VulnerableCode Package Details - pkg:apk/alpine/libxml2@2.13.9-r0?arch=x86&distroversion=v3.21&reponame=main

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/libxml2@2.13.9-r0?arch=x86&distroversion=v3.21&reponame=main

purl	pkg:apk/alpine/libxml2@2.13.9-r0?arch=x86&distroversion=v3.21&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (5)

Vulnerability	Summary	Aliases
VCID-27jd-t23h-73f4	libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2	CVE-2025-6021
VCID-464a-typa-7qbu	libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling	CVE-2025-6170
VCID-74y5-vcxn-2ygr	libxml: Heap use after free (UAF) leads to Denial of service (DoS)	CVE-2025-49794
VCID-bz1e-1ypb-kkgg	libxml: Type confusion leads to Denial of service (DoS)	CVE-2025-49796
VCID-eqva-5dwq-d7cw	libxml: Null pointer dereference leads to Denial of service (DoS)	CVE-2025-49795

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-06T04:50:01.609182+00:00	Alpine Linux Importer	Fixing	VCID-27jd-t23h-73f4	https://secdb.alpinelinux.org/v3.21/main.json	38.1.0
2026-04-03T17:47:40.418586+00:00	Alpine Linux Importer	Fixing	VCID-464a-typa-7qbu	https://secdb.alpinelinux.org/v3.21/main.json	38.1.0
2026-04-01T19:23:27.486244+00:00	Alpine Linux Importer	Fixing	VCID-bz1e-1ypb-kkgg	https://secdb.alpinelinux.org/v3.21/main.json	38.0.0
2026-04-01T19:00:14.398015+00:00	Alpine Linux Importer	Fixing	VCID-eqva-5dwq-d7cw	https://secdb.alpinelinux.org/v3.21/main.json	38.0.0
2026-04-01T18:49:52.303506+00:00	Alpine Linux Importer	Fixing	VCID-74y5-vcxn-2ygr	https://secdb.alpinelinux.org/v3.21/main.json	38.0.0