CVE-2022-40674: libexpat before 2.4.9 has a use-after-free in xmlparse.cnvd.nist.gov1 pointyaddaor4 years ago