2022-02-16 01:01:10 +00:00
{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org" ,
"ID" : "CVE-2022-25235" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
"value" : "xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"url" : "https://github.com/libexpat/libexpat/pull/562" ,
"refsource" : "MISC" ,
"name" : "https://github.com/libexpat/libexpat/pull/562"
2022-02-19 22:01:07 +00:00
} ,
{
"refsource" : "MLIST" ,
"name" : "[oss-security] 20220219 Expat 2.4.5 released, includes 5 security fixes" ,
"url" : "http://www.openwall.com/lists/oss-security/2022/02/19/1"
2022-02-24 15:02:57 +00:00
} ,
{
"refsource" : "DEBIAN" ,
"name" : "DSA-5085" ,
"url" : "https://www.debian.org/security/2022/dsa-5085"
2022-03-01 21:01:20 +00:00
} ,
{
"refsource" : "FEDORA" ,
"name" : "FEDORA-2022-04f206996b" ,
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3UFRBA3UQVIQKXTBUQXDWQOVWNBKLERU/"
2022-03-02 18:01:10 +00:00
} ,
{
"refsource" : "FEDORA" ,
"name" : "FEDORA-2022-3d9d67f558" ,
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y27XO3JMKAOMQZVPS3B4MJGEAHCZF5OM/"
2022-03-03 11:01:10 +00:00
} ,
2022-03-10 17:24:25 +00:00
{
"refsource" : "MLIST" ,
"name" : "[debian-lts-announce] 20220307 [SECURITY] [DLA 2935-1] expat security update" ,
"url" : "https://lists.debian.org/debian-lts-announce/2022/03/msg00007.html"
2022-04-19 16:28:20 -07:00
} ,
{
2022-04-20 00:02:10 +00:00
"url" : "https://www.oracle.com/security-alerts/cpuapr2022.html" ,
"refsource" : "MISC" ,
"name" : "https://www.oracle.com/security-alerts/cpuapr2022.html"
} ,
{
"refsource" : "CONFIRM" ,
"name" : "https://security.netapp.com/advisory/ntap-20220303-0008/" ,
"url" : "https://security.netapp.com/advisory/ntap-20220303-0008/"
2022-06-14 11:01:47 +00:00
} ,
{
"refsource" : "CONFIRM" ,
"name" : "https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf" ,
"url" : "https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf"
2022-09-29 17:00:49 +00:00
} ,
{
"refsource" : "GENTOO" ,
"name" : "GLSA-202209-24" ,
"url" : "https://security.gentoo.org/glsa/202209-24"
2022-02-16 01:01:10 +00:00
}
]
}
}
