You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
CVE-2023-52425: libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed.
CVE-2024-28757: vulnerable to billion laughs attacks with isolated use of external parsers
Name: expat
CVEs: CVE-2023-52425, CVE-2024-28757
CVSSs: 7.5, tbd
Action Needed: update to >= 2.6.2
Summary:
refmap.gentoo: https://bugs.gentoo.org/923951, https://bugs.gentoo.org/926786
The text was updated successfully, but these errors were encountered: