expat

rpms/expat

Fork 0

Commit Graph

Author	SHA1	Message	Date
Tomas Korbar	f23fd2fa9c	Improve fix for CVE-2022-25236 Related: CVE-2022-25236	2022-03-14 10:29:27 +01:00
Tomas Korbar	6c4005223e	Fix multiple CVEs CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution CVE-2022-25315 expat: integer overflow in storeRawNames() Resolves: CVE-2022-25236 Resolves: CVE-2022-25235 Resolves: CVE-2022-25315	2022-03-02 12:27:09 +01:00

Author

SHA1

Message

Date

Tomas Korbar

f23fd2fa9c

Improve fix for CVE-2022-25236

Related: CVE-2022-25236

2022-03-14 10:29:27 +01:00

Tomas Korbar

6c4005223e

Fix multiple CVEs

CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
CVE-2022-25315 expat: integer overflow in storeRawNames()
Resolves: CVE-2022-25236
Resolves: CVE-2022-25235
Resolves: CVE-2022-25315

2022-03-02 12:27:09 +01:00

2 Commits