Описание
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system expat |
| esm-infra-legacy/trusty | not-affected | uses system expat |
| esm-infra/bionic | not-affected | uses system expat |
| esm-infra/focal | not-affected | uses system expat |
| esm-infra/xenial | not-affected | uses system expat |
| focal | not-affected | uses system expat |
| jammy | not-affected | uses system expat |
| noble | not-affected | uses system expat |
| oracular | not-affected | uses system expat |
| plucky | not-affected | uses system expat |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system expat |
| esm-infra-legacy/trusty | not-affected | uses system expat |
| esm-infra/bionic | not-affected | uses system expat |
| esm-infra/focal | not-affected | uses system expat |
| esm-infra/xenial | not-affected | uses system expat |
| focal | not-affected | uses system expat |
| jammy | not-affected | uses system expat |
| noble | not-affected | uses system expat |
| oracular | not-affected | uses system expat |
| plucky | not-affected | uses system expat |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/xenial | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/xenial | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | needs-triage | |
| oracular | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system expat |
| esm-infra/bionic | not-affected | uses system expat |
| esm-infra/focal | not-affected | uses system expat |
| esm-infra/xenial | not-affected | uses system expat |
| focal | not-affected | uses system expat |
| jammy | not-affected | uses system expat |
| noble | not-affected | uses system expat |
| oracular | not-affected | uses system expat |
| plucky | not-affected | uses system expat |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system expat |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | not-affected | uses system expat |
| esm-apps/jammy | not-affected | uses system expat |
| esm-apps/noble | not-affected | uses system expat |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | needs-triage | |
| focal | not-affected | uses system expat |
| jammy | not-affected | uses system expat |
| noble | not-affected | uses system expat |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.6.2-2 |
| esm-infra-legacy/trusty | not-affected | 2.1.0-4ubuntu1.4+esm9 |
| esm-infra/bionic | released | 2.2.5-3ubuntu0.9+esm1 |
| esm-infra/focal | not-affected | 2.2.9-1ubuntu0.7 |
| esm-infra/xenial | released | 2.1.0-7ubuntu0.16.04.5+esm9 |
| focal | released | 2.2.9-1ubuntu0.7 |
| jammy | released | 2.4.7-1ubuntu0.4 |
| noble | released | 2.6.1-2ubuntu0.1 |
| oracular | not-affected | 2.6.2-2 |
| plucky | not-affected | 2.6.2-2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | code not present |
| esm-infra/focal | DNE | |
| focal | not-affected | uses system expat |
| jammy | not-affected | code not present |
| noble | not-affected | code not present |
| oracular | not-affected | code not present |
| plucky | not-affected | code not present |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system expat |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | not-affected | uses system expat |
| esm-apps/jammy | not-affected | uses system expat |
| esm-apps/noble | not-affected | uses system expat |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | not-affected | uses system expat |
| focal | not-affected | uses system expat |
| jammy | not-affected | uses system expat |
| noble | not-affected | uses system expat |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system expat |
| esm-infra/bionic | not-affected | uses system expat |
| esm-infra/focal | not-affected | uses system expat |
| esm-infra/xenial | not-affected | uses system expat |
| focal | not-affected | uses system expat |
| jammy | not-affected | uses system expat |
| noble | not-affected | uses system expat |
| oracular | not-affected | uses system expat |
| plucky | not-affected | uses system expat |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.2-4.1ubuntu3 |
| esm-apps/bionic | released | 1.2-4ubuntu0.18.04.1~esm3 |
| esm-apps/focal | released | 1.2-4ubuntu0.20.04.1~esm3 |
| esm-apps/jammy | released | 1.2-4ubuntu0.22.04.1~esm3 |
| esm-apps/noble | released | 1.2-4.1ubuntu2.24.0.4.1+esm1 |
| esm-apps/xenial | released | 1.2-3ubuntu0.16.04.1~esm4 |
| focal | ignored | end of standard support, was needed |
| jammy | needed | |
| noble | needed | |
| oracular | released | 1.2-4.1ubuntu3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | |
| esm-apps/bionic | ignored | |
| esm-apps/focal | ignored | |
| esm-apps/jammy | ignored | |
| esm-apps/noble | ignored | |
| esm-apps/xenial | ignored | |
| focal | ignored | |
| jammy | ignored | |
| noble | ignored | |
| oracular | ignored |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/xenial | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | needs-triage | |
| oracular | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | needs-triage | |
| oracular | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | code-not-compiled |
| esm-infra/bionic | not-affected | code-not-compiled |
| esm-infra/focal | not-affected | code-not-compiled |
| esm-infra/xenial | not-affected | code-not-compiled |
| focal | not-affected | code-not-compiled |
| jammy | not-affected | code-not-compiled |
| noble | not-affected | code-not-compiled |
| oracular | not-affected | code-not-compiled |
| plucky | not-affected | code-not-compiled |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | code not present |
| esm-infra/focal | DNE | |
| focal | not-affected | uses system expat |
| jammy | not-affected | uses system expat |
| noble | not-affected | code not present |
| oracular | not-affected | code not present |
| plucky | not-affected | code not present |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | needs-triage | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE | |
| trusty/esm | ignored | end of ESM support, was needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | needs-triage | |
| oracular | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | needs-triage |
Показывать по
Ссылки на источники
EPSS
9.8 Critical
CVSS3
Связанные уязвимости
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse. ...
EPSS
9.8 Critical
CVSS3