CVE-2024-45492

EUVD-2024-41511
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
Affected Products (NVD)
VendorProductVersion
libexpat_projectlibexpat
𝑥
< 2.6.3
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
libexpatexpat
𝑥
< 2.6.3
ADP
SiemensRUGGEDCOM RST2428P
𝑥
< V3.1
ADP
SiemensSCALANCE XC-300\/XR-300\/XC-400\/XR-500WG\/XR-500 family
𝑥
< *
ADP
SiemensSCALANCE XCM-\/XRM-\/XCH-\/XRH-300 family
𝑥
< V3.1
ADP
SiemensSIMATIC S7-1500 CPU 1518-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
SiemensSIMATIC S7-1500 CPU 1518-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
SiemensSIMATIC S7-1500 CPU 1518F-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
SiemensSIMATIC S7-1500 CPU 1518F-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
SiemensSIPLUS S7-1500 CPU 1518-4 PN\/DP MFP
V3.1.5 ≤
𝑥
< *
ADP
Debian logo
Debian Releases
Debian Product
Codename
expat
bookworm
2.5.0-1+deb12u2
ignored
bookworm (security)
2.5.0-1+deb12u1
fixed
bullseye
vulnerable
bullseye (security)
2.2.10-2+deb11u7
fixed
forky
2.7.3-1
fixed
sid
2.7.3-1
fixed
trixie
2.7.1-2
fixed
libxmltok
bookworm
ignored
bullseye
vulnerable
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
tdom
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
oracular
ignored
plucky
needs-triage
questing
needs-triage
xenial
needs-triage
apache2
bionic
not-affected
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
trusty
not-affected
xenial
not-affected
apr-util
bionic
not-affected
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
trusty
not-affected
xenial
not-affected
cmake
bionic
not-affected
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
xenial
not-affected
ghostscript
bionic
not-affected
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
xenial
not-affected
texlive-bin
bionic
not-affected
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
xenial
not-affected
xmlrpc-c
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
oracular
ignored
plucky
needs-triage
questing
needs-triage
trusty
needs-triage
xenial
needs-triage
vnc4
bionic
needs-triage
focal
dne
jammy
dne
noble
dne
oracular
dne
plucky
dne
questing
dne
trusty
needs-triage
xenial
needs-triage
wbxml2
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
oracular
ignored
plucky
needs-triage
questing
needs-triage
xenial
needs-triage
swish-e
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
oracular
ignored
plucky
needs-triage
questing
needs-triage
xenial
needs-triage
insighttoolkit4
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
dne
oracular
dne
plucky
dne
questing
dne
xenial
needs-triage
cadaver
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
oracular
ignored
plucky
needs-triage
questing
needs-triage
xenial
needs-triage
gdcm
bionic
needs-triage
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
trusty
not-affected
xenial
needs-triage
ayttm
focal
dne
jammy
dne
noble
dne
oracular
dne
plucky
dne
questing
dne
xenial
needs-triage
cableswig
focal
dne
jammy
dne
noble
dne
oracular
dne
plucky
dne
questing
dne
xenial
needs-triage
coin3
bionic
needs-triage
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
trusty
needs-triage
xenial
needs-triage
matanza
bionic
ignored
focal
ignored
jammy
ignored
noble
ignored
oracular
ignored
plucky
ignored
questing
ignored
xenial
ignored
vtk
focal
dne
jammy
dne
noble
dne
oracular
dne
plucky
dne
questing
dne
trusty
needs-triage
xenial
needs-triage
smart
bionic
needs-triage
focal
dne
jammy
dne
noble
dne
oracular
dne
plucky
dne
questing
dne
xenial
needs-triage
firefox
focal
dne
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
thunderbird
focal
dne
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
libxmltok
bionic
not-affected
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
dne
xenial
not-affected
expat
bionic
Fixed 2.2.5-3ubuntu0.9+esm1
released
focal
Fixed 2.2.9-1ubuntu0.7
released
jammy
Fixed 2.4.7-1ubuntu0.4
released
noble
Fixed 2.6.1-2ubuntu0.1
released
oracular
not-affected
plucky
not-affected
questing
not-affected
trusty
Fixed 2.1.0-4ubuntu1.4+esm9
released
xenial
Fixed 2.1.0-7ubuntu0.16.04.5+esm9
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
expat
suse enterprise desktop 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise desktop 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise desktop 15 SP7
2.6.4-150700.1.4
fixed
suse enterprise sap 12 SP5
2.1.0-21.37.1
fixed
suse enterprise sap 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise sap 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise sap 15 SP7
2.6.4-150700.1.4
fixed
suse enterprise server 12 SP3
2.1.0-21.37.1
fixed
suse enterprise server 12 SP5
2.1.0-21.37.1
fixed
suse enterprise server 15 SP4
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP7
2.6.4-150700.1.4
fixed
libexpat-devel
suse enterprise desktop 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise desktop 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise desktop 15 SP7
2.6.4-150700.1.4
fixed
suse enterprise sap 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise sap 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise sap 15 SP7
2.6.4-150700.1.4
fixed
suse enterprise server 15 SP4
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP7
2.6.4-150700.1.4
fixed
libexpat1
suse enterprise desktop 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise desktop 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise desktop 15 SP7
2.6.4-150700.1.4
fixed
suse enterprise sap 12 SP5
2.1.0-21.37.1
fixed
suse enterprise sap 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise sap 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise sap 15 SP7
2.6.4-150700.1.4
fixed
suse enterprise server 12 SP3
2.1.0-21.37.1
fixed
suse enterprise server 12 SP5
2.1.0-21.37.1
fixed
suse enterprise server 15 SP4
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP7
2.6.4-150700.1.4
fixed
libexpat1-32bit
suse enterprise desktop 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise desktop 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise desktop 15 SP7
2.6.4-150700.1.4
fixed
suse enterprise sap 12 SP5
2.1.0-21.37.1
fixed
suse enterprise sap 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise sap 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise sap 15 SP7
2.6.4-150700.1.4
fixed
suse enterprise server 12 SP3
2.1.0-21.37.1
fixed
suse enterprise server 12 SP5
2.1.0-21.37.1
fixed
suse enterprise server 15 SP4
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP5
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP6
2.4.4-150400.3.22.1
fixed
suse enterprise server 15 SP7
2.6.4-150700.1.4
fixed
libmozjs-115-0
suse enterprise desktop 15 SP6
115.4.0-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
115.4.0-150600.3.3.1
fixed
suse enterprise sap 15 SP6
115.4.0-150600.3.3.1
fixed
suse enterprise sap 15 SP7
115.4.0-150600.3.3.1
fixed
suse enterprise server 15 SP6
115.4.0-150600.3.3.1
fixed
suse enterprise server 15 SP7
115.4.0-150600.3.3.1
fixed
libmozjs-60
suse enterprise desktop 15 SP7
60.9.0-150200.6.8.1
fixed
suse enterprise sap 15 SP7
60.9.0-150200.6.8.1
fixed
suse enterprise server 15 SP4
60.9.0-150200.6.8.1
fixed
suse enterprise server 15 SP7
60.9.0-150200.6.8.1
fixed
libmozjs-78-0
suse enterprise desktop 15 SP5
78.15.0-150400.3.6.2
fixed
suse enterprise sap 15 SP5
78.15.0-150400.3.6.2
fixed
suse enterprise server 15 SP4
78.15.0-150400.3.6.2
fixed
suse enterprise server 15 SP5
78.15.0-150400.3.6.2
fixed
mozjs115-devel
suse enterprise desktop 15 SP6
115.4.0-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
115.4.0-150600.3.3.1
fixed
suse enterprise sap 15 SP6
115.4.0-150600.3.3.1
fixed
suse enterprise sap 15 SP7
115.4.0-150600.3.3.1
fixed
suse enterprise server 15 SP6
115.4.0-150600.3.3.1
fixed
suse enterprise server 15 SP7
115.4.0-150600.3.3.1
fixed
mozjs60-devel
suse enterprise desktop 15 SP7
60.9.0-150200.6.8.1
fixed
suse enterprise sap 15 SP7
60.9.0-150200.6.8.1
fixed
suse enterprise server 15 SP4
60.9.0-150200.6.8.1
fixed
suse enterprise server 15 SP7
60.9.0-150200.6.8.1
fixed
mozjs78-devel
suse enterprise desktop 15 SP5
78.15.0-150400.3.6.2
fixed
suse enterprise sap 15 SP5
78.15.0-150400.3.6.2
fixed
suse enterprise server 15 SP4
78.15.0-150400.3.6.2
fixed
suse enterprise server 15 SP5
78.15.0-150400.3.6.2
fixed
x3270
suse enterprise desktop 15 SP7
4.3-150700.6.3
fixed
suse enterprise sap 15 SP7
4.3-150700.6.3
fixed
suse enterprise server 15 SP7
4.3-150700.6.3
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
expat
RHEL 8
0:2.2.5-15.el8_10
fixed
RHEL 9
0:2.5.0-2.el9_4.1
fixed
expat-devel
RHEL 8
0:2.2.5-15.el8_10
fixed
RHEL 9
0:2.5.0-2.el9_4.1
fixed
Common Weakness Enumeration
References
https://github.com/libexpat/libexpat/issues/889
https://github.com/libexpat/libexpat/pull/892
https://lists.debian.org/debian-lts-announce/2024/09/msg00036.html
https://security.netapp.com/advisory/ntap-20241018-0005/
https://cert-portal.siemens.com/productcert/html/ssa-082556.html
https://cert-portal.siemens.com/productcert/html/ssa-613116.html