GHSA-fpqv-cr66-h6pcLowCVSS 2.9

libexpat before 2.7.6 uses insufficient entropy, and thus hash flooding can occur via a crafted...

Published
April 16, 2026
Last Modified
July 14, 2026

🔗 CVE IDs covered (1)

📋 Description

libexpat before 2.7.6 uses insufficient entropy, and thus hash flooding can occur via a crafted XML document.

🔗 References (8)