Julia Security
Advisories
Packages
About
GitHub
/
Search
Esc
Search is not available in local development.
Run
npx pagefind --site __site
after building to enable it.
JLSEC-2026-382
JLSEC-2026-382
Source
Edit
History
OSV
JSON (OSV)
JLSEC Published
May 1, 2026
Modified
May 1, 2026
Affected Packages
Expat_jll
< 2.7.5+0
Aliases / Upstream
CVE-2026-32777
libexpat before 2.7.5 allows an infinite loop while parsing DTD content.
References
https://github.com/libexpat/libexpat/issues/1161
https://github.com/libexpat/libexpat/pull/1159
https://github.com/libexpat/libexpat/pull/1162
https://issues.oss-fuzz.com/issues/486993411