Slackware-13.37 ChangeLog (2013-07-16)

Tue Jul 16 21:18:56 UTC 2013

  • patches/packages/php-5.3.27-i486-1_slack13.37.txz
    This update fixes an issue where XML in PHP does not properly consider
    parsing depth, which allows remote attackers to cause a denial of service
    (heap memory corruption) or possibly have unspecified other impact via a
    crafted document that is processed by the xml_parse_into_struct function.
    For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4113
    (* Security fix *)
  • news/2013/07/16/slackware-13.37-changelog.txt
  • Last modified: 12 months ago
  • by Giuseppe Di Terlizzi