USN-3739-{1,2}: libxml2 vulnerabilities


#1

The USN-3739-1: libxml2 and USN-3739-2: libxml2 vulnerabilities are fixed automatically and installed on SecureDrop production instances. I received the following OSSEC alert.

OSSEC HIDS Notification.
2018 Aug 15 04:25:51

Received From: (app) A.B.C.D->/var/log/dpkg.log
Rule: 2902 fired (level 7) -> "New dpkg (Debian Package) installed."
Portion of the log(s):

2018-08-15 04:25:50 status installed libxml2:amd64 2.9.1+dfsg1-3ubuntu4.13

 --END OF NOTIFICATION

OSSEC HIDS Notification.
2018 Aug 15 04:25:51

Received From: (app) A.B.C.D->/var/log/dpkg.log
Rule: 2902 fired (level 7) -> "New dpkg (Debian Package) installed."
Portion of the log(s):

2018-08-15 04:25:50 status installed linux-libc-dev:amd64 3.13.0-155.205

 --END OF NOTIFICATION

OSSEC HIDS Notification.
2018 Aug 15 04:25:51

Received From: (app) A.B.C.D->/var/log/dpkg.log
Rule: 2902 fired (level 7) -> "New dpkg (Debian Package) installed."
Portion of the log(s):

2018-08-15 04:25:50 status installed libc-bin:amd64 2.19-0ubuntu6.14

 --END OF NOTIFICATION