32 matches found
CVE-2026-56407 vulnerabilities
Vulnerabilities for packages: expat...
Updated expat packages fix security vulnerabilities
CVE-2026-45186 the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input...
MGASA-2026-0204 Updated expat packages fix security vulnerabilities
CVE-2026-45186 the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input...
MiracleLinux 8 : expat-2.5.0-2.el8_10 (AXSA:2026-758:06)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-758:06 advisory. libexpat: denial of service via crafted XML input CVE-2026-45186 Tenable has extracted the preceding description block directly from the MiracleLinux security...
Important Photon OS Security Update - PHSA-2026-5.0-0843
Updates of 'expat' packages of Photon OS have been released...
Important Photon OS Security Update - PHSA-2026-4.0-1013
Updates of 'expat' packages of Photon OS have been released...
NewStart CGSL MAIN 7.02 : expat Vulnerability (NS-SA-2026-0035)
The remote NewStart CGSL host, running version MAIN 7.02, has expat packages installed that are affected by a vulnerability: - An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms where UINTMAX equals SIZEMAX...
Important Photon OS Security Update - PHSA-2026-5.0-0756
Updates of 'expat' packages of Photon OS have been released...
MiracleLinux 8 : expat-2.2.5-16.el8_10 (AXSA:2024-9009:08)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9009:08 advisory. libexpat: expat: DoS via XMLResumeParser CVE-2024-50602 Tenable has extracted the preceding description block directly from the MiracleLinux security advisor...
MiracleLinux 8 : expat-2.2.5-17.el8_10 (AXSA:2025-9859:02)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9859:02 advisory. libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat CVE-2024-8176 Tenable has extracted the preceding description block directly...
MGASA-2025-0240 Updated expat packages fix security vulnerabilities
Improper restriction of xml entity expansion depth in libexpat. CVE-2024-8176 This is an extension of the fix published in MGASA-2025-0109 that was determined by upstream to be incomplete. Libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small...
Important Photon OS Security Update - PHSA-2025-5.0-0642
Updates of 'expat', 'linux' packages of Photon OS have been released...
Important Photon OS Security Update - PHSA-2025-4.0-0793
Updates of 'expat' packages of Photon OS have been released...
MGASA-2025-0109 Updated expat packages fix security vulnerability
Improper restriction of xml entity expansion depth in libexpat. CVE-2024-8176 NOTE: upstream deemed this fix incomplete after it was initially pushed. The complete fix was submitted along with the fix for CVE-2025-59375...
Updated expat packages fix security vulnerability
Improper restriction of xml entity expansion depth in libexpat. CVE-2024-8176 NOTE: upstream deemed this fix incomplete after it was initially pushed. The complete fix was submitted along with the fix for CVE-2025-59375...
RHBA-2022:4046 Red Hat Bug Fix Advisory: new packages: expat
Bulletin has no description...
MGASA-2024-0362 Updated expat packages fix security vulnerability
An issue was discovered in libexpat before 2.6.4. There is a crash within the XMLResumeParser function because XMLStopParser can stop/suspend an unstarted parser. CVE-2024-50602...
Important: expat
Issue Overview: libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers created via XMLExternalEntityParserCreate. CVE-2024-28757 Affected Packages: expat Issue Correction: Run dnf update expat --releasever 2023.4.20240401 or dnf update --adviso...
MGASA-2024-0072 Updated expat packages fix security vulnerabilities
It was discovered that Expat could be made to consume large amounts of resources. If a user or automated system were tricked into processing specially crafted input, an attacker could possibly use this issue to cause a denial of service. CVE-2023-52425, CVE-2024-28757...
NewStart CGSL MAIN 6.02 : expat Vulnerability (NS-SA-2023-0072)
The remote NewStart CGSL host, running version MAIN 6.02, has expat packages installed that are affected by a vulnerability: - libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. CVE-2022-40674 Note that Nessus has not tested for this issue but has instead relied...