[ubuntu/precise] expat 2.0.1-7.2ubuntu1 (Accepted)

Matthias Klose doko at ubuntu.com
Thu Mar 15 01:25:21 UTC 2012 

expat (2.0.1-7.2ubuntu1) precise; urgency=low

  * CVE-2012-0876: Randomize hashes of xml attributes in the expat library
    to avoid a denial of service due to hash collisions.  Patch by David
    Malcolm with some modifications by the expat project.

Date: Thu, 15 Mar 2012 02:13:54 +0100
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>
https://launchpad.net/ubuntu/precise/+source/expat/2.0.1-7.2ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 15 Mar 2012 02:13:54 +0100
Source: expat
Binary: lib64expat1-dev lib64expat1 libexpat1-dev libexpat1 libexpat1-udeb expat
Architecture: source
Version: 2.0.1-7.2ubuntu1
Distribution: precise
Urgency: low
Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description: 
 expat      - XML parsing C library - example application
 lib64expat1 - XML parsing C library - runtime library (64bit)
 lib64expat1-dev - XML parsing C library - development kit (64bit)
 libexpat1  - XML parsing C library - runtime library
 libexpat1-dev - XML parsing C library - development kit
 libexpat1-udeb - XML parsing C library - runtime library (udeb)
Changes: 
 expat (2.0.1-7.2ubuntu1) precise; urgency=low
 .
   * CVE-2012-0876: Randomize hashes of xml attributes in the expat library
     to avoid a denial of service due to hash collisions.  Patch by David
     Malcolm with some modifications by the expat project.
Checksums-Sha1: 
 db8db3fd9f25705598aa7b7609212f61de5489ea 1695 expat_2.0.1-7.2ubuntu1.dsc
 600f932ac46aec0fc06a60ce491964f24aa65cf4 141440 expat_2.0.1-7.2ubuntu1.diff.gz
Checksums-Sha256: 
 c8697307ac802501f8e32478092914baeab1dd0f24006ae5c685232abf41db26 1695 expat_2.0.1-7.2ubuntu1.dsc
 ee35852c2604e0559c8731e7869c9782963b60cf7888580014efa5548be3aa7f 141440 expat_2.0.1-7.2ubuntu1.diff.gz
Files: 
 a0de448c976ca99060a018bd1dde1665 1695 text optional expat_2.0.1-7.2ubuntu1.dsc
 f7bfe6d4a481acabb1bbc880a2a4cd66 141440 text optional expat_2.0.1-7.2ubuntu1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk9hQ84ACgkQStlRaw+TLJzCrQCgjyXM15NqZnRV37y5HTi4Zd8k
FH8An3FDtMk/HOEzmL24rBCX+XW9L5w9
=YNsH
-----END PGP SIGNATURE-----

More information about the Precise-changes mailing list