity by checking for
     file URIs and network URIs.
   - CVE-2012-0037

Date: Fri, 08 Jun 2012 11:27:50 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/raptor/1.4.21-2ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Fri, 08 Jun 2012 11:27:50 -0500
Source: raptor
Binary: libraptor1-dev libraptor1 raptor-utils libraptor1-doc libraptor1-dbg
Architecture: source
Version: 1.4.21-2ubuntu0.1
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 libraptor1 - Raptor RDF parser and serializer library
 libraptor1-dbg - Raptor RDF parser and serializer library - debugging symbols
 libraptor1-dev - Raptor RDF parser and serializer development libraries and header
 libraptor1-doc - Documentation for the Raptor RDF parser and serializer library
 raptor-utils - Raptor RDF parser and serializer utilities
Changes: 
 raptor (1.4.21-2ubuntu0.1) natty-security; urgency=low
 .
   * SECURITY UPDATE: Fix XML External Entity (XXE) attack
    - debian/patches/02-CVE-2012-0037.patch: Enforce entity loading policy in
      raptor_libxml_resolveEntity and raptor_libxml_getEntity by checking for
      file URIs and network URIs.
    - CVE-2012-0037
Checksums-Sha1: 
 f6bee192e046f9509d8c8b74b99823c12d5891c0 1911 raptor_1.4.21-2ubuntu0.1.dsc
 aeaf2022e3ebb9313b14e80d005d3097187a80c6 9696 raptor_1.4.21-2ubuntu0.1.diff.gz
Checksums-Sha256: 
 30f419865da683bd2e54e58f5232694991fcda84739a4c9c36897c04413b2d52 1911 raptor_1.4.21-2ubuntu0.1.dsc
 b27e38ba9d4dce3c95b220c754ed82b64dc5eae7346ebbd63db785dd05f67770 9696 raptor_1.4.21-2ubuntu0.1.diff.gz
Files: 
 3557e4b4d838b395b7fbf7993a366b83 1911 devel optional raptor_1.4.21-2ubuntu0.1.dsc
 01eedd98414eabd211f5234f9dddecf4 9696 devel optional raptor_1.4.21-2ubuntu0.1.diff.gz
Original-Maintainer: Dave Beckett <dajobe at debian.org>

More information about the Natty-changes mailing list