drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in libxml2
Name: |
Ausführen beliebiger Kommandos in libxml2 |
|
ID: |
DSA-2479-1 |
|
Distribution: |
Debian |
|
Plattformen: |
Debian sid, Debian squeeze |
|
Datum: |
Do, 24. Mai 2012, 09:44 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3102 |
|
Applikationen: |
libxml2 |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
- ------------------------------------------------------------------------- Debian Security Advisory DSA-2479-1 security@debian.org http://www.debian.org/security/ Moritz Muehlenhoff May 23, 2012 http://www.debian.org/security/faq - -------------------------------------------------------------------------
Package : libxml2 Vulnerability : off-by-one Problem type : remote Debian-specific: no CVE ID : CVE-2011-3102
Jueri Aedla discovered an off-by-one in libxml2, which could result in the execution of arbitrary code.
For the stable distribution (squeeze), this problem has been fixed in version 2.7.8.dfsg-2+squeeze4.
For the unstable distribution (sid), this problem has been fixed in version 2.7.8.dfsg-9.1.
We recommend that you upgrade your libxml2 packages.
Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux)
iEYEARECAAYFAk+9OesACgkQXm3vHE4uylpB8gCfamsExmrt7o3LVviFZm2UP6Lx QY4AnjsL0TRs1Z1P6RUIxV1F+Cg1Xp6a =JAT9 -----END PGP SIGNATURE-----
-- To UNSUBSCRIBE, email to debian-security-announce-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org Archive: http://lists.debian.org/20120523193941.GA7007@pisco.westfalen.local
|
|
|
|