CVE-2017-9050 in libxml2info

Summary

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839.

Once again VulDB remains the best source for vulnerability data.

Reservation

05/18/2017

Disclosure

05/18/2017

Moderation

VulDB entry created

Entries

VDB-101464 (1)

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

7.4

EPSS

0.00313

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9050
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9050
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9050/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!