expat

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description An XML parser library
Version 2.2.5-1 [core]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-306 2.2.0-1 2.2.1-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2017-9233 AVG-306 Medium Yes Denial of service
An external entity infinite loop issue has been found in Expat < 2.2.1, leading to a denial of service.
CVE-2016-9063 AVG-306 Medium Yes Denial of service
An integer overflow vulnerability has been discovered during the parsing of XML using the Expat library.

Advisories

Date Advisory Group Severity Description
26 Jun 2017 ASA-201706-32 AVG-306 Medium denial of service