6 matches found
CLSA-2025-1753377886 libxml2: Fix of 2 CVEs
CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...
CLSA-2025-1753374522 libxml2: Fix of 2 CVEs
CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...
The vulnerability of the xmlSchematronFormatReport() function in the Schematron Schema Report component of the libxml2 library allows a attacker to trigger a service failure.
The vulnerability of the xmlSchematronFormatReport function in the Schematron Schema Report component of the libxml2 library is related to the use of a null pointer during the processing of XPath expressions. Exploiting this vulnerability could allow an attacker to cause service failures by sendi...
CLSA-2025-1753298958 libxml2: Fix of 2 CVEs
CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...
CLSA-2025-1753298447 libxml2: Fix of 2 CVEs
CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...
Out-of-bounds Read
Overview nokogiri is a gem for parsing HTML, XML, SAX, and Reader. Affected versions of this package are vulnerable to Out-of-bounds Read due to improper namespace processing of sch:name elements in xmlSchematronFormatReport function. An attacker can cause a denial of service or potentially execu...