Download
| Alert*
CVE-2022-25315
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. CVE-2022-25314 In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString. CVE-2022-25313 In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element. |