update: expat
Opened this issue · 0 comments
dongsupark commented
Name: expat
CVEs: CVE-2024-50602
CVSSs: 5.9 (https://www.cve.org/CVERecord?id=CVE-2024-50602)
Action Needed: TBD, update to >= 2.6.4
Summary: An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser.
See also https://bugzilla.redhat.com/show_bug.cgi?id=2321987, libexpat/libexpat#915.
refmap.gentoo: https://bugs.gentoo.org/942969