Create an account

Subscribe to LWN

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

expat: denial of service

Package(s):

expat

CVE #(s):

CVE-2012-0876 CVE-2012-1148

Created:

March 28, 2012

Updated:

October 18, 2012

Description:

The expat utility suffers from a memory leak and a hash table collision flaw; either could be exploited for denial-of-service purposes.

Alerts:

Mandriva	MDVSA-2012:041	2012-03-27
openSUSE	openSUSE-SU-2012:0423-1	2012-03-28
Fedora	FEDORA-2012-5058	2012-05-01
Fedora	FEDORA-2012-6996	2012-05-15
Red Hat	RHSA-2012:0731-01	2012-06-13
Scientific Linux	SL-expa-20120613	2012-06-13
CentOS	CESA-2012:0731	2012-06-13
CentOS	CESA-2012:0731	2012-06-13
Oracle	ELSA-2012-0731	2012-06-14
Oracle	ELSA-2012-0731	2012-06-14
Oracle	ELSA-2012-0744	2012-06-19
Oracle	ELSA-2012-0745	2012-06-19
Mandriva	MDVSA-2012:097	2012-06-20
Mandriva	MDVSA-2012:096	2012-06-20
Mandriva	MDVSA-2012:096-1	2012-07-02
Mageia	MGASA-2012-0169	2012-07-19
Debian	DSA-2525-1	2012-08-06
Ubuntu	USN-1527-1	2012-08-09
Ubuntu	USN-1527-2	2012-09-10
Gentoo	201209-06	2012-09-24
Ubuntu	USN-1613-2	2012-10-17
Ubuntu	USN-1613-1	2012-10-17
Mandriva	MDVSA-2013:117	2013-04-10

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds