RHSA-2020:1011

Affecting expat package, versions <0:2.1.0-11.el7

Report new vulnerabilities
medium severity
Do your applications use this vulnerable package? Test your applications

Overview

Expat is a C library for parsing XML documents. Security Fix(es): * expat: Integer overflow leading to buffer overflow in XML_GetBuffer() (CVE-2015-2716) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.8 Release Notes linked from the References section.

References

CVE
RHSA-2020:1011
Snyk ID
SNYK-CENTOS7-EXPAT-562685
Published
01 Apr, 2020