libexpat.so is vulnerable to denial of service. The vulnerability exists due to the heap overflow in the resolve_installed
function of solver.c
, allowing an attacker to cause an application crash.
CPE | Name | Operator | Version |
---|---|---|---|
libsolv.so | le | 1 | |
libsolv | le | 0.7.20__1.el8 | |
libsolv.so | le | 1 | |
libsolv | le | 0.7.20__1.el8 |
github.com/advisories/GHSA-gcv4-qmhw-xv6c
github.com/openSUSE/libsolv/issues/430
github.com/yangjiageng/PoC/blob/master/libsolv-PoCs/resolve_installed-1728
github.com/yangjiageng/PoC/blob/master/libsolv-PoCs/resolve_installed-1766
lists.fedoraproject.org/archives/list/[email protected]/message/XVLRHB6CUX3SHYOIGVUQNWAOW5JYANWH/