File _patchinfo of Package patchinfo

<patchinfo incident="5287">
  <issue id="979208" tracker="bnc">VUL-0: CVE-2016-2099: xerces: use-after-free in Xerces 3.1.3</issue>
  <issue id="2016-2099" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>AndreasStieger</packager>
  <description>xerces-c was updated to fix one security issue.

This security issue was fixed:
- CVE-2016-2099: Use-after-free vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++. It did not properly handle exceptions raised in the XMLReader class, which allowed context-dependent attackers to have unspecified impact via an invalid character in an XML document (bsc#979208).
</description>
  <summary>Security update for xerces-c</summary>
</patchinfo>