Debian DSA-2137-1 : libxml2 - several vulnerabilities
Critical Nessus Plugin ID 51399
SynopsisThe remote Debian host is missing a security-related update.
DescriptionYang Dingning discovered a double free in libxml's Xpath processing, which might allow the execution of arbitrary code.
SolutionUpgrade the libxml2 packages.
For the stable distribution (lenny), this problem has been fixed in version 2.6.32.dfsg-5+lenny3.
For the upcoming stable distribution (squeeze) and the unstable distribution (sid), this problem has been fixed in version 2.7.8.dfsg-2.