Lucene search
K

In libexpat before 2.8.2, there is a heap-based buffer overflow in doProlog in xmlparse.c because scaffold backing array reallocation is mishandled when there is data-structure sharing across parsers.

🗓️ 27 Jun 2026 08:06:25Reported by MicrosoftType 
mscve
 mscve
🔗 msrc.microsoft.com👁 3 Views

Heap overflow in doProlog (xmlparse.c) before 2.8.2 due to mismanaged scaffold array

Related
Detection
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-56132
19 Jun 202603:00
attackerkb
AlpineLinux
CVE-2026-56132
19 Jun 202603:00
alpinelinux
Chainguard
CVE-2026-56132 vulnerabilities
25 Jun 202620:36
cgr
Circl
CVE-2026-56132
26 Jun 202600:01
circl
CVE
CVE-2026-56132
19 Jun 202603:00
cve
Cvelist
CVE-2026-56132
19 Jun 202603:00
cvelist
FreeBSD
Multiple vulnerability found in Expat
25 Jun 202600:00
freebsd
Debian CVE
CVE-2026-56132
19 Jun 202603:00
debiancve
EUVD
EUVD-2026-37977
19 Jun 202603:00
euvd
Tenable Nessus
FreeBSD : Multiple vulnerability found in Expat (d06b1fa2-731f-11f1-a0d2-589cfc10a551)
29 Jun 202600:00
nessus
Rows per page
Vulners

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

29 Jun 2026 21:41Current
5.8Medium risk
Vulners AI Score5.8
CVSS 3.16.9
EPSS0.00088
SSVC
3