Re: [SECURITY] [DSA 2394-1] libxml2 security update

To: debian-security@lists.debian.org, luciano@debian.org
Cc: debian-security-announce@lists.debian.org
Subject: Re: [SECURITY] [DSA 2394-1] libxml2 security update
From: Dennis Clarke <dclarke@blastwave.org>
Date: Thu, 26 Jan 2012 18:34:00 -0500 (EST)
Message-id: <60140.10.0.66.17.1327620840.squirrel@interact.purplecow.org>
Reply-to: dclarke@blastwave.org

Let me resend with luciano@debian.org in the addr field.


> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> - -------------------------------------------------------------------------
Debian Security Advisory DSA-2394-1                   security@debian.org
http://www.debian.org/security/                             Luciano Bello
January 27, 2012                       http://www.debian.org/security/faq -
-------------------------------------------------------------------------
>
> Package        : libxml2
> Vulnerability  : several
> Problem type   : remote
> Debian-specific: no
> CVE ID         : CVE-2011-0216 CVE-2011-2821 CVE-2011-2834 CVE-2011-3905
>                  CVE-2011-3919
> Debian Bug     : 652352 643648 656377

No update can be seen at ftp://xmlsoft.org/libxml2/

    Therefore, have patches been pushed upstream ?

dc

-- 
--
http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0x1D936C72FA35B44B
+-------------------------+-----------------------------------+
| Dennis Clarke           | Solaris and Linux and Open Source |
| dclarke@blastwave.org   | Respect for open standards.       |
+-------------------------+-----------------------------------+

Reply to:

Prev by Date: Re: [SECURITY] [DSA 2394-1] libxml2 security update
Next by Date: Re: Upcoming stable point release
Previous by thread: Re: [SECURITY] [DSA 2394-1] libxml2 security update
Next by thread: AW: [SECURITY] [DSA 2395-1] wireshark security update
Index(es):
- Date
- Thread