8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
0.006 Low
EPSS
Percentile
77.8%
libexpat before 2.4.9 has a use-after-free in the doContent function in
xmlparse.c.
Author | Note |
---|---|
sbeattie | paraview uses system expat xotcl uses system expat poco uses system expat gdcm uses system expat audacity uses system expat simgear uses system expat coin3 uses system expat as of 4.0.0~CMake~6f54f1602475+ds1-1 sitecopy uses system expat since 1:0.16.0-1 (dapper!) |
ebarretto | Nothing in TeX Live statically links to libexpat and nothing directly links to it either. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 16.04 | noarch | ayttm | < any | UNKNOWN |
ubuntu | 16.04 | noarch | cableswig | < any | UNKNOWN |
ubuntu | 18.04 | noarch | cadaver | < any | UNKNOWN |
ubuntu | 20.04 | noarch | cadaver | < any | UNKNOWN |
ubuntu | 22.04 | noarch | cadaver | < any | UNKNOWN |
ubuntu | 23.10 | noarch | cadaver | < any | UNKNOWN |
ubuntu | 24.04 | noarch | cadaver | < any | UNKNOWN |
ubuntu | 16.04 | noarch | cadaver | < any | UNKNOWN |
ubuntu | 18.04 | noarch | coin3 | < any | UNKNOWN |
ubuntu | 20.04 | noarch | coin3 | < any | UNKNOWN |
github.com/libexpat/libexpat/pull/629
github.com/libexpat/libexpat/pull/640
launchpad.net/bugs/cve/CVE-2022-40674
nvd.nist.gov/vuln/detail/CVE-2022-40674
security-tracker.debian.org/tracker/CVE-2022-40674
ubuntu.com/security/notices/USN-5638-1
ubuntu.com/security/notices/USN-5638-2
ubuntu.com/security/notices/USN-5638-4
ubuntu.com/security/notices/USN-5726-1
www.cve.org/CVERecord?id=CVE-2022-40674