ELSA-2022-9359

ULN >
Oracle Linux Errata repository >
ELSA-2022-9359

ELSA-2022-9359 - expat security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2022-05-06

Description

[2.0.1-13.0.1]
- Prevent integer overflow in storeRawNames [CVE-2022-25315][Orabug: 34059442]
- Add missing validation of encoding [CVE-2022-25235][Orabug: 34059442]
- Protect against malicious namespace declarations [CVE-2022-25236][Orabug: 34059442]

Related CVEs

CVE-2022-25236

CVE-2022-25235

CVE-2022-25315

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	expat-2.0.1-13.0.1.el6_8.src.rpm	c6ecb7ae9bd75e7e6d307bb8aeee29fde3be6c147df49994aea371189af97b1b	ELSA-2022-9962	ol6_i386_ELS
	expat-2.0.1-13.0.1.el6_8.i686.rpm	0ab39d17da8561bb10ee288c086163c750fa863cfd9be1887569b75b367c58e4	ELSA-2022-9962	ol6_i386_ELS
	expat-devel-2.0.1-13.0.1.el6_8.i686.rpm	4955454e4a15472c65fc0590310fff75a0b629b43b2c5978df213fa951953dde	ELSA-2022-9962	ol6_i386_ELS

Oracle Linux 6 (x86_64)	expat-2.0.1-13.0.1.el6_8.src.rpm	c6ecb7ae9bd75e7e6d307bb8aeee29fde3be6c147df49994aea371189af97b1b	ELSA-2022-9962	ol6_x86_64_ELS
	expat-2.0.1-13.0.1.el6_8.i686.rpm	0ab39d17da8561bb10ee288c086163c750fa863cfd9be1887569b75b367c58e4	ELSA-2022-9962	ol6_x86_64_ELS
	expat-2.0.1-13.0.1.el6_8.x86_64.rpm	e745ba1c11aded3b17fb4f97746989f47a4b5e761a0c0618257ea1eeb3d93898	ELSA-2022-9962	ol6_x86_64_ELS
	expat-devel-2.0.1-13.0.1.el6_8.i686.rpm	4955454e4a15472c65fc0590310fff75a0b629b43b2c5978df213fa951953dde	ELSA-2022-9962	ol6_x86_64_ELS
	expat-devel-2.0.1-13.0.1.el6_8.x86_64.rpm	3b55501147b007a07da7d2d9333674aa28f341d89b3e4cc48829af7c936d1a3d	ELSA-2022-9962	ol6_x86_64_ELS

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691