ELSA-2022-9359

ELSA-2022-9359 - expat security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2022-05-06

Description


[2.0.1-13.0.1]
- Prevent integer overflow in storeRawNames [CVE-2022-25315][Orabug: 34059442]
- Add missing validation of encoding [CVE-2022-25235][Orabug: 34059442]
- Protect against malicious namespace declarations [CVE-2022-25236][Orabug: 34059442]


Related CVEs


CVE-2022-25236
CVE-2022-25235
CVE-2022-25315

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 6 (i386) expat-2.0.1-13.0.1.el6_8.src.rpmc6ecb7ae9bd75e7e6d307bb8aeee29fde3be6c147df49994aea371189af97b1bELSA-2022-9962ol6_i386_ELS
expat-2.0.1-13.0.1.el6_8.i686.rpm0ab39d17da8561bb10ee288c086163c750fa863cfd9be1887569b75b367c58e4ELSA-2022-9962ol6_i386_ELS
expat-devel-2.0.1-13.0.1.el6_8.i686.rpm4955454e4a15472c65fc0590310fff75a0b629b43b2c5978df213fa951953ddeELSA-2022-9962ol6_i386_ELS
Oracle Linux 6 (x86_64) expat-2.0.1-13.0.1.el6_8.src.rpmc6ecb7ae9bd75e7e6d307bb8aeee29fde3be6c147df49994aea371189af97b1bELSA-2022-9962ol6_x86_64_ELS
expat-2.0.1-13.0.1.el6_8.i686.rpm0ab39d17da8561bb10ee288c086163c750fa863cfd9be1887569b75b367c58e4ELSA-2022-9962ol6_x86_64_ELS
expat-2.0.1-13.0.1.el6_8.x86_64.rpme745ba1c11aded3b17fb4f97746989f47a4b5e761a0c0618257ea1eeb3d93898ELSA-2022-9962ol6_x86_64_ELS
expat-devel-2.0.1-13.0.1.el6_8.i686.rpm4955454e4a15472c65fc0590310fff75a0b629b43b2c5978df213fa951953ddeELSA-2022-9962ol6_x86_64_ELS
expat-devel-2.0.1-13.0.1.el6_8.x86_64.rpm3b55501147b007a07da7d2d9333674aa28f341d89b3e4cc48829af7c936d1a3dELSA-2022-9962ol6_x86_64_ELS



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete