[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-3898-1 expat -- expat

ID: oval:org.secpod.oval:def:53080Date: (C)2019-04-04   (M)2024-01-29
Class: PATCHFamily: unix




Multiple vulnerabilities have been discovered in Expat, an XML parsing C library. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-9063 Gustavo Grieco discovered an integer overflow flaw during parsing of XML. An attacker can take advantage of this flaw to cause a denial of service against an application using the Expat library. CVE-2017-9233 Rhodri James discovered an infinite loop vulnerability within the entityValueInitProcessor function while parsing malformed XML in an external entity. An attacker can take advantage of this flaw to cause a denial of service against an application using the Expat library.

Platform:
Linux Mint 3
Product:
expat
Reference:
DSA-3898-1
CVE-2016-9063
CVE-2017-9233
CVE    2
CVE-2017-9233
CVE-2016-9063
CPE    2
cpe:/a:libexpat:expat
cpe:/o:linux_mint:linux_mint:3

© SecPod Technologies