Dell Firmware Updates (MINDBREEZE35367)

ID: MINDBREEZE35367 
Affected Components: Mindbreeze InSpire, Mindbreeze InSpire SaaS 
Severity: 7.5 High 
Status: Final 
First published: June 6, 2025 
CVEs: CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, CVE-2024-50602, CVE-2024-2961, CVE-2024-52533, CVE-2023-6780,  CVE-2025-26466 

Summary 

• libexpat: xmlparse.c does not reject a negative length for XML_ParseBuffer.
• libexpat: There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser
• glib: uffer overflow in set_connect_msg()
• glibc: integer overflow in __vsyslog_internal()
• openssh: Denial-of-service in OpenSSH 

Hotfix Information 

Fixed with following versions of Mindbreeze InSpire On-Premises or Mindbreeze InSpire SaaS: 

• Mindbreeze InSpire 25.3 Release
• Mindbreeze InSpire Saas 25.3 Release