batik (1.7.ubuntu-8ubuntu3) vivid; urgency=medium * SECURITY UPDATE: XML external entity information disclosure - debian/patches/cve_2015_0250.patch: disable external entities in sources/org/apache/batik/dom/util/SAXDocumentFactory.java. - Thanks to Debian for the patch backport. - CVE-2015-0250 -- Marc Deslauriers <email address hidden> Tue, 24 Mar 2015 10:47:44 -0400