From:
[email protected]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------ Debian Security Advisory DSA-1921-1
[email protected] http://www.debian.org/security/ Giuseppe Iuculano
October 28, 2009
http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : expat
Vulnerability : denial of service
Problem type : remote
Debian-specific: no
CVE Id : CVE-2009-2625
Debian Bug : 551936
Peter Valchev discovered an error in expat, an XML parsing C library,
when parsing certain UTF-8 sequences, which can be exploited to crash an application using the library.
For the old stable distribution (etch), this problem has been fixed in
version 1.95.8-3.4+etch1.
For the stable distribution (lenny), this problem has been fixed in
version 2.0.1-4+lenny1.
For the testing distribution (squeeze) and the unstable distribution
(sid), this problem will be fixed soon.
We recommend that you upgrade your expat packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8.orig.tar.gz
Size/MD5 checksum: 318349 aff487543845a82fe262e6e2922b4c8e
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8-3.4+etch1.diff.gz
Size/MD5 checksum: 413057 b78006808401dff164db95fd8f2499f0
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8-3.4+etch1.dsc
Size/MD5 checksum: 711 0a87419bbdae53aeacaf08eef449f8b3
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/e/expat/libexpat1-dev_1.95.8-3.4+etch1_alpha.deb
Size/MD5 checksum: 143212 7b134dfafbbc9bc66ccff9dc2eeff47f
http://security.debian.org/pool/updates/main/e/expat/libexpat1_1.95.8-3.4+etch1_alpha.deb
Size/MD5 checksum: 69412 9d0a43d446692ef43add0360db26c256
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8-3.4+etch1_alpha.deb
Size/MD5 checksum: 22316 999371a25e7d944716db206d1c4e10cc
http://security.debian.org/pool/updates/main/e/expat/libexpat1-udeb_1.95.8-3.4+etch1_alpha.udeb
Size/MD5 checksum: 61192 521bb25d4e511f26f63a62c194acf6b0
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/e/expat/libexpat1-dev_1.95.8-3.4+etch1_amd64.deb
Size/MD5 checksum: 133646 d6b90212e771f641c21cee38ae37bd08
http://security.debian.org/pool/updates/main/e/expat/libexpat1-udeb_1.95.8-3.4+etch1_amd64.udeb
Size/MD5 checksum: 56488 494fe3d0c4ac2c85b8b9f2d6ff9803dc
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8-3.4+etch1_amd64.deb
Size/MD5 checksum: 21488 6125318bcc858833651fc29e003ada22
http://security.debian.org/pool/updates/main/e/expat/libexpat1_1.95.8-3.4+etch1_amd64.deb
Size/MD5 checksum: 64626 5704af163a7c90f06c83da1587c20b16
arm architecture (ARM)
http://security.debian.org/pool/updates/main/e/expat/libexpat1-udeb_1.95.8-3.4+etch1_arm.udeb
Size/MD5 checksum: 49414 70ad1f420deebf55461455ec52ba9a2e
http://security.debian.org/pool/updates/main/e/expat/libexpat1-dev_1.95.8-3.4+etch1_arm.deb
Size/MD5 checksum: 125270 cdfc0a34dad99c9c85c8f11cdada5884
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8-3.4+etch1_arm.deb
Size/MD5 checksum: 19760 cfa4b1b4005647b15b22730ede7b9a05
http://security.debian.org/pool/updates/main/e/expat/libexpat1_1.95.8-3.4+etch1_arm.deb
Size/MD5 checksum: 57582 52acb1f317a52ef9e4429381dce93ba7
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/e/expat/libexpat1-udeb_1.95.8-3.4+etch1_hppa.udeb
Size/MD5 checksum: 64780 f9c37fed892741dbd9c27a54e6f8c147
http://security.debian.org/pool/updates/main/e/expat/libexpat1-dev_1.95.8-3.4+etch1_hppa.deb
Size/MD5 checksum: 151792 a8add5beda89448ec1b1584a5f055216
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8-3.4+etch1_hppa.deb
Size/MD5 checksum: 22646 6729356bed0d898b6660de36bb8a226b
http://security.debian.org/pool/updates/main/e/expat/libexpat1_1.95.8-3.4+etch1_hppa.deb
Size/MD5 checksum: 72970 3b0d2aa031bc6fe388daa5ee8fcc6da6
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/e/expat/libexpat1-udeb_1.95.8-3.4+etch1_i386.udeb
Size/MD5 checksum: 54964 e2df0e10b8466ca1f5534145f432b4fe
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8-3.4+etch1_i386.deb
Size/MD5 checksum: 21034 6e8dbc3e542af0a3c9b6970014c7e5e4
http://security.debian.org/pool/updates/main/e/expat/libexpat1-dev_1.95.8-3.4+etch1_i386.deb
Size/MD5 checksum: 128180 ad28064754c7f1fb08035ad626647448
http://security.debian.org/pool/updates/main/e/expat/libexpat1_1.95.8-3.4+etch1_i386.deb
Size/MD5 checksum: 63076 0554efb1bbae1faa50d1c5c5a0038dfc
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/e/expat/libexpat1-dev_1.95.8-3.4+etch1_ia64.deb
Size/MD5 checksum: 164942 71ba03af83170f1efb508073c3ace2bc
http://security.debian.org/pool/updates/main/e/expat/expat_1.95.8-3.4+etch1_ia64.deb
Size/MD5 checksum: 25042 f1ce83568dccc86afac7ca26501df87e
http://security.debian.org/pool/updates/main/e/expat/libexpat1-udeb_1.95.8-3.4+etch1_ia64.udeb
Size/MD5 checksum: 87370 bc39d0e16d8f274834b97ff798620c2c
http://security.debian.org/pool/updates/main/e/expat/libexpat1_1.95.8-3.4+etch1_ia64.deb
Size/MD5 checksum: 95842 16ea105cb9be4e8f34f477942e833d3d
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/e/expat/libexpat1_1.95.8-3.4+etch1_mips.deb
Size/MD5 checksum: 64688 a0490288615044b9e71d2287db1e3b55
[continued in next message]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)