zendframework 1.10.6-1squeeze2 source package in Debian
Changelog
zendframework (1.10.6-1squeeze2) squeeze-security; urgency=high * Fix for CVE-2012-5657: remove the XXE vector by calling libxml_disable_entity_loader() before attempting to parse the feed via DOMDocument::loadXML() (Closes: #696483). -- Frank Habermann <email address hidden> Mon, 7 Jan 2013 20:52:00 +0200
See full publishing history Publishing
Series | Published | Component | Section | |
---|---|---|---|---|
Squeeze | release | main | web |
Builds
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
zendframework_1.10.6-1squeeze2.dsc | 1.4 KiB | 962b9dd71e0fc975af49d2c832495645c3406d2a3fd699b3ea13f4baf7c55965 |
zendframework_1.10.6.orig.tar.gz | 3.4 MiB | c24cb6f1695141e5a683b5f25b2bfc08b7c333e52332acd67eb7b07e41793444 |
zendframework_1.10.6-1squeeze2.diff.gz | 6.0 KiB | df9949860966dd09bcb1a2735139fa5808366bbbbc4f72c6ab9d46a734750b8a |
No changes file available.