ELSA-2025-21974

Опубликовано: 25 нояб. 2025

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2025-21974: mingw-expat security update (IMPORTANT)

[2.5.0-1]

Rebase to version 2.5.0
Fix the following CVEs CVE-2023-52425 CVE-2024-28757 CVE-2024-45490 CVE-2024-45491 CVE-2024-45492 CVE-2024-50602 CVE-2024-8176 CVE-2025-59375
Resolves: RHEL-114628

Oracle Linux 8

Oracle Linux x86_64

mingw32-expat

2.5.0-1.el8_10

mingw64-expat

2.5.0-1.el8_10

CVE-2025-59375

CVSS3: 7.5

ubuntu

4 месяца назад

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

CVE-2025-59375

CVSS3: 7.5

redhat

4 месяца назад

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

CVE-2025-59375

CVSS3: 7.5

nvd

4 месяца назад

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

CVE-2025-59375

CVSS3: 7.5

msrc

4 месяца назад

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

CVE-2025-59375

CVSS3: 7.5

debian

4 месяца назад

libexpat in Expat before 2.7.2 allows attackers to trigger large dynam ...