libxml2 vulnerabilities

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the libxml2 package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • M
Out-of-bounds Read 		<2.9.4+dfsg1-2.2+deb9u3 Not available 05 Sep, 2020
  • H
Loop with Unreachable Exit Condition ('Infinite Loop') 		<2.9.4+dfsg1-2.2+deb9u3 Not available 22 Jan, 2020
  • H
Improper Resource Shutdown or Release 		<2.9.4+dfsg1-2.2+deb9u3 Not available 22 Jan, 2020
  • H
Missing Release of Resource after Effective Lifetime 		<2.9.4+dfsg1-2.2+deb9u3 Not available 24 Dec, 2019
  • M
Loop with Unreachable Exit Condition ('Infinite Loop') 		<2.9.4+dfsg1-2.2+deb9u3 Not available 16 Aug, 2018
  • H
NULL Pointer Dereference 		<2.9.4+dfsg1-2.2+deb9u3 Not available 22 Jul, 2018
  • H
Use After Free 		<2.9.4+dfsg1-2.2+deb9u2 Not available 27 Jun, 2018
  • M
Allocation of Resources Without Limits or Throttling 		<2.9.4+dfsg1-2.2+deb9u3 Not available 08 Apr, 2018
  • H
Out-of-Bounds 		<2.9.4+dfsg1-2.2+deb9u1 Not available 19 Feb, 2018
  • H
XML External Entity (XXE) Injection 		<2.9.4+dfsg1-2.2+deb9u1 Not available 19 Feb, 2018
  • H
Out-of-bounds Write 		* Not available 07 Feb, 2018
  • H
Out-of-Bounds 		<2.9.4+dfsg1-2.2+deb9u1 Not available 23 Nov, 2017
  • H
Loop with Unreachable Exit Condition ('Infinite Loop') 		* Not available 23 Nov, 2017
  • H
Out-of-bounds Write 		<2.9.4+dfsg1-2.2+deb9u1 Not available 14 Jun, 2017
  • H
Out-of-bounds Read 		<2.9.4+dfsg1-2.2+deb9u1 Not available 18 May, 2017
  • H
Out-of-Bounds 		<2.9.4+dfsg1-2.2+deb9u1 Not available 18 May, 2017
  • H
Out-of-Bounds 		<2.9.4+dfsg1-2.2+deb9u1 Not available 18 May, 2017
  • H
Out-of-bounds Read 		<2.9.4+dfsg1-2.2+deb9u1 Not available 18 May, 2017
  • H
Out-of-bounds Read 		<2.9.4+dfsg1-2.2+deb9u3 Not available 10 May, 2017
  • M
NULL Pointer Dereference 		* Not available 11 Apr, 2017
  • H
Deserialization of Untrusted Data 		<2.9.3+dfsg1-1.1 Not available 11 Apr, 2017
  • M
XML External Entity (XXE) Injection 		* Not available 16 Nov, 2016
  • H
Out-of-Bounds 		<2.9.4+dfsg1-2.1 Not available 25 Sep, 2016
  • H
Use After Free 		<2.9.4+dfsg1-2.1 Not available 23 Jul, 2016
  • H
Out-of-Bounds 		<2.9.3+dfsg1-1.1 Not available 09 Jun, 2016
  • H
Use of Externally-Controlled Format String 		<2.9.4+dfsg1-1 Not available 09 Jun, 2016
  • H
Improper Input Validation 		<2.9.3+dfsg1-1.1 Not available 09 Jun, 2016
  • M
Out-of-bounds Read 		<2.9.3+dfsg1-1.1 Not available 20 May, 2016
  • M
Use After Free 		<2.9.3+dfsg1-1.1 Not available 20 May, 2016
  • M
Use After Free 		<2.9.3+dfsg1-1.1 Not available 20 May, 2016
Report a new vulnerability