14 lines
867 B
JSON
14 lines
867 B
JSON
{
|
|
"id": "openEuler-SA-2024-1183",
|
|
"url": "https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1183",
|
|
"title": "An update for libxml2 is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS,openEuler-22.03-LTS-SP1,openEuler-22.03-LTS-SP2 and openEuler-22.03-LTS-SP3",
|
|
"severity": "High",
|
|
"description": "Library providing XML and HTML support.\r\n\r\nSecurity Fix(es):\r\n\r\nAn issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.(CVE-2024-25062)",
|
|
"cves": [
|
|
{
|
|
"id": "CVE-2024-25062",
|
|
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25062",
|
|
"severity": "High"
|
|
}
|
|
]
|
|
} |