CVE-2022-25315

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-25315

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-25315.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-25315

Downstream

ALPINE-CVE-2022-25315

BELL-CVE-2022-25315

CLEANSTART-2026-MH09144

CLEANSTART-2026-YT18139

DEBIAN-CVE-2022-25315

DLA-2935-1

DSA-5085-1

JLSEC-2025-56

OESA-2022-1554

OESA-2022-1588

OESA-2022-2057

OESA-2022-2085

RHBA-2022:4046

RHSA-2022:0815

RHSA-2022:0816

RHSA-2022:0817

RHSA-2022:0818

RHSA-2022:0824

RHSA-2022:0843

RHSA-2022:0845

RHSA-2022:0847

RHSA-2022:0850

RHSA-2022:0853

RHSA-2022:0951

RHSA-2022:1012

RHSA-2022:1053

RHSA-2022:1068

RHSA-2022:1069

RHSA-2022:1070

RHSA-2022:1263

RHSA-2022:1309

RHSA-2022:7811

RLSA-2022:0818

RLSA-2022:0845

RLSA-2022:0951

SUSE-SU-2022:0698-1

SUSE-SU-2022:0713-1

SUSE-SU-2022:14903-1

SUSE-SU-2022:2294-1

UBUNTU-CVE-2022-25315

USN-5320-1

openSUSE-SU-2022:0713-1

openSUSE-SU-2024:11866-1

Related

Published

2022-02-18T05:15:08.237Z

Modified

2026-02-24T11:42:29.127115Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.

References

Affected packages

Git / github.com/wordpress/wordpress-develop

Affected ranges

Type: GIT
Repo: https://github.com/wordpress/wordpress-develop
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

2b9b722d75266ba8921d199ff0ce92fd07abba6f

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-25315.json"