openSUSE mozjs78 Important NULL Pointer Denial of Service Vuln 2026-1956
Source: Linuxsecurity
Published:
<p>## This update for mozjs78 fixes the following issues * CVE-2026-32776: libexpat: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value (bsc#1259728). * CVE-2026-32777: libexpat: denial of service due to infinite loop in DTD content parsing