48 matches found
Astra Linux - уязвимость в expat
In Expat also known as libexpat, before version 2.4.5, there is an integer overflow in the copyString function...
Unity Linux 20.1070e Security Update: expat (UTSA-2026-017381)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017381 advisory. In Expat aka libexpat before 2.4.5, there is an integer overflow in copyString. Tenable has extracted the preceding description block directly from the Unity Linux...
CVE-2026-24857
bulkextractor is a digital forensics exploitation tool. Starting in version 1.4, bulkextractor’s embedded unrar code has a heap‑buffer‑overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image causes an out‑of‑bounds write in Unpack::CopyString, leading to a crash under ASAN and...
CVE-2026-24857 bulk_extractor has Heap-based Buffer Overflow vulnerability
bulkextractor is a digital forensics exploitation tool. Starting in version 1.4, bulkextractor’s embedded unrar code has a heap‑buffer‑overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image causes an out‑of‑bounds write in Unpack::CopyString, leading to a crash under ASAN and...
CVE-2026-24857
CVE-2026-24857 affects bulk_extractor (bulk extractor). Starting in version 1.4, the embedded unrar code has a heap-buffer-overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image can trigger an out-of-bounds write in Unpack::CopyString, causing a crash under ASAN and likely me...
CVE-2026-24857 bulk_extractor has Heap-based Buffer Overflow vulnerability
bulkextractor is a digital forensics exploitation tool. Starting in version 1.4, bulkextractor’s embedded unrar code has a heap‑buffer‑overflow in the RAR PPM LZ decoding path. A crafted RAR inside a disk image causes an out‑of‑bounds write in Unpack::CopyString, leading to a crash under ASAN and...
MiracleLinux 8 : expat-2.2.5-8.el8.2 (AXSA:2022-3677:05)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3677:05 advisory. expat: stack exhaustion in doctype parsing CVE-2022-25313 expat: integer overflow in copyString CVE-2022-25314 Tenable has extracted the preceding...
expat: Integer overflow in copyString()
An integer overflow flaw was found in expat. This issue affects the encoding name parameter at the parser creation time, which is often hard-coded rather than user input, takes a value in the gigabytes to trigger, and on a 64-bit machine. This flaw can cause a denial of service...
expat: Integer overflow in copyString()
An integer overflow flaw was found in expat. This issue affects the encoding name parameter at the parser creation time, which is often hard-coded rather than user input, takes a value in the gigabytes to trigger, and on a 64-bit machine. This flaw can cause a denial of service...
Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2022-25314)
In Expat aka libexpat before 2.4.5, there is an integer overflow in copyString. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504215;...
JLSEC-2025-55 In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.
In Expat aka libexpat before 2.4.5, there is an integer overflow in copyString...
EUVD-2022-29997
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-39557
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function copyString located in gmem.cc. It allows an attacker to...
Linux Distros Unpatched Vulnerability : CVE-2022-25314
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Expat aka libexpat before 2.4.5, there is an integer overflow in copyString. CVE-2022-25314 Note that Nessus relies on the presence of the package as reporte...
SUSE CVE-2017-20006
UnRAR 5.6.1.2 and 5.6.1.3 has a heap-based buffer overflow in Unpack::CopyString called from Unpack::Unpack5 and CmdExtract::ExtractCurrentFile...
SUSE CVE-2022-25314
In Expat aka libexpat before 2.4.5, there is an integer overflow in copyString...
expat: Integer overflow in copyString()
An integer overflow flaw was found in expat. This issue affects the encoding name parameter at the parser creation time, which is often hard-coded rather than user input, takes a value in the gigabytes to trigger, and on a 64-bit machine. This flaw can cause a denial of service...
ASB-A-221384482
from https://nvd.nist.gov/vuln/detail/CVE-2022-25314 In Expat aka libexpat before 2.4.5, there is an integer overflow in copyString. In copyString of xmlparse.c, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional...
expat: Integer overflow in copyString()
An integer overflow flaw was found in expat. This issue affects the encoding name parameter at the parser creation time, which is often hard-coded rather than user input, takes a value in the gigabytes to trigger, and on a 64-bit machine. This flaw can cause a denial of service...
expat: Integer overflow in copyString()
An integer overflow flaw was found in expat. This issue affects the encoding name parameter at the parser creation time, which is often hard-coded rather than user input, takes a value in the gigabytes to trigger, and on a 64-bit machine. This flaw can cause a denial of service...