CVE-2023-52426 Information

Description

libexpat through 2.5.0 allows recursive XML Entity Expansion if XML_DTD is undefined at compile time.

Reference

https://github.com/libexpat/libexpat/pull/777 https://github.com/libexpat/libexpat/commit/0f075ec8ecb5e43f8fdca5182f8cca4703da0404 https://cwe.mitre.org/data/definitions/776.html