suse · CVE-2016-0718

Quick triage

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2016-0718 severity moderate: SUSE including 373 source package names (0.9.1:expat-2.1.0-17.1, 0.9.1:libexpat1-2.1.0-17.1, …), 677 product×package rows across 117 product lines (Container caasp/v4/default-http-backend, Container caasp/v4/dnsmasq-nanny, … (117 product lines)): Fixed 520, Known Affected 157.

Description:

Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.