Search for packages
| purl | pkg:alpm/archlinux/libxml2@2.9.4%2B4%2Bg3169602-1 |
| Next non-vulnerable version | 2.9.4+12+ge905f08-1 |
| Latest non-vulnerable version | 2.9.14-1 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-3fah-6hhr-pbdw
Aliases: CVE-2016-4658 GHSA-fr52-4hqw-p27f |
Nokogiri gem contains several vulnerabilities in libxml2 and libxslt Nokogiri version 1.7.1 has been released, pulling in several upstream patches to the vendored libxml2 to address the following CVEs: CVE-2016-4658 CVSS v3 Base Score: 9.8 (Critical) libxml2 in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document. CVE-2016-5131 CVSS v3 Base Score: 8.8 (HIGH) Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the XPointer range-to function. |
Affected by 0 other vulnerabilities. |
|
VCID-g4x2-pz9m-fqcd
Aliases: CVE-2016-5131 |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-31T11:35:51.814706+00:00 | Arch Linux Importer | Affected by | VCID-3fah-6hhr-pbdw | https://security.archlinux.org/AVG-56 | 37.0.0 |
| 2025-07-31T11:35:51.785307+00:00 | Arch Linux Importer | Affected by | VCID-g4x2-pz9m-fqcd | https://security.archlinux.org/AVG-56 | 37.0.0 |