USN-7000-2: Expat vulnerabilities

Read Time:31 Second

USN-7000-1 fixed vulnerabilities in Expat. This update
provides the corresponding updates for Ubuntu 22.04 LTS.

Original advisory details:

Shang-Hung Wan discovered that Expat did not properly handle certain
function calls when a negative input length was provided. An attacker
could use this issue to cause a denial of service or possibly execute
arbitrary code. (CVE-2024-45490)

Shang-Hung Wan discovered that Expat did not properly handle the
potential for an integer overflow on 32-bit platforms. An attacker
could use this issue to cause a denial of service or possibly execute
arbitrary code. (CVE-2024-45491, CVE-2024-45492)

Windscribe Acquitted on Charges of Not Collecting Users’ Data

Uyghur Diaspora Group Targeted with Remote Surveillance Malware

Half of Mobile Devices Run Outdated Operating Systems

Researchers Note 16.7% Increase in Automated Scanning Activity

2025 Cyber Resilience Research Discovers Speed of AI Advancing Emerging Attack Types

ISACA Highlights Critical Lack of Quantum Threat Mitigation Strategies

FBI Asks for Help Tracking Chinese Salt Typhoon Actors

Government Set to Ban SIM Farms in European First

Friday Squid Blogging: Squid Facts on Your Phone

USN-7000-2: Expat vulnerabilities

USN-7469-2: Apache Tomcat vulnerability

USN-7469-1: Apache Traffic Server vulnerability

USN-7468-1: Linux kernel (Azure, N-Series) vulnerabilities

USN-7459-2: Linux kernel (GCP) vulnerabilities

USN-7467-1: libxml2 vulnerabilities

USN-7465-1: Mistral vulnerabilities