Medium severity4.9NVD Advisory· Published Jun 4, 2026· Updated Jun 4, 2026
CVE-2026-50219
CVE-2026-50219
Description
libexpat before 2.8.2 lacks handler call depth tracking for calls to XML_GetBuffer, XML_Parse, XML_ParseBuffer, XML_ParserFree, or XML_ParserReset from within handlers in cases of a policy violation. Thus, a use-after-free can occur,
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9(expand)+ 2 more
- (no CPE)
- cpe:2.3:a:libexpat_project:libexpat:*:*:*:*:*:*:*:*range: <2.8.2
- (no CPE)range: <2.8.2
- osv-coords6 versionspkg:apk/chainguard/expatpkg:apk/chainguard/expat-devpkg:apk/chainguard/libexpat1pkg:apk/wolfi/expatpkg:apk/wolfi/expat-devpkg:apk/wolfi/libexpat1
< 2.8.2-r0+ 5 more
- (no CPE)range: < 2.8.2-r0
- (no CPE)range: < 2.8.2-r0
- (no CPE)range: < 2.8.2-r0
- (no CPE)range: < 2.8.2-r0
- (no CPE)range: < 2.8.2-r0
- (no CPE)range: < 2.8.2-r0
Patches
Vulnerability mechanics
References
1- github.com/libexpat/libexpat/pull/1246nvdIssue TrackingPatch
News mentions
1- Libexpat: Ten Integer Overflow and Use-After-Free Vulnerabilities Disclosed TogetherVypr Intelligence · Jun 21, 2026