In libexpat before 2.7.4, XML_ExternalEntityParserCreate does not copy unknown encoding handler user data.
The product dereferences a pointer that it expects to be valid but is NULL.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libexpat | Libexpat_project | * | 2.7.4 (excluding) |
| Expat | Ubuntu | esm-infra-legacy/trusty | * |
| Expat | Ubuntu | esm-infra/bionic | * |
| Expat | Ubuntu | esm-infra/focal | * |
| Expat | Ubuntu | esm-infra/xenial | * |
| Expat | Ubuntu | jammy | * |
| Expat | Ubuntu | noble | * |
| Expat | Ubuntu | questing | * |
| Expat | Ubuntu | upstream | * |
| Libxmltok | Ubuntu | esm-apps/bionic | * |
| Libxmltok | Ubuntu | esm-apps/focal | * |
| Libxmltok | Ubuntu | esm-apps/jammy | * |
| Libxmltok | Ubuntu | esm-apps/noble | * |
| Libxmltok | Ubuntu | esm-apps/xenial | * |
| Libxmltok | Ubuntu | jammy | * |
| Libxmltok | Ubuntu | noble | * |
| Matanza | Ubuntu | devel | * |
| Matanza | Ubuntu | esm-apps/focal | * |
| Matanza | Ubuntu | esm-apps/jammy | * |
| Matanza | Ubuntu | esm-apps/noble | * |
| Matanza | Ubuntu | jammy | * |
| Matanza | Ubuntu | noble | * |
| Matanza | Ubuntu | questing | * |