Accepted xerces-c 3.2.3+debian-2 (source) into unstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 11 Dec 2020 11:22:23 -0500
Source: xerces-c
Architecture: source
Version: 3.2.3+debian-2
Distribution: unstable
Urgency: medium
Maintainer: William Blough <bblough@debian.org>
Changed-By: William Blough <bblough@debian.org>
Changes:
xerces-c (3.2.3+debian-2) unstable; urgency=medium
.
[ Sylvain Beucler ]
* CVE-2018-1311 mitigation: fix use-after-free vulnerability when
processing external DTD, at the expense of a memory leak. Users may
mitigate both by setting the XERCES_DISABLE_DTD environment variable.
.
[ William Blough ]
* Update d/watch to v4
* Update standards version to 4.5.1 (no changes)
Checksums-Sha1:
8fdded3f044491aa0ec64dd488d17aa8555ef340 2493 xerces-c_3.2.3+debian-2.dsc
0cd5d0e7d73edfc8323d099106e29c69d4a04734 22984 xerces-c_3.2.3+debian-2.debian.tar.xz
faf261dc858be865f0d43c8c37467b2000cc554a 10943 xerces-c_3.2.3+debian-2_amd64.buildinfo
Checksums-Sha256:
9b027cea909e71856da11f02999230b5217dfae8bcb0de83f5e55b2fd95ada08 2493 xerces-c_3.2.3+debian-2.dsc
08861de4651d4fd273b40f2194ba43a483b296677c3c51db2467f9a7d36ee174 22984 xerces-c_3.2.3+debian-2.debian.tar.xz
1d2a34ce02deb0c013d622f0df8d96b6d104ad8ea5208510968e31f70788c207 10943 xerces-c_3.2.3+debian-2_amd64.buildinfo
Files:
c0ffdfa1e6db2b908838cb57addcc8a6 2493 libs optional xerces-c_3.2.3+debian-2.dsc
ab6760597fee75f3b5a140ce3fad8f94 22984 libs optional xerces-c_3.2.3+debian-2.debian.tar.xz
3fe37de22cdf6c7bb0ef1c5564c4fbd8 10943 libs optional xerces-c_3.2.3+debian-2_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=0VMi
-----END PGP SIGNATURE-----