libexpat before 2.8.2 has an integer overflow in XMLParseBuffer because it lacked a check that was present in XMLParse.
"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2026-56406.json"