VDB
DEBIAN-CVE-2026-25210
DEBIAN-CVE-2026-25210
PUBLISHED
CVSS 7.800000190734863 HIGH
In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation.
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | expat | 2.7.1-1, 2.7.1-2, 2.7.2-1 |
| Debian:14 | expat | 2.7.1-2, 0, 2.7.2-1 |
| Debian:13 | expat | 0, 2.7.1-2, 2.7.2-1 |
| Debian:11 | expat | 2.6.1-2, 2.6.2-1, 2.6.2-2 |
Exploit Intelligence
- USN-8023-1.json (github-poc)
- .trivyignore.yml (github-poc)
- .trivyignore.yml (github-poc)
- .trivyignore.yml (github-poc)
- dockerscan.yml (github-poc)
- 2026.xml (github-poc)
- 2026.xml (github-poc)
- errata77.html (github-poc)
Timeline
- Jan 30, 2026 CVE Published
- Apr 28, 2026 CVE Updated