Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework.
Metrics
Affected Vendors & Products
References
History
Tue, 21 Jan 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: redhat
Published: 2009-08-11T18:00:00
Updated: 2025-01-21T15:30:42.200Z
Reserved: 2009-07-09T00:00:00
Link: CVE-2009-2416

Updated: 2024-08-07T05:52:14.792Z

Status : Modified
Published: 2009-08-11T18:30:00.983
Modified: 2025-01-21T16:15:10.397
Link: CVE-2009-2416
