Lucene search

Important: Red Hat Security Advisory: expat security update

🗓️ 28 Mar 2022 09:37:00Reported by RedHatType

expat C library security update due to multiple CVEs

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Tenable Nessus	Oracle Linux 6 : expat (ELSA-2022-9359)	6 May 202200:00	–	nessus
Tenable Nessus	RHEL 8 : expat (RHSA-2022:1070)	29 Mar 202200:00	–	nessus
Tenable Nessus	RHEL 8 : Red Hat Virtualization Host security update [ovirt-4.4.10] Async #2 (Important) (RHSA-2022:1053)	25 Mar 202200:00	–	nessus
Tenable Nessus	RHEL 8 : expat (RHSA-2022:1012)	23 Mar 202200:00	–	nessus
Tenable Nessus	RHEL 6 : expat (RHSA-2022:1309)	12 Apr 202200:00	–	nessus
Tenable Nessus	CentOS 9 : expat-2.2.10-10.el9	29 Feb 202400:00	–	nessus
Tenable Nessus	RHEL 8 : expat (RHSA-2022:1068)	29 Mar 202200:00	–	nessus
Tenable Nessus	CentOS 9 : firefox-102.8.0-2.el9	29 Feb 202400:00	–	nessus
Tenable Nessus	F5 Networks BIG-IP : Expat vulnerabilities (K19473898)	30 Apr 202200:00	–	nessus
Tenable Nessus	Photon OS 3.0: Expat PHSA-2022-3.0-0365	24 Jul 202400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
RedHat	8	i686	expat	2.2.5-3.el8_1.1	expat-2.2.5-3.el8_1.1.i686.rpm
RedHat	8	ppc64le	expat	2.2.5-3.el8_1.1	expat-2.2.5-3.el8_1.1.ppc64le.rpm
RedHat	8	x86_64	expat	2.2.5-3.el8_1.1	expat-2.2.5-3.el8_1.1.x86_64.rpm
RedHat	8	i686	expat-debuginfo	2.2.5-3.el8_1.1	expat-debuginfo-2.2.5-3.el8_1.1.i686.rpm
RedHat	8	ppc64le	expat-debuginfo	2.2.5-3.el8_1.1	expat-debuginfo-2.2.5-3.el8_1.1.ppc64le.rpm
RedHat	8	x86_64	expat-debuginfo	2.2.5-3.el8_1.1	expat-debuginfo-2.2.5-3.el8_1.1.x86_64.rpm
RedHat	8	i686	expat-debugsource	2.2.5-3.el8_1.1	expat-debugsource-2.2.5-3.el8_1.1.i686.rpm
RedHat	8	ppc64le	expat-debugsource	2.2.5-3.el8_1.1	expat-debugsource-2.2.5-3.el8_1.1.ppc64le.rpm
RedHat	8	x86_64	expat-debugsource	2.2.5-3.el8_1.1	expat-debugsource-2.2.5-3.el8_1.1.x86_64.rpm
RedHat	8	i686	expat-devel	2.2.5-3.el8_1.1	expat-devel-2.2.5-3.el8_1.1.i686.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2022-25235
access	www.access.redhat.com/security/cve/CVE-2022-25236
access	www.access.redhat.com/security/cve/CVE-2022-25315
access	www.access.redhat.com/security/updates/classification/
blog	www.blog.hartwork.org/posts/expat-2-4-5-released/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-25235
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-25236

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Mar 2022 09:00Current

9.3High risk

Vulners AI Score9.3

CVSS27.5

CVSS39.8

EPSS0.13043

SSVC

expat security update cve-2022-25235 cve-2022-25236 cve-2022-25315 xml parsing