GHSA-9rpf-mhcj-gv7rMediumCVSS 4.0
libexpat before 2.7.5 allows an infinite loop while parsing DTD content.
🔗 CVE IDs covered (1)
📋 Description
libexpat before 2.7.5 allows an infinite loop while parsing DTD content.
🔗 References (7)
- https://nvd.nist.gov/vuln/detail/CVE-2026-32777
- https://github.com/libexpat/libexpat/issues/1161
- https://github.com/libexpat/libexpat/pull/1159
- https://github.com/libexpat/libexpat/pull/1162
- https://issues.oss-fuzz.com/issues/486993411
- https://cert-portal.siemens.com/productcert/html/ssa-082556.html
- https://github.com/advisories/GHSA-9rpf-mhcj-gv7r