Описание
Security update for expat
This update for expat fixes the following issues:
- Fixed a regression caused by the patch for CVE-2022-25236 (bsc#1196784).
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
expat-2.0.1-88.42.22.1
libexpat1-2.0.1-88.42.22.1
SUSE Linux Enterprise Server 11 SP4-LTSS
expat-2.0.1-88.42.22.1
libexpat1-2.0.1-88.42.22.1
libexpat1-32bit-2.0.1-88.42.22.1
Ссылки
- Link for SUSE-SU-2022:14934-1
- E-Mail link for SUSE-SU-2022:14934-1
- SUSE Security Ratings
- SUSE Bug 1196025
- SUSE Bug 1196784
- SUSE CVE CVE-2022-25236 page
Описание
xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.
Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:expat-2.0.1-88.42.22.1
SUSE Linux Enterprise Point of Sale 11 SP3:libexpat1-2.0.1-88.42.22.1
SUSE Linux Enterprise Server 11 SP4-LTSS:expat-2.0.1-88.42.22.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libexpat1-2.0.1-88.42.22.1
Ссылки
- CVE-2022-25236
- SUSE Bug 1196025
- SUSE Bug 1196784
- SUSE Bug 1197217
- SUSE Bug 1200038
- SUSE Bug 1201735