[ALSA-2023:3068] Important: mingw-expat security update
Type:
security
Severity:
important
Release date:
2023-05-19
Description:
Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. Security Fix(es): * expat: a use-after-free in the doContent function in xmlparse.c (CVE-2022-40674) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch mingw64-expat-2.4.8-2.el8.noarch.rpm 2baa460c621c5941ee939bf85a79f4a6147622d461c2646c7dcc7ff2b458b045
noarch mingw32-expat-2.4.8-2.el8.noarch.rpm 50d2c57a91c786b2d67ac3683eaf1d8a9afb0d6e2b82b39fe17afd61a9ea226c
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.