USN-7000-2: Expat vulnerabilities

Read Time:31 Second

USN-7000-1 fixed vulnerabilities in Expat. This update
provides the corresponding updates for Ubuntu 22.04 LTS.

Original advisory details:

Shang-Hung Wan discovered that Expat did not properly handle certain
function calls when a negative input length was provided. An attacker
could use this issue to cause a denial of service or possibly execute
arbitrary code. (CVE-2024-45490)

Shang-Hung Wan discovered that Expat did not properly handle the
potential for an integer overflow on 32-bit platforms. An attacker
could use this issue to cause a denial of service or possibly execute
arbitrary code. (CVE-2024-45491, CVE-2024-45492)

CISA, FBI Warn of Medusa Ransomware Impacting Critical Infrastructure

RIP Mark Klein

Chromecast chaos – 2nd gen devices go belly-up as Google struggles to fix certificate issue

‘ClickFix’ Phishing Scam Impersonates Booking.com to Target Hospitality

Medusa ransomware: FBI and CISA urge organisations to act now to mitigate threat

Tech Complexity Puts UK Cybersecurity at Risk

VC Investment in Cyber Startups Surges 35%

UK ICO Fires GDPR “Warning Shot” Over Use of Children’s Data

Red Teaming for Generative AI: A Practical Approach to AI Security

USN-7000-2: Expat vulnerabilities

kitty-0.40.0-2.fc40

USN-7351-1: RESTEasy vulnerabilities

USN-7344-2: Linux kernel vulnerabilities

USN-7328-2: Linux kernel vulnerabilities

USN-7325-3: Linux kernel vulnerabilities

linux-firmware-20250311-1.fc42