Page MenuHomeSolus
Differential D1436

Update perl-xml-libxml to 2.0.132 to address CVE-2017-10672
ClosedPublic
Actions

Authored by kyrios123 on Nov 22 2017, 5:38 PM.

Details

Reviewers
JoshStrobl
Group Reviewers
Triage Team
Commits
R2413:778fad522aa6: Update perl-xml-libxml to 2.0.132 to address CVE-2017-10672
Summary

Changelog available here

Fix CVE-2017-10672 : Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

Signed-off-by: Pierre-Yves <pyu@riseup.net>

Test Plan
use XML::LibXML;
my $dom = XML::LibXML->load_xml(location => 'pspec_x86_64.xml');

$Version_String = XML::LibXML::LIBXML_DOTTED_VERSION;
$Version_ID = XML::LibXML::LIBXML_VERSION;
$DLL_Version = XML::LibXML::LIBXML_RUNTIME_VERSION;

printf $Version_String;
print $Version_ID;
print $DLL_Version;

Diff Detail

Repository
R2413 perl-xml-libxml
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
6 lines
14 lines

Diff 3594

View Options

package.yml

Loading...
View Options

pspec_x86_64.xml

Loading...
Copyright © 2015-2021 Solus Project. The Solus logo is Copyright © 2016-2021 Solus Project. All Rights Reserved.