CVE-2026-56409
Published
CVSS v3
6.5
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
xmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used.
:herb: Fast streaming XML parser written in C99 with >90% test coverage; moved from SourceForge to GitHub
GitHub