Univention Bugzilla – Bug 55358
expat: Multiple issues (5.0)
Last modified: 2022-11-02 16:47:15 CET
New Debian expat 2.2.6-2+deb10u6 fixes: This update addresses the following issue: * In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations. (CVE-2022-43680)
--- mirror/ftp/pool/main/e/expat/expat_2.2.6-2+deb10u5.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/expat_2.2.6-2+deb10u6.dsc @@ -1,3 +1,10 @@ +2.2.6-2+deb10u6 [Fri, 28 Oct 2022 02:57:28 +0530] Utkarsh Gupta <utkarsh@debian.org>: + + * Non-maintainer upload by the LTS Team. + * Add patch to fix heap use-after-free after overeager destruction + of a shared DTD in function XML_ExternalEntityParserCreate in + out-of-memory situations. (Fixes: CVE-2022-43680) (Closes: #1022743) + 2.2.6-2+deb10u5 [Sat, 24 Sep 2022 11:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: * Non-maintainer upload by the LTS Team. <http://piuparts.knut.univention.de/5.0-2/#1674530331996458866>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-2] 97d4e35ae1 Bug #55358: expat 2.2.6-2+deb10u6 doc/errata/staging/expat.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) [5.0-2] a707011980 Bug #55358: expat 2.2.6-2+deb10u6 doc/errata/staging/expat.yaml | 14 ++++++++++++++ 1 file changed, 14 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x472>