defineAttribute in xmlparse.c in Expat (aka libexpat)...
Critical severity
Unreviewed
Published
Feb 10, 2022
to the GitHub Advisory Database
•
Updated Jan 28, 2023
Description
Published by the National Vulnerability Database
Jan 10, 2022
Published to the GitHub Advisory Database
Feb 10, 2022
Last updated
Jan 28, 2023
defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
References