ELSA-2024-6754

ELSA-2024-6754 - expat security update

Type:SECURITY
Severity:MODERATE
Release Date:2024-09-18

Description


[2.5.0-2.1]
- Fix multiple CVEs
- Fix CVE-2024-45492 integer overflow
- Fix CVE-2024-45491 Integer Overflow or Wraparound
- Fix CVE-2024-45490 Negative Length Parsing Vulnerability
- Resolves: RHEL-57510
- Resolves: RHEL-57497
- Resolves: RHEL-56763


Related CVEs


CVE-2024-45492
CVE-2024-45490
CVE-2024-45491

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By AdvisoryChannel Label
Oracle Linux 9 (aarch64) expat-2.5.0-2.el9_4.1.src.rpma22bbdc9a36475d2c7eda469dc66142d-ol9_aarch64_appstream
expat-2.5.0-2.el9_4.1.src.rpma22bbdc9a36475d2c7eda469dc66142d-ol9_aarch64_baseos_latest
expat-2.5.0-2.el9_4.1.src.rpma22bbdc9a36475d2c7eda469dc66142d-ol9_aarch64_u4_baseos_patch
expat-2.5.0-2.el9_4.1.aarch64.rpm4da3c8d65b7883f088721566e2747a7d-ol9_aarch64_baseos_latest
expat-2.5.0-2.el9_4.1.aarch64.rpm4da3c8d65b7883f088721566e2747a7d-ol9_aarch64_u4_baseos_patch
expat-devel-2.5.0-2.el9_4.1.aarch64.rpma69f84c75bc91c100ff459c6a2c1c2be-ol9_aarch64_appstream
Oracle Linux 9 (x86_64) expat-2.5.0-2.el9_4.1.src.rpma22bbdc9a36475d2c7eda469dc66142d-ol9_x86_64_appstream
expat-2.5.0-2.el9_4.1.src.rpma22bbdc9a36475d2c7eda469dc66142d-ol9_x86_64_baseos_latest
expat-2.5.0-2.el9_4.1.src.rpma22bbdc9a36475d2c7eda469dc66142d-ol9_x86_64_u4_baseos_patch
expat-2.5.0-2.el9_4.1.i686.rpm81e8907515969f87421b339d6a2df5fc-ol9_x86_64_baseos_latest
expat-2.5.0-2.el9_4.1.i686.rpm81e8907515969f87421b339d6a2df5fc-ol9_x86_64_u4_baseos_patch
expat-2.5.0-2.el9_4.1.x86_64.rpmb5a3e40cee456e38e629c3511d8e46b1-ol9_x86_64_baseos_latest
expat-2.5.0-2.el9_4.1.x86_64.rpmb5a3e40cee456e38e629c3511d8e46b1-ol9_x86_64_u4_baseos_patch
expat-devel-2.5.0-2.el9_4.1.i686.rpmbb5d229fd29b6af6884a768860dd6be1-ol9_x86_64_appstream
expat-devel-2.5.0-2.el9_4.1.x86_64.rpm14f6e06440f01513c53ca1913a3411a3-ol9_x86_64_appstream


This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

software.hardware.complete