GHSA-784x-7qm2-gp97

Опубликовано: 30 авг. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.3

Описание

An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

Ссылки

EPSS

Процентиль: 27%

0.00091

Низкий

7.3 High

CVSS3

CVE ID

CVE-2024-45491

Дефекты

CWE-190

Связанные уязвимости

CVE-2024-45491

CVSS3: 9.8

ubuntu

10 месяцев назад

An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

CVE-2024-45491

CVSS3: 7.5

redhat

10 месяцев назад

An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

CVE-2024-45491

CVSS3: 9.8

nvd

10 месяцев назад

An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).

CVE-2024-45491

CVSS3: 9.8

msrc

8 месяцев назад

Описание отсутствует

CVE-2024-45491

CVSS3: 9.8

debian

10 месяцев назад

An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse. ...

EPSS

Процентиль: 27%

0.00091

Низкий

7.3 High

CVSS3

CVE ID

CVE-2024-45491

Дефекты

CWE-190