FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

expat2 -- Fix extraction of namespace prefixes from XML names

Affected packages
expat < 2.2.8

Details

VuXML ID 6856d798-d950-11e9-aae4-f079596b62f9
Discovery 2019-09-13
Entry 2019-09-17

expat project reports:

Fix heap overflow triggered by XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber), and deny internal entities closing the doctype

[source]

References

URL https://github.com/libexpat/libexpat/blob/R_2_2_8/expat/Changes

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.