Lucene search
K

39 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.10 views

Astra Linux – Vulnerability in expat

In libexpat before version 2.7.4, the doContent function does not properly determine the buffer size bufSize, as there is no check for integer overflow during the reallocation of the tag buffer...

7.8CVSS7AI score0.00193EPSS
Exploits0References3
OSV
OSV
added 2026/05/06 11:47 a.m.11 views

CLSA-2026-1778009078 vim: Fix of 5 CVEs

CVE-2022-2125: fix out-of-bounds read in getlispindent; break out of the inner loop on NUL byte indent.c, upstream patch 8.2.5122 - CVE-2021-3974: fix use-after-free in nfaregmatch when a substitute callback frees the regline during a mark comparison; save col and re-fetch rex.line via reggetline...

7.8CVSS7.2AI score0.01554EPSS
Exploits5References1
OSV
OSV
added 2026/05/01 5:50 p.m.8 views

JLSEC-2026-380

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

7.8CVSS7AI score0.00193EPSS
Exploits0References2
OSV
OSV
added 2026/04/17 5:30 p.m.9 views

CLSA-2026-1773928447 expat: Fix of CVE-2026-25210

CVE-2026-25210: fix integer overflow in tag buffer reallocation in doContent function...

7.8CVSS7.4AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2026/03/23 4:31 p.m.5 views

CLSA-2026-1774283473 Fix CVE(s): CVE-2026-25210

SECURITY UPDATE: Improve determination of buffer size bufSize in function doContent - debian/patches/CVE-2026-25210.patch: fix integer overflow in doContent tag buffer reallocation - CVE-2026-25210...

7.8CVSS7.5AI score0.00193EPSS
Exploits0References1
CloudLinux
CloudLinux
added 2026/03/23 2:52 p.m.9 views

expat: Fix of CVE-2026-25210

CVE-2026-25210: fix memory corruption via integer overflow in doContent function during tag buffer reallocation...

7.8CVSS6AI score0.00193EPSS
Exploits0
OSV
OSV
added 2026/03/23 2:52 p.m.12 views

CLSA-2026-1774021165 expat: Fix of CVE-2026-25210

CVE-2026-25210: fix memory corruption via integer overflow in doContent function during tag buffer reallocation...

7.8CVSS7.5AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2026/03/20 12:31 p.m.6 views

CLSA-2026-1774009875 Fix CVE(s): CVE-2026-25210

SECURITY UPDATE: integer overflow in doContent tag buffer reallocation. - debian/patches/CVE-2026-25210.patch: add overflow check for tag buffer reallocation - CVE-2026-25210...

7.8CVSS7AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2026/03/20 11:40 a.m.9 views

CLSA-2026-1774006814 expat: Fix of CVE-2026-25210

CVE-2026-25210: fix integer overflow in tag buffer reallocation in doContent...

7.8CVSS7.5AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2026/03/19 1:33 p.m.6 views

CLSA-2026-1773927217 expat: Fix of CVE-2026-25210

CVE-2026-25210: fix integer overflow in tag buffer reallocation in doContent function...

7.8CVSS7.5AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2026/03/19 1:20 p.m.10 views

CLSA-2026-1773926416 expat: Fix of CVE-2026-25210

CVE-2026-25210: fix integer overflow in tag buffer reallocation in doContent function...

7.8CVSS6AI score0.00193EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/15 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: expat (UTSA-2026-006164)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006164 advisory. In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer...

7.8CVSS6.3AI score0.00193EPSS
Exploits0References4
Amazon
Amazon
added 2026/02/19 12:0 a.m.5 views

Medium: expat

Issue Overview: In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation. CVE-2026-25210 Affected Packages: expat Note: This advisory is applicable to Amazon Linux 2 AL2 Core...

7.8CVSS5.8AI score0.00193EPSS
Exploits0
OSV
OSV
added 2026/02/06 3:54 p.m.6 views

OESA-2026-1298 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no...

7.8CVSS5.7AI score0.00193EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/31 12:24 a.m.6 views

SUSE CVE-2026-25210

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

6.5CVSS6AI score0.00193EPSS
Exploits0References11
OSV
OSV
added 2026/01/30 7:16 a.m.6 views

CVE-2026-25210

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

7.8CVSS6AI score
Exploits0References2
OSV
OSV
added 2026/01/30 7:16 a.m.5 views

ALPINE-CVE-2026-25210

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

7.8CVSS5.6AI score0.00193EPSS
Exploits0References1
OSV
OSV
added 2026/01/30 7:16 a.m.2 views

UBUNTU-CVE-2026-25210

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

7.8CVSS7AI score0.00193EPSS
Exploits0References5
CVE
CVE
added 2026/01/30 6:40 a.m.44 views

CVE-2026-25210

CVE-2026-25210 affects libexpat prior to 2.7.4, where doContent may miscompute bufSize due to missing integer overflow check during tag buffer reallocation. Multiple connected sources confirm the issue and reference a fix in updated expat releases; remediation is to update to a version including ...

7.8CVSS6AI score0.00193EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/01/30 6:40 a.m.3 views

CVE-2026-25210

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

7.8CVSS5.6AI score0.00193EPSS
Exploits0
Rows per page
Query Builder