[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

TortoiseSVN bundles vulnerable copy of Expat - please update to 2.2.3

From: Sebastian Pipping <sebastian_at_pipping.org>
Date: Sat, 5 Aug 2017 00:04:22 +0200

Hi!

Just a quick note that Expat 2.2.3 has been released, including a fix to
DLL hijacking (CVE-2017-11742 [1]). For more details, please check the
change log [2].

Best

Sebastian

[1] https://www.cvedetails.com/cve/CVE-2017-11742/
[2] https://github.com/libexpat/libexpat/blob/master/expat/Changes

------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=757&dsMessageId=3280829

To unsubscribe from this discussion, e-mail: [dev-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2017-08-05 08:16:08 CEST

This is an archived mail posted to the TortoiseSVN Dev mailing list.