ALPINE-CVE-2026-32776
- Source
- https://security.alpinelinux.org/vuln/CVE-2026-32776
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2026-32776.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALPINE-CVE-2026-32776
- Upstream
- Published
- 2026-03-16T14:19:44.600Z
- Modified
- 2026-06-09T21:31:28.443167777Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content.
- References
Affected packages
Alpine:v3.20 / expat
Package
- Name
- expat
- Purl
- pkg:apk/alpine/expat?arch=source
Alpine:v3.21 / expat
Package
- Name
- expat
- Purl
- pkg:apk/alpine/expat?arch=source
Alpine:v3.22 / expat
Package
- Name
- expat
- Purl
- pkg:apk/alpine/expat?arch=source
Alpine:v3.23 / expat
Package
- Name
- expat
- Purl
- pkg:apk/alpine/expat?arch=source