[ubuntu/yakkety-updates] libxslt 1.1.29-1ubuntu0.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Fri Apr 28 00:28:18 UTC 2017
libxslt (1.1.29-1ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: heap information leak
- debian/patches/0007-CVE-2017-4738.patch: check for empty
decimal separator.
- CVE-2017-4738
* SECURITY UPDATE: integer overflow in libxslt.
- debian/patches/0008-CVE-2017-5029.patch: limit buffer size in
xsltAddTextString to INT_MAX.
- CVE-2017-5029
Date: 2017-04-27 07:13:25.220321+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/libxslt/1.1.29-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Yakkety-changes
mailing list