Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0, as used in Google Chrome before 44.0.2403.89 and other products, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted XML data, a related issue to CVE-2015-2716.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "chromium-chromedriver": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-browser-dbg": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-codecs-ffmpeg-dbg": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-browser-dbgsym": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-codecs-ffmpeg-extra-dbgsym": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-codecs-ffmpeg": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-chromedriver-dbgsym": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-browser": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-codecs-ffmpeg-extra-dbg": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-codecs-ffmpeg-dbgsym": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-browser-l10n": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-chromedriver-dbg": "44.0.2403.89-0ubuntu0.14.04.1.1095", "chromium-codecs-ffmpeg-extra": "44.0.2403.89-0ubuntu0.14.04.1.1095" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libexpat1-dev": "2.1.0-4ubuntu1.1", "expat-dbgsym": "2.1.0-4ubuntu1.1", "lib64expat1-dev": "2.1.0-4ubuntu1.1", "libexpat1": "2.1.0-4ubuntu1.1", "libexpat1-dbgsym": "2.1.0-4ubuntu1.1", "libexpat1-udeb": "2.1.0-4ubuntu1.1", "expat": "2.1.0-4ubuntu1.1", "libexpat1-udeb-dbgsym": "2.1.0-4ubuntu1.1", "lib64expat1": "2.1.0-4ubuntu1.1", "lib64expat1-dbgsym": "2.1.0-4ubuntu1.1" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "vnc4server": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "vnc4server-dbgsym": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "xvnc4viewer": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "xvnc4viewer-dbgsym": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libexpat1-dev": "2.1.0-7", "expat-dbgsym": "2.1.0-7", "lib64expat1-dev": "2.1.0-7", "libexpat1": "2.1.0-7", "libexpat1-dbgsym": "2.1.0-7", "libexpat1-udeb": "2.1.0-7", "expat": "2.1.0-7", "libexpat1-udeb-dbgsym": "2.1.0-7", "lib64expat1": "2.1.0-7", "lib64expat1-dbgsym": "2.1.0-7" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "vnc4server": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "vnc4server-dbgsym": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "xvnc4viewer": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "xvnc4viewer-dbgsym": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1" } ] }