Oval Definition:oval:com.redhat.rhsa:def:20162824
Revision Date:2016-11-28Version:638
Title:RHSA-2016:2824: expat security update (Moderate)
Description:Expat is a C library for parsing XML documents.

Security Fix(es):

  • An out-of-bounds read flaw was found in the way Expat processed certain input. A remote attacker could send specially crafted XML that, when parsed by an application using the Expat library, would cause that application to crash or, possibly, execute arbitrary code with the permission of the user running the application. (CVE-2016-0718)

    Red Hat would like to thank Gustavo Grieco for reporting this issue.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2016-0718
    RHSA-2016:2824
    RHSA-2016:2824-00
    RHSA-2016:2824-01
    RHSA-2016:2824-01
    Platform(s):Red Hat Enterprise Linux 6
    Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • expat is earlier than 0:2.0.1-13.el6_8
  • AND expat is signed with Red Hat redhatrelease2 key
  • expat-devel is earlier than 0:2.0.1-13.el6_8
  • AND expat-devel is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • expat is earlier than 0:2.1.0-10.el7_3
  • AND expat is signed with Red Hat redhatrelease2 key
  • expat-devel is earlier than 0:2.1.0-10.el7_3
  • AND expat-devel is signed with Red Hat redhatrelease2 key
  • expat-static is earlier than 0:2.1.0-10.el7_3
  • AND expat-static is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 6 Client is installed
  • OR Red Hat Enterprise Linux 6 Server is installed
  • OR Red Hat Enterprise Linux 6 Workstation is installed
  • OR Red Hat Enterprise Linux 6 ComputeNode is installed
  • AND
  • expat is earlier than 0:2.0.1-13.el6_8
  • AND expat is signed with Red Hat redhatrelease2 key
  • expat-devel is earlier than 0:2.0.1-13.el6_8
  • AND expat-devel is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 Client is installed
  • OR Red Hat Enterprise Linux 7 Server is installed
  • OR Red Hat Enterprise Linux 7 Workstation is installed
  • OR Red Hat Enterprise Linux 7 ComputeNode is installed
  • AND
  • expat is earlier than 0:2.1.0-10.el7_3
  • AND expat is signed with Red Hat redhatrelease2 key
  • expat-devel is earlier than 0:2.1.0-10.el7_3
  • AND expat-devel is signed with Red Hat redhatrelease2 key
  • expat-static is earlier than 0:2.1.0-10.el7_3
  • AND expat-static is signed with Red Hat redhatrelease2 key
    • BACK