mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
837 B
837 B
CVE-2021-3516
Description
There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability.
POC
Reference
- https://gitlab.gnome.org/GNOME/libxml2/-/issues/230
- https://www.oracle.com/security-alerts/cpujan2022.html