[ubuntu/precise] expat 2.0.1-7.2ubuntu1 (Accepted)
Matthias Klose
doko at ubuntu.com
Thu Mar 15 01:25:21 UTC 2012
expat (2.0.1-7.2ubuntu1) precise; urgency=low
* CVE-2012-0876: Randomize hashes of xml attributes in the expat library
to avoid a denial of service due to hash collisions. Patch by David
Malcolm with some modifications by the expat project.
Date: Thu, 15 Mar 2012 02:13:54 +0100
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>
https://launchpad.net/ubuntu/precise/+source/expat/2.0.1-7.2ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 15 Mar 2012 02:13:54 +0100
Source: expat
Binary: lib64expat1-dev lib64expat1 libexpat1-dev libexpat1 libexpat1-udeb expat
Architecture: source
Version: 2.0.1-7.2ubuntu1
Distribution: precise
Urgency: low
Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description:
expat - XML parsing C library - example application
lib64expat1 - XML parsing C library - runtime library (64bit)
lib64expat1-dev - XML parsing C library - development kit (64bit)
libexpat1 - XML parsing C library - runtime library
libexpat1-dev - XML parsing C library - development kit
libexpat1-udeb - XML parsing C library - runtime library (udeb)
Changes:
expat (2.0.1-7.2ubuntu1) precise; urgency=low
.
* CVE-2012-0876: Randomize hashes of xml attributes in the expat library
to avoid a denial of service due to hash collisions. Patch by David
Malcolm with some modifications by the expat project.
Checksums-Sha1:
db8db3fd9f25705598aa7b7609212f61de5489ea 1695 expat_2.0.1-7.2ubuntu1.dsc
600f932ac46aec0fc06a60ce491964f24aa65cf4 141440 expat_2.0.1-7.2ubuntu1.diff.gz
Checksums-Sha256:
c8697307ac802501f8e32478092914baeab1dd0f24006ae5c685232abf41db26 1695 expat_2.0.1-7.2ubuntu1.dsc
ee35852c2604e0559c8731e7869c9782963b60cf7888580014efa5548be3aa7f 141440 expat_2.0.1-7.2ubuntu1.diff.gz
Files:
a0de448c976ca99060a018bd1dde1665 1695 text optional expat_2.0.1-7.2ubuntu1.dsc
f7bfe6d4a481acabb1bbc880a2a4cd66 141440 text optional expat_2.0.1-7.2ubuntu1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iEYEARECAAYFAk9hQ84ACgkQStlRaw+TLJzCrQCgjyXM15NqZnRV37y5HTi4Zd8k
FH8An3FDtMk/HOEzmL24rBCX+XW9L5w9
=YNsH
-----END PGP SIGNATURE-----
More information about the Precise-changes
mailing list