CVE-2022-22823: expat: Integer overflow in build_model in xmlparse.c

Severity: Critical

CVSS Score: 9.8

build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.