--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-1332ed94a7
2023-10-23 01:24:04.606295
--------------------------------------------------------------------------------

Name        : mingw-xerces-c
Product     : Fedora 37
Version     : 3.2.4
Release     : 1.fc37
URL         : https://xerces.apache.org/xerces-c/
Summary     : MingGW Windows validating XML parser
Description :
Xerces-C is a validating XML parser written in a portable subset of
C++. Xerces-C makes it easy to give your application the ability to
read and write XML data. A shared library is provided for parsing,
generating, manipulating, and validating XML documents. Xerces-C is
faithful to the XML 1.0 recommendation and associated standards (DOM
1.0, DOM 2.0. SAX 1.0, SAX 2.0, Namespaces).

--------------------------------------------------------------------------------
Update Information:

Update to xerces-c-3.2.4, fixes CVE-2023-37536.
--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2243429 - mingw-xerces-c: xerces-c: integer overflow [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2243429
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-1332ed94a7' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Do not reply to spam, report it: https://pagure.io/login/

Fedora 37: mingw-xerces-c 2023-1332ed94a7

October 23, 2023
Update to xerces-c-3.2.4, fixes CVE-2023-37536.

Summary

Xerces-C is a validating XML parser written in a portable subset of

C++. Xerces-C makes it easy to give your application the ability to

read and write XML data. A shared library is provided for parsing,

generating, manipulating, and validating XML documents. Xerces-C is

faithful to the XML 1.0 recommendation and associated standards (DOM

1.0, DOM 2.0. SAX 1.0, SAX 2.0, Namespaces).

Update Information:

Update to xerces-c-3.2.4, fixes CVE-2023-37536.

Change Log

References

[ 1 ] Bug #2243429 - mingw-xerces-c: xerces-c: integer overflow [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2243429

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-1332ed94a7' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
Name : mingw-xerces-c
Product : Fedora 37
Version : 3.2.4
Release : 1.fc37
URL : https://xerces.apache.org/xerces-c/
Summary : MingGW Windows validating XML parser

Related News

11.Locks IsometricPattern Esm H320
2 - 3 min read
The Kinsing hacker group, or H2Miner, has been orchestrating illicit cryptocurrency mining campaigns since 2019 and poses a persistent security
32.Lock Code Circular Esm H320
2 - 3 min read
The Kimsuky APT group, reportedly linked to North Korea's Reconnaissance General Bureau (RGB), has been identified deploying a Linux version of its
4.Lock AbstractDigital Esm H320
2 - 3 min read
Recent research sheds light on the security vulnerabilities prevalent in Linux vendor kernels due to flawed engineering processes that backport
28.Lock Globe Esm H320
1 - 2 min read
The intersection of Linux and quantum computing has become increasingly apparent, emphasizing the importance of Linux-based operating systems in
6.EmailConnection Touch Esm H320
2 - 3 min read
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and
30.Lock Globe Motherboard Esm H320
1 - 2 min read
As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect
22.Lock ScreenEffect Esm H320
1 - 2 min read
EndeavorOS Gemini is a captivating and charming desktop operating system based on Arch Linux. The new release includes a kernel upgrade, 3D graphics
25.@Sign Hook Keyboard Esm H320
1 min read
Cyber risk is increasing for individuals and organizations, making flexible and robust solutions for identifying spam and malware increasingly

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved