Package name
davfs
Date
2010-01-05
Advisory ID
MDVSA-2009:220-1
Affected versions
2008.0 i586 , 2008.0 x86_64

Problem description

A vulnerability was found in xmltok_impl.c (expat) that with
specially crafted XML could be exploited and lead to a denial of
service attack. Related to CVE-2009-2625 (CVE-2009-3720).

This update fixes this vulnerability.

Update:

Packages for 2008.0 are provided for Corporate Desktop 2008.0
customers.

Updated packages

2008.0 i586

 1bdf969bcbde0e5c447f6c69a349e890  2008.0/i586/davfs-0.2.4-10.1mdv2008.0.i586.rpm 
 3a0db412548d67a97686ef6f271f8898  2008.0/SRPMS/davfs-0.2.4-10.1mdv2008.0.src.rpm

2008.0 x86_64

 569fe422111f00790722b845f1f51411  2008.0/x86_64/davfs-0.2.4-10.1mdv2008.0.x86_64.rpm 
 3a0db412548d67a97686ef6f271f8898  2008.0/SRPMS/davfs-0.2.4-10.1mdv2008.0.src.rpm

References