ELSA-2023-0337

ULN >
Oracle Linux Errata repository >
ELSA-2023-0337

ELSA-2023-0337 - expat security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2023-01-24

Description

[2.4.9-1.1]
- CVE-2022-43680 expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate
- Resolves: CVE-2022-43680

Related CVEs

CVE-2022-43680

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 9 (aarch64)	expat-2.4.9-1.el9_1.1.src.rpm	57295a3d9016f718fa1ea2b8111e03f5	-
	expat-2.4.9-1.el9_1.1.aarch64.rpm	2094fe8bde0aaa2fc6ad5c2810a3d067	-
	expat-devel-2.4.9-1.el9_1.1.aarch64.rpm	f477afa2b8b12f33d4cca0fcfb876c28	-

Oracle Linux 9 (x86_64)	expat-2.4.9-1.el9_1.1.src.rpm	57295a3d9016f718fa1ea2b8111e03f5	-
	expat-2.4.9-1.el9_1.1.i686.rpm	fba09f61cd341d9bbd1e0c6c838eba19	-
	expat-2.4.9-1.el9_1.1.x86_64.rpm	0402bf88a757f9552502807a2598461d	-
	expat-devel-2.4.9-1.el9_1.1.i686.rpm	5798d7eeb40d4e4cf4d70869b327f070	-
	expat-devel-2.4.9-1.el9_1.1.x86_64.rpm	95ed199706a43dca5a6b784dd18f5f08	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691