[ubuntu/oneiric-security] libapache-mod-security 2.5.12-1+squeeze2build0.11.10.1 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Mon Apr 22 20:40:22 UTC 2013
libapache-mod-security (2.5.12-1+squeeze2build0.11.10.1) oneiric-security; urgency=low
* fake sync from Debian
libapache-mod-security (2.5.12-1+squeeze2) stable-security; urgency=high
* CVE-2013-1915: Fix for XXE attacks.
Applied backported patch from 2.7.3. (Closes: #704625)
Adds new SecXmlExternalEntity option which by default (Off) disables
the external entity load task executed by libxml2.
Date: 2013-04-22 16:30:18.726737+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/libapache-mod-security/2.5.12-1+squeeze2build0.11.10.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Oneiric-changes
mailing list