VulnerableCode Package Details - pkg:apk/alpine/libxml2@2.13.9-r0?arch=s390x&distroversion=edge&reponame=main

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/libxml2@2.13.9-r0?arch=s390x&distroversion=edge&reponame=main

purl	pkg:apk/alpine/libxml2@2.13.9-r0?arch=s390x&distroversion=edge&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (5)

Vulnerability	Summary	Aliases
VCID-27jd-t23h-73f4	libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2	CVE-2025-6021
VCID-464a-typa-7qbu	libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling	CVE-2025-6170
VCID-74y5-vcxn-2ygr	libxml: Heap use after free (UAF) leads to Denial of service (DoS)	CVE-2025-49794
VCID-bz1e-1ypb-kkgg	libxml: Type confusion leads to Denial of service (DoS)	CVE-2025-49796
VCID-eqva-5dwq-d7cw	libxml: Null pointer dereference leads to Denial of service (DoS)	CVE-2025-49795

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-08T06:24:23.848553+00:00	Alpine Linux Importer	Fixing	VCID-eqva-5dwq-d7cw	https://secdb.alpinelinux.org/edge/main.json	38.1.0
2026-04-06T04:53:37.044662+00:00	Alpine Linux Importer	Fixing	VCID-464a-typa-7qbu	https://secdb.alpinelinux.org/edge/main.json	38.1.0
2026-04-06T04:45:22.855276+00:00	Alpine Linux Importer	Fixing	VCID-27jd-t23h-73f4	https://secdb.alpinelinux.org/edge/main.json	38.1.0
2026-04-01T19:28:26.065437+00:00	Alpine Linux Importer	Fixing	VCID-74y5-vcxn-2ygr	https://secdb.alpinelinux.org/edge/main.json	38.0.0
2026-04-01T18:49:15.390308+00:00	Alpine Linux Importer	Fixing	VCID-bz1e-1ypb-kkgg	https://secdb.alpinelinux.org/edge/main.json	38.0.0