xerces-c-3.1.1-7.el7
エラータID: AXSA:2015-223:01
Release date:
Saturday, July 25, 2015 - 16:31
Subject:
xerces-c-3.1.1-7.el7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
Xerces-C is a validating XML parser written in a portable
subset of C . Xerces-C makes it easy to give your application the
ability to read and write XML data. A shared library is provided for
parsing, generating, manipulating, and validating XML
documents. Xerces-C is faithful to the XML 1.0 recommendation and
associated standards: XML 1.0 (Third Edition), XML 1.1 (First
Edition), DOM Level 1, 2, 3 Core, DOM Level 2.0 Traversal and Range,
DOM Level 3.0 Load and Save, SAX 1.0 and SAX 2.0, Namespaces in XML,
Namespaces in XML 1.1, XML Schema, XML Inclusions).
Security issues fixed with this release:
CVE-2015-0252
Solution:
Update packages.
CVEs:
CVE-2015-0252
internal/XMLReader.cpp in Apache Xerces-C before 3.1.2 allows remote attackers to cause a denial of service (segmentation fault and crash) via crafted XML data.
internal/XMLReader.cpp in Apache Xerces-C before 3.1.2 allows remote attackers to cause a denial of service (segmentation fault and crash) via crafted XML data.
Additional Info:
N/A
Download:
SRPMS
- xerces-c-3.1.1-7.el7.src.rpm
MD5: 9687b7950a6b46bc8eedd46887b8db44
SHA-256: e7dca4f2bd80e5b42fce49a623e9464ec7d86da1e7f69eb0f94899b227958e49
Size: 4.79 MB
Asianux Server 7 for x86_64
- xerces-c-3.1.1-7.el7.x86_64.rpm
MD5: fefdc953b8deaa1acaaf493e61f2a87d
SHA-256: 2ce2f972b54cbcbaa159b1dda46b06839af1fe1b78090c4d96ad8ba5ac870d03
Size: 877.26 kB - xerces-c-3.1.1-7.el7.i686.rpm
MD5: c7a83e372e7d558b21922cdc85af11c8
SHA-256: f7851377254e1e2b32973b8720b018d79dbd8f81b106e7468c86b7299b0dfc4c
Size: 887.05 kB
日本語