vulnerability

Red Hat: CVE-2022-22825: Integer overflow in lookup in xmlparse.c (Multiple Advisories)

Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Jan 10, 2022
Added
Mar 17, 2022
Modified
Jul 9, 2025

Description

lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.

Solution(s)

no-fix-redhat-rpm-packageredhat-upgrade-expatredhat-upgrade-expat-debuginforedhat-upgrade-expat-debugsourceredhat-upgrade-expat-develredhat-upgrade-expat-staticredhat-upgrade-xmlrpc-credhat-upgrade-xmlrpc-c-apps-debuginforedhat-upgrade-xmlrpc-c-credhat-upgrade-xmlrpc-c-c-debuginforedhat-upgrade-xmlrpc-c-clientredhat-upgrade-xmlrpc-c-client-debuginforedhat-upgrade-xmlrpc-c-debuginforedhat-upgrade-xmlrpc-c-debugsourceredhat-upgrade-xmlrpc-c-devel
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.