Security vulnerability in libxml
Simon L. Nielsen
simon at FreeBSD.org
Tue Nov 9 14:25:36 PST 2004
Hello
As recently documented in VuXML [1] there are buffer overflows in
libxml1 (libxml2 is also vulnerable, but the port has already been
upgraded). Debian has possible patches [2] which might be useful, but
I haven't reviewed them.
[1] http://vuxml.FreeBSD.org/9ff4c91e-328c-11d9-a9e7-0001020eed82.html
[2] http://security.debian.org/pool/updates/main/libx/libxml/libxml_1.8.17-2woody2.diff.gz
--
Simon L. Nielsen
FreeBSD Documentation Team
FreeBSD Security Team
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-gnome/attachments/20041109/061bcd82/attachment.bin
More information about the freebsd-gnome
mailing list