ALAS2023-2023-163 --- libxml2| ID: oval:org.secpod.oval:def:19500038 | Date: (C)2023-06-12 (M)2024-05-23 |
| Class: PATCH | Family: unix |
A NULL pointer dereference exists when parsing XML schemas in libxml2 xmlSchemaCheckCOSSTDerivedOK libxml2 Hashing of empty dict strings isn't deterministic. When hashing empty strings which aren't null-terminated, xmlDictComputeFastKey could produce inconsistent results. This could lead to various logic or memory errors, including double frees
| Platform: |
| Amazon Linux 2023 |
| Product: |
| libxml2 |
| python3-libxml2 |
