Launchpad.net

CVE 2021-46143

In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize.

See the CVE page on Mitre.org for more details.