Oval Definition:	oval:org.opensuse.security:def:126973
Revision Date: 2022-03-03 Version: 1 Title: Security update for expat (Important) Description: This update for expat fixes the following issues: - CVE-2022-25236: Fixed possible namespace-separator characters insertion into namespace URIs (bsc#1196025). - CVE-2022-25235: Fixed UTF-8 character validation in a certain context (bsc#1196026). - CVE-2022-25313: Fixed stack exhaustion in build_model() via uncontrolled recursion (bsc#1196168). - CVE-2022-25314: Fixed integer overflow in copyString (bsc#1196169). - CVE-2022-25315: Fixed integer overflow in storeRawNames (bsc#1196171). Family: unix Class: patch Status: Reference(s): 1196025 1196026 1196168 1196169 1196171 CVE-2022-25235 CVE-2022-25236 CVE-2022-25313 CVE-2022-25314 CVE-2022-25315 Platform(s): SUSE Linux Enterprise Server 12 SP4-ESPOS Product(s): Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information expat-2.1.0-21.18.1 is installed OR libexpat1-2.1.0-21.18.1 is installed OR libexpat1-32bit-2.1.0-21.18.1 is installed
BACK