AZL-67359

See a problem?
Import Source
https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-67359.json
JSON Data
https://api.test.osv.dev/v1/vulns/AZL-67359
Upstream
Published
2025-09-15T03:15:40Z
Modified
2026-04-01T05:21:11.721849Z
Summary
CVE-2025-59375 affecting package expat for versions less than 2.6.4-2
Details

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

References

Affected packages

Azure Linux:2 / expat

Package

Name
expat
Purl
pkg:rpm/azure-linux/expat

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.6.4-2

Database specific

source 
"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-67359.json"