Format: 1.8 Date: Mon, 21 Feb 2022 15:48:46 -0300 Source: expat Binary: expat libexpat1 libexpat1-dev libexpat1-udeb Architecture: s390x Version: 2.2.9-1ubuntu0.4 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Leonidas Da Silva Barbosa Description: expat - XML parsing C library - example application libexpat1 - XML parsing C library - runtime library libexpat1-dev - XML parsing C library - development kit libexpat1-udeb - XML parsing C library - runtime library (udeb) Launchpad-Bugs-Fixed: 1963903 Changes: expat (2.2.9-1ubuntu0.4) focal-security; urgency=medium . * SECURITY UPDATE: Stack exhaustion - debian/patches/CVE-2022-25313.patch: prevent stack exhaustion in build_model in expat/lib/xmlparse.c. - debian/patches/fix-build_model-regression.patch: fix build_model regression in expat/lib/xmlparse.c. - debian/patches/protect-against-nested-element*: in expat/lib/xmlparse. - CVE-2022-25313 * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2022-25314.patch: prevent integer overflow in copyString in expat/lib/xmlparse.c. - CVE-2022-25314 * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2022-25315.patch: prevent integer overflow in storeRawNames in expat/lib/xmlparse.c. - CVE-2022-25315 * SECURITY UPDATE: relax fix to CVE-2022-25236 with regard to RFC 3986 URI characters and possibly regressions - debian/patches/CVE-2022-25236-3.patch: add a note on namespace URI validation in expat/doc/reference.html, expat/lib/expat.h. - debian/patches/CVE-2022-25236-4.patch: document namespace separator effect right in header expat/lib/expat.h. - debian/patches/CVE-2022-25236-5.patch: cover relaxed fix in tests. - debian/patches/CVE-2022-25236-6.patch: relax fix with regard to RFC 3986 URI characters in expat/lib/xmlparse.c. (LP: #1963903) * removing duplicated tests - debian/patches/fix_test_dup.patch: removing tests were duplicated in expat/tests/runtests.c. Checksums-Sha1: 70263da6e0c2d12df3b4ae65f61e6633ffd54dfe 29920 expat-dbgsym_2.2.9-1ubuntu0.4_s390x.ddeb 6e98ca29ad96dc51be24b0b49a3e08314fe21f9c 7980 expat_2.2.9-1ubuntu0.4_s390x.buildinfo 02d81e1f6078d55b9e169e7b35122eb5e04c9f2f 14620 expat_2.2.9-1ubuntu0.4_s390x.deb c87aa3c0f1ffdf8cb490b9b0c1dfe1177b919d5f 307080 libexpat1-dbgsym_2.2.9-1ubuntu0.4_s390x.ddeb 5ded26d15746a428581670327e7fa82a8ed448ac 113340 libexpat1-dev_2.2.9-1ubuntu0.4_s390x.deb d248d5a4b1120a2c12bcca070bd1e3de834676b8 52460 libexpat1-udeb_2.2.9-1ubuntu0.4_s390x.udeb 8d969df4f92a849b51378a81764bb39e0f1a7459 70444 libexpat1_2.2.9-1ubuntu0.4_s390x.deb Checksums-Sha256: bef25f36478db27a8985b3fc459e78115e96d2c0dfb12c37e2e72642145d88bc 29920 expat-dbgsym_2.2.9-1ubuntu0.4_s390x.ddeb 1ca0e5a090307568ba292ce00a0ec39621374e0485532d1e4f56f963718e3e02 7980 expat_2.2.9-1ubuntu0.4_s390x.buildinfo 8397309ff79acc09e4129e0dafc2920fdfc895b31753e8683c1628a6d403d9e8 14620 expat_2.2.9-1ubuntu0.4_s390x.deb d8c0f13564afeadee4ebc9e1c63fc84cb75c59efa66bca7b1d0e8ec07ac879d1 307080 libexpat1-dbgsym_2.2.9-1ubuntu0.4_s390x.ddeb 96bae8fe8c22bed438be25e7d7a4d01774b7b80e533c098a048212940461120d 113340 libexpat1-dev_2.2.9-1ubuntu0.4_s390x.deb 4590cecbf822345a57cd2d88e757a3f534518b38dcfe4995c9782f75992cc215 52460 libexpat1-udeb_2.2.9-1ubuntu0.4_s390x.udeb 0f62c9a881a24760f5f61b834167191df19496e9d985fba492e70fea40d131ea 70444 libexpat1_2.2.9-1ubuntu0.4_s390x.deb Files: 4634fd84e3dde1c034e53461c629f0fe 29920 debug optional expat-dbgsym_2.2.9-1ubuntu0.4_s390x.ddeb 92bc3d9658feea54deadeeea11ba010b 7980 text optional expat_2.2.9-1ubuntu0.4_s390x.buildinfo e10aa64ef443a99ddbf06af83c61efb5 14620 text optional expat_2.2.9-1ubuntu0.4_s390x.deb 357777462ba6aee4e60796855d9c290c 307080 debug optional libexpat1-dbgsym_2.2.9-1ubuntu0.4_s390x.ddeb 9c17fbdee7dac351454f81244425ef04 113340 libdevel optional libexpat1-dev_2.2.9-1ubuntu0.4_s390x.deb 02c053e08fc7c8eca7b86177a7534805 52460 debian-installer optional libexpat1-udeb_2.2.9-1ubuntu0.4_s390x.udeb 053a36579604f29e5487dfd7dd0fcb67 70444 libs optional libexpat1_2.2.9-1ubuntu0.4_s390x.deb Original-Maintainer: Laszlo Boszormenyi (GCS) Package-Type: udeb