[SECURITY] [DLA 990-1] expat security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 990-1] expat security update
From: Chris Lamb <lamby@debian.org>
Date: Sun, 18 Jun 2017 02:54:29 +0100
Message-id: <[🔎] 1497750869.3752646.1012867232.532EE3C2@webmail.messagingengine.com>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : expat
Version        : 2.1.0-1+deb7u5
CVE ID         : CVE-2017-9233

It was discovered that there was an infinite loop vulnerability in expat, a XML
parsing C library:

  https://libexpat.github.io/doc/cve-2017-9233/

For Debian 7 "Wheezy", this issue has been fixed in expat version
2.1.0-1+deb7u5.

We recommend that you upgrade your expat packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=umuy
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 988-1] rt-authen-externalauth security update
Next by Date: [SECURITY] [DLA 991-1] firefox-esr security update
Previous by thread: [SECURITY] [DLA 988-1] rt-authen-externalauth security update
Next by thread: [SECURITY] [DLA 991-1] firefox-esr security update
Index(es):
- Date
- Thread