Release date:
2026-02-10 14:03:26 UTC
Description:
* SECURITY UPDATE: XML_ExternalEntityParserCreate failure to copy the
encoding handler data can cause a NULL dereference.
- debian/patches/CVE-2026-24515.patch: Make XML_ExternalEntityParserCreate
copy unknown encoding handler user data
- CVE-2026-24515
Updated packages:
-
expat_2.2.5-3ubuntu0.9+tuxcare.els4_amd64.deb
sha:e3a94a07fe7291a80e6c50dbec7822e976e3931a
-
libexpat1_2.2.5-3ubuntu0.9+tuxcare.els4_amd64.deb
sha:2ca867705529be143f8fc7b6cba8f3cd83c8713a
-
libexpat1-dev_2.2.5-3ubuntu0.9+tuxcare.els4_amd64.deb
sha:5ca86d2c2a455d42993db7826a098d7c9b1b343d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
