Emmabuntus, Ubuntu, Derivate, Linux, Open Source BackTrack, Linux, distributions, Ubuntu, derivate, securuty, forensic VirtualBox, Linux, Ubuntu, Raring Ringtail synaptic, Ubuntu, Linux, software packages jwplayer, multimedia, Linux, Ubuntu, flash Meshlab, graphic, software, Ubuntu, open source, Linux Synapse, Linux, Ubuntu, raring, Quantal Gimp, Ubuntu, Linux FreeMind, Linux, open source Linux, infographic, history

Security Updates for Ubuntu 9.04 Jaunty Jackalope

Versione 7.18.2-8ubuntu4.1:

* SECURITY UPDATE: SSL cert hostname checking bypass with NULL byte.
- add debian/patches/cert-null-cn.patch: backported upstream changes.
- CVE-2009-2417
SSL support is provided by GnuTLS. This is the shared version of libcurl.

Versione 2.6.32.dfsg-5ubuntu4.2:

* SECURITY UPDATE: denial of service via stack overflow from crafted
root XML document element DTD definition
- parser.c: validate ctxt->depth isn't too deep
- CVE-2009-2414
* SECURITY UPDATE: denial of service via use-after-frees when parsing
Notation and Enumeration attribute types
- parser.c: use xmlFreeEnumeration before returning.
- CVE-2009-2416
* SECURITY UPDATE: heap overflow in entity name parsing
- parser.c: reintroduce the security fix for CVE-2008-3529 that got
lost somehow
- CVE-2008-3529

This package provides a library providing an extensive API to handle such XML data files.

Versione 2.6.32.dfsg-5ubuntu4.2:

* SECURITY UPDATE: denial of service via stack overflow from crafted
root XML document element DTD definition
- parser.c: validate ctxt->depth isn't too deep
- CVE-2009-2414
* SECURITY UPDATE: denial of service via use-after-frees when parsing
Notation and Enumeration attribute types
- parser.c: use xmlFreeEnumeration before returning.
- CVE-2009-2416
* SECURITY UPDATE: heap overflow in entity name parsing
- parser.c: reintroduce the security fix for CVE-2008-3529 that got
lost somehow
- CVE-2008-3529

This package provides xmllint, a tool for validating and reformatting XML documents, and xmlcatalog, a tool to parse and manipulate XML or SGML catalog files.

This package contains the files needed to use the GNOME XML library in Python programs.

If you liked this article, subscribe to the feed by clicking the image below to keep informed about new contents of the blog:

rss_trappola


Related Post



    160x600     step

Linux Links





Share on Google Plus

About Hugo Repetto

Ubuntu is a Linux distribution that offers an operating system predominantly focused on desktop computers but also provides support for servers. Based on Debian GNU / Linux, Ubuntu focuses on ease of use, freedom in usage restriction, regular releases (every 6 months) and ease of installation.
    Blogger Comment
    Facebook Comment

0 comments:

Post a Comment