xml dos

A recently disclosed weakness in the Expat XML parser (libexpat) — tracked as CVE-2025-66382 — can be triggered by a specially crafted XML file of roughly 2 MiB and causes dozens of seconds of CPU time in vulnerable library versions up through Expat 2.7.3, creating an algorithmic-complexity...