| Errata ID | 374 |
|---|---|
| Date | 2018-05-08 |
| Source package | expat |
| Fixed in version | 2.1.0-6+deb8u4 |
| Description | This update addresses the following issues: * Denial of service due to integer overflow to fix inside XML_Parse (CVE-2016-9063) * Inifinite loop due to invalid XML in external entity (CVE-2017-9233) |
| Additional notes | |
| CVE ID | CVE-2016-9063 CVE-2017-9233 |
| UCS Bug number | #44859 |
