You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa xerces-c

Sigurnosni nedostatak programskog paketa xerces-c

——————————————————————————–
Fedora Update Notification
FEDORA-2015-4251
2015-03-21 00:13:07
——————————————————————————–

Name : xerces-c
Product : Fedora 21
Version : 3.1.1
Release : 8.fc21
URL : http://xml.apache.org/xerces-c/
Summary : Validating XML Parser
Description :
Xerces-C is a validating XML parser written in a portable
subset of C++. Xerces-C makes it easy to give your application the
ability to read and write XML data. A shared library is provided for
parsing, generating, manipulating, and validating XML
documents. Xerces-C is faithful to the XML 1.0 recommendation and
associated standards: XML 1.0 (Third Edition), XML 1.1 (First
Edition), DOM Level 1, 2, 3 Core, DOM Level 2.0 Traversal and Range,
DOM Level 3.0 Load and Save, SAX 1.0 and SAX 2.0, Namespaces in XML,
Namespaces in XML 1.1, XML Schema, XML Inclusions).

——————————————————————————–
Update Information:

Security fix for CVE-2015-0252.
——————————————————————————–
ChangeLog:

* Fri Mar 20 2015 Kalev Lember <kalevlember@gmail.com> – 3.1.1-8
– Fix CVE-2015-0252
——————————————————————————–
References:

[ 1 ] Bug #1199103 – CVE-2015-0252 xerces-c: crashes on malformed input
https://bugzilla.redhat.com/show_bug.cgi?id=1199103
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update xerces-c’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4285
2015-03-21 00:14:20
--------------------------------------------------------------------------------

Name        : xerces-c
Product     : Fedora 20
Version     : 3.1.1
Release     : 6.fc20
URL         : http://xml.apache.org/xerces-c/
Summary     : Validating XML Parser
Description :
Xerces-C is a validating XML parser written in a portable
subset of C++. Xerces-C makes it easy to give your application the
ability to read and write XML data. A shared library is provided for
parsing, generating, manipulating, and validating XML
documents. Xerces-C is faithful to the XML 1.0 recommendation and
associated standards: XML 1.0 (Third Edition), XML 1.1 (First
Edition), DOM Level 1, 2, 3 Core, DOM Level 2.0 Traversal and Range,
DOM Level 3.0 Load and Save, SAX 1.0 and SAX 2.0, Namespaces in XML,
Namespaces in XML 1.1, XML Schema, XML Inclusions).

--------------------------------------------------------------------------------
Update Information:

Security fix for CVE-2015-0252.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar 20 2015 Kalev Lember  - 3.1.1-6
- Fix CVE-2015-0252
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1199103 - CVE-2015-0252 xerces-c: crashes on malformed input
        https://bugzilla.redhat.com/show_bug.cgi?id=1199103
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update xerces-c' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa openssl

Otkriveni su sigurnosni nedostaci u programskom paketu openssl za operacijski sustav Mandriva. Otkriveni nedostaci potencijalnim napadačima omogućuju uskraćivanje usluge, otimanje...

Close