logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-3518

Description

There's a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, integrity, and availability.


Affected Software


CPE Name Name Version
xmlsoft:libxml2 xmlsoft libxml2 2.9.11
debian:debian_linux debian debian linux 9.0
redhat:jboss_core_services redhat jboss core services -
redhat:enterprise_linux redhat enterprise linux 8.0
fedoraproject:fedora fedoraproject fedora 33
fedoraproject:fedora fedoraproject fedora 34
netapp:ontap_select_deploy_administration_utility netapp ontap select deploy administration utility -
netapp:clustered_data_ontap netapp clustered data ontap -
netapp:clustered_data_ontap_antivirus_connector netapp clustered data ontap antivirus connector -
netapp:snapdrive netapp snapdrive -
netapp:active_iq_unified_manager netapp active iq unified manager -
netapp:manageability_software_development_kit netapp manageability software development kit -
netapp:hci_h410c_firmware netapp hci h410c firmware -
oracle:peoplesoft_enterprise_peopletools oracle peoplesoft enterprise peopletools 8.58
oracle:enterprise_manager_base_platform oracle enterprise manager base platform 13.4.0.0
oracle:enterprise_manager_ops_center oracle enterprise manager ops center 12.4.0.0
oracle:enterprise_manager_base_platform oracle enterprise manager base platform 13.5.0.0
oracle:mysql_workbench oracle mysql workbench 8.0.26
oracle:real_user_experience_insight oracle real user experience insight 13.4.1.0
oracle:real_user_experience_insight oracle real user experience insight 13.5.1.0
oracle:communications_cloud_native_core_network_function_cloud_native_environment oracle communications cloud native core network function cloud native environment 1.10.0

Related