Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a stack-based buffer overflow. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char buffer 'buf' of size 'size'. At the end of the routine, the function may strcat two more characters without checking whether the current strlen(buf) + 2 < size. This vulnerability causes programs that use libxml2, such as PHP, to crash.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
libxml2 缓冲区错误漏洞
Vulnerability Description
libxml2是GNOME项目组所研发的一个基于C语言的用来解析XML文档的函数库,它支持多种编码格式、Xpath解析、Well-formed和valid验证等。 libxml2 20904-GITv2.9.4-16-g0741801版本中存在基于栈的缓冲区溢出漏洞。攻击者可利用该漏洞造成拒绝服务(程序崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A