SUSE-SU-2022:14903-1 -- SLES expat, libexpat1| ID: oval:org.secpod.oval:def:89046081 | Date: (C)2022-03-11 (M)2024-04-25 |
| Class: PATCH | Family: unix |
This update for expat fixes the following issues: - CVE-2022-25236: Fixed possible namespace-separator characters insertion into namespace URIs . - CVE-2022-25235: Fixed UTF-8 character validation in a certain context . - CVE-2022-25313: Fixed stack exhaustion in build_model via uncontrolled recursion . - CVE-2022-25314: Fixed integer overflow in copyString . - CVE-2022-25315: Fixed integer overflow in storeRawNames .
| Platform: |
| SUSE Linux Enterprise Server 11 SP4 |
