SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

[3.8] expat: large number of colons in input makes parser consume high amount of resources, leading to DoS (CVE-2018-20843)

ID: oval:org.secpod.oval:def:1801494	Date: (C)2019-07-03 (M)2023-11-10
Class: PATCH	Family: unix

In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing . Fixed In Version:¶ expat 2.2.7

Platform:

Alpine Linux 3.8

Product:

expat

Reference:

10632

CVE-2018-20843


30430



423868



247768



909



194555



282