ELSA-2024-6754

ULN >
Oracle Linux Errata repository >
ELSA-2024-6754

ELSA-2024-6754 - expat security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-09-18

Description

[2.5.0-2.1]
- Fix multiple CVEs
- Fix CVE-2024-45492 integer overflow
- Fix CVE-2024-45491 Integer Overflow or Wraparound
- Fix CVE-2024-45490 Negative Length Parsing Vulnerability
- Resolves: RHEL-57510
- Resolves: RHEL-57497
- Resolves: RHEL-56763

Related CVEs

CVE-2024-45492

CVE-2024-45490

CVE-2024-45491

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	expat-2.5.0-2.el9_4.1.src.rpm	a22bbdc9a36475d2c7eda469dc66142d	-	ol9_aarch64_appstream
	expat-2.5.0-2.el9_4.1.src.rpm	a22bbdc9a36475d2c7eda469dc66142d	-	ol9_aarch64_baseos_latest
	expat-2.5.0-2.el9_4.1.src.rpm	a22bbdc9a36475d2c7eda469dc66142d	-	ol9_aarch64_u4_baseos_patch
	expat-2.5.0-2.el9_4.1.aarch64.rpm	4da3c8d65b7883f088721566e2747a7d	-	ol9_aarch64_baseos_latest
	expat-2.5.0-2.el9_4.1.aarch64.rpm	4da3c8d65b7883f088721566e2747a7d	-	ol9_aarch64_u4_baseos_patch
	expat-devel-2.5.0-2.el9_4.1.aarch64.rpm	a69f84c75bc91c100ff459c6a2c1c2be	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	expat-2.5.0-2.el9_4.1.src.rpm	a22bbdc9a36475d2c7eda469dc66142d	-	ol9_x86_64_appstream
	expat-2.5.0-2.el9_4.1.src.rpm	a22bbdc9a36475d2c7eda469dc66142d	-	ol9_x86_64_baseos_latest
	expat-2.5.0-2.el9_4.1.src.rpm	a22bbdc9a36475d2c7eda469dc66142d	-	ol9_x86_64_u4_baseos_patch
	expat-2.5.0-2.el9_4.1.i686.rpm	81e8907515969f87421b339d6a2df5fc	-	ol9_x86_64_baseos_latest
	expat-2.5.0-2.el9_4.1.i686.rpm	81e8907515969f87421b339d6a2df5fc	-	ol9_x86_64_u4_baseos_patch
	expat-2.5.0-2.el9_4.1.x86_64.rpm	b5a3e40cee456e38e629c3511d8e46b1	-	ol9_x86_64_baseos_latest
	expat-2.5.0-2.el9_4.1.x86_64.rpm	b5a3e40cee456e38e629c3511d8e46b1	-	ol9_x86_64_u4_baseos_patch
	expat-devel-2.5.0-2.el9_4.1.i686.rpm	bb5d229fd29b6af6884a768860dd6be1	-	ol9_x86_64_appstream
	expat-devel-2.5.0-2.el9_4.1.x86_64.rpm	14f6e06440f01513c53ca1913a3411a3	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

Oracle customers - enter a support request
Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691