openSUSE Security Update : xerces-c (openSUSE-2016-429)
High Nessus Plugin ID 90418
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for xerces-c fixes the following security issues :
- CVE-2016-0729: Fix for mishandling certain kinds of malformed input documents, resulting in buffer overlows during processing and error reporting. The overflows can manifest as a segmentation fault or as memory corruption during a parse operation. (boo#966822)
- CVE-2015-0252: Fix for mishandling certain kinds of malformed input documents, resulting in a segmentation fault during a parse operation (boo#920810)
SolutionUpdate the affected xerces-c packages.