21 matches found
Astra Linux – Vulnerabilities in Firefox, Thunderbird, Expat, LibXMLTok
The defineAttribute function in xmlparse.c of Expat also known as libexpat has an integer overflow before version 2.4.3...
CLSA-2026-1779359157 Fix CVE(s): CVE-2026-45186
SECURITY UPDATE: Denial of service via quadratic attribute-name collision check in libexpat before 2.8.1 - debian/patches/CVE-2026-45186.patch: introduce per-element defaultAttsNames hash table and use it for O1 attribute collision detection in defineAttribute - CVE-2026-45186...
expat: Integer overflow in defineAttribute in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2022-22824)
defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504346;...
JLSEC-2025-46 defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
Unity Linux 20.1070a Security Update: firefox (UTSA-2025-987433)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987433 advisory. defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow. Tenable has extracted the preceding description block directly from the Uni...
EUVD-2022-27962
Malicious code in bioql PyPI...
OESA-2023-1454 firefox security update
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security Fixes: addBinding in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow.CVE-2022-22822 buildmodel in xmlparse.c in Expat aka libexpat before 2.4.3 has an...
expat: Integer overflow in defineAttribute in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
expat: Integer overflow in defineAttribute in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
expat: Integer overflow in defineAttribute in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
expat: Integer overflow in defineAttribute in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
The vulnerability of the `defineAttribute` function in the `xmlparse.c` file of the ExPat library allows a hacker to cause a service failure.
The vulnerability of the defineAttribute function in the xmlparse.c file of the ExPat library is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failures...
defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
...
Expat defineAttribute function buffer overflow vulnerability
Expat is a fast streaming XML parser written in C. A buffer overflow vulnerability exists in versions of Expat prior to 2.4.3, which stems from a boundary error in defineAttribute in xmlparse.c when handling untrusted input. A remote attacker could exploit this vulnerability to execute arbitrary...
Integer Overflow
libexpat.so is vulnerable to Integer Overflow. The vulnerability exists because the defineAttribute function of xmlparse.c doesn't check the input length which allows an attacker to leverage an overflow causing an application crash...
AZL-7158 CVE-2022-22824 affecting package expat for versions less than 2.4.3-1
defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
DEBIAN-CVE-2022-22824
defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
UBUNTU-CVE-2022-22824
defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
CVE-2022-22824
defineAttribute in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...