Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Ubuntu 12.04 ESM: 3356-3 Moderate: Expat Exploit Vulnerability

ubuntu
Calendar Grey July 19, 2017
Dist Ubuntu Esm H88
Expat weakness impacts Ubuntu 12.04 ESM, leading to possible service interruptions. Ensure you update to enhance your security.
Expat could be made to hang if it received specially crafted input.

Summary

Expat could be made to hang if it received specially crafted input.

Software Description:

- expat: XML parsing C library

Details:

USN-3356-1 fix a vulnerability in Expat. This update provides

the corresponding udpate for Ubuntu 12.04 ESM.

Original advisory details:

 It was discovered that Expat incorrectly handled certain external

 entities. A remote attacker could possibly use this issue to cause

 Expat to hang, resulting in a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 ESM:
  lib64expat1                     2.0.1-7.2ubuntu1.5
  libexpat1                       2.0.1-7.2ubuntu1.5

In general, a standard system update will make all the necessary
changes.

References

  https://ubuntu.com/security/notices/USN-3356-2

  https://ubuntu.com/security/notices/USN-3356-1

  CVE-2017-9233

Severity
important
Lowest
Low
Medium
High
Critical

July 19, 2017

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here