ELSA-2024-1530

ULN >
Oracle Linux Errata repository >
ELSA-2024-1530

ELSA-2024-1530 - expat security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-03-26

Description

[2.5.0-1.1]
- CVE-2023-52425: Fix parsing of large tokens
- CVE-2024-28757: Reject direct parameter entity recursion
- Resolves: RHEL-29698
- Resolves: RHEL-29695

Related CVEs

CVE-2023-52425

CVE-2024-28757

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	expat-2.5.0-1.el9_3.1.src.rpm	c19b7dffe74de685eb2326410b4332db	-	ol9_aarch64_appstream
	expat-2.5.0-1.el9_3.1.src.rpm	c19b7dffe74de685eb2326410b4332db	-	ol9_aarch64_baseos_latest
	expat-2.5.0-1.el9_3.1.aarch64.rpm	63aed612bab5b1902e68cdbe9428b991	-	ol9_aarch64_baseos_latest
	expat-devel-2.5.0-1.el9_3.1.aarch64.rpm	2c69d71c965c1c5b54219e25a8e1f2a1	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	expat-2.5.0-1.el9_3.1.src.rpm	c19b7dffe74de685eb2326410b4332db	-	ol9_x86_64_appstream
	expat-2.5.0-1.el9_3.1.src.rpm	c19b7dffe74de685eb2326410b4332db	-	ol9_x86_64_baseos_latest
	expat-2.5.0-1.el9_3.1.i686.rpm	3019bb7841f4ddb670be05180f77dd39	-	ol9_x86_64_baseos_latest
	expat-2.5.0-1.el9_3.1.x86_64.rpm	33023b77c0235c002e9b311ad1774e9c	-	ol9_x86_64_baseos_latest
	expat-devel-2.5.0-1.el9_3.1.i686.rpm	f72a2e7609415afcf6fcdfc6da58ea30	-	ol9_x86_64_appstream
	expat-devel-2.5.0-1.el9_3.1.x86_64.rpm	a563323e21c55010baa4e11ad089de25	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691