[xml/sgml-pkgs] Bug#689422: libxslt: Three security issues
Moritz Muehlenhoff
jmm at inutil.org
Tue Oct 2 12:49:32 UTC 2012
Package: libxslt
Severity: grave
Tags: security patch
Justification: user security hole
The chrome developers found three security issues in libxslt:
CVE-2012-2893:
http://googlechromereleases.blogspot.de/2012/09/stable-channel-update_25.html
Patch:
http://git.gnome.org/browse/libxslt/commit/?id=54977ed7966847e305a2008cb18892df26eeb065
CVE-2012-2870:
http://googlechromereleases.blogspot.in/2012/08/stable-channel-update_30.html
Patches:
http://git.gnome.org/browse/libxslt/commit/libxslt/pattern.c?id=8566ab4a10158d195adb5f1f61afe1ee8bfebd12
http://git.gnome.org/browse/libxslt/commit/libxslt/functions.c?id=4da0f7e207f14a03daad4663865c285eb27f93e9
http://git.gnome.org/browse/libxslt/commit/libexslt/functions.c?id=24653072221e76d2f1f06aa71225229b532f8946
http://git.gnome.org/browse/libxslt/commit/?id=1564b30e994602a95863d9716be83612580a2fed
CVE-2012-2871:
http://googlechromereleases.blogspot.in/2012/08/stable-channel-update_30.html
Patch:
http://git.gnome.org/browse/libxslt/commit/?id=937ba2a3eb42d288f53c8adc211bd1122869f0bf
Can you please also prepare packages for stable-security?
Cheers,
Moritz
More information about the debian-xml-sgml-pkgs
mailing list