expat-2.2.5-8.el8.3

エラータID: AXSA:2022-3891:07

Release date: 
Tuesday, October 11, 2022 - 16:57
Subject: 
expat-2.2.5-8.el8.3
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
High
Description: 

Expat is a C library for parsing XML documents.

Security Fix(es):

* expat: a use-after-free in the doContent function in xmlparse.c (CVE-2022-40674)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-40674
libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.

Solution: 

Update packages.

CVEs: 
CVE-2022-40674
libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.
Additional Info: 

N/A

Download: 

SRPMS
  1. expat-2.2.5-8.el8.3.src.rpm
    MD5: 8049a0e32ee9b067d0ff841c694017df
    SHA-256: 5e64fbc5f46570938ad3f40db7fa9a45bd2949bf501d6b07c49e963ca349a25a
    Size: 7.93 MB

Asianux Server 8 for x86_64
  1. expat-2.2.5-8.el8.3.x86_64.rpm
    MD5: ab75cc6cd49869074156577b49ada1c4
    SHA-256: 8b8b0c2ab0ce3a58afefb92843cee63d66316e64388bcc99606ae9abb371b2d0
    Size: 112.40 kB
  2. expat-devel-2.2.5-8.el8.3.x86_64.rpm
    MD5: 4a6cc6edd6383250ab202e7e667232a9
    SHA-256: 5b0c733fdff33e302a5e56552e263fb83ce7e24e3fec0a218eb6ee768f73bda1
    Size: 56.16 kB
  3. expat-2.2.5-8.el8.3.i686.rpm
    MD5: 8b7ca1bda77cdb28d40cca771740ec7d
    SHA-256: f7449b75b35037bb59f9b6049c354ba52147f36aa78b3bdf20160bbd855a7292
    Size: 112.14 kB
  4. expat-devel-2.2.5-8.el8.3.i686.rpm
    MD5: 418a188f535392446966e61c81281678
    SHA-256: 15b97ec78635a1e5c75d92ff756f3db58bb4238933c9131b8ddc07b89ffcd8c4
    Size: 56.18 kB