CVE-2017-16931

2017-11-24T15:49:50
ID RH:CVE-2017-16931
Type redhatcve
Reporter redhat.com
Modified 2020-04-08T20:04:20

Description

parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name.