Lucene search
OracleLinuxELSA-2023-0337HistoryJan 24, 2023 - 12:00 a.m.
expat security update
2023-01-2400:00:00
linux.oracle.com
20
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
38.2%
[2.4.9-1.1]
- CVE-2022-43680 expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate
- Resolves: CVE-2022-43680
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | expat | < 2.4.9-1.el9_1.1 | expat-2.4.9-1.el9_1.1.src.rpm |
| oracle linux | 9 | aarch64 | expat | < 2.4.9-1.el9_1.1 | expat-2.4.9-1.el9_1.1.aarch64.rpm |
| oracle linux | 9 | aarch64 | expat-devel | < 2.4.9-1.el9_1.1 | expat-devel-2.4.9-1.el9_1.1.aarch64.rpm |
| oracle linux | 9 | src | expat | < 2.4.9-1.el9_1.1 | expat-2.4.9-1.el9_1.1.src.rpm |
| oracle linux | 9 | i686 | expat | < 2.4.9-1.el9_1.1 | expat-2.4.9-1.el9_1.1.i686.rpm |
| oracle linux | 9 | x86_64 | expat | < 2.4.9-1.el9_1.1 | expat-2.4.9-1.el9_1.1.x86_64.rpm |
| oracle linux | 9 | i686 | expat-devel | < 2.4.9-1.el9_1.1 | expat-devel-2.4.9-1.el9_1.1.i686.rpm |
| oracle linux | 9 | x86_64 | expat-devel | < 2.4.9-1.el9_1.1 | expat-devel-2.4.9-1.el9_1.1.x86_64.rpm |
Related
nessus
nessus
AlmaLinux 9 : expat (ALSA-2023:0337)
2023-01-25 00:00:00
EulerOS Virtualization 2.9.0 : expat (EulerOS-SA-2023-1657)
2023-04-27 00:00:00
EulerOS 2.0 SP10 : expat (EulerOS-SA-2023-1383)
2023-02-10 00:00:00
suse
suse
Security update for expat (important)
2022-11-07 00:00:00
Security update for expat (important)
2022-11-08 00:00:00
githubexploit
githubexploit
Exploit for Use After Free in Libexpat Project Libexpat
2022-12-02 08:26:04
Exploit for Use After Free in Libexpat Project Libexpat
2023-04-04 06:31:47
Exploit for Use After Free in Libexpat Project Libexpat
2022-12-19 05:09:12
osv
osv
expat vulnerability
2022-11-23 15:09:26
Moderate: expat security update
2023-01-12 08:25:33
openvas
openvas
Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2023-1122)
2023-01-09 00:00:00
Fedora: Security Advisory for mingw-expat (FEDORA-2022-c43235716e)
2022-11-13 00:00:00
Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2023-2036)
2023-06-07 00:00:00
debian
debian
[SECURITY] [DLA 3165-1] expat security update
2022-10-28 01:43:45
[SECURITY] [DSA 5266-1] expat security update
2022-10-30 14:03:23
almalinux
almalinux
Moderate: expat security update
2023-01-23 00:00:00
Moderate: expat security update
2023-01-12 00:00:00
rocky
rocky
expat security update
2023-01-23 14:30:30
expat security update
2023-01-12 08:25:33
ibm
ibm
debiancve
debiancve
CVE-2022-43680
2022-10-24 14:15:00
amazon
amazon
Important: expat
2022-12-01 17:34:00
Important: expat
2022-12-01 20:31:00
redhatcve
redhatcve
CVE-2022-43680
2022-11-04 10:26:43
ubuntucve
ubuntucve
CVE-2022-43680
2022-10-24 00:00:00
alpinelinux
alpinelinux
CVE-2022-43680
2022-10-24 14:15:00
redos
redos
ROS-20230911-03
2023-09-11 00:00:00
wolfi
wolfi
CVE-2022-43680 vulnerabilities
2024-02-07 01:47:52
fedora
fedora
[SECURITY] Fedora 35 Update: mingw-expat-2.5.0-1.fc35
2022-11-13 01:20:59
[SECURITY] Fedora 37 Update: mingw-expat-2.5.0-1.fc37
2022-11-14 01:14:14
[SECURITY] Fedora 36 Update: mingw-expat-2.5.0-1.fc36
2022-11-13 01:19:40
redhat
redhat
(RHSA-2023:0103) Moderate: expat security update
2023-01-12 08:25:33
(RHSA-2024:0421) Moderate: expat security update
2024-01-24 14:40:27
(RHSA-2023:0337) Moderate: expat security update
2023-01-23 14:30:30
slackware
slackware
[slackware-security] expat
2022-10-25 18:53:10
[slackware-security] python3
2022-12-07 18:52:09
prion
prion
Design/Logic Flaw
2022-10-24 14:15:00
veracode
veracode
Use After Free
2022-10-25 05:03:57
cloudlinux
cloudlinux
expat: Fix of CVE-2022-43680
2022-11-03 16:42:42
cbl_mariner
cbl_mariner
CVE-2022-43680 affecting package expat 2.4.8-2
2022-11-03 20:37:47
CVE-2022-43680 affecting package expat 2.4.9-1
2022-11-03 00:44:53
cgr
cgr
CVE-2022-43680 vulnerabilities
2024-02-06 23:19:33
ubuntu
ubuntu
Expat vulnerability
2022-11-23 00:00:00
Expat vulnerabilities
2022-11-17 00:00:00
Expat vulnerabilities
2023-02-28 00:00:00
oraclelinux
oraclelinux
expat security update
2023-01-12 00:00:00
cve
cve
CVE-2022-43680
2022-10-24 14:15:00
aix
aix
AIX is affected by a denial of service due to Python
2022-12-22 10:15:28
cloudfoundry
cloudfoundry
USN-5638-3: Expat vulnerability | Cloud Foundry
2022-12-07 00:00:00
USN-5638-2: Expat vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
gentoo
gentoo
Expat: Denial of Service
2022-10-31 00:00:00
mageia
mageia
Updated expat packages fix security vulnerability
2022-11-05 00:16:03
Updated firefox packages fix security vulnerability
2022-11-17 23:45:15
ics
ics
Hitachi Energy’s AFS65x, AFS67x, AFR67x and AFF66x Products
2023-05-23 12:00:00
Siemens SINEC NMS Third-Party
2023-05-11 12:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0534
2022-10-29 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0480
2022-10-29 00:00:00
Critical Photon OS Security Update - PHSA-2022-0271
2022-10-28 00:00:00
kaspersky
kaspersky
KLA62621 Multiple vulnerabilities in OpenOffice
2023-12-22 00:00:00
androidsecurity
androidsecurity
Android Security Bulletin—February 2023
2023-02-06 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
38.2%
Related for ELSA-2023-0337