Lucene search
AlmaLinuxALSA-2020:4484HistoryNov 03, 2020 - 12:09 p.m.
Moderate: expat security update
2020-11-0312:09:00
errata.almalinux.org
26
0.582 Medium
EPSS
Percentile
97.7%
Expat is a C library for parsing XML documents.
Security Fix(es):
-
expat: large number of colons in input makes parser consume high amount of resources, leading to DoS (CVE-2018-20843)
-
expat: heap-based buffer over-read via crafted XML input (CVE-2019-15903)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 8 | i686 | expat | < 2.2.5-4.el8 | expat-2.2.5-4.el8.i686.rpm |
| almalinux | 8 | x86_64 | expat | < 2.2.5-4.el8 | expat-2.2.5-4.el8.x86_64.rpm |
| almalinux | 8 | i686 | expat-devel | < 2.2.5-4.el8 | expat-devel-2.2.5-4.el8.i686.rpm |
| almalinux | 8 | x86_64 | expat-devel | < 2.2.5-4.el8 | expat-devel-2.2.5-4.el8.x86_64.rpm |
Related
ubuntu
ubuntu
VTK vulnerabilities
2021-03-15 00:00:00
Expat vulnerability
2019-06-26 00:00:00
Expat vulnerability
2019-06-26 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4852-1)
2023-01-27 00:00:00
Fedora Update for expat FEDORA-2019-18868e1715
2019-07-11 00:00:00
Debian: Security Advisory (DSA-4472-1)
2019-06-29 00:00:00
centos
centos
expat security update
2020-10-20 17:58:03
osv
osv
vtk vulnerabilities
2021-03-15 22:38:15
Moderate: expat security update
2020-11-03 12:09:00
expat - security update
2019-06-29 00:00:00
nessus
nessus
Oracle Linux 7 : expat (ELSA-2020-3952)
2020-10-07 00:00:00
AlmaLinux 8 : expat (ALSA-2020:4484)
2022-02-09 00:00:00
NewStart CGSL MAIN 6.02 : expat Multiple Vulnerabilities (NS-SA-2021-0083)
2021-03-10 00:00:00
gentoo
gentoo
Expat: Multiple vulnerabilities
2019-11-25 00:00:00
amazon
amazon
redhat
redhat
(RHSA-2020:4484) Moderate: expat security update
2020-11-03 12:09:00
(RHSA-2020:3952) Moderate: expat security update
2020-09-29 07:46:19
(RHSA-2020:4846) Moderate: mingw-expat security update
2020-11-03 12:41:03
ibm
ibm
rocky
rocky
expat security update
2020-11-03 12:09:00
mingw-expat security update
2020-11-03 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package expat version 2.2.9-alt1
2020-05-31 00:00:00
oraclelinux
oraclelinux
expat security update
2020-10-06 00:00:00
expat security update
2020-11-10 00:00:00
debian
debian
[SECURITY] [DLA 1839-1] expat security update
2019-06-29 18:59:53
[SECURITY] [DSA 4472-1] expat security update
2019-06-28 09:30:19
[SECURITY] [DSA 4472-1] expat security update
2019-06-28 09:30:19
fedora
fedora
[SECURITY] Fedora 30 Update: expat-2.2.7-1.fc30
2019-07-10 00:51:48
[SECURITY] Fedora 29 Update: expat-2.2.7-1.fc29
2019-07-16 03:22:19
[SECURITY] Fedora 31 Update: expat-2.2.8-1.fc31
2019-09-21 00:04:26
veracode
veracode
Denial Of Service (DoS)
2019-07-01 08:36:31
Denial Of Service (Dos)
2019-09-05 06:48:20
redhatcve
redhatcve
CVE-2018-20843
2020-04-04 05:18:28
CVE-2019-15903
2019-12-28 03:54:22
cve
cve
CVE-2018-20843
2019-06-24 17:15:09
CVE-2019-15903
2019-09-04 06:15:10
nvd
nvd
CVE-2018-20843
2019-06-24 17:15:09
CVE-2019-15903
2019-09-04 06:15:10
debiancve
debiancve
CVE-2018-20843
2019-06-24 17:15:09
CVE-2019-15903
2019-09-04 06:15:10
ubuntucve
ubuntucve
CVE-2018-20843
2019-06-24 00:00:00
CVE-2019-15903
2019-09-04 00:00:00
cbl_mariner
cbl_mariner
CVE-2018-20843 affecting package expat 2.2.6-4
2020-09-09 06:09:14
CVE-2019-15903 affecting package expat 2.2.6-4
2022-01-10 03:59:19
f5
f5
K51011533 : Expat XML parser vulnerability CVE-2018-20843
2019-07-18 00:00:00
K34239812 : Libexpat vulnerability CVE-2019-15903
2022-08-05 00:00:00
K05295469 : Expat vulnerability CVE-2019-15903
2022-02-03 00:00:00
almalinux
almalinux
Moderate: mingw-expat security update
2020-11-03 12:41:03
mageia
mageia
Updated expat packages fix security vulnerability
2019-09-15 15:11:55
Updated expat packages fix security vulnerability
2019-11-08 02:36:48
cvelist
cvelist
CVE-2018-20843
2019-06-24 16:06:38
CVE-2019-15903
2019-09-04 05:59:16
cloudfoundry
cloudfoundry
USN-4040-1: Expat vulnerability | Cloud Foundry
2019-08-28 00:00:00
USN-4132-1: Expat vulnerability | Cloud Foundry
2019-09-30 00:00:00
alpinelinux
alpinelinux
CVE-2018-20843
2019-06-24 17:15:09
CVE-2019-15903
2019-09-04 06:15:10
suse
suse
Security update for expat (moderate)
2019-07-21 00:00:00
Security update for expat (moderate)
2019-09-28 00:00:00
Security update for expat (moderate)
2019-09-28 00:00:00
prion
prion
Input validation
2019-06-24 17:15:00
Heap overflow
2019-09-04 06:15:00
slackware
slackware
[slackware-security] expat
2019-09-16 21:54:40
[slackware-security] python
2019-10-20 20:16:04
freebsd
freebsd
python 3.7 -- multiple vulnerabilities
2019-09-14 00:00:00
symantec
symantec
Libexpat Expat CVE-2019-15903 Heap Buffer Overflow Vulnerability
2019-09-04 00:00:00
photon
photon