Unrated severityNVD Advisory· Published Oct 27, 2024· Updated Apr 30, 2025
CVE-2024-50602
CVE-2024-50602
Description
An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser.
Affected products
101- libexpat/libexpatdescription
- osv-coords100 versionspkg:apk/chainguard/python-3.10pkg:apk/chainguard/python-3.10-basepkg:apk/chainguard/python-3.10-base-devpkg:apk/chainguard/python-3.10-devpkg:apk/chainguard/python-3.10-docpkg:apk/chainguard/python-3.11pkg:apk/chainguard/python-3.11-basepkg:apk/chainguard/python-3.11-base-devpkg:apk/chainguard/python-3.11-devpkg:apk/chainguard/python-3.11-docpkg:apk/chainguard/python-3.12pkg:apk/chainguard/python-3.12-basepkg:apk/chainguard/python-3.12-base-devpkg:apk/chainguard/python-3.12-devpkg:apk/chainguard/python-3.12-docpkg:apk/chainguard/python-3.12-privileged-netbindservicepkg:apk/chainguard/python-3.12-tkpkg:apk/chainguard/python-3.13pkg:apk/chainguard/python-3.13-basepkg:apk/chainguard/python-3.13-base-devpkg:apk/chainguard/python-3.13-devpkg:apk/chainguard/python-3.13-docpkg:apk/chainguard/python-3.13-privileged-netbindservicepkg:apk/chainguard/python-3.13-tkpkg:apk/chainguard/python-3.9pkg:apk/chainguard/python-3.9-basepkg:apk/chainguard/python-3.9-base-devpkg:apk/chainguard/python-3.9-defaultpkg:apk/chainguard/python-3.9-devpkg:apk/chainguard/python-3.9-docpkg:apk/wolfi/python-3.10pkg:apk/wolfi/python-3.10-basepkg:apk/wolfi/python-3.10-base-devpkg:apk/wolfi/python-3.10-devpkg:apk/wolfi/python-3.10-docpkg:apk/wolfi/python-3.11pkg:apk/wolfi/python-3.11-basepkg:apk/wolfi/python-3.11-base-devpkg:apk/wolfi/python-3.11-devpkg:apk/wolfi/python-3.11-docpkg:apk/wolfi/python-3.12pkg:apk/wolfi/python-3.12-basepkg:apk/wolfi/python-3.12-base-devpkg:apk/wolfi/python-3.12-devpkg:apk/wolfi/python-3.12-docpkg:apk/wolfi/python-3.12-privileged-netbindservicepkg:apk/wolfi/python-3.12-tkpkg:apk/wolfi/python-3.13pkg:apk/wolfi/python-3.13-basepkg:apk/wolfi/python-3.13-base-devpkg:apk/wolfi/python-3.13-devpkg:apk/wolfi/python-3.13-docpkg:apk/wolfi/python-3.13-privileged-netbindservicepkg:apk/wolfi/python-3.13-tkpkg:bitnami/libpythonpkg:bitnami/pythonpkg:bitnami/python-minpkg:rpm/almalinux/expatpkg:rpm/almalinux/expat-develpkg:rpm/opensuse/audacity&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/expat&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/expat&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/expat&distro=openSUSE%20Leap%20Micro%205.5pkg:rpm/opensuse/expat&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/gama&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/mozjs115&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/mozjs115&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/mozjs128&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/mozjs52&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/mozjs60&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/mozjs78&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/mozjs78&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/mozjs78&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/paraview&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/python311-wxPython&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/python3-wxPython&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/python3-wxPython&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/xsd&distro=openSUSE%20Tumbleweedpkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/expat&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/expat&distro=SUSE%20Linux%20Micro%206.0pkg:rpm/suse/expat&distro=SUSE%20Linux%20Micro%206.1pkg:rpm/suse/mozjs115&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP6pkg:rpm/suse/mozjs52&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7pkg:rpm/suse/mozjs60&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/mozjs60&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/mozjs60&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/mozjs60&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/mozjs60&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP7pkg:rpm/suse/mozjs78&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/mozjs78&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/mozjs78&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6pkg:rpm/suse/python3-wxPython&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/python3-wxPython&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6
< 3.10.16-r0+ 99 more
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.9.21-r0
- (no CPE)range: < 3.9.21-r0
- (no CPE)range: < 3.9.21-r0
- (no CPE)range: < 3.9.21-r0
- (no CPE)range: < 3.9.21-r0
- (no CPE)range: < 3.9.21-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.10.16-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.11.11-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.12.8-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.13.1-r0
- (no CPE)range: < 3.9.21
- (no CPE)range: < 3.9.21
- (no CPE)range: < 3.9.21
- (no CPE)range: < 2.2.5-16.el8_10
- (no CPE)range: < 2.2.5-16.el8_10
- (no CPE)range: < 3.7.0-1.1
- (no CPE)range: < 2.4.4-150400.3.25.1
- (no CPE)range: < 2.4.4-150400.3.25.1
- (no CPE)range: < 2.4.4-150400.3.25.1
- (no CPE)range: < 2.6.4-1.1
- (no CPE)range: < 2.31-1.1
- (no CPE)range: < 115.4.0-150600.3.6.1
- (no CPE)range: < 115.15.0-3.1
- (no CPE)range: < 128.5.1-2.1
- (no CPE)range: < 52.6.0-150000.3.9.1
- (no CPE)range: < 60.9.0-150200.6.8.1
- (no CPE)range: < 78.15.0-150400.3.11.1
- (no CPE)range: < 78.15.0-150400.3.11.1
- (no CPE)range: < 78.15.0-7.1
- (no CPE)range: < 5.12.1-2.1
- (no CPE)range: < 4.1.1-150400.3.8.1
- (no CPE)range: < 4.1.1-150400.10.1
- (no CPE)range: < 4.1.1-150400.10.1
- (no CPE)range: < 4.1.0-3.1
- (no CPE)range: < 2.2.5-150000.3.33.1
- (no CPE)range: < 2.2.5-150000.3.33.1
- (no CPE)range: < 2.4.4-150400.3.25.1
- (no CPE)range: < 2.4.4-150400.3.25.1
- (no CPE)range: < 2.4.4-150400.3.25.1
- (no CPE)range: < 2.4.4-150400.3.25.1
- (no CPE)range: < 2.4.4-150400.3.25.1
- (no CPE)range: < 2.1.0-21.40.1
- (no CPE)range: < 2.5.0-4.1
- (no CPE)range: < 2.5.0-slfo.1.1_2.1
- (no CPE)range: < 115.4.0-150600.3.6.1
- (no CPE)range: < 52.6.0-150000.3.9.1
- (no CPE)range: < 60.9.0-150200.6.8.1
- (no CPE)range: < 60.9.0-150200.6.8.1
- (no CPE)range: < 60.9.0-150200.6.8.1
- (no CPE)range: < 60.9.0-150200.6.8.1
- (no CPE)range: < 60.9.0-150200.6.8.1
- (no CPE)range: < 78.15.0-150400.3.11.1
- (no CPE)range: < 78.15.0-150400.3.11.1
- (no CPE)range: < 78.15.0-150400.3.11.1
- (no CPE)range: < 4.1.1-150400.10.1
- (no CPE)range: < 4.1.1-150400.10.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.