Candidate: CVE-2011-2188
PublicDate: 2011-06-21 02:52:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2188
Description:
 LuaExpat before 1.2.0 does not properly detect recursion during entity
 expansion, which allows remote attackers to cause a denial of service
 (memory and CPU consumption) via a crafted XML document containing a large
 number of nested entity references, a similar issue to CVE-2003-1564.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_lua-expat:
upstream_lua-expat: released (1.2.0)
hardy_lua-expat: ignored (reached end-of-life)
lucid_lua-expat: ignored (reached end-of-life)
maverick_lua-expat: ignored (reached end-of-life)
natty_lua-expat: ignored (reached end-of-life)
oneiric_lua-expat: not-affected
precise_lua-expat: not-affected
quantal_lua-expat: not-affected
raring_lua-expat: not-affected
saucy_lua-expat: not-affected
devel_lua-expat: not-affected