MNBSD-2015-9: Integer overflow in the expat XML parser

Severity: Unknown

Affected Package: expat

Summary: Integer overflow in the expat XML parser

Description

A security vulnerability in the expat XML parser (an integer overflow leading to heap corruption when processing XML with malformed input) could be exploited by applications that parse untrusted XML. This could result in a denial of service or potentially other impact in programs using libbsdxml/expat.

Affected Versions

expat

Recommendations

No specific recommendations provided.

References

Additional Information

Aliases: CVE-2015-1283

Published: August 18, 2015
Last Modified: August 18, 2015