Description
In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2013-1540 Vulnerability (CVE-2013-1540)
OpenSSL Numeric Errors Vulnerability (CVE-2016-2105)
MySQL CVE-2022-21412 Vulnerability (CVE-2022-21412)
Oracle Application Server CVE-2006-0282 Vulnerability (CVE-2006-0282)
Joomla Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-10238)