[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-5455-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":74,"duplicates":75,"related":76,"reserved_at":9,"published_at":92,"modified_at":93,"state":9,"summary":94,"references_raw":96,"kevs":164,"epss":9,"epss_history":165,"metrics":166,"affected":167},"USN-5455-1","libxmltok vulnerabilities\n\nTim Boddy, Gustavo Grieco and others discovered that Expat, that is\nintegrated in xmltok library, incorrectly handled certain files.\nAn attacker could possibly use these issues to cause a denial of\nservice, or possibly execute arbitrary code. These issues were only\naddressed in Ubuntu 16.04 ESM. (CVE-2012-1148, CVE-2015-1283,\nCVE-2016-0718, CVE-2016-4472, CVE-2018-20843, CVE-2019-15903,\nCVE-2021-46143, CVE-2022-22822, CVE-2022-22823, CVE-2022-22824,\nCVE-2022-22825, CVE-2022-22826, CVE-2022-22827)\n\nIt was discovered that Expat, that is integrated in xmltok library,\nincorrectly handled encoding validation of certain files. An attacker\ncould possibly use this issue to cause a denial of service, or\npossibly execute arbitrary code. (CVE-2022-25235)\n\nIt was discovered that Expat, that is integrated in xmltok library,\nincorrectly handled namespace URIs of certain files. An attacker\ncould possibly use this issue to cause a denial of service, or\npossibly execute arbitrary code. (CVE-2022-25236)\n\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72],{"_key":15},"CVE-2012-1148",{"_key":17},"CVE-2015-1283",{"_key":19},"CVE-2016-0718",{"_key":21},"CVE-2016-4472",{"_key":23},"CVE-2018-20843",{"_key":25},"CVE-2019-15903",{"_key":27},"CVE-2021-46143",{"_key":29},"CVE-2022-22822",{"_key":31},"CVE-2022-22823",{"_key":33},"CVE-2022-22824",{"_key":35},"CVE-2022-22825",{"_key":37},"CVE-2022-22826",{"_key":39},"CVE-2022-22827",{"_key":41},"CVE-2022-25235",{"_key":43},"CVE-2022-25236",{"_key":45},"UBUNTU-CVE-2012-1148",{"_key":47},"UBUNTU-CVE-2015-1283",{"_key":49},"UBUNTU-CVE-2016-0718",{"_key":51},"UBUNTU-CVE-2016-4472",{"_key":53},"UBUNTU-CVE-2018-20843",{"_key":55},"UBUNTU-CVE-2019-15903",{"_key":57},"UBUNTU-CVE-2021-46143",{"_key":59},"UBUNTU-CVE-2022-22822",{"_key":61},"UBUNTU-CVE-2022-22823",{"_key":63},"UBUNTU-CVE-2022-22824",{"_key":65},"UBUNTU-CVE-2022-22825",{"_key":67},"UBUNTU-CVE-2022-22826",{"_key":69},"UBUNTU-CVE-2022-22827",{"_key":71},"UBUNTU-CVE-2022-25235",{"_key":73},"UBUNTU-CVE-2022-25236",[],[],[77,78,79,80,81,82,83,84,85,86,87,88,89,90,91],{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":73},{"_key":71},{"_key":57},"2022-07-19T17:11:00Z","2026-05-20T16:03:13.905504998Z",{"cisa_kev":95,"cisa_ransomware":95,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[97,103,108,112,116,120,124,128,132,136,140,144,148,152,156,160],{"url":98,"sources":99,"tags":101},"https://ubuntu.com/security/notices/USN-5455-1",[100],"osv_ubuntu",[102],"Advisory",{"url":104,"sources":105,"tags":106},"https://ubuntu.com/security/CVE-2012-1148",[100],[107],"REPORT",{"url":109,"sources":110,"tags":111},"https://ubuntu.com/security/CVE-2015-1283",[100],[107],{"url":113,"sources":114,"tags":115},"https://ubuntu.com/security/CVE-2016-0718",[100],[107],{"url":117,"sources":118,"tags":119},"https://ubuntu.com/security/CVE-2016-4472",[100],[107],{"url":121,"sources":122,"tags":123},"https://ubuntu.com/security/CVE-2018-20843",[100],[107],{"url":125,"sources":126,"tags":127},"https://ubuntu.com/security/CVE-2019-15903",[100],[107],{"url":129,"sources":130,"tags":131},"https://ubuntu.com/security/CVE-2021-46143",[100],[107],{"url":133,"sources":134,"tags":135},"https://ubuntu.com/security/CVE-2022-22822",[100],[107],{"url":137,"sources":138,"tags":139},"https://ubuntu.com/security/CVE-2022-22823",[100],[107],{"url":141,"sources":142,"tags":143},"https://ubuntu.com/security/CVE-2022-22824",[100],[107],{"url":145,"sources":146,"tags":147},"https://ubuntu.com/security/CVE-2022-22825",[100],[107],{"url":149,"sources":150,"tags":151},"https://ubuntu.com/security/CVE-2022-22826",[100],[107],{"url":153,"sources":154,"tags":155},"https://ubuntu.com/security/CVE-2022-22827",[100],[107],{"url":157,"sources":158,"tags":159},"https://ubuntu.com/security/CVE-2022-25235",[100],[107],{"url":161,"sources":162,"tags":163},"https://ubuntu.com/security/CVE-2022-25236",[100],[107],[],[],[],[168],{"ecosystem":169,"name":170,"vendor":171,"product":170,"cpe_part":9,"purl_type":172,"purl_namespace":171,"purl_name":170,"source":9,"versions":173},"Ubuntu","libxmltok","ubuntu","deb",[174,180,183,186],{"version":175,"is_range":176,"range_type":177,"version_start":9,"version_start_type":9,"version_end":178,"version_end_type":179,"fixed_in":9},"lt1_2_3ubuntu0_16_04_1~esm2",true,"ecosystem","1.2-3ubuntu0.16.04.1~esm2","excluding",{"version":181,"is_range":176,"range_type":177,"version_start":9,"version_start_type":9,"version_end":182,"version_end_type":179,"fixed_in":9},"lt1_2_4ubuntu0_18_04_1~esm1","1.2-4ubuntu0.18.04.1~esm1",{"version":184,"is_range":176,"range_type":177,"version_start":9,"version_start_type":9,"version_end":185,"version_end_type":179,"fixed_in":9},"lt1_2_4ubuntu0_20_04_1~esm1","1.2-4ubuntu0.20.04.1~esm1",{"version":187,"is_range":176,"range_type":177,"version_start":9,"version_start_type":9,"version_end":188,"version_end_type":179,"fixed_in":9},"lt1_2_4ubuntu0_22_04_1~esm1","1.2-4ubuntu0.22.04.1~esm1"]