A vulnerability has been found in libexpat up to 2.8.1 and classified as critical . This affects an unknown part. Performing a manipulation results in use after free. This vulnerability is reported as CVE-2026-56412 . The attack requires a local approach. No exploit exists. The affected component should be upgraded.