AVG-306

Package expat
Status Fixed
Severity Medium
Type denial of service
Affected 2.2.0-1
Fixed 2.2.1-1
Current 2.2.5-1 [core]
Ticket None
Created Sun Jun 18 10:52:34 2017
Issue Severity Remote Type Description
CVE-2017-9233 Medium Yes Denial of service
An external entity infinite loop issue has been found in Expat < 2.2.1, leading to a denial of service.
CVE-2016-9063 Medium Yes Denial of service
An integer overflow vulnerability has been discovered during the parsing of XML using the Expat library.
Date Advisory Package Description
26 Jun 2017 ASA-201706-32 expat denial of service