Package: xerces-c / 3.1.1-3+deb7u2

Metadata

Package Version Patches format
xerces-c 3.1.1-3+deb7u2 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
CVE 2015 0252.patch | (download)

src/xercesc/internal/XMLReader.cpp | 33 33 + 0 - 0 !
1 file changed, 33 insertions(+)

 cve-2015-0252: apache xerces-c xml parser crashes on malformed input
 The Xerces-C XML parser mishandles certain kinds of malformed input
 documents, resulting in a segmentation fault during a parse operation.
CVE 2016 0729.patch | (download)

src/xercesc/internal/XMLReader.cpp | 85 82 + 3 - 0 !
src/xercesc/util/XMLURL.cpp | 17 14 + 3 - 0 !
src/xercesc/util/XMLUri.cpp | 112 79 + 33 - 0 !
3 files changed, 175 insertions(+), 39 deletions(-)

 cve-2016-0729: buffer overlows during processing and error reporting