[CLSA-2026:1774605210] expat: Fix of 2 CVEs
Type:
security
Severity:
Moderate
Release date:
2026-03-27 09:53:34 UTC
Description:
- CVE-2026-32777: fix infinite loop while parsing DTD content - CVE-2026-32778: fix NULL pointer dereference in setContext on retry after OOM
Updated packages:
  • expat-2.5.0-1.el9.tuxcare.els10.i686.rpm
    sha:99d05882e20315a2ec30c126128f8fad4d04d413cb4fd0cc9991b56c8069b73d
  • expat-2.5.0-1.el9.tuxcare.els10.x86_64.rpm
    sha:3226e022eda186add8a770e5687bb8e82f5afe8edcf1decef75697029fb2c5fd
  • expat-devel-2.5.0-1.el9.tuxcare.els10.i686.rpm
    sha:98b4ab498c4ecb54c2d822c72daf58e35e3dd21ccced8abc56be2d651c87cb62
  • expat-devel-2.5.0-1.el9.tuxcare.els10.x86_64.rpm
    sha:fd5545f66817f646a72ac8835c6f4b7201753e22045dae587cd7659a5aefc58b
  • expat-static-2.5.0-1.el9.tuxcare.els10.x86_64.rpm
    sha:1d2c9acc8327e9fcbe71fab0dd4f81a4f60fbc2091118540647e7e84bf5751c3
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.