Updated expat packages fix security vulnerabilities
Publication date: 11 Sep 2024Modification date: 11 Sep 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-45490 , CVE-2024-45491 , CVE-2024-45492
Description
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not
reject a negative length for XML_ParseBuffer. (CVE-2024-45490)
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c
can have an integer overflow for nDefaultAtts on 32-bit platforms (where
UINT_MAX equals SIZE_MAX). (CVE-2024-45491)
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in
xmlparse.c can have an integer overflow for m_groupSize on 32-bit
platforms (where UINT_MAX equals SIZE_MAX). (CVE-2024-45492)
References
- https://bugs.mageia.org/show_bug.cgi?id=33547
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2024&m=slackware-security.351556
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45490
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45491
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45492
SRPMS
9/core
- expat-2.6.3-1.mga9