An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-02-04T00:00:00

Updated: 2024-08-01T23:36:21.588Z

Reserved: 2024-02-04T00:00:00

Link: CVE-2024-25062

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-02-04T16:15:45.120

Modified: 2024-11-21T09:00:10.427

Link: CVE-2024-25062

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-02-04T00:00:00Z

Links: CVE-2024-25062 - Bugzilla