CVE-2026-56131 - Expat XML_ResumeParser Use-After-Free Vulnerability
Summary
This entry details a vulnerability found in the target system. The exploit was published on 2026-06-19 and has garnered 59 views from the community. It is classified under the local category. Users are advised to review the source code in the Detail tab for technical specifics.
Zafiyet Ozet Bilgileri
Zafiyet Detayi (Turkce)
2.8.2'den önceki libexpat, bir politika ihlali durumunda işleyicilerin içinden XML_ResumeParser'a yapılan çağrılar için işleyici çağrı derinliği takibinden yoksundur. Böylece, serbest kullanımdan sonra bir kullanım meydana gelebilir (CVE-2026-50219 durumuna benzer).
Orijinal Aciklama (Ingilizce)
libexpat before 2.8.2 lacks handler call depth tracking for calls to XML_ResumeParser from within handlers in cases of a policy violation. Thus, a use-after-free can occur (similar to the CVE-2026-50219 situation).
Download Source
Download the exploit source code for offline analysis and testing.
Download NowFile Size: ~2.5 KB | MD5: a6496489b145442ba1e19ee9846b84b4
No gallery images available.
No discussion yet.