Out-of-Bounds The advisory has been revoked - it doesn't affect any version of package matanza  (opens in a new tab)


Threat Intelligence

EPSS
1.55% (81st percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-UBUNTU2204-MATANZA-2801433
  • published26 May 2016
  • disclosed26 May 2016

Introduced: 26 May 2016

CVE-2016-0718  (opens in a new tab)
CWE-119  (opens in a new tab)

Amendment

The Ubuntu security team deemed this advisory irrelevant for Ubuntu:22.04.

NVD Description

Note: Versions mentioned in the description apply only to the upstream matanza package and not the matanza package as distributed by Ubuntu.

Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.

References