{ "document": { "aggregate_severity": { "text": "Medium" }, "category": "csaf_vex", "csaf_version": "2.0", "distribution": { "text": "TuxCare License Agreement", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://tuxcare.com/contact/", "name": "TuxCare", "namespace": "https://tuxcare.com/" }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://security.tuxcare.com/csaf/v2/els_os/ubuntu20.04els/vex/2026/cve-2026-32778-els_os-ubuntu20_04els.json" } ], "tracking": { "current_release_date": "2026-03-20T10:00:45Z", "generator": { "date": "2026-03-20T10:00:45Z", "engine": { "name": "pyCSAF" } }, "id": "CVE-2026-32778-ELS_OS-UBUNTU20.04ELS", "initial_release_date": "2026-03-16T14:19:00Z", "revision_history": [ { "date": "2026-03-16T14:19:00Z", "number": "1", "summary": "Initial version" }, { "date": "2026-03-19T17:33:12Z", "number": "2", "summary": "Official Publication" }, { "date": "2026-03-20T10:00:45Z", "number": "3", "summary": "Update document" } ], "status": "final", "version": "3" }, "title": "Security update on CVE-2026-32778" }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Ubuntu 20.04", "product": { "name": "Ubuntu 20.04", "product_id": "Ubuntu-20", "product_identification_helper": { "cpe": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*" } } } ], "category": "product_family", "name": "Ubuntu" }, { "branches": [ { "category": "product_version", "name": "libexpat1-0:2.2.9-1ubuntu0.8.amd64", "product": { "name": "libexpat1-0:2.2.9-1ubuntu0.8.amd64", "product_id": "libexpat1-0:2.2.9-1ubuntu0.8.amd64", "product_identification_helper": { "purl": "pkg:deb/ubuntu/libexpat1@2.2.9-1ubuntu0.8?arch=amd64" } } }, { "category": "product_version", "name": "libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64", "product": { "name": "libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64", "product_id": "libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64", "product_identification_helper": { "purl": "pkg:deb/ubuntu/libexpat1-dev@2.2.9-1ubuntu0.8?arch=amd64" } } }, { "category": "product_version", "name": "expat-0:2.2.9-1ubuntu0.8.amd64", "product": { "name": "expat-0:2.2.9-1ubuntu0.8.amd64", "product_id": "expat-0:2.2.9-1ubuntu0.8.amd64", "product_identification_helper": { "purl": "pkg:deb/ubuntu/expat@2.2.9-1ubuntu0.8?arch=amd64" } } } ], "category": "architecture", "name": "amd64" } ], "category": "vendor", "name": "Canonical Ltd." }, { "branches": [ { "branches": [ { "category": "product_version", "name": "libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product": { "name": "libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product_id": "libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/libexpat1@2.2.9-1ubuntu0.8%2Btuxcare.els1?arch=amd64" } } }, { "category": "product_version", "name": "libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product": { "name": "libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product_id": "libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/libexpat1-dev@2.2.9-1ubuntu0.8%2Btuxcare.els1?arch=amd64" } } }, { "category": "product_version", "name": "expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product": { "name": "expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product_id": "expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "product_identification_helper": { "purl": "pkg:deb/tuxcare/expat@2.2.9-1ubuntu0.8%2Btuxcare.els1?arch=amd64" } } } ], "category": "architecture", "name": "amd64" } ], "category": "vendor", "name": "TuxCare" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64" }, "product_reference": "libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64" }, "product_reference": "libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64" }, "product_reference": "expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "libexpat1-0:2.2.9-1ubuntu0.8.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:libexpat1-0:2.2.9-1ubuntu0.8.amd64" }, "product_reference": "libexpat1-0:2.2.9-1ubuntu0.8.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64" }, "product_reference": "libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64", "relates_to_product_reference": "Ubuntu-20" }, { "category": "default_component_of", "full_product_name": { "name": "expat-0:2.2.9-1ubuntu0.8.amd64 as a component of Ubuntu 20.04", "product_id": "Ubuntu-20:expat-0:2.2.9-1ubuntu0.8.amd64" }, "product_reference": "expat-0:2.2.9-1ubuntu0.8.amd64", "relates_to_product_reference": "Ubuntu-20" } ] }, "vulnerabilities": [ { "cve": "CVE-2026-32778", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "description", "text": "libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after an earlier ouf-of-memory condition.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "known_affected": [ "Ubuntu-20:expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:expat-0:2.2.9-1ubuntu0.8.amd64", "Ubuntu-20:libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:libexpat1-0:2.2.9-1ubuntu0.8.amd64", "Ubuntu-20:libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-32778" }, { "category": "external", "summary": "https://github.com/libexpat/libexpat/pull/1159", "url": "https://github.com/libexpat/libexpat/pull/1159" }, { "category": "external", "summary": "https://github.com/libexpat/libexpat/pull/1163", "url": "https://github.com/libexpat/libexpat/pull/1163" } ], "release_date": "2026-03-16T14:19:00Z", "remediations": [ { "category": "no_fix_planned", "details": "This is a NULL pointer dereference that only occurs on a retry after the process has already hit an out-of-memory condition, making reliable triggering contingent on first forcing OOM—an abnormal and hard-to-control precondition. The vulnerability is local-only, requires at least low privileges, and has no confidentiality or integrity impact, so the practical effect is limited to crashing the specific XML‑parsing process rather than enabling code execution or privilege escalation. Given these constrained prerequisites and the DoS‑only outcome, it can be safely deprioritized in managed server and VM environments.", "product_ids": [ "Ubuntu-20:expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:expat-0:2.2.9-1ubuntu0.8.amd64", "Ubuntu-20:libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:libexpat1-0:2.2.9-1ubuntu0.8.amd64", "Ubuntu-20:libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "Ubuntu-20:expat-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:expat-0:2.2.9-1ubuntu0.8.amd64", "Ubuntu-20:libexpat1-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:libexpat1-0:2.2.9-1ubuntu0.8.amd64", "Ubuntu-20:libexpat1-dev-0:2.2.9-1ubuntu0.8+tuxcare.els1.amd64", "Ubuntu-20:libexpat1-dev-0:2.2.9-1ubuntu0.8.amd64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] } ] }