CVE-2025-59375

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing...

CVE-2025-66382

In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time...

CVE-2024-8176

A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expansion in XML documents. When parsing an XML document with deeply nested entity references, libexpat can be forced to recurse indefinitely, exhausting the stack space and causing a crash...

CVE-2024-50602

An issue was discovered in libexpat before 2.6.4. There is a crash within the XMLResumeParser function because XMLStopParser can stop/suspend an unstarted parser...

CVE-2024-45491

An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms where UINTMAX equals SIZEMAX...

CVE-2024-45490

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XMLParseBuffer...

CVE-2024-45492

An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for mgroupSize on 32-bit platforms where UINTMAX equals SIZEMAX...

CVE-2023-52426

libexpat through 2.5.0 allows recursive XML Entity Expansion if XMLDTD is undefined at compile time...

CVE-2022-40674

libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c...

CVE-2022-25315

In Expat aka libexpat before 2.4.5, there is an integer overflow in storeRawNames...

Moderate: Red Hat Security Advisory: python security update

Updated python packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

python security update

2.4.3-44 - add patch adapted from upstream patch 208 to add support for building against system expat; add --with-system-expat to configure invocation; remove embedded copy of expat-1.95.8 from the source tree during prep - ensure pyexpat.so gets built by explicitly listing all C modules in the...

python security update

2.3.4-14.10 - add patch adapted from upstream patch 208 to add support for building against system expat; add --with-system-expat to configure invocation; remove embedded copy of expat 1.95.7 from the source tree during prep - ensure pyexpat.so gets built by explicitly listing all C modules in th...

Fedora 14 : libtlen-0-0.10.20060309.fc14 (2010-17720)

This update unbundles the old copy of expat included in libtlen, fixing CVE-2009-3720 and possibly other vulnerabilities already fixed in system expat. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempte...

CentOS Update for PyXML CESA-2010:0002 centos4 i386

Check for the Version of PyXML OpenVAS Vulnerability Test CentOS Update for PyXML CESA-2010:0002 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

PyXML security update

0.8.4-4.2 - Use system expat library Resolves: 531852 0.8.4-4.1 - Fix buffer over read Resolves: 531852...

Fedora Core 11 FEDORA-2009-11030 (PyXML)

The remote host is missing an update to PyXML announced via advisory FEDORA-2009-11030. OpenVAS Vulnerability Test $Id: fcore200911030.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-11030 PyXML Authors: Thomas Reinke Copyright: Copyright c 2009...