Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2024:1615

Опубликовано: 05 апр. 2024
Источник: rocky
Оценка: Moderate

Описание

Moderate: expat security update

Expat is a C library for parsing XML documents.

Security Fix(es):

  • expat: parsing large tokens can trigger a denial of service (CVE-2023-52425)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
expatx86_6411.el8_9.1expat-2.2.5-11.el8_9.1.x86_64.rpm
expat-develx86_6411.el8_9.1expat-devel-2.2.5-11.el8_9.1.x86_64.rpm

Показывать по

Связанные CVE

CVE-2023-52425

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2023-52425

CVSS3: 7.5
ubuntu
больше 1 года назад

libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed.

redhat логотип

CVE-2023-52425

CVSS3: 7.5
redhat
больше 1 года назад

libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed.

nvd логотип

CVE-2023-52425

CVSS3: 7.5
nvd
больше 1 года назад

libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed.

msrc логотип

CVE-2023-52425

CVSS3: 7.5
msrc
больше 1 года назад

Описание отсутствует

debian логотип

CVE-2023-52425

CVSS3: 7.5
debian
больше 1 года назад

libexpat through 2.5.0 allows a denial of service (resource consumptio ...