VDB
GCVE-110-MAGEIA-2024-338
GCVE-110-MAGEIA-2024-338
Advisory Published
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not
reject a negative length for XML_ParseBuffer. (CVE-2024-45490)
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c
can have an integer overflow for nDefaultAtts on 32-bit platforms (where
UINT_MAX equals SIZE_MAX). (CVE-2024-45491)
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in
xmlparse.c can have an integer overflow for m_groupSize on 32-bit
platforms (where UINT_MAX equals SIZE_MAX). (CVE-2024-45492)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | mozjs78 | 0 (affected), 78.15.0-7.1.mga9 (unaffected) | — |
Aliases
Browse GCVE Records
72,921 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.