Debian 10261 Published by

An expat security update has been released for Debian GNU/Linux 8 Extended LTS to address multiple security vulnerabilities.



ELA-556-1 expat security update

Package expat
Version 2.1.0-6+deb8u7
Related CVEs CVE-2021-45960 CVE-2021-46143 CVE-2022-22822 CVE-2022-22823 CVE-2022-22824 CVE-2022-22825 CVE-2022-22826 CVE-2022-22827 CVE-2022-23852 CVE-2022-23990

Multiple security vulnerabilities have been discovered in Expat, the XML parsing C library. Integer overflows or invalid shifts may lead to a denial of service or other unspecified impact.

For Debian 8 jessie, these problems have been fixed in version 2.1.0-6+deb8u7.

We recommend that you upgrade your expat packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-556-1 expat security update