Oval Definition:oval:org.opensuse.security:def:93462
Revision Date:2022-07-06Version:1
Title: (Important)
Description:

This update for expat fixes the following issues:

- CVE-2022-25236: Fixed possible namespace-separator characters insertion into namespace URIs (bsc#1196025). - Fixed a regression caused by the patch for CVE-2022-25236 (bsc#1196784). - CVE-2022-25235: Fixed UTF-8 character validation in a certain context (bsc#1196026). - CVE-2022-25313: Fixed stack exhaustion in build_model() via uncontrolled recursion (bsc#1196168). - CVE-2022-25314: Fixed integer overflow in copyString (bsc#1196169). - CVE-2022-25315: Fixed integer overflow in storeRawNames (bsc#1196171).
Family:unixClass:patch
Status:Reference(s):1135787
1135789
1135796
1135806
1136101
1140419
1140421
1141844
1143763
1143764
1143766
1143768
1196025
1196026
1196168
1196169
1196171
1196784
CVE-2019-12217
CVE-2019-12218
CVE-2019-12220
CVE-2019-12221
CVE-2019-12222
CVE-2019-13616
CVE-2019-5051
CVE-2019-5052
CVE-2019-5057
CVE-2019-5058
CVE-2019-5059
CVE-2019-5060
CVE-2022-25235
CVE-2022-25236
CVE-2022-25313
CVE-2022-25314
CVE-2022-25315
openSUSE-SU-2019:2108-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • libSDL2_image-2_0-0-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-2_0-0-64bit-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-devel-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-devel-64bit-2.0.5-bp151.4.3.1 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 is installed
  • AND libexpat1-2.4.4-150400.3.6.9 is installed
    • BACK