Lucene search
K

4 matches found

OSV
OSV
added 2026/04/20 9:17 a.m.8 views

CLSA-2026-1776441769 expat: Fix of 4 CVEs

CVE-2017-9233: fix external entity infinite loop in entityValueInitProcessor and entityValueProcessor - CVE-2023-52425: add reparse deferral heuristic to prevent On^2 parsing of large tokens in small buffer refills; fix buffer growth calculation - CVE-2013-0340: add billion laughs entity...

7.5CVSS6.9AI score0.19433EPSS
Exploits4References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : xmlrpc-c-1.51.0-9.el8_10 (AXSA:2024-8511:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8511:01 advisory. expat: parsing large tokens can trigger a denial of service CVE-2023-52425 CVE-2023-52425 libexpat through 2.5.0 allows a denial of service resource...

7.5CVSS7.2AI score0.01815EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/11/25 7:17 a.m.4 views

expat: parsing large tokens can trigger a denial of service

A flaw was found in Expat libexpat. When parsing a large token that requires multiple buffer fills to complete, Expat has to re-parse the token from start numerous times. This process may trigger excessive resource consumption, leading to a denial of service...

7.5CVSS7.4AI score0.01815EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2024/03/26 4:49 p.m.4 views

expat: parsing large tokens can trigger a denial of service

A flaw was found in Expat libexpat. When parsing a large token that requires multiple buffer fills to complete, Expat has to re-parse the token from start numerous times. This process may trigger excessive resource consumption, leading to a denial of service...

7.5CVSS6.8AI score0.01815EPSS
Exploits1References4
Rows per page
Query Builder