-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 3.0 (quilt) Source: libxml2 Binary: libxml2, libxml2-utils, libxml2-utils-dbg, libxml2-dev, libxml2-dbg, libxml2-doc, python-libxml2, python-libxml2-dbg Architecture: any all Version: 2.8.0+dfsg1-7+wheezy3 Maintainer: Debian XML/SGML Group <[email protected]> Uploaders: Aron Xu <[email protected]>, YunQiang Su <[email protected]> Homepage: http://xmlsoft.org/ Standards-Version: 3.9.3 Vcs-Browser: http://git.debian.org/?p=debian-xml-sgml/libxml2.git Vcs-Git: git://git.debian.org/debian-xml-sgml/libxml2.git Build-Depends: debhelper (>= 9), perl, dh-autoreconf, autotools-dev, binutils (>= 2.14.90.0.7), python-all-dev (>= 2.6.6-3~), python-all-dbg, zlib1g-dev | libz-dev, liblzma-dev, libreadline-dev | libreadline6-dev Package-List: libxml2 deb libs standard libxml2-dbg deb debug extra libxml2-dev deb libdevel optional libxml2-doc deb doc optional libxml2-utils deb text optional libxml2-utils-dbg deb debug extra python-libxml2 deb python optional python-libxml2-dbg deb debug extra Checksums-Sha1: fcc1bca14d2c7dd73c71556cf0a223a73bd92305 3554683 libxml2_2.8.0+dfsg1.orig.tar.gz 7531ffb6504207e4b54bf4ad172708e18dd0f46c 41235 libxml2_2.8.0+dfsg1-7+wheezy3.debian.tar.gz Checksums-Sha256: 46f339843967e861e81f8427373ff2a3d0a8cb608022dea16aa1d345ddcee338 3554683 libxml2_2.8.0+dfsg1.orig.tar.gz 2220405b60e44a080f18aae74f378baae9a4adb074384ab6d705b3e49a7abb42 41235 libxml2_2.8.0+dfsg1-7+wheezy3.debian.tar.gz Files: 008920f545a36da4eca363d0c1a0ffee 3554683 libxml2_2.8.0+dfsg1.orig.tar.gz ed983bb6d0ec49c0d28b59663e8a0939 41235 libxml2_2.8.0+dfsg1-7+wheezy3.debian.tar.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBAgAGBQJU0nA9AAoJEK+lG9bN5XPLlp8P/jbbb/u7f38FysZjoUraBRxa 2lrx+y7UMr90n8UeyF5JTSHphNnd7lHbCjRN0uAutHU8nytPDz7ntZJDSdZVd9ve IwN9HwwU06ZW/aCdSniscAqNIWUTXOsc6I6eNloyH6kBNbBeZPgaCec//Gdy7JZt ISjW2YX4WRA5rfxjFJyAqoXeXaaJFS+AgSAv4+uwYqd/n+hYjHmu9IhhmMsvoSTI x7W0MIs9PvrjPlXtw0Lft2sSZCwW8Mt/vZ9+O8dvBRHFGcBzDbtOhG4dqkt1U7hn NWU+EWZ4StYwabg6qxRt5riwkPnAkxid6CWuEY8JOjl1kR6vIauv/l4rOBjJHefz yfNmgarNiUMvxXVF6H6ELZ1cIRCi4VW9hwcipkGxe/QnkOqw+5347Hw9Y8XTUDSl Q7JXKor2XNdR4YV/2O6pER9lm8Csa045FwbRo6CHXs+5nGTCxRuELiGaKVeNVrv1 ldWrbwcA8BjqcQuGU3I4bLbrRQWI7E3pjvx0fTd0Ap2XaJ57TrvT36WTmb5bkjTk FCl6JFHX5B/fV7iQzMljhjxfhWNUO5OzlJku1V8w1/dz7wFYtmzbHw+RJ6O2rvfc nw0p7oMMj+PRMgFhbTer6e1gamwELQoh0v7lR79t99If7/6JcXS64ayTRo0WCJYG Z/+PGsq7TKg/n4E4vIcM =DDEU -----END PGP SIGNATURE----- Changes: libxml2 (2.8.0+dfsg1-7+wheezy3) wheezy-security; urgency=high * Do not fetch external parsed entities unless asked to do so. This supplements the patch for CVE-2014-0191 * Fix regression introducedd by the patch fixing CVE-2014-3660 (Closes: #768089) * Set urgency=high accordingly -- Alessandro Ghedini <[email protected]> Tue, 03 Feb 2015 20:02:14 +0100
