-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 28 May 2016 06:56:40 +0200
Source: libxml2
Binary: libxml2 libxml2-utils libxml2-utils-dbg libxml2-dev libxml2-dbg libxml2-doc python-libxml2 python-libxml2-dbg
Architecture: armel
Version: 2.9.1+dfsg1-5+deb8u2
Distribution: jessie-security
Urgency: high
Maintainer: armhf / armel Build Daemon (hoiby) <buildd_armhf-hoiby@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 libxml2    - GNOME XML library
 libxml2-dbg - Debugging symbols for the GNOME XML library
 libxml2-dev - Development files for the GNOME XML library
 libxml2-doc - Documentation for the GNOME XML library
 libxml2-utils - XML utilities
 libxml2-utils-dbg - XML utilities (debug extension)
 python-libxml2 - Python bindings for the GNOME XML library
 python-libxml2-dbg - Python bindings for the GNOME XML library (debug extension)
Closes: 812807 813613 819006 823405 823414
Changes:
 libxml2 (2.9.1+dfsg1-5+deb8u2) jessie-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Heap-based buffer overread in xmlNextChar (CVE-2016-1762)
   * heap-buffer-overflow in xmlStrncat (CVE-2016-1834)
   * Add missing increments of recursion depth counter to XML parser
     (CVE-2016-3705) (Closes: #823414)
   * Avoid an out of bound access when serializing malformed strings
     (CVE-2016-4483) (Closes: #823405)
   * Heap-buffer-overflow in xmlFAParsePosCharGroup (CVE-2016-1840)
   * Heap-based buffer overread in xmlParserPrintFileContextInternal
     (CVE-2016-1838)
   * Heap-based buffer overread in xmlDictAddString (CVE-2016-1839
     CVE-2015-8806 CVE-2016-2073) (Closes: #813613, #812807)
   * Heap use-after-free in xmlDictComputeFastKey (CVE-2016-1836)
   * Fix inappropriate fetch of entities content (CVE-2016-4449)
   * Heap use-after-free in htmlParsePubidLiteral and htmlParseSystemiteral
     (CVE-2016-1837)
   * Heap use-after-free in xmlSAX2AttributeNs (CVE-2016-1835)
   * Heap-based buffer-underreads due to xmlParseName (CVE-2016-4447)
   * Heap-based buffer overread in htmlCurrentChar (CVE-2016-1833)
   * Avoid building recursive entities (CVE-2016-3627) (Closes: #819006)
Checksums-Sha1:
 7e45ab0d71bc4ee5f374952edeca1752f593cf2e 708190 libxml2_2.9.1+dfsg1-5+deb8u2_armel.deb
 8953b97ddd43a996dd4e04860e497cf743f6381a 90108 libxml2-utils_2.9.1+dfsg1-5+deb8u2_armel.deb
 389ec7666d72b8c8626f21305398a83183d72b5c 125422 libxml2-utils-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb
 7490d1b57fd838f792b5b59e34429b3149589be6 629426 libxml2-dev_2.9.1+dfsg1-5+deb8u2_armel.deb
 ae50c6969ff10bf21bcebc567894b36c65304354 1324892 libxml2-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb
 a135777ba1b62fa1c4837ae04fa7b8e90d5532a1 178642 python-libxml2_2.9.1+dfsg1-5+deb8u2_armel.deb
 c2d701c211c907d36949cae9a5ae8f4d25f6a3d2 300060 python-libxml2-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb
Checksums-Sha256:
 67939e6581f8ff655d30296ae43449fe92845b8f6ac49befaa2297f7a3ef815a 708190 libxml2_2.9.1+dfsg1-5+deb8u2_armel.deb
 912405887ba44ee068f5f4db62bf8c8e27f8676fcbcba1f43bac40745cfa4ddb 90108 libxml2-utils_2.9.1+dfsg1-5+deb8u2_armel.deb
 8619065f7ad9ccda7acda7f8dfd92daf99c471dd09ed02d956b7f6f056159958 125422 libxml2-utils-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb
 2a8ea719ad2acb01a001f06608330e3bdc419f25174e901b38f20927bb0e41b3 629426 libxml2-dev_2.9.1+dfsg1-5+deb8u2_armel.deb
 e23c40ec9cdf54de12f3cd7889eb1d6cc9d030dc8d947a7a1359f1742a7c903a 1324892 libxml2-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb
 2eaa3d683d8b8a0b78f86ecb002e238d264c21f7d1a1a7710fe0bced2942f584 178642 python-libxml2_2.9.1+dfsg1-5+deb8u2_armel.deb
 b40e11130e7f3d611e2a0078a06f497436bc2d45823c68df0121b3e9a04b5207 300060 python-libxml2-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb
Files:
 c784bb3aa5200a2c5cbd0bccde6cbf12 708190 libs standard libxml2_2.9.1+dfsg1-5+deb8u2_armel.deb
 828c802181b3ea28b90d84bbeda2c5b5 90108 text optional libxml2-utils_2.9.1+dfsg1-5+deb8u2_armel.deb
 d826535b19abf12362e4342e6b617b5d 125422 debug extra libxml2-utils-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb
 97f287c5323f1905186fb1703e92464d 629426 libdevel optional libxml2-dev_2.9.1+dfsg1-5+deb8u2_armel.deb
 cc32e41b297eef74044abb794fd5fbe8 1324892 debug extra libxml2-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb
 4d546e97365a929656280b93a6943533 178642 python optional python-libxml2_2.9.1+dfsg1-5+deb8u2_armel.deb
 9ef5f413ebd58f49ea02d3a2967613c7 300060 debug extra python-libxml2-dbg_2.9.1+dfsg1-5+deb8u2_armel.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=4s9c
-----END PGP SIGNATURE-----