SUSE-IU-2024:1869-1 SUSE Image security@suse.de SUSE Security Team SUSE Image SUSE-IU-2024:1869-1 Interim 1 1 2025-06-11T13:47:56Z current 2024-11-18T01:00:00Z 2024-11-18T01:00:00Z cve-database/bin/generate-cvrf-publiccloud.pl 2021-02-18T01:00:00Z Image update for SUSE-IU-2024:1869-1 / google/sles-15-sp6-chost-byos-v20241118-x86-64 This image update for google/sles-15-sp6-chost-byos-v20241118-x86-64 contains the following changes: Package expat was updated: - security update- added patches fix CVE-2024-50602 [bsc#1232579], DoS via XML_ResumeParser + expat-CVE-2024-50602.patch The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://publiccloudimagechangeinfo.suse.com/google/sles-15-sp6-chost-byos-v20241118-x86-64/ Public Cloud Image Info https://www.suse.com/support/security/rating/ SUSE Security Ratings Public Cloud Image google/sles-15-sp6-chost-byos-v20241118-x86-64 libexpat1-2.4.4-150400.3.25.1 libexpat1-2.4.4-150400.3.25.1 as a component of Public Cloud Image google/sles-15-sp6-chost-byos-v20241118-x86-64 An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser. CVE-2024-50602 Public Cloud Image google/sles-15-sp6-chost-byos-v20241118-x86-64:libexpat1-2.4.4-150400.3.25.1 important