[ubuntu/focal-security] expat 2.2.9-1ubuntu0.5 (Accepted)
David Fernandez Gonzalez
david.fernandezgonzalez at canonical.com
Thu Nov 17 09:45:04 UTC 2022
expat (2.2.9-1ubuntu0.5) focal-security; urgency=medium
* SECURITY UPDATE: Use-after-free in doContent
- debian/patches/CVE-2022-40674.patch: ensure storeRawNames()
is always called in func internalEntityProcessor if handling
unbalanced tags in expat/lib/xmlparse.c.
- CVE-2022-40674
Date: 2022-11-16 13:54:10.605167+00:00
Changed-By: David Fernandez Gonzalez <david.fernandezgonzalez at canonical.com>
https://launchpad.net/ubuntu/+source/expat/2.2.9-1ubuntu0.5
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list