Source | Text Version

QSN-4132-1: expat vulnerability

September 12, 2019

Summary

Expat could be made to expose sensitive information if it received a specially crafted XML file.

Details

It was discovered that Expat incorrectly handled certain XML files. An attacker could possibly use this issue to expose sensitive information.

References

https://usn.ubuntu.com/4132-1

http://people.canonical.com/~ubuntu-security/cve/CVE-2019-15903

Update

A general update will usually fix all issues, but to make sure, you can check your current version with:

$ dpkg -l lib64expat1

If the current version you have is before 2.1.0-7ubuntu0.16.04.5, run the following:

$ sudo apt-get update
$ sudo apt-get install lib64expat1

A general update will usually fix all issues, but to make sure, you can check your current version with:

$ dpkg -l libexpat1

If the current version you have is before 2.1.0-7ubuntu0.16.04.5, run the following:

$ sudo apt-get update
$ sudo apt-get install libexpat1

Copyright © 2010-2015, OSNEXUS Corporation. All rights reserved.