Ubuntu

“expat” 2.0.1-0ubuntu1.2 source package in Ubuntu

Changelog

expat (2.0.1-0ubuntu1.2) hardy-security; urgency=low

  * SECURITY UPDATE: Denial of service via hash collisions
    - lib/xmlparse.c: Add random salt value to hash inputs
    - http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/expat.h?r1=1.80&r2=1.81
    - http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?r1=1.167&r2=1.168
    - http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?r1=1.168&r2=1.169
    - http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?r1=1.169&r2=1.170
    - CVE-2012-0876
  * SECURITY UPDATE: Denial of service via memory leak
    - lib/xmlparse.c: Properly reallocate memory
    - http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmlparse.c?r1=1.166&r2=1.167
    - CVE-2012-1148
 -- Tyler Hicks <email address hidden>   Thu, 09 Aug 2012 12:05:43 -0700

Upload details

Uploaded by:
Tyler Hicks on 2012-08-09
Uploaded to:
Hardy
Original maintainer:
Ubuntu Developers
Component:
main
Architectures:
any
Section:
text
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Hardy updates on 2012-08-10 main text
Hardy security on 2012-08-10 main text

Downloads

File Size MD5 Checksum
expat_2.0.1.orig.tar.gz 436.0 KiB ee8b492592568805593f81f8cdf2a04c
expat_2.0.1-0ubuntu1.2.diff.gz 15.1 KiB 63284eeeba274dca000cedf797d9b155
expat_2.0.1-0ubuntu1.2.dsc 1.5 KiB 1bdb1ba36c9042aeec5e34d0ef445956

Binary packages built by this source

expat: XML parsing C library - example application

 This package contains xmlwf, an example application of expat, the C
 library for parsing XML. The arguments to xmlwf are one or more
 files which are each to be checked for XML well-formedness.

lib64expat1: XML parsing C library - runtime library (64bit)

 This package contains the runtime, shared library of expat, the C
 library for parsing XML.

lib64expat1-dev: XML parsing C library - development kit (64bit)

 This package contains the header file and development libraries of
 expat, the C library for parsing XML. Expat is a stream oriented XML
 parser. This means that you register handlers with the parser prior
 to starting the parse. These handlers are called when the parser
 discovers the associated structures in the document being parsed. A
 start tag is an example of the kind of structures for which you may
 register handlers.

libexpat1: XML parsing C library - runtime library

 This package contains the runtime, shared library of expat, the C
 library for parsing XML.

libexpat1-dev: XML parsing C library - development kit

 This package contains the header file and development libraries of
 expat, the C library for parsing XML. Expat is a stream oriented XML
 parser. This means that you register handlers with the parser prior
 to starting the parse. These handlers are called when the parser
 discovers the associated structures in the document being parsed. A
 start tag is an example of the kind of structures for which you may
 register handlers.

libexpat1-udeb: XML parsing C library - runtime library

 This package contains the runtime, shared library of expat, the C
 library for parsing XML.