There's a flaw in libxml2 in versions prior to 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, integrity, and availability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xmlsoft libxml2 |
||
debian debian linux 9.0 |
||
redhat jboss core services - |
||
redhat enterprise linux 8.0 |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |
||
netapp ontap select deploy administration utility - |
||
netapp clustered data ontap - |
||
netapp clustered data ontap antivirus connector - |
||
netapp snapdrive - |
||
netapp active iq unified manager - |
||
netapp manageability software development kit - |
||
netapp hci_h410c_firmware - |
||
oracle peoplesoft enterprise peopletools 8.58 |
||
oracle enterprise manager base platform 13.4.0.0 |
||
oracle enterprise manager ops center 12.4.0.0 |
||
oracle enterprise manager base platform 13.5.0.0 |
||
oracle mysql workbench |
||
oracle real user experience insight 13.4.1.0 |
||
oracle real user experience insight 13.5.1.0 |
||
oracle communications cloud native core network function cloud native environment 1.10.0 |