Re: [xml] Fix for CVE-2012-5134
- From: g esp free fr
- To: David Dillard <ddillard symantec com>
- Cc: xml gnome org
- Subject: Re: [xml] Fix for CVE-2012-5134
- Date: Fri, 15 Mar 2013 17:33:00 +0100 (CET)
----- Mail original -----
De: "David Dillard" <ddillard symantec com>
À: xml gnome org
Envoyé: Jeudi 7 Février 2013 17:17:51
Objet: [xml] Fix for CVE-2012-5134
Hi,
I was wondering if and when the project plans on making a release to
address CVE-2012-5134 (see
http://www.cvedetails.com/cve/CVE-2012-5134/). Red Hat has made a
patch to address this issue (see
https://rhn.redhat.com/errata/RHSA-2012-1512.html), but I'd prefer
an official patch from the project if possible.
Thanks,
David
Just look in debian repository. http://packages.debian.org/fr/squeeze/libxml2
You would find the changelog.
Inside the changelog, there is the bug report for CVE-2012-5134 and the url to the git tree changeset.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694521
Gilles
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
