[Bug 1191425] CVE-2014-0191 mingw32-libxml2: libxml2: external parameter entity loaded when entity substitution is disabled [epel-7]

bugzilla at redhat.com bugzilla at redhat.com
Wed Feb 11 11:35:53 UTC 2015


https://bugzilla.redhat.com/show_bug.cgi?id=1191425

Erik van Pienbroek <erik-fedora at vanpienbroek.nl> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |erik-fedora at vanpienbroek.nl
                   |                            |, thoger at redhat.com
              Flags|                            |needinfo?(thoger at redhat.com
                   |                            |)



--- Comment #2 from Erik van Pienbroek <erik-fedora at vanpienbroek.nl> ---
This bug looks invalid, in EPEL there is no mingw32-libxml2 (source) package
but it was replaced the mingw-libxml2 source package which contains the binary
packages mingw32-libxml2 and mingw64-libxml2. The current version of the
mingw-libxml2 package in EPEL-7 is mingw-libxml2-2.9.2-1.el7
(http://koji.fedoraproject.org/koji/buildinfo?buildID=600663) which already
contains the fix for this security issue

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=w9pv4xbjpb&a=cc_unsubscribe


More information about the mingw mailing list