Search for packages
| purl | pkg:nuget/libxml2@2.9.10 |
| Tags | Ghost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-cj82-hgkb-aaak
Aliases: CVE-2019-20388 |
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. | There are no reported fixed by versions. |
|
VCID-rg4z-at9n-aaaa
Aliases: CVE-2020-24977 |
GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-09-17T22:46:36.616222+00:00 | GitLab Importer | Affected by | VCID-cj82-hgkb-aaak | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2019-20388.yml | 34.0.1 |
| 2024-09-17T22:46:36.179978+00:00 | GitLab Importer | Affected by | VCID-rg4z-at9n-aaaa | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2020-24977.yml | 34.0.1 |
| 2024-01-03T18:07:50.808135+00:00 | GitLab Importer | Affected by | VCID-cj82-hgkb-aaak | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2019-20388.yml | 34.0.0rc1 |
| 2024-01-03T18:07:50.416838+00:00 | GitLab Importer | Affected by | VCID-rg4z-at9n-aaaa | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2020-24977.yml | 34.0.0rc1 |