[ubuntu/noble-updates] expat 2.6.0-1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Sat Mar 30 00:03:58 UTC 2024
expat (2.6.0-1) unstable; urgency=high
* New upstream release:
- fixes CVE-2023-52425: fix quadratic runtime issues with big tokens that
can cause denial of service (closes: #1063238),
- fixes CVE-2023-52426: fix billion laughs attacks for users compiling
without XML_DTD defined (which is not common) (closes: #1063240).
Date: 2024-02-07 04:28:40.587030+00:00
Changed-By: Laszlo Boszormenyi <gcs at debian.org>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/expat/2.6.0-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list