RHSA-2025:21776HighCVSS 7.5
Red Hat Security Advisory: expat security update
🔗 CVE IDs covered (4)
📋 Description
CVE-2013-0340 — expat: internal entity expansion CVE-2022-23990 — expat: integer overflow in the doProlog function CVE-2024-28757 — expat: XML Entity Expansion CVE-2025-59375 — firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing