CVE-2022-23990

Several vulnerabilities have been discovered in Expat, an XML parsing C library, which could result in denial of service or potentially the execution of arbitrary code, if a malformed XML file is processed For the oldstable distribution (buster), these problems have been fixed in version 226-2+deb10u2 For the stable distribution (bullseye), the ...

Synopsis Important: Red Hat JBoss Core Services Apache HTTP Server 2451 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat JBoss Core ServicesRed Hat Product Security ...

Synopsis Important: Red Hat JBoss Core Services Apache HTTP Server 2451 security update Type/Severity Security Advisory: Important Topic An update is now available for Red Hat JBoss Core ServicesRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, ...

Synopsis Important: mingw-expat security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for mingw-expat is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as h ...

Expat (aka libexpat) before 244 has an integer overflow in the doProlog function (CVE-2022-23990) ...

Expat (aka libexpat) before 244 has an integer overflow in the doProlog function (CVE-2022-23990) A flaw was found in expat A stack exhaustion in doctype parsing could be triggered by a file with a large number of opening braces, resulting in a denial of service (CVE-2022-25313) ...

Expat (aka libexpat) before 244 has an integer overflow in the doProlog function ...

Nessus leverages third-party software to help provide underlying functionality One of the third-party components (Expat) was found to contain vulnerabilities, and an updated version has been made available by the provider Out of caution and in line with best practice, Tenable has opted to upgrade the Expat component to address the potential impa ...

expat (libexpat) is susceptible to a software flaw that causes process interruption When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow The highest threat from this vulnerability is to availability, confidentiality and integrity (CVE-2022-23852) Expat (aka libe ...

ALAS-2022-232 Amazon Linux 2022 Security Advisory: ALAS-2022-232 Advisory Release Date: 2022-12-06 16:43 Pacific ...