PT-2022-1365 · Expat+12 · Expat+12

Published

2022-01-23

·

Updated

2026-04-01

·

CVE-2022-23852

CVSS v2.0

10

Critical

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Expat (aka libexpat) versions prior to 2.4.4
Description The issue is related to a signed integer overflow in XML GetBuffer, which can be exploited by sending specially crafted data, potentially allowing a remote attacker to execute arbitrary code. This could lead to local escalation of privilege with no additional execution privileges needed, and user interaction is not required for exploitation.
Recommendations For versions prior to 2.4.4, update to version 2.4.4 or later to resolve the issue. As a temporary workaround, consider disabling the XML GetBuffer function until a patch is available. Restrict access to the xmlparse.c module to minimize the risk of exploitation. Avoid using configurations with a nonzero XML CONTEXT BYTES until the issue is resolved.

Fix

DoS

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

ALSA-2022:0951
ALT-PU-2022-1208
ALT-PU-2023-4107
ALT-PU-2023-4120
ALT-PU-2023-4144
ASB-A-221255869
AZL-7835
BDU:2022-01702
CESA-2022_0951
CESA-2022_1069
CLEANSTART-2026-EM10970
CLEANSTART-2026-MH09144
CLEANSTART-2026-YT18139
CVE-2022-23852
DLA-2904-1
DLA-2935-1
DSA-5073-1
MGASA-2022-0048
OESA-2022-1511
OPENSUSE-SU-2022:0498-1
OPENSUSE-SU-2022_0498-1
OPENSUSE-SU-2024:11793-1
OPENSUSE-SU-2024:11985-1
RHSA-2022:0951
RHSA-2022:1069
RHSA-2022:4834
RHSA-2022_0951
RHSA-2022_1069
RLSA-2022:0951
SUSE-SU-2022:0495-1
SUSE-SU-2022:0498-1
SUSE-SU-2022:14884-1
SUSE-SU-2022_0495-1
SUSE-SU-2022_0498-1
SUSE-SU-2022_14884-1
USN-5288-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Debian
Expat
Ibm Aix
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu