[Secure-testing-commits] r42326 - data/CVE
Luciano Bello
luciano at moszumanska.debian.org
Sun Jun 5 13:50:22 UTC 2016
Author: luciano
Date: 2016-06-05 13:50:22 +0000 (Sun, 05 Jun 2016)
New Revision: 42326
Modified:
data/CVE/list
Log:
CVE-2013-0340 is unfixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-05 13:38:35 UTC (rev 42325)
+++ data/CVE/list 2016-06-05 13:50:22 UTC (rev 42326)
@@ -86304,8 +86304,9 @@
CVE-2013-0341 [external entity expansion]
REJECTED
CVE-2013-0340 (expat 2.1.0 and earlier does not properly handle entities expansion ...)
- - expat 2.1.1-1 (unimportant)
+ - expat <unfixed> (unimportant)
NOTE: Expat provides API to mitigate expansion attacks, ultimately under control of the app using Expat
+ NOTE: https://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-0340.html
CVE-2013-0339 (libxml2 through 2.9.1 does not properly handle external entities ...)
{DSA-2652-1}
- libxml2 2.8.0+dfsg1-7+nmu1 (bug #702260)
More information about the Secure-testing-commits
mailing list