Download
| Alert*
CVE-2022-23990
Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function. CVE-2023-52425 libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed. |