41 matches found
CVE-2026-56403
libexpat before 2.8.2 has an integer overflow in storeAtts...
UBUNTU-CVE-2026-56403
libexpat before 2.8.2 has an integer overflow in storeAtts...
EUVD-2026-38180
libexpat before 2.8.2 has an integer overflow in storeAtts...
CVE-2026-56403
libexpat before 2.8.2 has an integer overflow in storeAtts...
CVE-2026-56403
libexpat before 2.8.2 has an integer overflow in storeAtts...
CVE-2026-56403
CVE-2026-56403 affects libexpat prior to 2.8.2, with an integer overflow in storeAtts. Local attack vector, high complexity, no user interaction, requires no privileges. Impact: confidentiality and integrity likely high; availability low. Base score 6.9 (CVSS 3.1). No exploitation details or reme...
Linux Distros Unpatched Vulnerability : CVE-2026-56403
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libexpat before 2.8.2 has an integer overflow in storeAtts. CVE-2026-56403 Note that Nessus relies on the presence of the package as reported by the vendor...
Astra Linux - уязвимость в firefox, thunderbird, expat
In Expat also known as libexpat, before version 2.4.3, a left shift of 29 or more in the storeAtts function in xmlparse.c could lead to improper realloc behavior. This could result in allocating too few bytes, or only freeing memory after it was no longer needed...
Unity Linux 20.1060e / 20.1070e Security Update: expat (UTSA-2026-017351)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017351 advisory. In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too fe...
Unity Linux 20.1060e / 20.1070e Security Update: expat (UTSA-2026-017354)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017354 advisory. storeAtts in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow. Tenable has extracted the preceding description block directly from the Unity Lin...
Astra Linux – Vulnerabilities in Firefox, Thunderbird, Expat, LibXMLTok
The issue with integer overflow occurs in storeAtts in the xmlparse.c file, within the Expat library also known as libexpat, before version 2.4.3...
expat: Integer overflow in storeAtts in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
expat: Integer overflow in storeAtts in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2022-22827)
storeAtts in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504336;...
JLSEC-2025-42 In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function ...
In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory...
JLSEC-2025-49 storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
storeAtts in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow...
OESA-2024-1815 mozjs78 security update
Security Fixes: In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few bytes, or only freeing memory.CVE-2021-45960 xmltokimpl.c in Expat aka libexpat before 2.4.5 lacks certain...
OESA-2023-1465 firefox security update
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security Fixes: In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few...
OESA-2023-1464 firefox security update
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security Fixes: In Expat aka libexpat before 2.4.3, a left shift by 29 or more places in the storeAtts function in xmlparse.c can lead to realloc misbehavior e.g., allocating too few...
expat: Integer overflow in storeAtts in xmlparse.c
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...