[ubuntu/yakkety-security] libxslt 1.1.29-1ubuntu0.1 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Thu Apr 27 23:38:14 UTC 2017
libxslt (1.1.29-1ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: heap information leak
- debian/patches/0007-CVE-2017-4738.patch: check for empty
decimal separator.
- CVE-2017-4738
* SECURITY UPDATE: integer overflow in libxslt.
- debian/patches/0008-CVE-2017-5029.patch: limit buffer size in
xsltAddTextString to INT_MAX.
- CVE-2017-5029
Date: 2017-04-27 07:13:25.220321+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/libxslt/1.1.29-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Yakkety-changes
mailing list