Critical Expat Vulnerabilities Affect Multiple Ubuntu Releases

Critical Expat Vulnerabilities Affect Multiple Ubuntu Releases

First seen 11 Feb 2026, 20:16 UTC UbuntuLinuxsecurity 89% similarity 28.7

Article Content

Browse articles
ThreatCluster

Multiple vulnerabilities were discovered in the Expat XML parsing library, affecting several Ubuntu versions including 25.10, 22.04 LTS, and older releases. Key issues include improper handling of memory and parser initialization, which could lead to denial of service or arbitrary code execution. The vulnerabilities are tracked under CVEs-2025-59375, CVE-2026-24515, and CVE-2026-25210.

ThreatCluster AI

Timeline

2025-09-15
CVE-2025-59375 published
2026-01-23
CVE-2026-24515 published
2026-01-30
CVE-2026-25210 published
2026-02-10
USN-8022-1 released addressing Expat vulnerabilities
2026-02-11
USN-8023-1 released addressing xmltok library vulnerabilities

Community

Browse all →