expat bug fix update

Advisory:	RHBA-2010:0672-1
Type:	Bug Fix Advisory
Severity:	N/A
Issued on:	2010-09-03
Last updated on:	2010-09-03
Affected Products:	RHEL Desktop Workstation (v. 5 client) Red Hat Enterprise Linux (v. 5 server) Red Hat Enterprise Linux Desktop (v. 5 client)

Details

Updated expat packages that fix a bug are now available for Red Hat Enterprise
Linux 5.

expat is a C library for parsing XML documents.

These updated expat packages fix the following bug:

* due to a regression introduced by the fix for CVE-2009-3560 the parser could
fail when parsing a document with an external DTD (Document Type Definition).
This issue is now resolved and such documents will parse correctly. (BZ#618744)

All expat users are advised to upgrade to these updated packages, which resolve
this issue.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
expat-1.95.8-8.3.el5_5.3.src.rpm	`MD5: 6bd263addfb7569120ddf7f10cbff06e SHA-256: bf3a0992d108b76178fc50589e9e175e78d91260468a0f1742ff18a595e070f7`

IA-32:
expat-devel-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: d5f63b065ad6965eb6a310f9f10292b1 SHA-256: 664f63c9e9b8b69c420ca706e9d00ba9e95049553cb50aa01e2630c67ba142c6`

x86_64:
expat-devel-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: d5f63b065ad6965eb6a310f9f10292b1 SHA-256: 664f63c9e9b8b69c420ca706e9d00ba9e95049553cb50aa01e2630c67ba142c6`
expat-devel-1.95.8-8.3.el5_5.3.x86_64.rpm	`MD5: 68caf5954950e523d9807e7a55817ab7 SHA-256: a3580e7a595281a4134a6490bc53c0b114af3002d2e402a00b3cc48a650c1f4d`

Red Hat Enterprise Linux (v. 5 server)

SRPMS:
expat-1.95.8-8.3.el5_5.3.src.rpm	`MD5: 6bd263addfb7569120ddf7f10cbff06e SHA-256: bf3a0992d108b76178fc50589e9e175e78d91260468a0f1742ff18a595e070f7`

IA-32:
expat-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: 94c0c3c9f5d66d62ced663c0f12ac839 SHA-256: 47e82056b37f202aa7d9d7b08d260dfb61fbea000b7672bd384d30cf89b0e05a`
expat-devel-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: d5f63b065ad6965eb6a310f9f10292b1 SHA-256: 664f63c9e9b8b69c420ca706e9d00ba9e95049553cb50aa01e2630c67ba142c6`

IA-64:
expat-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: 94c0c3c9f5d66d62ced663c0f12ac839 SHA-256: 47e82056b37f202aa7d9d7b08d260dfb61fbea000b7672bd384d30cf89b0e05a`
expat-1.95.8-8.3.el5_5.3.ia64.rpm	`MD5: 6d4d0e12e2764f6e363e149723f3ece0 SHA-256: b8e0151dfac7319d72a3f5e2621b2d068c6c7853b8418b806332852e5f58b19f`
expat-devel-1.95.8-8.3.el5_5.3.ia64.rpm	`MD5: cb39431f91fef4d7fbba3ad83996a188 SHA-256: 3f9673722152e42813c9b0cbca43b6b1d4b3fe97665314d3df8516ffff5dde81`

PPC:
expat-1.95.8-8.3.el5_5.3.ppc.rpm	`MD5: c14a51b6f2b61dd564bf7cffec23ed48 SHA-256: a0e269af7833f3c7edc2ee69a58e046b6dd1b780371e6c4f663231c66780dd83`
expat-1.95.8-8.3.el5_5.3.ppc64.rpm	`MD5: 86b6b22dc2e7f34043c6c5882521c980 SHA-256: e9f0cf80dfc5ef264930edfe7a98f1eb8db54d45dad865987f24c27e045047fb`
expat-devel-1.95.8-8.3.el5_5.3.ppc.rpm	`MD5: 9e09294d2599e127a8568820146f97c4 SHA-256: 973adb77f6831185a95b4506656b301bb09071c306bb1f531808114426423db4`
expat-devel-1.95.8-8.3.el5_5.3.ppc64.rpm	`MD5: 3bba8ec12915834cc0b72b4d9c7d8720 SHA-256: fff029327f30833207e23b52c1a5e608c98b6af2768a551ad797784e6b99b83a`

s390x:
expat-1.95.8-8.3.el5_5.3.s390.rpm	`MD5: fbe75d4cad5db04b0052ac05aebff732 SHA-256: e909ddb7084d200facb64f89c07bbfb2097ac7591a5ee96c3a88cd049bcbb90f`
expat-1.95.8-8.3.el5_5.3.s390x.rpm	`MD5: 475dd448ce06e1753605ab96a1b14844 SHA-256: 4f8f16df6ab8844c013843d9654c7af9d4fddda4354ad4e44a925a961a2c3187`
expat-devel-1.95.8-8.3.el5_5.3.s390.rpm	`MD5: c1027435390a019894c93dbd55879310 SHA-256: 964afd04888b597df4041c51cd2e4c6c479003e9fbeee360821fa5d9d353e3f3`
expat-devel-1.95.8-8.3.el5_5.3.s390x.rpm	`MD5: 1906149aa5a3685d36b896cc812bdfd3 SHA-256: bd5d4eaa5bcdedadc51852eb39eda8129e3c74dbdf8bac1712015f98d61ad35b`

x86_64:
expat-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: 94c0c3c9f5d66d62ced663c0f12ac839 SHA-256: 47e82056b37f202aa7d9d7b08d260dfb61fbea000b7672bd384d30cf89b0e05a`
expat-1.95.8-8.3.el5_5.3.x86_64.rpm	`MD5: 97f762fdb2e067d33a041aaf79072cbb SHA-256: 657901ee9a3d45d9cb8be5ef6679adcdef20f1b1506fd80f4228d700291d6cf4`
expat-devel-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: d5f63b065ad6965eb6a310f9f10292b1 SHA-256: 664f63c9e9b8b69c420ca706e9d00ba9e95049553cb50aa01e2630c67ba142c6`
expat-devel-1.95.8-8.3.el5_5.3.x86_64.rpm	`MD5: 68caf5954950e523d9807e7a55817ab7 SHA-256: a3580e7a595281a4134a6490bc53c0b114af3002d2e402a00b3cc48a650c1f4d`

Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
expat-1.95.8-8.3.el5_5.3.src.rpm	`MD5: 6bd263addfb7569120ddf7f10cbff06e SHA-256: bf3a0992d108b76178fc50589e9e175e78d91260468a0f1742ff18a595e070f7`

IA-32:
expat-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: 94c0c3c9f5d66d62ced663c0f12ac839 SHA-256: 47e82056b37f202aa7d9d7b08d260dfb61fbea000b7672bd384d30cf89b0e05a`

x86_64:
expat-1.95.8-8.3.el5_5.3.i386.rpm	`MD5: 94c0c3c9f5d66d62ced663c0f12ac839 SHA-256: 47e82056b37f202aa7d9d7b08d260dfb61fbea000b7672bd384d30cf89b0e05a`
expat-1.95.8-8.3.el5_5.3.x86_64.rpm	`MD5: 97f762fdb2e067d33a041aaf79072cbb SHA-256: 657901ee9a3d45d9cb8be5ef6679adcdef20f1b1506fd80f4228d700291d6cf4`

(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

618744 - Regression in fix for CVE-2009-3560 [rhel-5]

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/