Debian DSA-1921-1 : expat - denial of service
Medium Nessus Plugin ID 44786
SynopsisThe remote Debian host is missing a security-related update.
DescriptionPeter Valchev discovered an error in expat, an XML parsing C library, when parsing certain UTF-8 sequences, which can be exploited to crash an application using the library.
SolutionUpgrade the expat packages.
For the old stable distribution (etch), this problem has been fixed in version 1.95.8-3.4+etch1.
For the stable distribution (lenny), this problem has been fixed in version 2.0.1-4+lenny1.