[ubuntu/noble-proposed] expat 2.6.0-1 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Feb 14 16:03:53 UTC 2024
expat (2.6.0-1) unstable; urgency=high
* New upstream release:
- fixes CVE-2023-52425: fix quadratic runtime issues with big tokens that
can cause denial of service (closes: #1063238),
- fixes CVE-2023-52426: fix billion laughs attacks for users compiling
without XML_DTD defined (which is not common) (closes: #1063240).
Date: 2024-02-07 04:28:40.587030+00:00
Changed-By: Laszlo Boszormenyi <gcs at debian.org>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/expat/2.6.0-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list