Libxml2 - (bulletinoct2017)ID: oval:org.secpod.oval:def:2101452 | Date: (C)2020-01-18 (M)2024-04-17 |
Class: PATCH | Family: unix |
** DISPUTED ** libxml2 2.9.4, when used in recover mode, allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted XML document. NOTE: The maintainer states "I would disagree of a CVE with the Recover parsing option which should only be used for manual recovery at least for XML parser."
Product: |
library/python/libxml2-34 |
library/python/libxml2-27 |
library/libxml2 |