Bugs fixes in "expat"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2022-43680 | In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memo | 2022-11-17 |
| CVE | CVE-2022-40674 | libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. | 2022-11-17 |
| CVE | CVE-2022-43680 | In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memo | 2022-11-17 |
| CVE | CVE-2022-40674 | libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. | 2022-11-17 |
| CVE | CVE-2022-40674 | libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. | 2022-11-17 |
| CVE | CVE-2022-40674 | libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. | 2022-11-17 |
| CVE | CVE-2022-40674 | libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. | 2022-11-17 |
| CVE | CVE-2022-40674 | libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. | 2022-11-17 |
| CVE | CVE-2022-25315 | In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. | 2022-03-10 |
| CVE | CVE-2022-25314 | In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString. | 2022-03-10 |
| CVE | CVE-2022-25313 | In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element. | 2022-03-10 |
| Launchpad | 1963903 | expat relax fix for CVE-2022-25236 and possible regressions | 2022-03-10 |
| CVE | CVE-2022-25315 | In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. | 2022-03-10 |
| CVE | CVE-2022-25314 | In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString. | 2022-03-10 |
| CVE | CVE-2022-25313 | In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element. | 2022-03-10 |
| Launchpad | 1963903 | expat relax fix for CVE-2022-25236 and possible regressions | 2022-03-10 |
| CVE | CVE-2022-25315 | In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. | 2022-03-10 |
| CVE | CVE-2022-25314 | In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString. | 2022-03-10 |
| CVE | CVE-2022-25313 | In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element. | 2022-03-10 |
| Launchpad | 1963903 | expat relax fix for CVE-2022-25236 and possible regressions | 2022-03-10 |
About
-
Send Feedback to @ubuntu_updates
