Oval Definition:oval:org.opensuse.security:def:119016
Revision Date:2022-03-04Version:1
Title:Security update for expat (Important)
Description:

This update for expat fixes the following issues: - CVE-2022-25236: Fixed possible namespace-separator characters insertion into namespace URIs (bsc#1196025). - CVE-2022-25235: Fixed UTF-8 character validation in a certain context (bsc#1196026). - CVE-2022-25313: Fixed stack exhaustion in build_model() via uncontrolled recursion (bsc#1196168). - CVE-2022-25314: Fixed integer overflow in copyString (bsc#1196169). - CVE-2022-25315: Fixed integer overflow in storeRawNames (bsc#1196171).
Family:unixClass:patch
Status:Reference(s):1196025
1196026
1196168
1196169
1196171
CVE-2022-25235
CVE-2022-25236
CVE-2022-25313
CVE-2022-25314
CVE-2022-25315
SUSE-SU-2022:0713-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS is installed
  • AND Package Information
  • expat-2.2.5-3.15.1 is installed
  • OR libexpat-devel-2.2.5-3.15.1 is installed
  • OR libexpat1-2.2.5-3.15.1 is installed
  • OR libexpat1-32bit-2.2.5-3.15.1 is installed
    • BACK