A patch update to the Santuario xml-security-c library is now available that adds additional protections against crashes [1] similar to the issue that necessitated the 2.0.1 patch release. That's the only change in this release. Upstream projects should consider the impact of the issue to determine whether advisories for possible denial of service issues exist in their own software.
The release is now published and should be on the mirrors shortly. I'll update the web site imminently. -- Scott [1] https://issues.apache.org/jira/browse/SANTUARIO-496
