USN-2983-1

Details

Gustavo Grieco discovered that Expat incorrectly handled malformed XML data. If a user or application linked against Expat were tricked into opening a crafted XML file, an attacker could cause a denial of service, or possibly execute arbitrary code. (CVE-2016-0718)

Affected Packages

Ubuntu:14.04:LTSexpat

Fixed in:

2.1.0-4ubuntu1.2

Ubuntu:16.04:LTSexpat

Fixed in:

2.1.0-7ubuntu0.16.04.1

References

REPORThttps://ubuntu.com/security/CVE-2016-0718 ADVISORYhttps://ubuntu.com/security/notices/USN-2983-1

USN-2983-1

Details

Affected Packages

References

Upstream

Ecosystems

Timeline