USN-5638-1 fixed a vulnerability in Expat. This update provides the corresponding updates for Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. It was discovered that Expat incorrectly handled memory in out-of-memory situations. An attacker could possibly use this issue to cause a crash, resultingin a denial of service, or possibly execute arbitrary code. This issue only affectedUbuntu 18.04 LTS. (CVE-2022-43680) Original advisory details: Rhodri Jamesdiscovered that Expat incorrectly handled memory when processing certain malformed XMLfiles. An attacker could possibly use this issue to cause a crash or execute arbitrarycode.
Continue reading...
Continue reading...