libexpat before 2.8.0 uses insufficient entropy, and thus hash flooding can occur via a crafted XML document.Referenceshttps://github.com/libexpat/libexpat/pull/1183https://github.com/libexpat/libexpat/issues/47https://www.openwall.com/lists/oss-security/2026/04/26/1https://blog.hartwork.org/posts/expat-2-8-0-released/
