网安资讯详情 - SecLens 情报雷达

ALINUX3-SA-2026:0146

来源： alibaba_cloud_linux_advisory · 发布时间 2026-06-11 17:35 (UTC+08:00) · 抓取时间 2026-06-12 00:00 (UTC+08:00)

原文链接

摘要

Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-45186: In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input. **Solution**: 请您尽快将升级到修复后的版本。修复命令如下： yum update --advisory ALINUX3-SA-2026:0146 **Affected Products**: Alinux 3.2104, Alinux 3 Pro

正文

Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-45186: In libexpat before 2.8.1, the computational complexity of attribute name collision checks allows a denial of service via moderately sized crafted XML input.

标签

• cve:cve-2026-45186
• severity:important
• type:advisory
• vendor:alibaba

扩展字段

{
  "advisory_id": "ALINUX3-SA-2026:0146",
  "affected_products": [
    "Alinux 3.2104",
    "Alinux 3 Pro"
  ],
  "cve_ids": [
    "CVE-2026-45186"
  ],
  "raw_pub_date": "Thu, 11 Jun 2026 17:35:19 +0800",
  "solution": "请您尽快将升级到修复后的版本。修复命令如下：\nyum update --advisory ALINUX3-SA-2026:0146"
}