-
libxslt (1.1.29-2ubuntu0.1) zesty-security; urgency=medium
* SECURITY UPDATE: integer overflow in libxslt.
- debian/patches/0008-CVE-2017-5029.patch: limit buffer size in
xsltAddTextString to INT_MAX.
- CVE-2017-5029
-- Steve Beattie <email address hidden> Tue, 25 Apr 2017 15:30:38 -0700
-
libxslt (1.1.29-2) unstable; urgency=high
* Team upload.
* Bump debhelper compat level to 10.
+ --parallel is now default
+ --with autoreconf is now default
* Add patch from upstream to fix a heap overread which could cause remote
arbitrary code execution or denial of service.
Closes: #842570 — CVE-2016-4738
-- Mattia Rizzolo <email address hidden> Sun, 30 Oct 2016 14:01:00 +0000
-
libxslt (1.1.29-1) unstable; urgency=medium
* Imported Upstream version 1.1.29 (Closes: #826446)
* Remove patches which have been merged upstream
* Remove plugin option in xslt-config as it has arch-dep string
* Link libxslt with libm (Closes: #801989, #721602)
* Add --parallel in debian/rules.
-- YunQiang Su <email address hidden> Wed, 17 Aug 2016 15:30:11 +0800