Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0, as used in Google Chrome before 44.0.2403.89 and other products, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted XML data, a related issue to CVE-2015-2716.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-browser" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-browser-dbg" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-browser-dbgsym" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-browser-l10n" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-chromedriver" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-chromedriver-dbg" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-chromedriver-dbgsym" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-codecs-ffmpeg" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-codecs-ffmpeg-dbg" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-codecs-ffmpeg-dbgsym" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-codecs-ffmpeg-extra" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-codecs-ffmpeg-extra-dbg" }, { "binary_version": "44.0.2403.89-0ubuntu0.14.04.1.1095", "binary_name": "chromium-codecs-ffmpeg-extra-dbgsym" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "expat" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "expat-dbgsym" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "lib64expat1" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "lib64expat1-dbgsym" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "lib64expat1-dev" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "libexpat1" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "libexpat1-dbgsym" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "libexpat1-dev" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "libexpat1-udeb" }, { "binary_version": "2.1.0-4ubuntu1.1", "binary_name": "libexpat1-udeb-dbgsym" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "binary_name": "vnc4server" }, { "binary_version": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "binary_name": "vnc4server-dbgsym" }, { "binary_version": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "binary_name": "xvnc4viewer" }, { "binary_version": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "binary_name": "xvnc4viewer-dbgsym" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2.1.0-7", "binary_name": "expat" }, { "binary_version": "2.1.0-7", "binary_name": "expat-dbgsym" }, { "binary_version": "2.1.0-7", "binary_name": "lib64expat1" }, { "binary_version": "2.1.0-7", "binary_name": "lib64expat1-dbgsym" }, { "binary_version": "2.1.0-7", "binary_name": "lib64expat1-dev" }, { "binary_version": "2.1.0-7", "binary_name": "libexpat1" }, { "binary_version": "2.1.0-7", "binary_name": "libexpat1-dbgsym" }, { "binary_version": "2.1.0-7", "binary_name": "libexpat1-dev" }, { "binary_version": "2.1.0-7", "binary_name": "libexpat1-udeb" }, { "binary_version": "2.1.0-7", "binary_name": "libexpat1-udeb-dbgsym" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.2-3ubuntu0.16.04.1~esm2", "binary_name": "libxmltok1" }, { "binary_version": "1.2-3ubuntu0.16.04.1~esm2", "binary_name": "libxmltok1-dbgsym" }, { "binary_version": "1.2-3ubuntu0.16.04.1~esm2", "binary_name": "libxmltok1-dev" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "binary_name": "vnc4server" }, { "binary_version": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "binary_name": "vnc4server-dbgsym" }, { "binary_version": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "binary_name": "xvnc4viewer" }, { "binary_version": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "binary_name": "xvnc4viewer-dbgsym" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.2-4ubuntu0.18.04.1~esm1", "binary_name": "libxmltok1" }, { "binary_version": "1.2-4ubuntu0.18.04.1~esm1", "binary_name": "libxmltok1-dbgsym" }, { "binary_version": "1.2-4ubuntu0.18.04.1~esm1", "binary_name": "libxmltok1-dev" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.2-4ubuntu0.20.04.1~esm1", "binary_name": "libxmltok1" }, { "binary_version": "1.2-4ubuntu0.20.04.1~esm1", "binary_name": "libxmltok1-dbgsym" }, { "binary_version": "1.2-4ubuntu0.20.04.1~esm1", "binary_name": "libxmltok1-dev" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.2-4ubuntu0.22.04.1~esm1", "binary_name": "libxmltok1" }, { "binary_version": "1.2-4ubuntu0.22.04.1~esm1", "binary_name": "libxmltok1-dbgsym" }, { "binary_version": "1.2-4ubuntu0.22.04.1~esm1", "binary_name": "libxmltok1-dev" } ] }