Описание
Security update for expat
This update for expat fixes the following issues:
- CVE-2022-25236: Fixed possible namespace-separator characters insertion into namespace URIs (bsc#1196025).
- CVE-2022-25235: Fixed UTF-8 character validation in a certain context (bsc#1196026).
- CVE-2022-25313: Fixed stack exhaustion in build_model() via uncontrolled recursion (bsc#1196168).
- CVE-2022-25314: Fixed integer overflow in copyString (bsc#1196169).
- CVE-2022-25315: Fixed integer overflow in storeRawNames (bsc#1196171).
Список пакетов
openSUSE Leap 15.3
expat-2.2.5-3.15.1
libexpat-devel-2.2.5-3.15.1
libexpat-devel-32bit-2.2.5-3.15.1
libexpat1-2.2.5-3.15.1
libexpat1-32bit-2.2.5-3.15.1
Ссылки
- E-Mail link for openSUSE-SU-2022:0713-1
- SUSE Security Ratings
- SUSE Bug 1196025
- SUSE Bug 1196026
- SUSE Bug 1196168
- SUSE Bug 1196169
- SUSE Bug 1196171
- SUSE CVE CVE-2022-25235 page
- SUSE CVE CVE-2022-25236 page
- SUSE CVE CVE-2022-25313 page
- SUSE CVE CVE-2022-25314 page
- SUSE CVE CVE-2022-25315 page
Описание
xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.
Затронутые продукты
openSUSE Leap 15.3:expat-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-32bit-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat1-2.2.5-3.15.1
Ссылки
- CVE-2022-25235
- SUSE Bug 1196026
- SUSE Bug 1197217
- SUSE Bug 1198587
- SUSE Bug 1200038
- SUSE Bug 1200198
- SUSE Bug 1201735
Описание
xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.
Затронутые продукты
openSUSE Leap 15.3:expat-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-32bit-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat1-2.2.5-3.15.1
Ссылки
- CVE-2022-25236
- SUSE Bug 1196025
- SUSE Bug 1196784
- SUSE Bug 1197217
- SUSE Bug 1200038
- SUSE Bug 1201735
Описание
In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.
Затронутые продукты
openSUSE Leap 15.3:expat-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-32bit-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat1-2.2.5-3.15.1
Ссылки
- CVE-2022-25313
- SUSE Bug 1196168
Описание
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.
Затронутые продукты
openSUSE Leap 15.3:expat-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-32bit-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat1-2.2.5-3.15.1
Ссылки
- CVE-2022-25314
- SUSE Bug 1196169
- SUSE Bug 1197217
- SUSE Bug 1198587
- SUSE Bug 1199096
- SUSE Bug 1200038
- SUSE Bug 1200198
Описание
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.
Затронутые продукты
openSUSE Leap 15.3:expat-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat-devel-32bit-2.2.5-3.15.1
openSUSE Leap 15.3:libexpat1-2.2.5-3.15.1
Ссылки
- CVE-2022-25315
- SUSE Bug 1196171
- SUSE Bug 1197217
- SUSE Bug 1198587
- SUSE Bug 1200038
- SUSE Bug 1200198
- SUSE Bug 1201735