PT-2026-51245 · Libexpat · Libexpat
Netliomax25-Code
·
Published
2026-06-21
·
Updated
2026-06-21
·
CVE-2026-56409
CVSS v3.1
6.5
Medium
| Vector | AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L |
Name of the Vulnerable Software and Affected Versions
libexpat versions prior to 2.8.2
Description
The
xmlwf tool contains an integer overflow related to the output filename when the -d outputDir option is utilized. An integer overflow occurs when a mathematical operation results in a value that exceeds the maximum size of the integer type used to store it, potentially leading to memory corruption or crashes.Recommendations
Update to version 2.8.2 or later.
Fix
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Libexpat