PT-2022-1764 · Expat+13 · Expat+13

Published

2022-02-15

Updated

2026-05-27

CVE-2022-25235

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Expat versions prior to 2.4.5

Description The issue is related to the incorrect handling of encoding validation in the xmltok impl.c component of the Expat library, specifically lacking checks for whether a UTF-8 character is valid in a certain context. This could allow a remote attacker to execute arbitrary code by sending a specially crafted request.

Recommendations For versions prior to 2.4.5, update to version 2.4.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of the xmltok impl.c component until a patch is available. Avoid using the Expat library to parse untrusted input until the issue is resolved.

Fix

Improper Encoding or Escaping of Output

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-116CWE-94

Related Identifiers

ALSA-2022:0818

ALSA-2022:0845

ALSA-2022:0951

ALSA-2022:1643

ALSA-2022:7811

ALT-PU-2022-1348

ALT-PU-2023-4107

ALT-PU-2023-4120

ALT-PU-2023-4144

AZL-43681

AZL-44607

AZL-8603

BDU:2022-01063

CESA-2022_0818

CESA-2022_0824

CESA-2022_0845

CESA-2022_0850

CESA-2022_0951

CESA-2022_1069

CESA-2022_1643

CESA-2022_7811

CLEANSTART-2026-EM10970

CLEANSTART-2026-MH09144

CLEANSTART-2026-YT18139

CVE-2022-25235

DLA-2935-1

DSA-5085-1

MGASA-2022-0081

MGASA-2022-0156

MGASA-2022-0157

MGASA-2022-0183

OESA-2022-1554

OESA-2022-1588

OESA-2022-2057

OESA-2022-2085

OESA-2024-1815

OPENSUSE-SU-2022:0713-1

OPENSUSE-SU-2022_0713-1

OPENSUSE-SU-2022_2294-1

OPENSUSE-SU-2024:11866-1

RHSA-2022:0815

RHSA-2022:0816

RHSA-2022:0817

RHSA-2022:0818

RHSA-2022:0824

RHSA-2022:0843

RHSA-2022:0845

RHSA-2022:0847

RHSA-2022:0850

RHSA-2022:0853

RHSA-2022:0951

RHSA-2022:1012

RHSA-2022:1053

RHSA-2022:1068

RHSA-2022:1069

RHSA-2022:1070

RHSA-2022:1263

RHSA-2022:1309

RHSA-2022:1539

RHSA-2022:1540

RHSA-2022:1643

RHSA-2022:1644

RHSA-2022:7811

RHSA-2022_0818

RHSA-2022_0824

RHSA-2022_0845

RHSA-2022_0850

RHSA-2022_0951

RHSA-2022_1069

RHSA-2022_1309

RHSA-2022_1643

RHSA-2022_7811

RLSA-2022:0818

RLSA-2022:0845

RLSA-2022:0951

RLSA-2022:1643

SUSE-SU-2022:0698-1

SUSE-SU-2022:0713-1

SUSE-SU-2022:14903-1

SUSE-SU-2022:2294-1

SUSE-SU-2022_0698-1

SUSE-SU-2022_0713-1

SUSE-SU-2022_14903-1

SUSE-SU-2022_2294-1

USN-5288-1

USN-5455-1

USN-8235-1

USN-8240-1

USN-8241-1

USN-8313-1

USN-8314-1

USN-8316-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Debian

Expat

Ibm Aix

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Zvirt Node

PT-2022-1764 · Expat+13 · Expat+13

CVE-2022-25235

Weakness Enumeration

Related Identifiers

Affected Products

References · 302