6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
46.5%
An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the ‘\0’ value).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | libxml2 | < 2.9.14+dfsg-1.2 | libxml2_2.9.14+dfsg-1.2_all.deb |
Debian | 11 | all | libxml2 | < 2.9.10+dfsg-6.7+deb11u4 | libxml2_2.9.10+dfsg-6.7+deb11u4_all.deb |
Debian | 999 | all | libxml2 | < 2.9.14+dfsg-1.2 | libxml2_2.9.14+dfsg-1.2_all.deb |
Debian | 13 | all | libxml2 | < 2.9.14+dfsg-1.2 | libxml2_2.9.14+dfsg-1.2_all.deb |