MGASA-2015-0285

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2015-1283

Published: 27 Jul 2015, 17:18

Last modified:16 Apr 2026, 06:25

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Jul 2015, 17:18

Published

Vulnerability first disclosed

16 Apr 2026, 06:25

Last Modified

Vulnerability information updated

Description

Updated expat package fixes security vulnerability Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0 allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted XML data (CVE-2015-1283).

Affected Systems

mageia•expat
< 2.1.0-7.1.mga4
mageia•expat
< 2.1.0-9.1.mga5

References (3)

https://advisories.mageia.org/MGASA-2015-0285.html
https://bugs.mageia.org/show_bug.cgi?id=16477
http://googlechromereleases.blogspot.cz/2015/07/stable-channel-update_21.html