CVE-2019-9628 XML parser class fails to trap exceptions on malformed XML declaration
Bug #1819912 reported by
Kolargol00
This bug affects 2 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| xmltooling (Debian) |
Fix Released
|
Unknown
|
|||
| xmltooling (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
| Trusty |
Fix Released
|
Undecided
|
Eduardo Barretto | ||
| Xenial |
Fix Released
|
Undecided
|
Eduardo Barretto | ||
| Bionic |
Fix Released
|
High
|
Eduardo Barretto | ||
CVE References
| information type: | Private Security → Public Security |
| Changed in xmltooling (Debian): | |
| status: | Unknown → Confirmed |
| Changed in xmltooling (Debian): | |
| status: | Confirmed → Fix Released |
| Changed in xmltooling (Ubuntu Bionic): | |
| importance: | Undecided → High |
| Changed in xmltooling (Ubuntu): | |
| assignee: | nobody → Eduardo dos Santos Barretto (ebarretto) |
| Changed in xmltooling (Ubuntu): | |
| status: | Fix Released → In Progress |
| Changed in xmltooling (Ubuntu Bionic): | |
| assignee: | nobody → Eduardo dos Santos Barretto (ebarretto) |
| status: | Confirmed → In Progress |
| Changed in xmltooling (Ubuntu Trusty): | |
| status: | New → In Progress |
| Changed in xmltooling (Ubuntu Xenial): | |
| status: | New → In Progress |
| Changed in xmltooling (Ubuntu Trusty): | |
| assignee: | nobody → Eduardo dos Santos Barretto (ebarretto) |
| Changed in xmltooling (Ubuntu Xenial): | |
| assignee: | nobody → Eduardo dos Santos Barretto (ebarretto) |
| Changed in xmltooling (Ubuntu): | |
| status: | In Progress → Fix Released |
| assignee: | Eduardo dos Santos Barretto (ebarretto) → nobody |
To post a comment you must log in.

Here's a patch for bionic's xmltooling. It can also be applied to older versions.