An issue exists in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd(), while parsing a crafted XML file, performs incorrect memory handling, leading to a NULL pointer dereference while running strcmp() on a NULL pointer.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ezxml project ezxml 0.8.6 |
||
debian debian linux 9.0 |