10 matches found
expat: integer overflow in the doProlog function
A flaw was found in expat. The vulnerability occurs due to large content in element type declarations when there is an element declaration handler present which leads to an integer overflow. This flaw allows an attacker to inject an unsigned integer, leading to a crash or a denial of service...
USN-7913-1 mame vulnerabilities
It was discovered that the stb library, included in MAME, had a heap-based buffer overflow. An attacker could possibly use this issue to crash the program or execute arbitrary code. CVE-2018-16981 It was discovered that the tinyexr library, included in MAME, had a heap- based buffer over-read in...
RHEL 8 : expat (RHSA-2025:22785)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:22785 advisory. Expat is a C library for parsing XML documents. Security Fixes: expat: internal entity expansion CVE-2013-0340 expat: Large number of...
expat: integer overflow in the doProlog function
A flaw was found in expat. The vulnerability occurs due to large content in element type declarations when there is an element declaration handler present which leads to an integer overflow. This flaw allows an attacker to inject an unsigned integer, leading to a crash or a denial of service...
Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2022-23990)
Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504304;...
expat: Integer overflow in doProlog in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
expat: integer overflow in the doProlog function
A flaw was found in expat. The vulnerability occurs due to large content in element type declarations when there is an element declaration handler present which leads to an integer overflow. This flaw allows an attacker to inject an unsigned integer, leading to a crash or a denial of service...
ALPINE-CVE-2022-23990
Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function...
UBUNTU-CVE-2022-23990
Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function...
AZL-7155 CVE-2021-46143 affecting package expat for versions less than 2.4.3-1
In doProlog in xmlparse.c in Expat aka libexpat before 2.4.3, an integer overflow exists for mgroupSize...