Early Access — Mondoo Vulnerability Intelligence is currently in preview.
In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.
0.6.3-3build10.1.0+git20150808-10.1.0+git20150808-20.23.3-2ubuntu20.23.3-2.1build10.24+dfsg-20.24+dfsg-30.24+dfsg-3build10.24+dfsg-3build20.23.3-2ubuntu30.24+dfsg-40.26+dfsg-20.23.3-2.1build177.0.3865.120-0ubuntu1~snap177.0.3865.120-0ubuntu278.0.3904.70-0ubuntu145.0.2454.101-0ubuntu1.120147.0.2526.106-0ubuntu1.122147.0.2526.73-0ubuntu1.121848.0.2564.116-0ubuntu1.122948.0.2564.82-0ubuntu1.122249.0.2623.108-0ubuntu1.123349.0.2623.87-0ubuntu1.123250.0.2661.102-0ubuntu0.16.04.1.123751.0.2704.79-0ubuntu0.16.04.1.124252.0.2743.116-0ubuntu0.16.04.1.1250+43 more78.0.3904.70-0ubuntu0.16.04.261.0.3163.100-0ubuntu1.137862.0.3202.62-0ubuntu0.17.10.138062.0.3202.89-0ubuntu1.138662.0.3202.94-0ubuntu1.138863.0.3239.108-0ubuntu163.0.3239.84-0ubuntu164.0.3282.119-0ubuntu164.0.3282.140-0ubuntu164.0.3282.167-0ubuntu165.0.3325.146-0ubuntu1+22 more78.0.3904.70-0ubuntu0.18.04.23.1.4~abc9f50+dfsg1-13.1.4~abc9f50+dfsg1-1ubuntu0.1~esm13.1.4~abc9f50-33.1.4~abc9f50-43.1.4~abc9f50-4ubuntu23.1.4~abc9f50-4ubuntu2+esm13.1.4~abc9f50+dfsg1-23.1.4~abc9f50+dfsg2-13.1.4~abc9f50+dfsg3-13.1.4~abc9f50+dfsg3-22.1.0-72.1.0-7ubuntu0.16.04.12.1.0-7ubuntu0.16.04.22.1.0-7ubuntu0.16.04.32.1.0-7ubuntu0.16.04.42.1.0-7ubuntu0.16.04.52.1.0-42.1.0-4ubuntu12.1.0-4ubuntu1.12.1.0-4ubuntu1.22.1.0-4ubuntu1.32.1.0-4ubuntu1.42.2.7-22.1.0-42.1.0-4ubuntu12.1.0-4ubuntu1.12.1.0-4ubuntu1.22.1.0-4ubuntu1.32.1.0-4ubuntu1.42.1.0-4ubuntu1.4+esm22.2.3-12.2.3-22.2.5-0ubuntu22.2.5-32.2.5-3ubuntu0.12.2.5-3ubuntu0.269.0.3+build1-0ubuntu170.0+build2-0ubuntu141.0.2+build2-0ubuntu142.0+build2-0ubuntu144.0+build3-0ubuntu244.0.1+build1-0ubuntu144.0.2+build1-0ubuntu145.0+build2-0ubuntu145.0.1+build1-0ubuntu145.0.2+build1-0ubuntu146.0+build5-0ubuntu0.16.04.246.0.1+build1-0ubuntu0.16.04.2+63 more70.0+build2-0ubuntu0.16.04.156.0+build6-0ubuntu157.0.1+build2-0ubuntu159.0.1+build1-0ubuntu159.0.2+build1-0ubuntu160.0+build2-0ubuntu160.0.1+build2-0ubuntu0.18.04.160.0.2+build1-0ubuntu0.18.04.161.0+build3-0ubuntu0.18.04.161.0.1+build1-0ubuntu0.18.04.162.0+build2-0ubuntu0.18.04.3+25 more70.0+build2-0ubuntu0.18.04.13.20.1+git20120521-63.20.1+git20120521-6build14.8.1-1ubuntu34.8.1-1ubuntu44.8.2-3.1ubuntu14.9.0-3ubuntu24.9.0-4ubuntu14.9.0-4ubuntu1.11.2-4.1ubuntu11.2-4.1ubuntu21.2-4.1ubuntu2.24.0.4.1+esm11.2-4ubuntu11.2-4.1ubuntu2.24.0.4.1+esm21.2-41.2-4ubuntu0.22.04.1~esm11.2-4ubuntu0.22.04.1~esm21.2-4ubuntu0.22.04.1~esm31.2-4ubuntu0.22.04.1~esm41.2-41.2-4.1ubuntu11.2-4.1ubuntu21.2-4ubuntu11.2-41.2-4ubuntu0.20.04.1~esm11.2-4ubuntu0.20.04.1~esm21.2-4ubuntu0.20.04.1~esm31.2-4ubuntu0.20.04.1~esm41.2-3build31.2-3ubuntu0.16.04.1~esm11.2-3ubuntu0.16.04.1~esm21.2-41.2-4ubuntu0.18.04.1~esm11.2-4ubuntu0.18.04.1~esm21.2-4ubuntu0.18.04.1~esm31.2-4ubuntu0.18.04.1~esm41.2-4.1ubuntu31.2-4.1ubuntu40.13+ds1-60.13+ds2-10.13+ds2-10.13+ds2-1build10.13+ds2-1build20.13+ds2-10.13+ds1-5build10.13+ds1-60.13+ds1-50.13+ds2-1build20.13+ds2-21:0.16.6-71:0.16.6-7build11:0.16.6-101:0.16.6-9build11:0.16.6-7build11:0.16.6-71:0.16.6-131:0.16.6-141:0.16.6-151:0.16.6-162.4.7-6.12.4.7-6.1build12.4.7-6build32.4.7-42.4.7-4build12.4.7-6build12.4.7-6build22.4.7-5ubuntu12.4.7-6.2build32.4.7-6.2build42.4.7-6.32.4.7-6.22.4.7-6.2build12.4.7-6.2build22.4.7-6.2build30.9.2-10.8.3-10.9.0-10.9.4-10.9.5-10.9.5-1.10.9.5-1.1build10.9.5.1-20.9.1-10.8.3-10.9.3-10.9.3-1build11:38.3.0+build1-0ubuntu21:38.5.1+build2-0ubuntu11:38.6.0+build1-0ubuntu11:38.7.2+build1-0ubuntu0.16.04.11:38.8.0+build1-0ubuntu0.16.04.11:45.2.0+build1-0ubuntu0.16.04.11:45.3.0+build1-0ubuntu0.16.04.21:45.4.0+build1-0ubuntu0.16.04.11:45.5.1+build1-0ubuntu0.16.04.11:45.7.0+build1-0ubuntu0.16.04.1+20 more1:68.7.0+build1-0ubuntu0.16.04.21:52.4.0+build1-0ubuntu21:52.6.0+build1-0ubuntu11:52.7.0+build1-0ubuntu11:52.8.0+build1-0ubuntu0.18.04.11:52.9.1+build3-0ubuntu0.18.04.11:60.2.1+build1-0ubuntu0.18.04.21:60.4.0+build2-0ubuntu0.18.04.11:60.5.1+build2-0ubuntu0.18.04.11:60.6.1+build2-0ubuntu0.18.04.11:60.7.0+build1-0ubuntu0.18.04.1+4 more1:68.2.1+build1-0ubuntu0.18.04.14.1.1+xorg4.3.0-37ubuntu54.1.1+xorg4.3.0-37ubuntu5.0.14.1.1+xorg4.3.0-37ubuntu5.0.24.1.1+xorg4.3.0-37ubuntu5.0.2+esm14.1.1+xorg4.3.0-37.3ubuntu24.1.1+xorg4.3.0-37.3ubuntu24.1.1+xorg4.3.0-37.3ubuntu2.1+esm15.8.0-14.1ubuntu25.8.0-14.1ubuntu35.8.0-14ubuntu15.8.0-14ubuntu35.8.0-14.1ubuntu3+esm15.10.1+dfsg-25.10.1+dfsg-2.1build15.10.1+dfsg-2build35.10.1+dfsg-2.1ubuntu0.1~esm10.10.7-1build10.11.7+dfsg-10.10.7-10.10.7-10.10.7-1build10.11.8+dfsg-30.11.8+dfsg-3build10.11.10+dfsg-10.11.10+dfsg-20.10.7-1build11.33.14-111.33.14-11.11.33.14-121.33.14-12build11.33.14-12build21.16.33-3.2ubuntu31.33.06-0ubuntu11.33.14-8build11.33.14-8build21.33.14-71.33.14-81.33.14-8build11.33.14-101.33.14-91.59.03-41.59.03-51.59.03-61.59.03-71.33.14-0.2ubuntu31.33.14-1ubuntu1Exploitability
AV:NAC:LPR:NUI:NScope
S:UImpact
C:NI:NA:HCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H