Release date:
2026-04-21 13:09:45 UTC
Description:
* SECURITY UPDATE: quadratic re-parsing DoS with large tokens
- debian/patches/CVE-2023-52425.patch: add callProcessor() wrapper
with reparse deferral heuristic in expat/lib/xmlparse.c, add
XML_SetReparseDeferralEnabled() API in expat/lib/expat.h.
- CVE-2023-52425
Updated packages:
-
expat_2.2.9-1ubuntu0.8+tuxcare.els3_amd64.deb
sha:1e3eb6aeaedc947f8e6c2dc8697de926d700c5da
-
libexpat1_2.2.9-1ubuntu0.8+tuxcare.els3_amd64.deb
sha:dc0b4b2e654400578d19effa857daa1b85291027
-
libexpat1-dev_2.2.9-1ubuntu0.8+tuxcare.els3_amd64.deb
sha:be571a004e4442da5e87ca2398e7df80f79a5296
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
