[ubuntu/xenial-security] dom4j 1.6.1+dfsg.3-2ubuntu1.1 (Accepted)
Avital Ostromich
avital.ostromich at canonical.com
Tue Oct 13 23:15:09 UTC 2020
dom4j (1.6.1+dfsg.3-2ubuntu1.1) xenial-security; urgency=medium
* SECURITY UPDATE: XEE attack
- debian/patches/CVE-2020-10683.patch: set more secure defaults for
SAXReader in src/java/org/dom4j/DocumentHelper.java
- CVE-2020-10683
Date: 2020-10-08 15:10:16.504191+00:00
Changed-By: Avital Ostromich <avital.ostromich at canonical.com>
https://launchpad.net/ubuntu/+source/dom4j/1.6.1+dfsg.3-2ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list