vulnerability

FreeBSD: VID-6856D798-D950-11E9-AAE4-F079596B62F9: expat2 -- Fix extraction of namespace prefixes from XML names

Severity
9
CVSS
(AV:N/AC:L/Au:N/C:N/I:C/A:C)
Published
Sep 13, 2019
Added
Sep 20, 2019
Modified
Feb 19, 2025

Description



expat project reports:




Fix heap overflow triggered by


XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber),


and deny internal entities closing the doctype





Solution

freebsd-upgrade-package-expat

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.