Download
| Alert*
CVE-2022-23852
Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES. CVE-2022-23990 Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function. |