cpe:/a:libexpat:expat:- cpe:/a:libexpat:expat:1.95.0 cpe:/a:libexpat:expat:1.95.1 cpe:/a:libexpat:expat:1.95.2 cpe:/a:libexpat:expat:1.95.3 cpe:/a:libexpat:expat:1.95.4 cpe:/a:libexpat:expat:1.95.5 cpe:/a:libexpat:expat:1.95.6 cpe:/a:libexpat:expat:1.95.7 cpe:/a:libexpat:expat:1.95.8 cpe:/a:libexpat:expat:2.0.0 cpe:/a:libexpat:expat:2.0.1 cpe:/a:libexpat:expat:2.1.0 cpe:/a:libexpat:expat:2.1.1 cpe:/a:libexpat:expat:2.2.0 cpe:/a:libexpat:expat:2.2.1 cpe:/a:libexpat:expat:2.2.2 cpe:/a:libexpat:expat:2.2.3 cpe:/a:libexpat:expat:2.2.4 cpe:/a:libexpat:expat:2.2.5 cpe:/a:libexpat:expat:2.2.6 CVE-2018-20843 2019-06-24T13:15:09.980-04:00 2019-06-26T17:15:09.157-04:00 7.8 NETWORK LOW NONE NONE NONE COMPLETE http://nvd.nist.gov BUGTRAQ 20190628 [SECURITY] [DSA 4472-1] expat security update DEBIAN DSA-4472 FEDORA FEDORA-2019-139fcda84d FEDORA FEDORA-2019-18868e1715 UBUNTU USN-4040-1 UBUNTU USN-4040-2 MLIST [debian-lts-announce] 20190629 [SECURITY] [DLA 1839-1] expat security update MISC https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=5226 MISC https://github.com/libexpat/libexpat/blob/R_2_2_7/expat/Changes MISC https://github.com/libexpat/libexpat/issues/186 MISC https://github.com/libexpat/libexpat/pull/262 MISC https://github.com/libexpat/libexpat/pull/262/commits/11f8838bf99ea0a6f0b76f9760c43704d00c4ff6 CONFIRM https://security.netapp.com/advisory/ntap-20190703-0001/ CONFIRM https://support.f5.com/csp/article/K51011533 SUSE openSUSE-SU-2019:1777 In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).