{"id":"MGASA-2022-0183","summary":"Updated xmlrpc-c packages fix security vulnerability","details":"xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation\nof encoding, such as checks for whether a UTF-8 character is valid in a\ncertain context. (CVE-2022-25235)\n","modified":"2026-04-16T04:43:52.954453986Z","published":"2022-05-15T10:06:40Z","upstream":["CVE-2022-25235"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0183.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30351"},{"type":"WEB","url":"https://access.redhat.com/errata/RHSA-2022:1643"}],"affected":[{"package":{"name":"xmlrpc-c","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/xmlrpc-c?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.51.06-1.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0183.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}