[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
Expat 2.2.3 released, includes security fixes for Windows
- From: Sebastian Pipping <sebastian@pipping.org>
- To: xml-dev@lists.xml.org
- Date: Wed, 2 Aug 2017 21:32:14 +0200
Hi!
Just a quick note that Expat 2.2.3 has been released. For Windows users,
it fixes DLL hijacking (CVE-2017-11742 [1]). On Linux, extracting
entropy for Hash DoS protection no longer blocks, which affected D-Bus
and systems that are low on entropy early in the boot process. For more
details, please check the change log [2].
Best
Sebastian
[1] https://www.cvedetails.com/cve/CVE-2017-11742/
[2] https://github.com/libexpat/libexpat/blob/master/expat/Changes
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
