[xml/sgml-pkgs] Bug#460292: libxml2: libxml2 UTF-8 parsing denial of service vulnerability
Pascal Volk
user at localhost.localdomain.org
Sun Jan 13 12:10:31 UTC 2008
Am 12.01.2008 04:31 schrieb Nico Golde:
>
> Is there any service using libxml2? If not I would consider
> this a normal bug rather than a security issue.
There are services that use libxml2 indirectly. For example apache2 with
libapache2-mod-php5, php5-cgi (with php5-xsl and/or php5-xmlrpc),
libapache2-modxslt, libapache2-mod-proxy-html.
icecast2 depends directly on libxml2.
Regards
Pascal
More information about the debian-xml-sgml-pkgs
mailing list