Ubuntu
xmltooling package

New vulnerability in libxmltooling

Bug #2024369 reported by Fredrik Pettai
272
This bug affects 3 people
Affects Status Importance Assigned to Milestone
xmltooling (Ubuntu)
Confirmed
Undecided
Unassigned

CVE References

Fredrik Pettai (pettai)
information type: Private Security → Public Security
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in xmltooling (Ubuntu):
status: New → Confirmed
Revision history for this message
Fredrik Pettai (pettai) wrote :

It's pretty straight forward to backport the fix to focal, just simply backport the shibboleth/debian patch:

https://salsa.debian.org/shib-team/xmltooling/-/commit/47aa66aaa4f42c052898bbebf39f661ba8230d47

(I've done that in our local PPA)

I shouldn't be a biggy to add the same to the later LTS version too...

https://salsa.debian.org/shib-team/xmltooling/-/commit/6080f6343f98fec085bc0fd746913ee418cc9d30

To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.