Search for packages
| purl | pkg:nuget/libxml2.vc140_xp.mt.static.x86@2.6.32 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-9hqf-12yh-bkc8
Aliases: CVE-2021-3518 GHSA-v4f8-2847-rwm7 |
Multiple vulnerabilities have been found in libxml2, the worst of which could result in a Denial of Service condition. | There are no reported fixed by versions. |
|
VCID-aasn-u7fd-8bhy
Aliases: CVE-2023-39615 |
Improper Restriction of Operations within the Bounds of a Memory Buffer Xmlsoft Libxml2 v2.11.0 was discovered to contain a global buffer overflow via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. | There are no reported fixed by versions. |
|
VCID-cbm2-cez4-bqgh
Aliases: CVE-2022-23308 |
Use After Free `valid.c` in libxml2 before 2.9.13 has a use-after-free of `ID` and `IDREF` attributes. | There are no reported fixed by versions. |
|
VCID-eb6k-ppfd-m7a3
Aliases: CVE-2022-40304 |
Multiple vulnerabilities have been found in libxml2, the worst of which could result in arbitrary code execution. | There are no reported fixed by versions. |
|
VCID-ek5d-m9pn-3fec
Aliases: CVE-2021-3517 GHSA-jw9f-hh49-cvp9 |
Multiple vulnerabilities have been found in libxml2, the worst of which could result in a Denial of Service condition. | There are no reported fixed by versions. |
|
VCID-rsvx-3f49-v3an
Aliases: CVE-2021-3541 |
Improper Restriction of Recursive Entity References in DTDs (XML Entity Expansion) A flaw was found in libxml2. By exploiting an exponential entity expansion attack its possible bypassing all existing protection mechanisms and lead to a denial of service. | There are no reported fixed by versions. |
|
VCID-s9r4-a3uz-4yhp
Aliases: CVE-2022-29824 |
Integer Overflow or Wraparound In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other software using libxml2's buffer functions, for example libxslt through 1.1.35, is affected as well. | There are no reported fixed by versions. |
|
VCID-udew-3gre-13hy
Aliases: CVE-2022-40303 |
Multiple vulnerabilities have been found in libxml2, the worst of which could result in arbitrary code execution. | There are no reported fixed by versions. |
|
VCID-vf7b-s3y3-sfhw
Aliases: CVE-2021-3537 GHSA-286v-pcf5-25rc |
Multiple vulnerabilities have been found in libxml2, the worst of which could result in a Denial of Service condition. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||