Security update for expat SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:03537-1 Final 1 1 2025-10-10T15:21:54Z current 2025-10-10T15:21:54Z 2025-10-10T15:21:54Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for expat This update for expat fixes the following issues: - CVE-2025-59375: memory amplification vulnerability allows attackers to trigger excessive dynamic memory allocations by submitting crafted XML input (bsc#1249584). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container suse/sle-micro-rancher/5.2:latest-2025-3537,SUSE-2025-3537,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3537,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3537,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-3537,SUSE-SUSE-MicroOS-5.1-2025-3537,SUSE-SUSE-MicroOS-5.2-2025-3537,SUSE-Storage-7.1-2025-3537 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202503537-1/ Link for SUSE-SU-2025:03537-1 https://lists.suse.com/pipermail/sle-updates/2025-October/042069.html E-Mail link for SUSE-SU-2025:03537-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1249584 SUSE Bug 1249584 https://www.suse.com/security/cve/CVE-2025-59375/ SUSE CVE CVE-2025-59375 page Container suse/sle-micro-rancher/5.2:latest SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP3 libexpat1-2.7.1-150000.3.39.1 expat-2.7.1-150000.3.39.1 libexpat-devel-2.7.1-150000.3.39.1 libexpat-devel-32bit-2.7.1-150000.3.39.1 libexpat-devel-64bit-2.7.1-150000.3.39.1 libexpat1-32bit-2.7.1-150000.3.39.1 libexpat1-64bit-2.7.1-150000.3.39.1 libexpat1-2.7.1-150000.3.39.1 as a component of Container suse/sle-micro-rancher/5.2:latest expat-2.7.1-150000.3.39.1 as a component of SUSE Enterprise Storage 7.1 libexpat-devel-2.7.1-150000.3.39.1 as a component of SUSE Enterprise Storage 7.1 libexpat1-2.7.1-150000.3.39.1 as a component of SUSE Enterprise Storage 7.1 libexpat1-32bit-2.7.1-150000.3.39.1 as a component of SUSE Enterprise Storage 7.1 expat-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS libexpat-devel-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS libexpat1-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS libexpat1-32bit-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS libexpat1-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Micro 5.1 libexpat1-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Micro 5.2 expat-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS libexpat-devel-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS libexpat1-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS libexpat1-32bit-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS expat-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 libexpat-devel-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 libexpat1-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 libexpat1-32bit-2.7.1-150000.3.39.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing. CVE-2025-59375 Container suse/sle-micro-rancher/5.2:latest:libexpat1-2.7.1-150000.3.39.1 SUSE Enterprise Storage 7.1:expat-2.7.1-150000.3.39.1 SUSE Enterprise Storage 7.1:libexpat-devel-2.7.1-150000.3.39.1 SUSE Enterprise Storage 7.1:libexpat1-2.7.1-150000.3.39.1 SUSE Enterprise Storage 7.1:libexpat1-32bit-2.7.1-150000.3.39.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:expat-2.7.1-150000.3.39.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:libexpat-devel-2.7.1-150000.3.39.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:libexpat1-2.7.1-150000.3.39.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:libexpat1-32bit-2.7.1-150000.3.39.1 SUSE Linux Enterprise Micro 5.1:libexpat1-2.7.1-150000.3.39.1 SUSE Linux Enterprise Micro 5.2:libexpat1-2.7.1-150000.3.39.1 SUSE Linux Enterprise Server 15 SP3-LTSS:expat-2.7.1-150000.3.39.1 SUSE Linux Enterprise Server 15 SP3-LTSS:libexpat-devel-2.7.1-150000.3.39.1 SUSE Linux Enterprise Server 15 SP3-LTSS:libexpat1-2.7.1-150000.3.39.1 SUSE Linux Enterprise Server 15 SP3-LTSS:libexpat1-32bit-2.7.1-150000.3.39.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:expat-2.7.1-150000.3.39.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:libexpat-devel-2.7.1-150000.3.39.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:libexpat1-2.7.1-150000.3.39.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:libexpat1-32bit-2.7.1-150000.3.39.1 important 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202503537-1/ https://www.suse.com/security/cve/CVE-2025-59375.html CVE-2025-59375 https://bugzilla.suse.com/1249584 SUSE Bug 1249584