libexpat before 2.8.2 has an integer overflow in copyString.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/56xxx/CVE-2026-56408.json",
"cna_assigner": "mitre",
"cwe_ids": [
"CWE-190"
]
}{
"source": [
"CPE_RANGE",
"REFERENCES"
],
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "2.8.2"
}
],
"cpe": "cpe:2.3:a:libexpat_project:libexpat:*:*:*:*:*:*:*:*"
}"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-56408.json"
"2026-07-14T20:06:32Z"
[
{
"source": "https://github.com/libexpat/libexpat/commit/16e2efd867ea8567ffa012210b52ef5918e20817",
"digest": {
"threshold": 0.9,
"line_hashes": [
"49764371326105024949167023033929323404",
"331886275670177522007581575306208215313",
"47859046433447248635562634368972807069"
]
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2026-56408-49af9273",
"target": {
"file": "expat/lib/xmlparse.c"
},
"signature_type": "Line"
},
{
"source": "https://github.com/libexpat/libexpat/commit/16e2efd867ea8567ffa012210b52ef5918e20817",
"digest": {
"length": 276.0,
"function_hash": "304819910357209817028662367993368572534"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2026-56408-bb252a66",
"target": {
"function": "copyString",
"file": "expat/lib/xmlparse.c"
},
"signature_type": "Function"
}
]