ALAS2023-2023-163 --- libxml2ID: oval:org.secpod.oval:def:19500038 | Date: (C)2023-06-12 (M)2024-05-23 |
Class: PATCH | Family: unix |
A NULL pointer dereference exists when parsing XML schemas in libxml2 xmlSchemaCheckCOSSTDerivedOK libxml2 Hashing of empty dict strings isn't deterministic. When hashing empty strings which aren't null-terminated, xmlDictComputeFastKey could produce inconsistent results. This could lead to various logic or memory errors, including double frees
Platform: |
Amazon Linux 2023 |
Product: |
libxml2 |
python3-libxml2 |