ELSA-2022-6878

ULN >
Oracle Linux Errata repository >
ELSA-2022-6878

ELSA-2022-6878 - expat security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2022-10-11

Description

[2.2.5-8.0.1.3]
- lib: Prevent integer overflow in doProlog [CVE-2022-23990][Orabug: 33910314]

[2.2.5-8.3]
- Ensure raw tagnames are safe exiting internalEntityParser
- Resolves: CVE-2022-40674

Related CVEs

CVE-2022-40674

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	expat-2.2.5-8.0.1.el8_6.3.src.rpm	96b6d4441d60fccb33a45e22f9c492e58dd313bc115d92f192a0ac148075fe26	-	ol8_aarch64_baseos_latest
	expat-2.2.5-8.0.1.el8_6.3.src.rpm	96b6d4441d60fccb33a45e22f9c492e58dd313bc115d92f192a0ac148075fe26	-	ol8_aarch64_u6_baseos_patch
	expat-2.2.5-8.0.1.el8_6.3.aarch64.rpm	da77a94f4493f7c9719abc174377a6603a630394121c38cac7d8ee72758e16db	-	ol8_aarch64_baseos_latest
	expat-2.2.5-8.0.1.el8_6.3.aarch64.rpm	da77a94f4493f7c9719abc174377a6603a630394121c38cac7d8ee72758e16db	-	ol8_aarch64_u6_baseos_patch
	expat-devel-2.2.5-8.0.1.el8_6.3.aarch64.rpm	4f493302025fbb87d4e70a0ba70a1f53095e2c9624090d44c15301c2310cf4e8	-	ol8_aarch64_baseos_latest
	expat-devel-2.2.5-8.0.1.el8_6.3.aarch64.rpm	4f493302025fbb87d4e70a0ba70a1f53095e2c9624090d44c15301c2310cf4e8	-	ol8_aarch64_u6_baseos_patch

Oracle Linux 8 (x86_64)	expat-2.2.5-8.0.1.el8_6.3.src.rpm	96b6d4441d60fccb33a45e22f9c492e58dd313bc115d92f192a0ac148075fe26	-	ol8_x86_64_baseos_latest
	expat-2.2.5-8.0.1.el8_6.3.src.rpm	96b6d4441d60fccb33a45e22f9c492e58dd313bc115d92f192a0ac148075fe26	-	ol8_x86_64_u6_baseos_patch
	expat-2.2.5-8.0.1.el8_6.3.i686.rpm	6ea66bdb40da5f8d7db60ae6e0ec0465836786eb5531f26b53cef64c58ac87ee	-	ol8_x86_64_baseos_latest
	expat-2.2.5-8.0.1.el8_6.3.i686.rpm	6ea66bdb40da5f8d7db60ae6e0ec0465836786eb5531f26b53cef64c58ac87ee	-	ol8_x86_64_u6_baseos_patch
	expat-2.2.5-8.0.1.el8_6.3.x86_64.rpm	e1420cd7076dd2b81cb5c49fa89130165c2561cefb3cdea85625a59aa6c33148	-	ol8_x86_64_baseos_latest
	expat-2.2.5-8.0.1.el8_6.3.x86_64.rpm	e1420cd7076dd2b81cb5c49fa89130165c2561cefb3cdea85625a59aa6c33148	-	ol8_x86_64_u6_baseos_patch
	expat-devel-2.2.5-8.0.1.el8_6.3.i686.rpm	0b91791c143857f19fdbd17d7f02b2ed569cdf9c102599207adc2b8bf40479cc	-	ol8_x86_64_baseos_latest
	expat-devel-2.2.5-8.0.1.el8_6.3.i686.rpm	0b91791c143857f19fdbd17d7f02b2ed569cdf9c102599207adc2b8bf40479cc	-	ol8_x86_64_u6_baseos_patch
	expat-devel-2.2.5-8.0.1.el8_6.3.x86_64.rpm	df5576b5719a922fd5d7be34a392c32506f0c784c31eb3e24c794e7866b1441c	-	ol8_x86_64_baseos_latest
	expat-devel-2.2.5-8.0.1.el8_6.3.x86_64.rpm	df5576b5719a922fd5d7be34a392c32506f0c784c31eb3e24c794e7866b1441c	-	ol8_x86_64_u6_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691