Описание
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libxml2 | fixed | 2.9.10+dfsg-2.1 | package | |
| libxml2 | fixed | 2.9.4+dfsg1-7+deb10u1 | buster | package |
| libxml2 | no-dsa | jessie | package |
Примечания
https://gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c8907645d2e155f0d89d4d9895ac5112b5
EPSS
Процентиль: 45%
0.00228
Низкий
Связанные уязвимости
CVSS3: 7.5
ubuntu
около 6 лет назад
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
CVSS3: 7.5
redhat
около 6 лет назад
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
CVSS3: 7.5
nvd
около 6 лет назад
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
CVSS3: 7.5
msrc
больше 5 лет назад
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
CVSS3: 7.5
github
почти 6 лет назад
libxml as used in Nokogiri has an infinite loop in a certain end-of-file situation
EPSS
Процентиль: 45%
0.00228
Низкий