[FEDORA-2016-7c6e7a9265] Fedora 24: expat
Severity
Critical
Affected Packages
1
CVEs
4
Security fixes for CVE-2016-4472, CVE-2016-5300, CVE-2016-0718 and
CVE-2012-6702.
Package | Affected Version |
---|---|
pkg:rpm/fedora/expat?distro=fedora-24 | < 2.1.1.2.fc24 |
- ID
- FEDORA-2016-7c6e7a9265
- Severity
- critical
- Severity from
- CVE-2016-0718
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2016-7c6e7a9265
- Published
-
2016-06-21T19:27:49
(8 years ago) - Modified
-
2016-06-21T19:27:49
(8 years ago) - Rights
- Copyright 2016 Red Hat, Inc.
- Other Advisories
-
- ALAS-2016-775
- ALPINE:CVE-2012-6702
- ALPINE:CVE-2016-0718
- ALPINE:CVE-2016-4472
- ALPINE:CVE-2016-5300
- DSA-3582-1
- DSA-3597-1
- ELSA-2016-2824
- FEDORA-2016-0fd6ca526a
- FEDORA-2016-60889583ab
- FREEBSD:57B3ABA7-1E25-11E6-8DD3-002590263BF5
- FREEBSD:8719B935-8BAE-41AD-92BA-3C826F651219
- FREEBSD:9164F51E-AE20-11E7-A633-009C02A2AB30
- FREEBSD:AA1AEFE3-6E37-47DB-BFDA-343EF4ACB1B5
- FREEBSD:C9C252F5-2DEF-11E6-AE88-002590263BF5
- FREEBSD:FF76F0E0-3F11-11E6-B3C8-14DAE9D210B8
- GLSA-201701-21
- RHSA-2016:2824
- SSA:2016-359-01
- SSA:2017-266-02
- SSA:2018-124-01
- SUSE-SU-2016:1508-1
- SUSE-SU-2016:1512-1
- SUSE-SU-2017:0415-1
- SUSE-SU-2017:0424-1
- SUSE-SU-2017:2699-1
- SUSE-SU-2017:2700-1
- SUSE-SU-2020:0497-1
- USN-2983-1
- USN-3010-1
- USN-3013-1
- USN-3044-1
- USN-5455-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1343086 | Bug #1343086 - CVE-2016-5300 expat: Little entropy used for hash initialization [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1343086 |
Bugzilla | 1344252 | Bug #1344252 - CVE-2016-4472 expat: Undefined behavior and pointer overflows [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1344252 |
Bugzilla | 1197087 | Bug #1197087 - XML_Parse breaks rand() function | https://bugzilla.redhat.com/show_bug.cgi?id=1197087 |
Bugzilla | 1337116 | Bug #1337116 - CVE-2016-0718 expat: Out-of-bounds heap read on crafted input causing crash [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1337116 |
Bugzilla | 1319732 | Bug #1319732 - CVE-2012-6702 expat: Using XML_Parse before rand() results into non-random output [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1319732 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/expat?distro=fedora-24 | fedora | expat | < 2.1.1.2.fc24 | fedora-24 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |