3 matches found
CVE-2021-4249
A vulnerability was found in xml-conduit. It has been classified as problematic. Affected is an unknown function of the file xml-conduit/src/Text/XML/Stream/Parse.hs of the component DOCTYPE Entity Expansion Handler. The manipulation leads to infinite loop. It is possible to launch the attack...
CVE-2021-4249
CVE-2021-4249 affects the Haskell library xml-conduit. The issue lies in the DOCTYPE Entity Expansion Handler within xml-conduit/src/Text/XML/Stream/Parse.hs, where manipulation can cause an infinite loop. It is possible to trigger the issue remotely. Public details consistently recommend upgradi...
CVE-2021-4249 xml-conduit DOCTYPE Entity Expansion Parse.hs infinite loop
A vulnerability was found in xml-conduit. It has been classified as problematic. Affected is an unknown function of the file xml-conduit/src/Text/XML/Stream/Parse.hs of the component DOCTYPE Entity Expansion Handler. The manipulation leads to infinite loop. It is possible to launch the attack...