Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Wed, 2 Aug 2017 21:37:27 +0200
From: Sebastian Pipping <sebastian@...ping.org>
To: oss-security@...ts.openwall.com
Subject: CVE-2017-11742 - Expat 2.2.{1,2} LoadLibrary DLL hijacking
 vulnerability on Windows

Hi!


Just a quick note that Expat 2.2.3 [1] released today fixes
CVE-2017-11742 [2][3], a DLL hijacking vulnerability on Windows.

Best



Sebastian


[1] https://github.com/libexpat/libexpat/blob/master/expat/Changes
[2] https://www.cvedetails.com/cve/CVE-2017-11742/
[3] https://github.com/libexpat/libexpat/issues/82

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ