FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libxml2 -- multiple vulnerabilities

Affected packages
libxml2 < 2.10.4

Details

VuXML ID 0bd7f07b-dc22-11ed-bf28-589cfc0f81b0
Discovery 2023-04-11
Entry 2023-04-16

The libxml2 project reports:

Hashing of empty dict strings isn't deterministic

Fix null deref in xmlSchemaFixupComplexType

[source]

References

CVE Name CVE-2023-28484
CVE Name CVE-2023-29469
URL https://bugzilla.redhat.com/show_bug.cgi?id=2185984
URL https://bugzilla.redhat.com/show_bug.cgi?id=2185994

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.