{ "schema_version": "1.7.0", "id": "RHSA-2022:1069", "related": [], "upstream": [ "CVE-2021-45960", "CVE-2021-46143", "CVE-2022-22822", "CVE-2022-22823", "CVE-2022-22824", "CVE-2022-22825", "CVE-2022-22826", "CVE-2022-22827", "CVE-2022-23852", "CVE-2022-25235", "CVE-2022-25236", "CVE-2022-25315" ], "published": "2024-09-17T01:16:40Z", "modified": "2026-02-24T10:05:17Z", "summary": "Red Hat Security Advisory: expat security update", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "affected": [ { "package": { "name": "expat", "ecosystem": "Red Hat:enterprise_linux:7::client", "purl": "pkg:rpm/redhat/expat" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-debuginfo", "ecosystem": "Red Hat:enterprise_linux:7::client", "purl": "pkg:rpm/redhat/expat-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-devel", "ecosystem": "Red Hat:enterprise_linux:7::client", "purl": "pkg:rpm/redhat/expat-devel" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-static", "ecosystem": "Red Hat:enterprise_linux:7::client", "purl": "pkg:rpm/redhat/expat-static" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat", "ecosystem": "Red Hat:enterprise_linux:7::computenode", "purl": "pkg:rpm/redhat/expat" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-debuginfo", "ecosystem": "Red Hat:enterprise_linux:7::computenode", "purl": "pkg:rpm/redhat/expat-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-devel", "ecosystem": "Red Hat:enterprise_linux:7::computenode", "purl": "pkg:rpm/redhat/expat-devel" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-static", "ecosystem": "Red Hat:enterprise_linux:7::computenode", "purl": "pkg:rpm/redhat/expat-static" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat", "ecosystem": "Red Hat:enterprise_linux:7::server", "purl": "pkg:rpm/redhat/expat" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-debuginfo", "ecosystem": "Red Hat:enterprise_linux:7::server", "purl": "pkg:rpm/redhat/expat-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-devel", "ecosystem": "Red Hat:enterprise_linux:7::server", "purl": "pkg:rpm/redhat/expat-devel" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-static", "ecosystem": "Red Hat:enterprise_linux:7::server", "purl": "pkg:rpm/redhat/expat-static" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat", "ecosystem": "Red Hat:enterprise_linux:7::workstation", "purl": "pkg:rpm/redhat/expat" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-debuginfo", "ecosystem": "Red Hat:enterprise_linux:7::workstation", "purl": "pkg:rpm/redhat/expat-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-devel", "ecosystem": "Red Hat:enterprise_linux:7::workstation", "purl": "pkg:rpm/redhat/expat-devel" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "expat-static", "ecosystem": "Red Hat:enterprise_linux:7::workstation", "purl": "pkg:rpm/redhat/expat-static" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "0:2.1.0-14.el7_9" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2022:1069" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044451" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044455" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044457" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044464" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044467" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044479" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044484" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044488" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044613" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2056363" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2056366" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2056370" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_1069.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2021-45960" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2021-45960" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-45960" }, { "type": "ARTICLE", "url": "https://github.com/libexpat/libexpat/issues/531" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2021-46143" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2021-46143" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-46143" }, { "type": "ARTICLE", "url": "https://github.com/libexpat/libexpat/issues/532" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-22822" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-22822" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22822" }, { "type": "ARTICLE", "url": "https://github.com/libexpat/libexpat/pull/539" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-22823" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-22823" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22823" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-22824" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-22824" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22824" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-22825" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-22825" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22825" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-22826" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-22826" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22826" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-22827" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-22827" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-22827" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-23852" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-23852" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23852" }, { "type": "ARTICLE", "url": "https://github.com/libexpat/libexpat/pull/550" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-25235" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-25235" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-25235" }, { "type": "ARTICLE", "url": "https://blog.hartwork.org/posts/expat-2-4-5-released/" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-25236" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-25236" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-25236" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2022-25315" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2022-25315" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-25315" } ] }