Synopsis: Moderate: expat security update Advisory ID: SLSA-2020:3952-1 Issue Date: 2020-10-01 CVE Numbers: CVE-2018-20843 -- Security Fix(es): * expat: large number of colons in input makes parser consume high amount of resources, leading to DoS (CVE-2018-20843) * expat: heap-based buffer over-read via crafted XML input (CVE-2019-15903) -- SL7 x86_64 expat-devel-2.1.0-12.el7.x86_64.rpm expat-2.1.0-12.el7.i686.rpm expat-devel-2.1.0-12.el7.i686.rpm expat-2.1.0-12.el7.x86_64.rpm expat-debuginfo-2.1.0-12.el7.i686.rpm expat-debuginfo-2.1.0-12.el7.x86_64.rpm expat-static-2.1.0-12.el7.i686.rpm expat-static-2.1.0-12.el7.x86_64.rpm - Scientific Linux Development Team