Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 519
Alerts This Week
Warning Icon 1 519

Debian: DSA-3057-1 Critical: Libxml2 Denial Of Service Issue

debian
Calendar Grey October 26, 2014
Scroller Debian
Important Debian Security Notice DSA-3058-1 enhances libpng to address vulnerabilities leading to potential data corruption and resource exhaustion.
Sogeti found a denial of service flaw in libxml2, a library providing support to read, modify and write XML and HTML files

Summary

In addition, this update addresses a misapplied chunk for a patch
released in version 2.8.0+dfsg1-7+wheezy1 (#762864), and a memory leak
regression (#765770) introduced in version 2.8.0+dfsg1-7+nmu3.

For the stable distribution (wheezy), this problem has been fixed in
version 2.8.0+dfsg1-7+wheezy2.

For the unstable distribution (sid), this problem has been fixed in
version 2.9.2+dfsg1-1.

We recommend that you upgrade your libxml2 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
critical
Lowest
Low
Medium
High
Critical

Package: libxml2
CVE ID: CVE-2014-3660

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.