22 matches found
SUSE-SU-2026:0044-1 Security update for mozjs60
This update for mozjs60 fixes the following issues: - CVE-2024-45492: embedded expat: detect integer overflow in function nextScaffoldPart bsc1230038 - CVE-2024-45491: embedded expat: detect integer overflow in dtdCopy bsc1230037 - CVE-2024-45490: embedded expat: reject negative len for...
Important: expat
Issue Overview: An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer. CVE-2024-45490 Affected Packages: expat Issue Correction: Run yum update expat or yum update --advisory ALAS-2025-1953 to update your system. New Packages: i686: ...
Huawei EulerOS: Security Advisory for xmlrpc-c (EulerOS-SA-2024-2919)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2024-2903)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2024-0338)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated mozjs78 packages fix security vulnerabilities
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer. CVE-2024-45490 An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms where UINTMAX equals SIZEMAX...
SUSE-SU-2024:3554-1 Security update for mozjs78
This update for mozjs78 fixes the following issues: - CVE-2024-45490: Fixed negative len for XMLParseBuffer in embedded expat bnc1230036 - CVE-2024-45491: Fixed integer overflow in dtdCopy in embedded expat bnc1230037 - CVE-2024-45492: Fixed integer overflow in function nextScaffoldPart in embedd...
SUSE-SU-2024:3538-1 Security update for mozjs115
This update for mozjs115 fixes the following issues: - CVE-2024-45490: Fixed negative len for XMLParseBuffer in embedded expat bnc1230036 - CVE-2024-45491: Fixed integer overflow in dtdCopy in embedded expat bnc1230037 - CVE-2024-45492: Fixed integer overflow in function nextScaffoldPart in...
SUSE-SU-2024:3515-1 Security update for expat
This update for expat fixes the following issues: - CVE-2024-45492: integer overflow in function nextScaffoldPart. bsc1229932 - CVE-2024-45491: integer overflow in dtdCopy. bsc1229931 - CVE-2024-45490: negative length for XMLParseBuffer not rejected. bsc1229930...
CBL Mariner 2.0 Security Update: expat / python3 (CVE-2024-45490)
The version of expat / python3 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45490 advisory. - An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for...
openSUSE Security Advisory (SUSE-SU-2024:3216-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : expat (SUSE-SU-2024:3216-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3216-1 advisory. - CVE-2024-45492: integer overflow in function nextScaffoldPart. bsc1229932 - CVE-2024-45491:...
Updated expat packages fix security vulnerabilities
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer. CVE-2024-45490 An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms where UINTMAX equals SIZEMAX...
SUSE SLES12 Security Update : expat (SUSE-SU-2024:3182-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3182-1 advisory. - CVE-2024-45492: Detect integer overflow in function nextScaffoldPart. bsc1229932 - CVE-2024-45491: Detect integer overflow in...
SUSE-SU-2024:3182-1 Security update for expat
This update for expat fixes the following issues: - CVE-2024-45492: Detect integer overflow in function nextScaffoldPart. bsc1229932 - CVE-2024-45491: Detect integer overflow in dtdCopy. bsc1229931 - CVE-2024-45490: Reject negative len for XMLParseBuffer. bsc1229930...
OESA-2024-2102 expat security update
expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for...
CVE-2024-45490
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer...
CVE-2024-45490
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer...
CVE-2024-45490
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer...
CVE-2024-45490
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer...