Unity Linux 20.1060e / 20.1070e Security Update: expat (UTSA-2026-017360)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017360 advisory. In doProlog in xmlparse.c in Expat aka libexpat before 2.4.3, an integer overflow exists for mgroupSize. Tenable has extracted the preceding description block direct...

AZL-48466 CVE-2024-45492 affecting package expat for versions less than 2.6.3-1

An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for mgroupSize on 32-bit platforms where UINTMAX equals SIZEMAX...