Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/expat@2.7.5-1
purl pkg:deb/debian/expat@2.7.5-1
Tags Ghost
Next non-vulnerable version 2.8.0-1
Latest non-vulnerable version 2.8.0-1
Risk 3.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-292c-g8n3-cyfn
Aliases:
CVE-2026-41080
libexpat before 2.7.6 uses insufficient entropy, and thus hash flooding can occur via a crafted XML document.
2.8.0-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-27T00:46:07.811090+00:00 Debian Importer Affected by VCID-292c-g8n3-cyfn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:58:13.195224+00:00 Debian Importer Fixing VCID-jqe4-44gw-wbhu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:36:00.511494+00:00 Debian Importer Fixing VCID-nktd-7gph-kkb1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:30:38.545934+00:00 Debian Importer Fixing VCID-v41j-xj8s-m7ar https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:06:02.240762+00:00 Debian Importer Fixing VCID-77y6-jskt-qucb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:57:40.875930+00:00 Debian Importer Fixing VCID-yw8s-ezc7-6ub8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:06:03.825356+00:00 Debian Importer Fixing VCID-utz3-ytaf-cbht https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:54:35.442896+00:00 Debian Importer Fixing VCID-jqe4-44gw-wbhu https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:54:29.391188+00:00 Debian Importer Fixing VCID-nktd-7gph-kkb1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:50:43.029499+00:00 Debian Importer Fixing VCID-v41j-xj8s-m7ar https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:32:22.139532+00:00 Debian Importer Fixing VCID-77y6-jskt-qucb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:40:19.832589+00:00 Debian Importer Fixing VCID-yw8s-ezc7-6ub8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:05:51.531928+00:00 Debian Importer Fixing VCID-utz3-ytaf-cbht https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-02T17:16:48.679559+00:00 Debian Importer Fixing VCID-jqe4-44gw-wbhu https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:12:07.656833+00:00 Debian Importer Fixing VCID-nktd-7gph-kkb1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:11:55.099011+00:00 Debian Importer Fixing VCID-v41j-xj8s-m7ar https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:10:24.293094+00:00 Debian Importer Fixing VCID-77y6-jskt-qucb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:06:34.611339+00:00 Debian Importer Fixing VCID-yw8s-ezc7-6ub8 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:03:49.807679+00:00 Debian Importer Fixing VCID-utz3-ytaf-cbht https://security-tracker.debian.org/tracker/data/json 38.1.0