Release date:
2026-02-06 16:31:27 UTC
Description:
* SECURITY UPDATE: XML_ExternalEntityParserCreate does not copy unknown
encoding handler user data
- debian/patches/CVE-2026-24515.patch: Fix a null pointer dereference
in the XML parser caused by the failure to copy user data for
unknown encoding handlers
- CVE-2026-24515
Updated packages:
-
expat_2.2.9-1ubuntu0.8+tuxcare.els1_amd64.deb
sha:deedc3130d43abd9084aca8f1134b587db8b42e7
-
libexpat1_2.2.9-1ubuntu0.8+tuxcare.els1_amd64.deb
sha:3a72e911da6be8f5a01e332499b70bf788d103c5
-
libexpat1-dev_2.2.9-1ubuntu0.8+tuxcare.els1_amd64.deb
sha:af3c0b50dfde0b992a87cfbd5593fcaf72029d9e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
