Lucene search
K

6 matches found

OSV
OSV
added 2025/07/24 5:24 p.m.5 views

CLSA-2025-1753377886 libxml2: Fix of 2 CVEs

CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...

9.1CVSS7AI score0.01437EPSS
Exploits0References1
OSV
OSV
added 2025/07/24 4:28 p.m.6 views

CLSA-2025-1753374522 libxml2: Fix of 2 CVEs

CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...

9.1CVSS7AI score0.01437EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.7 views

The vulnerability of the xmlSchematronFormatReport() function in the Schematron Schema Report component of the libxml2 library allows a attacker to trigger a service failure.

The vulnerability of the xmlSchematronFormatReport function in the Schematron Schema Report component of the libxml2 library is related to the use of a null pointer during the processing of XPath expressions. Exploiting this vulnerability could allow an attacker to cause service failures by sendi...

7.8CVSS7.1AI score0.00475EPSS
Exploits0References6Affected Software3
OSV
OSV
added 2025/07/23 7:29 p.m.9 views

CLSA-2025-1753298958 libxml2: Fix of 2 CVEs

CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...

9.1CVSS6.8AI score0.01437EPSS
Exploits0References1
OSV
OSV
added 2025/07/23 7:20 p.m.6 views

CLSA-2025-1753298447 libxml2: Fix of 2 CVEs

CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...

9.1CVSS7AI score0.01437EPSS
Exploits0References1
Snyk
Snyk
added 2025/06/11 12:0 a.m.1 views

Out-of-bounds Read

Overview nokogiri is a gem for parsing HTML, XML, SAX, and Reader. Affected versions of this package are vulnerable to Out-of-bounds Read due to improper namespace processing of sch:name elements in xmlSchematronFormatReport function. An attacker can cause a denial of service or potentially execu...

9.1CVSS7.5AI score0.01437EPSS
Exploits0References2
Rows per page
Query Builder