Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

expat-2.5.0-2.el9_4 RPM for aarch64

From AlmaLinux 9.4 BaseOS for aarch64

Name: expat Distribution: AlmaLinux
Version: 2.5.0 Vendor: AlmaLinux
Release: 2.el9_4 Build date: Tue Apr 30 17:33:31 2024
Group: Unspecified Build host: arm-builder01.almalinux.org
Size: 341754 Source RPM: expat-2.5.0-2.el9_4.src.rpm
Packager: AlmaLinux Packaging Team <packager@almalinux.org>
Url: https://libexpat.github.io/
Summary: An XML parser library
This is expat, the C library for parsing XML, written by James Clark. Expat
is a stream oriented XML parser. This means that you register handlers with
the parser prior to starting the parse. These handlers are called when the
parser discovers the associated structures in the document being parsed. A
start tag is an example of the kind of structures for which you may
register handlers.

Provides

Requires

License

MIT

Changelog

* Tue Feb 13 2024 Tomas Korbar <tkorbar@redhat.com> - 2.5.0-2
  - Fix parsing of large tokens
  - Reject direct parameter entity recursion
  - Resolves: RHEL-29699
  - Resolves: RHEL-29696
* Thu Nov 10 2022 Tomas Korbar <tkorbar@redhat.com> - 2.5.0-1
  - Rebase to version 2.5.0
  - Resolves: CVE-2022-43680
* Thu Sep 29 2022 Tomas Korbar <tkorbar@redhat.com> - 2.4.9-1
  - Rebase to version 2.4.9
  - Resolves: CVE-2022-40674
* Tue Apr 26 2022 Tomas Korbar <tkorbar@redhat.com> -  2.4.7-1
  - Rebase to version 2.4.7
  - Resolves: rhbz#2067201
  - Resolves: CVE-2022-25313
  - Resolves: CVE-2022-25314
  - Resolves: CVE-2022-25236
* Mon Mar 14 2022 Tomas Korbar <tkorbar@redhat.com> -  2.2.10-11
  - Improve fix for CVE-2022-25236
  - Related: CVE-2022-25236
* Mon Feb 28 2022 Tomas Korbar <tkorbar@redhat.com> -  2.2.10-10
  - Fix multiple CVEs
  - CVE-2022-25236 expat: namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
  - CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
  - CVE-2022-25315 expat: integer overflow in storeRawNames()
  - Resolves: CVE-2022-25236
  - Resolves: CVE-2022-25235
  - Resolves: CVE-2022-25315

Files

/usr/bin/xmlwf
/usr/lib/.build-id
/usr/lib/.build-id/7f
/usr/lib/.build-id/7f/26896e55fbbcf67b757804dbbcb89e98f23086
/usr/lib/.build-id/b8
/usr/lib/.build-id/b8/2d37b51bb28d951118b02f8a5cf01ae45fe76a
/usr/lib64/libexpat.so.1
/usr/lib64/libexpat.so.1.8.10
/usr/share/doc/expat
/usr/share/doc/expat/AUTHORS
/usr/share/doc/expat/Changes
/usr/share/licenses/expat
/usr/share/licenses/expat/COPYING
/usr/share/man/man1/xmlwf.1.gz


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Nov 12 07:19:56 2024