[ALSA-2025:21974] Important: mingw-expat security update
Type:
security
Severity:
important
Release date:
2025-12-01
Description:
Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. Security Fix(es): * expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing (CVE-2025-59375) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
noarch mingw32-expat-2.5.0-1.el8_10.noarch.rpm 2ba234b8ca9964afd438ce2fea53efad99e8c94a4b49aca5802789f500cc9d10
noarch mingw64-expat-2.5.0-1.el8_10.noarch.rpm 3fd086856eb4851f1782df7a68359e23644b631f26b1ab3556610f4b8cd7956e
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.