VulnerableCode Package Details - pkg:nuget/libxml2@2.9.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-rqpp-ad86-aaad Aliases: CVE-2013-1969	Use After Free Multiple use-after-free vulnerabilities in libxml2 and possibly other versions might allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to the (1) htmlParseChunk and (2) xmldecl_done functions, as demonstrated by a buffer overflow in the xmlBufGetInputBase function.	There are no reported fixed by versions.
VCID-ydvn-fhb3-aaah Aliases: CVE-2012-2871	Uncontrolled Resource Consumption libxml2, as used in Google Chrome, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h.	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-rqpp-ad86-aaad
Aliases:
CVE-2013-1969

Use After Free Multiple use-after-free vulnerabilities in libxml2 and possibly other versions might allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to the (1) htmlParseChunk and (2) xmldecl_done functions, as demonstrated by a buffer overflow in the xmlBufGetInputBase function.

There are no reported fixed by versions.

VCID-ydvn-fhb3-aaah
Aliases:
CVE-2012-2871

Uncontrolled Resource Consumption libxml2, as used in Google Chrome, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h.

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2024-09-17T22:46:36.347769+00:00	GitLab Importer	Affected by	VCID-rqpp-ad86-aaad	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2013-1969.yml	34.0.1
2024-09-17T22:46:35.672718+00:00	GitLab Importer	Affected by	VCID-ydvn-fhb3-aaah	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2012-2871.yml	34.0.1
2024-01-03T18:07:50.561485+00:00	GitLab Importer	Affected by	VCID-rqpp-ad86-aaad	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2013-1969.yml	34.0.0rc1
2024-01-03T18:07:49.951375+00:00	GitLab Importer	Affected by	VCID-ydvn-fhb3-aaah	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2012-2871.yml	34.0.0rc1