First published: Thu Sep 12 2019(Updated: )
USN-4132-1 fixed a vulnerability in Expat. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that Expat incorrectly handled certain XML files. An attacker could possibly use this issue to expose sensitive information.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libexpat1 | <2.1.0-4ubuntu1.4+esm2 | 2.1.0-4ubuntu1.4+esm2 |
=14.04 | ||
All of | ||
ubuntu/lib64expat1 | <2.1.0-4ubuntu1.4+esm2 | 2.1.0-4ubuntu1.4+esm2 |
=14.04 | ||
All of | ||
ubuntu/libexpat1 | <2.0.1-7.2ubuntu1.7 | 2.0.1-7.2ubuntu1.7 |
=12.04 | ||
All of | ||
ubuntu/lib64expat1 | <2.0.1-7.2ubuntu1.7 | 2.0.1-7.2ubuntu1.7 |
=12.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is USN-4132-2.
The libexpat1 and lib64expat1 packages on Ubuntu 12.04 and Ubuntu 14.04 are affected by this vulnerability.
The severity of this vulnerability is not specified.
To fix this vulnerability, update the libexpat1 and lib64expat1 packages to version 2.1.0-4ubuntu1.4+esm2 for Ubuntu 14.04, and 2.0.1-7.2ubuntu1.7 for Ubuntu 12.04.
More information about this vulnerability can be found on the Ubuntu security advisory page: <a href="https://ubuntu.com/security/CVE-2019-15903">https://ubuntu.com/security/CVE-2019-15903</a>