USN-5288-1: Expat vulnerabilities
21 February 2022
Several security issues were fixed in Expat.
Releases
Packages
- expat - XML parsing C library
Details
It was discovered that Expat incorrectly handled certain files.
An attacker could possibly use this issue to cause a crash or
execute arbitrary code.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 21.10
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04
-
libexpat1
-
2.1.0-7ubuntu0.16.04.5+esm2
Available with Ubuntu Pro
-
lib64expat1
-
2.1.0-7ubuntu0.16.04.5+esm2
Available with Ubuntu Pro
Ubuntu 14.04
-
libexpat1
-
2.1.0-4ubuntu1.4+esm4
Available with Ubuntu Pro
-
lib64expat1
-
2.1.0-4ubuntu1.4+esm4
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.
Related notices
- USN-5455-1: libxmltok1-dev, libxmltok1, libxmltok