——————————————————————————–
Fedora Update Notification
FEDORA-2016-880b91c090
2016-04-17 23:38:27.306984
——————————————————————————–
Name : xerces-c
Product : Fedora 22
Version : 3.1.3
Release : 1.fc22
URL : http://xml.apache.org/xerces-c/
Summary : Validating XML Parser
Description :
Xerces-C is a validating XML parser written in a portable
subset of C++. Xerces-C makes it easy to give your application the
ability to read and write XML data. A shared library is provided for
parsing, generating, manipulating, and validating XML
documents. Xerces-C is faithful to the XML 1.0 recommendation and
associated standards: XML 1.0 (Third Edition), XML 1.1 (First
Edition), DOM Level 1, 2, 3 Core, DOM Level 2.0 Traversal and Range,
DOM Level 3.0 Load and Save, SAX 1.0 and SAX 2.0, Namespaces in XML,
Namespaces in XML 1.1, XML Schema, XML Inclusions).
——————————————————————————–
Update Information:
Update to xerces-c 3.1.3, fixing CVE-2016-0729
——————————————————————————–
References:
[ 1 ] Bug #1312231 – CVE-2016-0729 xerces-c: parser crashes on malformed input
https://bugzilla.redhat.com/show_bug.cgi?id=1312231
——————————————————————————–
This update can be installed with the “yum” update program. Use
su -c ‘yum update xerces-c’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce