exploit the possibilities

Debian Security Advisory 3493-1

Debian Security Advisory 3493-1
Posted Feb 26, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3493-1 - Gustavo Grieco discovered that xerces-c, a validating XML parser library for C++, mishandles certain kinds of malformed input documents, resulting in buffer overflows during processing and error reporting. These flaws could lead to a denial of service in applications using the xerces-c library, or potentially, to the execution of arbitrary code.

tags | advisory, denial of service, overflow, arbitrary
systems | linux, debian
advisories | CVE-2016-0729
MD5 | 7b64bc56bdfb15859350ad791e96f648

Debian Security Advisory 3493-1

Change Mirror Download
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3493-1 security@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
February 25, 2016 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : xerces-c
CVE ID : CVE-2016-0729
Debian Bug : 815907

Gustavo Grieco discovered that xerces-c, a validating XML parser library
for C++, mishandles certain kinds of malformed input documents,
resulting in buffer overflows during processing and error reporting.
These flaws could lead to a denial of service in applications using the
xerces-c library, or potentially, to the execution of arbitrary code.

For the oldstable distribution (wheezy), this problem has been fixed
in version 3.1.1-3+deb7u2.

For the stable distribution (jessie), this problem has been fixed in
version 3.1.1-5.1+deb8u1.

We recommend that you upgrade your xerces-c packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=X3xz
-----END PGP SIGNATURE-----
Login or Register to add favorites

File Archive:

October 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    25 Files
  • 2
    Oct 2nd
    13 Files
  • 3
    Oct 3rd
    1 Files
  • 4
    Oct 4th
    1 Files
  • 5
    Oct 5th
    15 Files
  • 6
    Oct 6th
    15 Files
  • 7
    Oct 7th
    15 Files
  • 8
    Oct 8th
    11 Files
  • 9
    Oct 9th
    3 Files
  • 10
    Oct 10th
    1 Files
  • 11
    Oct 11th
    1 Files
  • 12
    Oct 12th
    8 Files
  • 13
    Oct 13th
    12 Files
  • 14
    Oct 14th
    23 Files
  • 15
    Oct 15th
    4 Files
  • 16
    Oct 16th
    13 Files
  • 17
    Oct 17th
    1 Files
  • 18
    Oct 18th
    1 Files
  • 19
    Oct 19th
    27 Files
  • 20
    Oct 20th
    41 Files
  • 21
    Oct 21st
    15 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close