xmlrpc-epi 0.54.2-1+deb7u1ubuntu0.12.04.1 source package in Ubuntu
Changelog
xmlrpc-epi (0.54.2-1+deb7u1ubuntu0.12.04.1) precise-security; urgency=medium
* Security merge from Debian
- apply d/p/CVE-2016-6296.patch directly
xmlrpc-epi (0.54.2-1+deb7u1) wheezy-security; urgency=high
* Non-maintainer upload by the Wheezy LTS Team.
* CVE-2016-6296.patch
Integer signedness error in the simplestring_addn function in
simplestring.c in xmlrpc-epi through 0.54.2, as used in PHP
before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9, allows
remote attackers to cause a denial of service (heap-based buffer
overflow) or possibly have unspecified other impact via a long
first argument to the PHP xmlrpc_encode_request function.
-- Steve Beattie <email address hidden> Fri, 19 Aug 2016 11:45:52 -0700
Upload details
- Uploaded by:
- Steve Beattie
- Uploaded to:
- Precise
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Precise | updates | universe | libs | |
| Precise | security | universe | libs |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| xmlrpc-epi_0.54.2.orig.tar.gz | 514.1 KiB | 397b60f39b51a339a2e505da1b9721a31c3e073aaac6c565de240f4e5356cf13 |
| xmlrpc-epi_0.54.2-1+deb7u1ubuntu0.12.04.1.diff.gz | 5.0 KiB | c7673995f16275df95710bd4ab7fc07f36be439cde6614a007adff3ee760fd36 |
| xmlrpc-epi_0.54.2-1+deb7u1ubuntu0.12.04.1.dsc | 2.2 KiB | a4f994f55b323cc2c2fbd132a699c1773ebb27b5c1d7d84797597ec066f39aca |
Available diffs
Binary packages built by this source
- libxmlrpc-epi-dev: Development files for libxmlrpc-epi0, a XML-RPC request library
An implementation of the XML-RPC protocol, providing an API for developers to
serialise RPC requests to and from XML. It does not include any transport layer
and is therefor useful for applications which implement their own transport or
wish to use XML-RPC over an existing transport layer. This package contains
the development files for applications wishing to use libxmlrpc-epi.
- libxmlrpc-epi0: XML-RPC request serialisation/deserialisation library
A library that implements a transportless implementation of the XML-RPC
protocol.
- libxmlrpc-epi0-dbg: Debug symbols for libxmlrpc-epi0, a XML-RPC request library
This package contains the debug symbols for libxmlrpc-epi0, and should be
installed if you wish to get stack traces into the library for debugging
purposes.
- libxmlrpc-epi0-dbgsym: debug symbols for package libxmlrpc-epi0
A library that implements a transportless implementation of the XML-RPC
protocol.
