CVE-2019-9628 XML parser class fails to trap exceptions on malformed XML declaration
Bug #1819912 reported by
Kolargol00
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
xmltooling (Debian) |
Fix Released
|
Unknown
|
|||
xmltooling (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Trusty |
Fix Released
|
Undecided
|
Eduardo Barretto | ||
Xenial |
Fix Released
|
Undecided
|
Eduardo Barretto | ||
Bionic |
Fix Released
|
High
|
Eduardo Barretto |
CVE References
information type: | Private Security → Public Security |
Changed in xmltooling (Debian): | |
status: | Unknown → Confirmed |
Changed in xmltooling (Debian): | |
status: | Confirmed → Fix Released |
Changed in xmltooling (Ubuntu Bionic): | |
importance: | Undecided → High |
Changed in xmltooling (Ubuntu): | |
assignee: | nobody → Eduardo dos Santos Barretto (ebarretto) |
Changed in xmltooling (Ubuntu): | |
status: | Fix Released → In Progress |
Changed in xmltooling (Ubuntu Bionic): | |
assignee: | nobody → Eduardo dos Santos Barretto (ebarretto) |
status: | Confirmed → In Progress |
Changed in xmltooling (Ubuntu Trusty): | |
status: | New → In Progress |
Changed in xmltooling (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in xmltooling (Ubuntu Trusty): | |
assignee: | nobody → Eduardo dos Santos Barretto (ebarretto) |
Changed in xmltooling (Ubuntu Xenial): | |
assignee: | nobody → Eduardo dos Santos Barretto (ebarretto) |
Changed in xmltooling (Ubuntu): | |
status: | In Progress → Fix Released |
assignee: | Eduardo dos Santos Barretto (ebarretto) → nobody |
To post a comment you must log in.
Here's a patch for bionic's xmltooling. It can also be applied to older versions.