GNOME/libxml2

GNOME/libxml2

gitlab.gnome.org

Releases240

Frequency1 month 1 week

Last Release about 2 months ago

Stars747

Read-only mirror of https://gitlab.gnome.org/GNOME/libxml2

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-23308 ↗	Feb 26, 2022Saturday, 26 February 2022, 05:15	7.5 HIGH	4.3 MEDIUM
valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.
CVE-2017-16931 ↗	Nov 23, 2017Thursday, 23 November 2017, 21:29	—	7.5 HIGH
parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name.
CVE-2017-16932 ↗	Nov 23, 2017Thursday, 23 November 2017, 21:29	7.5 HIGH	5 MEDIUM
parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.