CNNVD-202511-3025 Information

CNNVD ID

CNNVD-202511-3025

Related CVE

CVE-2025-66382

• CNNVD Published: 2025-11-28

Description (Chinese)

libexpat是libexpat团队的一款使用C语言编写的流式XML解析器。 libexpat 2.7.3及之前版本存在安全漏洞，该漏洞源于特制文件可能导致处理时间过长。

Description (English)

Libexpat is a current XML solver for the libexpat team in C language. Libexpat 2.7.3 and earlier versions had a security loophole, which stemmed from the fact that specially created documents could lead to lengthy processing times.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

libexpat

Published

2025-11-28

Last Modified

2026-02-24

References

https://github.com/libexpat/libexpat/issues/1076