Lucene search
K

147 matches found

OpenVAS
OpenVAS
added 2022/04/20 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2022-1502)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.2AI score0.04829EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2022/03/28 12:1 p.m.6 views

expat: Integer overflow in addBinding in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability confidentiality a...

9.8CVSS7.5AI score0.04829EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/28 12:1 p.m.6 views

expat: Integer overflow in storeAtts in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

8.8CVSS7.5AI score0.02778EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/16 4:21 p.m.3 views

expat: Integer overflow in build_model in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

9.8CVSS7.5AI score0.03376EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/14 10:48 a.m.3 views

expat: Integer overflow in addBinding in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability confidentiality a...

9.8CVSS7.5AI score0.04829EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/14 10:16 a.m.3 views

expat: Integer overflow in defineAttribute in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

9.8CVSS7.5AI score0.03376EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/03/14 10:16 a.m.3 views

expat: Integer overflow in build_model in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

9.8CVSS7.5AI score0.03376EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.4 views

The vulnerability in the xmlparse.c component of the Expat library allows a hacker to induce a service failure.

The vulnerability of the xmlparse.c component in the Expat library is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a specially crafted request...

5.3CVSS6.8AI score0.33936EPSS
Exploits0References20Affected Software8
OSV
OSV
added 2022/02/15 12:0 a.m.2 views

UBUNTU-CVE-2022-25236

xmlparse.c in Expat aka libexpat before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs...

9.8CVSS6.8AI score0.33936EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2022/01/26 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2022:0178-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.04829EPSS
Exploits2References11
Mageia
Mageia
added 2022/01/25 12:13 p.m.74 views

Updated expat packages fix security vulnerability

In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory. CVE-2021-45960 In doProlog in xmlparse.c in Expat aka libexpat before 2.4.3, an integer overflow...

9.8CVSS2.5AI score0.04829EPSS
Exploits2References3
Microsoft CVE
Microsoft CVE
added 2022/01/14 8:0 a.m.3 views

nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

...

8.8CVSS7.5AI score0.02778EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/01/14 8:0 a.m.5 views

In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3 an integer overflow exists for m_groupSize.

...

8.1CVSS7.5AI score0.03759EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2022/01/14 8:0 a.m.5 views

lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

...

8.8CVSS7.5AI score0.02614EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/01/14 8:0 a.m.5 views

build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

...

9.8CVSS7.5AI score0.03376EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/01/13 8:0 a.m.5 views

In Expat (aka libexpat) before 2.4.3 a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g. allocating too few bytes or only freeing memory).

...

9CVSS7.5AI score0.042EPSS
Exploits1
OSV
OSV
added 2022/01/10 2:12 p.m.1 views

DEBIAN-CVE-2022-22827

storeAtts in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...

8.8CVSS7.4AI score0.02778EPSS
Exploits0References1
OSV
OSV
added 2022/01/10 2:12 p.m.30 views

CVE-2022-22826

nextScaffoldPart in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...

8.8CVSS3.1AI score
Exploits0References6
OSV
OSV
added 2022/01/10 2:12 p.m.42 views

CVE-2022-22823

buildmodel in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...

9.8CVSS3.7AI score
Exploits0References6
OSV
OSV
added 2022/01/10 2:12 p.m.3 views

ALPINE-CVE-2022-22825

lookup in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...

8.8CVSS7.1AI score0.02614EPSS
Exploits0References1
Rows per page
Query Builder