Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: expat: expat-2.8.2-1.hum1 aarch64, x8664 expat-devel-2.8.2-1.hum1 aarch64, x8664 expat-static-2.8.2-1.hum1 aarch64, x8664 expat-2.8.2-1.hum1.src src Security Fixes: expat: CVE-2026-50219...

Low: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: expat: expat-2.8.0-0.1.hum1 aarch64, x8664 expat-devel-2.8.0-0.1.hum1 aarch64, x8664 expat-static-2.8.0-0.1.hum1 aarch64, x8664 expat-2.8.0-0.1.hum1.src src...

Amazon Linux 2023 : expat, expat-devel, expat-static (ALAS2023-2024-524)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-524 advisory. libexpat through 2.5.0 allows recursive XML Entity Expansion if XMLDTD is undefined at compile time. CVE-2023-52426 Tenable has extracted the preceding description block directly from the tested product...

Amazon Linux 2023 : expat, expat-devel, expat-static (ALAS2023-2023-058)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-058 advisory. In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing...