[CLSA-2023:1696877712] expat: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2023-10-09
Description:
- CVE-2022-23990: lib: prevent integer overflow in function doProlog - CVE-2022-43680: fix overeager DTD destruction in XML_ExternalEntityParserCreate
Updated packages:
  • expat-2.1.0-15.el7_9.tuxcare.els1.i686.rpm
    sha:f1ea6a6ec0498e7f83ddc545134d26e3c9456a1a
  • expat-2.1.0-15.el7_9.tuxcare.els1.x86_64.rpm
    sha:825fee740f53e2f518deb1dac27f0d3bc6f355d5
  • expat-devel-2.1.0-15.el7_9.tuxcare.els1.i686.rpm
    sha:2fbe968a1606e65dd4cb486fda3e74cf18d2715a
  • expat-devel-2.1.0-15.el7_9.tuxcare.els1.x86_64.rpm
    sha:61b1d88492df6045e8fc214d44ebf1e69c7884de
  • expat-static-2.1.0-15.el7_9.tuxcare.els1.i686.rpm
    sha:295167ac3c991bade45f806bcd924c1d45ac35cc
  • expat-static-2.1.0-15.el7_9.tuxcare.els1.x86_64.rpm
    sha:dbe964c8a3045d1e9b2b9749bfb83a44b9e8d234
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.