[Git][security-tracker-team/security-tracker][master] Add CVE-2026-25210/expat

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
19fb55d0 by Salvatore Bonaccorso at 2026-01-30T09:01:58+01:00
Add CVE-2026-25210/expat

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,8 @@
+CVE-2026-25210 [Improve determination of buffer size bufSize in function doContent]
+	- expat <unfixed>
+	NOTE: Fixed by: https://github.com/libexpat/libexpat/commit/7ddea353ad3795f7222441274d4d9a155b523cba
+	NOTE: Fixed by: https://github.com/libexpat/libexpat/commit/8855346359a475c022ec8c28484a76c852f144d9
+	NOTE: Fixed by: https://github.com/libexpat/libexpat/commit/9c2d990389e6abe2e44527eeaa8b39f16fe859c7
 CVE-2026-25068 (alsa-lib versions 1.2.2 up to and including 1.2.15.2, prior to commit  ...)
 	- alsa-lib <unfixed> (bug #1126629)
 	NOTE: Fixed by: https://github.com/alsa-project/alsa-lib/commit/5f7fe33002d2d98d84f72e381ec2cccc0d5d3d40



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19fb55d08e47f361e808afa10cf49cce5ddf6097

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19fb55d08e47f361e808afa10cf49cce5ddf6097
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260130/63c6bcdc/attachment.htm>