Project

General

Profile

Bug #6852

Bug #6851: libxml2: null pointer dereference when parsing a xml file using recover mode (CVE-2017-5969)

[3.6] libxml2: null pointer dereference when parsing a xml file using recover mode (CVE-2017-5969)

Added by Alicha CH about 2 years ago. Updated almost 2 years ago.

Status:
Closed
Priority:
Normal
Category:
Security
Target version:
Start date:
02/13/2017
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

CVE-2017-5969: Null pointer derefence parsing xml file using libxml

Upstream bug report:

https://bugzilla.gnome.org/show_bug.cgi?id=778519

Reference:

http://openwall.com/lists/oss-security/2017/02/13/1

Associated revisions

Revision 4e7a6efe (diff)
Added by Natanael Copa almost 2 years ago

main/libxml2: fix for CVE-2017-5969

fixes #6852

History

#1 Updated by Sergei Lukin about 2 years ago

At the moment (2017-02-14) patch is not available yet
https://security-tracker.debian.org/tracker/CVE-2017-5969

#2 Updated by Natanael Copa almost 2 years ago

  • Target version changed from 3.6.0 to 3.6.1

#3 Updated by Natanael Copa almost 2 years ago

  • Target version changed from 3.6.1 to 3.6.2

#4 Updated by Natanael Copa almost 2 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#5 Updated by Alicha CH almost 2 years ago

  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF