GHSA-h83g-c7g2-6r9h

Опубликовано: 10 фев. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

Ссылки

EPSS

Процентиль: 82%

0.01846

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2022-23852

Дефекты

CWE-190

Связанные уязвимости

CVE-2022-23852

CVSS3: 9.8

ubuntu

больше 3 лет назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

CVE-2022-23852

CVSS3: 9.8

redhat

больше 3 лет назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

CVE-2022-23852

CVSS3: 9.8

nvd

больше 3 лет назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.

CVE-2022-23852

CVSS3: 9.8

msrc

больше 3 лет назад

Описание отсутствует

CVE-2022-23852

CVSS3: 9.8

debian

больше 3 лет назад

Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML ...

EPSS

Процентиль: 82%

0.01846

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2022-23852

Дефекты

CWE-190