Package "libxalan2-java"

Name:	libxalan2-java
Description:	XSL Transformations (XSLT) processor in Java
Latest version:	2.7.1-7ubuntu0.1
Release:	precise (12.04)
Level:	security
Repository:	main
Homepage:	http://xml.apache.org/xalan-j/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "libxalan2-java"

All arch deb package

APT INSTALL

Other versions of "libxalan2-java" in Precise

Repository	Area	Version
base	main	2.7.1-7
updates	main	2.7.1-7ubuntu0.1

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 2.7.1-7ubuntu0.1 2014-05-21 20:07:16 UTC

libxalan2-java (2.7.1-7ubuntu0.1) precise-security; urgency=medium * SECURITY UPDATE: information disclosure or arbitrary code execution via crafted XSLT programs - debian/patches/CVE-2014-0107.patch: disable external general entities, foreign attributes and access to the system properties in src/org/apache/xalan/transformer/TransformerImpl.java, src/org/apache/xalan/processor/XSLTElementProcessor.java, src/org/apache/xalan/processor/TransformerFactoryImpl.java, src/org/apache/xpath/functions/FuncSystemProperty.java. - CVE-2014-0107 -- Marc Deslauriers <email address hidden> Mon, 31 Mar 2014 13:19:53 -0400

CVE-2014-0107

Xalan-Java insufficient secure processing

About - Send Feedback to @ubuntu_updates

Package "libxalan2-java"

Links

Download "libxalan2-java"

Other versions of "libxalan2-java" in Precise

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

updates

security

proposed

PPA updates