[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 723-1] libsoap-lite-perl security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : libsoap-lite-perl
Version        : 0.714-1+deb7u1
CVE ID         : CVE-2015-8978

It was discovered that there was a "Billion Laughs" [0] XML expansion
vulnerability in libsoap-lite-perl, a Perl implementation of a SOAP [1] client
and server.

For Debian 7 "Wheezy", this issue has been fixed in libsoap-lite-perl version
0.714-1+deb7u1.

We recommend that you upgrade your libsoap-lite-perl packages.

 [0] https://en.wikipedia.org/wiki/Billion_laughs
 [1] https://en.wikipedia.org/wiki/SOAP


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=L3Tf
-----END PGP SIGNATURE-----


Reply to: