Format: 1.8 Date: Tue, 08 Nov 2022 07:13:44 -0300 Source: expat Binary: libexpat1-dev libexpat1 libexpat1-udeb expat Architecture: i386 Version: 2.2.5-3ubuntu0.8 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Leonidas Da Silva Barbosa Description: expat - XML parsing C library - example application libexpat1 - XML parsing C library - runtime library libexpat1-dev - XML parsing C library - development kit libexpat1-udeb - XML parsing C library - runtime library (udeb) Changes: expat (2.2.5-3ubuntu0.8) bionic-security; urgency=medium . * SECURITY UPDATE: use-after-free - debian/patches/CVE-2022-40674.patch: adds a conditional call to storeRawNames() in func internalEntityProcessor following a call to doCOntent() that could result in unbalanced tags upon returning. - CVE-2022-40674 * SECURITY UPDATE: use-after-free - debian/patches/CVE-2022-43680-1.patch: adds tests to cover DTD destruction in XML_ExternalEntityParserCreate in expat/tests/runtests.c. - debian/patches/CVE-2022-43680-2.patch: fix overeager DTD destruction in XML_ExternalEntityParserCreate in expat/lib/xmlparse.c. - CVE-2022-43680 Checksums-Sha1: 16bf816c34dbaa7a55841b97d22077be1c8cbaa8 22368 expat-dbgsym_2.2.5-3ubuntu0.8_i386.ddeb 4879447d21776ace57329c0694530530c1191196 8139 expat_2.2.5-3ubuntu0.8_i386.buildinfo 8c1d84ac56fd5b83aab30c0c8f7e9086d085ba0f 15820 expat_2.2.5-3ubuntu0.8_i386.deb df681aa908ff6b755f0b8bdc55207af04e080ee1 212200 libexpat1-dbgsym_2.2.5-3ubuntu0.8_i386.ddeb a67a6e34414b6ef2f4763f943d6186818a2e8f85 128624 libexpat1-dev_2.2.5-3ubuntu0.8_i386.deb 13157e74a5fe267f5b59439f8926a05acbbbc498 59540 libexpat1-udeb_2.2.5-3ubuntu0.8_i386.udeb 53b96a9157821470f47ea438d7c130033e236635 80732 libexpat1_2.2.5-3ubuntu0.8_i386.deb Checksums-Sha256: eb9f34c82ad9c52cd6e468669a8331b1cfba5daabb24e1602a12a9e99db1a232 22368 expat-dbgsym_2.2.5-3ubuntu0.8_i386.ddeb 824457f6d86193a32d9c9ce342b21732d6aac2d8d072cd87d4454ab5a18f0782 8139 expat_2.2.5-3ubuntu0.8_i386.buildinfo bf24846653b8ffaa2976c82357e0d5ba0db77a1ff3e0e616b0bed63cbeb63288 15820 expat_2.2.5-3ubuntu0.8_i386.deb 78457a684d21c259d8ea23809732580c9b0f329e3a74d0d511f3113cb66e85b4 212200 libexpat1-dbgsym_2.2.5-3ubuntu0.8_i386.ddeb 1a2d0d92cbe8639020a9efb429cc289bae967c6a28bf4fcdf604a9b0b73ac341 128624 libexpat1-dev_2.2.5-3ubuntu0.8_i386.deb 0119790a3a5dc27608ebe92fb008fd3e734f7c87a94aec2b1e935669254c3bfb 59540 libexpat1-udeb_2.2.5-3ubuntu0.8_i386.udeb bd5af7e900fa402d2bd8e8d26e9ca39e558fd430e4e0d4d5afa7406e90f7719a 80732 libexpat1_2.2.5-3ubuntu0.8_i386.deb Files: dd146ad46372ea18e6592ded45e16d7b 22368 debug optional expat-dbgsym_2.2.5-3ubuntu0.8_i386.ddeb c6c575e7ec90f19d7ac73e610483545b 8139 text optional expat_2.2.5-3ubuntu0.8_i386.buildinfo f3b30b54b6d76fb366edb97f5a832d6e 15820 text optional expat_2.2.5-3ubuntu0.8_i386.deb b52895d64a428ac327bd9aae6adf7c49 212200 debug optional libexpat1-dbgsym_2.2.5-3ubuntu0.8_i386.ddeb 299a3b4356591edd9e2014fcb496ab11 128624 libdevel optional libexpat1-dev_2.2.5-3ubuntu0.8_i386.deb f6e6a1de8c759d5a1f90fcdd3ca252fd 59540 debian-installer optional libexpat1-udeb_2.2.5-3ubuntu0.8_i386.udeb e852024608f6cd300b3f71218ed01b0e 80732 libs optional libexpat1_2.2.5-3ubuntu0.8_i386.deb Original-Maintainer: Laszlo Boszormenyi (GCS) Package-Type: udeb