Issued:: 2025-11-19
Updated:: 2025-11-19

RHSA-2025:21776 - Security Advisory

Overview
Updated Packages

Synopsis

Important: expat security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for expat is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Expat is a C library for parsing XML documents.

Security Fix(es):

expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing (CVE-2025-59375)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for ARM 64 8 aarch64

Fixes

BZ - 2395108 - CVE-2025-59375 expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 8

SRPM
expat-2.5.0-1.el8_10.src.rpm	SHA-256: 566456bc755b628dc5a4ce77b6a643769165202f0ddd852ba73dd9512b994d2b
x86_64
expat-2.5.0-1.el8_10.i686.rpm	SHA-256: 3f413ce4c157d6753a960bd7487be1e510ff0805bd203294a3ab566236cd6a9f
expat-2.5.0-1.el8_10.x86_64.rpm	SHA-256: ea9b034a79279668a1eca4be141617e6a9f04ffc616033f035380f80c073837a
expat-debuginfo-2.5.0-1.el8_10.i686.rpm	SHA-256: f7daa380d605a5e5282fab072943e00112563f88f459a38e95e0e3ad4a437b8f
expat-debuginfo-2.5.0-1.el8_10.x86_64.rpm	SHA-256: c0b8f7b722758f97025b5b3d35bca87eb58d91f987df3e24a80eb299d14ecb44
expat-debugsource-2.5.0-1.el8_10.i686.rpm	SHA-256: f067a40d46475b288f39f5c94860de82bbc424e890df5f2c77d80e5a71e772cf
expat-debugsource-2.5.0-1.el8_10.x86_64.rpm	SHA-256: 05e6b812ee55a596d9f4eeba2dbbc43f8f7456d0fc4ad1c49bbd45b7e513a068
expat-devel-2.5.0-1.el8_10.i686.rpm	SHA-256: 044f1ddd02d706974690124fb1100f421aa5c6460ea800f3083af253be78d154
expat-devel-2.5.0-1.el8_10.x86_64.rpm	SHA-256: 9d34794b309059e2ee78ddd2f224dd0caf7022c7c95b413fa1e9b90b4ab04eab

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
expat-2.5.0-1.el8_10.src.rpm	SHA-256: 566456bc755b628dc5a4ce77b6a643769165202f0ddd852ba73dd9512b994d2b
s390x
expat-2.5.0-1.el8_10.s390x.rpm	SHA-256: 557227064a4eeb6065f44be3e84f1320540bf816d4790bc328995e69992b2319
expat-debuginfo-2.5.0-1.el8_10.s390x.rpm	SHA-256: fe17ef94ceaad964f6bc77d37f8dede84013fb16a68bd8c712d9fe8093cd2951
expat-debugsource-2.5.0-1.el8_10.s390x.rpm	SHA-256: cb9ad4ca67be9986004d73ced029ba936a0f6dcb7ee9054735ddc58a4cdcab22
expat-devel-2.5.0-1.el8_10.s390x.rpm	SHA-256: b8c35621c8d4e5a3544a83749b31079e4ef68acc8dd6b810b7dd7138e9b0ced9

Red Hat Enterprise Linux for Power, little endian 8

SRPM
expat-2.5.0-1.el8_10.src.rpm	SHA-256: 566456bc755b628dc5a4ce77b6a643769165202f0ddd852ba73dd9512b994d2b
ppc64le
expat-2.5.0-1.el8_10.ppc64le.rpm	SHA-256: 2568a6eca06a1d26161eb976577b719cbdb979690f1b6f3dbeecb2ad75402029
expat-debuginfo-2.5.0-1.el8_10.ppc64le.rpm	SHA-256: 67d065e0d98c964ff569a422a823f39d1c928c3fb3dc69f72a46cc4fdbc8e77d
expat-debugsource-2.5.0-1.el8_10.ppc64le.rpm	SHA-256: 1bb3946ff03a07d4e3ceb17e27ec6abf88f206f7f33711e2ddf4130d6607c918
expat-devel-2.5.0-1.el8_10.ppc64le.rpm	SHA-256: aef90a24b07ab122c4d065c1e5e107441064946425965fe10da99e034189f065

Red Hat Enterprise Linux for ARM 64 8

SRPM
expat-2.5.0-1.el8_10.src.rpm	SHA-256: 566456bc755b628dc5a4ce77b6a643769165202f0ddd852ba73dd9512b994d2b
aarch64
expat-2.5.0-1.el8_10.aarch64.rpm	SHA-256: b5791923f62b8666b34052bd76a3ff745d3733110fdd4a7a3502a9a777afac2f
expat-debuginfo-2.5.0-1.el8_10.aarch64.rpm	SHA-256: 9e2a0f46e6e93db755444a45968091e6746be81ad931e071af1b37bf07120e35
expat-debugsource-2.5.0-1.el8_10.aarch64.rpm	SHA-256: 41043467ea489af72dede6904f010f7b519cdb8a6e19298534c6137c4a8953c3
expat-devel-2.5.0-1.el8_10.aarch64.rpm	SHA-256: 6627b63fb6d0d26ea3aa8313707e7ac5e05c6fe6e6964cab5597f131ae7d5b3d

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation