Search for packages
| purl | pkg:nuget/libxml2@2.6.16 |
| Tags | Ghost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 2.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2r5u-7wpy-4yf9
Aliases: CVE-2013-0338 |
Improper Restriction of Operations within the Bounds of a Memory Buffer libxml2 allows context-dependent attackers to cause a denial of service (CPU and memory consumption) via an XML file containing an entity declaration with long replacement text and many references to this entity, aka "internal entity expansion" with linear complexity. |
Affected by 48 other vulnerabilities. |
|
VCID-yj1q-xst4-y7eb
Aliases: CVE-2013-0339 |
Uncontrolled Resource Consumption libxml2 does not properly handle external entities expansion unless an application developer uses the xmlSAX2ResolveEntity or xmlSetExternalEntityLoader function, which allows remote attackers to cause a denial of service (resource consumption), send HTTP requests to intranet servers, or read arbitrary files via a crafted XML document, aka an XML External Entity (XXE) issue. |
Affected by 48 other vulnerabilities. |
|
VCID-yytk-k1y3-p3hp
Aliases: CVE-2012-0841 |
Uncontrolled Resource Consumption libxml2 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data. |
Affected by 48 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T12:46:51.418723+00:00 | GitLab Importer | Affected by | VCID-yj1q-xst4-y7eb | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2013-0339.yml | 38.0.0 |
| 2026-04-01T12:46:49.221758+00:00 | GitLab Importer | Affected by | VCID-2r5u-7wpy-4yf9 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2013-0338.yml | 38.0.0 |
| 2026-04-01T12:46:47.739418+00:00 | GitLab Importer | Affected by | VCID-yytk-k1y3-p3hp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2012-0841.yml | 38.0.0 |