[xml] libxml2.9.0 Vulnerability Confirmation

From: Sandeep H S <hssandeep16 gmail com>
To: xml gnome org
Subject: [xml] libxml2.9.0 Vulnerability Confirmation
Date: Mon, 20 Jan 2014 12:22:05 +0530

Hi All,

We have a product which is dependent on libxml2. I required one confirmation regarding "Multiple use-after-free vulnerabilities in libxml2 2.9.0". It would be very helpful if you please confirm the same

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1969

In the above link, Affected version is mentioned as libxml2 2.9.0 but also there is line specifying other versions are also affected.

Please let me know which are the other versions affected and in particular libxml2 2.7.5 is affected ?

What is the test that can be done to check whether particular libxml2 verison is affect by "Multiple use-after-free vulnerabilities".

Please do the needful.

Thanks & Regards,

Sandeep

Follow-Ups:
- Re: [xml] libxml2.9.0 Vulnerability Confirmation
  - From: Bjoern Hoehrmann

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]