Lucene search
K

15 matches found

OSV
OSV
added 2026/05/29 1:35 p.m.10 views

OESA-2026-2500 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via...

7.5CVSS5.7AI score0.00428EPSS
Exploits1References2
OSV
OSV
added 2026/05/22 1:21 p.m.8 views

OESA-2026-2432 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via...

7.5CVSS5.8AI score0.00428EPSS
Exploits1References2
OSV
OSV
added 2026/05/21 10:26 a.m.6 views

CLSA-2026-1779359157 Fix CVE(s): CVE-2026-45186

SECURITY UPDATE: Denial of service via quadratic attribute-name collision check in libexpat before 2.8.1 - debian/patches/CVE-2026-45186.patch: introduce per-element defaultAttsNames hash table and use it for O1 attribute collision detection in defineAttribute - CVE-2026-45186...

7.5CVSS5.8AI score0.00428EPSS
Exploits1References1
OSV
OSV
added 2026/05/19 9:49 a.m.7 views

CLSA-2026-1779184141 expat: Fix of CVE-2026-45186

CVE-2026-45186: fix quadratic complexity in attribute name collision check...

7.5CVSS5.7AI score0.00428EPSS
Exploits1References1
OSV
OSV
added 2026/05/19 9:46 a.m.9 views

CLSA-2026-1779183996 expat: Fix of CVE-2026-45186

CVE-2026-45186: fix quadratic complexity in attribute name collision check...

7.5CVSS5.7AI score0.00428EPSS
Exploits1References1
OSV
OSV
added 2026/05/19 9:42 a.m.10 views

CLSA-2026-1779183767 expat: Fix of CVE-2026-45186

CVE-2026-45186: fix quadratic complexity in attribute name collision check...

7.5CVSS5.7AI score0.00428EPSS
Exploits1References1
OSV
OSV
added 2026/05/19 9:38 a.m.7 views

CLSA-2026-1779183482 Fix CVE(s): CVE-2026-45186

SECURITY UPDATE: denial of service via On^2 attribute name collision check with moderately sized crafted XML input - debian/patches/CVE-2026-45186.patch: replace linear scan in defineAttribute with O1 hash table lookup using new ELEMENTTYPE.defaultAttsNames field in expat/lib/xmlparse.c -...

7.5CVSS5.8AI score0.00428EPSS
Exploits1References1
OSV
OSV
added 2026/05/18 6:53 p.m.9 views

CLSA-2026-1779130424 expat: Fix of CVE-2026-45186

CVE-2026-45186: fix quadratic complexity in attribute name collision check...

7.5CVSS5.7AI score0.00428EPSS
Exploits1References1
OSV
OSV
added 2026/05/18 6:36 p.m.7 views

CLSA-2026-1779129362 Fix CVE(s): CVE-2026-45186

SECURITY UPDATE: fix quadratic complexity in attribute name collision check - debian/patches/CVE-2026-45186.patch: fix quadratic complexity in attribute name collision check - CVE-2026-45186...

7.5CVSS5.7AI score0.00428EPSS
Exploits1References1
OSV
OSV
added 2026/05/18 6:33 p.m.7 views

CLSA-2026-1779129222 Fix CVE(s): CVE-2026-45186

SECURITY UPDATE: fix quadratic complexity in attribute name collision check - debian/patches/CVE-2026-45186.patch: fix quadratic complexity in attribute name collision check - CVE-2026-45186...

7.5CVSS5.7AI score0.00428EPSS
Exploits1References1
OSV
OSV
added 2026/05/10 7:16 a.m.5 views

ALPINE-CVE-2026-45186

In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input...

7.5CVSS5.3AI score0.00428EPSS
Exploits1References1
NVD
NVD
added 2026/05/10 7:16 a.m.19 views

CVE-2026-45186

In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input...

7.5CVSS0.00428EPSS
Exploits1References11
Vulnrichment
Vulnrichment
added 2026/05/10 6:36 a.m.8 views

CVE-2026-45186

In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input...

2.9CVSS5.7AI score0.00428EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/10 6:36 a.m.59 views

CVE-2026-45186

In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input...

2.9CVSS0.00428EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.18 views

PT-2026-39462

Name of the Vulnerable Software and Affected Versions libexpat versions prior to 2.8.1 Description The computational complexity of attribute name collision checks allows a denial of service when processing moderately sized crafted XML input. Recommendations Update to version 2.8.1 or later...

7.8CVSS5.7AI score0.00428EPSS
Exploits1References58
Rows per page
Query Builder