Stay Connected:

ELSA-2024-1530

ELSA-2024-1530 - expat security update

Type:SECURITY
Impact:MODERATE
Release Date:2024-03-26

Description


[2.5.0-1.1]
- CVE-2023-52425: Fix parsing of large tokens
- CVE-2024-28757: Reject direct parameter entity recursion
- Resolves: RHEL-29698
- Resolves: RHEL-29695


Related CVEs


CVE-2023-52425
CVE-2024-28757

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) expat-2.5.0-1.el9_3.1.src.rpm776a563a523aa71742e4acb342b4f62ab07dabd8f83162a00a0eb03f47375815-ol9_aarch64_appstream
expat-2.5.0-1.el9_3.1.src.rpm776a563a523aa71742e4acb342b4f62ab07dabd8f83162a00a0eb03f47375815-ol9_aarch64_baseos_latest
expat-2.5.0-1.el9_3.1.aarch64.rpm9e333b6d9ef8ffcfd0131aa6d149c95d7f5cb16b8830910de88ab7be764a557c-ol9_aarch64_baseos_latest
expat-devel-2.5.0-1.el9_3.1.aarch64.rpm945c9c3b262e7ad5e47ee53ed37e6c40b94a119fadaf8f88218a7213f6cb045e-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) expat-2.5.0-1.el9_3.1.src.rpm776a563a523aa71742e4acb342b4f62ab07dabd8f83162a00a0eb03f47375815-ol9_x86_64_appstream
expat-2.5.0-1.el9_3.1.src.rpm776a563a523aa71742e4acb342b4f62ab07dabd8f83162a00a0eb03f47375815-ol9_x86_64_baseos_latest
expat-2.5.0-1.el9_3.1.i686.rpm6efbfe30b08487009aa454cbe1043bb4b99ac595b528668c07b68a0411e2d6a0-ol9_x86_64_baseos_latest
expat-2.5.0-1.el9_3.1.x86_64.rpm476e5ab7d2ef219e8b93f8f24327fc7f37875ac5b4ef64ec01d302ae2a66663b-ol9_x86_64_baseos_latest
expat-devel-2.5.0-1.el9_3.1.i686.rpm15a84e93a912732a02cf6116f834f59f12aea35442234c0d2a05a34245eab1ec-ol9_x86_64_appstream
expat-devel-2.5.0-1.el9_3.1.x86_64.rpmb29b85a84b2fbd1239cfed94ecb5a9cbf5335cf7c7ec1bdfe064618a7e9d13f5-ol9_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights