Fedora 21 Security Update: castor-1.3.3-1.fc21

Resolved Bugs
1108639 – CVE-2014-3004 castor: XML External Entity (XXE) attacks via a crafted XML document
1108691 – CVE-2014-3004 castor: XML External Entity (XXE) attacks via a crafted XML document [fedora-all]<br
Update to latest upstream point release containing fix for CVE-2014-3004

Leave a Reply