AVG-644

Package xerces-c
Status Fixed
Severity High
Type arbitrary code execution
Affected 3.2.0-2
Fixed 3.2.1-1
Current 3.2.1-2 [extra]
Ticket None
Created Thu Mar 1 17:09:41 2018
Issue Severity Remote Type Description
CVE-2017-12627 High Yes Arbitrary code execution
The Xerces-C XML parser mishandles certain kinds of external DTD references, resulting in dereference of a NULL pointer while processing the path to the...
Date Advisory Package Description
25 Mar 2018 ASA-201803-23 xerces-c arbitrary code execution