Univention Bugzilla – Bug 55222
expat: Multiple issues (5.0)
Last modified: 2022-09-29 12:38:53 CEST
New Debian expat 2.2.6-2+deb10u5 fixes: This update addresses the following issue: 2.2.6-2+deb10u5 (Sat, 24 Sep 2022 11:03:02 +0200) * Non-maintainer upload by the LTS Team. * CVE-2022-40674 heap use-after-free issue in doContent() (based on the backport for Bullseye made by Laszlo Boszormenyi) * update test-* patches to be able to run testsuite * debian/rules: add run of testsuite (but leave it deactivated as I only tested on amd64)
--- mirror/ftp/pool/main/e/expat/expat_2.2.6-2+deb10u4.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/expat_2.2.6-2+deb10u5.dsc @@ -1,3 +1,13 @@ +2.2.6-2+deb10u5 [Sat, 24 Sep 2022 11:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: + + * Non-maintainer upload by the LTS Team. + * CVE-2022-40674 + heap use-after-free issue in doContent() + (based on the backport for Bullseye made by Laszlo Boszormenyi) + * update test-* patches to be able to run testsuite + * debian/rules: add run of testsuite + (but leave it deactivated as I only tested on amd64) + 2.2.6-2+deb10u4 [Thu, 10 Mar 2022 22:02:18 +0100] Salvatore Bonaccorso <carnil@debian.org>: * Non-maintainer upload by the Security Team. <http://piuparts.knut.univention.de/5.0-2/#1674530331993211291>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-2] ba47a66760 Bug #55222: expat 2.2.6-2+deb10u5 doc/errata/staging/expat.yaml | 8 +------- 1 file changed, 1 insertion(+), 7 deletions(-) [5.0-2] bb635a2399 Bug #55222: expat 2.2.6-2+deb10u5 doc/errata/staging/expat.yaml | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x433>