Format: 1.8 Date: Tue, 08 Mar 2022 09:28:37 -0300 Source: expat Binary: libexpat1-dev libexpat1 libexpat1-udeb expat Architecture: ppc64el Version: 2.2.5-3ubuntu0.7 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Leonidas Da Silva Barbosa Description: expat - XML parsing C library - example application libexpat1 - XML parsing C library - runtime library libexpat1-dev - XML parsing C library - development kit libexpat1-udeb - XML parsing C library - runtime library (udeb) Launchpad-Bugs-Fixed: 1963903 Changes: expat (2.2.5-3ubuntu0.7) bionic-security; urgency=medium . * SECURITY UPDATE: Stack exhaustion - debian/patches/CVE-2022-25313.patch: prevent stack exhaustion in build_model in expat/lib/xmlparse.c. - debian/patches/fix-build_model-regression.patch: fix build_model regression in expat/lib/xmlparse.c. - CVE-2022-25313 * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2022-25314.patch: prevent integer overflow in copyString in expat/lib/xmlparse.c. - CVE-2022-25314 * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2022-25315.patch: prevent integer overflow in storeRawNames in expat/lib/xmlparse.c. - CVE-2022-25315 * SECURITY UPDATE: relax fix to CVE-2022-25236 with regard to RFC 3986 URI characters and possibly regressions - debian/patches/CVE-2022-25236-3.patch: add a note on namespace URI validation in expat/doc/reference.html, expat/lib/expat.h. - debian/patches/CVE-2022-25236-4.patch: document namespace separator effect right in header expat/lib/expat.h. - debian/patches/CVE-2022-25236-5.patch: cover relaxed fix in tests. - debian/patches/CVE-2022-25236-6.patch: relax fix with regard to RFC 3986 URI characters in expat/lib/xmlparse.c. (LP: #1963903) Checksums-Sha1: dca0a2cdf08c0d40f0b76e26c38cbcb154ff64de 28976 expat-dbgsym_2.2.5-3ubuntu0.7_ppc64el.ddeb 102408754b920d0efcb6f83ed98789c7cf89f97c 8116 expat_2.2.5-3ubuntu0.7_ppc64el.buildinfo 2201ebeb14952644d973ebc0080abd7b25334bee 16672 expat_2.2.5-3ubuntu0.7_ppc64el.deb ff52e1b9df9ae0df1d2c6cc1296d314f5c35c45e 274492 libexpat1-dbgsym_2.2.5-3ubuntu0.7_ppc64el.ddeb f701971fae62eda5f645b5aa605b16005f1f4c1c 133868 libexpat1-dev_2.2.5-3ubuntu0.7_ppc64el.deb ac93469d52252aedd1f57d7f39629903a1b030e1 68616 libexpat1-udeb_2.2.5-3ubuntu0.7_ppc64el.udeb 635a3f3337a49fec557c88cf009b00e5918c2d46 90712 libexpat1_2.2.5-3ubuntu0.7_ppc64el.deb Checksums-Sha256: f489c96513759bc2dd9b5d482ea5e8956249e0a22abe60f660257548d0eedb64 28976 expat-dbgsym_2.2.5-3ubuntu0.7_ppc64el.ddeb ab44cda59bed74b89146c7c5e09c96589ebb4d90b13936dcd4c4b8d1d6c8d6fa 8116 expat_2.2.5-3ubuntu0.7_ppc64el.buildinfo 0f8ff32441aebd88b77e5259f981a36dcf3c6a55cd690949368a87c93de078fd 16672 expat_2.2.5-3ubuntu0.7_ppc64el.deb 8682486eed6e3ad69c19afb8f6d3beb96887d7882302c63cdc2bcfb3f658238c 274492 libexpat1-dbgsym_2.2.5-3ubuntu0.7_ppc64el.ddeb 84852b054b5a670d11bfde554164a99af6d5634bc884ac6ca4f1328406c463d5 133868 libexpat1-dev_2.2.5-3ubuntu0.7_ppc64el.deb b666b36c42057e2088ad98bd33237e3c17d4ac6ce5d2b9f138ce45f69e6cfcbc 68616 libexpat1-udeb_2.2.5-3ubuntu0.7_ppc64el.udeb 99703af3c871fc7e066d4b484d66d6224a0b15169d64b3958ddcd1f7685c0e9b 90712 libexpat1_2.2.5-3ubuntu0.7_ppc64el.deb Files: 5e6a216285ade5275ceb922e184cd8ac 28976 debug optional expat-dbgsym_2.2.5-3ubuntu0.7_ppc64el.ddeb 2f517105262fe981dc971d26fb0ce2b5 8116 text optional expat_2.2.5-3ubuntu0.7_ppc64el.buildinfo 4c386a876b98bd4f544aa0f55de0adef 16672 text optional expat_2.2.5-3ubuntu0.7_ppc64el.deb 343111f0c4d39149fe391fec4f510b43 274492 debug optional libexpat1-dbgsym_2.2.5-3ubuntu0.7_ppc64el.ddeb 63348000cd8d0af4752402d08e1d047d 133868 libdevel optional libexpat1-dev_2.2.5-3ubuntu0.7_ppc64el.deb e4181041ed6d4f27b3133eeb3292e800 68616 debian-installer optional libexpat1-udeb_2.2.5-3ubuntu0.7_ppc64el.udeb 1fce2ee05e0f9538ad78a8ffefe84b3d 90712 libs optional libexpat1_2.2.5-3ubuntu0.7_ppc64el.deb Original-Maintainer: Laszlo Boszormenyi (GCS) Package-Type: udeb