{"affected":[{"ecosystem_specific":{"binaries":[{"libexpat1":"2.4.4-150400.3.17.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.5","name":"expat","purl":"pkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Micro%205.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.4.4-150400.3.17.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for expat fixes the following issues:\n\n- CVE-2023-52425: Fixed a DoS caused by processing large tokens. (bsc#1219559) \n- CVE-2024-28757: Fixed an XML Entity Expansion. (bsc#1221289)\n","id":"SUSE-SU-2024:1129-2","modified":"2024-04-08T07:12:27Z","published":"2024-04-08T07:12:27Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20241129-2/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1219559"},{"type":"REPORT","url":"https://bugzilla.suse.com/1221289"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-52425"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-28757"}],"related":["CVE-2023-52425","CVE-2024-28757"],"summary":"Security update for expat","upstream":["CVE-2023-52425","CVE-2024-28757"]}