Описание
Security update for expat
This update for expat fixes the following issues:
- CVE-2025-59375: memory amplification vulnerability allows attackers to trigger excessive dynamic memory allocations by submitting crafted XML input (bsc#1249584).
Список пакетов
Container suse/ltss/sle12.5/sles12sp5:latest
libexpat1-2.7.1-21.46.1
SUSE Linux Enterprise Server 12 SP5-LTSS
expat-2.7.1-21.46.1
libexpat-devel-2.7.1-21.46.1
libexpat1-2.7.1-21.46.1
libexpat1-32bit-2.7.1-21.46.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
expat-2.7.1-21.46.1
libexpat-devel-2.7.1-21.46.1
libexpat1-2.7.1-21.46.1
libexpat1-32bit-2.7.1-21.46.1
Ссылки
- Link for SUSE-SU-2025:03536-1
- E-Mail link for SUSE-SU-2025:03536-1
- SUSE Security Ratings
- SUSE Bug 1249584
- SUSE CVE CVE-2025-59375 page
Описание
libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.
Затронутые продукты
Container suse/ltss/sle12.5/sles12sp5:latest:libexpat1-2.7.1-21.46.1
SUSE Linux Enterprise Server 12 SP5-LTSS:expat-2.7.1-21.46.1
SUSE Linux Enterprise Server 12 SP5-LTSS:libexpat-devel-2.7.1-21.46.1
SUSE Linux Enterprise Server 12 SP5-LTSS:libexpat1-2.7.1-21.46.1
Ссылки
- CVE-2025-59375
- SUSE Bug 1249584