Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-22825HistoryJan 10, 2022 - 2:12 p.m.
CVE-2022-22825
2022-01-1014:12:56
Debian Security Bug Tracker
security-tracker.debian.org
21
cve-2022-22825
xml parsing
expat
integer overflow
unix
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.013
Percentile
86.4%
lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | expat | < 2.4.3-1 | expat_2.4.3-1_all.deb |
| Debian | 11 | all | expat | < 2.2.10-2+deb11u1 | expat_2.2.10-2+deb11u1_all.deb |
| Debian | 999 | all | expat | < 2.4.3-1 | expat_2.4.3-1_all.deb |
| Debian | 13 | all | expat | < 2.4.3-1 | expat_2.4.3-1_all.deb |
Related
alpinelinux
alpinelinux
CVE-2022-22825
2022-01-10 14:12:56
cbl_mariner
cbl_mariner
CVE-2022-22825 affecting package expat 2.4.1-2
2022-01-26 22:53:38
CVE-2022-22825 affecting package expat for versions less than 2.4.3-1
2022-04-09 06:51:43
veracode
veracode
Denial Of Service (DoS)
2022-01-11 03:52:55
osv
osv
CVE-2022-22825
2022-01-10 14:12:56
Moderate: xmlrpc-c security update
2022-11-08 00:00:00
Moderate: xmlrpc-c security update
2022-11-08 06:26:32
cnvd
cnvd
Expat lookup function buffer overflow vulnerability
2022-01-14 00:00:00
prion
prion
Integer overflow
2022-01-10 14:12:00
cvelist
cvelist
CVE-2022-22825
2022-01-08 02:56:48
redhatcve
redhatcve
CVE-2022-22825
2022-01-24 17:32:55
nvd
nvd
CVE-2022-22825
2022-01-10 14:12:56
cve
cve
CVE-2022-22825
2022-01-10 14:12:56
ubuntucve
ubuntucve
CVE-2022-22825
2022-01-10 00:00:00
f5
f5
nessus
nessus
F5 Networks BIG-IP : Expat vulnerabilities (K91589041)
2022-05-01 00:00:00
Photon OS 3.0: Expat PHSA-2022-3.0-0353
2024-07-24 00:00:00
Amazon Linux 2 : expat (ALAS-2022-1809)
2022-07-15 00:00:00
ibm
ibm
amazon
amazon
Medium: expat
2022-06-30 23:38:00
Medium: expat
2022-07-06 03:09:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0353
2022-01-19 00:00:00
Critical Photon OS Security Update - PHSA-2022-3.0-0353
2022-01-19 00:00:00
Critical Photon OS Security Update - PHSA-2022-0462
2022-01-22 00:00:00
rocky
rocky
xmlrpc-c security update
2022-11-08 06:26:32
expat security update
2022-03-16 15:13:06
redhat
redhat
(RHSA-2022:7692) Moderate: xmlrpc-c security update
2022-11-08 06:26:32
(RHSA-2022:0951) Important: expat security update
2022-03-16 15:13:06
(RHSA-2022:1069) Important: expat security update
2022-03-28 08:42:24
oraclelinux
oraclelinux
xmlrpc-c security update
2022-11-15 00:00:00
expat security update
2022-03-16 00:00:00
expat security update
2022-03-28 00:00:00
almalinux
almalinux
Moderate: xmlrpc-c security update
2022-11-08 00:00:00
Important: expat security update
2022-03-16 00:00:00
slackware
slackware
[slackware-security] expat
2022-01-16 21:48:11
mageia
mageia
Updated expat packages fix security vulnerability
2022-01-25 15:13:11
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:0178-1)
2022-01-26 00:00:00
Mageia: Security Advisory (MGASA-2022-0031)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:14878-1)
2022-01-26 00:00:00
suse
suse
Security update for expat (important)
2022-01-25 00:00:00
hp
hp
Expat Library update for Teradici PCoIP Software and Firmware
2022-04-11 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package expat version 2.4.3-alt1
2022-01-31 00:00:00
debian
debian
[SECURITY] [DLA 2904-1] expat security update
2022-01-30 21:42:20
[SECURITY] [DSA 5073-1] expat security update
2022-02-12 13:32:08
cloudfoundry
cloudfoundry
USN-5288-1: Expat vulnerabilities | Cloud Foundry
2022-04-21 00:00:00
cloudlinux
cloudlinux
Fixed 13 CVEs in expat
2022-08-17 18:50:48
ubuntu
ubuntu
Expat vulnerabilities
2022-02-21 00:00:00
xmltok library vulnerabilities
2022-07-19 00:00:00
centos
centos
expat security update
2022-03-29 22:31:03
ics
ics
Hitachi Energy AFS65x, AFF66x, AFS67x, and AFR67x Series Products
2023-10-05 12:00:00
Siemens SINEMA Remote Connect Server
2022-06-16 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
aix
aix
AIX is affected by multiple vulnerabilities in Python
2022-07-28 13:12:18
gentoo
gentoo
Expat: Multiple Vulnerabilities
2022-09-29 00:00:00
avleonov
avleonov
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.013
Percentile
86.4%
Related for DEBIANCVE:CVE-2022-22825