Debian-LTS has issued an advisory on November 25:
Debian has a patch. From the CVE entry, it sounds like the version in Cauldron may be new enough to contain the fix.
Patched package uploaded for Mageia 5.
Updated perl-SOAP-Lite package fixes security vulnerability:
It was discovered that there was a "Billion Laughs"  XML expansion
vulnerability in SOAP::Lite (CVE-2015-8978).
Updated packages in core/updates_testing: