[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2016-9180/libxml-twig-perl
Salvatore Bonaccorso
carnil at debian.org
Mon Apr 1 16:55:03 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ea93b61d by Salvatore Bonaccorso at 2019-04-01T15:53:40Z
Add fixed version for CVE-2016-9180/libxml-twig-perl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -134214,7 +134214,7 @@ CVE-2016-9181 (perl-Image-Info: When parsing an SVG file, external entity expans
NOTE: XML::SAX::PurePerl which is uncapable of processing external entities
NOTE: but unfortunately it is also a slow parser.
CVE-2016-9180 (perl-XML-Twig: The option to `expand_external_ents`, documented as con ...)
- - libxml-twig-perl <unfixed> (low; bug #842893)
+ - libxml-twig-perl 1:3.50-1.1 (low; bug #842893)
[stretch] - libxml-twig-perl <no-dsa> (Minor issue; can be fixed via point release)
[jessie] - libxml-twig-perl <no-dsa> (Minor issue; can be fixed via point release)
[wheezy] - libxml-twig-perl <no-dsa> (Minor issue, new flag would require changes to applications too, not worth the effort)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ea93b61db2a5b6b47c43498bcc5c7c86cc0efc86
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ea93b61db2a5b6b47c43498bcc5c7c86cc0efc86
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190401/d32ccf2c/attachment.html>
More information about the debian-security-tracker-commits
mailing list