PT-2026-39462 · Libexpat+1 · Libexpat+1
Hartwork
·
Published
2026-05-08
·
Updated
2026-06-25
·
CVE-2026-45186
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
libexpat versions prior to 2.8.1
Description
The computational complexity of attribute name collision checks allows a denial of service when processing moderately sized crafted XML input.
Recommendations
Update to version 2.8.1 or later.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Rocky Linux
Libexpat