oss-sec mailing list archives

CVE-2017-11742 - Expat 2.2.{1,2} LoadLibrary DLL hijacking vulnerability on Windows

From: Sebastian Pipping <sebastian () pipping org>
Date: Wed, 2 Aug 2017 21:37:27 +0200

Hi!


Just a quick note that Expat 2.2.3 [1] released today fixes
CVE-2017-11742 [2][3], a DLL hijacking vulnerability on Windows.

Best



Sebastian


[1] https://github.com/libexpat/libexpat/blob/master/expat/Changes
[2] https://www.cvedetails.com/cve/CVE-2017-11742/
[3] https://github.com/libexpat/libexpat/issues/82

Current thread:

CVE-2017-11742 - Expat 2.2.{1,2} LoadLibrary DLL hijacking vulnerability on Windows Sebastian Pipping (Aug 02)