Debian DSA-1631-2 : libxml2 - denial of service
Medium Nessus Plugin ID 34033
SynopsisThe remote Debian host is missing a security-related update.
DescriptionAndreas Solberg discovered that libxml2, the GNOME XML library, could be forced to recursively evaluate entities, until available CPU and memory resources were exhausted.
SolutionUpgrade the libxml2 package.
For the stable distribution (etch), this problem has been fixed in version 2.6.27.dfsg-4.