[3.4] libxml2: out-of-bounds read in htmlParseNameComplex() (CVE-2016-2073)ID: oval:org.secpod.oval:def:1800076 | Date: (C)2018-03-28 (M)2024-04-17 |
Class: PATCH | Family: unix |
CVE-2016-2073: out-of-bounds read in htmlParseNameComplex libxml2 is vulnerable to a heap-based buffer overflow, caused by an out-of-bounds read in the htmlParseNameComplex function. By persuading a victim to open a specially crafted XML file, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash. Currently there is no known patch available for this issue.
Platform: |
Alpine Linux 3.4 |