Package: xml-light Severity: grave Tags: security Justification: user security hole
This was posted to oss-security: -- Xml-Light has been moved to google code SVN here : http://ocamllibs.googlecode.com/svn/trunk/xml-light/ I've applied a fix in r234 by using String Map instead of Hashtbl for DTD proof. Best, Nicolas Please use CVE-2012-3514 for this issue. -- Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
