The USN-3739-1: libxml2 and USN-3739-2: libxml2 vulnerabilities are fixed automatically and installed on SecureDrop production instances. I received the following OSSEC alert.
OSSEC HIDS Notification. 2018 Aug 15 04:25:51 Received From: (app) A.B.C.D->/var/log/dpkg.log Rule: 2902 fired (level 7) -> "New dpkg (Debian Package) installed." Portion of the log(s): 2018-08-15 04:25:50 status installed libxml2:amd64 2.9.1+dfsg1-3ubuntu4.13 --END OF NOTIFICATION OSSEC HIDS Notification. 2018 Aug 15 04:25:51 Received From: (app) A.B.C.D->/var/log/dpkg.log Rule: 2902 fired (level 7) -> "New dpkg (Debian Package) installed." Portion of the log(s): 2018-08-15 04:25:50 status installed linux-libc-dev:amd64 3.13.0-155.205 --END OF NOTIFICATION OSSEC HIDS Notification. 2018 Aug 15 04:25:51 Received From: (app) A.B.C.D->/var/log/dpkg.log Rule: 2902 fired (level 7) -> "New dpkg (Debian Package) installed." Portion of the log(s): 2018-08-15 04:25:50 status installed libc-bin:amd64 2.19-0ubuntu6.14 --END OF NOTIFICATION