{"id":"RHSA-2022:1069","summary":"Red Hat Security Advisory: expat security update","modified":"2026-03-20T10:30:59.776480Z","published":"2024-09-17T01:16:40Z","upstream":["CVE-2021-45960","CVE-2021-46143","CVE-2022-22822","CVE-2022-22823","CVE-2022-22824","CVE-2022-22825","CVE-2022-22826","CVE-2022-22827","CVE-2022-23852","CVE-2022-25235","CVE-2022-25236","CVE-2022-25315"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2022:1069"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044451"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044455"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044457"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044464"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044467"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044479"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044484"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044488"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2044613"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2056363"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2056366"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2056370"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_1069.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-45960"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-45960"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-45960"},{"type":"ARTICLE","url":"https://github.com/libexpat/libexpat/issues/531"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-46143"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-46143"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-46143"},{"type":"ARTICLE","url":"https://github.com/libexpat/libexpat/issues/532"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-22822"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-22822"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22822"},{"type":"ARTICLE","url":"https://github.com/libexpat/libexpat/pull/539"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-22823"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-22823"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22823"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-22824"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-22824"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22824"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-22825"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-22825"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22825"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-22826"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-22826"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22826"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-22827"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-22827"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22827"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-23852"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-23852"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-23852"},{"type":"ARTICLE","url":"https://github.com/libexpat/libexpat/pull/550"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-25235"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-25235"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-25235"},{"type":"ARTICLE","url":"https://blog.hartwork.org/posts/expat-2-4-5-released/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-25236"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-25236"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-25236"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-25315"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-25315"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-25315"}],"affected":[{"package":{"name":"expat","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/expat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/expat-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-devel","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/expat-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-static","ecosystem":"Red Hat:enterprise_linux:7::client","purl":"pkg:rpm/redhat/expat-static"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/expat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/expat-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-devel","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/expat-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-static","ecosystem":"Red Hat:enterprise_linux:7::computenode","purl":"pkg:rpm/redhat/expat-static"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/expat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/expat-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-devel","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/expat-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-static","ecosystem":"Red Hat:enterprise_linux:7::server","purl":"pkg:rpm/redhat/expat-static"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/expat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-debuginfo","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/expat-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-devel","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/expat-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}},{"package":{"name":"expat-static","ecosystem":"Red Hat:enterprise_linux:7::workstation","purl":"pkg:rpm/redhat/expat-static"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.1.0-14.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2022:1069.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}