advisories: add advisories for libexpat

Signed-off-by: Piyush Jena <[email protected]>

Author: piyush-jena

advisories/staging/BRSA-su1b2sqpmalu.toml

@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-su1b2sqpmalu"
+title = "libexpat CVE-2024-8176"
+cve = "CVE-2024-8176"
+severity = "high"
+description = "A flaw in libexpat can cause uncontrolled recursion leading to stack overflow and crash. This could lead to denial of service and exploitable memory corruption."
+
+[[advisory.products]]
+package-name = "libexpat"
+patched-version = "2.7.3"
+patched-epoch = "1"
+
+[updateinfo]
+author = "jepiyush"
+issue-date = 2025-10-18T00:25:07Z
+arches = ["x86_64", "aarch64"]
+version = "staging"

advisories/staging/BRSA-xnqgyicuhazt.toml

@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-xnqgyicuhazt"
+title = "libexpat CVE-2025-59375"
+cve = "CVE-2025-59375"
+severity = "high"
+description = "A flaw in libexpat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing"
+
+[[advisory.products]]
+package-name = "libexpat"
+patched-version = "2.7.3"
+patched-epoch = "1"
+
+[updateinfo]
+author = "jepiyush"
+issue-date = 2025-10-18T00:24:57Z
+arches = ["x86_64", "aarch64"]
+version = "staging"