RHSA-2025:22035HighCVSS 7.5

Red Hat Security Advisory: expat security update

Published
November 25, 2025
Last Modified
June 27, 2026

🔗 CVE IDs covered (4)

📋 Description

CVE-2013-0340 — expat: internal entity expansion CVE-2023-52425 — expat: parsing large tokens can trigger a denial of service CVE-2024-8176 — libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat CVE-2025-59375 — firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing

🔗 References (7)